CN106713240A - Cross-domain multichannel service information confirming method - Google Patents

Cross-domain multichannel service information confirming method Download PDF

Info

Publication number
CN106713240A
CN106713240A CN201510785243.5A CN201510785243A CN106713240A CN 106713240 A CN106713240 A CN 106713240A CN 201510785243 A CN201510785243 A CN 201510785243A CN 106713240 A CN106713240 A CN 106713240A
Authority
CN
China
Prior art keywords
domain
information
platform
user
business
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510785243.5A
Other languages
Chinese (zh)
Inventor
胡卫兵
刘树权
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nanjing Star Network Technology Co Ltd Ye Hui Jie
Original Assignee
Nanjing Star Network Technology Co Ltd Ye Hui Jie
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nanjing Star Network Technology Co Ltd Ye Hui Jie filed Critical Nanjing Star Network Technology Co Ltd Ye Hui Jie
Priority to CN201510785243.5A priority Critical patent/CN106713240A/en
Publication of CN106713240A publication Critical patent/CN106713240A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/18Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The invention provides a cross-domain multichannel service information confirming method. The cross-domain multichannel service information confirming method is used for transmission and confirmation of data between a service platform and multiple domains and comprises the steps of inputting first information in a platform corresponding to one domain and sending the information to the service platform through a transmission channel corresponding to the domain by a user; sending different instructions to platforms corresponding to the rest domains through a transmission channel corresponding to each domain after the service platform receives the first information; by the user, inputting information based on the instruction sent to the domain in the platform corresponding to each rest domain and sending the information to the service platform through the transmission channel corresponding to the domain; and by the service platform, matching all the information input in the platform corresponding to each domain by the user, and if all the information are matched successfully, indicating that the service information is confirmed.

Description

A kind of cross-domain multichannel business information confirmation method
Technical field
The present invention relates to a kind of communication technology, particularly a kind of cross-domain multichannel business information confirmation method.
Background technology
The transaction such as internet financial development, account transfer, payment of online consumption turns into main flow, from user friendly angle, have also appeared quick payment this means for being widely used.On-line payment and quick payment, it is not that, by the interface operation of credit card issuer, the hardware U-shield of bank does not just arrange use to be substantially all;The main verification mode of such channel is exactly the short message verification code of bound mobile phone, and all kinds of bank cards occurred from present society are by the situation of illegal online consumption, and short message verification code has been very unreliable.Most the underlying cause is exactly that in smart mobile phone, short message can be to be read by all kinds of APP, can be changed with additions and deletions among these, as long as having permission, and most domestic consumers, it is the importance for being ignorant of this authority, when APP is inquired, it is substantially directly permission.
In addition, happened occasionally by the event that social account is stolen in internet, for example:Icloud account numbers incident of leakage, 12306 account number incident of leakage of apple etc..The reason for causing above mentioned problem mainly some network hackers or wooden horse are caused.Because account number and password are input into the corresponding platform of the Internet domain, therefore user profile is easy to by while losing.There is fundamental issue in current account number authentication mode.
The content of the invention
It is an object of the invention to provide a kind of cross-domain multichannel business information confirmation method, the method is used for the transmission and confirmation of data between business platform and multiple domains, including:User is input into the first information and the information is sent to business platform by transmission channel corresponding with the domain in the corresponding platform in wherein domain;Business platform sends different instruction by transmission channel corresponding with each domain after the first information is received to the corresponding platform of its co-domain;User is sent to business platform based on the information of instruction input one in being sent in the domain and by information in the corresponding platform in remaining each domain by transmission channel corresponding with the domain;Business platform is matched to all information that user is input into the corresponding platform in each domain, if the success of all information matches, business information is confirmed.
Used as a modification of the present invention, the business platform distributes a unique id information to user profile;The id information is also stored in the corresponding user platform in each domain;The id information is sent to business platform simultaneously with the information of user input by transmission channel corresponding with the domain;Business platform is also matched in addition to all information being input into the corresponding platform in each domain to user are matched to the id information that it is received, if above- mentioned information is matched, business information is confirmed.
The present invention compared with prior art, with advantages below:(1) user is when carrying out business information and confirming, user profile is input into by different domain, user profile is difficult to be stolen, and reduces the security risk for existing in the corresponding user platform input user profile in same domain in the past;(2) business platform distributes unique id information to user profile, and carries out matching certification to the id information, safety coefficient when increased business information confirmation from second approach.
The present invention is described further with reference to Figure of description.
Brief description of the drawings
Fig. 1 is the system schematic that method of the present invention is applied.
Fig. 2 is a kind of SIM user platform schematic diagram of the present invention.
Fig. 3 is the first embodiment method flow diagram of the present invention.
Fig. 4 is second embodiment method flow diagram of the present invention.
Fig. 5 is the schematic diagram that user registers on business platform.
Fig. 6 (a) is that user is input into information schematic diagram on the corresponding website of the Internet domain.
Fig. 6 (b) is that the corresponding SIM ejection of communication domain confirms interface schematic diagram.
Fig. 6 (c) is the schematic diagram of the inputting interface input information of the corresponding SIM ejection in telex network domain.
Fig. 6 (d) is the schematic diagram that business platform backstage is matched to user input information.
Fig. 7 (a) is the schematic diagram that user is input into information on ATM.
Fig. 7 (b) is the schematic diagram that the corresponding SIM of communication domain receives the confirmation instruction ejection confirmation interface that ATM sends.
Fig. 8 is certification certificate schematic diagram.
Specific embodiment
If user is want when a certain business platform is operated, the method provided by the present invention carries out business information confirmation, business platform backstage no longer carries out the checking of user profile using the input mode of user profile on the user platform in single domain pair in current techniques field, but use various domains multiple transmission channel to obtain user profile, after business platform is in cross-check information, opens a certain region to user and operated for user.Business platform of the present invention can be following multiple embodiment:Electric business platform, ATM platforms, payment platform, immediate communication platform, enterprise management platform etc..The domain and transmission channel can include following multiple embodiment:The Internet domain, communication domain and the transmission channel corresponding to them.The corresponding user platform in the domain includes following examples:The business platforms one such as the corresponding website of business platform, SIM cards of mobile phones surely set up data communication relation (as shown in Figure 1) between above-mentioned domain and transmission channel.
In the present invention, so-called cross-domain multichannel, the account number authentication information that i.e. user determines in business platform, by various channel separations such as internet passage and data communication channel, receive input on different passages, and be authenticated to business platform backstage by different channel transfers, it is achieved thereby that the high security of account number authentication information;Simultaneously as identity information is dispersed on different passages, the data on a passage are only got, be without in all senses.Under present circumstances, the data SMS passage of telecom operators is very safe.
In the present invention, the Embedded A PP of so-called intelligent SIM (UIM) card:Embedded APP, completes the input and transmission of authentication information, it is ensured that sensitive information will not be leaked in the unsafe conditions of user terminal in SIM cards of mobile phones;Embedded A PP runs on the COS on card, isolates with mobile phone OS, and the APP on mobile phone can not get any information (as shown in Figure 2).
In the present invention, so-called OTA (Over-the-Air), i.e. over the air, are the technologies for carrying out remote management to SIM data and application by the air interface of mobile communication technology.Air interface can be realized using WAP, NET and short message service technology.The application of OTA technologies so that mobile communication can not only provide voice-and-data service, and can also provide new business download.And under OTA technologies, SIM only realizes that a safety receives information, and the trusted channel of safe transmission information does not influence the user authentication system of user, while the small application of lightweight, is readily applicable to the distribution of OTA modes, upgrading is easily promoted.
In the present invention, in order to allow business platform backstage instruction can be sent in into user platform by the transmission platform corresponding to each domain, need to be bound the relevant information of user platform with business platform backstage, for example the information such as business platform storage similar phone number, IP address.
With reference to a kind of method that Fig. 3, the present invention are provided, it is comprised the following steps:
Step S101, user's log-on message on business platform;
Step S102, wherein one information of the user in input log-on message in the corresponding user platform in wherein domain, information reaches business platform backstage by the corresponding transmission channel in the domain domain;
Step S103, after business platform backstage receives the information in step S102, sends different instruction, it is desirable to which user is according to the instruction by certain information input in log-on message to the corresponding user platform in the domain to its co-domain by the corresponding transmission channel of domain corresponding field;
Relevant information is filled in step S104, the instruction that user sends on the corresponding platform of not same area according to business platform, and is sent to business platform backstage by corresponding transmission channel;
Step S105, business platform is matched to the user profile for sending back, if the user profile for receiving is consistent with log-on message, is opened a certain region to user and is operated for user;If information matches are unsuccessful, in a certain domain, corresponding user platform shows " unsuccessful " information to user.
With reference to Fig. 5, in step S101, used as a kind of embodiment, the information that user registers on business platform at least includes the relevant information of account name, password and each domain correspondence user platform, for example:Account is entitled " path in woods ", and password is " 28375sjwhe#wr ", and user platform relevant information can be cell-phone number, network ip address, Bank Account Number etc..Typically registered on the corresponding website of business platform by internet in the step, register the information for completing and be stored in the database on business platform backstage, in case being called in later step.Fig. 5 has been merely given as a kind of simple schematic diagram by website registered user's information.User can also be registered by other conventional means, for example the mode such as mobile phone A PP.
With reference to Fig. 6 (a), in step s 102, as a kind of embodiment, user opens the corresponding website of XX business platforms in computer browser, if user wants to use some functions on the website, need to carry out the confirmation of identity, after identity validation, business information could be confirmed by the business platform, by method of the present invention, user (i.e. business platform website) should be input into an information on the corresponding user platform of the Internet domain, user input its account number be required in the present embodiment, i.e., " path in woods ".After " path in woods " is input into, " confirmation " button that user is clicked on website (is only instruction that the website starts to business platform transmission information, can realize by other means), " path in woods " information is sent to business platform backstage by the website by the Internet transmission passage
In step s 103, the relevant information of its co-domain user platform in log-on message is called, and instruct by each transmission to user platform with corresponding transmission channel in business platform backstage after the information for receiving " path in woods ".
With reference to Fig. 6 (b) and Fig. 6 (c), in step S104, used as a kind of embodiment, the corresponding SIM of communication domain of user receives the instruction for filling in account number cipher that business platform sends.The SIM cards of mobile phones has downloaded APP and insertion by OTA technologies first.When SIM receives business platform to be instructed, the APP on SIM ejects confirmation interface first, and user selects " confirmation " or " cancellation " at the interface according to actual conditions.If confirming, SIM ejection interface for password input, after user input password " 28375sjwhe#wr " and confirmation on the surface, the encrypted message is sent to business platform backstage by the corresponding communication domain of SIM.In this course, if user is input password as the embodiment is described, in order to lift the security of password, business platform backstage is encrypted operation to password, is decrypted using md5 encryption in the present invention, but be not limited to this kind of mode.
With reference to Fig. 6 (d), in step S105, as a kind of embodiment, after business platform receives the user profile that a user platform sends back, the business information stored in the background data base of domain is checked, if checking successfully, identity information is confirmed, and business information is also confirmed immediately.
In order to lift the security of business information confirmation, after business platform registration, business platform matches a unique ID information and is matched with the user's registration information user, and the id information is also stored in the corresponding user platform in each domain.When information is checked, increase the matching process of id information.Specific operation process is following (as shown in Figure 4):
Step S201, user's log-on message on business platform, the id information that business platform backstage uniquely determines for the information distribution one of user's registration;
Step S202, wherein one information of the user in input log-on message in the corresponding user platform in wherein domain, information reaches business platform backstage by the corresponding transmission channel in the domain domain;
Step S203, after information in business platform backstage receiving step S202, business platform sends different instruction to its co-domain by the corresponding transmission channel of domain corresponding field, it is desirable to which user is according to the instruction by certain information input in log-on message to the corresponding user platform in the domain;
Relevant information is filled in step S204, the instruction that user sends on the corresponding platform of not same area according to business platform, and is sent to business platform backstage input information and id information by corresponding transmission channel;
Step S205, business platform is matched to the user profile for sending back, if the user profile for receiving, id information are consistent with the id information that log-on message and business platform are distributed, are opened a certain region to user and is operated for user;If there is an information matches unsuccessful, in a certain domain, corresponding user platform shows " unsuccessful " information to user.
User's operation for convenience, user can be input into necessary user profile on a user platform, after business platform receives user profile, instruction is sent to the corresponding user platform of its co-domain, the instruction is instructed for confirmation, but user platform receives the instruction, user chooses whether to receive the instruction according to actual conditions.Detailed process is as follows:
Step S301, user's log-on message on business platform;
Step S302, the necessary information that can determine that business information of the user in input log-on message in the corresponding user platform in wherein domain, information reaches business platform backstage by the corresponding transmission channel in the domain domain;
Step S303, after business platform backstage receives the information in step S202, is sent by the corresponding transmission channel of domain corresponding field to its co-domain and confirms instruction;
Step S304, user selects " confirmation " or " cancellation " according to actual conditions, and is sent to business platform backstage by corresponding transmission channel;
Step S305, business platform is matched to the user profile for sending back, if the user profile for receiving is consistent with log-on message, and user input is " confirmation " information, then open a certain region to user operates for user;If it is " cancellation " information that information matches are unsuccessful or user input, in a certain domain, corresponding user platform shows " unsuccessful " information to user.
According to the above method, so that user withdraws the money on ATM as an example (shown in such as Fig. 7 (a) (b)).
Because record has the relevant user information of user in bank card and bank backstage, therefore when user withdraws the money in ATM, bank card is inserted, after ATM input passwords, the method is applied to, in step S302 and S303, ATM backstages are read user's registration information and sent to user platform and confirm instruction.
In step s 304, now user platform is SIM, and the SIM has passed through OTA technologies and downloaded corresponding APP.When SIM receives the instruction that ATM backstages send, ejection confirms interface, and user selects " confirmation " or " cancellation " at the interface according to actual conditions.
Improved as one kind of the above method, on the confirmation interface of SIM ejection, there may be more information makes the user's definitely business oneself to be handled, such as including withdrawal bank, withdraw funds, confirmation etc..
In above-described embodiment, it is also possible to add the confirmation process of id information.
User's operation for convenience, the certification certificate that can be bound in user platform download one and business platform log-on message is simultaneously installed, and when user platform receives business platform to be instructed, relevant user information is sent to business platform by certification certificate.Its detailed process is as follows:
Step S401, user's log-on message on business platform;
Step S402, the certification certificate that user downloads on business platform and log-on message is bound to user platform;
Step S403, wherein one information of the user in input log-on message in the corresponding user platform in wherein domain, information reaches business platform backstage by the corresponding transmission channel in the domain domain;
Step S404, after business platform backstage receives the information in step S403, instruction is sent to its co-domain by the corresponding transmission channel in domain;
Step S405, the certification certificate in user platform sends to business platform user profile;
Step S406, business platform is matched to the user profile for sending back, if the user profile for receiving is consistent with log-on message, is operated for user a certain region is opened to user;If information matches are unsuccessful, in a certain domain, corresponding user platform shows " unsuccessful " information to user.
In above-described embodiment, it is also possible to add the confirmation process of id information.
In step S402, as an embodiment, when user prepares to install certification certificate in SIM, need to be downloaded by OTA and be embedded in, described certification certificate includes the information that user registers on business platform, if as shown in figure 8, the information registered on business platform of user as:Account number " path in woods ", password " 28375sjwhe#wr ", then the information of record is in certification certificate:Account number " path in woods ", password " 28375sjwhe#wr ".

Claims (7)

1. a kind of cross-domain multichannel business information confirmation method, the method is used for data between business platform and multiple domains Transmission and confirmation, it is characterised in that including:
User is input into the first information and by the information by corresponding with the domain in the corresponding platform in wherein domain Transmission channel is sent to business platform,
Business platform is corresponding to its co-domain by transmission channel corresponding with each domain after the first information is received Platform send different instruction,
User is in the corresponding platform in remaining each domain based on the information of instruction input one in being sent in the domain and general Information is sent to business platform by transmission channel corresponding with the domain,
Business platform is matched to all information that user is input into the corresponding platform in each domain, if all letters The match is successful for breath, and business information is confirmed;
The user profile that the information of each domain correspondence platform of user input determines for user in business platform.
2. method according to claim 1, it is characterised in that the method also includes:
The business platform distributes a unique id information to user profile;
The id information is also stored in the corresponding user platform in each domain;
The id information is sent to business simultaneously with the information of user input by transmission channel corresponding with the domain Platform;
Business platform is also right in addition to all information being input into the corresponding platform in each domain to user are matched Its id information for receiving is matched, if above- mentioned information is matched, business information is confirmed.
3. method according to claim 1, it is characterised in that described multiple domains at least include the Internet domain And communication domain.
4. method according to claim 3, it is characterised in that the corresponding platform of the communication domain is SIM.
5. method according to claim 1, it is characterised in that if described user profile password, business Platform is encrypted operation to the encrypted message.
6. the method according to Claims 1 to 5 any one, it is characterised in that described at least one its co-domain pair One certification certificate is set in the platform answered, and the authentication proof school bag includes the user profile of business platform determination, works as setting When the corresponding domain of platform of certification certificate receives the instruction of business platform, the user profile that will be recorded in certification certificate Sent to business platform by the corresponding transmission channel in the domain.
7. the method according to Claims 1 to 5 any one, it is characterised in that business platform is to its co-domain pair The platform answered includes validating that instruction in sending different instruction, if the corresponding platform in a domain receives confirmation instruction, After user confirms, confirmation is sent to business platform by the corresponding transmission channel in the domain.
CN201510785243.5A 2015-11-16 2015-11-16 Cross-domain multichannel service information confirming method Pending CN106713240A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510785243.5A CN106713240A (en) 2015-11-16 2015-11-16 Cross-domain multichannel service information confirming method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510785243.5A CN106713240A (en) 2015-11-16 2015-11-16 Cross-domain multichannel service information confirming method

Publications (1)

Publication Number Publication Date
CN106713240A true CN106713240A (en) 2017-05-24

Family

ID=58931947

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510785243.5A Pending CN106713240A (en) 2015-11-16 2015-11-16 Cross-domain multichannel service information confirming method

Country Status (1)

Country Link
CN (1) CN106713240A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109714297A (en) * 2017-10-26 2019-05-03 中国电信股份有限公司 Safe verification method, system and user terminal and application platform

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101577917A (en) * 2009-06-16 2009-11-11 深圳市星龙基电子技术有限公司 Safe dynamic password authentication method based on mobile phone
CN102819799A (en) * 2012-07-26 2012-12-12 郑州信大捷安信息技术股份有限公司 Multi-channel safety authenticating system and authenticating method based on U-Key
CN103139179A (en) * 2011-12-01 2013-06-05 捷而思股份有限公司 Multi-channel active type network identity verification system and network identity verification device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101577917A (en) * 2009-06-16 2009-11-11 深圳市星龙基电子技术有限公司 Safe dynamic password authentication method based on mobile phone
CN103139179A (en) * 2011-12-01 2013-06-05 捷而思股份有限公司 Multi-channel active type network identity verification system and network identity verification device
CN102819799A (en) * 2012-07-26 2012-12-12 郑州信大捷安信息技术股份有限公司 Multi-channel safety authenticating system and authenticating method based on U-Key

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109714297A (en) * 2017-10-26 2019-05-03 中国电信股份有限公司 Safe verification method, system and user terminal and application platform

Similar Documents

Publication Publication Date Title
US8346672B1 (en) System and method for secure transaction process via mobile device
US9578025B2 (en) Mobile network-based multi-factor authentication
CN102790674B (en) Auth method, equipment and system
JP2019519827A (en) Two-channel authentication agent system and method capable of detecting false alteration of application
US20090228966A1 (en) Authentication Method for Wireless Transactions
TW201741922A (en) Biological feature based safety certification method and device
TWI632798B (en) Server, mobile terminal, and network real-name authentication system and method
CN109039652B (en) Digital certificate generation and application method
KR20150124931A (en) Secure user two factor authentication method from Personal infomation leaking and smishing
CN101841525A (en) Secure access method, system and client
CN102202306A (en) Mobile security authentication terminal and method
US20140095863A1 (en) Internet based security information interaction apparatus and method
US20230216688A1 (en) Call center web-based authentication using a contactless card
CN101841814B (en) Terminal authentication method and system
KR20150011305A (en) Biometric authentication electronic signature registration methods using an instant messenger
KR102116587B1 (en) Method and system using a cyber id to provide secure transactions
KR101548933B1 (en) System for securiting mobile and method therefor
WO2015008075A1 (en) Providing a new user with access to an account
CN105471920A (en) Identifying code processing method and device
CN106713240A (en) Cross-domain multichannel service information confirming method
KR102705620B1 (en) Secure user two factor authentication method
Wang et al. Method of internet service easy login application based on RFSIM
CN118797616A (en) Real name authentication method and system
WO2015176364A1 (en) Payment method, mobile terminal and subscriber identity module, and computer storage medium
KR20110007774A (en) User authentication system and method using virtual machine program and authentication number

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170524

RJ01 Rejection of invention patent application after publication