CN114124462A - Verification code transmission method and device, electronic equipment and storage medium - Google Patents
Verification code transmission method and device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN114124462A CN114124462A CN202111250964.8A CN202111250964A CN114124462A CN 114124462 A CN114124462 A CN 114124462A CN 202111250964 A CN202111250964 A CN 202111250964A CN 114124462 A CN114124462 A CN 114124462A
- Authority
- CN
- China
- Prior art keywords
- verification code
- verification
- content
- code content
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000012795 verification Methods 0.000 title claims abstract description 444
- 238000000034 method Methods 0.000 title claims abstract description 56
- 230000005540 biological transmission Effects 0.000 title claims abstract description 42
- 238000004891 communication Methods 0.000 claims abstract description 71
- 238000007667 floating Methods 0.000 claims description 37
- 230000006399 behavior Effects 0.000 claims description 33
- 238000013507 mapping Methods 0.000 claims description 13
- 238000004590 computer program Methods 0.000 claims description 6
- 230000004044 response Effects 0.000 claims description 4
- 230000000694 effects Effects 0.000 claims description 3
- 230000000875 corresponding effect Effects 0.000 description 34
- 238000005336 cracking Methods 0.000 description 18
- 238000012545 processing Methods 0.000 description 11
- 238000010586 diagram Methods 0.000 description 9
- 230000003993 interaction Effects 0.000 description 7
- 238000001514 detection method Methods 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 6
- 230000003287 optical effect Effects 0.000 description 5
- 230000008569 process Effects 0.000 description 4
- 230000005236 sound signal Effects 0.000 description 4
- 230000009471 action Effects 0.000 description 3
- 230000001960 triggered effect Effects 0.000 description 3
- 230000001133 acceleration Effects 0.000 description 2
- 230000008859 change Effects 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 238000007726 management method Methods 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 238000003491 array Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000003384 imaging method Methods 0.000 description 1
- 239000004973 liquid crystal related substance Substances 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/12—Applying verification of the received information
- H04L63/123—Applying verification of the received information received data contents, e.g. message integrity
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present disclosure relates to a verification code transmission method, device, electronic device and storage medium, wherein the method is applied to a client, and comprises: responding to the verification code acquisition operation, and acquiring a first part of verification code content through a first communication channel between the client and a background server of the client; obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel between the verification server and the verification server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification. According to the method and the device, partial verification codes are respectively obtained from the verification server and the background server corresponding to the client through different communication channels, the problem and the answer are prevented from being simultaneously obtained from the same server through the same communication channel, the technical problem of the verification codes is completely solved as long as the communication channel is solved, the difficulty in solving the verification codes is improved, and the potential safety hazard is reduced.
Description
Technical Field
The present disclosure relates to information security technologies, and in particular, to a verification code transmission method and apparatus, an electronic device, and a storage medium.
Background
With the rapid development of computers and networks, it becomes especially important to implement information interaction processes securely. In the related art, whether the user operation is performed is verified by using the verification code, so that the safety of information interaction is guaranteed. However, the method for verifying whether the user operates the verification code is easy to violently crack the verification code by machine attack, and potential safety hazards are caused.
Therefore, a method for improving the difficulty of cracking the verification code is urgently needed to reduce the potential safety hazard caused by cracking the verification code.
Disclosure of Invention
In order to overcome the problems in the related art, the present disclosure provides a verification code transmission method, device, electronic device, and storage medium. The technical scheme of the disclosure is as follows:
according to a first aspect of the embodiments of the present disclosure, there is provided a verification code transmission method, applied to a client, including:
responding to the verification code acquisition operation, and acquiring a first part of verification code content through a first communication channel between the client and a background server of the client;
obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel between the verification server and the verification server;
and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
Optionally, after obtaining the first partial verification code content, the method further comprises:
generating and displaying a verification code page containing the first part of verification code content;
after obtaining a second partial captcha content corresponding to the first partial captcha content, further comprising:
creating a floating window, wherein the floating window is independent of the verification code page;
and displaying the second part of verification code content in the floating window.
Optionally, generating and displaying a passcode page including the content of the first part of the passcode includes: generating a first verification code picture containing the first part of verification code content, and generating a verification code page by taking the verification code picture as a page element; and/or
Displaying the second partial verification code content in the floating window, including: and generating a second verification code picture containing the second part of verification code content, and displaying the second verification code picture in the floating window.
Optionally, one of the first part of the verification code content and the second part of the verification code content is a verification code answer, and the other is a verification code question; the method further comprises the following steps:
detecting verification behavior on the verification code answer;
and sending the answer to be verified corresponding to the verification behavior to the verification server for safety verification.
Optionally, in a case that the first part of the verification code content is a verification code answer including a plurality of verification characters, the first verification code picture includes a plurality of mapping regions corresponding to the plurality of verification characters one to one; detecting verification activity on the verification code answer, comprising:
detecting selected behaviors on the plurality of mapping regions.
Optionally, before obtaining, through a second communication channel with the authentication server, a second partial authentication code content corresponding to the first partial authentication code content, the method further includes:
establishing long connection with the verification server to obtain the second communication channel;
obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel with a verification server, comprising:
and carrying out encrypted transmission on the second part of verification code content through a second communication channel with the verification server.
According to a second aspect of the embodiments of the present disclosure, there is provided an authentication code transmission apparatus, applied to a client, including:
a first obtaining module configured to obtain a first part of verification code content through a first communication channel with a background server of the client in response to a verification code obtaining operation;
a second obtaining module configured to obtain a second part of the verification code content corresponding to the first part of the verification code content through a second communication channel with a verification server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
Optionally, after obtaining the first partial verification code content, the apparatus further includes:
a first generating module configured to generate and display a verification code page containing the first part of verification code content;
after obtaining a second partial captcha content corresponding to the first partial captcha content, the apparatus further comprises:
a floating creation module configured to create a floating window, the floating window being independent of the captcha page;
a floating presentation module configured to present the second partial captcha content within the floating window.
Optionally, the first generating module comprises:
a first generating unit configured to generate a first verification code picture containing the first part of verification code content, and generate the verification code page by using the verification code picture as a page element; and/or
The floating display module comprises:
and the floating display unit is configured to generate a second verification code picture containing the second part of verification code content, and display the second verification code picture in the floating window.
Optionally, one of the first part of the verification code content and the second part of the verification code content is a verification code answer, and the other is a verification code question; the device further comprises:
a behavior detection module configured to detect a verification behavior on the verification code answer;
and the answer sending module is configured to send the answer to be verified corresponding to the verification behavior to the verification server for security verification.
Optionally, in a case that the first part of the verification code content is a verification code answer including a plurality of verification characters, the first verification code picture includes a plurality of mapping regions corresponding to the plurality of verification characters one to one; the behavior detection module includes:
a selected behavior detection unit configured to detect selected behaviors on the plurality of mapping regions.
Optionally, before obtaining, through a second communication channel with the authentication server, a second partial authentication code content corresponding to the first partial authentication code content, the apparatus further includes:
a long connection establishing module configured to establish a long connection with the authentication server to obtain the second communication channel;
the second obtaining module includes:
an encryption transmission unit configured to perform encryption transmission on the second partial authentication code content through a second communication channel with the authentication server.
According to a third aspect of the embodiments of the present disclosure, there is provided an electronic apparatus including:
a processor;
a memory for storing the processor-executable instructions;
wherein the processor is configured to execute the instructions to implement the captcha transmission method of the first aspect.
According to a fourth aspect of embodiments of the present disclosure, there is provided a computer-readable storage medium, wherein instructions, when executed by a processor of an electronic device, enable the electronic device to perform the verification code transmission method according to the first aspect.
According to a fifth aspect of embodiments of the present disclosure, there is provided a computer program product comprising a computer program or computer instructions which, when executed by a processor, implements the captcha transmission method as described in the first aspect.
The technical scheme provided by the embodiment of the disclosure can have the following beneficial effects:
the method comprises the steps of responding to verification code obtaining operation, and obtaining a first part of verification code content through a first communication channel between the verification code obtaining operation and a background server of a client; obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel between the verification server and the verification server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification. Partial verification codes are respectively obtained from the verification server and the background server corresponding to the client through different communication channels, so that the problem and the answer are prevented from being simultaneously obtained from the same server through the same communication channel, and the technical problem of the verification codes is completely solved as long as the communication channel is cracked. Therefore, the difficulty in cracking the verification codes is improved, and potential safety hazards are reduced.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the invention and together with the description, serve to explain the principles of the invention.
FIG. 1 is a flow diagram illustrating a method of captcha transmission, according to an example embodiment;
FIG. 2 is an exemplary diagram of a character behavior captcha in this disclosure;
FIG. 3 is a diagram of one example of communication for a verification code transmission method in the present disclosure;
FIG. 4 is a block diagram illustrating an authentication code transmission apparatus according to an exemplary embodiment;
fig. 5 is a block diagram illustrating an authentication code transmission apparatus according to an example embodiment.
Detailed Description
In order to make the technical solutions of the present disclosure better understood by those of ordinary skill in the art, the technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the accompanying drawings.
It should be noted that the terms "first," "second," and the like in the description and claims of the present disclosure and in the above-described drawings are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that the embodiments of the disclosure described herein are capable of operation in sequences other than those illustrated or otherwise described herein. The implementations described in the exemplary embodiments below are not intended to represent all implementations consistent with the present disclosure. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the present disclosure, as detailed in the appended claims.
Fig. 1 is a flowchart illustrating a verification code transmission method according to an exemplary embodiment, where the verification code transmission method is applied to a client, as shown in fig. 1, and includes the following steps:
in step S11, in response to the verification code obtaining operation, a first part of verification code content is obtained through a first communication channel with a background server of the client.
In step S12, obtaining a second part of the authentication code content corresponding to the first part of the authentication code content through a second communication channel with the authentication server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
The client is a program corresponding to the server and providing a local service to the user. The verification code acquisition operation may be actively triggered by the user, or may be automatically triggered when the client determines that the client may be attacked by the machine. The verification server is another server different from the background server, and can be a wind control server or other servers, and is used for completing issuing of complete verification code content in cooperation with the background server. The authentication server may be a server for long connections including push (push), message, etc. A communication channel originally exists between the client and the corresponding background server, and the channel between the client and the verification server can be a long pre-established connection channel. The long connection channel is not disconnected after each operation is finished, and the data packet is directly sent during the next processing without establishing connection again.
And the client responds to the verification code acquisition operation and acquires the first part of verification code content issued by the background server through a first communication channel of the client and the background server. The verification code obtaining operation can be triggered on a front-end display page of the client. The client sends a verification code acquisition request to the background server, the background server responds to the verification code acquisition request and sends a wind control request to the verification server, and the verification server returns a verification result according to the wind control request. The verification request refers to the action of requesting whether a verification information interaction process, a network environment and the like are safe or not; the verification result refers to whether the verification information interaction process, the network environment and the like are permitted or not, or whether the verification information interaction process, the network environment and the like are not permitted or not, which are returned aiming at the verification request.
And the background server returns the verification parameters to the client according to the received wind control result of the wind control performed by the confirmation returned by the verification server. And the client generates and displays a verification code page according to the received verification parameters, wherein the page only comprises the first part of verification code content. The verification parameter refers to a parameter containing verification code content.
And acquiring a second part of verification code content corresponding to the first part of verification code content through a second communication channel between the verification server and the verification server. After the verification code page is displayed, the client sends a second part of request to the verification server through a second communication channel, wherein the second part of request carries the information of the content of the first part of verification code. And the verification server sends the second part of verification code content corresponding to the first part of verification code content to the client according to the received second part of request. And the client generates an area independent of the verification code page containing the first part of verification code content according to the received second part of verification code content, and displays the second part of verification code content in the area independent of the verification code page.
The first portion of the captcha content and the second portion of the captcha content may constitute complete captcha content. The first portion of the captcha content and the second portion of the captcha content may be one of a captcha answer and the other a captcha question. The verification code question informs the user how to perform the verification code, so that the user performs corresponding actions on the verification code answer to perform verification. For example, the question of the verification code may be to inform the user to click on a certain shape, the answer to the verification code is a picture containing the shape, and the user can verify by clicking the shape in the picture of the answer to the verification code; the verification code question can inform the user of the sum of two numbers in an input answer, the verification code answer comprises two numbers and an input field, and the sum of two numbers in the verification code answer input by the user in the input field can be verified; the verification code question may be that the user is informed to stroke a slider in the verification code answer from left to right, the verification code answer includes a slider, and the user can pass the verification by sliding the slider from left to right.
In the verification code transmission method provided by the exemplary embodiment, part of the verification codes are respectively obtained from the verification server and the background server corresponding to the client through different communication channels, so that the problem and the answer are prevented from being simultaneously obtained from the same server through the same communication channel, and the technical problem of the verification codes is completely solved as long as the communication channel is cracked. Therefore, the difficulty in cracking the verification code is improved, and potential safety hazards are avoided.
On the basis of the above technical solution, after obtaining the content of the first part of the verification code, the method further includes: generating and displaying a verification code page containing the first part of verification code content; after obtaining a second partial captcha content corresponding to the first partial captcha content, further comprising: creating a floating window, wherein the floating window is independent of the verification code page; and displaying the second part of verification code content in the floating window.
After obtaining the first partial captcha content, a captcha page may be generated and presented that contains the first partial captcha content. After obtaining the second portion of the captcha content, a flyout window is created that is independent of the captcha page, and the second portion of the captcha content is presented within the flyout window. Although the first part of verification code content and the second part of verification code content can be displayed in the same display screen at the same time, the display areas for bearing the first part of verification code content and the second part of verification code content are completely independent, and the complete verification code content cannot be completely obtained only by cracking one of the first part of verification code content and the second part of verification code content.
The verification code page containing the first part of verification code content can also comprise prompt information similar to 'please wait' to prompt the user that the verification code page does not contain the complete verification code. The floating window containing the second portion of the authentication code content may be displayed at a position just above the reminder message, such that the reminder message is hidden when the floating window and the second portion of the authentication code content are displayed.
In the verification code transmission method provided in this exemplary embodiment, after obtaining the first part of the verification code content, the verification code page including the first part of the verification code content is generated and displayed, and after obtaining the second part of the verification code content, the floating window displaying the second part of the verification code content is generated. And the user can obtain the complete verification code content through the displayed first part verification code content and the second part verification code content. And the complete verification code content cannot be obtained by only cracking the verification code page or only cracking the floating window; and when the verification code is actually cracked, an attacker is difficult to determine whether the correlation exists between the floating window and the verification code page, so that the safety can be greatly improved.
On the basis of the technical scheme, the generation and display of the verification code page containing the first part of verification code content comprises the following steps: generating a first verification code picture containing the first part of verification code content, and generating a verification code page by taking the verification code picture as a page element; and/or displaying the second part of verification code content in the floating window, comprising: and generating a second verification code picture containing the second part of verification code content, and displaying the second verification code picture in the floating window.
In the generated verification code page, the first part of verification code content can be a first verification code picture in a picture format. Meanwhile, in the generated floating window, the displayed second part of verification code content can also be a second verification code picture in a picture format.
Therefore, the verification code content can be displayed through the picture format, and the difficulty of cracking the verification code can be further improved.
On the basis of the technical scheme, one of the first part of verification code content and the second part of verification code content is a verification code answer, and the other part of verification code content is a verification code question; the method further comprises the following steps: detecting verification behavior on the verification code answer; and sending the answer to be verified corresponding to the verification behavior to the verification server for safety verification.
One of the first part of the verification code content and the second part of the verification code content is a verification code answer, and the other is a verification code question. The verification code question informs the user how to perform the verification code, so that the user performs corresponding actions on the verification code answer to perform verification.
The answer to the verification code needs to be operated by a user, so that when the answer to the verification code is in a picture format, each area of the picture corresponds to different mappings. And detecting a verification behavior on the verification code answer, sending a to-be-verified answer corresponding to the verification behavior to a verification server, and performing safety verification by the verification server according to the to-be-verified answer.
The verification behavior on the answer to the verification code needs to be sent to the verification server. Therefore, compared with the verification code with the answer of the second part of the verification code acquired from the verification server and then the to-be-verified action on the second part of the verification code is returned to the verification server, the verification code with the answer of the first part of the verification code acquired from the background server has higher security; the answer of the verification code only needs to be connected with the verification server, the issuing of the answer of the verification code and the uploading of the answer to be verified from the answer of the verification code both pass through the same channel, the issuing of the answer of the verification code passes through the first communication channel, and the uploading of the answer to be verified from the answer of the verification code passes through the second communication channel, so that the later has higher safety.
On the basis of the technical scheme, under the condition that the content of the first part of verification codes is verification code answers containing a plurality of verification characters, the first verification code picture contains a plurality of mapping areas in one-to-one correspondence with the verification characters; detecting verification activity on the verification code answer, comprising: detecting selected behaviors on the plurality of mapping regions.
The core idea of the behavior verification code is that the 'behavior characteristics' of a user is utilized to conduct verification safety judgment, verification is completed through the operation behavior of the user, and the user does not need to read distorted pictures and characters. The security of the behavior verification code is high, and the user experience is good. Fig. 2 discloses an exemplary diagram of a character behavior verification code, which does not require a user to understand "king", "li" and "zhao" in the answer of the verification code, but only needs to find the same character as "king" in the question of the verification code.
And the character behavior verification code comprises a plurality of mapping areas which are in one-to-one correspondence with a plurality of verification characters in the first verification code picture under the condition that the content of the first part verification code is in a picture format and the verification code answers of the plurality of verification characters are contained. And detecting the selected behaviors on the plurality of mapping areas, and generating corresponding answers to be verified.
On the basis of the above technical solution, before obtaining a second part of the authentication code content corresponding to the first part of the authentication code content through a second communication channel with the authentication server, the method further includes: establishing long connection with the verification server to obtain the second communication channel; obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel with a verification server, comprising: and carrying out encrypted transmission on the second part of verification code content through a second communication channel with the verification server.
The client itself has a long connection capability and the second communication channel with the authentication server is obtained by the long connection established with the authentication server. Based on the long connection capability, the captcha content can be unpacked. The long connection channel is not disconnected after each operation is finished, and the data packet is directly sent during the next processing without establishing connection again.
Through long connection, the second part of verification code content can be encrypted and transmitted, and the client decrypts the second part of verification code content, so that the second communication channel is prevented from being cracked, and the issuing safety of the second part of verification code content is guaranteed.
According to the verification code transmission method provided by each exemplary embodiment in the disclosure, the cracking difficulty of the verification code is improved through the following method: by adopting different communication channels to respectively transmit partial verification code contents, the situation that all verification code contents can be cracked by cracking one communication channel is avoided; partial verification code contents acquired from different communication channels are respectively displayed in mutually independent areas, so that all verification code contents can be prevented from being cracked by cracking one page; the verification code content is displayed in a picture format, so that the cracking difficulty can be further improved; and the long connection capacity of the client is utilized to carry out encryption transmission on the second part of verification code content, so that the condition that a communication channel is cracked to obtain the verification code content is avoided. Therefore, the verification code transmission method provided by each exemplary embodiment in the disclosure improves the difficulty in cracking the verification code and reduces the potential safety hazard.
Fig. 3 is a communication example diagram illustrating an authentication code transmission method according to an example embodiment, as shown in fig. 3, the authentication code transmission method including:
the front page of the client side initiates a verification code acquisition request to a corresponding background server, the background server responds to the verification code acquisition request and sends a wind control request to the verification server, and the verification server returns a wind control result according to the wind control request. And the background server returns the verification parameters to the front-end page of the client according to the received wind control result for confirming the wind control returned by the verification server. And the front-end page of the client generates and displays a verification code page according to the received verification parameters, wherein the page only comprises verification code answers.
And after the client displays the verification code page comprising the verification code answer, the client sends a second part of request to the verification server. And the verification server sends a verification code question corresponding to the verification code answer to the client according to the received second part of request. The client generates an area independent of a verification code page containing verification code answers according to the received verification code problems, and displays the verification code problems in the area independent of the verification code page.
After the verification code answers and the verification code questions are displayed, the user conducts behavior verification, answers to be verified are generated, and the answers to be verified are sent to the verification server. And the verification server performs verification according to the answer to be verified, and returns the information passing the verification to the front-end page of the client when the verification passes.
After the client passes the verification, the client can execute the subsequent service and send a service request to the background server. In order to ensure safety, the background server sends a verification and verification request to the verification server according to the received service request. The verification server verifies whether the service request is safe or not and returns a verification result. And the background server executes the service request when the returned verification result is safe.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
Fig. 4 is a block diagram illustrating an authentication code transmission apparatus according to an exemplary embodiment, and referring to fig. 4, the apparatus includes a first obtaining module 41 and a second obtaining module 42.
The first obtaining module 41 is configured to, in response to an authentication code obtaining operation, obtain a first part of authentication code content through a first communication channel with a background server of the client;
the second obtaining module 42 is configured to obtain a second part of the verification code content corresponding to the first part of the verification code content through a second communication channel with the verification server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
Optionally, after obtaining the first partial verification code content, the apparatus further includes:
a first generating module configured to generate and display a verification code page containing the first part of verification code content;
after obtaining a second partial captcha content corresponding to the first partial captcha content, the apparatus further comprises:
a floating creation module configured to create a floating window, the floating window being independent of the captcha page;
a floating presentation module configured to present the second partial captcha content within the floating window.
Optionally, the first generating module comprises:
a first generating unit configured to generate a first verification code picture containing the first part of verification code content, and generate the verification code page by using the verification code picture as a page element; and/or
The floating display module comprises:
and the floating display unit is configured to generate a second verification code picture containing the second part of verification code content, and display the second verification code picture in the floating window.
Optionally, one of the first part of the verification code content and the second part of the verification code content is a verification code answer, and the other is a verification code question; the device further comprises:
a behavior detection module configured to detect a verification behavior on the verification code answer;
and the answer sending module is configured to send the answer to be verified corresponding to the verification behavior to the verification server for security verification.
Optionally, in a case that the first part of the verification code content is a verification code answer including a plurality of verification characters, the first verification code picture includes a plurality of mapping regions corresponding to the plurality of verification characters one to one; the behavior detection module includes:
a selected behavior detection unit configured to detect selected behaviors on the plurality of mapping regions.
Optionally, before obtaining, through a second communication channel with the authentication server, a second partial authentication code content corresponding to the first partial authentication code content, the apparatus further includes:
a long connection establishing module configured to establish a long connection with the authentication server to obtain the second communication channel;
the second obtaining module 42 includes:
an encryption transmission unit configured to perform encryption transmission on the second partial authentication code content through a second communication channel with the authentication server.
The verification code transmission device provided by the exemplary embodiment improves the cracking difficulty of the verification code by the following method: by adopting different communication channels to respectively transmit partial verification code contents, the situation that all verification code contents can be cracked by cracking one communication channel is avoided; partial verification code contents acquired from different communication channels are respectively displayed in mutually independent areas, so that all verification code contents can be prevented from being cracked by cracking one page; the verification code content is displayed in a picture format, so that the cracking difficulty can be further improved; and the long connection capacity of the client is utilized to carry out encryption transmission on the second part of verification code content, so that the condition that a communication channel is cracked to obtain the verification code content is avoided. Therefore, the verification code transmission method provided by each exemplary embodiment in the disclosure improves the difficulty in cracking the verification code and reduces the potential safety hazard.
With regard to the apparatus in the above-described embodiment, the specific manner in which each module performs the operation has been described in detail in the embodiment related to the method, and will not be elaborated here.
Fig. 5 is a block diagram illustrating an apparatus 500 for authentication code transmission according to an example embodiment. For example, the apparatus 500 may be a mobile phone, a computer, a digital broadcast terminal, a messaging device, a game console, a tablet device, a medical device, an exercise device, a personal digital assistant, and the like.
Referring to fig. 5, electronic device 500 may include one or more of the following components: a processing component 502, a memory 504, a power component 506, a multimedia component 508, an audio component 510, an input/output (I/O) interface 512, a sensor component 514, and a communication component 516.
The processing component 502 generally controls overall operation of the device 500, such as operations associated with display, telephone calls, data communications, camera operations, and recording operations. The processing components 502 may include one or more processors 520 to execute instructions to perform all or a portion of the steps of the methods described above. Further, the processing component 502 can include one or more modules that facilitate interaction between the processing component 502 and other components. For example, the processing component 502 can include a multimedia module to facilitate interaction between the multimedia component 508 and the processing component 502.
The memory 504 is configured to store various types of data to support operation at the device 500. Examples of such data include instructions for any application or method operating on device 500, contact data, phonebook data, messages, pictures, videos, and so forth. The memory 504 may be implemented by any type or combination of volatile or non-volatile memory devices such as Static Random Access Memory (SRAM), electrically erasable programmable read-only memory (EEPROM), erasable programmable read-only memory (EPROM), programmable read-only memory (PROM), read-only memory (ROM), magnetic memory, flash memory, magnetic or optical disks.
The power supply component 506 provides power to the various components of the device 500. The power components 506 may include a power management system, one or more power supplies, and other components associated with generating, managing, and distributing power for the apparatus 500.
The multimedia component 508 includes a screen that provides an output interface between the device 500 and the user. In some embodiments, the screen may include a Liquid Crystal Display (LCD) and a Touch Panel (TP). If the screen includes a touch panel, the screen may be implemented as a touch screen to receive an input signal from a user. The touch panel includes one or more touch sensors to sense touch, slide, and gestures on the touch panel. The touch sensor may not only sense the boundary of a touch or slide action, but also detect the duration and pressure associated with the touch or slide operation. In some embodiments, the multimedia component 508 includes a front facing camera and/or a rear facing camera. The front-facing camera and/or the rear-facing camera may receive external multimedia data when the device 500 is in an operating mode, such as a shooting mode or a video mode. Each front camera and rear camera may be a fixed optical lens system or have a focal length and optical zoom capability.
The audio component 510 is configured to output and/or input audio signals. For example, audio component 510 includes a Microphone (MIC) configured to receive external audio signals when apparatus 500 is in an operating mode, such as a call mode, a recording mode, and a voice recognition mode. The received audio signals may further be stored in the memory 504 or transmitted via the communication component 516. In some embodiments, audio component 510 further includes a speaker for outputting audio signals.
The I/O interface 512 provides an interface between the processing component 502 and peripheral interface modules, which may be keyboards, click wheels, buttons, etc. These buttons may include, but are not limited to: a home button, a volume button, a start button, and a lock button.
The sensor assembly 514 includes one or more sensors for providing various aspects of status assessment for the device 500. For example, the sensor assembly 514 may detect an open/closed state of the device 500, the relative positioning of the components, such as a display and keypad of the apparatus 500, the sensor assembly 514 may also detect a change in the position of the apparatus 500 or a component of the apparatus 500, the presence or absence of user contact with the apparatus 500, orientation or acceleration/deceleration of the apparatus 500, and a change in the temperature of the apparatus 500. The sensor assembly 514 may include a proximity sensor configured to detect the presence of a nearby object without any physical contact. The sensor assembly 514 may also include a light sensor, such as a CMOS or CCD image sensor, for use in imaging applications. In some embodiments, the sensor assembly 514 may also include an acceleration sensor, a gyroscope sensor, a magnetic sensor, a pressure sensor, or a temperature sensor.
The communication component 516 is configured to facilitate communication between the apparatus 500 and other devices in a wired or wireless manner. The apparatus 500 may access a wireless network based on a communication standard, such as WiFi, an operator network (such as 2G, 3G, 4G, or 5G), or a combination thereof. In an exemplary embodiment, the communication component 516 receives a broadcast signal or broadcast related information from an external broadcast management system via a broadcast channel. In an exemplary embodiment, the communication component 516 further includes a Near Field Communication (NFC) module to facilitate short-range communications. For example, the NFC module may be implemented based on Radio Frequency Identification (RFID) technology, infrared data association (IrDA) technology, Ultra Wideband (UWB) technology, Bluetooth (BT) technology, and other technologies.
In an exemplary embodiment, the electronic device 500 may be implemented by one or more Application Specific Integrated Circuits (ASICs), Digital Signal Processors (DSPs), Digital Signal Processing Devices (DSPDs), Programmable Logic Devices (PLDs), Field Programmable Gate Arrays (FPGAs), controllers, micro-controllers, microprocessors or other electronic components for performing the above-described authentication code transmission method.
In an exemplary embodiment, a computer-readable storage medium comprising instructions, such as the memory 504 comprising instructions, executable by the processor 520 of the apparatus 500 to perform the above-described method is also provided. For example, the non-transitory computer readable storage medium may be a ROM, a Random Access Memory (RAM), a CD-ROM, a magnetic tape, a floppy disk, an optical data storage device, and the like.
In an exemplary embodiment, a computer program product is also provided, which comprises readable program code executable by the processor 520 of the electronic device 500 to perform the above mentioned verification code transmission method. Alternatively, the program code may be stored in a storage medium of the electronic device 500, which may be a non-transitory computer-readable storage medium, for example, ROM, Random Access Memory (RAM), CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like.
Other embodiments of the invention will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the invention and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the invention being indicated by the following claims.
It will be understood that the invention is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the invention is limited only by the appended claims.
Claims (10)
1. A verification code transmission method is applied to a client side, and comprises the following steps:
responding to the verification code acquisition operation, and acquiring a first part of verification code content through a first communication channel between the client and a background server of the client;
obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel between the verification server and the verification server;
and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
2. The method of claim 1, wherein after obtaining the first partial authentication code content, the method further comprises:
generating and displaying a verification code page containing the first part of verification code content;
after obtaining a second partial captcha content corresponding to the first partial captcha content, further comprising:
creating a floating window, wherein the floating window is independent of the verification code page;
and displaying the second part of verification code content in the floating window.
3. The method of claim 2, wherein generating and presenting the captcha page containing the first portion of captcha content comprises: generating a first verification code picture containing the first part of verification code content, and generating a verification code page by taking the verification code picture as a page element; and/or
Displaying the second partial verification code content in the floating window, including: and generating a second verification code picture containing the second part of verification code content, and displaying the second verification code picture in the floating window.
4. The method of claim 3, wherein one of the first and second portions of captcha content is a captcha answer and the other is a captcha question; the method further comprises the following steps:
detecting verification behavior on the verification code answer;
and sending the answer to be verified corresponding to the verification behavior to the verification server for safety verification.
5. The method of claim 4, wherein in the case that the first part of the verification code content is a verification code answer comprising a plurality of verification characters, the first verification code picture comprises a plurality of mapping areas corresponding to the plurality of verification characters one by one; detecting verification activity on the verification code answer, comprising:
detecting selected behaviors on the plurality of mapping regions.
6. The method of any of claims 1-5, wherein prior to obtaining a second partial authentication code content corresponding to the first partial authentication code content over a second communication channel with an authentication server, the method further comprises:
establishing long connection with the verification server to obtain the second communication channel;
obtaining a second part of verification code content corresponding to the first part of verification code content through a second communication channel with a verification server, comprising:
and carrying out encrypted transmission on the second part of verification code content through a second communication channel with the verification server.
7. An authentication code transmission apparatus, applied to a client, the apparatus comprising:
a first obtaining module configured to obtain a first part of verification code content through a first communication channel with a background server of the client in response to a verification code obtaining operation;
a second obtaining module configured to obtain a second part of the verification code content corresponding to the first part of the verification code content through a second communication channel with a verification server; and the first part of verification code content and the second part of verification code content form complete verification code content for safety verification.
8. An electronic device, comprising:
a processor;
a memory for storing the processor-executable instructions;
wherein the processor is configured to execute the instructions to implement the captcha transmission method of any of claims 1 to 6.
9. A computer-readable storage medium whose instructions, when executed by a processor of an electronic device, enable the electronic device to perform the verification code transmission method of any of claims 1-6.
10. A computer program product comprising a computer program or computer instructions, wherein the computer program or computer instructions, when executed by a processor, implement the captcha transmission method of any of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111250964.8A CN114124462B (en) | 2021-10-26 | 2021-10-26 | Verification code transmission method and device, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111250964.8A CN114124462B (en) | 2021-10-26 | 2021-10-26 | Verification code transmission method and device, electronic equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114124462A true CN114124462A (en) | 2022-03-01 |
| CN114124462B CN114124462B (en) | 2023-12-19 |
Family
ID=80377121
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111250964.8A Active CN114124462B (en) | 2021-10-26 | 2021-10-26 | Verification code transmission method and device, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114124462B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114826610A (en) * | 2022-04-14 | 2022-07-29 | 函谷数巢品牌管理(广州)有限公司 | Method and device for account binding demonstration based on multimedia |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104038502A (en) * | 2014-06-24 | 2014-09-10 | 五八同城信息技术有限公司 | Verification method and system |
| CN109670291A (en) * | 2017-10-17 | 2019-04-23 | 腾讯科技(深圳)有限公司 | A kind of implementation method of identifying code, device and storage medium |
| CN109714297A (en) * | 2017-10-26 | 2019-05-03 | 中国电信股份有限公司 | Safe verification method, system and user terminal and application platform |
| CN110730162A (en) * | 2019-09-16 | 2020-01-24 | 北京齐尔布莱特科技有限公司 | Page verification method, mobile terminal and readable storage medium |
| CN111353140A (en) * | 2018-12-24 | 2020-06-30 | 阿里巴巴集团控股有限公司 | Verification code generation and display method, device and system |
| CN111683103A (en) * | 2016-12-21 | 2020-09-18 | 阿里巴巴集团控股有限公司 | Information interaction method and device |
| CN112214751A (en) * | 2019-07-11 | 2021-01-12 | 上海游昆信息技术有限公司 | Verification code generation method and device |
-
2021
- 2021-10-26 CN CN202111250964.8A patent/CN114124462B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104038502A (en) * | 2014-06-24 | 2014-09-10 | 五八同城信息技术有限公司 | Verification method and system |
| CN111683103A (en) * | 2016-12-21 | 2020-09-18 | 阿里巴巴集团控股有限公司 | Information interaction method and device |
| CN109670291A (en) * | 2017-10-17 | 2019-04-23 | 腾讯科技(深圳)有限公司 | A kind of implementation method of identifying code, device and storage medium |
| CN109714297A (en) * | 2017-10-26 | 2019-05-03 | 中国电信股份有限公司 | Safe verification method, system and user terminal and application platform |
| CN111353140A (en) * | 2018-12-24 | 2020-06-30 | 阿里巴巴集团控股有限公司 | Verification code generation and display method, device and system |
| CN112214751A (en) * | 2019-07-11 | 2021-01-12 | 上海游昆信息技术有限公司 | Verification code generation method and device |
| CN110730162A (en) * | 2019-09-16 | 2020-01-24 | 北京齐尔布莱特科技有限公司 | Page verification method, mobile terminal and readable storage medium |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114826610A (en) * | 2022-04-14 | 2022-07-29 | 函谷数巢品牌管理(广州)有限公司 | Method and device for account binding demonstration based on multimedia |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114124462B (en) | 2023-12-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106453052B (en) | Message interaction method and device | |
| KR102377724B1 (en) | Device network configuration method and apparatus, and medium | |
| CN106790043B (en) | Method and device for sending message in live broadcast application | |
| CN105516183B (en) | Equipment connection method and device | |
| US20170171321A1 (en) | Methods and devices for managing accounts | |
| CN109039990B (en) | Behavior verification method and device based on verification code | |
| CN110049062B (en) | Verification code verification method, device, system, server, electronic equipment and storage medium | |
| CN107959757B (en) | User information processing method and device, APP server and terminal equipment | |
| CN107798309B (en) | Fingerprint input method and device and computer readable storage medium | |
| CN111368232A (en) | Password sharing reflux method and device, electronic equipment and storage medium | |
| CN109302341B (en) | Instant messaging method, instant messaging device, electronic equipment and storage medium | |
| CN107562500B (en) | Debugging device, method and equipment | |
| CN104268039A (en) | Method, device and system for obtaining maintenance data | |
| US9667784B2 (en) | Methods and devices for providing information in voice service | |
| CN109246094B (en) | User terminal verification method, device and storage medium | |
| US20220408238A1 (en) | Verification information processing method and apparatus, terminal device and storage medium | |
| CN111030897A (en) | Wired network distribution method and device, electronic equipment and storage medium | |
| CN113055169B (en) | Data encryption method and device, electronic equipment and storage medium | |
| CN107911380B (en) | Identity verification method and device | |
| CN114124462B (en) | Verification code transmission method and device, electronic equipment and storage medium | |
| CN111541922A (en) | Method, device and storage medium for displaying interface input information | |
| CN113498074A (en) | Equipment network distribution method and device and electronic equipment | |
| CN111368329A (en) | Message display method and device, electronic equipment and storage medium | |
| CN113726905B (en) | Data acquisition method, device and equipment based on home terminal equipment | |
| CN106712960B (en) | Processing method and device of verification code information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |