CN113407923A - Body-building method, device and equipment - Google Patents
Body-building method, device and equipment Download PDFInfo
- Publication number
- CN113407923A CN113407923A CN202110578493.7A CN202110578493A CN113407923A CN 113407923 A CN113407923 A CN 113407923A CN 202110578493 A CN202110578493 A CN 202110578493A CN 113407923 A CN113407923 A CN 113407923A
- Authority
- CN
- China
- Prior art keywords
- token
- enterprise
- corporate
- processed
- service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 77
- 238000012795 verification Methods 0.000 claims abstract description 28
- 238000013475 authorization Methods 0.000 claims abstract description 16
- 230000036039 immunity Effects 0.000 claims description 10
- 230000003053 immunization Effects 0.000 claims description 7
- 238000002649 immunization Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 abstract description 18
- 238000010586 diagram Methods 0.000 description 14
- 230000006870 function Effects 0.000 description 9
- 230000006872 improvement Effects 0.000 description 9
- 238000004590 computer program Methods 0.000 description 7
- 238000012545 processing Methods 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 6
- 230000000694 effects Effects 0.000 description 4
- 238000012546 transfer Methods 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000000750 progressive effect Effects 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 230000001413 cellular effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000007613 environmental effect Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000005055 memory storage Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 229920001296 polysiloxane Polymers 0.000 description 1
- 238000004064 recycling Methods 0.000 description 1
- 238000012954 risk control Methods 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The embodiment of the specification discloses a method, a device and equipment for coring a body. The method comprises the following steps: acquiring an enterprise account of a service to be processed; performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account; if the enterprise core passes, performing personal core on the operator of the service to be processed; and if the personal core passes, risk release is carried out on the service to be processed. By adopting the body-checking method provided by the embodiment of the specification, diversified body-checking modes can be realized, token authorization can be freely realized, the disturbance to the user in the body-checking process is reduced, and the user experience is improved.
Description
Technical Field
The present disclosure relates to the field of computer technologies, and in particular, to a method, an apparatus, and a device for body verification.
Background
Under the trend of digital operation, the demand of the merchants for digitalization also meets the unprecedented development and opportunity. Under the drive of diversified digital finance, services and digital life styles, the merchant faces certain potential safety hazards and has higher risk because the amount of money involved in the transaction process of the merchant is larger. In order to ensure the safety of the transaction, the identity authentication of the enterprise, namely the identity verification of the enterprise, is required to be carried out in the transaction process.
At present, enterprise kernel is mainly completed at a PC (personal computer) end, and a kernel mode based on the PC end can be influenced by the compatibility of a browser at the PC end, so that the kernel passing rate is low, the user is disturbed highly, and the user experience effect is poor.
Therefore, a new core body method is needed, which can bring better core body test and improve the core body passing rate.
Disclosure of Invention
The embodiment of the specification provides a core body method, which is used for solving the following technical problems: the core mode based on the PC end can be influenced by the compatibility of the PC end browser, the core through rate is low, the disturbance to the user is high, and the user experience effect is poor.
In order to solve the above technical problem, the embodiments of the present specification are implemented as follows:
an embodiment of the present specification provides a core method, including:
acquiring an enterprise account of a service to be processed;
performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
if the enterprise core passes, performing personal core on the operator of the service to be processed;
and if the personal core passes, risk release is carried out on the service to be processed.
An embodiment of the present specification further provides a core body device, including:
the acquisition module acquires an enterprise account of the service to be processed;
the first body checking module is used for carrying out enterprise body checking on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
the second body checking module is used for carrying out personal body checking on the operator of the business to be processed if the enterprise body checking passes;
and the risk release module is used for releasing the risk of the service to be processed if the personal core passes through.
An embodiment of the present specification further provides an electronic device, including:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to:
acquiring an enterprise account of a service to be processed;
performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
if the enterprise core passes, performing personal core on the operator of the service to be processed;
and if the personal core passes, risk release is carried out on the service to be processed.
The embodiment of the specification provides a core body method, which is used for acquiring an enterprise account of a service to be processed; performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account; if the enterprise core passes, performing personal core on the operator of the service to be processed; and if the personal core passes, risk release is carried out on the service to be processed. By adopting the body-checking method provided by the embodiment of the specification, diversified body-checking modes can be realized, token authorization can be freely realized, the disturbance to the user in the body-checking process is reduced, and the user experience is improved.
Drawings
In order to more clearly illustrate the embodiments of the present specification or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, it is obvious that the drawings in the following description are only some embodiments described in the present specification, and for those skilled in the art, other drawings can be obtained according to the drawings without any creative effort.
Fig. 1 is a schematic diagram of a body core method provided in an embodiment of the present disclosure;
fig. 2 is a block diagram of a body core method according to an embodiment of the present disclosure;
FIG. 3 is a system hierarchy diagram of a core-body method provided by an embodiment of the present disclosure;
fig. 4 is a schematic view of a core device provided in an embodiment of the present disclosure.
Detailed Description
In order to make those skilled in the art better understand the technical solutions in the present specification, the technical solutions in the embodiments of the present specification will be clearly and completely described below with reference to the drawings in the embodiments of the present specification, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be obtained by a person skilled in the art without making any inventive step based on the embodiments of the present disclosure, shall fall within the scope of protection of the present application.
At present, the enterprise core methods include a U shield, a digital certificate, an OTP (One Time Password), a KBA (Knowledge-based authentication), and the like. The PC-based core mode has the problems of environmental system compatibility, low core pass rate and high disturbance to users.
The electronic worker board is used as a new enterprise identity checking mode, the electronic worker board is used for releasing risks based on employees, and the enterprise needs to set three roles of a super manager, an administrator and an operator according to rules. The employee who has been placed in role can operate the enterprise account. And if the risk exists in the process of operating business transaction of the enterprise account by the operator, releasing the risk by the operator of the corresponding role according to the corresponding risk level. An operator with authority transfers to a mobile terminal by means of scanning two-dimensional codes and the like, and uses C (customer) rich data and a core section to perform core, so that the staff can release risks. However, the core mode based on the operator electronic workmanship cards needs to realize a set of complete system, enterprise management and maintenance of operator authority are needed, and the access cost of the core mode of the operator electronic workmanship cards is high; if the employee with the set operator authority leaves the office, the authority cannot be recovered in time, and the employee leaving the office still can operate the enterprise account to conduct transaction, so that the core mode of the operator electronic employee card has higher risk; if the operator authority is not actively removed, the operator authority is effective all the time, the operation range of the operator role is fixed, and the operation range cannot be changed, so that the flexibility of the body checking mode of the electronic operator card is poor.
In order to improve the user experience of the core of the enterprise and improve the core passing rate, the embodiment of the specification provides a new core mode.
Fig. 1 is a schematic diagram of a core-body method provided in an embodiment of the present disclosure, and as shown in fig. 1, the core-body method includes:
step S101: and acquiring an enterprise account of the service to be processed.
Based on the business of the enterprise account, when a risk exists in the process of business processing, the verification of the enterprise account is required to release the risk.
In the embodiment of the specification, the to-be-processed business is a business based on an enterprise account, and the to-be-processed business is a risky business. The judgment of the risk of the service to be processed is obtained based on the risk control system, and may also be obtained by adopting other risk judgment methods, and the judgment of the risk of the service to be processed does not constitute a limitation of the present application.
In a specific embodiment, the pending service may be a network-based service platform, such as a web publisher, a Taobao, and the like. Further, the application scenario of the service to be processed may be an account opening, settlement, transfer, cash withdrawal, refund, or other service scenario.
Step S103: and carrying out enterprise verification on the enterprise account of the service to be processed based on the corporate token of the enterprise account.
The enterprise identity verification means verifying enterprise identity information or merchant identity information, namely, identifying or authenticating an enterprise or a merchant.
In this embodiment, the corporate token is used to verify the corporate account of the to-be-processed service, or perform corporate authentication on the corporate account of the to-be-processed service. The corporate token represents the authority of the operator to operate the enterprise account, and in a specific embodiment, the corporate token is a key or certificate authorized by the corporate to the operator, so that the operator can operate the enterprise account and further perform operation with certain authority.
The authorization of the corporate token of the enterprise account can be preauthorized for the corporate to the operator, or can be authorized for the operator in the operation process, and the corporate token can be actively authorized for the corporate and can also apply for authorization for the operator. Specifically, a corporate token of an enterprise account is pre-authorized for an operator of the pending service;
and/or
And the legal token of the account is acquired after the to-be-processed service is acquired, and an operator of the to-be-processed service applies for acquisition.
The authorization of the legal token can be authorized to the operator according to a preset rule, and the legal token takes effect after the authorization. In the embodiment of the specification, the preset rule comprises the valid time of the legal token, and/or the business scene of the legal token, and/or the business range of the legal token.
After the corporate token of the enterprise is authorized to the operator, certain limitation is provided so as to ensure that different operators have corresponding corporate token authority. Therefore, in the embodiment of the present specification, the corporate token includes the valid time of the corporate token, and/or the business scenario of the corporate token, and/or the business scope of the corporate token.
Before the corporate token is used, the validity of the corporate token needs to be verified to confirm that an operator has the right to use the corporate token. In an embodiment of this specification, the enterprise coring the enterprise account of the service to be processed based on the corporate token of the enterprise account specifically includes:
verifying the validity of the corporate token of the enterprise account;
and if the validity verification of the corporate token of the enterprise account passes, performing enterprise authentication on the enterprise account of the service to be processed.
In an embodiment of this specification, the verifying the validity of the corporate token of the enterprise account specifically includes:
and verifying the valid time of the corporate token of the enterprise account, and/or the business scene of the corporate token, and/or the business range of the corporate token.
It should be noted that the valid time of the corporate token may be determined according to the business scenario of the corporate token and/or the business scope of the corporate token.
In the embodiment of the specification, the authority of an operator for using the token of the legal person can be recovered at any time, and the lifelong effective risk of one-time authorization is avoided, so that the safety and the flexibility of the token of the legal person are ensured. A legal person authorizes the operation authority of the staff or the operator in a token mode, frequent operation disturbance is reduced, the staff or the operator can complete the process that the staff or the operator can verify only through the legal person verification before the staff or the operator passes through the token of the legal person, and therefore working efficiency is improved.
In summary, the corporate token has a complete life cycle, specifically including authorization, verification, expiration, and recycling.
In the embodiment of the present specification, after the corporate token of the enterprise account is acquired, the business request of the to-be-processed business is reinitiated, and the enterprise account of the to-be-processed business is subjected to enterprise coring based on the corporate token of the enterprise account.
That is, after obtaining the authority of the corporate token, the corporate token needs to be re-initiated to identify the risk, and then the corporate is verified based on the corporate token of the enterprise account.
It should be particularly noted that when the corporate identity is verified by using the corporate token, the corporate token can be configured with immunity, that is, after the corporate identity is verified by using the corporate token, the identity of an operator does not need to be transferred to class C, that is, the identity of an individual is not needed to be verified. The corporate token configurable immunization includes: in a low-risk scene, and under the same environment, when the business is processed within a preset time, the legal token can be configured with immunity. The preset time can be determined according to a service scene and can also be determined according to a use habit. In a specific embodiment, in the same session window, within a preset time range, the corporate token may configure immunity, that is, it is only necessary to perform enterprise authentication based on the corporate token without performing personal authentication, and specific service scenarios are as follows: and opening an account. In one embodiment of the present description, the default time for the corporate token to configure immunization is 10 minutes.
Step S105: and if the enterprise core passes, performing personal core on the operator of the service to be processed.
Personal authentication refers to verifying the identity of a user or verifying the identity of an operator, i.e., identifying or authenticating the user or operator.
After the enterprise account of the business to be processed passes through the enterprise check, the fact that the operator obtains the pass of the enterprise account is proved, the operator and the enterprise have a binding relationship, and further personal check of the operator is needed. That is, the legal token is used as the bridge to change from B (business) to C (customer) for core.
In the embodiment of the present specification, the personal body-checking method may depend on a personal device, a body-checking method rich in biological information, and in a specific embodiment, the personal body-checking method includes: the device is a core body, a face core body, a fingerprint core body, an eye print core body, a KBA core body, a voice print core body and the like, and the mode of the personal core body does not form the limitation of the application.
Based on the legal token, the method for carrying out the body checking from B to C can realize more diversified body checking modes and more flexible body checking.
Step S107: and if the personal core passes, risk release is carried out on the service to be processed.
And after the business to be processed is subjected to the double-factor verification of the enterprise core body and the personal core body, the risk can be released, and the business to be processed is operated to complete the business to be processed.
By adopting the body core method provided by the embodiment of the specification, more diversified body core modes can be realized, the body core is more flexible, and better body core experience and body core passing rate are achieved.
For further understanding of the body core method provided in the embodiments of the present specification, fig. 2 is a frame diagram of a body core method provided in the embodiments of the present specification. As shown in fig. 2, after the operator initiates the enterprise account transaction operation, the wind control system performs identity authentication after finding that a risk exists. The enterprise core system firstly confirms whether the enterprise account opens the legal token or not, and applies for the legal token if the enterprise account opens the legal token and obtains the authorization of the legal. And after the legal token is successfully authorized, the legal token re-initiates a transaction request, and after the wind control system confirms the risk again, the identity authentication is carried out. And the enterprise identity checking system carries out validity verification on the legal token, and further carries out personal risk identification and personal identity checking after the legal token passes the validity verification. And after the identity authentication is successful, risk release is carried out, and the transaction is completed.
To further understand the core-body method provided by the embodiments of the present disclosure, the following description will be made in conjunction with system layering. Fig. 3 is a schematic diagram of system hierarchy of a core-body method provided in an embodiment of the present specification. As shown in fig. 3, includes a base layer, a technology layer, and an application layer. In the body-checking method provided in the embodiment of the present specification, in a specific implementation process, the base layer can implement an authorization relationship of a corporate token based on an association between each Business Unit (BU) and an enterprise account. Each business unit comprises a business scene, a merchant and an enterprise account, wherein the merchant can realize the association among legal persons, employees and enterprises. The corporate token can perform authentication of the corporate token, authorization records of the corporate token, and verification records of the corporate token.
The technical layer can be implemented by using a UAP (Unified Application Platform) Platform open SPI Interface (Serial Peripheral Interface). And the life cycles of legal token authorization, verification and the like are stored in the UAP platform, and the UAP platform confirms whether the operator can continuously execute subsequent risk release operation or not through the validity verification of the legal token. After the corporate token is adopted for enterprise body checking, the corporate token can be further transferred to carry out personal body checking or personal body checking. The personal nuclear body can adopt diversified nuclear body means, such as a nuclear body based on equipment, a human face, a fingerprint, a voiceprint, an eye print and the like.
In an application layer, the body verification method provided in the embodiment of the present specification can be used in a service scenario where a risk needs to be released, and specifically, the supportable service scenario includes an account opening scenario, a settlement scenario, a transfer scenario, a refund scenario, and the like; services that may be supported include network providers and the like. The core body method provided by the embodiment of the specification can support the personnel system of each BU in an economic body, completes the construction of enterprise and individual relation by realizing the SPI of the legal token, and releases enterprise transaction risk by using the individual payment account.
The core method provided by the embodiments of the present specification can be applied to a block chain. Specifically, the service to be processed may be obtained from a block chain; the enterprise account of the business to be processed is stored on the block chain; the enterprise core is completed on the block chain; the personal nuclear body is completed on a block chain; and the risk release of the service to be processed is completed on the block chain.
By adopting the body-checking method provided by the embodiment of the specification, diversified body-checking modes can be realized, token authorization can be freely realized, the disturbance to the user in the body-checking process is reduced, and the user experience is improved.
The above details a body-building method, and accordingly, the present specification also provides a body-building apparatus, as shown in fig. 4. Fig. 4 is a schematic view of a core device provided in an embodiment of the present disclosure, where the core device includes:
the acquisition module 401 acquires an enterprise account of a service to be processed;
the first identity checking module 403, configured to perform enterprise identity checking on the enterprise account of the to-be-processed service based on the corporate token of the enterprise account;
a second core module 405, configured to perform personal core on an operator of the to-be-processed service if the enterprise core passes through;
and a risk release module 407, configured to release the risk of the to-be-processed service if the personal core passes through.
Further, the corporate token of the enterprise account is pre-authorized for an operator of the pending transaction;
and/or
And the legal token of the account is acquired after the to-be-processed service is acquired, and an operator of the to-be-processed service applies for acquisition.
Further, the authorization of the corporate token may be authorized to the operator according to a preset rule, where the preset rule includes valid time of the corporate token, and/or a business scenario of the corporate token, and/or a business range of the corporate token.
Further, the enterprise checking the enterprise account of the to-be-processed service based on the corporate token of the enterprise account specifically includes:
verifying the validity of the corporate token of the enterprise account;
and if the validity verification of the corporate token of the enterprise account passes, performing enterprise authentication on the enterprise account of the service to be processed.
Further, the verifying the validity of the corporate token of the enterprise account specifically includes:
and verifying the valid time of the corporate token of the enterprise account, and/or the business scene of the corporate token, and/or the business range of the corporate token.
Further, the enterprise checking the enterprise account of the to-be-processed service based on the corporate token of the enterprise account specifically includes:
and after the legal token of the enterprise account is obtained, the business request of the business to be processed is initiated again, and the enterprise account of the business to be processed is subjected to enterprise verification based on the legal token of the enterprise account.
Furthermore, the corporate token can be configured with immunity, wherein the configured immunity refers to utilizing the corporate token to carry out enterprise core, and after the enterprise core passes through, individual core is not needed.
Further, the legal token configurable immunization comprises: in a low-risk scene, and under the same environment, when the business is processed within a preset time, the legal token can be configured with immunity.
An embodiment of the present specification further provides an electronic device, including:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to:
acquiring an enterprise account of a service to be processed;
performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
if the enterprise core passes, performing personal core on the operator of the service to be processed;
and if the personal core passes, risk release is carried out on the service to be processed.
Further, the corporate token of the enterprise account is pre-authorized for an operator of the pending transaction;
and/or
And the legal token of the account is acquired after the to-be-processed service is acquired, and an operator of the to-be-processed service applies for acquisition.
Further, the authorization of the corporate token may be authorized to the operator according to a preset rule, where the preset rule includes valid time of the corporate token, and/or a business scenario of the corporate token, and/or a business range of the corporate token.
Further, the enterprise checking the enterprise account of the to-be-processed service based on the corporate token of the enterprise account specifically includes:
verifying the validity of the corporate token of the enterprise account;
and if the validity verification of the corporate token of the enterprise account passes, performing enterprise authentication on the enterprise account of the service to be processed.
Further, the verifying the validity of the corporate token of the enterprise account specifically includes:
and verifying the valid time of the corporate token of the enterprise account, and/or the business scene of the corporate token, and/or the business range of the corporate token.
Further, the enterprise checking the enterprise account of the to-be-processed service based on the corporate token of the enterprise account specifically includes:
and after the legal token of the enterprise account is obtained, the business request of the business to be processed is initiated again, and the enterprise account of the business to be processed is subjected to enterprise verification based on the legal token of the enterprise account.
Furthermore, the corporate token can be configured with immunity, wherein the configured immunity refers to utilizing the corporate token to carry out enterprise core, and after the enterprise core passes through, individual core is not needed.
Further, the legal token configurable immunization comprises: in a low-risk scene, and under the same environment, when the business is processed within a preset time, the legal token can be configured with immunity.
The foregoing description has been directed to specific embodiments of this disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the embodiments of the apparatus, the electronic device, and the nonvolatile computer storage medium, since they are substantially similar to the embodiments of the method, the description is simple, and the relevant points can be referred to the partial description of the embodiments of the method.
The apparatus, the electronic device, the nonvolatile computer storage medium and the method provided in the embodiments of the present description correspond to each other, and therefore, the apparatus, the electronic device, and the nonvolatile computer storage medium also have similar advantageous technical effects to the corresponding method.
In the 90 s of the 20 th century, improvements in a technology could clearly distinguish between improvements in hardware (e.g., improvements in circuit structures such as diodes, transistors, switches, etc.) and improvements in software (improvements in process flow). However, as technology advances, many of today's process flow improvements have been seen as direct improvements in hardware circuit architecture. Designers almost always obtain the corresponding hardware circuit structure by programming an improved method flow into the hardware circuit. Thus, it cannot be said that an improvement in the process flow cannot be realized by hardware physical modules. For example, a Programmable Logic Device (PLD), such as a Field Programmable Gate Array (FPGA), is an integrated circuit whose Logic functions are determined by programming the Device by a user. A digital system is "integrated" on a PLD by the designer's own programming without requiring the chip manufacturer to design and fabricate application-specific integrated circuit chips. Furthermore, nowadays, instead of manually making an Integrated Circuit chip, such Programming is often implemented by "logic compiler" software, which is similar to a software compiler used in program development and writing, but the original code before compiling is also written by a specific Programming Language, which is called Hardware Description Language (HDL), and HDL is not only one but many, such as abel (advanced Boolean Expression Language), ahdl (alternate Hardware Description Language), traffic, pl (core universal Programming Language), HDCal (jhdware Description Language), lang, Lola, HDL, laspam, hardward Description Language (vhr Description Language), vhal (Hardware Description Language), and vhigh-Language, which are currently used in most common. It will also be apparent to those skilled in the art that hardware circuitry that implements the logical method flows can be readily obtained by merely slightly programming the method flows into an integrated circuit using the hardware description languages described above.
The controller may be implemented in any suitable manner, for example, the controller may take the form of, for example, a microprocessor or processor and a computer-readable medium storing computer-readable program code (e.g., software or firmware) executable by the (micro) processor, logic gates, switches, an Application Specific Integrated Circuit (ASIC), a programmable logic controller, and an embedded microcontroller, examples of which include, but are not limited to, the following microcontrollers: the ARC625D, Atmel AT91SAM, Microchip PIC18F26K20, and Silicone Labs C8051F320, the memory controller may also be implemented as part of the control logic for the memory. Those skilled in the art will also appreciate that, in addition to implementing the controller as pure computer readable program code, the same functionality can be implemented by logically programming method steps such that the controller is in the form of logic gates, switches, application specific integrated circuits, programmable logic controllers, embedded microcontrollers and the like. Such a controller may thus be considered a hardware component, and the means included therein for performing the various functions may also be considered as a structure within the hardware component. Or even means for performing the functions may be regarded as being both a software module for performing the method and a structure within a hardware component.
The systems, devices, modules or units illustrated in the above embodiments may be implemented by a computer chip or an entity, or by a product with certain functions. One typical implementation device is a computer. In particular, the computer may be, for example, a personal computer, a laptop computer, a cellular telephone, a camera phone, a smartphone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or a combination of any of these devices.
For convenience of description, the above devices are described as being divided into various units by function, and are described separately. Of course, the functionality of the various elements may be implemented in the same one or more software and/or hardware implementations in implementing one or more embodiments of the present description.
As will be appreciated by one skilled in the art, the present specification embodiments may be provided as a method, system, or computer program product. Accordingly, embodiments of the present description may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, embodiments of the present description may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and so forth) having computer-usable program code embodied therein.
The description has been presented with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the description. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
The memory may include forms of volatile memory in a computer readable medium, Random Access Memory (RAM) and/or non-volatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). Memory is an example of a computer-readable medium.
Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape disk storage or other magnetic storage devices, or any other non-transmission medium which can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
This description may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The specification may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the system embodiment, since it is substantially similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to the partial description of the method embodiment.
The above description is only an example of the present specification, and is not intended to limit the present application. Various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application should be included in the scope of the claims of the present application.
Claims (10)
1. A method of coring a body, the method comprising:
acquiring an enterprise account of a service to be processed;
performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
if the enterprise core passes, performing personal core on the operator of the service to be processed;
and if the personal core passes, risk release is carried out on the service to be processed.
2. The method of claim 1, wherein the corporate token of the enterprise account is pre-authorized for an operator of the pending transaction;
and/or
And the legal token of the account is acquired after the to-be-processed service is acquired, and an operator of the to-be-processed service applies for acquisition.
3. The method of claim 1, wherein the authorization of the corporate token can be authorized to the operator according to preset rules, and the preset rules comprise valid time of the corporate token, and/or business scenario of the corporate token, and/or business scope of the corporate token.
4. The method according to claim 1, wherein the enterprise account of the to-be-processed service is subjected to enterprise coring based on the corporate token of the enterprise account, specifically comprising:
verifying the validity of the corporate token of the enterprise account;
and if the validity verification of the corporate token of the enterprise account passes, performing enterprise authentication on the enterprise account of the service to be processed.
5. The method of claim 4, wherein the validating the corporate token of the enterprise account specifically comprises:
and verifying the valid time of the corporate token of the enterprise account, and/or the business scene of the corporate token, and/or the business range of the corporate token.
6. The method according to claim 1, wherein the enterprise account of the to-be-processed service is subjected to enterprise coring based on the corporate token of the enterprise account, specifically comprising:
and after the legal token of the enterprise account is obtained, the business request of the business to be processed is initiated again, and the enterprise account of the business to be processed is subjected to enterprise verification based on the legal token of the enterprise account.
7. The method of claim 1, wherein the corporate token is configurable for immunization, wherein the configurable immunization refers to utilizing the corporate token for enterprise core, and after the enterprise core passes, individual core is not needed.
8. The method of claim 7, the legal token configurable immunization comprising: in a low-risk scene, and under the same environment, when the business is processed within a preset time, the legal token can be configured with immunity.
9. A device for coring, the device comprising:
the acquisition module acquires an enterprise account of the service to be processed;
the first body checking module is used for carrying out enterprise body checking on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
the second body checking module is used for carrying out personal body checking on the operator of the business to be processed if the enterprise body checking passes;
and the risk release module is used for releasing the risk of the service to be processed if the personal core passes through.
10. An electronic device, comprising:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein,
the memory stores instructions executable by the at least one processor to enable the at least one processor to:
acquiring an enterprise account of a service to be processed;
performing enterprise verification on the enterprise account of the business to be processed based on the corporate token of the enterprise account;
if the enterprise core passes, performing personal core on the operator of the service to be processed;
and if the personal core passes, risk release is carried out on the service to be processed.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110578493.7A CN113407923B (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
| CN202310868061.9A CN116881891A (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110578493.7A CN113407923B (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
Related Child Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310868061.9A Division CN116881891A (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN113407923A true CN113407923A (en) | 2021-09-17 |
| CN113407923B CN113407923B (en) | 2023-07-14 |
Family
ID=77675410
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310868061.9A Pending CN116881891A (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
| CN202110578493.7A Active CN113407923B (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310868061.9A Pending CN116881891A (en) | 2021-05-26 | 2021-05-26 | Nuclear method, device and equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (2) | CN116881891A (en) |
Citations (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104104671A (en) * | 2014-06-30 | 2014-10-15 | 重庆智韬信息技术中心 | System for establishing unified dynamic authorization code for enterprise legal person account |
| US9391980B1 (en) * | 2013-11-11 | 2016-07-12 | Google Inc. | Enterprise platform verification |
| AU2016206396A1 (en) * | 2008-12-31 | 2016-08-11 | Paypal, Inc. | Unified identity verification |
| CN107645512A (en) * | 2017-10-20 | 2018-01-30 | 国信嘉宁数据技术有限公司 | The method, apparatus and server of a kind of authentication |
| WO2018217950A2 (en) * | 2017-05-23 | 2018-11-29 | Kopf Kenneth A | Biometric secure transaction system |
| CN110011957A (en) * | 2018-12-13 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Safety certifying method, device, electronic equipment and the storage medium of business account |
| CN110336797A (en) * | 2019-06-18 | 2019-10-15 | 阿里巴巴集团控股有限公司 | Corporate authentication, certification retroactive method, device and equipment based on block chain |
| CN110348188A (en) * | 2019-05-31 | 2019-10-18 | 阿里巴巴集团控股有限公司 | One seed nucleus body method of calibration and device |
| CN110445775A (en) * | 2019-07-24 | 2019-11-12 | 阿里巴巴集团控股有限公司 | Method and apparatus for account management |
| CN110795707A (en) * | 2019-10-25 | 2020-02-14 | 支付宝(杭州)信息技术有限公司 | Core body strategy recommendation method and device and electronic equipment |
| US10587413B1 (en) * | 2017-07-26 | 2020-03-10 | EMC IP Holding Company LLC | Decentralized identities for cross-enterprise authentication and/or authorization |
| CN111093197A (en) * | 2019-12-31 | 2020-05-01 | 北大方正集团有限公司 | Authority authentication method, authority authentication system and computer readable storage medium |
| US20200234310A1 (en) * | 2019-01-17 | 2020-07-23 | International Business Machines Corporation | Identity proofing for online accounts |
| CN111861355A (en) * | 2019-04-30 | 2020-10-30 | 富金通金融信息服务(上海)有限公司 | Full online enterprise internet real name authentication method |
| CN112217816A (en) * | 2020-10-10 | 2021-01-12 | 四川长虹电器股份有限公司 | Method and system for supporting enterprise account identity authentication by K8s container cloud platform |
| CN112564920A (en) * | 2020-12-08 | 2021-03-26 | 爱信诺征信有限公司 | Enterprise identity verification method, system, electronic equipment and storage medium |
-
2021
- 2021-05-26 CN CN202310868061.9A patent/CN116881891A/en active Pending
- 2021-05-26 CN CN202110578493.7A patent/CN113407923B/en active Active
Patent Citations (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| AU2016206396A1 (en) * | 2008-12-31 | 2016-08-11 | Paypal, Inc. | Unified identity verification |
| US9391980B1 (en) * | 2013-11-11 | 2016-07-12 | Google Inc. | Enterprise platform verification |
| CN104104671A (en) * | 2014-06-30 | 2014-10-15 | 重庆智韬信息技术中心 | System for establishing unified dynamic authorization code for enterprise legal person account |
| WO2018217950A2 (en) * | 2017-05-23 | 2018-11-29 | Kopf Kenneth A | Biometric secure transaction system |
| US10587413B1 (en) * | 2017-07-26 | 2020-03-10 | EMC IP Holding Company LLC | Decentralized identities for cross-enterprise authentication and/or authorization |
| CN107645512A (en) * | 2017-10-20 | 2018-01-30 | 国信嘉宁数据技术有限公司 | The method, apparatus and server of a kind of authentication |
| CN110011957A (en) * | 2018-12-13 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Safety certifying method, device, electronic equipment and the storage medium of business account |
| US20200234310A1 (en) * | 2019-01-17 | 2020-07-23 | International Business Machines Corporation | Identity proofing for online accounts |
| CN111861355A (en) * | 2019-04-30 | 2020-10-30 | 富金通金融信息服务(上海)有限公司 | Full online enterprise internet real name authentication method |
| CN110348188A (en) * | 2019-05-31 | 2019-10-18 | 阿里巴巴集团控股有限公司 | One seed nucleus body method of calibration and device |
| CN110336797A (en) * | 2019-06-18 | 2019-10-15 | 阿里巴巴集团控股有限公司 | Corporate authentication, certification retroactive method, device and equipment based on block chain |
| WO2020253225A1 (en) * | 2019-06-18 | 2020-12-24 | 创新先进技术有限公司 | Enterprise authentication and authentication tracing methods, apparatuses and devices based on block chain |
| CN110445775A (en) * | 2019-07-24 | 2019-11-12 | 阿里巴巴集团控股有限公司 | Method and apparatus for account management |
| CN110795707A (en) * | 2019-10-25 | 2020-02-14 | 支付宝(杭州)信息技术有限公司 | Core body strategy recommendation method and device and electronic equipment |
| CN111093197A (en) * | 2019-12-31 | 2020-05-01 | 北大方正集团有限公司 | Authority authentication method, authority authentication system and computer readable storage medium |
| CN112217816A (en) * | 2020-10-10 | 2021-01-12 | 四川长虹电器股份有限公司 | Method and system for supporting enterprise account identity authentication by K8s container cloud platform |
| CN112564920A (en) * | 2020-12-08 | 2021-03-26 | 爱信诺征信有限公司 | Enterprise identity verification method, system, electronic equipment and storage medium |
Non-Patent Citations (2)
| Title |
|---|
| 张宝明: "《电子金融学》", 30 September 2011, 立信会计出版社, pages: 181 * |
| 彭永勇: "基于区块链应用模式的可信身份认证关键技术研究", 网络安全技术与应用 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN113407923B (en) | 2023-07-14 |
| CN116881891A (en) | 2023-10-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11310281B2 (en) | Systems and methods for monitoring computer authentication procedures | |
| CN108055132B (en) | Method, device and equipment for service authorization | |
| US10693650B2 (en) | Biometric identity verification systems, methods and programs for identity document applications and renewals | |
| CN104104672B (en) | The method that dynamic authorization code is established in identity-based certification | |
| CN109472675A (en) | Processing method, device, system and the equipment of charter business | |
| CN111292091B (en) | Verification method, device and equipment | |
| CN110990820B (en) | Tax disk authorization method and device, electronic equipment and storage medium | |
| EP3657422B1 (en) | Dynamic verification method and system for card transactions | |
| CN110276178A (en) | A kind of risk control method, device and the equipment of identity-based verifying | |
| WO2020001456A1 (en) | Bank card privacy information hiding method, bank card and computer readable storage medium | |
| CN104104671B (en) | Establish the unified dynamic authorization code system of business entity's account | |
| CN112734436A (en) | Terminal and method for supporting face recognition | |
| US10645075B1 (en) | Automated system to perform penetration testing on domains of related internet-enabled services | |
| CN111245620A (en) | Mobile security application architecture in terminal and construction method thereof | |
| US11271944B2 (en) | Authentication framework to enforce contractual geographical restrictions | |
| CN113407923A (en) | Body-building method, device and equipment | |
| CN113408583B (en) | Identity verification method, device and equipment | |
| CN108280645A (en) | The acquisition of payment code, payment request response method, device and equipment | |
| CN115392889A (en) | Service processing method and device | |
| CN110546668A (en) | Dynamic authentication method and system for card transaction | |
| CN111078536A (en) | Test data generation method, device and system | |
| CN113810413B (en) | Method, device and equipment for processing equipment account | |
| CN111310167B (en) | Password reminding method, device and equipment | |
| CN112231757B (en) | Privacy protection method, device and equipment for embedded application | |
| Anwar et al. | In Wallet We Trust: Bypassing the Digital Wallets Payment Security for Free Shopping |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |