CN106612181A - Identity verification method and device - Google Patents

Identity verification method and device Download PDF

Info

Publication number
CN106612181A
CN106612181A CN201510703867.8A CN201510703867A CN106612181A CN 106612181 A CN106612181 A CN 106612181A CN 201510703867 A CN201510703867 A CN 201510703867A CN 106612181 A CN106612181 A CN 106612181A
Authority
CN
China
Prior art keywords
string
operating gesture
user
binary characters
character
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510703867.8A
Other languages
Chinese (zh)
Inventor
杨霞
林陆
林陆一
郝允允
李轶峰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tencent Technology Shenzhen Co Ltd
Original Assignee
Tencent Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tencent Technology Shenzhen Co Ltd filed Critical Tencent Technology Shenzhen Co Ltd
Priority to CN201510703867.8A priority Critical patent/CN106612181A/en
Priority to PCT/CN2016/083105 priority patent/WO2017071192A1/en
Publication of CN106612181A publication Critical patent/CN106612181A/en
Priority to US15/817,014 priority patent/US10657244B2/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

The embodiment of the invention discloses an identity verification method and device. According to the embodiment, the identity verification method comprises the steps of generating a verification code based on an identity verification request when the identity verification request of a user is received; obtaining an operating gesture of the user on a touch panel when determining that the user needs to input the verification code; then generating a corresponding binary character string based on the operating gesture; matching the binary character string with the verification code according to a preset rule; if so, determining that the identity verification is successful when determining that the authentication information carried by the identity verification request is correct; and otherwise, refusing the identity verification request. According to the scheme, more choices can be provided for the user to input the verification code, great convenience is brought to the operation of the user, and improvement of the operating flexibility is facilitated.

Description

一种身份验证方法和装置An identity verification method and device

技术领域technical field

本发明涉及通信技术领域,具体涉及一种身份验证方法和装置。The invention relates to the field of communication technology, in particular to an identity verification method and device.

背景技术Background technique

现如今,人们生活的方方面面几乎都离不开数据,比如进行网络购物、转账、以及会话等等,无不涉及到数据的处理,因此,如何保障数据安全,也成为业界一直以来都极为关注的一个问题。Nowadays, almost all aspects of people’s lives are inseparable from data, such as online shopping, transfers, and conversations, etc., all of which involve data processing. Therefore, how to ensure data security has become an issue that the industry has always paid close attention to. question.

在现有技术中,一般都会通过身份验证的方式来提高数据的安全性,比如,根据用户提供的鉴权信息,如账号和密码等,与预存的验证信息进行比较,若一致,则验证通过,否则,则确定验证不通过。其中,为了有效防止某个黑客对某一个特定注册用户,采用特定程序暴力破解方式进行不断的登录尝试(即验证尝试),现有技术又提出了“验证码”技术,即随机生成一个只有人类才能解答的问题,比如一串数字、字母、文字、图片或问题等,要求登陆者按照该验证码的要求进行输入,只有输入正确,且鉴权信息正确,才可确定验证通过。简而言之,验证码的存在就是为了区分鉴权信息的输入是人还是机器,以提高验证的安全性。In the existing technology, the security of data is generally improved through identity verification. For example, according to the authentication information provided by the user, such as account number and password, etc., it is compared with the pre-stored verification information. If they are consistent, the verification is passed. , otherwise, it is determined that the verification fails. Among them, in order to effectively prevent a hacker from making continuous login attempts (that is, verification attempts) by means of brute force cracking of a specific program for a specific registered user, the prior art proposes a "verification code" technology, which randomly generates a Questions that can only be answered, such as a string of numbers, letters, text, pictures or questions, etc., require the registrant to input according to the requirements of the verification code. Only when the input is correct and the authentication information is correct can the verification be confirmed. In short, the existence of the verification code is to distinguish whether the input of the authentication information is a human or a machine, so as to improve the security of verification.

在对现有技术的研究和实践过程中,本发明的发明人发现,现有的方案在输入验证码时,需要通过键盘才可输入,操作灵活性不足。During the research and practice of the prior art, the inventors of the present invention found that the verification code needs to be entered through a keyboard in the existing solution, and the operation flexibility is insufficient.

发明内容Contents of the invention

本发明实施例提供一种身份验证方法和装置,可以获取触控板来获取用户输入的验证码,在保障数据安全的前提下,提高操作的灵活性。Embodiments of the present invention provide an identity verification method and device, which can acquire a touch panel to obtain a verification code input by a user, and improve operational flexibility on the premise of ensuring data security.

本发明实施例提供一种身份验证方法,包括:An embodiment of the present invention provides an identity verification method, including:

接收用户的身份验证请求,所述身份验证请求携带鉴权信息;receiving an identity verification request from a user, where the identity verification request carries authentication information;

根据所述身份验证请求生成验证码;generating a verification code according to the identity verification request;

确定用户需要输入验证码时,获取用户在触控板上的操作手势;When it is determined that the user needs to enter the verification code, obtain the user's operation gesture on the touchpad;

根据所述操作手势生成对应的二进制字符串;generating a corresponding binary string according to the operation gesture;

按照预置规则将所述二进制字符串与所述验证码进行匹配;matching the binary string with the verification code according to preset rules;

若匹配,则在确定所述鉴权信息正确时,确定身份验证通过;If it matches, then when it is determined that the authentication information is correct, it is determined that the identity verification is passed;

若不匹配,则拒绝所述身份验证请求。If there is no match, the authentication request is rejected.

相应的,本发明实施例还提供一种身份验证装置,包括:Correspondingly, the embodiment of the present invention also provides an identity verification device, including:

接收单元,用于接收用户的身份验证请求,所述身份验证请求携带鉴权信息;A receiving unit, configured to receive an identity verification request from a user, where the identity verification request carries authentication information;

验证码生成单元,用于根据所述身份验证请求生成验证码;a verification code generating unit, configured to generate a verification code according to the identity verification request;

获取单元,用于确定用户需要输入验证码时,获取用户在触控板上的操作手势;The acquiring unit is used to acquire the user's operation gesture on the touch panel when determining that the user needs to input the verification code;

字符串生成单元,用于根据所述操作手势生成对应的二进制字符串;A character string generating unit, configured to generate a corresponding binary character string according to the operation gesture;

处理单元,用于按照预置规则将所述二进制字符串与所述验证码进行匹配,若匹配,则在确定所述鉴权信息正确时,确定身份验证通过,若不匹配,则拒绝所述身份验证请求。A processing unit, configured to match the binary string with the verification code according to preset rules, and if they match, determine that the identity verification is passed when the authentication information is determined to be correct, and if they do not match, reject the verification code. Authentication request.

本发明实施例采用在接收到用户的身份验证请求时,根据该身份验证请求生成验证码,并在确定用户需要输入验证码时,获取用户在触控板上的操作手势,然后根据该操作手势生成对应的二进制字符串,并按照预置规则将该二进制字符串与验证码进行匹配,若匹配,则在确定身份验证请求所携带的鉴权信息正确时,确定身份验证通过,反之,若不匹配,则拒绝该身份验证请求,从而实现对用户进行身份验证的目的;该方案在获取用户输入的验证码时,无需通过键盘,而是通过对触控板进行监控来获取,因此,相对于现有技术只能通过键盘来进行输入的技术而言,为用户输入验证码提供了多一份选择,大大方便了用户的操作,有利于提高操作的灵活性和趣味性。In the embodiment of the present invention, when the user's identity verification request is received, a verification code is generated according to the identity verification request, and when it is determined that the user needs to input the verification code, the user's operation gesture on the touch panel is obtained, and then according to the operation gesture Generate the corresponding binary string, and match the binary string with the verification code according to the preset rules. If it matches, when it is determined that the authentication information carried in the identity verification request is correct, it is determined that the identity verification is passed. Otherwise, if not If it matches, the authentication request is rejected, so as to achieve the purpose of authenticating the user; when obtaining the verification code input by the user, the solution does not need to use the keyboard, but obtains it by monitoring the touchpad. Therefore, compared to As far as the existing technology can only be input through the keyboard, it provides an additional option for the user to input the verification code, greatly facilitates the user's operation, and is conducive to improving the flexibility and fun of the operation.

附图说明Description of drawings

为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings that need to be used in the description of the embodiments will be briefly introduced below. Obviously, the drawings in the following description are only some embodiments of the present invention. For those skilled in the art, other drawings can also be obtained based on these drawings without any creative effort.

图1是本发明实施例提供的身份验证方法的流程图;Fig. 1 is a flow chart of the identity verification method provided by the embodiment of the present invention;

图2a是本发明实施例提供的身份验证方法的另一流程图;Fig. 2a is another flow chart of the identity verification method provided by the embodiment of the present invention;

图2b是本发明实施例提供的身份验证方法中验证码输入界面的示意图;Fig. 2b is a schematic diagram of the verification code input interface in the identity verification method provided by the embodiment of the present invention;

图3a是本发明实施例提供的身份验证方法的又一流程图;Fig. 3a is another flow chart of the identity verification method provided by the embodiment of the present invention;

图3b是本发明实施例提供的身份验证方法中验证码输入界面的另一示意图Fig. 3b is another schematic diagram of the verification code input interface in the identity verification method provided by the embodiment of the present invention

图4是本发明实施例提供的身份验证装置的结构示意图。Fig. 4 is a schematic structural diagram of an identity verification device provided by an embodiment of the present invention.

具体实施方式detailed description

下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative efforts fall within the protection scope of the present invention.

本发明实施例提供一种身份验证方法和装置。以下将分别进行详细说明。Embodiments of the present invention provide an identity verification method and device. The details will be described respectively below.

实施例一、Embodiment one,

本实施例将从身份验证装置的角度进行描述,该身份验证装置具体可以集成在终端、服务器或其他需要进行身份验证的设备中。This embodiment will be described from the perspective of an identity verification device. Specifically, the identity verification device may be integrated into a terminal, a server, or other devices that require identity verification.

一种身份验证方法,包括:接收用户的身份验证请求,该身份验证请求携带鉴权信息,根据该身份验证请求生成验证码,确定用户需要输入验证码时,获取用户在触控板上的操作手势,根据该操作手势生成对应的二进制字符串,按照预置规则将该二进制字符串与该验证码进行匹配,若匹配,则在确定该鉴权信息正确时,确定身份验证通过,否则,若不匹配,则拒绝该身份验证请求。An identity verification method, comprising: receiving a user's identity verification request, the identity verification request carrying authentication information, generating a verification code according to the identity verification request, and obtaining the user's operation on the touch panel when it is determined that the user needs to input the verification code Gesture, generate a corresponding binary string according to the operation gesture, and match the binary string with the verification code according to the preset rules. does not match, the authentication request is rejected.

如图1所示,该身份验证方法的具体流程可以如下:As shown in Figure 1, the specific flow of the identity verification method may be as follows:

101、接收用户的身份验证请求。101. Receive an identity verification request from a user.

其中,该身份验证请求可以携带鉴权信息,比如用户的帐户和密码等,该帐户可以包括邮箱地址、即时通信的号码、用户名称或用户编号等。Wherein, the identity verification request may carry authentication information, such as the user's account and password, and the account may include an email address, an instant messaging number, a user name or a user number, and the like.

102、根据该身份验证请求生成验证码。102. Generate a verification code according to the identity verification request.

例如,可以在接收到用户的身份验证请求时,比如用户打开登陆界面时,或者用户输入鉴权信息时,又或者,当用户在登陆界面上,点击生成验证码的触发键时,根据预设的策略生成验证码。For example, when the user's identity verification request is received, such as when the user opens the login interface, or when the user enters the authentication information, or when the user clicks the trigger button to generate the verification code on the login interface, according to the preset policy to generate verification codes.

其中,该预设策略可以根据实际应用的需求而定,比如,该验证码可以是随机生成的,也可以按照一定的规律来生成,该验证码可以是二进制字符串,也可以是其他进制的数字,比如十进制或十六进制的数字,甚至,还可以是图片组合或颜色组合,比如男性相片和女性相片的组合,或者黑色和白色的组合、蓝色和红色的组合,等等,在此不再赘述。Among them, the preset strategy can be determined according to the actual application requirements. For example, the verification code can be generated randomly or according to a certain rule. The verification code can be a binary string or other binary system numbers, such as decimal or hexadecimal numbers, or even a combination of pictures or colors, such as a combination of a male photo and a female photo, or a combination of black and white, blue and red, etc., I won't repeat them here.

可选的,为了便于用户操作,在生成验证码时,还可以生成相应的提示信息,以指示操作手势与二进制字符的对应关系。Optionally, for the convenience of the user's operation, when generating the verification code, corresponding prompt information may also be generated to indicate the correspondence between the operation gesture and the binary character.

例如,若“0”表示轻触,“1”表示点按,则可以提示用户:“其中,0表示轻触,1表示点按,请按顺序输入”。For example, if "0" means light touch and "1" means tap, the user may be prompted: "Among them, 0 means light touch, 1 means tap, please input in order".

又例如,若“1”表示轻触,“0”表示点按,则可以提示用户:“其中,1表示轻触,0表示点按,请按顺序输入”。For another example, if "1" means light touch and "0" means tap, the user may be prompted: "Among them, 1 means light touch, 0 means tap, please input in order".

又例如,若男性相片表示轻触,女性相片表示点按,则可以提示用户:“其中,男性相片表示轻触,女性相片表示点按,请按顺序输入”。For another example, if a male photo indicates a tap, and a female photo indicates a tap, the user may be prompted: "Among them, a male photo indicates a tap, and a female photo indicates a tap, please input in order."

又例如,若黑色表示轻触,白色表示点按,则可以提示用户:“其中,黑色表示轻触,白色表示点按,请按顺序输入”。For another example, if black means light touch and white means click, the user may be prompted: "Among them, black means light touch and white means click, please input in order".

又例如,还可以按照按压的力度的不同来区分输入的信息,比如,可以如下:For another example, it is also possible to distinguish the input information according to the strength of the pressing. For example, it can be as follows:

若“0”表示轻按,“1”表示重按,则可以提示用户:“其中,0表示轻按,1表示重按,请按顺序输入”。If "0" means a light press and "1" means a heavy press, the user may be prompted: "Among them, 0 means a light press, and 1 means a heavy press, please input in order".

或者,若“1”表示轻按,“0”表示重按,则可以提示用户:“其中,1表示轻按,0表示重按,请按顺序输入”。Or, if "1" means a light press and "0" means a heavy press, the user may be prompted: "Among them, 1 means a light press, and 0 means a heavy press, please input in order".

以此类推,在此不再赘述。And so on, no more details here.

需说明的是,除了“轻触”和“点按”,以及“轻按”和“重按”之外,也可以是其他的操作手势,比如“画圈”等,该操作手势与二进制字符的对应关系可以根据实际应用的需求进行设置,在此不再赘述。It should be noted that, in addition to "light touch" and "click", as well as "light press" and "re-press", other operation gestures, such as "circle", etc., can also be used. The corresponding relationship of can be set according to the actual application requirements, which will not be repeated here.

103、确定用户需要输入验证码时,获取用户在触控板上的操作手势。103. When it is determined that the user needs to input a verification code, acquire an operation gesture of the user on the touch panel.

其中,确定用户需要输入验证码的方式可以有多种,比如,当用户点击验证码的输入框时,或者,当输入光标在验证码的输入框时,则可以确定用户需要输入验证码。There are many ways to determine that the user needs to input the verification code. For example, when the user clicks the input box of the verification code, or when the input cursor is in the input box of the verification code, it can be determined that the user needs to input the verification code.

若在步骤102中,已经生成了提示信息,则此时用户可以根据该提示信息在触控板上进行操作,即步骤“获取用户在触控板上的操作手势”具体可以为:获取用户根据该提示信息在触控板上的操作手势,比如“点按”或“轻触”。If in step 102, prompt information has been generated, then the user can operate on the touchpad according to the prompt information at this time, that is, the step "obtaining the user's operation gesture on the touchpad" can specifically be: obtain the user's The operation gesture of the prompt information on the trackpad, such as "click" or "light touch".

104、根据该操作手势生成对应的二进制字符串。104. Generate a corresponding binary string according to the operation gesture.

其中,生成二进制字符串的规则可以预先进行设定,比如,以压力触控(Force touch)为例,可以采用如下任意一种方式:Among them, the rules for generating binary strings can be set in advance, for example, taking force touch (Force touch) as an example, any of the following methods can be adopted:

(1)第一种方式;(1) The first method;

确定该操作手势为轻触时,生成字符1;When it is determined that the operation gesture is a light touch, generate character 1;

确定该操作手势为点按时,生成字符0;When it is determined that the operation gesture is a tap, a character 0 is generated;

将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Arrange the generated characters according to the sequence of the gestures to form a binary string.

(2)第二种方式;(2) The second method;

确定该操作手势为轻触时,生成字符0;When it is determined that the operation gesture is a light touch, a character 0 is generated;

确定该操作手势为点按时,生成字符1;When it is determined that the operation gesture is tap, generate character 1;

将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Arrange the generated characters according to the sequence of the gestures to form a binary string.

(3)第三种方式;(3) The third way;

确定该操作手势为轻按时,生成字符0;When the operation gesture is determined to be a tap, a character 0 is generated;

确定该操作手势为重按时,生成字符1;When it is determined that the operation gesture is a heavy press, character 1 is generated;

将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Arrange the generated characters according to the sequence of the gestures to form a binary string.

(4)第四种方式;(4) The fourth method;

确定该操作手势为轻按时,生成字符1;When the operation gesture is determined to be a tap, generate character 1;

确定该操作手势为重按时,生成字符0;When it is determined that the operation gesture is a heavy press, a character 0 is generated;

将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Arrange the generated characters according to the sequence of the gestures to form a binary string.

需说明的是,该生成的规则与提示信息相对应,当然,还存在有其他的方式,在此不再赘述。It should be noted that the generated rule corresponds to the prompt information, of course, there are other ways, which will not be repeated here.

105、按照预置规则将该二进制字符串与该验证码进行匹配,若匹配,则执行步骤106,若不匹配,则执行步骤107。105. Match the binary string with the verification code according to the preset rules, if they match, execute step 106, and if not, execute step 107.

例如,若该验证码为二进制字符串,则此时,可以确定该操作手势对应的二进制字符串与该验证码是否一致,若一致,则确定该操作手势对应的二进制字符串与该验证码匹配;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配。For example, if the verification code is a binary character string, at this time, it can be determined whether the binary character string corresponding to the operation gesture is consistent with the verification code, and if they are consistent, then it is determined that the binary character string corresponding to the operation gesture matches the verification code ; If not, it is determined that the binary string corresponding to the operation gesture does not match the verification code.

又例如,若该验证码为十进制数字组合或十六进制数字组合,则此时,可以将该十进制数字组合或十六进制数字组合转换为二进制字符串,然后,确定该操作手势对应的二进制字符串与转换得到的二进制字符串是否一致,若一致,则确定该操作手势对应的二进制字符串与该验证码匹配;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配。For another example, if the verification code is a combination of decimal numbers or hexadecimal numbers, at this time, the combination of decimal numbers or hexadecimal numbers can be converted into a binary string, and then determine the corresponding Whether the binary string is consistent with the converted binary string, if they are consistent, determine that the binary string corresponding to the operation gesture matches the verification code; if not, determine that the binary string corresponding to the operation gesture does not match the verification code match.

需说明的是,其中,在将十进制数字组合或十六进制数字组合转换为二进制字符串时,可以将该十进制数字组合或十六进制数字组合中的每一个数字转换为二进制数,然后按顺序进行排序组合,也可以直接将该十进制数字组合或十六进制数字组合当作一个数字进行转换,具体转换规则可以根据实际应用的需求而定,但是需要与用户输入时所遵守的转换规则保持一致,在此不再赘述。It should be noted that, when converting a combination of decimal numbers or a combination of hexadecimal numbers into a binary string, each digit in the combination of decimal numbers or hexadecimal numbers can be converted into a binary number, and then Sort and combine in order, or convert the decimal or hexadecimal combination directly as a number. The specific conversion rules can be determined according to the actual application requirements, but it needs to be consistent with the conversion that the user inputs. The rules remain the same and will not be repeated here.

106、若匹配,则在确定该鉴权信息正确时,确定身份验证通过。106. If they match, when it is determined that the authentication information is correct, determine that the identity verification is passed.

反正,若确定该鉴权信息不正确,则拒绝该身份验证请求。Anyway, if it is determined that the authentication information is incorrect, the identity verification request is rejected.

其中,鉴权信息是否正确,可以将该鉴权信息,比如帐号和密码与预存的验证信息,比如保存的帐号和密码进行比对来确定,在此不再赘述。Wherein, whether the authentication information is correct can be determined by comparing the authentication information, such as account number and password, with pre-stored verification information, such as saved account number and password, and will not be repeated here.

107、若不匹配,则拒绝该身份验证请求。107. If they do not match, reject the identity verification request.

由上可知,本实施例采用在接收到用户的身份验证请求时,根据该身份验证请求生成验证码,并在确定用户需要输入验证码时,获取用户在触控板上的操作手势,然后根据该操作手势生成对应的二进制字符串,并按照预置规则将该二进制字符串与验证码进行匹配,若匹配,则在确定身份验证请求所携带的鉴权信息正确时,确定身份验证通过,反之,若不匹配,则拒绝该身份验证请求,从而实现对用户进行身份验证的目的;该方案在获取用户输入的验证码时,无需通过键盘,而是通过对触控板进行监控来获取,因此,相对于现有技术只能通过键盘来进行输入的技术而言,为用户输入验证码提供了多一份选择,大大方便了用户的操作,有利于提高操作的灵活性、趣味性和互动性。As can be seen from the above, in this embodiment, when the user's identity verification request is received, a verification code is generated according to the identity verification request, and when it is determined that the user needs to input the verification code, the user's operation gesture on the touch panel is obtained, and then according to The operation gesture generates a corresponding binary string, and matches the binary string with the verification code according to the preset rules. If it matches, when it is determined that the authentication information carried in the identity verification request is correct, it is determined that the identity verification is passed, and vice versa. , if it does not match, the authentication request will be rejected, so as to achieve the purpose of authenticating the user; when obtaining the verification code input by the user, the scheme does not need to use the keyboard, but obtains it by monitoring the touchpad, so , compared with the existing technology that can only be input through the keyboard, it provides an additional option for the user to input the verification code, greatly facilitates the user's operation, and is conducive to improving the flexibility, fun and interactivity of the operation .

实施例二、Embodiment two,

根据实施例一所描述的方法,以下将举例作进一步详细说明。According to the method described in Embodiment 1, an example will be given below for further detailed description.

在本实施例中,将以该验证码为二进制字符串,且“0”表示轻触,“1”表示点按为例进行说明。In this embodiment, the verification code is a binary character string, and "0" represents a light touch, and "1" represents a tap as an example for illustration.

如图2a所示,一种身份验证方法,具体流程可以如下:As shown in Figure 2a, an identity verification method, the specific process can be as follows:

201、身份验证装置接收用户的身份验证请求。201. The identity verification device receives an identity verification request of a user.

其中,该身份验证请求可以携带鉴权信息,比如用户的帐户和密码等,该帐户可以包括邮箱地址、即时通信的号码、用户名称或用户编号等。Wherein, the identity verification request may carry authentication information, such as the user's account and password, and the account may include an email address, an instant messaging number, a user name or a user number, and the like.

202、身份验证装置根据该身份验证请求生成验证码,该验证码具体可以是二进制字符串。202. The identity verification device generates a verification code according to the identity verification request, and the verification code may specifically be a binary string.

例如,可以在接收到用户的身份验证请求时,比如用户打开登陆界面时,或者用户输入鉴权信息时,又或者,当用户在登陆界面上,点击生成验证码的触发键时,根据预设策略生成验证码。其中,该预设策略可以根据实际应用的需求而定,比如,该验证码可以是随机生成的,也可以按照一定的规律来生成。For example, when the user's identity verification request is received, such as when the user opens the login interface, or when the user enters the authentication information, or when the user clicks the trigger button to generate the verification code on the login interface, according to the preset Policy to generate verification codes. Wherein, the preset strategy may be determined according to the actual application requirements, for example, the verification code may be generated randomly, or may be generated according to a certain rule.

可选的,为了便于用户操作,在生成验证码时,还可以生成相应的提示信息,以指示操作手势与二进制字符的对应关系,比如,参见图2b,在显示验证码“10110”时,可以提示用户:“其中,0表示轻触,1表示点按,请按顺序输入”,等等。Optionally, in order to facilitate the user's operation, when generating the verification code, corresponding prompt information can also be generated to indicate the corresponding relationship between the operation gesture and the binary character. For example, referring to Figure 2b, when the verification code "10110" is displayed, you can Prompt the user: "Among them, 0 means light touch, 1 means tap, please enter in order", and so on.

203、身份验证装置确定用户需要输入验证码时,获取用户在触控板上的操作手势。203. When the identity verification device determines that the user needs to input a verification code, acquire the user's operation gesture on the touch panel.

例如,用户可以根据该提示信息在触控板上作出“点按”或“轻触”的操作手势,在输入完毕后进行确定,则此时,身份验证装置便可以接收到这些操作手势。For example, the user can make an operation gesture of "click" or "light touch" on the touch panel according to the prompt information, and make a confirmation after the input is completed. At this time, the identity verification device can receive these operation gestures.

其中,确定用户需要输入验证码的方式可以有多种,比如,当用户点击验证码的输入框时,或者,当输入光标在验证码的输入框时,则可以确定用户需要输入验证码。There are many ways to determine that the user needs to input the verification code. For example, when the user clicks the input box of the verification code, or when the input cursor is in the input box of the verification code, it can be determined that the user needs to input the verification code.

204、身份验证装置确定该操作手势为轻触时,生成字符0,确定该操作手势为点按时,生成字符1,将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。204. The identity verification device generates character 0 when determining that the operation gesture is light touch, generates character 1 when determining that the operation gesture is tap, and arranges the generated characters according to the sequence of the operation gestures to form a binary string.

205、身份验证装置确定该操作手势对应的二进制字符串与该验证码是否一致,若一致,则确定该操作手势对应的二进制字符串与该验证码匹配,执行步骤206;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配,执行步骤207。205. The identity verification device determines whether the binary string corresponding to the operation gesture is consistent with the verification code. If they are consistent, determine that the binary string corresponding to the operation gesture matches the verification code, and perform step 206; if not, determine the If the binary string corresponding to the operation gesture does not match the verification code, step 207 is performed.

206、身份验证装置在确定该鉴权信息正确时,确定身份验证通过。206. The identity verification device determines that the identity verification is passed when determining that the authentication information is correct.

反正,若确定该鉴权信息不正确,则拒绝该身份验证请求(即执行步骤207)。Anyway, if it is determined that the authentication information is incorrect, then reject the identity verification request (that is, execute step 207).

其中,鉴权信息是否正确,可以将该鉴权信息,比如帐号和密码与预存的验证信息,比如保存的帐号和密码进行比对来确定,在此不再赘述。Wherein, whether the authentication information is correct can be determined by comparing the authentication information, such as account number and password, with pre-stored verification information, such as saved account number and password, and will not be repeated here.

207、身份验证装置拒绝该身份验证请求。207. The identity verification device rejects the identity verification request.

需说明的是,除了允许用户通过触控板输入验证码之外,也可以允许用户通过其他的途径,如键盘输入验证码,即用户可以选择输入验证码的途径,在此不再赘述。It should be noted that, in addition to allowing the user to input the verification code through the touch panel, the user may also be allowed to enter the verification code through other ways, such as the keyboard, that is, the user can choose the way to input the verification code, which will not be repeated here.

由上可知,本实施例采用在接收到用户的身份验证请求时,根据该身份验证请求生成一个二进制字符串作为验证码,并在确定用户需要输入验证码时,获取用户在触控板上的操作手势,比如,点按或轻触等,然后根据该操作手势生成对应的二进制字符串,并将该二进制字符串与验证码进行比较,若一致,则在确定身份验证请求所携带的鉴权信息正确时,确定身份验证通过,反之,若不一致,则拒绝该身份验证请求,从而实现对用户进行身份验证的目的;该方案在获取用户输入的验证码时,无需通过键盘,而是通过对触控板进行监控来获取,因此,相对于现有技术只能通过键盘来进行输入的技术而言,为用户输入验证码提供了多一份选择,大大方便了用户的操作,有利于提高操作的灵活性、趣味性和互动性。As can be seen from the above, in this embodiment, when the user's identity verification request is received, a binary character string is generated as the verification code according to the identity verification request, and when it is determined that the user needs to input the verification code, the user's identity verification code on the touch panel is obtained. Operation gestures, such as tap or light touch, etc., and then generate a corresponding binary string according to the operation gesture, and compare the binary string with the verification code. When the information is correct, it is determined that the identity verification is passed. On the contrary, if it is inconsistent, the identity verification request is rejected, so as to realize the purpose of authenticating the user; The touchpad is monitored to obtain it. Therefore, compared with the existing technology that can only be input through the keyboard, it provides an additional option for the user to input the verification code, which greatly facilitates the user's operation and is conducive to improving the operation. flexibility, fun and interactivity.

实施例三、Embodiment three,

根据实施例一所描述的方法,以下将举例作进一步详细说明。According to the method described in Embodiment 1, an example will be given below for further detailed description.

在本实施例中,将以该验证码为十进制字符串,且“0”表示轻触,“1”表示点按为例进行说明。In this embodiment, it will be described by taking the verification code as a decimal character string, and "0" means light touch, and "1" means tap as an example.

如图3a所示,一种身份验证方法,具体流程可以如下:As shown in Figure 3a, an identity verification method, the specific process can be as follows:

301、身份验证装置接收用户的身份验证请求。301. The identity verification device receives an identity verification request of a user.

其中,该身份验证请求可以携带鉴权信息,比如用户的帐户和密码等,该帐户可以包括邮箱地址、即时通信的号码、用户名称或用户编号等。Wherein, the identity verification request may carry authentication information, such as the user's account and password, and the account may include an email address, an instant messaging number, a user name or a user number, and the like.

302、身份验证装置根据该身份验证请求生成验证码,该验证码具体可以是十进制字符串。302. The identity verification device generates a verification code according to the identity verification request, where the verification code may specifically be a decimal string.

例如,可以在接收到用户的身份验证请求时,比如用户打开登陆界面时,或者用户输入鉴权信息时,又或者,当用户在登陆界面上,点击生成验证码的触发键时,根据预设策略生成验证码。其中,该预设策略可以根据实际应用的需求而定,比如,该验证码可以是随机生成的,也可以按照一定的规律来生成。For example, when the user's identity verification request is received, such as when the user opens the login interface, or when the user enters the authentication information, or when the user clicks the trigger button to generate the verification code on the login interface, according to the preset Policy to generate verification codes. Wherein, the preset strategy may be determined according to the actual application requirements, for example, the verification code may be generated randomly, or may be generated according to a certain rule.

可选的,为了便于用户操作,在生成验证码时,还可以生成相应的提示信息,以指示操作手势与二进制字符的对应关系,比如,参见图3b,在显示验证码“4587”时,可以提示用户:“将显示的数字转换为二进制后进行输入,其中,0表示轻触,1表示点按,请按顺序输入”,等等。Optionally, in order to facilitate the user's operation, when generating the verification code, corresponding prompt information can also be generated to indicate the correspondence between the operation gesture and the binary character. For example, referring to Figure 3b, when the verification code "4587" is displayed, you can Prompt the user: "Convert the displayed number to binary and then input it. 0 means light touch, 1 means tap, please input in order", etc.

可选的,也可以只要求用户输入该十进制字符串中某部分数字的二进制数,比如,可以将验证码“4587”中的“8”进行突出显示,比如标记为有别于其他数字的颜色,如红色,然后要求用户按顺序在触控板输入“8”对应的二进制数,其中,0表示轻触,1表示点按,等等。Optionally, the user may only be required to enter the binary number of a certain part of the decimal string. For example, the "8" in the verification code "4587" may be highlighted, such as marked in a color different from other numbers. , such as red, and then require the user to input the binary number corresponding to "8" on the touchpad in sequence, where 0 means light touch, 1 means tap, and so on.

303、身份验证装置确定用户需要输入验证码时,获取用户在触控板上的操作手势。303. When the identity verification device determines that the user needs to input a verification code, acquire the user's operation gesture on the touch panel.

例如,用户可以根据该提示信息在触控板上作出“点按”或“轻触”的操作手势,在输入完毕后进行确定,则此时,身份验证装置便可以接收到这些操作手势。For example, the user can make an operation gesture of "click" or "light touch" on the touch panel according to the prompt information, and make a confirmation after the input is completed. At this time, the identity verification device can receive these operation gestures.

其中,确定用户需要输入验证码的方式可以有多种,比如,当用户点击验证码的输入框时,或者,当输入光标在验证码的输入框时,则可以确定用户需要输入验证码。There are many ways to determine that the user needs to input the verification code. For example, when the user clicks the input box of the verification code, or when the input cursor is in the input box of the verification code, it can be determined that the user needs to input the verification code.

304、身份验证装置确定该操作手势为轻触时,生成字符0,确定该操作手势为点按时,生成字符1,将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。304. The identity verification device generates character 0 when determining that the operation gesture is light touch, generates character 1 when determining that the operation gesture is tap, and arranges the generated characters according to the sequence of the operation gestures to form a binary string.

305、身份验证装置将该验证码,即该十进制数字组合转换为二进制字符串。305. The identity verification device converts the verification code, that is, the combination of decimal numbers into a binary string.

例如,可以将该十进制数字组合中的每一个数字转换为二进制数,然后按顺序进行排序组合。For example, each digit in the combination of decimal numbers can be converted to a binary number, and then sorted and combined in order.

比如,以“4587”为例,则可以将其中的“4”转换为“100”,将其中的“5”转换为“101”,将其中的“8”转换为“1000”,以及将其中的“7”转换为“111”,然后,将这几个数按顺序进行组合,即为“1001011000111”。For example, taking "4587" as an example, you can convert the "4" in it to "100", the "5" in it to "101", the "8" in it to "1000", and the "7" is converted to "111", and then these numbers are combined in order, which is "1001011000111".

当然,也可以设置直接将该十进制数字直接转换成二进制数,而不是将每个数字转换成二进制数,比如,可以将“4587”这个数转换为二进制即为“1000111101011”,等等。具体需要采用哪种方式进行转换,可以根据实际应用的需求而定,但是需要与用户输入时所遵守的转换规则保持一致。Of course, it can also be set to directly convert the decimal number into a binary number instead of converting each number into a binary number. For example, the number "4587" can be converted into binary to be "1000111101011", and so on. Which method needs to be used for conversion can be determined according to actual application requirements, but it needs to be consistent with the conversion rules followed by the user when inputting.

306、身份验证装置确定该操作手势对应的二进制字符串与转换得到的二进制字符串(即验证码)是否一致,若一致,则确定该操作手势对应的二进制字符串与该验证码匹配,执行步骤307;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配,执行步骤308。306. The identity verification device determines whether the binary character string corresponding to the operation gesture is consistent with the converted binary character string (that is, the verification code), and if they are consistent, determines that the binary character string corresponding to the operation gesture matches the verification code, and executes the step 307 ; if not, determine that the binary string corresponding to the operation gesture does not match the verification code, and execute step 308 .

307、身份验证装置在确定该鉴权信息正确时,确定身份验证通过。307. When the identity verification device determines that the authentication information is correct, determine that the identity verification is passed.

反正,若确定该鉴权信息不正确,则拒绝该身份验证请求(即执行步骤307)。Anyway, if it is determined that the authentication information is incorrect, then reject the identity verification request (that is, execute step 307).

其中,鉴权信息是否正确,可以将该鉴权信息,比如帐号和密码与预存的验证信息,比如保存的帐号和密码进行比对来确定,在此不再赘述。Wherein, whether the authentication information is correct can be determined by comparing the authentication information, such as account number and password, with pre-stored verification information, such as saved account number and password, and will not be repeated here.

308、身份验证装置拒绝该身份验证请求。308. The identity verification device rejects the identity verification request.

需说明的是,以上仅仅以该验证码为十进制字符串为例进行说明,应当理解的是,该验证码也可以以其他的形式来表示,比如十六进制字符串或颜色组合等,其实现方式与上述类似,在此不再赘述。It should be noted that the above is only an example of the verification code as a decimal string. It should be understood that the verification code can also be expressed in other forms, such as hexadecimal strings or color combinations. The implementation is similar to the above, and will not be repeated here.

由上可知,本实施例采用在接收到用户的身份验证请求时,根据该身份验证请求生成一个十进制字符串作为验证码,并在确定用户需要输入验证码时,获取用户在触控板上的操作手势,比如点按或轻触等,然后根据该操作手势生成对应的二进制字符串,将验证码转换为二进制字符串,然后将该二进制字符串与验证码转换成的二进制字符串进行比较,若一致,则在确定身份验证请求所携带的鉴权信息正确时,确定身份验证通过,反之,若不一致,则拒绝该身份验证请求,从而实现对用户进行身份验证的目的;该方案在获取用户输入的验证码时,无需通过键盘,而是通过对触控板进行监控来获取,因此,相对于现有技术只能通过键盘来进行输入的技术而言,为用户输入验证码提供了多一份选择,大大方便了用户的操作,有利于提高操作的灵活性、趣味性和互动性。As can be seen from the above, in this embodiment, when the user's identity verification request is received, a decimal character string is generated according to the identity verification request as the verification code, and when it is determined that the user needs to input the verification code, the user's ID on the touch panel is obtained. Operation gestures, such as tap or light touch, etc., and then generate a corresponding binary string according to the operation gesture, convert the verification code into a binary string, and then compare the binary string with the binary string converted from the verification code, If they are consistent, when it is determined that the authentication information carried by the identity verification request is correct, it is determined that the identity verification is passed; When entering the verification code, it is not necessary to pass through the keyboard, but to obtain it by monitoring the touch panel. Therefore, compared with the prior art that can only be input through the keyboard, it provides more information for the user to enter the verification code. The selection of parts greatly facilitates the user's operation and is conducive to improving the flexibility, fun and interactivity of the operation.

实施例四、Embodiment four,

相应的,本发明实施例还提供一种身份验证装置,如图4所示,该身份验证装置包括接收单元401、验证码生成单元402、获取单元403、字符串生成单元404和处理单元405,如下:Correspondingly, the embodiment of the present invention also provides an identity verification device. As shown in FIG. as follows:

(1)接收单元401;(1) receiving unit 401;

接收单元401,用于接收用户的身份验证请求。The receiving unit 401 is configured to receive a user's identity verification request.

其中,该身份验证请求可以携带鉴权信息,比如用户的帐户和密码等,该帐户可以包括邮箱地址、即时通信的号码、用户名称或用户编号等。Wherein, the identity verification request may carry authentication information, such as the user's account and password, and the account may include an email address, an instant messaging number, a user name or a user number, and the like.

(2)验证码生成单元402;(2) verification code generation unit 402;

验证码生成单元402,用于根据该身份验证请求生成验证码。A verification code generating unit 402, configured to generate a verification code according to the identity verification request.

例如,可以在接收到用户的身份验证请求时,比如用户打开登陆界面时,或者用户输入鉴权信息时,又或者,当用户在登陆界面上,点击生成验证码的触发键时,根据预设的策略生成验证码。For example, when the user's identity verification request is received, such as when the user opens the login interface, or when the user enters the authentication information, or when the user clicks the trigger button to generate the verification code on the login interface, according to the preset policy to generate verification codes.

其中,该预设策略可以根据实际应用的需求而定,比如,该验证码可以是随机生成的,也可以按照一定的规律来生成,该验证码可以是二进制字符串,也可以是其他进制的数字,比如十进制或十六进制的数字,甚至,还可以是图片组合或颜色组合,比如男性相片和女性相片的组合,或者黑色和白色的组合、蓝色和红色的组合,等等,在此不再赘述。Among them, the preset strategy can be determined according to the actual application requirements. For example, the verification code can be generated randomly or according to a certain rule. The verification code can be a binary string or other binary system numbers, such as decimal or hexadecimal numbers, or even a combination of pictures or colors, such as a combination of a male photo and a female photo, or a combination of black and white, blue and red, etc., I won't repeat them here.

可选的,为了便于用户操作,在生成验证码时,还可以生成相应的提示信息,以指示操作手势与二进制字符的对应关系。即:Optionally, for the convenience of the user's operation, when generating the verification code, corresponding prompt information may also be generated to indicate the correspondence between the operation gesture and the binary character. which is:

该验证码生成单元402,还可以用于生成提示信息,该提示信息用于指示操作手势与二进制字符的对应关系。The verification code generation unit 402 may also be used to generate prompt information, which is used to indicate the correspondence between operation gestures and binary characters.

例如,若“0”表示轻触,“1”表示点按,则可以提示用户:“其中,0表示轻触,1表示点按,请按顺序输入”。For example, if "0" means light touch and "1" means tap, the user may be prompted: "Among them, 0 means light touch, 1 means tap, please input in order".

又例如,若“1”表示轻触,“0”表示点按,则可以提示用户:“其中,1表示轻触,0表示点按,请按顺序输入”。For another example, if "1" means light touch and "0" means tap, the user may be prompted: "Among them, 1 means light touch, 0 means tap, please input in order".

又例如,若男性相片表示轻触,女性相片表示点按,则可以提示用户:“其中,男性相片表示轻触,女性相片表示点按,请按顺序输入”。For another example, if a male photo indicates a tap, and a female photo indicates a tap, the user may be prompted: "Among them, a male photo indicates a tap, and a female photo indicates a tap, please input in order."

又例如,若黑色表示轻触,白色表示点按,则可以提示用户:“其中,黑色表示轻触,白色表示点按,请按顺序输入”。For another example, if black means light touch and white means click, the user may be prompted: "Among them, black means light touch and white means click, please input in order".

又例如,还可以按照按压的力度的不同来区分输入的信息,比如,可以如下:For another example, it is also possible to distinguish the input information according to the strength of the pressing. For example, it can be as follows:

若“0”表示轻按,“1”表示重按,则可以提示用户:“其中,0表示轻按,1表示重按,请按顺序输入”。If "0" means a light press and "1" means a heavy press, the user may be prompted: "Among them, 0 means a light press, and 1 means a heavy press, please input in order".

或者,若“1”表示轻按,“0”表示重按,则可以提示用户:“其中,1表示轻按,0表示重按,请按顺序输入”。Or, if "1" means a light press and "0" means a heavy press, the user may be prompted: "Among them, 1 means a light press, and 0 means a heavy press, please input in order".

以此类推,在此不再赘述。And so on, no more details here.

需说明的是,除了“轻触”和“点按”,以及“轻按”和“重按”之外,也可以是其他的操作手势,比如“画圈”等,该操作手势与二进制字符的对应关系可以根据实际应用的需求进行设置,在此不再赘述。It should be noted that, in addition to "light touch" and "click", as well as "light press" and "re-press", other operation gestures, such as "circle", etc., can also be used. The corresponding relationship of can be set according to the actual application requirements, which will not be repeated here.

(3)获取单元403;(3) acquisition unit 403;

获取单元403,用于确定用户需要输入验证码时,获取用户在触控板上的操作手势。The acquiring unit 403 is configured to acquire an operation gesture of the user on the touch panel when it is determined that the user needs to input a verification code.

例如,该获取单元403,具体可以用于获取用户根据该提示信息在触控板上的操作手势,比如“点按”或“轻触”等。For example, the acquiring unit 403 may be specifically configured to acquire an operation gesture of the user on the touch panel according to the prompt information, such as "click" or "light touch".

其中,确定用户需要输入验证码的方式可以有多种,比如,当用户点击验证码的输入框时,或者,当输入光标在验证码的输入框时,则可以确定用户需要输入验证码,等等。Among them, there are many ways to determine that the user needs to enter the verification code. For example, when the user clicks the input box of the verification code, or when the input cursor is in the input box of the verification code, it can be determined that the user needs to enter the verification code, etc. Wait.

(4)字符串生成单元404;(4) character string generation unit 404;

字符串生成单元404,用于根据该操作手势生成对应的二进制字符串;A character string generating unit 404, configured to generate a corresponding binary character string according to the operation gesture;

其中,生成二进制字符串的规则可以预先进行设定,例如,可以如下:Wherein, the rules for generating binary strings can be set in advance, for example, as follows:

该字符串生成单元404,具体可以用于确定该操作手势为轻触时,生成字符1;确定该操作手势为点按时,生成字符0;将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。The character string generation unit 404 can specifically be used to generate character 1 when it is determined that the operation gesture is a light touch; generate character 0 when it is determined that the operation gesture is a tap; arrange the generated characters according to the order of the operation gestures to form a binary string.

或者,该字符串生成单元404,具体可以用于确定该操作手势为轻触时,生成字符0;确定该操作手势为点按时,生成字符1;将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Alternatively, the character string generation unit 404 can specifically be configured to generate character 0 when it is determined that the operation gesture is a light touch; generate character 1 when it is determined that the operation gesture is a tap; arrange the generated characters according to the order of the operation gestures, form a binary string.

或者,该字符串生成单元404,具体可以用于确定该操作手势为轻按时,生成字符0;确定该操作手势为重按时,生成字符1;将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Alternatively, the character string generation unit 404 can be specifically configured to generate character 0 when it is determined that the operation gesture is a light press; generate character 1 when it is determined that the operation gesture is a heavy press; arrange the generated characters in the order of the operation gestures to form binary string.

又或者,该字符串生成单元404,具体可以用于确定该操作手势为轻按时,生成字符1;确定该操作手势为重按时,生成字符0;将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Alternatively, the character string generation unit 404 can specifically be configured to generate character 1 when determining that the operation gesture is a light press; generate character 0 when determining that the operation gesture is a heavy press; arrange the generated characters according to the order of the operation gestures, form a binary string.

需说明的是,该生成的规则与提示信息相对应,当然,还存在有其他的方式,在此不再赘述。It should be noted that the generated rule corresponds to the prompt information, of course, there are other ways, which will not be repeated here.

(5)处理单元405;(5) processing unit 405;

处理单元405,用于按照预置规则将该二进制字符串与该验证码进行匹配,若匹配,则在确定该鉴权信息正确时,确定身份验证通过,若不匹配,则拒绝该身份验证请求。The processing unit 405 is configured to match the binary string with the verification code according to preset rules, and if it matches, when it is determined that the authentication information is correct, it is determined that the identity verification is passed, and if it does not match, the identity verification request is rejected .

例如,若该验证码为二进制字符串,则For example, if the verification code is a binary string, then

该处理单元405,具体可以用于确定该操作手势对应的二进制字符串与该验证码是否一致;若一致,则确定该操作手势对应的二进制字符串与该验证码匹配;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配。The processing unit 405 can be specifically configured to determine whether the binary string corresponding to the operation gesture is consistent with the verification code; if they are consistent, determine that the binary character string corresponding to the operation gesture matches the verification code; The binary string corresponding to the operation gesture does not match the verification code.

又例如,若该验证码为十进制数字组合或十六进制数字组合,则:For another example, if the verification code is a combination of decimal numbers or hexadecimal numbers, then:

该处理单元405,具体可以用于将该十进制数字组合或十六进制数字组合转换为二进制字符串;确定该操作手势对应的二进制字符串与转换得到的二进制字符串是否一致;若一致,则确定该操作手势对应的二进制字符串与该验证码匹配;若不一致,则确定该操作手势对应的二进制字符串与该验证码不匹配。The processing unit 405 can be specifically configured to convert the combination of decimal numbers or hexadecimal numbers into a binary string; determine whether the binary string corresponding to the operation gesture is consistent with the converted binary string; if they are consistent, then It is determined that the binary string corresponding to the operation gesture matches the verification code; if not, it is determined that the binary character string corresponding to the operation gesture does not match the verification code.

需说明的是,其中,在将十进制数字组合或十六进制数字组合转换为二进制字符串时,可以将该十进制数字组合或十六进制数字组合中的每一个数字转换为二进制数,然后按顺序进行排序组合,也可以直接将该十进制数字组合或十六进制数字组合当作一个数字进行转换,具体转换规则可以根据实际应用的需求而定,但是需要与用户输入时所遵守的转换规则保持一致,在此不再赘述。It should be noted that, when converting a combination of decimal numbers or a combination of hexadecimal numbers into a binary string, each digit in the combination of decimal numbers or hexadecimal numbers can be converted into a binary number, and then Sort and combine in order, or convert the decimal or hexadecimal combination directly as a number. The specific conversion rules can be determined according to the actual application requirements, but it needs to be consistent with the conversion that the user inputs. The rules remain the same and will not be repeated here.

此外,处理单元405,还可以用于在确定该二进制字符串与该验证码匹配时,若确定该鉴权信息不正确,则拒绝该身份验证请求。In addition, the processing unit 405 may also be configured to reject the identity verification request if it is determined that the authentication information is incorrect when it is determined that the binary string matches the verification code.

具体实施时,以上各个单元可以作为独立的实体来实现,也可以进行任意组合,作为同一或若干个实体来实现,以上各个单元的具体实施可参见前面的方法实施例,在此不再赘述。During specific implementation, each of the above units may be implemented as an independent entity, or may be combined arbitrarily as the same or several entities. The specific implementation of each of the above units may refer to the previous method embodiments, and will not be repeated here.

该身份验证装置具体可以集成在终端、服务器或其他需要进行身份验证的设备中。Specifically, the identity verification device may be integrated in a terminal, a server, or other devices that require identity verification.

由上可知,本实施例的身份验证装置的采用在接收到用户的身份验证请求时,由验证码生成单元402根据该身份验证请求生成验证码,并由获取单元403在确定用户需要输入验证码时,获取用户在触控板上的操作手势,然后由字符串生成单元404根据该操作手势生成对应的二进制字符串,并由处理单元405按照预置规则将该二进制字符串与验证码进行匹配,若匹配,则在确定身份验证请求所携带的鉴权信息正确时,确定身份验证通过,反之,若不匹配,则拒绝该身份验证请求,从而实现对用户进行身份验证的目的;该方案在获取用户输入的验证码时,无需通过键盘,而是通过对触控板进行监控来获取,因此,相对于现有技术只能通过键盘来进行输入的技术而言,为用户输入验证码提供了多一份选择,大大方便了用户的操作,有利于提高操作的灵活性、趣味性和互动性。As can be seen from the above, when the identity verification device of this embodiment receives the user's identity verification request, the verification code generation unit 402 generates a verification code according to the identity verification request, and the acquisition unit 403 determines that the user needs to input the verification code. , acquire the user's operation gesture on the touch panel, then the character string generation unit 404 generates a corresponding binary string according to the operation gesture, and the processing unit 405 matches the binary string with the verification code according to preset rules , if it matches, then when it is determined that the authentication information carried by the identity verification request is correct, it is determined that the identity verification is passed; otherwise, if it does not match, the identity verification request is rejected, so as to achieve the purpose of authenticating the user; the scheme is in When obtaining the verification code input by the user, it is not necessary to use the keyboard, but to obtain it by monitoring the touch panel. Therefore, compared with the existing technology that can only be input through the keyboard, it provides more opportunities for the user to enter the verification code. One more choice greatly facilitates the user's operation and is conducive to improving the flexibility, fun and interactivity of the operation.

实施例四、Embodiment four,

此外,本发明实施例还提供一种身份验证设备,可以包括本发明实施例所提供的任一种身份验证装置,具体可参见实施例三,例如,可以如下:In addition, the embodiment of the present invention also provides an identity verification device, which may include any identity verification device provided in the embodiment of the present invention. For details, please refer to Embodiment 3. For example, it may be as follows:

身份验证装置,用于接收用户的身份验证请求,该身份验证请求携带鉴权信息,根据该身份验证请求生成验证码,确定用户需要输入验证码时,获取用户在触控板上的操作手势,根据该操作手势生成对应的二进制字符串,按照预置规则将该二进制字符串与该验证码进行匹配,若匹配,则在确定该鉴权信息正确时,确定身份验证通过,否则,若不匹配,则拒绝该身份验证请求。The identity verification device is configured to receive the user's identity verification request, the identity verification request carries authentication information, generate a verification code according to the identity verification request, and obtain the user's operation gesture on the touch panel when it is determined that the user needs to input the verification code, Generate the corresponding binary string according to the operation gesture, and match the binary string with the verification code according to the preset rules. If it matches, when it is determined that the authentication information is correct, it is determined that the identity verification is passed; otherwise, if it does not match , the authentication request is denied.

例如,在确定该操作手势为轻触时,生成字符1,确定该操作手势为点按时,生成字符0,然后,将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。For example, when it is determined that the operation gesture is a light touch, a character 1 is generated; when it is determined that the operation gesture is a tap, a character 0 is generated, and then the generated characters are arranged according to the sequence of the operation gestures to form a binary string.

或者,又例如,在确定该操作手势为轻触时,生成字符0,确定该操作手势为点按时,生成字符1,然后,将生成的字符按照操作手势的顺序进行排列,组成二进制字符串。Or, for another example, when the operation gesture is determined to be light touch, character 0 is generated; when the operation gesture is determined to be tap, character 1 is generated, and then the generated characters are arranged according to the sequence of the operation gestures to form a binary string.

该身份验证设备具体可以为终端、服务器或其他需要进行身份验证的设备等,以上操作的具体实施可参见前面的实施例,在此不再赘述。The identity verification device may specifically be a terminal, a server, or other devices that need to perform identity verification. The specific implementation of the above operations may refer to the previous embodiments, and details will not be repeated here.

由于该身份验证设备可以包括本发明实施例所提供的任一种身份验证装置,因此,可以实现本发明实施例所提供的任一种身份验证装置所能实现的有益效果,相见前面的实施例,在此不再赘述。Since the identity verification device can include any kind of identity verification device provided by the embodiment of the present invention, it can achieve the beneficial effects that any kind of identity verification device provided by the embodiment of the present invention can achieve. See the previous implementation example, which will not be repeated here.

本领域普通技术人员可以理解上述实施例的各种方法中的全部或部分步骤是可以通过程序来指令相关的硬件来完成,该程序可以存储于一计算机可读存储介质中,存储介质可以包括:只读存储器(ROM,Read Only Memory)、随机存取记忆体(RAM,Random Access Memory)、磁盘或光盘等。Those of ordinary skill in the art can understand that all or part of the steps in the various methods of the above-mentioned embodiments can be completed by instructing related hardware through a program, and the program can be stored in a computer-readable storage medium, and the storage medium can include: Read-only memory (ROM, Read Only Memory), random access memory (RAM, Random Access Memory), magnetic disk or optical disk, etc.

以上对本发明实施例所提供的一种身份验证方法和装置进行了详细介绍,本文中应用了具体个例对本发明的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本发明的方法及其核心思想;同时,对于本领域的技术人员,依据本发明的思想,在具体实施方式及应用范围上均会有改变之处,综上所述,本说明书内容不应理解为对本发明的限制。The above is a detailed introduction to an identity verification method and device provided by the embodiment of the present invention. In this paper, specific examples are used to illustrate the principle and implementation of the present invention. The description of the above embodiment is only used to help understand the present invention. method and its core idea; at the same time, for those skilled in the art, according to the idea of the present invention, there will be changes in the specific implementation and scope of application. Invention Limitations.

Claims (14)

1. a kind of auth method, it is characterised in that include:
The authentication request of receive user, the authentication request carries authentication information;
Identifying code is generated according to the authentication request;
When determining that user needs input validation code, user's operating gesture on the touch pad is obtained;
Corresponding string of binary characters is generated according to the operating gesture;
The string of binary characters is matched with the identifying code according to presetting rule;
If matching, when it is determined that the authentication information is correct, determines that authentication passes through;
If mismatching, refuse the authentication request.
2. method according to claim 1, it is characterised in that described to be generated according to the operating gesture Corresponding string of binary characters, including:
When determining the operating gesture to touch, character 1 is generated;
When determining the operating gesture to press, character 0 is generated;
The character of generation is arranged according to the order of operating gesture, string of binary characters is constituted.
3. method according to claim 1, it is characterised in that described to be generated according to the operating gesture Corresponding string of binary characters, including:
When determining the operating gesture to touch, character 0 is generated;
When determining the operating gesture to press, character 1 is generated;
The character of generation is arranged according to the order of operating gesture, string of binary characters is constituted.
4. the method according to any one of claims 1 to 3, it is characterised in that the identifying code is two System character string, then it is described to carry out the string of binary characters and the identifying code according to presetting rule Match somebody with somebody, including:
Determine whether the corresponding string of binary characters of the operating gesture is consistent with the identifying code;
If consistent, it is determined that the corresponding string of binary characters of the operating gesture is matched with the identifying code;
If inconsistent, it is determined that the corresponding string of binary characters of the operating gesture and the identifying code are not Match somebody with somebody.
5. the method according to any one of claims 1 to 3, it is characterised in that the identifying code is ten Binary digits are combined or hexadecimal digit combination, then it is described according to presetting rule by the string of binary characters Matched with the identifying code, including:
It is string of binary characters by ten's digit combination or hexadecimal digit Combination conversion;
Determine whether are the corresponding string of binary characters of the operating gesture and the string of binary characters being converted to Unanimously;
If consistent, it is determined that the corresponding string of binary characters of the operating gesture is matched with the identifying code;
If inconsistent, it is determined that the corresponding string of binary characters of the operating gesture and the identifying code are not Match somebody with somebody.
6. the method according to any one of claims 1 to 3, it is characterised in that it is determined that described two enter When character string processed is matched with the identifying code, also include:
If it is determined that the authentication information is incorrect, then refuse the authentication request.
7. the method according to any one of claims 1 to 3, it is characterised in that described according to the body When part checking request generates identifying code, also include:
Information is generated, the information is used to indicate operating gesture pass corresponding with binary-coded character System;
It is described to obtain user's operating gesture on the touch pad, including:User is obtained according to the information Operating gesture on the touch pad.
8. a kind of authentication means, it is characterised in that include:
Receiving unit, for the authentication request of receive user, the authentication request carries authentication letter Breath;
Identifying code signal generating unit, for generating identifying code according to the authentication request;
Acquiring unit, during for determining that user needs input validation code, obtains user's operation on the touch pad Gesture;
Text string generation unit, for generating corresponding string of binary characters according to the operating gesture;
Processing unit, for carrying out the string of binary characters and the identifying code according to presetting rule Match somebody with somebody, if matching, when it is determined that the authentication information is correct, determines that authentication passes through, if mismatching, Then refuse the authentication request.
9. authentication means according to claim 8, it is characterised in that
The text string generation unit, during specifically for determining the operating gesture to touch, generates character 1; When determining the operating gesture to press, character 0 is generated;By generate character according to operating gesture order Arranged, constituted string of binary characters.
10. authentication means according to claim 8, it is characterised in that
The text string generation unit, during specifically for determining the operating gesture to touch, generates character 0; When determining the operating gesture to press, character 1 is generated;By generate character according to operating gesture order Arranged, constituted string of binary characters.
11. authentication means according to any one of claim 8 to 10, it is characterised in that described Identifying code is string of binary characters, then:
The processing unit, specifically for determining that the corresponding string of binary characters of the operating gesture is tested with described Whether card code is consistent;If consistent, it is determined that the corresponding string of binary characters of the operating gesture and the checking Code matching;If inconsistent, it is determined that the corresponding string of binary characters of the operating gesture is with the identifying code not Matching.
12. authentication means according to any one of claim 8 to 10, it is characterised in that described Identifying code is that ten's digit is combined or hexadecimal digit combination, then:
The processing unit, specifically for the ten's digit is combined or hexadecimal digit Combination conversion For string of binary characters;Determine the corresponding string of binary characters of the operating gesture and the binary system being converted to Whether character string is consistent;If consistent, it is determined that the corresponding string of binary characters of the operating gesture is tested with described Card code matching;If inconsistent, it is determined that the corresponding string of binary characters of the operating gesture and the identifying code Mismatch.
13. authentication means according to any one of claim 8 to 10, it is characterised in that
The processing unit, is additionally operable to when it is determined that the string of binary characters is matched with the identifying code, if Determine that the authentication information is incorrect, then refuse the authentication request.
14. authentication means according to any one of claim 8 to 10, it is characterised in that
The identifying code signal generating unit, is additionally operable to generate information, and the information is used to indicate operation The corresponding relation of gesture and binary-coded character;
The acquiring unit, during specifically for determining that user needs input validation code, obtains user according to described Information operating gesture on the touch pad.
CN201510703867.8A 2015-10-26 2015-10-26 Identity verification method and device Pending CN106612181A (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN201510703867.8A CN106612181A (en) 2015-10-26 2015-10-26 Identity verification method and device
PCT/CN2016/083105 WO2017071192A1 (en) 2015-10-26 2016-05-24 Identity verification method and apparatus
US15/817,014 US10657244B2 (en) 2015-10-26 2017-11-17 Identity authentication method and apparatus

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510703867.8A CN106612181A (en) 2015-10-26 2015-10-26 Identity verification method and device

Publications (1)

Publication Number Publication Date
CN106612181A true CN106612181A (en) 2017-05-03

Family

ID=58614027

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510703867.8A Pending CN106612181A (en) 2015-10-26 2015-10-26 Identity verification method and device

Country Status (2)

Country Link
CN (1) CN106612181A (en)
WO (1) WO2017071192A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111160369B (en) * 2019-12-25 2024-03-05 携程旅游信息技术(上海)有限公司 Method, system, electronic equipment and storage medium for cracking Chinese character verification code
CN117768197A (en) * 2023-05-18 2024-03-26 洪碧群 Logging in big data blockchain cloud platform by means of intelligent handheld mobile terminal

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104023029A (en) * 2014-06-19 2014-09-03 百度在线网络技术(北京)有限公司 Method and device for verifying verification codes
CN104778397A (en) * 2014-01-15 2015-07-15 联想(新加坡)私人有限公司 Information processing device and method thereof
CN105184126A (en) * 2015-08-27 2015-12-23 广东欧珀移动通信有限公司 A password setting method, verification method and terminal

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9147058B2 (en) * 2012-10-12 2015-09-29 Apple Inc. Gesture entry techniques
CN104580117B (en) * 2013-10-28 2018-07-27 深圳市腾讯计算机系统有限公司 identity verification method, device and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104778397A (en) * 2014-01-15 2015-07-15 联想(新加坡)私人有限公司 Information processing device and method thereof
CN104023029A (en) * 2014-06-19 2014-09-03 百度在线网络技术(北京)有限公司 Method and device for verifying verification codes
CN105184126A (en) * 2015-08-27 2015-12-23 广东欧珀移动通信有限公司 A password setting method, verification method and terminal

Also Published As

Publication number Publication date
WO2017071192A1 (en) 2017-05-04

Similar Documents

Publication Publication Date Title
CN102523213B (en) Server and terminal authenticating method and server and terminal
CN105825382B (en) A mobile payment method and electronic device
CN104683114B (en) Based on the identity identifying method of finger print information
WO2016145992A1 (en) Method and corresponding device for starting service through voice in communication software
EP2875606A1 (en) Method and system of login authentication
CN104253818B (en) Server, terminal authentication method and server, terminal
US11301862B2 (en) Secure transfer of tokens between devices
CN105227520B (en) A kind of account password setting and the method and system of authenticating user identification
CN106101451A (en) SMS processing method, mobile terminal
CN107480513B (en) Authentication implementation method and device, computer device and readable storage medium
CN106850503A (en) One kind is exempted to log in identity identifying method and device
US10657244B2 (en) Identity authentication method and apparatus
CN106921655A (en) A kind of business authorization method and device
TW201544983A (en) Data communication method and system, client and server
CN105653993B (en) A kind of cipher-code input method, device and electronic equipment
WO2023174091A9 (en) Home-based business startup pre-authentication apparatus and home-based business startup pre-authentication method
CN106612181A (en) Identity verification method and device
WO2015032255A1 (en) Intelligent key device, mobile terminal and dynamic password output method and system
CN107026818A (en) A kind of method of cipher authentication, equipment and application server
CN106710033A (en) Door control opening method and device
CN106921632A (en) Hotspot connection control method and device
CN106936840B (en) Information prompting method and device
CN108830073B (en) Unlocking method, device, terminal and computer readable storage medium
WO2017031653A1 (en) Method and mobile terminal for authenticating account login via gesture and number information
CN204046622U (en) A kind of cipher key storage device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170503