CN108234411A - Method, system and Internetbank Verification System based on Internetbank access registrar - Google Patents

Method, system and Internetbank Verification System based on Internetbank access registrar Download PDF

Info

Publication number
CN108234411A
CN108234411A CN201611161567.2A CN201611161567A CN108234411A CN 108234411 A CN108234411 A CN 108234411A CN 201611161567 A CN201611161567 A CN 201611161567A CN 108234411 A CN108234411 A CN 108234411A
Authority
CN
China
Prior art keywords
authentication
location
internetbank
terminal
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201611161567.2A
Other languages
Chinese (zh)
Inventor
梁宇杰
陈晨
张�荣
卢燕青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Telecom Corp Ltd
Original Assignee
China Telecom Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Telecom Corp Ltd filed Critical China Telecom Corp Ltd
Priority to CN201611161567.2A priority Critical patent/CN108234411A/en
Publication of CN108234411A publication Critical patent/CN108234411A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/107Network architectures or network communication protocols for network security for controlling access to devices or network resources wherein the security policies are location-dependent, e.g. entities privileges depend on current location or allowing specific operations only from locally connected terminals
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Power Engineering (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The invention discloses a kind of method based on Internetbank access registrar, system and Internetbank Verification Systems, are related to moving communicating field.Method therein includes:Certification 2 D code information is shown to user by PC, wherein Quick Response Code includes dynamic credentials;Receive the parameters for authentication uploaded after Internetbank client scan Quick Response Code;Geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, enhancing certification is carried out to access system to Internetbank.The present invention can be ensured that the terminal of the PC machine for accessing Internetbank and Internetbank binding accesses internet banking system in same geographical location, and in Internet access place, therefore, improve the safety of Internetbank access.

Description

Method, system and Internetbank Verification System based on Internetbank access registrar
Technical field
The present invention relates to a kind of moving communicating field more particularly to method based on Internetbank access registrar, system and Internetbanks Verification System.
Background technology
Web bank is very universal, but safety problem is also increasingly severe, and user's logging in online banks is typically logical The authentication means such as password and U-shield are crossed to carry out authentication, is existed and is encountered fishing website password leakage, loses U-shield or counterfeit And the risk that account No. is caused to be stolen, safer authentication means is needed to ensure fund security.
Currently, existing binding site enhances the Internetbank access method of certification, that is, passes through to position when accessing Internetbank and use The mobile phone of family Internetbank binding simultaneously obtains user location in a manner of sending SMS confirmation and carries out enhancing certification, i.e. only Internetbank certification Device positions in real time, the pre-stored location certification with ebanking server.The program cannot ensure Internetbank use and mobile phone location Point is in same position, if U-shield is lost, user mobile phone is controlled by wooden horse similarly has stolen risk.
Invention content
The invention solves a technical problem be to provide a kind of method based on Internetbank access registrar, system and Internetbank Verification System can improve the safety of Internetbank access.
According to an aspect of the present invention, a kind of method based on Internetbank access registrar is proposed, including:It is shown by PC to user Certification 2 D code information, wherein Quick Response Code include dynamic credentials;What is uploaded after reception Internetbank client scan Quick Response Code recognizes Demonstrate,prove parameter;Geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, so as to Internetbank is accessed system into Row enhancing certification.
Further, the parameters for authentication uploaded after Internetbank client scan Quick Response Code is received to include:Internetbank account is received to tie up The international mobile subscriber identity IMSI information uploaded after the client scan Quick Response Code of fixed terminal.
Further, geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication to include:To position Authentication unit sends location-authentication request, wherein, location-authentication request includes IMSI information;Position authentication unit is received to send Zone position information of having the right corresponding with IMSI information;Terminal is positioned according to IMSI information;If positioning result and position The zone position information of having the right for putting authentication unit transmission matches, it is determined that the authentication is passed for terminal geographic position.
Further, geographical location authentication is carried out to terminal where client according to authentication information to include:To location-authentication Unit sends location-authentication request, so that location-authentication unit carries out the number of the terminal of IMSI information and the binding of Internetbank account After matching, terminal is positioned according to IMSI information, wherein, location-authentication request includes IMSI information;Position is received to recognize The authentication result information that unit is sent is demonstrate,proved, wherein, location-authentication unit is if it is determined that the positioning result of terminal is believed with the IMSI preserved It ceases corresponding zone position information of having the right to match, it is determined that the authentication is passed for terminal geographic position.
Further, the mode that terminal is positioned is positioned for communication network.
According to another aspect of the present invention, it is also proposed that a kind of Internetbank Verification System, including:Quick Response Code display unit, is used for Certification 2 D code information is shown to user by PC, wherein Quick Response Code includes dynamic credentials;Parameters for authentication receiving unit is used The parameters for authentication uploaded after Internetbank client scan Quick Response Code is received;Geographical location authenticating unit, for according to parameters for authentication Geographical location authentication is carried out to terminal where Internetbank client, enhancing certification is carried out to access system to Internetbank.
Further, parameters for authentication receiving unit is used to receive the client scan Quick Response Code of the terminal of Internetbank account binding The international mobile subscriber identity IMSI information uploaded afterwards.
Further, geographical location authenticating unit includes location-authentication request module, regional location receiving module of having the right, determines Position module and position authentication module;Location-authentication request module is used to send location-authentication request to location-authentication unit, wherein, Location-authentication request includes IMSI information;Have the right regional location receiving module for receive that position authentication unit sends with The corresponding zone position information of having the right of IMSI information;Locating module is used to position terminal according to IMSI information;Position reflects If power module matches for positioning result with the zone position information of having the right that location-authentication unit is sent, it is determined that terminal geographic The authentication is passed for position.
Further, geographical location authenticating unit includes location-authentication request module and position authenticating result receiving module; Location-authentication request module is used to send location-authentication request to location-authentication unit, so that location-authentication unit is to IMSI information After being matched with the number of the terminal of Internetbank account binding, terminal is positioned according to IMSI information, wherein, location-authentication Request includes IMSI information;Position authenticating result receiving module is used to receive the authenticating result letter that position authentication unit is sent Breath, wherein, location-authentication unit is if it is determined that the positioning result of terminal zone position of having the right corresponding with the IMSI information preserved Manner of breathing matches, it is determined that the authentication is passed for terminal geographic position.
Further, the mode that terminal is positioned is positioned for communication network.
According to another aspect of the present invention, it is also proposed that a kind of system based on Internetbank access registrar, including location-authentication list First and above-mentioned Internetbank Verification System.
Compared with prior art, Internetbank Verification System of the present invention to user's two-dimensional code display, and in user's upload by recognizing After demonstrate,proving parameter, geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, it can be ensured that access Internetbank PC machine and the terminal of Internetbank binding access internet banking system in same geographical location, and in Internet access place, therefore, improve The safety that Internetbank accesses.
By referring to the drawings to the detailed description of exemplary embodiment of the present invention, other feature of the invention and its Advantage will become apparent.
Description of the drawings
The attached drawing of a part for constitution instruction describes the embodiment of the present invention, and is used to solve together with the description Release the principle of the present invention.
With reference to attached drawing, according to following detailed description, the present invention can be more clearly understood, wherein:
Fig. 1 is the flow diagram of one embodiment of the method the present invention is based on Internetbank access registrar.
Fig. 2 is the flow diagram of another embodiment of the method the present invention is based on Internetbank access registrar.
Fig. 3 is the flow diagram of the further embodiment of the method the present invention is based on Internetbank access registrar.
Fig. 4 is the structure diagram of one embodiment of Internetbank Verification System of the present invention.
Fig. 5 is the structure diagram of another embodiment of Internetbank Verification System of the present invention.
Fig. 6 is the structure diagram of the further embodiment of Internetbank Verification System of the present invention.
Fig. 7 is the structure diagram of one embodiment of the system the present invention is based on Internetbank access registrar.
Specific embodiment
Carry out the various exemplary embodiments of detailed description of the present invention now with reference to attached drawing.It should be noted that:Unless in addition have Body illustrates that the unlimited system of component and the positioned opposite of step, numerical expression and the numerical value otherwise illustrated in these embodiments is originally The range of invention.
Simultaneously, it should be appreciated that for ease of description, the size of the various pieces shown in attached drawing is not according to reality Proportionate relationship draw.
It is illustrative to the description only actually of at least one exemplary embodiment below, is never used as to the present invention And its application or any restrictions that use.
Technology, method and apparatus known to person of ordinary skill in the relevant may be not discussed in detail, but suitable In the case of, the technology, method and apparatus should be considered as authorizing part of specification.
In shown here and discussion all examples, any occurrence should be construed as merely illustrative, without It is as limitation.Therefore, the other examples of exemplary embodiment can have different values.
It should be noted that:Similar label and letter represents similar terms in following attached drawing, therefore, once a certain Xiang Yi It is defined in a attached drawing, then in subsequent attached drawing does not need to that it is further discussed.
To make the objectives, technical solutions, and advantages of the present invention clearer, below in conjunction with specific embodiment, and reference Attached drawing, the present invention is described in more detail.
Fig. 1 is the flow diagram of one embodiment of the method the present invention is based on Internetbank access registrar.This method is by net Silver-colored Verification System, includes the following steps:
In step 110, show that certification Quick Response Code is believed to user by PC (personal computer, personal computer) Breath.Wherein, when for when PC machine accesses Internetbank, Internetbank Verification System can be shown on PC to include dynamic credentials Quick Response Code.
In step 120, the parameters for authentication uploaded after Internetbank client scan Quick Response Code is received.For example, user opens Internetbank The Quick Response Code is scanned after the Internetbank client of the mobile phone of account binding, link is obtained and shakes hands with Internetbank Verification System, upload IMSI (International Mobile Subscriber Identification Number, international mobile subscriber identity) etc. Parameters for authentication.
In step 130, geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, so as to Internetbank Access system carries out enhancing certification.For example, the IMSI information acquisition mobile phone that Internetbank Verification System is uploaded according to Internetbank client Reason position and the legal region that prestores are authenticated and carry out inclusive authentication.
In this embodiment, Internetbank Verification System is by user's two-dimensional code display, and after user uploads parameters for authentication, Geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, it can be ensured that access the PC machine and Internetbank of Internetbank The terminal of binding accesses internet banking system in same geographical location, and in Internet access place, therefore, improves Internetbank access Safety.
Fig. 2 is the flow diagram of another embodiment of the method the present invention is based on Internetbank access registrar.This method packet Include following steps:
In step 210, Internetbank Verification System shows the Quick Response Code for including dynamic credentials in PC machine.
In step 220, the Internetbank client scan of the terminal of the Internetbank account number binding Quick Response Code is held with Internetbank Verification System The parameters for authentication such as IMSI number are passed on hand.
In step 230, Internetbank Verification System sends location-authentication request to location-authentication unit, wherein, location-authentication please The parameters such as IMSI number are included in asking.Location-authentication unit can be set to inside bank, can also be set to telecommunications side, to Internetbank Open system interface.
In step 240, location-authentication unit will be sent to Internetbank certification with the corresponding zone position informations of having the right of IMSI System.Wherein, user can pre-set the place of having the right for accessing Internetbank, such as family, office etc., and place of having the right preserves in place Put authentication unit.
It, can be with the end of Internetbank account binding after location-authentication unit receives the IMSI parameters of Internetbank Verification System transmission The number at end is matched, and further improves the legitimacy of user.
In step 250, Internetbank Verification System positions the terminal of Internetbank account number binding according to IMSI.For example, pass through Communication network carries out terminal positioning, avoids client by counterfeit upload dummy location coordinate.Wherein, communication network includes but unlimited In WCDMA, CDMA, TD-CDMA, WiFi, LTE etc., including but not limited to 2G, 3G, 4G mobile network.
In step 260, if positioning result matches with the zone position information of having the right that location-authentication unit is sent, it is determined that The authentication is passed for terminal geographic position.
In this embodiment, for user when carrying out Internetbank operation in PC machine, Internetbank Verification System is in PC machine screen display Certification Quick Response Code, Quick Response Code carry dynamic credentials, and the Internetbank client scan Quick Response Code of the terminal of user's Internetbank binding obtains Authentication information and Internetbank Verification System is taken to interact, Internetbank Verification System uploads IMSI information according to client and obtains terminal geographic position Legal region of putting and prestore is authenticated and carries out inclusive authentication.The embodiment can ensure that the PC machine for accessing Internetbank and binding terminal In same geographical location, and the legal place to use specified in user could pass through identification safety authentication, it is therefore prevented that U-shield and password It loses, the security risk that mobile phone is controlled by wooden horse.
Fig. 3 is the flow diagram of the further embodiment of the method the present invention is based on Internetbank access registrar.This method packet Include following steps:
In step 310, Internetbank Verification System shows the Quick Response Code for including dynamic credentials in PC machine.
In step 320, the Internetbank client scan of the terminal of the Internetbank account number binding Quick Response Code is held with Internetbank Verification System The parameters for authentication such as IMSI number are passed on hand.
In step 330, Internetbank Verification System sends location-authentication request to location-authentication unit, wherein, location-authentication please The parameters such as IMSI number are included in asking.Location-authentication unit can be set to inside bank, can also be set to telecommunications side, to Internetbank Open system interface.
In step 340, the number relationship of the terminal of location-authentication unit certification IMSI number and the binding of Internetbank account.
In step 350, location-authentication unit positions terminal according to IMSI information, such as is carried out by communication network Terminal positioning avoids client by counterfeit upload dummy location coordinate.
In step 360, the positioning result of the location-authentication unit judges terminal area that has the right corresponding with the IMSI information preserved Whether location information domain matches, if matching, it is determined that the authentication is passed for terminal geographic position.Wherein, location-authentication unit is set Put the place of having the right that user accesses Internetbank.For example, user is needed when bank counter opens Web bank for bank card into line position Put information registering.Certainly, user can fill in personal information in webpage client, initiate registration.Personal information includes user One or more kinds of in name, account name, bank's card number, phone number, registration mailbox address, Internetbank client makees above- mentioned information Location-authentication unit is sent to for registration request, preserves the pre-stored location of user.
In step 370, authentication result information is sent to Internetbank Verification System by location-authentication unit.
In this embodiment, on the basis of combining binding mobile phone terminal location-authentication in existing access Internetbank, increase The step of terminal scanning certification Quick Response Code step and IMSI number are with binding number relationship certification, is ensured of user and binds mobile phone etc. Terminal operates at the scene rather than trojan horse program is forged, and quasi-complement loophole existing for existing scheme further improves having for certification Effect property, avoids the risk that user mobile phone was controlled and stolen brush Internetbank by trojan horse program.
Fig. 4 is the structure diagram of one embodiment of Internetbank Verification System of the present invention.The Internetbank Verification System includes two Code display unit 410, parameters for authentication receiving unit 420 and geographical location authenticating unit 430 are tieed up, wherein:
Quick Response Code display unit 410 is used to show certification 2 D code information to user.Wherein, when in PC machine access net When silver-colored, Internetbank Verification System can show the Quick Response Code for including dynamic credentials on PC.Parameters for authentication receiving unit 420 are used to receive the parameters for authentication uploaded after Internetbank client scan Quick Response Code.For example, user opens the hand of Internetbank account binding The Quick Response Code is scanned after the Internetbank client of machine, link is obtained and shakes hands with Internetbank Verification System, upload the parameters for authentication such as IMSI.Ground It manages position authenticating unit 430 to be used to carry out geographical location authentication to terminal where Internetbank client according to parameters for authentication, so as to right Internetbank accesses system and carries out enhancing certification.For example, Internetbank Verification System obtains hand according to the IMSI information that Internetbank client uploads Machine geographical location and the legal region that prestores are authenticated and carry out inclusive authentication.
In this embodiment, Internetbank Verification System is by user's two-dimensional code display, and after user uploads parameters for authentication, Geographical location authentication is carried out to terminal where Internetbank client according to parameters for authentication, it can be ensured that access the PC machine and Internetbank of Internetbank The terminal of binding accesses internet banking system in same geographical location, and in Internet access place, therefore, improves Internetbank access Safety.
Fig. 5 is the structure diagram of another embodiment of Internetbank Verification System of the present invention.The Internetbank Verification System includes Quick Response Code display unit 510, parameters for authentication receiving unit 520 and geographical location authenticating unit 530, wherein, geographical location authentication Unit 530 includes location-authentication request module 531, regional location receiving module 532 of having the right, locating module 533 and position authentication Module 534, wherein:
Quick Response Code display unit 510 is used to show the Quick Response Code for including dynamic credentials to user by PC machine.Certification Parameter receiving unit 520 for receive after the Internetbank client scan of terminal of the Internetbank account number binding Quick Response Code with Internetbank certification System is shaken hands the parameters for authentication such as IMSI number of upload.Location-authentication request module 531 in geographical location authenticating unit 530 is used for Location-authentication request is sent to location-authentication unit, wherein, include the parameters such as IMSI number in location-authentication request.Location-authentication list Member can be set to inside bank, can also be set to telecommunications side, to internet banking system open interface.Have the right regional location receive mould Block 532 is used to receiving that position authentication unit to send and the corresponding zone position informations of having the right of IMSI.Wherein, user can be pre- First setting accesses the place of having the right of Internetbank, such as family, office etc., place of having the right are stored in location-authentication unit.In addition, position After authentication unit receives the IMSI parameters of Internetbank Verification System transmission, the number of terminal that can be bound with Internetbank account carries out Matching further improves the legitimacy of user.Locating module 533 is used to determine the terminal of Internetbank account number binding according to IMSI Position.For example, carrying out terminal positioning by communication network, client is avoided by counterfeit upload dummy location coordinate.Position authenticates mould If block 534 matches for positioning result with the zone position information of having the right that location-authentication unit is sent, it is determined that terminal geographic The authentication is passed for position.
In this embodiment, for user when carrying out Internetbank operation in PC machine, Internetbank Verification System is in PC machine screen display Certification Quick Response Code, Quick Response Code carry dynamic credentials, and the Internetbank client scan Quick Response Code of the terminal of user's Internetbank binding obtains Authentication information and Internetbank Verification System is taken to interact, Internetbank Verification System uploads IMSI information according to client and obtains terminal geographic position Legal region of putting and prestore is authenticated and carries out inclusive authentication.The embodiment can ensure that the PC machine for accessing Internetbank and binding terminal In same geographical location, and the legal place to use specified in user could pass through identification safety authentication, it is therefore prevented that U-shield and password It loses, the security risk that mobile phone is controlled by wooden horse.
Fig. 6 is the structure diagram of the further embodiment of Internetbank Verification System of the present invention.The Internetbank Verification System includes Quick Response Code display unit 610, parameters for authentication receiving unit 620 and geographical location authenticating unit 630, wherein, geographical location authentication Unit 630 includes location-authentication request module 631 and position authenticating result receiving module 632, wherein:
Quick Response Code display unit 610 is used to show the Quick Response Code for including dynamic credentials to user by PC machine.Certification Parameter receiving unit 620 for receive after the Internetbank client scan of terminal of the Internetbank account number binding Quick Response Code with Internetbank certification System is shaken hands the parameters for authentication such as IMSI number of upload.Location-authentication request module 631 in geographical location authenticating unit 630 is used for Location-authentication request is sent to location-authentication unit, wherein, include the parameters such as IMSI number in location-authentication request.Location-authentication list After the number relationship of first certification IMSI number and the terminal of Internetbank account binding, terminal is positioned according to IMSI information, such as Terminal positioning is carried out by communication network, avoids client by counterfeit upload dummy location coordinate;Then judge the positioning of terminal As a result whether zone position information of having the right corresponding with the IMSI information of preservation matches, if matching, it is determined that terminal geographic The authentication is passed for position.Position authenticating result receiving module 632 is used to receive the authenticating result letter that the location-authentication unit is sent Breath.
In this embodiment, on the basis of combining binding mobile phone terminal location-authentication in existing access Internetbank, increase The step of terminal scanning certification Quick Response Code step and IMSI number are with binding number relationship certification, is ensured of user and binds mobile phone etc. Terminal operates at the scene rather than trojan horse program is forged, and quasi-complement loophole existing for existing scheme further improves having for certification Effect property, avoids the risk that user mobile phone was controlled and stolen brush Internetbank by trojan horse program.
Fig. 7 is the structure diagram of one embodiment of the system the present invention is based on Internetbank access registrar.The system includes Location-authentication unit 710 and Internetbank Verification System 720.Wherein, Internetbank Verification System 720 has carried out in detail in the above-described embodiments It is thin to introduce, it is no longer expanded on further herein.Location-authentication unit 710 is set to inside bank, and it is lateral can also to be set to telecommunications Internet banking system open interface, for preserving the place of having the right that user accesses Internetbank.In addition, location-authentication unit 710 can be with root The terminals such as mobile phone are positioned by locating platform according to IMSI number and the mobile phone of certification IMSI number and Internetbank account number binding Number relationship.
In this embodiment, on the basis of combining binding mobile phone terminal location-authentication in existing access Internetbank, increase The step of mobile phone scanning certification Quick Response Code step and IMSI number are with binding number relationship certification, is ensured of user and binds mobile phone and exist Execute-in-place rather than trojan horse program forge, and quasi-complement loophole existing for existing scheme further improves the validity of certification, keeps away The risk that user mobile phone was controlled and stolen brush Internetbank by trojan horse program is exempted from.In addition, due to increasing client barcode scanning step, the operation Facilitate easy to spread.
Present embodiments can apply in unified certification ability system, the enhancing certification energy of binding site is opened to each big bank Power can also apply in the identity authorization system that other need high confidence level.
So far, the present invention is described in detail.In order to avoid the design of the masking present invention, it is public that this field institute is not described Some details known.Those skilled in the art as described above, can be appreciated how to implement technology disclosed herein completely Scheme.
The method and device of the present invention may be achieved in many ways.For example, can by software, hardware, firmware or Person's software, hardware, firmware any combinations come realize the present invention method and device.The step of for the method it is above-mentioned Sequence is merely to illustrate, and the step of method of the invention is not limited to sequence described in detail above, unless with other sides Formula illustrates.In addition, in some embodiments, the present invention can be also embodied as recording program in the recording medium, these Program includes being used to implement machine readable instructions according to the method for the present invention.Thus, the present invention also covering stores to perform The recording medium of program according to the method for the present invention.
Although some specific embodiments of the present invention are described in detail by example, the skill of this field Art personnel it should be understood that above example merely to illustrating, the range being not intended to be limiting of the invention.The skill of this field Art personnel are it should be understood that can without departing from the scope and spirit of the present invention modify to above example.This hair Bright range is defined by the following claims.

Claims (11)

  1. A kind of 1. method based on Internetbank access registrar, which is characterized in that including:
    Certification 2 D code information is shown to user by personal computer PC, wherein the Quick Response Code includes dynamic credentials;
    Receive the parameters for authentication uploaded after Quick Response Code described in Internetbank client scan;
    Geographical location authentication is carried out to terminal where the Internetbank client according to the parameters for authentication, is to access Internetbank System carries out enhancing certification.
  2. 2. according to the method described in claim 1, it is characterized in that, receive what is uploaded after Quick Response Code described in Internetbank client scan Parameters for authentication includes:
    Receive the international mobile subscriber identity uploaded after Quick Response Code described in the client scan of the terminal of Internetbank account binding IMSI information.
  3. 3. according to the method described in claim 2, it is characterized in that, according to the parameters for authentication to where the Internetbank client Terminal carries out geographical location authentication and includes:
    Location-authentication request is sent to location-authentication unit, wherein, the location-authentication request includes the IMSI information;
    Receive the zone position information of having the right corresponding with the IMSI information that the location-authentication unit is sent;
    The terminal is positioned according to the IMSI information;
    If the zone position information of having the right that positioning result is sent with the location-authentication unit matches, it is determined that the terminal Managing position, the authentication is passed.
  4. 4. according to the method described in claim 2, it is characterized in that, according to the authentication information to terminal where the client Geographical location authentication is carried out to include:
    Location-authentication request is sent to location-authentication unit, so that the location-authentication unit is to the IMSI information and the net After the number of the terminal of silver-colored account binding is matched, the terminal is positioned according to IMSI information, wherein, the position Certification request includes the IMSI information;
    The authentication result information that the location-authentication unit is sent is received, wherein, the location-authentication unit is if it is determined that the end The positioning result at end zone position information of having the right corresponding with the IMSI information preserved matches, it is determined that the terminal Managing position, the authentication is passed.
  5. 5. method according to claim 3 or 4, which is characterized in that the mode positioned to the terminal is communication network Network positions.
  6. 6. a kind of Internetbank Verification System, which is characterized in that including:
    Quick Response Code display unit shows certification 2 D code information, wherein the Quick Response Code includes dynamic for passing through PC to user Authentication information;
    Parameters for authentication receiving unit, for receiving the parameters for authentication uploaded after Quick Response Code described in Internetbank client scan;
    Geographical location authenticating unit, for carrying out geographical location to terminal where the Internetbank client according to the parameters for authentication Authentication carries out enhancing certification to access system to Internetbank.
  7. 7. system according to claim 6, which is characterized in that the parameters for authentication receiving unit is used to receive Internetbank account The international mobile subscriber identity IMSI information uploaded after Quick Response Code described in the client scan of the terminal of binding.
  8. 8. system according to claim 7, which is characterized in that the geographical location authenticating unit is asked including location-authentication Module, regional location receiving module of having the right, locating module and position authentication module;
    The location-authentication request module is used to send location-authentication request to location-authentication unit, wherein, the location-authentication Request includes the IMSI information;
    It is described to have the right regional location receiving module for receiving the corresponding with the IMSI information of the location-authentication unit transmission Zone position information of having the right;
    The locating module is used to position the terminal according to the IMSI information;
    If the zone position manner of breathing of having the right that the position authentication module sends for positioning result with the location-authentication unit Matching, it is determined that the authentication is passed for the terminal geographic position.
  9. 9. system according to claim 7, which is characterized in that the geographical location authenticating unit is asked including location-authentication Module and position authenticating result receiving module;
    The location-authentication request module is used to send location-authentication request to location-authentication unit, so as to the location-authentication list After member matches the IMSI information with the number of terminal that the Internetbank account is bound, according to IMSI information to the end End is positioned, wherein, the location-authentication request includes the IMSI information;
    The position authenticating result receiving module is used to receive the authentication result information that the location-authentication unit is sent, wherein, The location-authentication unit is if it is determined that the positioning result of terminal region position of having the right corresponding with the IMSI information preserved Put information match, it is determined that the authentication is passed for the terminal geographic position.
  10. 10. system according to claim 8 or claim 9, which is characterized in that the mode positioned to the terminal is communication network Network positions.
  11. 11. a kind of system based on Internetbank access registrar, which is characterized in that appoint including location-authentication unit and claim 6-10 Internetbank Verification System described in one.
CN201611161567.2A 2016-12-15 2016-12-15 Method, system and Internetbank Verification System based on Internetbank access registrar Pending CN108234411A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611161567.2A CN108234411A (en) 2016-12-15 2016-12-15 Method, system and Internetbank Verification System based on Internetbank access registrar

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611161567.2A CN108234411A (en) 2016-12-15 2016-12-15 Method, system and Internetbank Verification System based on Internetbank access registrar

Publications (1)

Publication Number Publication Date
CN108234411A true CN108234411A (en) 2018-06-29

Family

ID=62651476

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611161567.2A Pending CN108234411A (en) 2016-12-15 2016-12-15 Method, system and Internetbank Verification System based on Internetbank access registrar

Country Status (1)

Country Link
CN (1) CN108234411A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112418880A (en) * 2020-11-07 2021-02-26 许尧龙 Two-dimensional code electronic authentication label and system

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104811417A (en) * 2014-01-23 2015-07-29 宇龙计算机通信科技(深圳)有限公司 Network banking application authentication method, apparatus and system, and network banking server
CN104869127A (en) * 2015-06-24 2015-08-26 郑州悉知信息技术有限公司 Website login method, code-scanning client and server
CN105282150A (en) * 2015-09-16 2016-01-27 武汉理工大学 Log-in assistant system for Web system
CN105450416A (en) * 2014-09-01 2016-03-30 阿里巴巴集团控股有限公司 Security authentication method and apparatus
CN105472737A (en) * 2015-12-31 2016-04-06 上海华为技术有限公司 Terminal positioning method and server
US20160162875A1 (en) * 2012-02-17 2016-06-09 Paypal, Inc. Login using qr code

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160162875A1 (en) * 2012-02-17 2016-06-09 Paypal, Inc. Login using qr code
CN104811417A (en) * 2014-01-23 2015-07-29 宇龙计算机通信科技(深圳)有限公司 Network banking application authentication method, apparatus and system, and network banking server
CN105450416A (en) * 2014-09-01 2016-03-30 阿里巴巴集团控股有限公司 Security authentication method and apparatus
CN104869127A (en) * 2015-06-24 2015-08-26 郑州悉知信息技术有限公司 Website login method, code-scanning client and server
CN105282150A (en) * 2015-09-16 2016-01-27 武汉理工大学 Log-in assistant system for Web system
CN105472737A (en) * 2015-12-31 2016-04-06 上海华为技术有限公司 Terminal positioning method and server

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112418880A (en) * 2020-11-07 2021-02-26 许尧龙 Two-dimensional code electronic authentication label and system

Similar Documents

Publication Publication Date Title
CN105591744B (en) A kind of genuine cyber identification authentication method and system
CN103888451B (en) Authorization method, the apparatus and system of certification
US20180295137A1 (en) Techniques for dynamic authentication in connection within applications and sessions
CN106233663B (en) System and method for carrying strong authentication event on the different channels
CN103249045B (en) A kind of methods, devices and systems of identification
CN101997824B (en) Identity identifying method based on mobile terminal and device thereof and system
KR101019458B1 (en) Extended one­time password method and apparatus
CN105306490B (en) Payment verifying system, method and device
CN105933353B (en) The realization method and system of secure log
JP5258422B2 (en) Mutual authentication system, mutual authentication method and program
CN104144163B (en) Auth method, apparatus and system
CN107689944A (en) Identity identifying method, device and system
CN104618315B (en) A kind of method, apparatus and system of verification information push and Information Authentication
JP2011141785A (en) Member registration system using portable terminal and authentication system
CN103905194B (en) Identity traceability authentication method and system
CN108605037B (en) Method for transmitting digital information
JP2007264835A (en) Authentication method and system
CN106302332B (en) Access control method, the apparatus and system of user data
US20130055356A1 (en) Method and system for authorizing an action at a site
US20170331821A1 (en) Secure gateway system and method
CN107113613A (en) Server, mobile terminal, real-name network authentication system and method
CN109284599A (en) It the use of portable electronic device is the method and system that user creates strong authentication
WO2014072725A1 (en) Mobile tag reader security system
JP2015099470A (en) System, method, and server for authentication, and program
CN104584479B (en) The method that safety service is provided using CyberID

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20180629