WO2011147323A1 - Access authentication method of remote control terminal service, related device and communication system thereof - Google Patents

Access authentication method of remote control terminal service, related device and communication system thereof Download PDF

Info

Publication number
WO2011147323A1
WO2011147323A1 PCT/CN2011/074742 CN2011074742W WO2011147323A1 WO 2011147323 A1 WO2011147323 A1 WO 2011147323A1 CN 2011074742 W CN2011074742 W CN 2011074742W WO 2011147323 A1 WO2011147323 A1 WO 2011147323A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
terminal
access
identifier
calling terminal
Prior art date
Application number
PCT/CN2011/074742
Other languages
French (fr)
Chinese (zh)
Inventor
欧阳月令
童瑜锟
孙增才
Original Assignee
华为终端有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为终端有限公司 filed Critical 华为终端有限公司
Publication of WO2011147323A1 publication Critical patent/WO2011147323A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to an access authentication method, a related device, and a communication system for remotely controlling a terminal service.
  • the remote control terminal service is a service that enables a user to remotely control other terminals (such as a home fixed telephone) by using a terminal (for example, a mobile phone), for example, can perform automatic answering message listening and remote control.
  • a terminal for example, a mobile phone
  • the device turns on monitoring to see what's going on at home or some other location.
  • the remote control terminal service needs to consider how to ensure the security.
  • the current common method is to perform security authentication through the authentication password.
  • the user starts the remote message control function of the terminal A1 and sets the access authentication password
  • the user dials the terminal A1 (ie, the called terminal) through the terminal B1 (ie, the calling terminal);
  • the called terminal plays a message prompt tone to the calling terminal
  • the user presses a specific button of the calling terminal, for example, the # key, to perform remote message control.
  • the called terminal requests the calling terminal to input.
  • Password the user enters the password through the calling terminal and transmits it to the called terminal;
  • the called terminal performs password authentication. If the authentication is passed, the calling terminal can perform a message operation, such as message listening and deleting, on the called terminal.
  • the inventor has found that the access authentication process of the existing remote control terminal service has a single lack of flexibility in authentication mode, and the security cannot be guaranteed once the password is leaked.
  • the embodiments of the present invention provide an access authentication method, a related device, and a communication system for remotely controlling a terminal service, which are beneficial to improving the flexibility of access authentication and achieving high security access authentication.
  • the embodiment of the present invention provides the following technical solutions:
  • a method for access authentication of a remote control terminal service comprising:
  • a terminal for configuring a remote control terminal service comprising:
  • An identifier obtaining module configured to receive a call of the calling terminal, and obtain an identifier of the calling terminal
  • a determining module configured to determine an authentication mode for performing access authentication on the calling terminal according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode;
  • the access authentication module is configured to perform access authentication on the calling terminal according to the authentication mode determined by the determining module.
  • a communication system comprising:
  • a first terminal configured to initiate a call to the second terminal
  • a second terminal configured to receive a call of the first terminal, obtain an identifier of the first terminal, and according to the identifier of the first terminal, and a preset correspondence between an identifier of the allowed access terminal and an authentication mode, Determining an authentication mode for performing access authentication on the first terminal; performing access authentication on the first terminal according to the determined authentication mode; and after access authentication of the first terminal is passed, A terminal opens a remote control terminal service.
  • the corresponding relationship between the identifiers of the allowed access terminals and the corresponding authentication modes is preset in the called terminal, and the appropriate authentication mode can be selected according to different calling terminals.
  • the access authentication of the terminal is beneficial to improve the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
  • FIG. 1 is a schematic flowchart of a method for access authentication of a remote control terminal service according to Embodiment 1 of the present invention
  • FIG. 2 is a schematic flowchart of a method for access authentication of a remote control terminal service according to Embodiment 2 of the present invention
  • FIG. 3 is a schematic diagram of a terminal for configuring a remote control terminal service according to Embodiment 3 of the present invention
  • FIG. 3 is a schematic diagram of an access authentication module of a terminal configured to remotely control a terminal service according to Embodiment 3 of the present invention
  • FIG. 4 is a schematic diagram of a communication system according to Embodiment 4 of the present invention.
  • an embodiment of the method for access authentication of a remote control terminal service includes:
  • the called terminal can receive the call of the calling terminal, and obtain the identifier of the calling terminal according to the received call.
  • the terminal identifier mentioned in the embodiment of the present invention may be a globally unique device identifier in the network, for example, may be a medium access control (MAC, Media). Access Control) Address, International Mobile Subscriber Identity (IMSI, International Mobile Subscriber) Identity), or network access identifier (NAI, Network Access) Identifier, etc.; of course, it can also be a label that can uniquely identify the terminal device, such as a device number, or a device name, etc., which is not limited herein.
  • MAC medium access control
  • IMSI International Mobile Subscriber Identity
  • NAI Network Access
  • mapping relationship between the identifier of the access terminal and the corresponding authentication mode may be preset in the called terminal (or a device that the called terminal can directly access). This correspondence can be recorded, for example, by a data table.
  • the called terminal may support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication.
  • the authentication mode corresponding to the terminal identifier may be preset according to data processing capabilities and application scenarios of different calling terminals.
  • the called terminal may search for a matching item in the mapping correspondence between the preset terminal identifier and the authentication mode according to the obtained identifier of the calling terminal, and further search according to the matching item. As a result, an authentication method for performing access authentication on the calling terminal is determined.
  • the called terminal After the called terminal determines the authentication mode for performing the access authentication on the calling terminal, the called terminal can perform the access authentication with the calling terminal according to the determined authentication mode.
  • the called terminal can further open the corresponding remote control terminal service to the calling terminal, and the calling terminal uses the remote control terminal service.
  • the calling terminal can perform a message listening, deleting, etc. to the called terminal; for example, the called terminal is a monitoring device installed at home, the calling party The terminal can observe the situation in the home through the monitoring device, and so on.
  • the called terminal can terminate the call with the calling terminal, for example.
  • the calling terminal and the called terminal in this embodiment may be, for example, a computer, an intelligent mobile terminal, an in-vehicle communication device, a fixed telephone, or other terminal device.
  • the solution of the embodiment of the present invention presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal, so that the called terminal can select an appropriate authentication mode according to different calling terminals.
  • the calling terminal performs access authentication, which is convenient for improving the access authentication of the calling terminal, and can provide an authentication method with higher security.
  • the second embodiment of the present invention is another embodiment of an access authentication method for a remote control terminal service, which may specifically include:
  • Terminal B receives the call of terminal A.
  • the called terminal of the terminal B and the terminal A are the calling terminal are taken as an example.
  • the terminal A initiates a call to the terminal B according to the corresponding communication mode, and the terminal B receives the call of the terminal A, and obtains the identifier of the terminal A.
  • the identifier of the terminal A obtained by the terminal B according to the received call of the terminal A may be a globally unique device identifier in the network, for example, may be the MAC address of the terminal A, the IMSI, the NAI, or may be capable of uniquely identifying the terminal.
  • a label of A such as a device number, or a device name, etc., is not limited herein.
  • the terminal B determines whether the remote terminal control service is currently enabled.
  • the user may configure one or more remote terminal control services on the terminal B in advance, for example, a remote message operation service and/or other services may be configured.
  • the terminal B may determine whether the remote terminal control service is currently enabled. If the remote terminal control service is currently enabled, step 203 is performed; if the remote terminal control service is not currently enabled, Perform normal call processing.
  • the terminal B can also directly enable the remote terminal control service by default, and directly perform step 203.
  • Terminal B automatically answers the call of terminal A.
  • the terminal B searches for the authentication mode of the access authentication of the terminal A according to the obtained identifier of the terminal A, and the corresponding relationship between the identifier of the preset access terminal and the authentication mode.
  • the mapping relationship between the identifier of the access terminal and the corresponding authentication mode of the terminal B may be preset in the terminal B (or a device directly accessible by the terminal B), and the corresponding relationship may be, for example, related data.
  • the table is recorded.
  • the terminal B can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, to meet the needs of multiple application scenarios, and to configure each authentication method.
  • multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, to meet the needs of multiple application scenarios, and to configure each authentication method.
  • the corresponding authentication parameters such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication.
  • the user can preset the authentication mode corresponding to the identifier of the terminal according to the data processing capability and the application scenario of the different terminals used by the user.
  • the correspondence between the identifier of the access terminal and the authentication mode preset by the user in the terminal B may be as shown in Table 1, but is not limited thereto:
  • the terminal B can search for the identifier of the terminal A in the table 1 according to the obtained identifier of the terminal A.
  • the matching record (record 1) can be used to determine that the authentication mode for access authentication of terminal A is authentication mode 1.
  • the terminal may also select a plurality of authentication modes corresponding to the other one or more of the allowed access terminals, so that the terminal may determine multiple authentications for access authentication according to the identifier of the allowed access terminal. the way.
  • the terminal B can preset two authentication modes, such as the authentication mode 1 and the authentication mode 4, according to the identifier of the terminal F that is allowed to access.
  • the terminal B searches for the corresponding relationship between the identifier of the access terminal and the authentication mode, and can find that the authentication mode for accessing the terminal F can be the authentication mode 1 and the authentication.
  • the terminal B can select one of the access authentication modes as the authentication mode of the current access authentication.
  • one of the access authentication modes can be randomly selected as the current connection.
  • random selection increases the uncertainty and unpredictability to a certain extent, which is conducive to improving reliability; or terminal B can also select all corresponding access authentication methods (authentication mode 1 and authentication mode 4)
  • the combination of multiple authentication methods can further improve reliability, and so on.
  • the terminal B may end the call; or, at this time, the terminal B may also It is determined that the authentication mode for performing access authentication on the terminal A is a default authentication mode (for example, password authentication or the like).
  • a record in which the terminal B finds a record matching the identifier of the terminal A in the corresponding relationship between the identifier of the allowed access terminal and the authentication mode is used as an example for description.
  • the terminal B sends an authentication prompt message to the terminal A according to the determined authentication mode, and prompts the terminal A to provide corresponding authentication information.
  • the terminal A receives the authentication prompt message, and sends an authentication response message to the terminal B according to the authentication prompt message, where the corresponding authentication information is included.
  • the terminal B receives the authentication response message sent by the terminal A, and performs corresponding authentication processing according to the corresponding authentication information carried in the terminal. If the authentication succeeds, step 208 is performed. If the authentication fails, the call may be terminated.
  • the form in which the terminal B sends the authentication prompt message to the terminal A and the content thereof may be different, and the form of the authentication response message that the terminal A replies to the terminal B and the content thereof are of course also Not the same.
  • the terminal B sends an authentication prompt message to the terminal A, including the prompt question; the terminal A replies to the terminal B with the authentication response message, including the answer of the prompt question; and the terminal B
  • the answer carried in the authentication response message is compared with the preset corresponding answer. If they are consistent, the authentication is passed. If they are inconsistent, the authentication fails.
  • the terminal B sends an authentication prompt message to the terminal A, including the prompt graphic; the terminal A returns an authentication response message to the terminal B, and includes a response graphic of the prompt graphic;
  • the response pattern carried in the authentication response message is compared with the preset response pattern. If they match, the authentication passes, and if they do not match, the authentication fails.
  • the terminal B plays the preset prompt voice to the terminal A; the terminal A replies to the response voice to the terminal B; the terminal B responds to the response voice and the preset corresponding response voice. If the comparison is made, the authentication passes, and if they do not match, the authentication fails.
  • the terminal B sends an authentication prompt message to the terminal A, prompting the user to take and respond to the face photo; the terminal A returns an authentication response message to the terminal B, including the face of the user. Photograph; terminal B compares the face photo carried by the authentication response message with the preset face photo, and if the similarity exceeds the set threshold (90%, 99%, or other value), the authentication passes, if the similarity If the threshold is lower than the set threshold, the authentication fails.
  • the set threshold 90%, 99%, or other value
  • the terminal B sends an authentication prompt message to the terminal A, prompting the user to take and reply the fingerprint photo; the terminal A returns an authentication response message to the terminal B, including the fingerprint photo of the user; The terminal B compares the fingerprint photo carried by the authentication response message with the preset fingerprint photo. If the similarity exceeds the set threshold (95%, 99% or other value), the authentication passes, and if the similarity is lower than the setting The threshold is verified and the authentication fails.
  • the set threshold 95%, 99% or other value
  • the terminal B sends an authentication prompt message to the terminal A, prompting to input a password; the terminal A returns an authentication response message to the terminal B, including the password; and the terminal B answers the authentication.
  • the password carried in the message is compared with the preset password. If they are consistent, the authentication is passed. If they are inconsistent, the authentication fails.
  • the terminal B may also perform access authentication on the terminal A in other manners.
  • the terminal B opens the corresponding remote control terminal service to the terminal A.
  • the terminal B may prompt the terminal A to select a certain remote control terminal service, and open the selected remote control terminal service to the terminal A; or, the terminal A may take the initiative.
  • Sending the information including the remote control terminal service selection indication and the terminal B may open the remote control terminal service selected by the terminal A according to the selection instruction of the remote control terminal service sent by the terminal A; or, the terminal B may be preset according to the preset
  • the authority of the terminal A opens the remote control terminal service permitted by the authority to the terminal A, and the present invention is not limited to the above.
  • terminal A uses different remote control terminal services, and terminal B can also select different authentication methods for access authentication.
  • the remote terminal control service configured by the terminal B is a remote message control service, and the terminal B supports multiple authentication modes such as password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication.
  • Table 2 shows the correspondence between the identification of the access terminal and the authentication mode preset by the terminal B:
  • the identifier of the terminal A is, for example, 13400000000, and the terminal A calls the terminal B;
  • the terminal B receives the call of the terminal A, and obtains the identifier of the terminal A 13400000000;
  • the terminal B searches for the record matching the identifier 13400000000 of the terminal A in the corresponding relationship between the identifier of the access terminal and the authentication mode, and determines that the authentication mode for access authentication of the terminal A is the prompt problem authentication.
  • Terminal B sends an authentication prompt message to terminal A, for example, including the question: How many birthmarks are there on the body?
  • Terminal A replies to the terminal B with an authentication response message, for example, including the answer: 5 blocks.
  • the terminal B compares the corresponding answer carried in the received authentication response message sent by the terminal A with the preset answer. If the two are consistent, the authentication passes; if the two are inconsistent, the authentication fails.
  • the corresponding answer preset by the terminal B is also: 5 blocks, the authentication is passed, and the terminal B opens the remote message control service to the terminal A.
  • a plurality of sets of question-answers may be preset in the terminal B.
  • the terminal B may randomly select from the preset multiple sets of questions-answers. One of them is used as the question-answer for this authentication, and access authentication is performed for terminal A.
  • the scheme of this embodiment presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal B, so that the called terminal B can select an appropriate authentication manner according to different calling terminals.
  • Performing access authentication on the calling terminal is beneficial to improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
  • the called terminal B can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication, which can meet the security requirements in different application scenarios. .
  • the embodiment of the present invention further provides a terminal for configuring a service for remotely controlling a terminal.
  • a terminal 300 for configuring a remote control terminal service may include: a receiving and obtaining module 310, a determining module 320, and an access authentication module 330.
  • the receiving and obtaining module 310 is configured to receive a call of the calling terminal, and obtain an identifier of the calling terminal.
  • the identifier of the receiving terminal obtained by the receiving and obtaining module 310 may be a MAC address, an IMSI, an NAI, etc.; of course, it may also be a label that can uniquely identify the terminal device, such as a device number, or a device name, and the like. , here is not limited.
  • the determining module 320 is configured to determine, according to the identifier of the calling terminal obtained by the receiving and obtaining module 310 and the preset correspondence between the identifier of the allowed access terminal and the authentication mode, the authentication mode for performing access authentication on the calling terminal;
  • the access authentication module 330 is configured to perform access authentication on the calling terminal according to the authentication mode determined by the determining module 320.
  • the determining module 320 can include:
  • a search sub-module configured to search, in a preset data table that records the correspondence between the identifier of the access terminal and the authentication mode, the record that matches the identifier of the calling terminal;
  • the determining submodule is configured to determine, according to the search result of the searching submodule, an authentication manner for performing access authentication on the calling terminal.
  • the access authentication module 330 may include:
  • the sending sub-module 331 is configured to send a corresponding authentication prompt message to the calling terminal according to the authentication mode determined by the determining module 320, and prompt the user to provide corresponding authentication information;
  • the receiving submodule 332 is configured to receive an authentication response message that is sent by the calling terminal and includes the authentication information.
  • the authentication processing sub-module 333 is configured to perform authentication processing by using the authentication information included in the authentication response message received by the receiving sub-module.
  • the authentication mode determined by the determining module 320 may include:
  • One or more of password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication are provided.
  • the access authentication module 330 can perform access authentication on the calling terminal, for example, according to one or more authentication modes of password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication.
  • the terminal 300 can open the corresponding remote control terminal service to the calling terminal. If the access authentication module 330 does not pass the access authentication of the calling terminal, the terminal 300 may terminate the call with the calling terminal.
  • the terminal 300 in this embodiment may be the terminal B in the foregoing method embodiment, and the functions of the respective functional modules may be specifically implemented according to the method in the foregoing method embodiment, and the specific implementation process may refer to the foregoing embodiment. Related descriptions are not described here.
  • the scheme of this embodiment presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the terminal 300 (the called terminal), so that the called terminal can select an appropriate one according to the difference of the calling terminals.
  • the authentication mode performs access authentication on the calling terminal, which is beneficial to improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
  • the called terminal can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
  • authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
  • the embodiment of the present invention further provides a communication system.
  • a communication system may include: a first terminal 410 and a second terminal 420.
  • the first terminal 410 is configured to initiate a call to the second terminal 420.
  • the second terminal 420 is configured to receive the call of the first terminal 410, obtain the identifier of the first terminal 410, and determine the first according to the identifier of the first terminal 410 and the preset correspondence between the identifier of the access terminal and the authentication mode.
  • the terminal 410 performs the access authentication authentication mode; performs the access authentication on the first terminal 410 according to the determined authentication mode; and after the access authentication to the first terminal 410 passes, opens the remote control terminal service to the first terminal 410. .
  • the solution of the embodiment of the present invention presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal, so that the called terminal can select an appropriate authentication mode according to different calling terminals.
  • the calling terminal performs access authentication, which is advantageous for improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
  • the called terminal can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
  • authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
  • the program may be stored in a computer readable storage medium, and the storage medium may include: Read only memory, random access memory, disk or optical disk, etc.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Telephone Function (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The embodiments of the invention disclose an access authentication method of remote control terminal service, a related device and a communication system thereof. The access authentication method for remote control terminal service includes: receiving a call from a calling terminal, and obtaining the identifier of the calling terminal; determining, according to the identifier of the calling terminal and the preset corresponding relationship between the identifier of the terminal allowed to access and the authentication manner, the authentication manner of performing access authentication on the calling terminal; and performing access authentication on the calling terminal according to the determined authentication manner. The technical solutions of the embodiments of the invention are favorable for improving the flexibility of access authentication, and can realize high security access authentication.

Description

远程控制终端业务的接入认证方法和相关设备及通信系统  Access authentication method for remote control terminal service and related equipment and communication system
本申请要求于2010年5月27日提交中国专利局、申请号为201010187494.0,发明名称为“远程控制终端业务的接入认证方法和相关设备及通信系统”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on May 27, 2010, the Chinese Patent Office, the application number is 201010187494.0, and the invention name is "access authentication method for remote control terminal services and related equipment and communication system". The content is incorporated herein by reference.
技术领域Technical field
本发明涉及通信技术领域,具体涉及远程控制终端业务的接入认证方法和相关设备及通信系统。The present invention relates to the field of communications technologies, and in particular, to an access authentication method, a related device, and a communication system for remotely controlling a terminal service.
背景技术Background technique
随着通信电子技术的发展,终端的处理能力日渐加强,利用性能较高的终端已经可以实现许多复杂的业务。With the development of communication electronic technology, the processing capability of the terminal is increasing day by day, and many complex services can be realized by using the terminal with higher performance.
远程控制终端业务是一种能够让用户利用某终端(例如手机),通过远程接入方式对其它终端(例如家中固话)进行远程控制操作的业务,例如可以进行自动应答留言的收听、远程控制设备开启监控功能以观察家中或其它一些场所的情况。The remote control terminal service is a service that enables a user to remotely control other terminals (such as a home fixed telephone) by using a terminal (for example, a mobile phone), for example, can perform automatic answering message listening and remote control. The device turns on monitoring to see what's going on at home or some other location.
远程控制终端业务需要考虑如何保证安全性的问题,目前常用的方式是通过认证密码进行安全认证。The remote control terminal service needs to consider how to ensure the security. The current common method is to perform security authentication through the authentication password.
现有远程留言控制业务的实现过程如下:The implementation process of the existing remote message control service is as follows:
1、用户开启终端A1的远程留言控制功能,并设置接入认证密码;1. The user starts the remote message control function of the terminal A1 and sets the access authentication password;
2、用户通过终端B1(即主叫终端)拨打终端A1(即被叫终端);2. The user dials the terminal A1 (ie, the called terminal) through the terminal B1 (ie, the calling terminal);
3、被叫终端自动应答;3. The called terminal automatically answers;
4、在被叫终端向主叫终端播放留言提示音时,用户按主叫终端的某个特定的按键,例如#号键,则进行远程留言控制,此时,被叫终端要求主叫终端输入密码,用户通过主叫终端输入密码并传送到被叫终端;4. When the called terminal plays a message prompt tone to the calling terminal, the user presses a specific button of the calling terminal, for example, the # key, to perform remote message control. At this time, the called terminal requests the calling terminal to input. Password, the user enters the password through the calling terminal and transmits it to the called terminal;
5、被叫终端则进行密码认证,若认证通过,则主叫终端可以对被叫终端进行留言操作等,例如留言收听、删除等操作。5. The called terminal performs password authentication. If the authentication is passed, the calling terminal can perform a message operation, such as message listening and deleting, on the called terminal.
在实现本发明的过程中,发明人发现,现有的远程控制终端业务的接入认证流程存在认证方式单一缺乏灵活性,且密码一旦泄露就无法保证安全性等问题。In the process of implementing the present invention, the inventor has found that the access authentication process of the existing remote control terminal service has a single lack of flexibility in authentication mode, and the security cannot be guaranteed once the password is leaked.
发明内容Summary of the invention
本发明实施例提供一种远程控制终端业务的接入认证方法和相关设备及通信系统,有利于提高接入认证的灵活性,可实现高安全性的接入认证。The embodiments of the present invention provide an access authentication method, a related device, and a communication system for remotely controlling a terminal service, which are beneficial to improving the flexibility of access authentication and achieving high security access authentication.
为解决上述技术问题,本发明实施例提供以下的技术方案:To solve the above technical problem, the embodiment of the present invention provides the following technical solutions:
一种远程控制终端业务的接入认证方法,包括:A method for access authentication of a remote control terminal service, comprising:
接收主叫终端的呼叫,获得所述主叫终端的标识; Receiving a call of the calling terminal, obtaining an identifier of the calling terminal;
根据所述主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述主叫终端进行接入认证的认证方式;Determining an authentication mode for performing access authentication on the calling terminal according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode;
按照确定出的认证方式对所述主叫终端进行接入认证。Performing access authentication on the calling terminal according to the determined authentication manner.
一种配置远程控制终端业务的终端,包括:A terminal for configuring a remote control terminal service, comprising:
标识获得模块,用于接收主叫终端的呼叫,获得所述主叫终端的标识;An identifier obtaining module, configured to receive a call of the calling terminal, and obtain an identifier of the calling terminal;
确定模块,用于根据所述主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述主叫终端进行接入认证的认证方式;a determining module, configured to determine an authentication mode for performing access authentication on the calling terminal according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode;
接入认证模块,用于按照所述确定模块确定出的认证方式对所述主叫终端进行接入认证。The access authentication module is configured to perform access authentication on the calling terminal according to the authentication mode determined by the determining module.
一种通信系统,包括: A communication system comprising:
第一终端,用于向第二终端发起呼叫;a first terminal, configured to initiate a call to the second terminal;
第二终端,用于接收所述第一终端的呼叫,获得所述第一终端的标识;根据所述第一终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述第一终端进行接入认证的认证方式;按照确定出的认证方式对所述第一终端进行接入认证;在对所述第一终端的接入认证通过后,向所述第一终端开放远程控制终端业务。a second terminal, configured to receive a call of the first terminal, obtain an identifier of the first terminal, and according to the identifier of the first terminal, and a preset correspondence between an identifier of the allowed access terminal and an authentication mode, Determining an authentication mode for performing access authentication on the first terminal; performing access authentication on the first terminal according to the determined authentication mode; and after access authentication of the first terminal is passed, A terminal opens a remote control terminal service.
由上可见,本发明实施例的方案在被叫终端中预置各个允许接入终端的标识与相应认证方式的对应关系,可以实现根据主叫终端的不同,选择适宜的认证方式对该主叫终端进行接入认证,有利于提高对主叫终端进行接入认证的灵活性,且可以提供具有更高安全性的认证方式。It can be seen that, in the solution of the embodiment of the present invention, the corresponding relationship between the identifiers of the allowed access terminals and the corresponding authentication modes is preset in the called terminal, and the appropriate authentication mode can be selected according to different calling terminals. The access authentication of the terminal is beneficial to improve the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
附图说明DRAWINGS
为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings used in the description of the embodiments will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the present invention. Other drawings may also be obtained from those of ordinary skill in the art in view of the drawings.
图1是本发明实施例一提供的一种远程控制终端业务的接入认证方法的流程示意图;1 is a schematic flowchart of a method for access authentication of a remote control terminal service according to Embodiment 1 of the present invention;
图2是本发明实施例二提供的一种远程控制终端业务的接入认证方法的流程示意图;2 is a schematic flowchart of a method for access authentication of a remote control terminal service according to Embodiment 2 of the present invention;
图3-a是本发明实施例三提供的一种配置远程控制终端业务的终端示意图;FIG. 3 is a schematic diagram of a terminal for configuring a remote control terminal service according to Embodiment 3 of the present invention; FIG.
图3-b是本发明实施例三提供的一种配置远程控制终端业务的终端的接入认证模块示意图;FIG. 3 is a schematic diagram of an access authentication module of a terminal configured to remotely control a terminal service according to Embodiment 3 of the present invention; FIG.
图4是本发明实施例四提供的一种通信系统示意图。4 is a schematic diagram of a communication system according to Embodiment 4 of the present invention.
具体实施方式detailed description
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其它实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, but not all embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
为使本发明技术方案的优点更加清楚,下面结合附图和实施例对本发明作详细说明。In order to make the advantages of the technical solutions of the present invention clearer, the present invention will be described in detail below with reference to the accompanying drawings and embodiments.
实施例一Embodiment 1
参见图1,本发明实施例一是一种远程控制终端业务的接入认证方法的一个实施例,包括:Referring to FIG. 1, an embodiment of the method for access authentication of a remote control terminal service includes:
110、接收主叫终端的呼叫,获得该主叫终端的标识。110. Receive a call of the calling terminal, and obtain an identifier of the calling terminal.
在一种应用场景下,例如被叫终端可以接收主叫终端的呼叫,并根据接收到的呼叫获得该主叫终端的标识。In an application scenario, for example, the called terminal can receive the call of the calling terminal, and obtain the identifier of the calling terminal according to the received call.
其中,本发明实施例中提及的终端标识可以是全局唯一的网络内设备标识,例如可以是媒介访问控制(MAC,Media Access Control)地址、国际移动用户识别码(IMSI,International Mobile Subscriber Identity)、或网络接入标识(NAI,Network Access Identifier)等;当然也可以是能够唯一标识该终端设备的一个标签,例如设备编号、或设备名称等等,此处不做限定。The terminal identifier mentioned in the embodiment of the present invention may be a globally unique device identifier in the network, for example, may be a medium access control (MAC, Media). Access Control) Address, International Mobile Subscriber Identity (IMSI, International Mobile Subscriber) Identity), or network access identifier (NAI, Network Access) Identifier, etc.; of course, it can also be a label that can uniquely identify the terminal device, such as a device number, or a device name, etc., which is not limited herein.
120、根据该主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对主叫终端进行接入认证的认证方式。120. Determine, according to the identifier of the calling terminal, and the preset correspondence between the identifier of the access terminal and the authentication mode, determine an authentication mode for performing access authentication on the calling terminal.
在实际应用中,例如可以先在被叫终端(或被叫终端可以直接访问的某个设备)中预置允许接入终端的标识与相应认证方式(一种或多种)的映射对应关系,该对应关系例如可以通过数据表进行记录。In practical applications, for example, the mapping relationship between the identifier of the access terminal and the corresponding authentication mode (one or more) may be preset in the called terminal (or a device that the called terminal can directly access). This correspondence can be recorded, for example, by a data table.
进一步的,为满足多场景的需要,被叫终端例如可以支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式。具体可以根据不同主叫终端的数据处理能力以及应用场景等,预置与其终端标识相对应的认证方式。Further, in order to meet the needs of multiple scenarios, the called terminal may support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication. Specifically, the authentication mode corresponding to the terminal identifier may be preset according to data processing capabilities and application scenarios of different calling terminals.
被叫终端接收到主叫终端的呼叫时,被叫终端可以根据获得的该主叫终端的标识,在预置的终端标识与认证方式的映射对应关系中查找匹配项,进而根据匹配项的查找结果,确定出对该主叫终端进行接入认证的认证方式。When the called terminal receives the call of the calling terminal, the called terminal may search for a matching item in the mapping correspondence between the preset terminal identifier and the authentication mode according to the obtained identifier of the calling terminal, and further search according to the matching item. As a result, an authentication method for performing access authentication on the calling terminal is determined.
130、按照确定出的认证方式对上述主叫终端进行接入认证。130. Perform access authentication on the calling terminal according to the determined authentication manner.
当被叫终端确定出对该主叫终端进行接入认证的认证方式后,便可按照确定出的认证方式与主叫终端进行交互,对该主叫终端进行接入认证。After the called terminal determines the authentication mode for performing the access authentication on the calling terminal, the called terminal can perform the access authentication with the calling terminal according to the determined authentication mode.
若主叫终端的接入认证通过,被叫终端便可以进一步向主叫终端开放相应的远程控制终端业务,主叫终端则使用该远程控制终端业务。举例来说,例如被叫终端为安装在家中或办公室的固话,主叫终端可以对该被叫终端进行留言收听、删除等操作;又例如被叫终端为安装在家中的监控设备,主叫终端则可通过该监控设备观察家中的情况,以此类推。此外,若主叫终端的接入认证未通过,则被叫终端例如可以终止与主叫终端的通话。If the access authentication of the calling terminal passes, the called terminal can further open the corresponding remote control terminal service to the calling terminal, and the calling terminal uses the remote control terminal service. For example, if the called terminal is a fixed line installed in a home or an office, the calling terminal can perform a message listening, deleting, etc. to the called terminal; for example, the called terminal is a monitoring device installed at home, the calling party The terminal can observe the situation in the home through the monitoring device, and so on. In addition, if the access authentication of the calling terminal fails, the called terminal can terminate the call with the calling terminal, for example.
需要说明的是,本实施例中的主叫终端和被叫终端例如可以是计算机、、智能移动终端、车载通讯设备、固定电话、或其它的终端设备。It should be noted that the calling terminal and the called terminal in this embodiment may be, for example, a computer, an intelligent mobile terminal, an in-vehicle communication device, a fixed telephone, or other terminal device.
由上可见,本发明实施例的方案在被叫终端中预置各个允许接入终端的标识与相应认证方式的对应关系,可以实现被叫终端根据主叫终端的不同,选择适宜的认证方式对该主叫终端进行接入认证,有利于提高对主叫终端进行接入认证的灵活性,且可以提供具有更高安全性的认证方式。It can be seen that the solution of the embodiment of the present invention presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal, so that the called terminal can select an appropriate authentication mode according to different calling terminals. The calling terminal performs access authentication, which is convenient for improving the access authentication of the calling terminal, and can provide an authentication method with higher security.
实施例二Embodiment 2
为便于更好的理解本发明实施例的技术方案,下面以终端A和终端B实现远程控制终端业务的过程为例,进行进一步详细的描述。To facilitate a better understanding of the technical solution of the embodiment of the present invention, the process of remotely controlling the terminal service by using the terminal A and the terminal B is taken as an example for further detailed description.
参见图2、本发明实施例二是一种远程控制终端业务的接入认证方法的另一实施例,具体可以包括:Referring to FIG. 2, the second embodiment of the present invention is another embodiment of an access authentication method for a remote control terminal service, which may specifically include:
201、终端B接收终端A的呼叫;201. Terminal B receives the call of terminal A.
其中,此处以终端B的被叫终端,终端A为主叫终端为例。Here, the called terminal of the terminal B and the terminal A are the calling terminal are taken as an example.
终端A按照相应通讯方式向终端B发起呼叫,终端B接收终端A的呼叫,获得终端A的标识。The terminal A initiates a call to the terminal B according to the corresponding communication mode, and the terminal B receives the call of the terminal A, and obtains the identifier of the terminal A.
可以理解,终端B根据接收到的终端A的呼叫获得的终端A的标识可以是全局唯一的网络内设备标识,例如可以是终端A的MAC地址、IMSI、NAI、或者也可以是能够唯一标识终端A的一个标签,例如设备编号、或设备名称等等,此处不做限定。It can be understood that the identifier of the terminal A obtained by the terminal B according to the received call of the terminal A may be a globally unique device identifier in the network, for example, may be the MAC address of the terminal A, the IMSI, the NAI, or may be capable of uniquely identifying the terminal. A label of A, such as a device number, or a device name, etc., is not limited herein.
202、终端B判断当前是否开启了远程终端控制业务;202. The terminal B determines whether the remote terminal control service is currently enabled.
在实际应用中,用户例如可事先在终端B上配置一种或多种远程终端控制业务,例如可以配置远程留言操作业务和/或其它业务。In practical applications, the user may configure one or more remote terminal control services on the terminal B in advance, for example, a remote message operation service and/or other services may be configured.
终端B在接收到终端A的呼叫后,可以先判断当前是否开启了远程终端控制业务,若当前已经开启了远程终端控制业务,则执行步骤203;若当前并未开启远程终端控制业务,则可进行正常的通话呼叫处理。After receiving the call of the terminal A, the terminal B may determine whether the remote terminal control service is currently enabled. If the remote terminal control service is currently enabled, step 203 is performed; if the remote terminal control service is not currently enabled, Perform normal call processing.
终端B也可默认当前已经开启了远程终端控制业务,直接执行步骤203。The terminal B can also directly enable the remote terminal control service by default, and directly perform step 203.
203、终端B自动应答终端A的呼叫;203. Terminal B automatically answers the call of terminal A.
204、终端B根据获得的终端A的标识,在预置的允许接入终端的标识与认证方式的对应关系中查找,确定对终端A进行接入认证的认证方式;The terminal B searches for the authentication mode of the access authentication of the terminal A according to the obtained identifier of the terminal A, and the corresponding relationship between the identifier of the preset access terminal and the authentication mode.
在实际应用中,可先在终端B(或终端B可以直接访问的某个设备)中预置终端B允许接入终端的标识与相应认证方式的映射对应关系,该对应关系例如可以通过关系数据表进行记录。In a practical application, the mapping relationship between the identifier of the access terminal and the corresponding authentication mode of the terminal B may be preset in the terminal B (or a device directly accessible by the terminal B), and the corresponding relationship may be, for example, related data. The table is recorded.
终端B例如可以配置为能够支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式,以满足多种应用场景的需要,并配置各认证方式所对应的认证参数。For example, the terminal B can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, to meet the needs of multiple application scenarios, and to configure each authentication method. The corresponding authentication parameters.
用户可以根据其所使用的不同终端的数据处理能力以及应用场景,预置与该终端的标识相对应的认证方式。The user can preset the authentication mode corresponding to the identifier of the terminal according to the data processing capability and the application scenario of the different terminals used by the user.
举例来说,用户在终端B中预置的允许接入终端的标识与认证方式的对应关系可以如表1所示,但不局限于此:For example, the correspondence between the identifier of the access terminal and the authentication mode preset by the user in the terminal B may be as shown in Table 1, but is not limited thereto:
表1Table 1
序号 Serial number 允许接入终端的标识 Allow identification of the access terminal 认证方式 verification method
1 1 终端 A 的标识 Terminal A's identity 认证方式 1 Authentication method 1
2 2 终端 C 的标识 Terminal C identification 认证方式 2 Authentication method 2
3 3 终端 D 的标识 Terminal D identification 认证方式 3 Authentication method 3
4 4 终端 E 的标识 Terminal E identification 认证方式 2 Authentication method 2
5 5 终端 F 的标识 Identification of terminal F 认证方式 1 和认证方式 4 Authentication method 1 and authentication method 4
6 6 终端 G 的标识 Terminal G identification 认证方式 2 和认证方式 3 Authentication method 2 and authentication method 3
可以看出,若终端B中预置的允许接入终端的标识与认证方式的对应关系如表1所示,终端B可以根据获得的终端A的标识,在表1中查找与终端A的标识相匹配的记录(记录1),进而可以确定出对终端A进行接入认证的认证方式为认证方式1。It can be seen that, if the corresponding relationship between the identifier of the access terminal and the authentication mode preset in the terminal B is as shown in Table 1, the terminal B can search for the identifier of the terminal A in the table 1 according to the obtained identifier of the terminal A. The matching record (record 1) can be used to determine that the authentication mode for access authentication of terminal A is authentication mode 1.
此外,终端也可选择对应其它一个或多个允许接入终端的标识对应预置多种认证方式,使得终端可根据某个允许接入终端的标识确定出对其进行接入认证的多种认证方式。举例来说,终端B可对应允许接入的终端F的标识预置认证方式1和认证方式4等两种认证方式。当接收到终端F的呼叫时,终端B在预置的允许接入终端的标识与认证方式的对应关系中查找,可查找到对终端F进行接入认证的认证方式可为认证方式1和认证方式4,终端B可选择其中的一种接入认证方式作为本次接入认证的认证方式,例如可随机选择其中的一种接入认证方式(认证方式1或认证方式4)作为本次接入认证的认证方式,随机选择在一定程度上增加了不确定性和不可预测性,有利于提高可靠性;或终端B也可选择对应的所有接入认证方式(认证方式1和认证方式4)作为本次接入认证的认证方式,多种认证方式的组合使用可进一步提高可靠性,以此类推。In addition, the terminal may also select a plurality of authentication modes corresponding to the other one or more of the allowed access terminals, so that the terminal may determine multiple authentications for access authentication according to the identifier of the allowed access terminal. the way. For example, the terminal B can preset two authentication modes, such as the authentication mode 1 and the authentication mode 4, according to the identifier of the terminal F that is allowed to access. When receiving the call of the terminal F, the terminal B searches for the corresponding relationship between the identifier of the access terminal and the authentication mode, and can find that the authentication mode for accessing the terminal F can be the authentication mode 1 and the authentication. In the fourth mode, the terminal B can select one of the access authentication modes as the authentication mode of the current access authentication. For example, one of the access authentication modes (authentication mode 1 or authentication mode 4) can be randomly selected as the current connection. Into the authentication method, random selection increases the uncertainty and unpredictability to a certain extent, which is conducive to improving reliability; or terminal B can also select all corresponding access authentication methods (authentication mode 1 and authentication mode 4) As the authentication method for this access authentication, the combination of multiple authentication methods can further improve reliability, and so on.
此外,若终端B在预置的允许接入终端的标识与认证方式的对应关系中没有查找到与终端A的标识相匹配的记录,则终端B可结束通话;或者,此时终端B也可确定出,对终端A进行接入认证的认证方式为某一默认的认证方式(例如密码认证或其它)。本实施例以终端B在预置的允许接入终端的标识与认证方式的对应关系中查找到了与终端A的标识相匹配的记录为例进行说明。In addition, if the terminal B does not find a record matching the identifier of the terminal A in the corresponding relationship between the identifier of the allowed access terminal and the authentication mode, the terminal B may end the call; or, at this time, the terminal B may also It is determined that the authentication mode for performing access authentication on the terminal A is a default authentication mode (for example, password authentication or the like). In this embodiment, a record in which the terminal B finds a record matching the identifier of the terminal A in the corresponding relationship between the identifier of the allowed access terminal and the authentication mode is used as an example for description.
205、终端B按照确定出的认证方式,向终端A发送认证提示消息,提示终端A提供相应的认证信息。205. The terminal B sends an authentication prompt message to the terminal A according to the determined authentication mode, and prompts the terminal A to provide corresponding authentication information.
206、终端A接收该认证提示消息,并根据该认证提示消息向终端B发送认证应答消息,其中包含相应的认证信息。206. The terminal A receives the authentication prompt message, and sends an authentication response message to the terminal B according to the authentication prompt message, where the corresponding authentication information is included.
207、终端B接收终端A发送的认证应答消息,并根据其中携带的相应认证信息进行相应的认证处理,若认证通过,则执行步骤208,若认证失败,则可结束通话。207. The terminal B receives the authentication response message sent by the terminal A, and performs corresponding authentication processing according to the corresponding authentication information carried in the terminal. If the authentication succeeds, step 208 is performed. If the authentication fails, the call may be terminated.
可以理解,对于不同的认证方式,终端B向终端A发送认证提示消息的形式和其包含的内容可能是不相同的,终端A向终端B回复的认证应答消息的形式和其包含的内容当然也是不相同。It can be understood that, for different authentication modes, the form in which the terminal B sends the authentication prompt message to the terminal A and the content thereof may be different, and the form of the authentication response message that the terminal A replies to the terminal B and the content thereof are of course also Not the same.
举例来说,若终端B确定出的认证方式为提示问题认证,终端B向终端A发送认证提示消息,包含提示问题;终端A向终端B回复认证应答消息,包含该提示问题的答案;终端B将该认证应答消息携带的答案和预置的相应答案进行比较,若一致,则认证通过,若不一致,则认证失败。For example, if the authentication mode determined by the terminal B is the prompt question authentication, the terminal B sends an authentication prompt message to the terminal A, including the prompt question; the terminal A replies to the terminal B with the authentication response message, including the answer of the prompt question; and the terminal B The answer carried in the authentication response message is compared with the preset corresponding answer. If they are consistent, the authentication is passed. If they are inconsistent, the authentication fails.
又例如,若终端B确定出的认证方式为图形认证,终端B向终端A发送认证提示消息,包含提示图形;终端A向终端B回复认证应答消息,包含该提示图形的应答图形;终端B将该认证应答消息携带的应答图形和预置的应答图形进行比较,若一致,则认证通过,若不一致,则认证失败。For another example, if the authentication mode determined by the terminal B is graphic authentication, the terminal B sends an authentication prompt message to the terminal A, including the prompt graphic; the terminal A returns an authentication response message to the terminal B, and includes a response graphic of the prompt graphic; The response pattern carried in the authentication response message is compared with the preset response pattern. If they match, the authentication passes, and if they do not match, the authentication fails.
又例如,若终端B确定出的认证方式为语音识别认证,终端B向终端A播放预置的提示语音;终端A向终端B回复应答语音;终端B将该应答语音和预置的相应应答语音进行比较,若一致,则认证通过,若不一致,则认证失败。For another example, if the authentication mode determined by the terminal B is voice recognition authentication, the terminal B plays the preset prompt voice to the terminal A; the terminal A replies to the response voice to the terminal B; the terminal B responds to the response voice and the preset corresponding response voice. If the comparison is made, the authentication passes, and if they do not match, the authentication fails.
又例如,若终端B确定出的认证方式为人脸识别认证,终端B向终端A发送认证提示消息,提示用户拍摄并回复脸部照片;终端A向终端B回复认证应答消息,包含用户的脸部照片;终端B将该认证应答消息携带的脸部照片和预置的脸部照片进行比较,若相似度超过设定的阈值(90%、99%或其它值),则认证通过,若相似度低于设定的阈值,则认证失败。For another example, if the authentication mode determined by the terminal B is face recognition authentication, the terminal B sends an authentication prompt message to the terminal A, prompting the user to take and respond to the face photo; the terminal A returns an authentication response message to the terminal B, including the face of the user. Photograph; terminal B compares the face photo carried by the authentication response message with the preset face photo, and if the similarity exceeds the set threshold (90%, 99%, or other value), the authentication passes, if the similarity If the threshold is lower than the set threshold, the authentication fails.
又例如,若终端B确定出的认证方式为指纹识别认证,终端B向终端A发送认证提示消息,提示用户拍摄并回复指纹照片;终端A向终端B回复认证应答消息,包含用户的指纹照片;终端B将该认证应答消息携带的指纹照片和预置的指纹照片进行比较,若相似度超过设定的阈值(95%、99%或其它值),则认证通过,若相似度低于设定的阈值,则认证失败。For another example, if the authentication mode determined by the terminal B is fingerprint identification authentication, the terminal B sends an authentication prompt message to the terminal A, prompting the user to take and reply the fingerprint photo; the terminal A returns an authentication response message to the terminal B, including the fingerprint photo of the user; The terminal B compares the fingerprint photo carried by the authentication response message with the preset fingerprint photo. If the similarity exceeds the set threshold (95%, 99% or other value), the authentication passes, and if the similarity is lower than the setting The threshold is verified and the authentication fails.
举例来说,若终端B确定出的认证方式为提示问题认证,终端B向终端A发送认证提示消息,提示输入密码;终端A向终端B回复认证应答消息,包含密码;终端B将该认证应答消息携带的密码和预置的相应密码进行比较,若一致,则认证通过,若不一致,则认证失败。For example, if the authentication mode determined by the terminal B is the prompting problem authentication, the terminal B sends an authentication prompt message to the terminal A, prompting to input a password; the terminal A returns an authentication response message to the terminal B, including the password; and the terminal B answers the authentication. The password carried in the message is compared with the preset password. If they are consistent, the authentication is passed. If they are inconsistent, the authentication fails.
可以理解,以上方式仅为举例说明,终端B也还可采用其它方式对终端A进行接入认证。It can be understood that the foregoing manner is only an example, and the terminal B may also perform access authentication on the terminal A in other manners.
208、终端B向终端A开放相应的远程控制终端业务。208. The terminal B opens the corresponding remote control terminal service to the terminal A.
进一步的,若终端B配置了多个远程控制终端业务,则终端B例如可以提示终端A选择某个远程控制终端业务,并向终端A开放其选择的远程控制终端业务;或者,终端A可以主动发送包含远程控制终端业务选择指示的信息,终端B则可根据终端A发送的该远程控制终端业务的选择指示,向终端A开放其选择的远程控制终端业务;或者,终端B可以根据预置的终端A的权限,向终端A开放其权限允许的远程控制终端业务,本发明不限于上述方式。Further, if the terminal B is configured with multiple remote control terminal services, the terminal B may prompt the terminal A to select a certain remote control terminal service, and open the selected remote control terminal service to the terminal A; or, the terminal A may take the initiative. Sending the information including the remote control terminal service selection indication, and the terminal B may open the remote control terminal service selected by the terminal A according to the selection instruction of the remote control terminal service sent by the terminal A; or, the terminal B may be preset according to the preset The authority of the terminal A opens the remote control terminal service permitted by the authority to the terminal A, and the present invention is not limited to the above.
进一步的,终端A使用不同的远程控制终端业务,终端B也可选择不同的认证方式对其进行接入认证。Further, terminal A uses different remote control terminal services, and terminal B can also select different authentication methods for access authentication.
为便于更好的理解和实施,下面通过一具体实例对本实施例的上述方案进行更为具体的介绍。For the sake of better understanding and implementation, the above scheme of the present embodiment will be more specifically described below through a specific example.
例如,终端B配置的远程终端控制业务为远程留言控制业务,终端B支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式。For example, the remote terminal control service configured by the terminal B is a remote message control service, and the terminal B supports multiple authentication modes such as password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication.
终端B预置的允许接入终端的标识和认证方式的对应关系如表2所示:Table 2 shows the correspondence between the identification of the access terminal and the authentication mode preset by the terminal B:
表 2Table 2
序号 Serial number 允许接入终端的标识 Allow identification of the access terminal 认证方式 verification method
1 1 13400000000 13400000000 提示问题认证 Prompt problem authentication
2 2 15900000000 15900000000 图形认证 Graphics certification
3 3 13000000000 13000000000 人脸识别 Face recognition
终端A的标识例如为13400000000,终端A呼叫终端B;The identifier of the terminal A is, for example, 13400000000, and the terminal A calls the terminal B;
终端B接收终端A的呼叫,获得终端A的标识13400000000;The terminal B receives the call of the terminal A, and obtains the identifier of the terminal A 13400000000;
终端B在预置的允许接入终端的标识和认证方式的对应关系中查找与终端A的标识13400000000相匹配的记录,进而确定出对终端A进行接入认证的认证方式为提示问题认证;The terminal B searches for the record matching the identifier 13400000000 of the terminal A in the corresponding relationship between the identifier of the access terminal and the authentication mode, and determines that the authentication mode for access authentication of the terminal A is the prompt problem authentication.
终端B向终端A发送认证提示消息,例如包括问题:身上有几块胎记?Terminal B sends an authentication prompt message to terminal A, for example, including the question: How many birthmarks are there on the body?
终端A向终端B回复认证应答消息,例如包括答案:5块Terminal A replies to the terminal B with an authentication response message, for example, including the answer: 5 blocks.
终端B将接收到的终端A回复的认证应答消息中携带的相应答案和预置的答案进行比较,若二者一致,则认证通过;若二者不一致,则认证失败。The terminal B compares the corresponding answer carried in the received authentication response message sent by the terminal A with the preset answer. If the two are consistent, the authentication passes; if the two are inconsistent, the authentication fails.
例如终端B预置的对应答案也为:5块,则认证通过,终端B则向终端A开放远程留言控制业务。For example, the corresponding answer preset by the terminal B is also: 5 blocks, the authentication is passed, and the terminal B opens the remote message control service to the terminal A.
进一步的,例如可以在终端B中预置多组问题-答案,在确定出对终端A进行接入认证的认证方式为提示问题认证时,终端B可以从预置多组问题-答案中随机选择其中一组作为本次认证使用的问题-答案,对终端A进行接入认证。Further, for example, a plurality of sets of question-answers may be preset in the terminal B. When it is determined that the authentication mode for performing access authentication on the terminal A is the prompt question authentication, the terminal B may randomly select from the preset multiple sets of questions-answers. One of them is used as the question-answer for this authentication, and access authentication is performed for terminal A.
其它认证方式,以此类推,此处不再赘述。Other authentication methods, and so on, will not be described here.
由上可见,本实施例的方案在被叫终端B中预置各个允许接入终端的标识与相应认证方式的对应关系,可以实现被叫终端B根据主叫终端的不同,选择适宜的认证方式对该主叫终端进行接入认证,有利于提高对主叫终端进行接入认证的灵活性,且可以提供具有更高安全性的认证方式。It can be seen that the scheme of this embodiment presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal B, so that the called terminal B can select an appropriate authentication manner according to different calling terminals. Performing access authentication on the calling terminal is beneficial to improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
进一步的,被叫终端B可以配置为支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式,可以满足不同应用场景下对安全性的要求。Further, the called terminal B can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt problem authentication, which can meet the security requirements in different application scenarios. .
为便于更好的实施本发明实施例的技术方案,本发明实施例还提供一种配置远程控制终端业务的终端。In order to facilitate the implementation of the technical solution of the embodiment of the present invention, the embodiment of the present invention further provides a terminal for configuring a service for remotely controlling a terminal.
实施例三Embodiment 3
参见图3-a、本发明实施例三的一种配置远程控制终端业务的终端300,可以包括:接收获得模块310、确定模块320和接入认证模块330。Referring to FIG. 3-a, a terminal 300 for configuring a remote control terminal service according to Embodiment 3 of the present invention may include: a receiving and obtaining module 310, a determining module 320, and an access authentication module 330.
其中,接收获得模块310,用于接收主叫终端的呼叫,获得该主叫终端的标识。The receiving and obtaining module 310 is configured to receive a call of the calling terminal, and obtain an identifier of the calling terminal.
在一种应用场景下,接收获得模块310获得主叫终端的标识可以是MAC地址、IMSI、NAI等;当然也可以是能够唯一标识该终端设备的一个标签,例如设备编号、或设备名等等,此处不做限定。In an application scenario, the identifier of the receiving terminal obtained by the receiving and obtaining module 310 may be a MAC address, an IMSI, an NAI, etc.; of course, it may also be a label that can uniquely identify the terminal device, such as a device number, or a device name, and the like. , here is not limited.
确定模块320,用于根据接收获得模块310获得的主叫终端的标识和预置的允许接入终端的标识与认证方式的对应关系,确定对该主叫终端进行接入认证的认证方式;The determining module 320 is configured to determine, according to the identifier of the calling terminal obtained by the receiving and obtaining module 310 and the preset correspondence between the identifier of the allowed access terminal and the authentication mode, the authentication mode for performing access authentication on the calling terminal;
接入认证模块330,用于按照确定模块320确定出的认证方式对上述主叫终端进行接入认证。The access authentication module 330 is configured to perform access authentication on the calling terminal according to the authentication mode determined by the determining module 320.
在一种应用场景下,确定模块320可以包括:In an application scenario, the determining module 320 can include:
查找子模块,用于在预置的记录有允许接入终端的标识与认证方式的对应关系的数据表中查找与上述主叫终端的标识相匹配的记录;a search sub-module, configured to search, in a preset data table that records the correspondence between the identifier of the access terminal and the authentication mode, the record that matches the identifier of the calling terminal;
确定子模块,用于根据查找子模块的查找结果,确定对上述主叫终端进行接入认证的认证方式。The determining submodule is configured to determine, according to the search result of the searching submodule, an authentication manner for performing access authentication on the calling terminal.
参见图3-b,在一种应用场景下,接入认证模块330可以包括:Referring to FIG. 3-b, in an application scenario, the access authentication module 330 may include:
发送子模块331,用于按照确定模块320确定出的认证方式向上述主叫终端发送对应的认证提示消息,提示其提供相应的认证信息;The sending sub-module 331 is configured to send a corresponding authentication prompt message to the calling terminal according to the authentication mode determined by the determining module 320, and prompt the user to provide corresponding authentication information;
接收子模块332,用于接收主叫终端发送的包含认证信息的认证应答消息;The receiving submodule 332 is configured to receive an authentication response message that is sent by the calling terminal and includes the authentication information.
认证处理子模块333,用于利用接收子模块接收的认证应答消息包含的认证信息进行认证处理。The authentication processing sub-module 333 is configured to perform authentication processing by using the authentication information included in the authentication response message received by the receiving sub-module.
在一种应用场景下,确定模块320确定出的认证方式可以包括:In an application scenario, the authentication mode determined by the determining module 320 may include:
密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证的其中一种或多种。One or more of password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication.
接入认证模块330例如可以按照密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证的其中一种或多种认证方式,对上述主叫终端进行接入认证。The access authentication module 330 can perform access authentication on the calling terminal, for example, according to one or more authentication modes of password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication.
当接入认证模块330对主叫终端的接入认证通过后,终端300可以向主叫终端开放相应的远程控制终端业务。若接入认证模块330对主叫终端的接入认证未通过,终端300可以终止与主叫终端的通话。After the access authentication module 330 passes the access authentication of the calling terminal, the terminal 300 can open the corresponding remote control terminal service to the calling terminal. If the access authentication module 330 does not pass the access authentication of the calling terminal, the terminal 300 may terminate the call with the calling terminal.
可以理解的是,本实施例终端300可以如上述方法实施例中的终端B,其各个功能模块的功能可以根据上述方法实施例中的方法具体实现,其具体实现过程可参照上述实施例中的相关描述,此处不再赘述。It can be understood that the terminal 300 in this embodiment may be the terminal B in the foregoing method embodiment, and the functions of the respective functional modules may be specifically implemented according to the method in the foregoing method embodiment, and the specific implementation process may refer to the foregoing embodiment. Related descriptions are not described here.
由上可见,本实施例的方案在终端300(被叫终端)中预置各个允许接入终端的标识与相应认证方式的对应关系,可以实现被叫终端根据主叫终端的不同,选择适宜的认证方式对该主叫终端进行接入认证,有利于提高对主叫终端进行接入认证的灵活性,且可以提供具有更高安全性的认证方式。It can be seen that the scheme of this embodiment presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the terminal 300 (the called terminal), so that the called terminal can select an appropriate one according to the difference of the calling terminals. The authentication mode performs access authentication on the calling terminal, which is beneficial to improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
进一步的,被叫终端可以配置为支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式,可以满足不同应用场景下对安全性的要求。Further, the called terminal can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
为便于更好的实施本发明实施例的技术方案,本发明实施例还提供一种通信系统。In order to facilitate the implementation of the technical solution of the embodiment of the present invention, the embodiment of the present invention further provides a communication system.
实施例四Embodiment 4
参见图4、本发明实施例四的一种通信系统,可以包括:第一终端410和第二终端420。Referring to FIG. 4, a communication system according to Embodiment 4 of the present invention may include: a first terminal 410 and a second terminal 420.
其中,第一终端410,用于向第二终端420发起呼叫;The first terminal 410 is configured to initiate a call to the second terminal 420.
第二终端420,用于接收第一终端410的呼叫,获得第一终端410的标识;根据第一终端410的标识和预置的允许接入终端的标识与认证方式的对应关系,确定对第一终端410进行接入认证的认证方式;按照确定出的认证方式对第一终端410进行接入认证;在对第一终端410的接入认证通过后,向第一终端410开放远程控制终端业务。The second terminal 420 is configured to receive the call of the first terminal 410, obtain the identifier of the first terminal 410, and determine the first according to the identifier of the first terminal 410 and the preset correspondence between the identifier of the access terminal and the authentication mode. The terminal 410 performs the access authentication authentication mode; performs the access authentication on the first terminal 410 according to the determined authentication mode; and after the access authentication to the first terminal 410 passes, opens the remote control terminal service to the first terminal 410. .
可以理解的是,本实施例的通信系统各个实体的功能可以根据上述方法实施例中的方法具体实现,其具体实现过程可参照上述实施例中的相关描述,此处不再赘述。It is to be understood that the functions of the entities in the communication system of the present embodiment may be specifically implemented according to the method in the foregoing method embodiments. For the specific implementation process, refer to the related description in the foregoing embodiments, and details are not described herein again.
需要说明的是,对于前述的各方法实施例,为了简单描述,故将其都表述为一系列的动作组合,但是本领域技术人员应该知悉,本发明并不受所描述的动作顺序的限制,因为依据本发明,某些步骤可以采用其他顺序或者同时进行。其次,本领域技术人员也应该知悉,说明书中所描述的实施例均属于优选实施例,所涉及的动作和模块并不一定是本发明所必须的。It should be noted that, for the foregoing method embodiments, for the sake of simple description, they are all expressed as a series of action combinations, but those skilled in the art should understand that the present invention is not limited by the described action sequence. Because certain steps may be performed in other sequences or concurrently in accordance with the present invention. In addition, those skilled in the art should also understand that the embodiments described in the specification are all preferred embodiments, and the actions and modules involved are not necessarily required by the present invention.
在上述实施例中,对各个实施例的描述都各有侧重,某个实施例中没有详述的部分,可以参见其他实施例的相关描述。In the above embodiments, the descriptions of the various embodiments are different, and the details that are not detailed in a certain embodiment can be referred to the related descriptions of other embodiments.
综上,本发明实施例的方案在被叫终端中预置各个允许接入终端的标识与相应认证方式的对应关系,可以实现被叫终端根据主叫终端的不同,选择适宜的认证方式对该主叫终端进行接入认证,有利于提高对主叫终端进行接入认证的灵活性,且可以提供具有更高安全性的认证方式。In summary, the solution of the embodiment of the present invention presets the correspondence between the identifiers of the respective access terminals and the corresponding authentication modes in the called terminal, so that the called terminal can select an appropriate authentication mode according to different calling terminals. The calling terminal performs access authentication, which is advantageous for improving the flexibility of access authentication for the calling terminal, and can provide an authentication method with higher security.
进一步的,被叫终端可以配置为支持密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证等多种认证方式,可以满足不同应用场景下对安全性的要求。Further, the called terminal can be configured to support multiple authentication modes such as password authentication, graphics authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompting problem authentication, which can meet the security requirements in different application scenarios.
本领域普通技术人员可以理解上述实施例的各种方法中的全部或部分步骤是可以通过程序来指令相关的硬件来完成,该程序可以存储于一计算机可读存储介质中,存储介质可以包括:只读存储器、随机存储器、磁盘或光盘等。A person skilled in the art may understand that all or part of the various steps of the foregoing embodiments may be performed by a program to instruct related hardware. The program may be stored in a computer readable storage medium, and the storage medium may include: Read only memory, random access memory, disk or optical disk, etc.
以上对本发明实施例所提供的远程控制终端业务的接入认证方法和相关设备及通信系统进行了详细介绍,本文中应用了具体个例对本发明的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本发明的方法及其核心思想;同时,对于本领域的一般技术人员,依据本发明的思想,在具体实施方式及应用范围上均会有改变之处,综上,本说明书内容不应理解为对本发明的限制。The access authentication method, the related device, and the communication system of the remote control terminal service provided by the embodiments of the present invention are described in detail. The principles and implementation manners of the present invention are described in the following examples. The description is only for helping to understand the method of the present invention and its core idea; at the same time, for those skilled in the art, according to the idea of the present invention, there will be changes in specific embodiments and application scopes. The description should not be construed as limiting the invention.

Claims (9)

  1. 一种远程控制终端业务的接入认证方法,其特征在于,包括:An access authentication method for remotely controlling a terminal service, which is characterized by comprising:
    接收主叫终端的呼叫,获得所述主叫终端的标识; Receiving a call of the calling terminal, obtaining an identifier of the calling terminal;
    根据所述主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述主叫终端进行接入认证的认证方式;Determining an authentication mode for performing access authentication on the calling terminal according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode;
    按照确定出的认证方式对所述主叫终端进行接入认证。Performing access authentication on the calling terminal according to the determined authentication manner.
  2. 根据权利要求1所述的方法,其特征在于,根据所述主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述主叫终端进行接入认证的认证方式,包括: The method according to claim 1, wherein the access terminal is determined to perform access authentication according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode. Certification methods, including:
    在预置的记录有允许接入终端的标识与认证方式的对应关系的数据表中,查找与所述主叫终端的标识相匹配的记录;And searching, in a preset data table that records the correspondence between the identifier of the access terminal and the authentication mode, searching for a record that matches the identifier of the calling terminal;
    根据查找结果确定对所述主叫终端进行接入认证的认证方式。And determining, according to the search result, an authentication manner for performing access authentication on the calling terminal.
  3. 根据权利要求1或2所述的方法,其特征在于,按照确定出的认证方式对所述主叫终端进行接入认证,包括: The method according to claim 1 or 2, wherein performing access authentication on the calling terminal according to the determined authentication manner comprises:
    按照确定出的认证方式向所述主叫终端发送对应的认证提示消息,提示所述主叫终端提供相应的认证信息;Sending, according to the determined authentication mode, a corresponding authentication prompt message to the calling terminal, prompting the calling terminal to provide corresponding authentication information;
    接收所述主叫终端发送的包含认证信息的认证应答消息;Receiving an authentication response message that includes the authentication information sent by the calling terminal;
    利用所述认证应答消息包含的认证信息进行认证处理。The authentication process is performed using the authentication information included in the authentication response message.
  4. 根据权利要求3所述的方法,其特征在于, The method of claim 3 wherein:
    所述确定出的认证方式包括:密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证的其中一种或多种。The determined authentication manner includes one or more of password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication.
  5. 一种配置远程控制终端业务的终端,其特征在于,包括:A terminal for configuring a service for remotely controlling a terminal, comprising:
    标识获得模块,用于接收主叫终端的呼叫,获得所述主叫终端的标识;An identifier obtaining module, configured to receive a call of the calling terminal, and obtain an identifier of the calling terminal;
    确定模块,用于根据所述主叫终端的标识,以及预置的允许接入终端的标识与认证方式的对应关系,确定对所述主叫终端进行接入认证的认证方式;a determining module, configured to determine an authentication mode for performing access authentication on the calling terminal according to the identifier of the calling terminal and the preset correspondence between the identifier of the access terminal and the authentication mode;
    接入认证模块,用于按照所述确定模块确定出的认证方式对所述主叫终端进行接入认证。The access authentication module is configured to perform access authentication on the calling terminal according to the authentication mode determined by the determining module.
  6. 根据权利要求5所述的终端,其特征在于, The terminal according to claim 5, characterized in that
    所述确定模块包括:The determining module includes:
    查找子模块,用于在预置的记录有允许接入终端的标识与认证方式的对应关系的数据表中查找与所述主叫终端的标识相匹配的记录;And a search sub-module, configured to search, in a data table that is preset with a correspondence between the identifier of the access terminal and the authentication mode, to search for a record that matches the identifier of the calling terminal;
    确定子模块,用于根据所述查找子模块的查找结果,确定对所述主叫终端进行接入认证的认证方式。And a determining submodule, configured to determine, according to the search result of the searching submodule, an authentication manner for performing access authentication on the calling terminal.
  7. 根据权利要求5或6所述的终端,其特征在于, A terminal according to claim 5 or 6, wherein
    所述接入认证模块包括:The access authentication module includes:
    发送子模块,用于按照所述确定模块确定出的认证方式向所述主叫终端发送对应的认证提示消息,提示其提供相应的认证信息;a sending sub-module, configured to send, according to the authentication mode determined by the determining module, a corresponding authentication prompt message to the calling terminal, to prompt the user to provide corresponding authentication information;
    接收子模块,用于接收所述主叫终端发送的包含认证信息的认证应答消息;a receiving submodule, configured to receive an authentication response message that is sent by the calling terminal and includes authentication information;
    认证处理子模块,用于利用所述接收子模块接收的认证应答消息包含的认证信息进行认证处理。The authentication processing submodule is configured to perform authentication processing by using the authentication information included in the authentication response message received by the receiving submodule.
  8. 根据权利要求7所述的终端,其特征在于, The terminal according to claim 7, wherein
    所述确定模块确定出的认证方式包括:密码认证、图形认证、人脸识别认证、指纹识别认证、语音识别认证、提示问题认证的其中一种或多种。The authentication mode determined by the determining module includes one or more of password authentication, graphic authentication, face recognition authentication, fingerprint identification authentication, voice recognition authentication, and prompt question authentication.
  9. 一种通信系统,其特征在于,包括: A communication system, comprising:
    第一终端,用于向第二终端发起呼叫;a first terminal, configured to initiate a call to the second terminal;
    第二终端,用于接收所述第一终端的呼叫,获得所述第一终端的标识;根据所述第一终端的标识和预置的允许接入终端的标识与认证方式的对应关系,确定对所述第一终端进行接入认证的认证方式;按照确定出的认证方式对所述第一终端进行接入认证;在对所述第一终端的接入认证通过后,向所述第一终端开放远程控制终端业务。The second terminal is configured to receive the call of the first terminal, obtain the identifier of the first terminal, and determine according to the identifier of the first terminal and the preset correspondence between the identifier of the allowed access terminal and the authentication mode. An authentication method for performing access authentication on the first terminal; performing access authentication on the first terminal according to the determined authentication mode; and after the access authentication of the first terminal is passed, the first The terminal opens the remote control terminal service.
PCT/CN2011/074742 2010-05-27 2011-05-27 Access authentication method of remote control terminal service, related device and communication system thereof WO2011147323A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN 201010187494 CN101867475B (en) 2010-05-27 2010-05-27 Access authentication method and related device of remote control terminal service and communication system
CN201010187494.0 2010-05-27

Publications (1)

Publication Number Publication Date
WO2011147323A1 true WO2011147323A1 (en) 2011-12-01

Family

ID=42959048

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/074742 WO2011147323A1 (en) 2010-05-27 2011-05-27 Access authentication method of remote control terminal service, related device and communication system thereof

Country Status (2)

Country Link
CN (1) CN101867475B (en)
WO (1) WO2011147323A1 (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101867475B (en) * 2010-05-27 2013-04-24 华为终端有限公司 Access authentication method and related device of remote control terminal service and communication system
CN104506317A (en) * 2014-12-01 2015-04-08 金硕澳门离岸商业服务有限公司 An authentication method and device based on multiple authentication modes
CN104837136B (en) * 2015-04-14 2019-06-21 深圳市信锐网科技术有限公司 Wireless access authentication method and device
CN106453209B (en) * 2015-08-07 2020-01-21 阿里巴巴集团控股有限公司 Identity verification method and device
CN105227788B (en) * 2015-10-12 2018-03-23 中国联合网络通信集团有限公司 Call verification methods and applications server
CN106357520A (en) * 2016-10-21 2017-01-25 北京小米移动软件有限公司 Instant messaging method and instant messaging device
CN106709733A (en) * 2016-12-15 2017-05-24 咪咕文化科技有限公司 Verification strategy selection method and equipment
CN108243165B (en) * 2016-12-26 2020-10-30 中移(苏州)软件技术有限公司 Authentication method and device
CN106657158B (en) * 2017-02-13 2019-09-24 北京安云世纪科技有限公司 A kind of system and method in equipment room progress data security transmission
CN107395644B (en) * 2017-09-01 2020-05-12 北京知道创宇信息技术股份有限公司 Multi-protocol authentication system and method
CN107645514B (en) * 2017-10-26 2020-03-17 北京知道创宇信息技术股份有限公司 Authentication protocol conversion method and device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1497472A (en) * 2002-10-16 2004-05-19 ��ʽ����Ntt����Ħ Service vertification system, vertification require terminal, service operating terminal and providing method
CN1652503A (en) * 2004-02-04 2005-08-10 夏普株式会社 Data distribution system and data distribution apparatus
CN1867158A (en) * 2005-05-18 2006-11-22 华为技术有限公司 Method for establishing trust relation of access end and service application entity
CN101572604A (en) * 2008-03-28 2009-11-04 株式会社日立制作所 Authentication server, program, authentication system, and authentication method
CN101867475A (en) * 2010-05-27 2010-10-20 华为终端有限公司 Access authentication method and related device of remote control terminal service and communication system

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1901448B (en) * 2005-07-21 2010-12-01 华为技术有限公司 Access identification system in communication network and realizing method
CN101132641A (en) * 2006-12-30 2008-02-27 陈鹏 Authentication method for telephone subscriber identity
CN100518063C (en) * 2007-06-19 2009-07-22 北京握奇数据系统有限公司 Physical certifying method and device

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1497472A (en) * 2002-10-16 2004-05-19 ��ʽ����Ntt����Ħ Service vertification system, vertification require terminal, service operating terminal and providing method
CN1652503A (en) * 2004-02-04 2005-08-10 夏普株式会社 Data distribution system and data distribution apparatus
CN1867158A (en) * 2005-05-18 2006-11-22 华为技术有限公司 Method for establishing trust relation of access end and service application entity
CN101572604A (en) * 2008-03-28 2009-11-04 株式会社日立制作所 Authentication server, program, authentication system, and authentication method
CN101867475A (en) * 2010-05-27 2010-10-20 华为终端有限公司 Access authentication method and related device of remote control terminal service and communication system

Also Published As

Publication number Publication date
CN101867475A (en) 2010-10-20
CN101867475B (en) 2013-04-24

Similar Documents

Publication Publication Date Title
WO2011147323A1 (en) Access authentication method of remote control terminal service, related device and communication system thereof
WO2021071032A1 (en) Device access control method and apparatus for internet of things
WO2018000787A1 (en) Terminal, and method and system for identifying pseudo base station
WO2020155360A1 (en) Network distribution method for household appliance, household appliance, mobile terminal and storage medium
WO2012016473A1 (en) Wireless fidelity access method, access point and wireless fidelity access system
WO2011014037A2 (en) System for managing unregistered terminals with shared authentication information and method thereof
WO2016153281A1 (en) Method and apparatus for downloading profile in wireless communication system
WO2014030889A1 (en) Method and apparatus for sharing content
WO2016123980A1 (en) Application method of communication terminal and smart home system
WO2013170660A1 (en) System for data backup and restoration, server and mobile terminal
WO2015072788A1 (en) Method and apparatus for managing security key in a near fieldd2d communication system
WO2016123898A1 (en) Short message managing method and mobile terminal thereof
WO2018035929A1 (en) Method and apparatus for processing verification code
WO2012099402A2 (en) Method and apparatus for phone communication using home network
WO2012093900A2 (en) Method and device for authenticating personal network entity
WO2016101440A1 (en) Terminal for performing communication by using fingerprints and method therefor, server and method therefor
WO2014088318A1 (en) Method and apparatus for allocating an internet protocol address to a client device
WO2018053903A1 (en) Method and device for managing file, and mobile terminal
WO2018014796A1 (en) Method, apparatus and system for implementing virtual sim card, and mobile terminal
WO2016155283A1 (en) Method and system for electronic device privacy protection based on wifi hotspot
WO2012146072A1 (en) Mobile device communication method and mobile device
WO2021012490A1 (en) Service relay switching method and apparatus, terminal device, and storage medium
WO2020078383A1 (en) Bluetooth connection-based mode switching method, apparatus and system, and bluetooth device
WO2019194412A1 (en) Network apparatus and control method thereof
US11616781B2 (en) Air gap-based network isolation device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11786095

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11786095

Country of ref document: EP

Kind code of ref document: A1