WO2011122624A1 - 認証サーバ装置、認証サーバ装置用プログラム及び認証方法 - Google Patents
認証サーバ装置、認証サーバ装置用プログラム及び認証方法 Download PDFInfo
- Publication number
- WO2011122624A1 WO2011122624A1 PCT/JP2011/057813 JP2011057813W WO2011122624A1 WO 2011122624 A1 WO2011122624 A1 WO 2011122624A1 JP 2011057813 W JP2011057813 W JP 2011057813W WO 2011122624 A1 WO2011122624 A1 WO 2011122624A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- position information
- session
- terminal
- page
- server device
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/316—User authentication by observing the pattern of computer usage, e.g. typical user behaviour
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/36—User authentication by graphic or iconic representation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2133—Verifying human interaction, e.g., Captcha
Definitions
- the present invention belongs to the technical field of an authentication server device, an authentication server device program, and an authentication method. More specifically, for example, it belongs to the technical field of an authentication server device that authenticates whether or not the authentication requester is a person rather than a so-called bot, a program for the authentication server device, and an authentication method.
- the above-mentioned characters or the like whose shape has been lost are transmitted as images to the user terminal. Since the image such as the character by the capture technique is different every time the authentication screen is transmitted, it cannot be cached in the user terminal. For this reason, an image by the capture technology is transmitted to the user terminal every time, which is a cause of increasing the network load.
- the present invention has been made in view of the above problems, and one example of the problem is that it is possible to easily and accurately determine whether a user terminal is operated by a person, for example.
- An authentication server device, a program for the authentication server device, and an authentication method are provided.
- the invention according to claim 1 is an authentication server device connected to a terminal having a display unit via a network, so that an operation of the terminal on the display unit by an operator is performed.
- An operation instruction including text information for instructing is associated with operation information including a position on the display unit corresponding to the operation, and content corresponding to the content of the corresponding operation instruction.
- a session ID is assigned to each session between the terminal that displays a page including the operation storage unit for storing the operation, the operation instruction, and the object displayed on the display unit for the operation. Session ID assigning means, operation instruction selecting means for selecting the operation instruction for each session, the selected operation instruction, and the operation corresponding to the operation instruction.
- a position that causes the authentication server device to transmit position information indicating a position corresponding to the operation executed on the terminal that displayed the page, the session ID, and the page displayed on the display means The page included in the authentication request received from the terminal displaying the page, the page transmitting means for transmitting the page, the position information receiving means for receiving the position information from the terminal, Based on the ID, association means for associating the operation instruction provided in the page displayed in the session with the position information received from the terminal in the session, and associated with the position information The operation information associated with the operation instruction and stored in the operation storage means; Position information, based on, and a determination unit configured to determine whether the operation is by the operator.
- the invention according to claim 9 is an authentication method executed in an authentication server device connected to a terminal provided with a display means via a network, wherein the terminal on the display means An operation instruction including text information for instructing an operation by the operator and operation information including a position on the display means corresponding to the operation, and an operation with content corresponding to the content of the corresponding operation instruction
- Each session between the terminal that displays a page including an operation storage step that stores information in association with each other, the operation instruction, and an object that is displayed on the display unit for the operation
- a session ID assigning step for assigning a session ID to the user, an operation instruction selecting step for selecting the operation instruction for each session, the selected operation instruction,
- a page transmission step for transmitting the page, and a position information reception step for receiving the position information from the terminal; and a position information reception step for receiving the position information from the terminal
- the relevant position information, based on, the operation includes a determination step of determining whether or not by the operator.
- the invention according to claim 2 is the authentication server device according to claim 1, wherein the operation is performed using a pointing device operated by the operator at the terminal. Configured to be an operation.
- the invention according to claim 3 is the authentication server device according to claim 1 or 2, wherein the page transmission unit is configured to transmit the instruction index that the operator can move. Transmitting the page including the position information transmitting means for transmitting the position information indicating the position on the display means to the authentication server device, and the plurality of objects that can be selected by the instruction index, and the authentication server.
- the apparatus stores the received session information and the received position information for each received time in the same session ID as the stored position information in the position information storage unit.
- the position information is different from the position information stored at a time prior to the position information, the movement of the indicator is performed by the operator of the terminal.
- a flag setting means for setting a manual operation flag indicating that it is due to an operation, and the determination means, when receiving the authentication request, the manual operation flag, the operation information, and the position information. And determining whether or not the movement of the indication index is due to the operation of the operator.
- the invention according to claim 4 is the authentication server apparatus according to claim 1 or 2, wherein the page transmission means is selected and moved by the operator on the display means.
- the authentication server device wherein the authentication server device includes a plurality of possible objects, and the position information transmission unit that transmits the position information indicating the position of the object on the display unit to the authentication server device.
- the position information storage means Each time the position information is received, the position information storage means that stores the received position information for each session ID and the received time, and the session information stored in the position information storage means in the same session ID.
- the movement of the object is Flag setting means for setting a manual operation flag indicating that the operation is performed by the operator, and when the determination means receives the authentication request, the manual operation flag and the operation information And based on the position information, it is configured to determine whether or not the movement of the object is due to an operation of the operator.
- the invention according to claim 5 is the authentication server device according to claim 3 or 4, wherein the position information transmitting means in the page displays the page in the terminal. At this time, the position information is not transmitted, and when any one of the plurality of objects is selected, the transmission of the position information is started.
- the invention according to claim 6 is the authentication server device according to any one of claims 3 to 5, wherein each time the location information is received, the terminal is sent to the terminal.
- the manual transmission flag further includes a flag reply unit that returns the manual operation flag, and the page transmission unit indicates that the manual operation is performed by the operator when the position information is transmitted in the terminal.
- the page is further provided with position information transmission stop means for stopping transmission of the position information.
- the invention according to claim 7 is the authentication server device according to claim 6, wherein the page transmission means transmits the position information at the terminal.
- the terminal receives the manual operation flag indicating that it is due to the operation of the operator, an authentication request method display for causing the display unit to display a request transmission unit for transmitting the authentication request to the authentication server device It is configured to transmit the page further comprising means.
- an invention according to claim 8 is directed to a computer included in an authentication server device connected to a terminal having a display unit via a network, by operating the terminal on the display unit.
- An operation instruction including text information for instructing an operation by the user, operation information including a position on the display unit corresponding to the operation, and operation information having a content corresponding to the content of the corresponding operation instruction; , A session ID for each session between the terminal displaying a page including the operation storage unit, the operation instruction, and an object displayed on the display unit for the operation.
- a session ID assigning means for assigning an operation instruction, an operation instruction selecting means for selecting the operation instruction for each session, the selected operation instruction, and the corresponding operation instruction For the operation, the object displayed on the display means, the session ID, and position information indicating the position corresponding to the operation executed on the terminal that displayed the page are stored in the authentication server device.
- an association means for associating the operation instruction provided in the page displayed in the session with the position information received from the terminal in the session, and associating with the position information The operation stored in the operation storage means in association with the operated instruction And broadcast, and the position information, based on, the operation determination means whether or not by the operator, to function as a.
- a page including an operation instruction including text information and an object displayed for the corresponding operation is displayed on the terminal, and the position information indicating the position corresponding to the operation executed on the terminal and the position information Based on the operation information associated with the operation instruction, it is determined whether or not the operation is due to the operation of the operator of the terminal.
- the operation on the terminal on which the page including the operation instruction and the object is displayed is performed by an operator (that is, a person) of the terminal (in other words, not input by automatic processing by a bot or the like) It is possible to determine simply and accurately. Specifically, if the determination using the present invention is to be performed by automatic processing, it is necessary to analyze the contents of the operation instruction including text information, and thus such automatic processing can be made difficult.
- an operation instruction provided in a page transmitted to the terminal in a session includes text information, and an object displayed for an operation corresponding to the operation instruction can be cached in the terminal.
- an image for authentication is transmitted each time an authentication screen is transmitted as in the conventional capture technology, the load applied to the network to which the terminal is connected can be suppressed.
- the operation instruction is selected for each session, the operation instruction is different for each session, and it can be more reliably determined whether or not the operation on the terminal is performed by the operator.
- FIG. 1 is a block diagram showing a schematic configuration of an authentication system according to the present invention. It is a block diagram which shows the detailed structure of the user terminal which concerns on this invention. It is a block diagram which shows the detailed structure of the server which concerns on this invention. It is a figure which illustrates the memory content of the memory
- FIG. 1 is a block diagram showing a schematic configuration of the authentication system according to the first embodiment
- FIG. 2 is a block diagram showing a detailed configuration of the user terminal according to the first embodiment
- FIG. 3 is a block diagram illustrating a detailed configuration of the server according to the first embodiment
- FIG. 4 is a diagram illustrating the storage contents of the storage unit according to the first embodiment.
- FIG. 5 to 8 are flowcharts showing the authentication processing according to the first embodiment
- FIG. 9 is a flowchart showing details of the authentication processing
- FIG. 10 is an operation displayed on the user terminal during the authentication processing. It is a figure which shows the example of a screen.
- one or a plurality of user terminals 100 as an example of a terminal and a server 200 as an example of an authentication server device are connected to a network NT such as the Internet. Connected and configured.
- the user terminal 100 includes an interface 1, a RAM (Random Access Memory) 2, a ROM (Read Only Memory) 3, a processing unit 4 including a CPU (Central Processing Unit), and the like.
- An operation unit 5 including a pointing device such as a mouse or a touch panel and a keyboard, and a display 6 as an example of display means including a liquid crystal display.
- the interface 1 controls data exchange with the server 200 via the network NT.
- the ROM 3 stores a program for causing the processing unit 4 to execute an authentication process described later, necessary data, and the like in a nonvolatile manner.
- the processing unit 4 reads out and executes the above-described program stored in the ROM 3 based on the operation executed in the operation unit 5 and, for example, page data described later received from the server 200.
- the RAM 2 temporarily stores data necessary for page display and the like in the processing unit 4. Further, the display 6 displays an operation screen illustrated in FIG.
- the server 200 includes an interface 10 as an example of position information receiving means, a RAM 11, and an example of position information storage means including a nonvolatile storage medium such as a hard disk and an example of operation storage means.
- an operation instruction selection unit including a storage unit 12 and a CPU
- an example of a page transmission unit an example of a flag setting unit
- an example of a session ID giving unit an example of a correspondence unit
- an example of a determination unit Part 13 the interface 10 controls data exchange with each user terminal 100 via the network NT.
- the storage unit 12 includes a program for causing the processing unit 13 to execute authentication processing according to the first embodiment, in addition to the temporal position information database, the manual operation information database, and the object operation database, which will be described later with reference to FIG. Necessary data and the like are stored in a nonvolatile manner. And the process part 13 performs an authentication process by reading the said program etc. which are memorize
- position data to be described later that is periodically transmitted from the user terminal 100 that is the authentication target is accumulated. That is, as illustrated in FIG. 4, in a session in which the user terminal 100 and the server 200 are connected, a session ID 121 for identifying the user terminal 100 from other user terminals 100 and a display on the display 6 of the user terminal 100 are displayed.
- the position data 123 indicating the position of the pointer on the display 6 as an example of the indication index such as the mouse pointer, and the time data 122 indicating the date and time corresponding to the session ID 121 and the position data 123 are used to generate one time.
- Position data 124 is formed.
- the position data 123 includes, for example, a coordinate system in which the upper left coordinate on the display 6 of the user terminal 100 is the origin (0, 0), the horizontal direction when the display 6 is used is the X axis, and the vertical direction when the display 6 is used is the Y axis.
- the session ID is used to identify the user terminal 100 from the other user terminal 100 in the session, but the browser displayed on the user terminal 100 may be identified from the other browser in the session.
- a manual operation flag 132 is stored in association with the session ID 131 of the temporal position information database 120.
- This manual operation flag 132 is, for example, “1” when it is determined that the operation of the pointer on the user terminal indicated by the session ID is an operation by the operator of the user terminal 100 (ie, a person). Is a flag set to "0", for example.
- object operation information 142 associated with the operation instruction 141 is stored as illustrated in FIG.
- the object operation information 142 is used to collate object selection information or object selection movement information transmitted to the server 200 when the operator performs an operation according to the operation instruction 141 displayed on the user terminal 100.
- the authentication process executed in the authentication system S will be specifically described with reference to FIGS.
- the authentication process described below is an authentication process executed as part of a process of writing a review article using a review page on which a user operating the user terminal 100 can write a hotel review article.
- a review page is exchanged between the user terminal 100 and the server 200 (step S1). Thereafter, the position data 123 and the transmission button 67 are exchanged (step S2), and finally authentication processing is exchanged (step S3).
- FIG. 6 shows details of the process in step S1 of FIG. 5, and is a flowchart showing data exchange between the user terminal 100 that requests display of the review page and the server 200 that generates the review page.
- the user terminal 100 transmits a request for displaying a review page to the server 200 (step S10).
- the server 200 that has received the request (step S20) generates a review page including the position information transmission unit according to the first embodiment (step S21).
- This review page includes a script or the like that periodically transmits position data 123 indicating the position on the display 6 such as a pointer from the user terminal 100 to the server 200 as position information transmission means.
- the transmission of the position data 123 to the server 200 does not have to be periodic, and may be performed at predetermined timings set in advance.
- a comment column 60 for writing a review article, the operation instruction 61 for the user, and objects 62 to 66 used for authentication are displayed.
- the operation instruction 61 describes a word prompting the user to select an object (see the operation instruction 141 in FIG. 4). Specifically, for example, a script or the like for sending the mouse pointer position data 123 to the server 200 every second is embedded. Further, an operation instruction 141 corresponding to an operation instruction 61 described later is extracted from the object operation information database 140 to generate a review page.
- the server 200 that generated the review page returns the page data of the review page generated by the process of step S21 to the user terminal 100 (step S22). Receiving this (step S11), the user terminal 100 displays a review page on the display 6 (step S12).
- the review page displays a comment field 60 for writing a review article, the operation instruction 61 for the user, and objects 62 to 66 used for authentication.
- the operation instruction 61 describes a word prompting the user to select an object (see the operation instruction 141 in FIG. 4).
- FIG. 4 there are a plurality of types of text included in the operation instruction 61, and the correct answer pattern of the check is different for each type of text.
- the operation instruction 61 may include a predetermined image corresponding to the wording in addition to the wording illustrated in FIGS. 4 and 10A.
- Objects 62 to 66 are selection frame objects in which “ ⁇ ” is displayed when the user operates the pointer P using a mouse or the like (not shown) constituting the operation unit 5 to select the object. These objects 62 to 66 can be used in common for a plurality of types of operation instructions 61 having different contents, as will be described later. Therefore, object data corresponding to them can be cached in a storage unit (not shown in FIG. 2) including the RAM 2 or the nonvolatile storage medium of the user terminal 100.
- FIG. 7 shows the details of the process in step S2 of FIG. 5.
- the user terminal 100 that transmits pointer position data and requests transmission button data, and the server 200 that returns a manual operation flag and transmission button data. It is a flowchart which shows the exchange of data between these.
- the operator selects the object 62 according to the operation instruction 61 in FIG. FIG. 10B shows a screen immediately after the object 62 is selected.
- the user terminal 100 starts a process of periodically repeating the pointer position data transmission to the server 200 (step S30).
- the pointer position data is position data 123 indicating the position on the display 6 of the pointer P shown in FIG. Specifically, the user terminal 100 repeats the process of transmitting the position data 123 of the pointer P to the server 200 every second, for example.
- the user terminal 100 starts the process of periodically repeating the pointer position data transmission.
- the user terminal 100 is not limited to the object 62 and may be any of the objects 63 to 66.
- the processing load on the user terminal 100 and the server 200 is reduced, and the network connecting the user terminal 100 and the server 200 The load can be reduced.
- the user terminal 100 may start the process of periodically repeating the pointer position data transmission from the time when the review page is displayed.
- the server 200 that has received the position data 123 transmitted from the user terminal 100 registers the transmitted position data 123 in the temporal position information database 120 using the session ID 121 of the user terminal 100 and the time data 122 indicating the current time. (Step S41). Since the server 200 periodically receives the position data 123 and registers it in the temporal position information database 120, the temporal position information database 120 stores the position data 123 at different times for each session ID 121 as illustrated in FIG. Additional registration will be made sequentially.
- the server 200 constantly monitors the contents of the time-dependent position information database 120, and sets the manual operation flag 132 of the manual operation information database 130 based on the monitoring result (step S42). More specifically, the server 200 monitors whether or not there are two or more types of position data 123 at different times with the same session ID 121 in the temporal position information database 120. If there is no position data 123 at the same session ID 121 at different times, the manual operation flag 132 is registered as a value “0” in the manual operation information database 130 using the session ID 121.
- the server 200 determines whether or not the operation is performed by the operator based on the difference in the position data 123. If the server 200 determines that the operation is a person, the manual operation flag 132 of the manual operation information database 130 is set to “1”, for example.
- the server 200 returns the value of the manual operation flag 132 set in the manual operation information database 130 in step S42 to the user terminal 100 (step S43).
- the user terminal 100 receives the value of the manual operation flag 132 (step S31).
- the processes of steps S30 to S31 in the user terminal 100 and steps S40 to S43 in the server 200 are repeated each time the user terminal 100 receives the manual operation flag 132 of “0”.
- the user terminal 100 cancels the periodic transmission of the position data 123 and displays a transmission button in the review page.
- a transmission button display request for requesting data is transmitted to the server 200 (step S32).
- the server 200 receives the transmission button display request (step S44)
- the server 200 returns transmission button data for displaying the transmission button to the user terminal 100 (step S45).
- a transmission button 67 is displayed in the review page (step S34). As a result, the operator can click the send button 67 after inputting the review comment.
- the operator has selected the object 62 at the time of FIG.
- the operator selects the second object 65 from the right.
- the operator moves the mouse pointer from the object 62 to the object 65.
- the mouse terminal position data 123 is transmitted to the server 200 by the user terminal 100. Different position data 123 is registered.
- the manual operation flag 132 is updated as “1”.
- the server 200 returns a manual operation flag 132 of “1” to the user terminal 100
- the user terminal 200 that has received the manual operation flag 132 transmits a transmission button display request.
- the server 200 that has received the transmission button display request returns the transmission button data to the user terminal 100. Therefore, when the operator moves the mouse pointer from the object 62 to the object 65, as shown in FIG. 10C, a transmission button 67 that has not been displayed on the review page is displayed.
- an authentication process is exchanged between the user terminal 100 and the server 200 (see step S3 in FIG. 5).
- FIG. 8 is a flowchart showing details of the exchange of authentication processing between the user terminal 100 requesting authentication and the server 200 performing authentication.
- the user terminal 100 transmits an authentication request to the server 200 (step S50). And the server 200 which received the authentication request (step S60) performs an authentication process (step S61).
- the user terminal 100 transmits object selection information to the server 200 when transmitting the authentication request (step S50).
- the server 200 receives the object selection information together with the authentication request (step S60).
- FIG. 9 shows the authentication process (step S61) in detail. In FIG. 9, it is determined whether the object selection location corresponding to the operation instruction 141 in the object operation information database 140 matches the object selection information received in step S60 (step S611). If they match (step S611; YES), the next manual operation flag 132 is determined (step S612). If they do not match (step S611; NO), it is regarded as an authentication error (step S614).
- the manual operation flag 132 it is determined whether or not the manual operation flag 132 acquired from the manual operation information database 130 is “1” using the session ID associated with the session with the user terminal 100 as a key (Ste S612).
- the manual operation flag 132 is “1”, that is, it is determined that the operation is performed by the operator (step S612; YES)
- the authentication is regarded as successful (step S613).
- it is determined that the manual operation flag 132 is not “1”, that is, it is not an operation by the operator (step S612; NO) it is regarded as an authentication error (step S614).
- whether or not the operation is performed by the operator is determined by the two types of determination of the object selection location and the manual operation flag 132.
- the manual operation flag 132 is determined after determining the object selection location.
- the order is not limited to this order, and the order may be reversed or determined simultaneously.
- step S62 a review writing process is executed (step S62), and a writing result page is returned to the user terminal 100.
- the write result page is displayed (step S52).
- the review writing process is not executed, and an error message (not shown) or the like is returned to the user terminal 100.
- the review page including the operation instruction 61 including the text information and the corresponding objects 62 to 66 is displayed on the user terminal 100, and the user Based on the object selection information indicating the operation executed on the terminal 100 (that is, movement of the pointer P) and the object operation information 142 associated with the operation instruction 61, the operation is performed by the operation of the operator of the user terminal 100. Since it is determined whether or not it is a thing, it is easily and accurately determined that the operation on the user terminal 100 is performed by an operator (that is, a person), in other words, that the input is not an automatic process such as a bot. can do.
- the operation instruction 61 provided on the page displayed on the user terminal 100 is text information, and the objects 62 to 66 displayed for the operation corresponding to the operation instruction 61 are common to a plurality of types of operation instructions 61. Can be cached in the user terminal 100 as compared with the case of transmitting an image such as a character for authentication each time an authentication screen is transmitted as in the conventional capture technology. The network load connecting the user terminal 100 and the server 200 can be reduced.
- the operation on the user terminal 100 is a movement operation of the pointer P performed using the mouse
- the operation on the user terminal 100 is performed by the operator with a simple configuration without using a keyboard or a complicated image. Can be determined.
- the manual operation flag 132 is set when the positions of the pointers P indicated by the position data 123 continuously received by the server 200 are different from each other, and the pointer P is set based on whether or not the manual operation flag 132 is set. It is determined whether or not the movement is due to the operation of the operator. Therefore, it can be determined simply and accurately that the movement of the pointer P is due to a human operation.
- FIG. 11 is a diagram illustrating an example of an operation screen displayed on the user terminal. Further, the hardware configuration of the authentication system according to the second embodiment is basically the same as the hardware configuration of the authentication system S according to the first embodiment. The second embodiment will be described with reference to the member numbers used in the description of the authentication system S according to the embodiment.
- the authentication operation is performed after the pointer P is operated in accordance with the operation instruction 61 (see FIG. 10) to select the objects 62 to 66 (see FIG. 10).
- the authentication operation is executed after the object itself displayed on the display 6 is moved according to the operation instruction.
- the position data 123 indicating the position on the display 6 of the object itself according to the second embodiment is not the position data 123 indicating the position on the display 6 of the pointer P according to the first embodiment.
- the data is transmitted from the terminal 100 to the server 200 and accumulated as position data 123 in the time-dependent position information database 120.
- the object operation information database 140 according to the second embodiment is as follows, for example.
- the page displayed on the display 6 includes, in addition to the comment field 60 for writing similar to the first embodiment, for example, as illustrated in FIG. Are included in the operation instruction 70 and the objects 71 to 74.
- the objects 71 to 74 illustrated in FIG. 11A are objects that are themselves moved on the display 6 by the operation with the mouse or the like. 11A is in a state before the operation using the operation unit 5 is executed, the positional relationship between the objects 71 to 74 is different from the content indicated by the operation instruction 70. ing.
- object data corresponding to the objects 71 to 74 and the like, and position data 123 indicating the positions of the objects 71 to 74 are transmitted to the server 200 every second, for example.
- the above script and the like are included.
- the objects 71 to 74 can be used in common for a plurality of types of the operation instructions 70 having different contents. Therefore, object data corresponding to them can be cached in a storage unit (not shown in FIG. 2) including the RAM 2 or the nonvolatile storage medium of the user terminal 100.
- position data 123 indicating the positions of the displayed objects 71 to 74 on the display 6 is transmitted to the server 200.
- the position data 123 in this case, as in the first embodiment, for example, the upper left coordinate on the display 6 of the user terminal 100 is the origin (0, 0), and the horizontal direction when the display 6 is used is the X axis.
- the positions of the objects 71 to 74 on the display 6 are described by a coordinate system with the vertical direction in use as the Y axis.
- each object 71 to 74 As the selection operation of each object 71 to 74, as illustrated in FIG. 11, according to the contents of the operation instruction 70, the objects 71 to 74 themselves are selected by the pointer P and FIGS. 11 (a) to 11 (c) are selected. The operation of moving the object 74, the object 73, the object 71, and the object 72 in order from the left is executed. Also during the rearrangement operation, position data 123 indicating the positions of the objects 71 to 74 is transmitted to the server 200. Then, from the timing when the object 71 is moved (see step S30 in FIG. 7), the user terminal 100 sends the position data 123 indicating the position of each object 71 to 74 on the display 6 to the server 200, for example, every second. The transmission process is repeated (see step S31 in FIG. 7).
- the user terminal 100 and the server 200 perform the process shown in step S3 of FIG. 5 and FIG.
- the position data 123 indicating the positions of the objects 71 to 74 on the display 6 is transmitted to the server 200.
- the position data 123 of only the object 71 is transmitted to the server 200 instead of a plurality of objects. It's also good.
- the positions of the objects 71 to 74 indicated by the position data 123 received by the server 200 set the manual operation flag 132, and based on whether the manual operation flag 132 is set or not, It is determined whether or not the movement of the objects 71 to 74 is due to the operation of the operator. Therefore, for example, even a terminal that does not display a mouse pointer on a user terminal, such as a smartphone, can easily and accurately determine that the movement of each object 71 to 74 is due to the operation of the operator.
- whether or not the operation is performed by the operator is determined by the two types of determination of the object selection location and the manual operation flag 132 (see steps S611 and S612 in FIG. 9). In addition to this, it may be determined whether or not the operation is performed by the operator by determining only the object selection portion described in the processing of step S611.
- the operation instruction 61 or 70 first transmitted to the user terminal 100 in the session and the user terminal 100 in the session Correlate with the received object selection information.
- the object operation information associated with the operation instruction 61 or 70 in the object operation information database 140 is compared with the object selection information associated with the operation instruction 61 or 70 using the session ID as a key, When the two match, it is determined that the operation is performed by the operator.
- the operation instruction 61 or 70 transmitted to the user terminal 100 for each session may be configured to be changed, for example, at random in association with the session ID.
- a different operation instruction 61 or 70 is displayed on the display 6 of the user terminal 100 every time a new session is established with the user terminal 100.
- the object operation information and the object selection information corresponding to them are changed every time the session is established, and as a result, the operation on the user terminal 100 is performed by the operator. It is possible to more reliably determine whether or not.
- each embodiment in the conventional capture technology, characters transmitted to the user terminal are It is ensured that the operation on the user terminal 100 is performed by the operator because the characters cannot be read using, for example, OCR (optical character recognition) technology.
- OCR optical character recognition
- an operation for authentication can be performed only with a pointing device (that is, a mouse or a touch panel) provided in the operation unit 5 of the user terminal 100, and a keyboard.
- the user terminal 100 is sent to the user terminal 100 every time the authentication screen is transmitted as an image. Since there is no need to transmit, it is possible to reliably determine that the operation is performed by the operator without any disadvantages in the conventional capture technology.
- the operation of the operation button 67 is executed on the user terminal 100 after the manual operation flag 132 is set, it is determined whether or not the operation is performed by the operator based on whether or not the manual operation flag 132 is set. Therefore, since the determination is not made until the manual operation flag 132 is set and the transmission button 67 is displayed, it can be determined that the operation is performed by the operator more efficiently.
- the user terminal 100 after transmitting the transmission button data to the user terminal 100, the user terminal 100 stops the periodic transmission of the position data 123. Therefore, it is possible to reduce the processing load for transmitting the position data 123 in the user terminal 100, reduce the communication amount between the user terminal 100 and the server 200, and reduce the processing load for receiving the position data 123 in the server 200. It becomes.
- the transmission of the position data 123 is started after the timing when the object 62 or the object 71 is selected or moved.
- the review page according to each embodiment is a user terminal.
- the transmission of the position data 123 may be started from the timing displayed on the display 6 of 100.
- the objects ⁇ , ⁇ , and ⁇ are displayed in a horizontal row in the upper row of the display 6, while An object, a ⁇ object, and a ⁇ object are displayed in a horizontal row in the lower part of the display 6, an operation instruction indicating an operation of overlapping the objects having the same shape is displayed on the display 6, and the operation is performed on the user terminal 100. May be executed by the operator.
- the display position of each object on the display 6 may be changed for each session between the user terminal 100 and the server 200.
- the display positions of the objects 62 to 66 may be changed so that they are arranged on the left and right on the review page as shown in FIG. In this case, if the display position of each object is different for each session, a method for determining the display position of each object can be arbitrarily selected.
- an operation instruction indicating an operation of rearranging objects representing the seven colors of the rainbow in order of the rainbow is displayed on the display 6 together with the objects of the seven colors, and the operation is given to the operator of the user terminal 100. It may be executed.
- an operation instruction indicating an operation of rearranging objects indicating infants, adults, and elderly people in order of age is displayed on the display 6 together with objects indicating the infants and the like, and the operation is performed by the user.
- the operator of the terminal 100 may execute it.
- programs corresponding to the flowcharts shown in FIGS. 5 to 8 are recorded in a recording medium such as a flexible disk or a hard disk, or acquired and stored via a network NT, and these are stored in a general-purpose microcomputer. It is also possible to cause the microcomputer or the like to function as the processing unit 4 or the processing unit 13 according to each embodiment.
- the present invention can be used in the field of authentication processing between the user terminal 100 and the server 200 connected via the network NT.
- the user terminal 100 is operated by a person. If it is applied to the field of authentication processing for authenticating whether or not it is, a particularly remarkable effect can be obtained.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Social Psychology (AREA)
- Computing Systems (AREA)
- User Interface Of Digital Computer (AREA)
- Information Transfer Between Computers (AREA)
- Telephonic Communication Services (AREA)
Abstract
Description
(I)第1実施形態
はじめに、本発明に係る第1実施形態について、図1から図10を用いて説明する。なお、図1は第1実施形態に係る認証システムの概要構成を示すブロック図であり、図2は第1実施形態に係るユーザ端末の細部構成を示すブロック図である。また図3は第1実施形態に係るサーバの細部構成を示すブロック図であり、図4は第1実施形態に係る記憶部の記憶内容を例示する図である。更に図5から図8は第1実施形態に係る認証処理をそれぞれ示すフローチャートであり、図9は認証処理の詳細を示すフローチャートであり、図10は当該認証処理中にユーザ端末において表示される操作画面例を示す図である。
(II)第2実施形態
次に、本発明に係る他の実施形態である第2実施形態について、図11を用いて説明する。なお図11はユーザ端末において表示される操作画面例を示す図である。また、第2実施形態に係る認証システムのハードウエア的な構成は、第1実施形態に係る認証システムSのハードウエア的な構成と基本的に同一であるので、以下の説明では、第1実施形態に係る認証システムSの説明において用いられた部材番号を引用しつつ、第2実施形態について説明する。
(III)変形形態
次に、本発明に係る変形形態について説明する。
2、11 RAM
3 ROM
4、13 処理部
5 操作部
6 ディスプレイ
12 記憶部
60 コメント欄
61、70 操作指示
62、63、64、65、66、71、72、73、74 オブジェクト
67 送信ボタン
100 ユーザ端末
120 経時位置情報データベース
121、131 セッションID
122 時刻データ
123 位置データ
124 経時位置データ
130 手動操作情報データベース
132 手動操作フラグ
200 サーバ
S 認証システム
NT ネットワーク
P ポインタ
Claims (9)
- 表示手段を備えた端末にネットワークを介して接続された認証サーバ装置において、
前記表示手段上における前記端末の操作者による操作を指示するためのテキスト情報を含む操作指示と、前記操作に対応する前記表示手段上の位置を含む操作情報であって、対応する前記操作指示の内容に応じた内容の操作情報と、を対応付けて記憶する操作記憶手段と、
前記操作指示と、前記操作のために前記表示手段上に表示されるオブジェクトと、を備えたページを表示する前記端末との間のセッション毎にセッションIDを付与するセッションID付与手段と、
前記セッション毎に前記操作指示を選択する操作指示選択手段と、
前記選択された操作指示と、当該操作指示に対応する前記操作のために前記表示手段上に表示される前記オブジェクトと、前記セッションIDと、前記ページを表示した前記端末において実行された前記操作に対応する位置を示す位置情報を前記認証サーバ装置に送信させる位置情報送信手段と、を備えた前記ページを送信するページ送信手段と、
前記位置情報を前記端末から受信する位置情報受信手段と、
前記ページを表示した前記端末から受信した認証リクエストに含まれる前記セッションIDに基づいて、当該セッションにおいて表示された前記ページに備えられた前記操作指示と、当該セッションにおいて前記端末から受信した前記位置情報と、を対応付ける対応付手段と、
前記位置情報に対応付けられた前記操作指示に対応付けられて前記操作記憶手段に記憶されている前記操作情報と、当該位置情報と、に基づいて、前記操作が前記操作者によるものであるか否かを判定する判定手段と、
を備えることを特徴とする認証サーバ装置。 - 請求項1に記載の認証サーバ装置において、
前記操作は、前記端末において前記操作者により操作されるポインティングデバイスを用いて行われる操作であることを特徴とする認証サーバ装置。 - 請求項1又は請求項2に記載の認証サーバ装置において、
前記ページ送信手段は、前記操作者が移動可能な指示指標の前記表示手段上における位置を示す前記位置情報を前記認証サーバ装置に送信させる前記位置情報送信手段と、前記指示指標によって選択可能な複数の前記オブジェクトと、を備えた前記ページを送信し、
前記認証サーバ装置は、
前記位置情報を受信する度に、前記セッションID及び受信した時刻毎に当該受信した位置情報を記憶する位置情報記憶手段と、
同一の前記セッションIDにおいて、前記位置情報記憶手段に記憶した前記位置情報と、前記位置情報より前の時刻に記憶した位置情報と、が異なっているとき、前記指示指標の移動が前記端末の操作者の操作によるものであることを示す手動操作フラグを設定するフラグ設定手段と、
をさらに有し、
前記判定手段は、前記認証リクエストを受信したとき、前記手動操作フラグと、前記操作情報及び前記位置情報と、に基づいて、前記指示指標の移動が前記操作者の操作によるものであるか否かを判定することを特徴とする認証サーバ装置。 - 請求項1又は請求項2に記載の認証サーバ装置において、
前記ページ送信手段は、前記操作者が前記表示手段上において選択移動可能な複数の前記オブジェクトと、前記オブジェクトの前記表示手段上における位置を示す前記位置情報を前記認証サーバ装置に送信させる前記位置情報送信手段と、を備えた前記ページを送信し、
前記認証サーバ装置は、
前記位置情報を受信する度に、前記セッションID及び受信した時刻毎に当該受信した位置情報を記憶する位置情報記憶手段と、
同一の前記セッションIDにおいて、前記位置情報記憶手段に記憶した前記位置情報と、前記位置情報より前の時刻に記憶した位置情報と、が異なっているとき、前記オブジェクトの移動が前記端末の前記操作者の操作によるものであることを示す手動操作フラグを設定するフラグ設定手段と、
をさらに有し、
前記判定手段は、前記認証リクエストを受信したとき、前記手動操作フラグと、前記操作情報及び前記位置情報と、に基づいて、前記オブジェクトの移動が前記操作者の操作によるものであるか否かを判定することを特徴とする認証サーバ装置。 - 請求項3又は請求項4に記載の認証サーバ装置において、
前記ページにおける前記位置情報送信手段は、前記端末において前記ページを表示した時点では前記位置情報の送信をしておらず、前記複数のオブジェクトのうち任意の一つのオブジェクトを選択すると前記位置情報の送信を開始することを特徴とする認証サーバ装置。 - 請求項3から請求項5のいずれか一項に記載の認証サーバ装置において、
前記位置情報を受信する度に、前記端末へ前記手動操作フラグを返信するフラグ返信手段をさらに有し、
前記ページ送信手段は、前記端末において前記位置情報の送信を行っている場合に、前記操作者の操作によるものであることを示す前記手動操作フラグを前記端末が受信すると前記位置情報の送信を停止させる位置情報送信停止手段をさらに備えた前記ページを送信することを特徴とする認証サーバ装置。 - 請求項6に記載の認証サーバ装置において、
前記ページ送信手段は、前記端末において前記位置情報の送信を行っている場合に、前記操作者の操作によるものであることを示す前記手動操作フラグを前記端末が受信すると、前記認証サーバ装置に前記認証リクエストを送信するためのリクエスト送信手段を前記表示手段に表示させる認証リクエスト方法表示手段をさらに備えた前記ページを送信することを特徴とする認証サーバ装置。 - 表示手段を備えた端末にネットワークを介して接続された認証サーバ装置に含まれるコンピュータを、
前記表示手段上における前記端末の操作者による操作を指示するためのテキスト情報を含む操作指示と、前記操作に対応する前記表示手段上の位置を含む操作情報であって、対応する前記操作指示の内容に応じた内容の操作情報と、を対応付けて記憶する操作記憶手段、
前記操作指示と、前記操作のために前記表示手段上に表示されるオブジェクトと、を備えたページを表示する前記端末との間のセッション毎にセッションIDを付与するセッションID付与手段、
前記セッション毎に前記操作指示を選択する操作指示選択手段、
前記選択された操作指示と、当該操作指示に対応する前記操作のために前記表示手段上に表示される前記オブジェクトと、前記セッションIDと、前記ページを表示した前記端末において実行された前記操作に対応する位置を示す位置情報を前記認証サーバ装置に送信させる位置情報送信手段と、を備えた前記ページを送信するページ送信手段、
前記位置情報を前記端末から受信する位置情報受信手段、
前記ページを表示した前記端末から受信した認証リクエストに含まれる前記セッションIDに基づいて、当該セッションにおいて表示された前記ページに備えられた前記操作指示と、当該セッションにおいて前記端末から受信した前記位置情報と、を対応付ける対応付手段、及び、
前記位置情報に対応付けられた前記操作指示に対応付けられて前記操作記憶手段に記憶されている前記操作情報と、当該位置情報と、に基づいて、前記操作が前記操作者によるものであるか否かを判定する判定手段、
として機能させることを特徴とする認証サーバ装置用プログラム。 - 表示手段を備えた端末にネットワークを介して接続された認証サーバ装置において実行される認証方法において、
前記表示手段上における前記端末の操作者による操作を指示するためのテキスト情報を含む操作指示と、前記操作に対応する前記表示手段上の位置を含む操作情報であって、対応する前記操作指示の内容に応じた内容の操作情報と、を対応付けて記憶する操作記憶工程と、
前記操作指示と、前記操作のために前記表示手段上に表示されるオブジェクトと、を備えたページを表示する前記端末との間のセッション毎にセッションIDを付与するセッションID付与工程と、
前記セッション毎に前記操作指示を選択する操作指示選択工程と、
前記選択された操作指示と、当該操作指示に対応する前記操作のために前記表示手段上に表示される前記オブジェクトと、前記セッションIDと、前記ページを表示した前記端末において実行された前記操作に対応する位置を示す位置情報を前記認証サーバ装置に送信させる位置情報送信手段と、を備えた前記ページを送信するページ送信工程と、
前記位置情報を前記端末から受信する位置情報受信工程と、
前記ページを表示した前記端末から受信した認証リクエストに含まれる前記セッションIDに基づいて、当該セッションにおいて表示された前記ページに備えられた前記操作指示と、当該セッションにおいて前記端末から受信した前記位置情報と、を対応付ける対応付工程と、
前記位置情報に対応付けられた前記操作指示に対応付けられて記憶されている前記操作情報と、当該位置情報と、に基づいて、前記操作が前記操作者によるものであるか否かを判定する判定工程と、
を含むことを特徴とする認証方法。
Priority Applications (7)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US13/388,925 US9348986B2 (en) | 2010-03-29 | 2011-03-29 | Authentication server apparatus, authentication server apparatus-use program and authentication method |
JP2012508344A JP4991975B2 (ja) | 2010-03-29 | 2011-03-29 | 認証サーバ装置、認証サーバ装置用プログラム及び認証方法並びに情報記録媒体 |
CN201180004009.4A CN102576400B (zh) | 2010-03-29 | 2011-03-29 | 认证服务器装置、认证服务器装置用程序以及认证方法 |
EP11762848.7A EP2455883B1 (en) | 2010-03-29 | 2011-03-29 | Authentication server, method and program |
KR1020127004351A KR101195659B1 (ko) | 2010-03-29 | 2011-03-29 | 인증 서버 장치, 인증 서버 장치용 프로그램을 기록한 컴퓨터 판독가능 기록 매체 및 인증 방법 |
BR112012006151A BR112012006151B8 (pt) | 2010-03-29 | 2011-03-29 | aparelho servidor de autenticação, e, método de autenticação executado em um aparelho servidor de autenticação |
ES11762848.7T ES2537878T3 (es) | 2010-03-29 | 2011-03-29 | Servidor, procedimiento y programa de autenticación |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2010-076169 | 2010-03-29 | ||
JP2010076169 | 2010-03-29 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2011122624A1 true WO2011122624A1 (ja) | 2011-10-06 |
Family
ID=44712319
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2011/057813 WO2011122624A1 (ja) | 2010-03-29 | 2011-03-29 | 認証サーバ装置、認証サーバ装置用プログラム及び認証方法 |
Country Status (8)
Country | Link |
---|---|
US (1) | US9348986B2 (ja) |
EP (1) | EP2455883B1 (ja) |
JP (1) | JP4991975B2 (ja) |
KR (1) | KR101195659B1 (ja) |
CN (1) | CN102576400B (ja) |
BR (1) | BR112012006151B8 (ja) |
ES (1) | ES2537878T3 (ja) |
WO (1) | WO2011122624A1 (ja) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102946334A (zh) * | 2012-11-28 | 2013-02-27 | 中国移动(深圳)有限公司 | 一种获取有效图像验证码的方法和系统 |
JP2016534451A (ja) * | 2014-07-25 | 2016-11-04 | 小米科技有限責任公司Xiaomi Inc. | 検証コードを用いる検証方法、装置、プログラム、及び記録媒体 |
CN109376524A (zh) * | 2018-09-29 | 2019-02-22 | 浙江万朋教育科技股份有限公司 | 自动识别远程机器上的图片验证码的方法 |
Families Citing this family (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
BR112012006151B8 (pt) * | 2010-03-29 | 2020-10-13 | Rakuten Inc | aparelho servidor de autenticação, e, método de autenticação executado em um aparelho servidor de autenticação |
US8590058B2 (en) * | 2011-07-31 | 2013-11-19 | International Business Machines Corporation | Advanced audio CAPTCHA |
TWI465128B (zh) * | 2012-11-05 | 2014-12-11 | Ke Hsi Hsiang | 伺服器認證方法、系統與一電腦可讀取媒體 |
JP5993836B2 (ja) * | 2013-11-28 | 2016-09-14 | 京セラドキュメントソリューションズ株式会社 | 認証装置及び画像形成装置 |
EP2887252B1 (en) | 2013-12-17 | 2019-10-16 | Mastercard International, Inc. | User authentication |
CN111681060A (zh) * | 2019-02-25 | 2020-09-18 | 九恒星成都信息技术有限公司 | 应用的订单处理方法及装置 |
CN109981811B (zh) * | 2019-03-12 | 2022-05-31 | 众安信息技术服务有限公司 | 一种终端应用程序的会话id生成方法及系统 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2008052727A (ja) | 2006-08-22 | 2008-03-06 | Fuji Xerox Co Ltd | 動きおよび対話ベースのcaptcha |
WO2009063761A1 (ja) * | 2007-11-12 | 2009-05-22 | Nec Corporation | 認証情報入力支援装置、認証情報入力支援システム、認証情報入力支援方法及びプログラム |
JP2009266067A (ja) * | 2008-04-28 | 2009-11-12 | Kawamura Electric Inc | ユーザ認証システム |
Family Cites Families (27)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6209104B1 (en) * | 1996-12-10 | 2001-03-27 | Reza Jalili | Secure data entry and visual authentication system and method |
US20050008148A1 (en) * | 2003-04-02 | 2005-01-13 | Dov Jacobson | Mouse performance identification |
US7725395B2 (en) * | 2003-09-19 | 2010-05-25 | Microsoft Corp. | System and method for devising a human interactive proof that determines whether a remote client is a human or a computer program |
CN1856782B (zh) * | 2003-09-25 | 2011-05-18 | 索尔玛泽株式会社 | 安全认证服务的方法 |
US7197646B2 (en) * | 2003-12-19 | 2007-03-27 | Disney Enterprises, Inc. | System and method for preventing automated programs in a network |
JP4685095B2 (ja) * | 2004-04-30 | 2011-05-18 | ヒルクレスト・ラボラトリーズ・インコーポレイテッド | 微動に基づいてユーザを識別するための方法およびデバイス |
US7945952B1 (en) * | 2005-06-30 | 2011-05-17 | Google Inc. | Methods and apparatuses for presenting challenges to tell humans and computers apart |
US20070143830A1 (en) | 2005-12-20 | 2007-06-21 | International Business Machines Corporation | Method, apparatus and system for preventing unauthorized access to password-protected system |
US8650080B2 (en) * | 2006-04-10 | 2014-02-11 | International Business Machines Corporation | User-browser interaction-based fraud detection system |
US7552467B2 (en) * | 2006-04-24 | 2009-06-23 | Jeffrey Dean Lindsay | Security systems for protecting an asset |
EP1868131A1 (en) * | 2006-06-14 | 2007-12-19 | Vodafone Holding GmbH | Method and system for secure user authentication |
US8019127B2 (en) * | 2006-09-13 | 2011-09-13 | George Mason Intellectual Properties, Inc. | Image based turing test |
CN101261669A (zh) | 2007-03-09 | 2008-09-10 | 吴天际 | 用鼠标操作的视觉验证码系统的实现方法 |
CN101059830A (zh) * | 2007-06-01 | 2007-10-24 | 华南理工大学 | 一种可结合游戏特征的机器人外挂识别方法 |
US8280993B2 (en) | 2007-10-04 | 2012-10-02 | Yahoo! Inc. | System and method for detecting Internet bots |
US20090113294A1 (en) * | 2007-10-30 | 2009-04-30 | Yahoo! Inc. | Progressive captcha |
US8352598B2 (en) | 2007-11-27 | 2013-01-08 | Inha-Industry Partnership Institute | Method of providing completely automated public turing test to tell computer and human apart based on image |
CN101178813B (zh) * | 2007-12-19 | 2010-04-14 | 腾讯科技(深圳)有限公司 | 一种图片验证码的生成方法和装置 |
CN101488228B (zh) * | 2008-01-14 | 2011-12-07 | 联想(北京)有限公司 | 一种防机器识别的信息显示方法及装置 |
US9186579B2 (en) * | 2008-06-27 | 2015-11-17 | John Nicholas and Kristin Gross Trust | Internet based pictorial game system and method |
CN101662458A (zh) * | 2008-08-28 | 2010-03-03 | 西门子(中国)有限公司 | 一种认证方法 |
WO2010026591A1 (en) * | 2008-09-04 | 2010-03-11 | Walletex Microelectronics Ltd. | Method and apparatus for carrying out secure electronic communication |
US8433785B2 (en) * | 2008-09-16 | 2013-04-30 | Yahoo! Inc. | System and method for detecting internet bots |
US8751628B2 (en) * | 2009-05-05 | 2014-06-10 | Suboti, Llc | System and method for processing user interface events |
US8214892B2 (en) * | 2009-07-15 | 2012-07-03 | Hewlett-Packard Development Company, L.P. | Password authentication system and methods |
US8959621B2 (en) * | 2009-12-22 | 2015-02-17 | Disney Enterprises, Inc. | Human verification by contextually iconic visual public turing test |
BR112012006151B8 (pt) * | 2010-03-29 | 2020-10-13 | Rakuten Inc | aparelho servidor de autenticação, e, método de autenticação executado em um aparelho servidor de autenticação |
-
2011
- 2011-03-29 BR BR112012006151A patent/BR112012006151B8/pt active IP Right Grant
- 2011-03-29 CN CN201180004009.4A patent/CN102576400B/zh active Active
- 2011-03-29 JP JP2012508344A patent/JP4991975B2/ja active Active
- 2011-03-29 US US13/388,925 patent/US9348986B2/en active Active
- 2011-03-29 EP EP11762848.7A patent/EP2455883B1/en active Active
- 2011-03-29 WO PCT/JP2011/057813 patent/WO2011122624A1/ja active Application Filing
- 2011-03-29 KR KR1020127004351A patent/KR101195659B1/ko active IP Right Grant
- 2011-03-29 ES ES11762848.7T patent/ES2537878T3/es active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2008052727A (ja) | 2006-08-22 | 2008-03-06 | Fuji Xerox Co Ltd | 動きおよび対話ベースのcaptcha |
WO2009063761A1 (ja) * | 2007-11-12 | 2009-05-22 | Nec Corporation | 認証情報入力支援装置、認証情報入力支援システム、認証情報入力支援方法及びプログラム |
JP2009266067A (ja) * | 2008-04-28 | 2009-11-12 | Kawamura Electric Inc | ユーザ認証システム |
Non-Patent Citations (1)
Title |
---|
See also references of EP2455883A4 |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102946334A (zh) * | 2012-11-28 | 2013-02-27 | 中国移动(深圳)有限公司 | 一种获取有效图像验证码的方法和系统 |
CN102946334B (zh) * | 2012-11-28 | 2015-06-03 | 中国移动(深圳)有限公司 | 一种获取有效图像验证码的方法和系统 |
JP2016534451A (ja) * | 2014-07-25 | 2016-11-04 | 小米科技有限責任公司Xiaomi Inc. | 検証コードを用いる検証方法、装置、プログラム、及び記録媒体 |
CN109376524A (zh) * | 2018-09-29 | 2019-02-22 | 浙江万朋教育科技股份有限公司 | 自动识别远程机器上的图片验证码的方法 |
Also Published As
Publication number | Publication date |
---|---|
CN102576400A (zh) | 2012-07-11 |
ES2537878T3 (es) | 2015-06-15 |
US20120144004A1 (en) | 2012-06-07 |
EP2455883B1 (en) | 2015-03-11 |
KR101195659B1 (ko) | 2012-10-30 |
EP2455883A4 (en) | 2013-06-12 |
EP2455883A1 (en) | 2012-05-23 |
BR112012006151A2 (pt) | 2016-06-28 |
BR112012006151B8 (pt) | 2020-10-13 |
CN102576400B (zh) | 2015-03-11 |
JPWO2011122624A1 (ja) | 2013-07-08 |
US9348986B2 (en) | 2016-05-24 |
BR112012006151B1 (pt) | 2020-09-24 |
JP4991975B2 (ja) | 2012-08-08 |
KR20120046263A (ko) | 2012-05-09 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP4991975B2 (ja) | 認証サーバ装置、認証サーバ装置用プログラム及び認証方法並びに情報記録媒体 | |
TW201633096A (zh) | 用於圖片手勢認證的方法、儲存裝置與系統 | |
JP2012073708A (ja) | 認証システム、認証方法、認証装置、情報端末、プログラム及び情報記録媒体 | |
CN105094329B (zh) | 数据录入方法、装置及应用其的电子设备 | |
CN102799687A (zh) | 显示网页的方法及装置 | |
JPWO2004072883A1 (ja) | ユーザビリティ評価支援方法及びシステム | |
JP5039868B2 (ja) | ウェブ管理装置、ウェブ管理方法、ウェブ管理プログラム、そのプログラムを記録するコンピュータ読み取り可能な記録媒体、及びウェブシステム | |
JP2011053969A (ja) | eラーニングシステムにおける本人認証システム | |
JP2024023918A5 (ja) | 受付装置、制御方法、及びプログラム | |
JP2014182717A (ja) | 情報処理装置、情報処理システム及びプログラム | |
JP2017134737A (ja) | 管理サーバー、管理システム、管理装置、管理方法、及び管理プログラム | |
CN102202145A (zh) | 显示画面控制装置、显示画面控制方法 | |
JP4563775B2 (ja) | 認証情報自動入力装置、方法およびプログラム | |
JP2014059663A (ja) | 答案処理装置及び答案処理プログラム | |
JP2017134851A (ja) | 表示制御装置、表示制御方法及びプログラム | |
JP5836748B2 (ja) | アンケート表示システム | |
JP4853328B2 (ja) | 処理実行システム、中継装置、及びプログラム | |
JP2016177519A (ja) | 管理装置、管理システム、管理方法およびプログラム | |
JP5898606B2 (ja) | ログイン管理装置及びログイン管理装置を備えたコンピュータ処理システム | |
EP4160553A1 (en) | Large pose facial recognition based on 3d facial model | |
JP2016177520A (ja) | 管理装置、管理方法およびプログラム | |
CN111147665A (zh) | 一种手机游戏聊天窗口显示方法、装置和移动终端 | |
JP2009086751A (ja) | 情報処理システム、情報表示装置、情報端末装置、及びプログラム | |
JP6244870B2 (ja) | 学習支援プログラム、学習支援方法、及び学習支援サーバ | |
CN112860698A (zh) | 表单的处理方法、装置、电子设备和计算机可读存储介质 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 201180004009.4 Country of ref document: CN |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 11762848 Country of ref document: EP Kind code of ref document: A1 |
|
WWE | Wipo information: entry into national phase |
Ref document number: 13388925 Country of ref document: US |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2011762848 Country of ref document: EP |
|
ENP | Entry into the national phase |
Ref document number: 20127004351 Country of ref document: KR Kind code of ref document: A |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2012508344 Country of ref document: JP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
REG | Reference to national code |
Ref country code: BR Ref legal event code: B01A Ref document number: 112012006151 Country of ref document: BR |
|
ENP | Entry into the national phase |
Ref document number: 112012006151 Country of ref document: BR Kind code of ref document: A2 Effective date: 20120319 |