CN107733838A - A kind of mobile terminal client terminal identity identifying method, device and system - Google Patents
A kind of mobile terminal client terminal identity identifying method, device and system Download PDFInfo
- Publication number
- CN107733838A CN107733838A CN201610658158.7A CN201610658158A CN107733838A CN 107733838 A CN107733838 A CN 107733838A CN 201610658158 A CN201610658158 A CN 201610658158A CN 107733838 A CN107733838 A CN 107733838A
- Authority
- CN
- China
- Prior art keywords
- user
- mobile terminal
- random code
- log
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0846—Network architectures or network communication protocols for network security for authentication of entities using passwords using time-dependent-passwords, e.g. periodically changing passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Abstract
The invention discloses a kind of mobile terminal client terminal identity identifying method, including:User's login account and mobile terminal number are bound;Methods described also includes:After receiving logging request, the log-on message including user's login account and password is verified, after being verified, obtains the mobile terminal number of binding corresponding with user's login account;Detect whether to receive the information that the content that the mobile terminal number is sent is random code, determine whether that user logs according to testing result;Wherein, the random code generates according to the log-on message.The present invention further simultaneously discloses a kind of mobile terminal client terminal identification authentication system and system.
Description
Technical field
The present invention relates to business support in the communications field and information security management technology, more particularly to a kind of mobile terminal visitor
Family end identity identifying method, device and system.
Background technology
In recent years, with the fast development of development of Mobile Internet technology, the application such as mobile phone terminal application journey of various mobile terminals
Application of the sequence in work, life is increasingly popularized.At present, most mobile phone terminals are applied is tested using static password with reference to dynamic
The login mode of code is demonstrate,proved, but the security of dynamic verification code mode is not high and not convenient enough, therefore, the safety of user profile
Checking is particularly important.
In order to ensure the safety of user profile, at present, some existing related patent documents propose solution method, example
Such as:The patent of Patent No. 200910236953.7 discloses a kind of Mobile terminal user authentication method and system, passes through
Sequence number of authentification group is set respectively to certification user account and the cell-phone number of mobile terminal user, in authentication, to user
Sequence number of authentification corresponding to account number and cell-phone number is compared, so as to realize user authentication and subsequent authentication;Patent No.
201110092438.3 patent disclose a kind of mobile banking client information authentication method, system and mobile terminal, including:
The binding of handset identities identification module (SIM) card information, mobile phone hardware information and Mobile banking's registered client's information is established respectively
Whether relation, the SIM card information and hardware information for judging the login mobile phone are believed with the SIM cards of mobile phones in corresponding binding relationship
Breath and hardware information match, if it is, log-on message is verified, otherwise log-on message authentication failed;Patent No.
The method that 201210417594.7 patent discloses subscriber identity authentication in a kind of registration and/or logging in online application, including:
Application system sends to the phone number of invitee and invites short message, and the invitation short message includes an invitation code;Invitee
When logging in or registering the application system, the phone number and invitation code of oneself are inputted;Application system judges the cell-phone number
Whether code and invitation code are correct, if correctly, allowing to log in or registering, if incorrect, refusal is logged in or registered.
However, above-mentioned several existing user authentication method for authenticating, although user profile can be solved to a certain extent
Safety issue, but following defect also be present:
1) authenticated in the patent of Patent No. 200910236953.7 using account, password, exist and forge a signature, break
The security breaches such as deciphering;
2) bundled user mobile phone hardware information is needed in the patent of Patent No. 201110092438.3, transplantability is poor, just
Victory is inadequate, and, it is necessary to re-register after user changes terminal or SIM card;In addition, hardware information may be broken by other people
Solve, distort, certain potential safety hazard be present;
3) user need to input the invitation code issued, complex operation and consumption in the patent of Patent No. 201210417594.7
Duration, meanwhile, the invitation code issued is easily intercepted and captured by other people by other approach, reduces security of system.
The content of the invention
In view of this, the embodiment of the present invention it is expected to provide a kind of mobile terminal client terminal identity identifying method, device and is
System, it is intended on the premise of ensuring user information safety, reduce user's operating procedure, shorten certification duration, lifting user uses
Experience.
To reach above-mentioned purpose, what the technical scheme of the embodiment of the present invention was realized in:
The embodiment of the present invention provides a kind of mobile terminal client terminal identity identifying method, and user's login account is whole with movement
Hold number binding;Methods described also includes:
After receiving logging request, the log-on message including user's login account and password is verified, is verified
Afterwards, the mobile terminal number of binding corresponding with user's login account is obtained;
Detect whether to receive the information that the content that the mobile terminal number is sent is random code, determined according to testing result
Whether user is allowed to log in;
Wherein, the random code generates according to the log-on message.
In such scheme, the log-on message that the random code is inputted by mobile terminal client terminal according to user generates;
After random code is generated, methods described also includes:It is the use by the mobile terminal client terminal transmission content
The logging request of family login account and password is to service end, and transmission content is set to third party for the information request of random code
It is standby;The third party device response described information request, and notify the mobile terminal client terminal transmission content for random code
Information is to service end.
In such scheme, the generation random code, including:Use Digital Signature Algorithm (DSA, Digital Signature
Algorithm random code) is generated, wherein, the DSA is at least one of rivest, shamir, adelman.
It is described to determine whether that user logs according to testing result in such scheme, including:
Whether monitored from the third party device has the mobile terminal number of binding corresponding with user's login account
The content of transmission is the information of random code, if so, snoop results then are fed back into the mobile terminal client terminal, determines user's
Authentication passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, it is determined that with
The authentication at family is not by allowing the user to log in.
The embodiment of the present invention provides a kind of mobile terminal client terminal identification authentication system, and described device includes:Account number
Binding unit, log-on message authentication unit, binding number acquiring unit, random code information detecting unit, user log in and determine list
Member;Wherein,
The account number binding unit, for user's login account and mobile terminal number to be bound;
The log-on message authentication unit, after receiving logging request, to including user's login account and password
Log-on message is verified;
The binding number acquiring unit, after being verified for the log-on message authentication unit, is obtained and the use
The mobile terminal number of the corresponding binding of family login account;
The random code information detecting unit, for detecting whether receive the content that the mobile terminal number is sent be with
The information of machine code;
The user logs in determining unit, for being determined whether according to the testing result of the random code information detecting unit
User is allowed to log in;
Wherein, the random code generates according to the log-on message.
In such scheme, described device also includes:Random code generation unit, logging request transmitting element, random code information
Transmitting element;Wherein,
The random code generation unit, the log-on message for being inputted by mobile terminal client terminal according to user generate random
Code;
The logging request transmitting element, after generating random code in the random code generation unit, by the shifting
Dynamic client terminals transmission content is the logging request of user's login account and password to service end;
The random code information transmitting unit, after generating random code in the random code generation unit, in transmission
Hold information request for random code to third party device;The third party device response described information request, and notify the shifting
Dynamic client terminals transmission content for random code information to service end.
In such scheme, the random code generation unit, it is specifically used for:Random code is generated using DSA, wherein, the DSA
For at least one of rivest, shamir, adelman.
In such scheme, the user logs in determining unit, is specifically used for:
Whether monitored from the third party device has the mobile terminal number of binding corresponding with user's login account
The content of transmission is the information of random code, if so, snoop results then are fed back into the mobile terminal client terminal, determines user's
Authentication passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, it is determined that with
The authentication at family is not by allowing the user to log in.
The embodiment of the present invention also provides a kind of mobile terminal client terminal identity authorization system, and the system includes:It is mobile whole
Hold client, service end, third party device;Wherein,
The mobile terminal client terminal, the log-on message for being inputted according to user generate random code;It is additionally operable in transmission
Holding please for the information of random code for the logging request of user's login account and password to the service end, and transmission content
Ask to the third party device;
The service end, for user's login account and mobile terminal number to be bound;After receiving logging request, to bag
The log-on message for including user's login account and password is verified, after being verified, is obtained corresponding with user's login account
The mobile terminal number of binding;It is random to detect the third party device and whether receive the content that the mobile terminal number is sent
The information of code, determine whether that user logs according to testing result;
The third party device, for responding described information request, and notify the mobile terminal client terminal transmission content
For random code information to service end.
In such scheme, the mobile terminal client terminal, it is specifically used for:Random code is generated using DSA, wherein, the DSA
For at least one of rivest, shamir, adelman.
Mobile terminal client terminal identity identifying method that the embodiment of the present invention is provided, device and system, user is logged in
Account is bound with mobile terminal number;After receiving logging request, the log-on message including user's login account and password is entered
Row checking, after being verified, obtain the mobile terminal number of binding corresponding with user's login account;Detect whether to receive institute
The content for stating mobile terminal number transmission is the information of random code, determines whether that user logs according to testing result;Wherein,
The random code generates according to the log-on message.The embodiment of the present invention need to only establish mobile terminal number and user's login account
Between binding relationship, improve the transplantability of mobile terminal client terminal application program and property easy to use;In addition, mobile terminal
Client identity authenticating step is the combination of static authentication and dynamic authentication, i.e.,:Using double authentication;In this way, not only can be true
The mobile terminal client terminal that the mobile terminal client terminal that warranty family logs in uses with user's binding mobile terminal number is consistent,
Can also solve to forge a signature, the security breaches such as decryption, drastically increase user information safety.
In addition, the embodiment of the present invention does not need user to receive invitation code, and backstage gateway can by third party device
The certification of user's login identity is completed with automated intelligent, reduces user's operating procedure, shortens certification duration, is brought more preferably for user
Usage experience.
Brief description of the drawings
Fig. 1 is the implementation process schematic diagram of mobile terminal client terminal identity identifying method of the embodiment of the present invention;
Fig. 2 is the specific implementation schematic flow sheet of mobile terminal client terminal identity identifying method of the embodiment of the present invention;
Fig. 3 is the composition structural representation of mobile terminal client terminal identification authentication system of the embodiment of the present invention;
Fig. 4 is the composition structural representation of mobile terminal client terminal identity authorization system of the embodiment of the present invention.
Embodiment
The characteristics of in order to more fully hereinafter understand the embodiment of the present invention and technology contents, below in conjunction with the accompanying drawings to this hair
The realization of bright embodiment is described in detail, appended accompanying drawing purposes of discussion only for reference, is not used for limiting the present invention.
As shown in figure 1, in the embodiment of the present invention mobile terminal client terminal identity identifying method implementation process, it is including following
Step:
Step 101:User's login account and mobile terminal number are bound;
Here, user's login account can be user name, individual mailbox etc., can also be Global Subscriber identification card
Integrated circuit card identification code (ICCID, the Integrate of (USIM, Universal Subscriber Identity Module)
Circuit card identity) or international mobile subscriber identity (IMSI, International Mobile
Subscriber Identification Number), International Mobile Equipment Identity code (IMEI, International
Mobile Equipment Identity), or be mobile terminal sequence number etc., for a certain mobile radio communication of unique identification
In mobile subscriber.
Step 102:After receiving logging request, the log-on message including user's login account and password is verified,
After being verified, the mobile terminal number of binding corresponding with user's login account is obtained;
Here, the described pair of log-on message including user's login account and password is verified, is specifically included:
The login account and password that the user is inputted enter with the login account and password being stored in advance in database
Row matching, if the match is successful, the log-on message is verified;Otherwise, the log-on message authentication failed.
It should be noted that the method verified in this step to the legitimacy of user's login account and password,
Belong to static authentication.
Step 103:Detect whether to receive the information that the content that the mobile terminal number is sent is random code, according to detection
As a result determine whether that user logs in;Wherein, the random code generates according to the log-on message.
Specifically, the log-on message that the random code is inputted by mobile terminal client terminal according to user generates.
After random code is generated, methods described also includes:It is the use by the mobile terminal client terminal transmission content
The logging request of family login account and password is to service end, and transmission content is set to third party for the information request of random code
It is standby;The third party device response described information request, and notify the mobile terminal client terminal transmission content for random code
Information is to service end.
Here, the generation random code, including:Using DSA generate random code, wherein, DSA be generally used for digital signature and
Certification, it is at least one of rivest, shamir, adelman;DSA security be based on integer finite field dispersed accumulation,
On the premise of same key length, DSA security is suitable with the security of RSA cryptographic algorithms.In DSA digital signature and recognize
In card, sender is signed using the private key of oneself to file or message, after recipient receives message, uses the public affairs of sender
Key verifies the authenticity of signature.
Wherein, the random code is by being carried and corresponding with user's login account using mobile terminal client terminal
The information content that the mobile terminal number of binding is sent;The information can be by calling mobile terminal such as SMS gateway to send
Service, sent, can also be sent in the form of multimedia message, may be used also by calling multimedia gateway to send service in the form of short message
So that by calling wechat gateway to send service, transmission etc., is not especially limited here in the form of wechat.Therefore, it is of the invention
The transmission form of embodiment random code is more flexible, different usage experiences is brought for user, in this way, not only may insure user
The mobile terminal client terminal that the mobile terminal client terminal of login uses with user's binding mobile terminal number is consistent, and is also solved
Forge a signature, the security breaches such as decryption.
Here, specifically how to generate random code using DSA and belong to prior art, will not be repeated here.
Here, it is described to determine whether that user logs according to testing result, specifically include:
Whether monitored from the third party device has the mobile terminal number of binding corresponding with user's login account
The content of transmission is the information of random code, if so, snoop results then are fed back into the mobile terminal client terminal, determines user's
Authentication passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, it is determined that with
The authentication at family is not by allowing the user to log in.
It should be noted that detecting whether third party device receives the content that the mobile terminal number is sent in this step
For the method for the information of random code, belong to dynamic authentication.The present invention's is this using static authentication and the combination side of dynamic authentication
Method, i.e.,:Using double authentication, the certification of identity is logged in be automatically performed mobile terminal client terminal user, and no longer needs to move
Client terminals receive invitation code, reduce the operating procedure of user, shorten certification duration, improve the safety of user profile
Property.
Below by taking mobile phone client users login authentication as an example, with reference to Fig. 2, to mobile terminal client terminal provided by the invention
The specific implementation process of identity identifying method is further described in detail:
The implementation of the embodiment of the present invention is to interact completion with cell-phone customer terminal two parts by service end.
As shown in Fig. 2 in the embodiment of the present invention mobile terminal client terminal identity identifying method specific implementation flow, including
Following steps:
Step 201:User's login account and phone number Y are bound in advance in service end;
Step 202:Login account, the password inputted according to user in cell-phone customer terminal, generated using DSA unique random
Code X;
Wherein, the random code X can be a random string, and the random string includes user's login account, close
Any letter and/or numeral in code.
Step 203:Client all sends user's login account, password, random code X to service end, is logged according to user
Account and password, submit logging request;Meanwhile cell-phone customer terminal calling mobile phone Short Message Service Gateway sends service, a content is sent
For random code X short message to gateway fixed port;
Here, the random code X be by using cell-phone customer terminal carry phone number Y send short message content for one with
Machine character string X information.
Step 204:After service end receives logging request, the legitimacy of user's login account, password is verified, tested
After card passes through, the phone number Y of binding corresponding with user's login account is obtained;
Here, the legitimacy to user's login account, password is verified, is specifically included:
The login account and password that the user is inputted enter with the login account and password being stored in advance in database
Row matching, if the match is successful, show that the login account of user's input and password are legal, the log-on message checking is logical
Cross;Otherwise, the login account and password for showing user's input are illegal, the log-on message authentication faileds.
Step 205:Service end inquires about the content for whether having phone number Y to send in the database on Short Message Service Gateway backstage
X uplink short message;
Step 206:After checking flow terminates, authentication result is sent to cell-phone customer terminal, cell phone customer by service end
The result validation of a user's identity according to feedback is held, to decide whether to allow user to log in.
Specifically, if log-on message and gateway short-message verification by the result passed through by feeding back to mobile phone
Client, after cell-phone customer terminal receives the result, it is allowed to which user logs in;Otherwise, user is not allowed to log in.
To realize the above method, the embodiment of the present invention additionally provides a kind of mobile terminal client terminal identification authentication system, such as
Shown in Fig. 3, the device includes account number binding unit 301, log-on message authentication unit 302, binding number acquiring unit
303rd, random code information detecting unit 304, user log in determining unit 305;Wherein,
The account number binding unit 301, for user's login account and mobile terminal number to be bound;
The log-on message authentication unit 302, after receiving logging request, to including user's login account and password
Log-on message verified;
The binding number acquiring unit 303, after being verified for the log-on message authentication unit 302, obtain with
The mobile terminal number of the corresponding binding of user's login account;
The random code information detecting unit 304, for detecting whether receiving the content that the mobile terminal number is sent
For the information of random code;
The user logs in determining unit 305, true for the testing result according to the random code information detecting unit 304
It is fixed whether to allow user to log in;
Wherein, the random code generates according to the log-on message.
Here, described device also includes:Random code generation unit 306, logging request transmitting element 307, random code information
Transmitting element 308;Wherein,
The random code generation unit 306, the log-on message for being inputted by mobile terminal client terminal according to user generate
Random code;
The logging request transmitting element 307, after generating random code in the random code generation unit 306, by
The mobile terminal client terminal transmission content is the logging request of user's login account and password to service end;
The random code information transmitting unit 308, after generating random code in the random code generation unit 306,
Transmission content for random code information request to third party device;The third party device response described information request, and notify
The mobile terminal client terminal transmission content for random code information to service end.
Wherein, the random code generation unit 306, is specifically used for:Random code is generated using DSA, wherein, the DSA is
At least one of rivest, shamir, adelman.
The log-on message authentication unit 302, is specifically used for:
The login account and password that the user is inputted enter with the login account and password being stored in advance in database
Row matching, if the match is successful, the log-on message is verified;Otherwise, the log-on message authentication failed.
The user logs in determining unit 305, is specifically used for:
Whether monitored from the third party device has the mobile terminal number of binding corresponding with user's login account
The content of transmission is the information of random code, if so, snoop results then are fed back into the mobile terminal client terminal, determines user's
Authentication passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, it is determined that with
The authentication at family is not by allowing the user to log in.
In actual applications, the account number binding unit 301, log-on message authentication unit 302, binding number obtain
Unit 303, random code information detecting unit 304, user's login determining unit 305 can be by the centers on server terminal
Processor (CPU, Central Processing Unit), microprocessor (MPU, Micro Processor Unit), numeral letter
Number processor (DSP, Digital Signal Processor) or field programmable gate array (FPGA, Field
Programmable Gate Array) etc. realize;It is the random code generation unit 306, logging request transmitting element 307, random
Code information transmitting unit 308 can be realized by CPU, MPU, DSP or FPGA on mobile terminal etc..
To realize the above method, the embodiment of the present invention additionally provides a kind of mobile terminal client terminal identity authorization system, such as
Shown in Fig. 4, the system includes:Mobile terminal client terminal, service end, third party device;Wherein,
The mobile terminal client terminal, the log-on message for being inputted according to user generate random code;It is additionally operable in transmission
Holding please for the information of random code for the logging request of user's login account and password to the service end, and transmission content
Ask to the third party device;
The service end, for user's login account and mobile terminal number to be bound;After receiving logging request, to bag
The log-on message for including user's login account and password is verified, after being verified, is obtained corresponding with user's login account
The mobile terminal number of binding;It is random to detect the third party device and whether receive the content that the mobile terminal number is sent
The information of code, determine whether that user logs according to testing result;
The third party device, for responding described information request, and notify the mobile terminal client terminal transmission content
For random code information to service end.
Here, the mobile terminal client terminal, is specifically used for:Random code is generated using DSA, wherein, the DSA is non-right
Claim at least one of AES.
Here, the third party device, determined according to transmission form of the content of transmission for the information of random code, than
Such as:The information is by calling mobile terminal such as SMS gateway to send service, when being sent in the form of short message, the third party
Equipment is Short Message Service Gateway;The information is by calling multimedia gateway to send service, when being sent in the form of multimedia message, the third party
Equipment is MMS gateway;The information is by calling wechat gateway to send service, and when being sent in the form of wechat, the third party sets
Standby is wechat gateway, is not especially limited here.
According to Fig. 4, the mobile terminal client terminal includes:Random code generation unit 402, logging request transmitting element
403rd, random code information transmitting unit 404, the result receiving unit 409;The service end includes:Account number binding unit
401st, log-on message authentication unit 405, binding number acquiring unit 406, random code information detecting unit 407, the result are anti-
Present unit 408;Wherein,
The account number binding unit 401, for user's login account and mobile terminal number to be bound;
The random code generation unit 402, the log-on message for being inputted by mobile terminal client terminal according to user generate
Random code;
The logging request transmitting element 403, after generating random code in the random code generation unit 402, by
The mobile terminal client terminal transmission content is the logging request of user's login account and password to service end;
The random code information transmitting unit 404, after generating random code in the random code generation unit 402,
Transmission content for random code information request to third party device;The third party device response described information request, and notify
The mobile terminal client terminal transmission content for random code information to service end;
The log-on message authentication unit 405, after receiving logging request, to including user's login account and password
Log-on message verified;
The binding number acquiring unit 406, after being verified for the log-on message authentication unit 405, obtain with
The mobile terminal number of the corresponding binding of user's login account;
The random code information detecting unit 407, for detecting whether the third party device receives the mobile terminal
The content that number is sent is the information of random code;
The result feedback unit 408, for sending testing result to mobile terminal client terminal;
The result receiving unit 409, for the testing result validation of a user's identity according to feedback, with
Decide whether to allow user to log in.
The embodiment of the present invention binds user's login account and phone number;After receiving logging request, to including user
The log-on message of login account and password is verified, after being verified, obtains binding corresponding with user's login account
Mobile terminal number;Detect whether to receive the information that the content that the mobile terminal number is sent is random code, tied according to detection
Fruit determines whether that user logs in;Wherein, the random code generates according to the log-on message.The embodiment of the present invention need to only be built
Vertical binding relationship between mobile terminal number and user's login account, improve the transplanting of mobile terminal client terminal application program
Property with property easy to use;In addition, mobile terminal client terminal identification step is the combination of static authentication and dynamic authentication, i.e.,:
Using double authentication;In this way, it not only may insure that the mobile terminal client terminal that user logs in binds mobile terminal number with user
The mobile terminal client terminal used is consistent, additionally it is possible to the security breaches such as solution forges a signature, decryption, is greatly enhanced
User information safety.
In addition, the embodiment of the present invention does not need user to receive invitation code, and backstage gateway can by third party device
The certification of user's login identity is completed with automated intelligent, reduces user's operating procedure, shortens certification duration, is brought more preferably for user
Usage experience.
It should be understood by those skilled in the art that, embodiments of the invention can be provided as method, system or computer program
Product.Therefore, the shape of the embodiment in terms of the present invention can use hardware embodiment, software implementation or combination software and hardware
Formula.Moreover, the present invention can use the computer for wherein including computer usable program code in one or more to use storage
The form for the computer program product that medium is implemented on (including but is not limited to magnetic disk storage and optical memory etc.).
The present invention is the flow with reference to method according to embodiments of the present invention, equipment (system) and computer program product
Figure and/or block diagram describe.It should be understood that can be by every first-class in computer program instructions implementation process figure and/or block diagram
Journey and/or the flow in square frame and flow chart and/or block diagram and/or the combination of square frame.These computer programs can be provided
The processors of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing devices is instructed to produce
A raw machine so that produced by the instruction of computer or the computing device of other programmable data processing devices for real
The device for the function of being specified in present one flow of flow chart or one square frame of multiple flows and/or block diagram or multiple square frames.
These computer program instructions, which may be alternatively stored in, can guide computer or other programmable data processing devices with spy
Determine in the computer-readable memory that mode works so that the instruction being stored in the computer-readable memory, which produces, to be included referring to
Make the manufacture of device, the command device realize in one flow of flow chart or multiple flows and/or one square frame of block diagram or
The function of being specified in multiple square frames.
These computer program instructions can be also loaded into computer or other programmable data processing devices so that counted
Series of operation steps is performed on calculation machine or other programmable devices to produce computer implemented processing, so as in computer or
The instruction performed on other programmable devices is provided for realizing in one flow of flow chart or multiple flows and/or block diagram one
The step of function of being specified in individual square frame or multiple square frames.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention, it is all
All any modification, equivalent and improvement made within the spirit and principles in the present invention etc., it should be included in the protection of the present invention
Within the scope of.
Claims (10)
1. a kind of mobile terminal client terminal identity identifying method, it is characterised in that by user's login account and mobile terminal number
Binding;Methods described also includes:
After receiving logging request, the log-on message including user's login account and password is verified, after being verified, obtained
Take the mobile terminal number of binding corresponding with user's login account;
Detect whether to receive the information that the content that the mobile terminal number is sent is random code, determined whether according to testing result
User is allowed to log in;
Wherein, the random code generates according to the log-on message.
2. according to the method for claim 1, it is characterised in that the random code is defeated according to user by mobile terminal client terminal
The log-on message generation entered;
After random code is generated, methods described also includes:It is that the user steps on by the mobile terminal client terminal transmission content
Record the logging request of account and password to service end, and transmission content for random code information request to third party device;Institute
State third party device response described information request, and notify the mobile terminal client terminal transmission content be random code information extremely
Service end.
3. method according to claim 1 or 2, it is characterised in that the generation random code, including:Use digital signature
Algorithm DSA generates random code, wherein, the DSA is at least one of rivest, shamir, adelman.
4. according to the method for claim 2, it is characterised in that described to determine whether that user steps on according to testing result
Record, including:
The mobile terminal number whether monitored from the third party device has binding corresponding with user's login account is sent
Content be random code information, if so, snoop results then are fed back into the mobile terminal client terminal, determine the identity of user
Certification passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, determines user's
Authentication is not by allowing the user to log in.
5. a kind of mobile terminal client terminal identification authentication system, it is characterised in that described device includes:Account number binding is single
Member, log-on message authentication unit, binding number acquiring unit, random code information detecting unit, user log in determining unit;Its
In,
The account number binding unit, for user's login account and mobile terminal number to be bound;
The log-on message authentication unit, after receiving logging request, the login to including user's login account and password
Information is verified;
The binding number acquiring unit, after being verified for the log-on message authentication unit, acquisition is stepped on the user
Record the mobile terminal number of the corresponding binding of account;
The random code information detecting unit, for detecting whether it is random code to receive the content that the mobile terminal number is sent
Information;
The user logs in determining unit, for being determined whether according to the testing result of the random code information detecting unit
User logs in;
Wherein, the random code generates according to the log-on message.
6. device according to claim 5, it is characterised in that described device also includes:Random code generation unit, log in and ask
Ask transmitting element, random code information transmitting unit;Wherein,
The random code generation unit, the log-on message for being inputted by mobile terminal client terminal according to user generate random code;
The logging request transmitting element, after generating random code in the random code generation unit, by described mobile whole
Client transmission content is held as the logging request of user's login account and password to service end;
The random code information transmitting unit, after generating random code in the random code generation unit, transmission content is
The information request of random code is to third party device;The third party device response described information request, and notify described mobile whole
It is the information of random code to service end to hold client transmission content.
7. the device according to claim 5 or 6, it is characterised in that the random code generation unit, be specifically used for:Use
Digital Signature Algorithm DSA generates random code, wherein, the DSA is at least one of rivest, shamir, adelman.
8. device according to claim 6, it is characterised in that the user logs in determining unit, is specifically used for:
The mobile terminal number whether monitored from the third party device has binding corresponding with user's login account is sent
Content be random code information, if so, snoop results then are fed back into the mobile terminal client terminal, determine the identity of user
Certification passes through, it is allowed to which the user logs in;Otherwise, snoop results are fed back into the mobile terminal client terminal, determines user's
Authentication is not by allowing the user to log in.
9. a kind of mobile terminal client terminal identity authorization system, it is characterised in that the system includes:Mobile terminal client terminal,
Service end, third party device;Wherein,
The mobile terminal client terminal, the log-on message for being inputted according to user generate random code;Being additionally operable to transmission content is
The logging request of user's login account and password is to the service end, and the information request that transmission content is random code is extremely
The third party device;
The service end, for user's login account and mobile terminal number to be bound;After receiving logging request, to including use
The log-on message of family login account and password is verified, after being verified, obtains binding corresponding with user's login account
Mobile terminal number;It is random code to detect the third party device and whether receive the content that the mobile terminal number is sent
Information, determine whether that user logs according to testing result;
The third party device, for respond described information request, and notify the mobile terminal client terminal transmission content be with
The information of machine code is to service end.
10. system according to claim 9, it is characterised in that the mobile terminal client terminal, be specifically used for:Use number
Word signature algorithm DSA generates random code, wherein, the DSA is at least one of rivest, shamir, adelman.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610658158.7A CN107733838A (en) | 2016-08-11 | 2016-08-11 | A kind of mobile terminal client terminal identity identifying method, device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610658158.7A CN107733838A (en) | 2016-08-11 | 2016-08-11 | A kind of mobile terminal client terminal identity identifying method, device and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107733838A true CN107733838A (en) | 2018-02-23 |
Family
ID=61199681
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610658158.7A Pending CN107733838A (en) | 2016-08-11 | 2016-08-11 | A kind of mobile terminal client terminal identity identifying method, device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107733838A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108600234A (en) * | 2018-04-27 | 2018-09-28 | 中国农业银行股份有限公司 | A kind of auth method, device and mobile terminal |
| CN109547412A (en) * | 2018-10-23 | 2019-03-29 | 平安科技(深圳)有限公司 | Two-factor authentication method, apparatus, system, electronic equipment and storage medium |
| CN109587683A (en) * | 2019-01-04 | 2019-04-05 | 中国联合网络通信集团有限公司 | Method and system, application program and the terminal information database of the anti-monitoring of short message |
| CN109658570A (en) * | 2018-12-19 | 2019-04-19 | 中新智擎科技有限公司 | A kind of server, client, mobile robot, door access control system and method |
| CN111181839A (en) * | 2019-12-25 | 2020-05-19 | 口碑(上海)信息技术有限公司 | Data processing method, device and equipment in application sharing |
| CN111310140A (en) * | 2020-02-05 | 2020-06-19 | Tcl移动通信科技(宁波)有限公司 | Application login authentication method, electronic equipment, mobile terminal and storage medium |
| CN111885043A (en) * | 2020-07-20 | 2020-11-03 | 中国联合网络通信集团有限公司 | Internet account login method, system, equipment and storage medium |
| CN114422270A (en) * | 2022-03-28 | 2022-04-29 | 成都运荔枝科技有限公司 | Method and device for safe login authentication of Internet platform system |
| CN115136625A (en) * | 2020-03-09 | 2022-09-30 | 华为技术有限公司 | Vehicle machine system login method and related device |
| CN115766164A (en) * | 2022-11-08 | 2023-03-07 | 云南电网有限责任公司信息中心 | Unified authentication management's automation instrument sharing platform |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101277192A (en) * | 2008-04-25 | 2008-10-01 | 华为技术有限公司 | Method and system for checking client terminal |
| CN102811228A (en) * | 2012-08-31 | 2012-12-05 | 中国联合网络通信集团有限公司 | Network business login method, equipment and system |
| US20140115679A1 (en) * | 2012-10-23 | 2014-04-24 | Edward M. Barton | Authentication method of enumerated pattern of field positions based challenge and enumerated pattern of field positions based response through interaction between two credentials in random partial digitized path recognition system |
| CN104168329A (en) * | 2014-08-28 | 2014-11-26 | 尚春明 | User secondary authentication method, device and system in cloud computing and Internet |
| CN104202162A (en) * | 2014-08-12 | 2014-12-10 | 武汉理工大学 | System for login based on mobile phone and login method |
-
2016
- 2016-08-11 CN CN201610658158.7A patent/CN107733838A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101277192A (en) * | 2008-04-25 | 2008-10-01 | 华为技术有限公司 | Method and system for checking client terminal |
| CN102811228A (en) * | 2012-08-31 | 2012-12-05 | 中国联合网络通信集团有限公司 | Network business login method, equipment and system |
| US20140115679A1 (en) * | 2012-10-23 | 2014-04-24 | Edward M. Barton | Authentication method of enumerated pattern of field positions based challenge and enumerated pattern of field positions based response through interaction between two credentials in random partial digitized path recognition system |
| CN104202162A (en) * | 2014-08-12 | 2014-12-10 | 武汉理工大学 | System for login based on mobile phone and login method |
| CN104168329A (en) * | 2014-08-28 | 2014-11-26 | 尚春明 | User secondary authentication method, device and system in cloud computing and Internet |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108600234A (en) * | 2018-04-27 | 2018-09-28 | 中国农业银行股份有限公司 | A kind of auth method, device and mobile terminal |
| CN109547412A (en) * | 2018-10-23 | 2019-03-29 | 平安科技(深圳)有限公司 | Two-factor authentication method, apparatus, system, electronic equipment and storage medium |
| CN109658570A (en) * | 2018-12-19 | 2019-04-19 | 中新智擎科技有限公司 | A kind of server, client, mobile robot, door access control system and method |
| CN109587683A (en) * | 2019-01-04 | 2019-04-05 | 中国联合网络通信集团有限公司 | Method and system, application program and the terminal information database of the anti-monitoring of short message |
| CN111181839A (en) * | 2019-12-25 | 2020-05-19 | 口碑(上海)信息技术有限公司 | Data processing method, device and equipment in application sharing |
| CN111181839B (en) * | 2019-12-25 | 2021-08-24 | 口碑(上海)信息技术有限公司 | Data processing method, device and equipment in application sharing |
| CN111310140A (en) * | 2020-02-05 | 2020-06-19 | Tcl移动通信科技(宁波)有限公司 | Application login authentication method, electronic equipment, mobile terminal and storage medium |
| CN115136625A (en) * | 2020-03-09 | 2022-09-30 | 华为技术有限公司 | Vehicle machine system login method and related device |
| CN115136625B (en) * | 2020-03-09 | 2023-06-02 | 华为技术有限公司 | Vehicle-mounted system login method and related device |
| CN111885043A (en) * | 2020-07-20 | 2020-11-03 | 中国联合网络通信集团有限公司 | Internet account login method, system, equipment and storage medium |
| CN111885043B (en) * | 2020-07-20 | 2022-03-29 | 中国联合网络通信集团有限公司 | Internet account login method, system, equipment and storage medium |
| CN114422270A (en) * | 2022-03-28 | 2022-04-29 | 成都运荔枝科技有限公司 | Method and device for safe login authentication of Internet platform system |
| CN115766164A (en) * | 2022-11-08 | 2023-03-07 | 云南电网有限责任公司信息中心 | Unified authentication management's automation instrument sharing platform |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11727396B2 (en) | Processing electronic tokens | |
| CN107733838A (en) | A kind of mobile terminal client terminal identity identifying method, device and system | |
| CN107733852B (en) | A kind of auth method and device, electronic equipment | |
| CN106487511B (en) | Identity authentication method and device | |
| US9756056B2 (en) | Apparatus and method for authenticating a user via multiple user devices | |
| JP5601729B2 (en) | How to log into a mobile radio network | |
| CN105592065B (en) | A kind of Website logging method and its login system based on SMS | |
| CN104243458B (en) | A kind of safe online game login method and system | |
| WO2016082483A1 (en) | Pseudo base station discrimination method and apparatus | |
| US9009793B2 (en) | Dynamic pin dual factor authentication using mobile device | |
| CN103945380A (en) | Method and system for network login authentication based on graphic code | |
| WO2013135898A1 (en) | Mobile phone takeover protection system and method | |
| CN107113613B (en) | Server, mobile terminal, network real-name authentication system and method | |
| CN103037366B (en) | Mobile phone users authentication method based on asymmetric cryptographic technique and mobile terminal | |
| CN105897721B (en) | Verify the method and device of fiscard user identity reliability | |
| CN106453361A (en) | A safety protection method and system for network information | |
| JP2019510316A (en) | Method and device for providing account linking and service processing | |
| CN106101064A (en) | Account login method and device | |
| CN105681259A (en) | Open authorization method and apparatus and open platform | |
| WO2017166419A1 (en) | Method of identifying false base station, device identifying false base station, and terminal | |
| CN103905194A (en) | Identity traceability authentication method and system | |
| CN106203021B (en) | A kind of more certification modes are integrated to apply login method and system | |
| CN105741116A (en) | Fast payment method, apparatus and system | |
| TWI619042B (en) | System and method for online transaction security, SIM card, mobile phone and online transaction system realized by the method | |
| CN109587683B (en) | Method and system for preventing short message from being monitored, application program and terminal information database |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180223 |
|
| RJ01 | Rejection of invention patent application after publication |