WO2013017029A1 - 注册或登陆的方法和系统 - Google Patents

注册或登陆的方法和系统 Download PDF

Info

Publication number
WO2013017029A1
WO2013017029A1 PCT/CN2012/079020 CN2012079020W WO2013017029A1 WO 2013017029 A1 WO2013017029 A1 WO 2013017029A1 CN 2012079020 W CN2012079020 W CN 2012079020W WO 2013017029 A1 WO2013017029 A1 WO 2013017029A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
website
server
source
party
Prior art date
Application number
PCT/CN2012/079020
Other languages
English (en)
French (fr)
Inventor
杨宇
陈翼平
安婷婷
封荣军
赖志勇
Original Assignee
腾讯科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 腾讯科技(深圳)有限公司 filed Critical 腾讯科技(深圳)有限公司
Publication of WO2013017029A1 publication Critical patent/WO2013017029A1/zh
Priority to US14/161,929 priority Critical patent/US20140136704A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/2866Architectures; Arrangements
    • H04L67/30Profiles
    • H04L67/306User profiles
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/53Network services using third party service providers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2115Third party
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2117User registration

Definitions

  • the present invention relates to the field of the Internet, and in particular to a method and system for registration or login. Background technique
  • the existing website registration process is as follows:
  • the user first enters the registration page of the website; then, according to the prompt of the registration page, the user needs to input some required information, usually marked with *, such as: user name, password, email address, etc. Further, the user can also input some optional information. Such as: real name, nationality, date of birth, interest, hobbies, etc.
  • the website usually sends an activation email to the email address entered by the user. After the user logs in to the email to check the activation email and opens the activation address provided in the activation email, the user completes the website registration process.
  • an embodiment of the present invention provides a method and system for registration, the method comprising: providing a registration page with a verification link of a third-party website by a server of the source website;
  • the login page of the third-party website is output;
  • the server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information; After the server of the third-party website verifies the login information, returning the personal information of the user to the server of the source website;
  • the server of the source website obtains the personal information of the user, and populates the personal information into the registration information of the registration page of the source website.
  • the server of the third-party website the personal information of the user to the server of the source website, including: the server of the third-party website outputting personal information filled by the user on the third-party website for the User selection
  • the server of the third-party website receives the personal information of the user selected by the server selected by the user for the source website;
  • the server of the third party website returns the personal information used by the user to the server of the source website to the server of the source website.
  • the server of the third-party website outputs the personal information filled by the user on the third-party website for the user to select, including:
  • the server of the third-party website outputs an authorization page, where the authorization page includes personal information filled by the user on the third-party website, and the “allow source website usage” and “no” corresponding to each personal information. Allow the source site to use the "options" for the user to select.
  • the method further includes:
  • the server of the source website randomly generates a password as the initial password of the user to log in to the source website; or the password that the source website server receives the user to fill in as the initial password of the user to log in to the source website.
  • the third party website includes an open platform website that provides an application programming interface API for other websites.
  • the registration page of the verification link with the third party website includes: an option for the basic registration process.
  • the system includes: a server of a source website and a server of a third party website;
  • the server of the source website includes a first output module for providing a registration page with a verification link of a third party website;
  • the server of the third-party website includes a second output module, configured to output a login page of the third-party website when receiving the trigger of the verification link of the third-party website output by the output module by the user;
  • the server of the third-party website further includes a verification module, configured to receive login information input by the user on the third-party website, and verify the login information;
  • the server of the third-party website further includes a returning module, configured to return the personal information of the user to the server of the source website after the verification module verifies the login information;
  • the server of the source website further includes a registration module, configured to acquire personal information of the user, and fill the personal information into the registration information of the registration page of the source website.
  • the return module includes:
  • An output unit configured to output personal information filled by the user on the third-party website for the user to select;
  • a receiving unit configured to receive the user selected by the user selected by the server of the source website Personal information;
  • a returning unit configured to return the personal information used by the user to the server of the source website to the server of the source website.
  • the output unit is specifically configured to:
  • the authorization page includes personal information filled by the user on the third-party website, and an option of “allowing the source website to use” and “not allowing the source website to use” corresponding to each of the personal information. For the user to choose.
  • the server of the source website also includes:
  • a password generating module configured to: after the registration module fills the personal information into the registration information of the registration page of the source website, randomly generate a password as an initial password of the user to log in to the source website; or receive the password The password filled in by the user is used as the initial password of the user to log in to the source website.
  • the third party website includes an open platform website that provides an application programming interface API for other websites.
  • the registration page of the verification link with the third party website includes: an option for the basic registration process.
  • the embodiment of the invention provides a method and system for logging in, the method comprising:
  • the server of the source website provides a landing page with a verification link for the third party website
  • the login page of the third-party website is output;
  • the server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information
  • the server of the third-party website verifies the login information, returning the personal information of the user to the server of the source website;
  • the server of the source website obtains the personal information of the user and completes the landing based on the personal information of the user.
  • the method also includes:
  • the server of the source website determines, according to the personal information of the user, whether the user is a registered user of the source website; If the user is a registered user of the source website, the server of the source website generates a session key, and displays a login status to complete the login;
  • the server of the source website determines, according to the personal information of the user, whether the user is a registered user of the source website, including:
  • the server of the source website determines whether the user name of the registered user includes the user's mailbox, and if so, the server of the source website confirms that the user is a registered user of the source website, otherwise, the source website The server confirms that the user is not a registered user of the source website.
  • the third party website includes an open platform website that provides an application programming interface API for other websites.
  • the system includes: a server of a source website and a server of a third party website;
  • the server of the source website includes a first output module for providing a landing page with a verification link of a third party website;
  • the server of the third-party website includes a second output module, configured to output a login page of the third-party website when receiving the trigger of the verification link of the third-party website output by the output module by the user;
  • the server of the third-party website further includes a verification module, configured to receive login information input by the user on the third-party website, and verify the login information;
  • the server of the third-party website further includes a returning module, configured to return the personal information of the user to the server of the source website after the verification module verifies the login information;
  • the server of the source website further includes a login module for obtaining personal information of the user, and completing the login according to the personal information of the user.
  • the server determining module of the source website is configured to determine, according to the personal information of the user, whether the user is a registered user of the source website before performing the login; if the user is a registered user of the source website, generate The session key, and display the login status, complete the login, otherwise perform the following steps.
  • the determining module includes:
  • a determining unit configured to determine whether the user name of the registered user is included in the user name of the registered user, and if yes, confirming that the user is a registered user of the source website, otherwise, confirming that the user is not the registration of the source website user.
  • the third party website includes an open platform website that provides an application programming interface API for other websites.
  • the third party website obtains the personal information authorized by the user, and according to the obtained personal information, determines whether the user is a registered user of the source website, and if so, generates a session key and displays the login status, and the user does not need to memorize Multiple passwords.
  • Embodiment 1 is a flow chart of a method for registration provided in Embodiment 1 of the present invention.
  • Embodiment 2 is a flowchart of a method for registration provided in Embodiment 1 of the present invention
  • Embodiment 3 is a schematic diagram of an authorization page provided in Embodiment 1 of the present invention.
  • FIG. 4 is a flow chart of a method for logging in according to Embodiment 2 of the present invention.
  • FIG. 5 is a flowchart of a method for logging in according to Embodiment 2 of the present invention.
  • FIG. 6 is a schematic diagram of a system for registration provided in Embodiment 3 of the present invention.
  • Figure 7 is a schematic diagram of a system for logging in according to Embodiment 4 of the present invention. detailed description
  • this embodiment provides a registration method, including:
  • S11 The server of the source website provides a registration page with a verification link of the third party website
  • S13 The server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information
  • S15 The server of the source website acquires the personal information of the user, and fills the personal information accordingly. Go to the registration information of the registration page of the source website.
  • the server of the source website provides a registration page with a verification link for the third party website
  • a verification link of a third-party website is set on the registration page of the source website to pull the personal information of the user on the third-party website, thereby simplifying the registration process.
  • the source website refers to some portal websites, and the user can register or log in on the source website, for example, a video website or a shopping website, etc., which is not specifically limited in this embodiment.
  • a third-party website is a function that is not erected by the company of the source website, but by another company or individual, for personal needs or for other reasons, to enhance the source website.
  • the third party website includes an open platform website that provides an application programming interface API for other websites.
  • the third-party website is an open platform, and an API is provided for the source website, and the authorized source website obtains some information of the user through the interface.
  • Third-party websites usually have high credibility. They have high security requirements for registered accounts. If users register accounts on third-party websites, their email addresses must be true and valid.
  • the third party website may be Google, Facebook, Twitter, etc., and the embodiment does not limit the specific third party website.
  • the user can access the source website through the terminal, where the terminal includes a PC, a mobile phone, or another handheld device, and the like is not specifically limited in this embodiment.
  • the user opens the link address of the source website, and the server of the source website outputs the access page to the terminal for the user to browse.
  • the server of the source website can directly output the registration page of the verification link with the third-party website, so that the user can continue to access after registering on the website, or can output the content when the user clicks the registration request.
  • the registration page of the verification link of the third-party website the specific implementation manner is not specifically limited in this embodiment.
  • a verification link of a plurality of third-party websites is set on the registration page for the user to select, and the user can arbitrarily select a third-party website to help registration.
  • the verification link for using the third-party website for account verification may be displayed by a button or the like, that is, a button for setting a third-party verification link on the registration page of the source website. This embodiment does not limit the specific display form of the verification link.
  • a verification link button may be directly set, and when the user clicks the verification link button, the verification link of the plurality of third-party websites is output, and / Or, provide an input window, the user can manually enter the link address of the third-party website on the input window.
  • the registration page in this embodiment may further include an option of a basic registration process. After the user selects the option, the existing registration page is output, and the user can register according to the existing registration method.
  • the user The third-party website may be selected on the interface or manually input the URL of the third-party website, and when the server of the third-party website receives the trigger of the user's verification link to the third-party website, the third-party website is outputted. login page.
  • the server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information, and after the server of the third-party website verifies the login information, Returning the personal information of the user to the server of the source website;
  • the server of the third-party website outputs the login page
  • the user inputs the login information on the third-party website, that is, the third-party account of the user on the third-party website
  • the server of the third-party website verifies the login information, and is verified.
  • the user's personal information is returned to the server of the source website.
  • the server of the third-party website returns the personal information of the user to the server of the source website, including:
  • the server of the third-party website outputs personal information filled by the user on the third-party website for selection by the user;
  • the server of the third-party website receives the personal information of the user selected by the server selected by the user for the source website;
  • the server of the third party website returns the personal information used by the user to the server of the source website to the server of the source website.
  • FIG. 3 shows the authorization page with Facebook as an example. In the authorization page, you can also set the two options "Allow source site use” and "Do not allow source site use”. Users can choose whether to allow the source site to use. All or part of the profile information on a third-party website.
  • the server of the third-party website outputs the personal information filled in by the user on the third-party website for the user to select, including: the server of the third-party website outputs an authorization page, where the authorization page includes the user The personal information filled in the third-party website, and the "allow source website use” and “disallow source website use” options corresponding to the personal information are selected by the user.
  • the third party website will return the corresponding verification information to the source website.
  • the user's personal information can be directly returned to the server of the source website, but the user's personal information is more secure, and the user's individual is not directly
  • the information is returned to the server of the source website, and the verification information of the personal information used by the authorized source website is returned to the server of the source website, so that the server of the source website further obtains the user's personal information according to the verification information.
  • the source website obtains the user's personal information from the server of the third-party website through an interface provided by a server of the third-party website; Specifically, the server of the source website may directly receive the personal information of the user returned by the server of the third-party website, or may be based on the verification information returned by the server of the third-party website, through the interface provided by the server of the third-party website, from the third-party website.
  • the server obtains personal information that the user has authorized. DETAILED DESCRIPTION
  • the present embodiment is not specifically limited.
  • the authorized personal information includes information such as the user's email address, and may include one or more of the user's age, gender, region, occupation, and the like, which is not specifically limited in this embodiment.
  • the server of the source website fills the personal information into the registration information of the registration page of the source website correspondingly;
  • the server of the source website fills the obtained personal information of the user into the registration information, such as age, gender, ID card, mailbox, etc., correspondingly filled to the corresponding Registration information.
  • the source website may fill the mailbox in the obtained personal information as a user name into the registration information.
  • the server of the source website randomly generates a password to ask the user whether to change the password
  • the user does not need to actively set the password, but when registering according to the personal information acquired from the server of the third-party website, the server of the source website randomly generates a password as the user login.
  • the server of the source website randomly generates an initial password for the user, and outputs a prompt interface of the initial password, where the prompt interface of the initial password is used to query whether the user changes the initial password;
  • the server of the website receives the selection that the user does not change the initial password, the randomly generated initial password is used as the password corresponding to the user, and when the server of the source website receives the user changes the initial
  • the password changed by the user is used as the password corresponding to the user.
  • the server of the source website stores the registration information of the user and completes the registration.
  • the source website may store information such as the address of the bound third-party website in addition to the user name, password, and other registration information, and the user may bind one or more third-party websites, and the storage form is shown in Table 1. Show:
  • the user can log in using the method provided in Embodiment 2, or use the login method in the prior art, that is, after the user enters the login page of the website, the user name and password at the time of registration are input. And submit to the system, the system verifies the user name and password entered by the user. If the user name and password are the same as the user name and password entered during the user registration, the user is allowed to log in through verification. Otherwise, the verification fails, and the user is not allowed. Log in.
  • the user-authorized personal information is obtained from the third-party website through the interface provided by the third-party website, and the obtained personal information is filled in the corresponding registration information of the registration page, thereby simplifying the user registration process in the website.
  • the amount of information that needs to be input increases the efficiency of registration.
  • the registration information is derived from a third party website with high credibility, the reliability of the registration information is improved.
  • this embodiment provides a method for logging in, including:
  • S21 The server of the source website provides a login page with a verification link of the third party website
  • S23 The server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information
  • S25 The server of the source website acquires the personal information of the user, and completes the login according to the personal information of the user.
  • the server of the source website provides a login page with a verification link of the third party website
  • the user triggers the verification link
  • the user clicks the verification link according to the setting of the source website, when the user registers only one third-party website, he or she can directly jump to the third-party website;
  • the user can select and jump to the third-party website selected by the user; if the user does not use the method of Embodiment 1, the user can manually input the URL of the third-party website. And jump to a third-party website.
  • the server of the third-party website receives the login information input by the user on the third-party website, and verifies the login information. After the server of the third-party website verifies the login information, the server Use The personal information of the household is returned to the server of the source website;
  • step 103 The specific implementation of this step is the same as that of step 103, and details are not described herein again.
  • the source website obtains the personal information authorized by the user from the third-party website through the interface provided by the third-party website.
  • the specific implementation of this step is the same as that of step 104, and details are not described herein.
  • the server of the source website determines, according to the obtained personal information of the user, whether the user is a registered user of the source website;
  • the source website determines whether the user name of the registered user includes the user's email address. If included, the user is a registered user of the source website. If not, the user is not the registered user of the source website.
  • the user's mailbox is registered as the user name. Since the mailboxes of different users are different, the same user name is avoided, so After obtaining the personal information of the user, it is preferable to determine whether the user is a registered user according to the mailbox of the user in the personal information. Of course, it is also possible to determine whether the user is a registered user according to other information in the user's personal information, which is not specifically limited in this embodiment.
  • the login operation is further performed. For details, see step 206.
  • the source website completes the registration using steps 105-107, and executes 206;
  • the user can complete the registration by using the method of Embodiment 1, and become a registered user of the source website, and can also complete the registration by using the method involved in the background technology of the present invention to become the source website.
  • Registered user The method for registering the user is not specifically limited in this embodiment.
  • the source website generates a session key and displays the login status to complete the login.
  • the third party website when the website is logged in, obtains the personal information authorized by the user, and according to the obtained personal information, determines whether the user is a registered user of the source website, and if so, generates a session key and displays the login status. Users do not need to remember multiple passwords. Moreover, if an unregistered user is found, registration can be performed according to a simplified process, a session key is generated, and the login status is displayed, which saves the user's registration time, and the user does not need to memorize multiple passwords.
  • this embodiment provides a registration system, including: a server 300 of a source website and a server 400 of a third party website;
  • the server 300 of the source website includes a first output module for providing a verification link with a third party website Registration page;
  • the server 400 of the third-party website includes a second output module, configured to output a login page of the third-party website when receiving the trigger of the verification link of the third-party website output by the output module by the user ;
  • the server 400 of the third-party website further includes a verification module, configured to receive login information input by the user on the third-party website, and verify the login information;
  • the server 400 of the third-party website further includes a returning module, configured to return the personal information of the user to the server of the source website after the verification module verifies the login information;
  • the server 300 of the source website further includes a registration module for acquiring personal information of the user, and populating the personal information into the registration information of the registration page of the source website.
  • the return module includes:
  • An output unit configured to output personal information filled by the user on the third-party website for the user to select;
  • a receiving unit configured to receive the user selected by the user selected by the server of the source website Personal information;
  • a returning unit configured to return the personal information used by the user to the server of the source website to the server of the source website.
  • the output unit is specifically configured to:
  • the authorization page includes personal information filled by the user on the third-party website, and an option of “allowing the source website to use” and “not allowing the source website to use” corresponding to each of the personal information. For the user to choose.
  • server 300 of the source website further includes:
  • a password generating module configured to: after the registration module fills the personal information into the registration information of the registration page of the source website, randomly generate a password as an initial password of the user to log in to the source website; or receive the password The password filled in by the user is used as the initial password of the user to log in to the source website.
  • the third-party website includes an open platform website that provides an application programming interface API for other websites.
  • the registration page of the verification link with the third-party website includes: an option of a basic registration process.
  • the system provided in this embodiment belongs to the same concept as the source website in the method embodiment 1. The specific implementation process is not described here.
  • the user-authorized personal information is obtained from the third-party website through the interface provided by the third-party website, and the obtained personal information is filled in the corresponding registration information of the registration page, thereby simplifying the user registration process in the website.
  • the amount of information that needs to be input increases the efficiency of registration.
  • the registration information is derived from a third-party website with high credibility, the reliability of the registration information is improved.
  • this embodiment provides a login system, including: a server 500 of a source website and a server 600 of a third party website;
  • the server 500 of the source website includes a first output module for providing a login page with a verification link of a third party website;
  • the server 600 of the third-party website includes a second output module, configured to output a login page of the third-party website when receiving the trigger of the verification link of the third-party website output by the output module by the user ;
  • the server 600 of the third-party website further includes a verification module, configured to receive login information input by the user on the third-party website, and verify the login information;
  • the server 600 of the third-party website further includes a returning module, configured to return the personal information of the user to the server of the source website after the verification module verifies the login information;
  • the server 500 of the source website further includes a login module for acquiring personal information of the user, and completing the login according to the personal information of the user.
  • the server determining module of the source website is configured to determine, according to the user's personal information, whether the user is a registered user of the source website before performing the login; if the user is a registered user of the source website , generate a session key, and display the login status, complete the login, otherwise perform the following steps.
  • the determining module includes:
  • a determining unit configured to determine whether the user name of the registered user is included in the user name of the registered user, and if yes, confirming that the user is a registered user of the source website, otherwise, confirming that the user is not the registration of the source website user.
  • the third-party website includes an open platform website that provides an application programming interface API for other websites.
  • the system provided in this embodiment belongs to the same concept as the source website in the second embodiment of the method, and the specific implementation process is not described here.
  • the third party website when the website is logged in, obtains the personal information authorized by the user, and according to the obtained personal information, determines whether the user is a registered user of the source website, and if so, generates a session key and displays the login status. Users do not need to remember multiple passwords. Moreover, if an unregistered user is found, the user can register according to the simplified process, generate a session key, and display the login status, which saves the user's registration time, and the user does not need to memorize multiple passwords.
  • each module included is only divided according to functional logic, but is not limited to the above-mentioned division, as long as the corresponding function can be implemented;
  • Each The specific names of the functional modules are also for convenience of distinguishing from each other and are not intended to limit the scope of protection of the present invention.
  • a person skilled in the art may understand that all or part of the steps of implementing the above embodiments may be completed by hardware, or may be instructed by a program to execute related hardware, and the program may be stored in a computer readable storage medium.
  • the storage medium mentioned may be a read only memory, a magnetic disk or an optical disk or the like.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Medical Informatics (AREA)
  • Databases & Information Systems (AREA)
  • Computing Systems (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

本发明公开了一种注册或登陆的方法和系统,属于互联网领域。包括:来源网站的服务器提供具有第三方网站的验证链接的注册页面;当第三方网站的服务器接收到用户对第三方网站的验证链接的触发时,输出第三方网站的登陆页面;第三方网站的服务器接收用户在第三方网站上输入的登陆信息,并对登陆信息进行验证;当第三方网站的服务器对登陆信息验证通过后,将用户的个人信息返回给来源网站的服务器;来源网站的服务器获取用户的个人信息,并将个人信息相应地填充到来源网站的注册页面的注册信息中。本发明通过第三方网站进行注册时,简化用户在网站注册流程中需要输入的信息量,提高了注册效率。

Description

注册或登陆的方法和系统
本申请要求于 2011年 8月 3日提交中国专利局、 申请号为 201110220837. 3、发明名称 为 "通过第三网站进行注册或登陆的方法和系统" 的中国专利申请的优先权, 其全部内容 通过引用结合在本申请中。 技术领域
本发明涉及互联网领域, 特别涉说及一种注册或登陆的方法和系统。 背景技术
互联网中有很多网站, 可以为用户提供各种各样的特色服务。 用户在使用网站提供的 书
服务之前, 通常需要在该网站完成注册。
现有的网站注册流程, 具体如下:
用户首先进入网站的注册页面; 然后, 根据注册页面的提示, 用户需要输入一些必填 信息, 通常用 *加以标示, 如: 用户名, 密码, 邮箱等; 进一步, 用户还可以输入一些选填 信息, 如: 真实姓名, 国籍, 出生日期、 兴趣、 爱好等。 当用户确认输入完成后, 网站通 常会发出一封激活邮件到用户输入的邮箱地址, 用户登陆邮箱查收激活邮件, 并打开激活 邮件中提供的激活地址后, 用户就完成了网站注册流程。
采用现有的网站注册方案, 当用户在不同网站注册时, 用户需要多次输入信息资料, 注册流程比较繁琐, 容易让用户产生厌烦心态而最终放弃注册, 导致用户的流失。 同时由 于需要输入的信息较多, 用户通常会省略或胡乱填写选填信息, 造成网站对用户个人信息 的了解不完全, 从而不能更有针对性的为不同的用户提供特色服务。 发明内容
为了简化注册流程, 本发明实施例提供了一种注册的方法和系统, 所述方法包括: 来源网站的服务器提供具有第三方网站的验证链接的注册页面;
当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并对所 述登陆信息进行验证; 当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息返回 给所述来源网站的服务器;
所述来源网站的服务器获取所述用户的个人信息, 并将所述个人信息相应地填充到所 述来源网站的注册页面的注册信息中。
所述第三方网站的服务器将所述用户的个人信息返回给所述来源网站的服务器, 包括: 所述第三方网站的服务器输出所述用户在所述第三方网站上填写的个人信息供所述用 户选择;
所述第三方网站的服务器接收所述用户选择的授予所述来源网站的服务器使用的所述 用户的个人信息;
所述第三方网站的服务器将所述用户选择授予所述来源网站的服务器使用的所述个人 信息返回给所述来源网站的服务器。
所述第三方网站的服务器输出所述用户在所述第三方网站上填写的个人信息供所述用 户选择, 包括:
所述第三方网站的服务器输出授权页面, 所述授权页面包括所述用户在所述第三方网 站上填写的个人信息, 和, 所述每个个人信息对应的 "允许来源网站使用"和 "不允许来 源网站使用" 的选项供所述用户选择。
所述来源网站的服务器将所述个人信息相应地填充到所述来源网站的注册页面的注册 信息中之后, 还包括:
所述来源网站的服务器随机产生一个密码作为用户登录来源网站的初始密码; 或者所 述来源网站服务器将接收到的所述用户填写的密码作为用户登录来源网站的初始密码。
所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。
所述具有第三方网站的验证链接的注册页面包括: 基本的注册流程的选项。
所述系统包括: 来源网站的服务器和第三方网站的服务器;
所述来源网站的服务器包括第一输出模块, 用于提供具有第三方网站的验证链接的注 册页面;
所述第三方网站的服务器包括第二输出模块, 用于当接收到所述用户对所述输出模块 输出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器还包括验证模块, 用于接收所述用户在所述第三方网站上输 入的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器还包括返回模块, 用于当所述验证模块对所述登陆信息验证 通过后, 将所述用户的个人信息返回给所述来源网站的服务器; 所述来源网站的服务器还包括注册模块, 用于获取所述用户的个人信息, 并将所述个 人信息相应地填充到所述来源网站的注册页面的注册信息中。
所述返回模块包括:
输出单元, 用于输出所述用户在所述第三方网站上填写的个人信息供所述用户选择; 接收单元, 用于接收所述用户选择的授予所述来源网站的服务器使用的所述用户的个 人信息;
返回单元, 用于将所述用户选择授予所述来源网站的服务器使用的所述个人信息返回 给所述来源网站的服务器。
所述输出单元具体用于:
输出授权页面, 所述授权页面包括所述用户在所述第三方网站上填写的个人信息, 和, 所述每个个人信息对应的 "允许来源网站使用"和 "不允许来源网站使用" 的选项供所述 用户选择。
所述来源网站的服务器还包括:
密码产生模块, 用于在所述注册模块将所述个人信息相应地填充到所述来源网站的注 册页面的注册信息中之后, 随机产生一个密码作为用户登录来源网站的初始密码; 或者将 接收到的所述用户填写的密码作为用户登录来源网站的初始密码。
所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。
所述具有第三方网站的验证链接的注册页面包括: 基本的注册流程的选项。
本发明实施例提供了一种登陆的方法和系统, 所述方法包括:
来源网站的服务器提供具有第三方网站的验证链接的登陆页面;
当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并对所 述登陆信息进行验证;
当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息返回 给所述来源网站的服务器;
所述来源网站的服务器获取所述用户的个人信息, 并根据所述用户的个人信息完成登 陆。
该方法在执行之前还包括:
所述来源网站的服务器根据用户的个人信息, 判断所述用户是否是所述来源网站的注 册用户; 如果所述用户是所述来源网站的注册用户, 则所述来源网站的服务器生成会话密钥, 并显示登陆状态, 完成登陆;
否则, 直接执行下面的步骤。
所述来源网站的服务器根据用户的个人信息, 判断所述用户是否是所述来源网站的注 册用户, 包括:
所述来源网站的服务器判断注册用户的用户名中是否包括所述用户的邮箱, 如果是, 则所述来源网站的服务器确认所述用户是所述来源网站的注册用户, 否则, 所述来源网站 的服务器确认所述用户不是所述来源网站的注册用户。
所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。
所述系统包括: 来源网站的服务器和第三方网站的服务器;
所述来源网站的服务器包括第一输出模块, 用于提供具有第三方网站的验证链接的登 陆页面;
所述第三方网站的服务器包括第二输出模块, 用于当接收到所述用户对所述输出模块 输出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器还包括验证模块, 用于接收所述用户在所述第三方网站上输 入的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器还包括返回模块, 用于当所述验证模块对所述登陆信息验证 通过后, 将所述用户的个人信息返回给所述来源网站的服务器;
所述来源网站的服务器还包括登陆模块, 用于获取所述用户的个人信息, 并根据所述 用户的个人信息完成登陆。
所述来源网站的服务器判断模块, 用于在执行登陆之前根据用户的个人信息, 判断所 述用户是否是所述来源网站的注册用户; 如果所述用户是所述来源网站的注册用户, 则生 成会话密钥, 并显示登陆状态, 完成登陆, 否则执行下面的步骤。
所述判断模块包括:
判断单元, 用于判断注册用户的用户名中是否包括所述用户的邮箱, 如果是, 则确认 所述用户是所述来源网站的注册用户, 否则, 确认所述用户不是所述来源网站的注册用户。
所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。
本发明实施例提供的技术方案带来的有益效果是:
在网站注册时, 通过第三方网站提供的接口, 从第三方网站获取用户已授权的个人信 息, 将获取的个人信息填充到注册页面相应的注册信息中, 简化用户在网站注册流程中需 要输入的信息量, 提高了注册效率。 并且, 由于注册信息来源于公信力较高的第三方网站, 因此, 提高了注册信息的可靠性。
在网站登陆时, 通过第三方网站获取用户已授权的个人信息, 根据获取的个人信息, 判断用户是否是来源网站的注册用户, 如果是, 则生成会话密钥, 并显示登陆状态, 用户 无须记忆多个密码。 附图说明
为了更清楚地说明本发明实施例中的技术方案, 下面将对实施例描述中所需要使用的 附图作简单地介绍, 显而易见地, 下面描述中的附图仅仅是本发明的一些实施例, 对于本 领域普通技术人员来讲, 在不付出创造性劳动的前提下, 还可以根据这些附图获得其他的 附图。
图 1是本发明实施例 1中提供的注册的方法流程图;
图 2是本发明实施例 1中提供的注册的方法流程图;
图 3是本发明实施例 1中提供的授权页面示意图;
图 4是本发明实施例 2中提供的登陆的方法流程图;
图 5是本发明实施例 2中提供的登陆的方法流程图;
图 6是本发明实施例 3中提供的注册的系统示意图;
图 7是本发明实施例 4中提供的登陆的系统示意图。 具体实施方式
为使本发明的目的、 技术方案和优点更加清楚, 下面将结合附图对本发明实施方式作 进一步地详细描述。
实施例 1
参见图 1, 本实施例提供了一种注册的方法, 包括:
S11 : 来源网站的服务器提供具有第三方网站的验证链接的注册页面;
S12: 当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发 时, 输出所述第三方网站的登陆页面;
S13: 所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并 对所述登陆信息进行验证;
S14: 当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息 返回给所述来源网站的服务器;
S15: 所述来源网站的服务器获取所述用户的个人信息, 并将所述个人信息相应地填充 到所述来源网站的注册页面的注册信息中。
下面结合具体实例介绍上述方法, 参见图 2:
101: 来源网站的服务器提供具有第三方网站的验证链接的注册页面;
本实施例中, 在来源网站的注册页面上设置第三方网站的验证链接, 以拉取第三方网 站上的用户的个人信息, 从而简化注册流程。 其中, 来源网站是指一些门户网站, 用户可 以在来源网站上进行注册或是登陆, 例如, 视频网站或是购物网站等, 对此本实施例不做 具体限定。 第三方网站是指不是由来源网站的公司架设的, 而是由另外的公司或个人, 因 个人需要或其它原因, 而架设的, 用于增强来源网站的功能。 所述第三方网站包括为其它 网站提供应用编程接口 API的开放平台网站。 本实施例中, 第三方网站为开放平台, 为来 源网站提供了 API,授权来源网站通过该接口获取用户的部分信息资料。第三方网站通常具 有较高的公信力, 其自身对于注册账号具有很高的安全性要求, 如果用户在第三方网站注 册账号,其邮箱地址必须是真实有效的。例如,第三方网站可以是 Google、 Facebook, Twitter 等, 本实施例并不限定具体的第三方网站。
本实施例中, 用户可以通过终端访问来源网站, 其中终端包括 PC机、 手机, 或是其它 手持设备等, 对此本实施例不做具体限定。 具体的执行过程中, 用户打开来源网站的链接 地址, 来源网站的服务器向终端输出访问页面供用户浏览。 其中, 当用户访问来源网站时, 来源网站的服务器可以直接输出具有第三方网站的验证链接的注册页面, 使用户在网站上 进行注册后才可以继续访问, 也可以在用户点击注册请求时输出具有第三方网站的验证链 接的注册页面, 具体执行方式本实施例不做具体限定。
本实施例中, 在注册页面上设置多个第三方网站的验证链接, 供用户选择, 用户可以 任意选择一个第三方网站帮助注册。 其中, 使用第三方网站进行账号验证的验证链接, 可 以以按钮等方式显示, 即在来源网站的注册页面上设置一个第三方验证链接的按钮。 本实 施例并不限定验证链接的具体显示形式。
可选地, 也可以不直接在来源网站上设置第三方网站的验证链接, 而是直接设置一个 验证链接按钮, 当用户点击该验证链接按钮之后, 输出多个第三方网站的验证链接, 和 /或, 提供一个输入窗口, 用户可以在输入窗口上面手动输入第三方网站的链接地址。
当然本实施例中的注册页面上还可以包括基本的注册流程的选项, 用户选择该选项后, 输出现有的注册页面, 用户可以根据现有的注册方式进行注册。
102: 当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发 时, 输出所述第三方网站的登陆页面;
本步骤中, 根据来源网站的设置, 用户触发该验证链接之后, 输出的不同界面, 用户 可以在界面上选择第三方网站或手动输入第三方网站的网址, 当所述第三方网站的服务器 接收到所述用户对所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面。
103: 所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并 对所述登陆信息进行验证, 当所述第三方网站的服务器对所述登陆信息验证通过后, 将所 述用户的个人信息返回给所述来源网站的服务器;
具体的, 第三方网站的服务器输出登陆页面后, 用户在第三方网站上输入登陆信息, 即用户在第三方网站上的第三方账号, 第三方网站的服务器对该登陆信息进行验证, 并在 验证通过后, 将该用户的个人信息返回给来源网站的服务器。
其中, 优选地, 第三方网站的服务器将所述用户的个人信息返回给所述来源网站的服 务器, 包括:
所述第三方网站的服务器输出所述用户在所述第三方网站上填写的个人信息供所述用 户选择;
所述第三方网站的服务器接收所述用户选择的授予所述来源网站的服务器使用的所述 用户的个人信息;
所述第三方网站的服务器将所述用户选择授予所述来源网站的服务器使用的所述个人 信息返回给所述来源网站的服务器。
本步骤中, 第三方网站的服务器对用户的登陆信息验证通过后, 会显示本地存储的用 户的个人信息, 供用户选择是否授权给来源网站使用。 如图 3展示了以 Facebook为例的授 权页面, 其中, 在授权页面上, 还可以设置 "允许来源网站使用 "和 "不允许来源网站使 用"这两个选项, 用户可以选择是否允许来源网站使用第三方网站上的全部或是部分个人 资料信息。 所述第三方网站的服务器输出所述用户在所述第三方网站上填写的个人信息供 所述用户选择, 包括: 所述第三方网站的服务器输出授权页面, 所述授权页面包括所述用 户在所述第三方网站上填写的个人信息, 和, 所述个人信息对应的 "允许来源网站使用" 和 "不允许来源网站使用" 的选项供所述用户选择。 当用户授权来源网站使用第三方网站 上的部分个人资料信息后, 第三方网站会返回相应的验证信息给来源网站。 值得说明的是, 在第三方网站的服务器在对用户的验证通过后, 可以直接返回用户的个人信息给来源网站 的服务器, 但是为了用户的个人信息的更具有安全保证, 不直接将用户的个人信息返回给 来源网站的服务器, 而是将授权来源网站使用的个人信息的验证信息返回给来源网站的服 务器, 使来源网站的服务器进一步根据该验证信息获取用户的个人信息。
104: 来源网站通过第三方网站的服务器提供的接口, 从第三方网站的服务器获取用户 的个人信息; 具体的, 来源网站的服务器可以直接接收第三方网站的服务器返回的用户的个人信息, 也可以依据第三方网站的服务器返回的验证信息, 通过第三方网站的服务器提供的接口, 从第三方网站的服务器获取用户已授权的个人信息。 具体实施方式本实施例并不做具体限 定。
其中, 已授权的个人信息包括用户的邮箱等信息, 还可以包括用户的年龄、 性别、 地 域、 职业等信息中的一个或多个, 对此本实施例不做具体限定。
105: 来源网站的服务器将所述个人信息相应地填充到所述来源网站的注册页面的注册 信息中;
本实施例中, 根据在注册页面中需要填写的内容, 来源网站的服务器将获取的用户的 个人信息相应地填充到注册信息中, 如年龄, 性别, 身份证, 邮箱等相应地填充到对应的 注册信息中。 其中, 来源网站可以将获取的个人信息中的邮箱作为用户名, 填充到注册信 息中。
106: 来源网站的服务器随机产生一个密码, 询问用户是否更改密码;
本步骤中, 为了减少用户的输入操作, 不需要用户主动设置密码, 而是在根据从第三 方网站的服务器上获取的个人信息进行注册时, 所述来源网站的服务器随机产生一个密码 作为用户登录来源网站的初始密码; 或者所述来源网站服务器将接收到的所述用户填写的 密码作为用户登录来源网站的初始密码。 具体的, 所述来源网站的服务器为用户随机生成 一个初始密码, 并输出所述初始密码的提示界面, 所述初始密码的提示界面用于询问所述 用户是否更改该初始密码; 当所述来源网站的服务器接收到所述用户不更改所述初始密码 的选择时, 将所述随机产生的初始密码作为所述用户对应的密码, 当所述来源网站的服务 器接收到所述用户更改所述初始密码的选择时, 将所述用户更改后的密码作为所述用户对 应的密码。 对此本实施例不做具体限定。
106a: 如果不更改密码, 将随机产生的密码作为该用户对应的密码, 执行 107;
106b: 如果更改密码, 将更改后的密码作为该用户对应的密码, 执行 107;
107: 来源网站的服务器存储用户的注册信息, 完成注册。
其中, 来源网站除了存储用户名、 密码、 以及其他注册信息之外, 还可以存储绑定的 第三方网站的地址等信息, 用户可以绑定一个或多个第三方网站, 存储形式参见表 1所示:
表 1
Figure imgf000010_0001
进一步的, 完成注册之后, 用户可以使用实施例 2 中提供的方法进行登陆, 也可以使 用现有技术中的登陆方法, 即用户进入网站的登陆页面后, 输入注册时的用户名和密码, 并提交给系统, 系统对用户输入的用户名和密码进行验证, 如果该用户名和密码与用户注 册时输入的用户名和密码一致, 则通过验证, 允许用户进行登陆, 否则, 验证不通过, 不 允许用户进行登陆。
本实施例在网站注册时, 通过第三方网站提供的接口, 从第三方网站获取用户已授权 的个人信息, 将获取的个人信息填充到注册页面相应的注册信息中, 简化用户在网站注册 流程中需要输入的信息量, 提高了注册效率。 并且, 由于注册信息来源于公信力较高的第 三方网站, 因此, 提高了注册信息的可靠性。 实施例 2
参见图 4, 本实施例提供了一种登陆的方法, 包括:
S21 : 来源网站的服务器提供具有第三方网站的验证链接的登陆页面;
S22: 当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发 时, 输出所述第三方网站的登陆页面;
S23: 所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并 对所述登陆信息进行验证;
S24: 当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息 返回给所述来源网站的服务器;
S25: 所述来源网站的服务器获取所述用户的个人信息, 并根据所述用户的个人信息完 成登陆。
下面结合具体实例介绍上述方法, 参见图 5:
201: 来源网站的服务器提供具有第三方网站的验证链接的登陆页面;
其中, 验证链接的设置可以参考实施例 1的描述, 这里不再赘述。
202: 当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发 时, 输出所述第三方网站的登陆页面;
进一步的, 用户触发该验证链接之后, 如用户点击该验证链接之后, 根据来源网站的 设置, 当用户注册时只绑定了一个第三方网站时, 可以直接跳转到该第三方网站; 当用户 注册时绑定了多个第三方网站时, 可以让用户从中选择, 并跳转到用户选择的第三方网站; 如果用户没有使用实施例 1 的方法进行注册, 用户可以手动输入第三方网站的网址, 并跳 转到第三方网站。
203: 第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并对所 述登陆信息进行验证, 当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用 户的个人信息返回给所述来源网站的服务器;
本步骤的具体实现与步骤 103相同, 这里不再赘述。
204:来源网站通过第三方网站提供的接口,从第三方网站获取用户已授权的个人信息; 本步骤的具体实现与步骤 104相同, 这里不再赘述。
205: 来源网站的服务器根据获取的用户的个人信息, 判断该用户是否是来源网站的注 册用户;
具体的, 来源网站判断注册用户的用户名中是否包括用户的邮箱, 如果包括, 则表明 该用户是来源网站的注册用户, 如果不包括, 则表明该用户不是来源网站的注册用户。
本实施例中, 优选地, 用户在来源网站上进行注册时将用户的邮箱作为用户名进行注 册, 由于不同的用户的邮箱不一样, 这样就避免了同一个用户名用户相同的情况, 所以在 获取到用户的个人信息后, 优选地, 根据个人信息中的用户的邮箱来判断该用户是否为注 册用户。 当然, 也可以根据用户个人信息中的其它信息来判断该用户是否为注册用户, 对 此本实施例不做具体限定。
205a: 如果该用户是来源网站的注册用户, 则执行 206;
本实施例中, 如果该用户为注册用户, 则进一步进行登陆操作, 详见步骤 206。
205b: 如果该用户不是来源网站的注册用户, 则来源网站使用步骤 105-107完成注册, 并执行 206;
其中, 如果该用户不是来源网站的注册用户, 则该用户可以使用实施例 1 的方法完成 注册, 成为来源网站的注册用户, 也可以使用本发明背景技术部分所涉及的方法完成注册, 成为来源网站的注册用户。 对于用户使用哪种方法进行注册本实施例不做具体限定。
206: 来源网站生成会话密钥, 并显示登陆状态, 完成登陆。
本实施例在网站登陆时, 通过第三方网站获取用户已授权的个人信息, 根据获取的个 人信息, 判断用户是否是来源网站的注册用户, 如果是, 则生成会话密钥, 并显示登陆状 态, 用户无须记忆多个密码。 并且, 如果发现未注册的用户, 则可以按照简化流程进行注 册, 再生成会话密钥, 并显示登陆状态, 节省了用户的注册时间, 并且用户无须记忆多个 密码。 实施例 3
参见图 6, 本实施例提供了一种注册的系统, 包括: 来源网站的服务器 300和第三方网 站的服务器 400;
所述来源网站的服务器 300包括第一输出模块, 用于提供具有第三方网站的验证链接 的注册页面;
所述第三方网站的服务器 400包括第二输出模块, 用于当接收到所述用户对所述输出 模块输出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器 400还包括验证模块, 用于接收所述用户在所述第三方网站 上输入的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器 400还包括返回模块, 用于当所述验证模块对所述登陆信息 验证通过后, 将所述用户的个人信息返回给所述来源网站的服务器;
所述来源网站的服务器 300还包括注册模块, 用于获取所述用户的个人信息, 并将所 述个人信息相应地填充到所述来源网站的注册页面的注册信息中。
其中, 所述返回模块包括:
输出单元, 用于输出所述用户在所述第三方网站上填写的个人信息供所述用户选择; 接收单元, 用于接收所述用户选择的授予所述来源网站的服务器使用的所述用户的个 人信息;
返回单元, 用于将所述用户选择授予所述来源网站的服务器使用的所述个人信息返回 给所述来源网站的服务器。
所述输出单元具体用于:
输出授权页面, 所述授权页面包括所述用户在所述第三方网站上填写的个人信息, 和, 所述每个个人信息对应的 "允许来源网站使用"和 "不允许来源网站使用" 的选项供所述 用户选择。
进一步地, 所述来源网站的服务器 300还包括:
密码产生模块, 用于在所述注册模块将所述个人信息相应地填充到所述来源网站的注 册页面的注册信息中之后, 随机产生一个密码作为用户登录来源网站的初始密码; 或者将 接收到的所述用户填写的密码作为用户登录来源网站的初始密码。
本实施例中, 所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。 可选地, 所述具有第三方网站的验证链接的注册页面包括: 基本的注册流程的选项。 本实施例提供的系统与方法实施例 1 中的来源网站属于同一构思, 其具体实现过程详 见方法这里不再赘述。
本实施例在网站注册时, 通过第三方网站提供的接口, 从第三方网站获取用户已授权 的个人信息, 将获取的个人信息填充到注册页面相应的注册信息中, 简化用户在网站注册 流程中需要输入的信息量, 提高了注册效率。 并且, 由于注册信息来源于公信力较高的第 三方网站, 因此, 提高了注册信息的可靠性。 实施例 4
参见图 7, 本实施例提供了一种登陆的系统, 包括: 来源网站的服务器 500和第三方网 站的服务器 600;
所述来源网站的服务器 500包括第一输出模块, 用于提供具有第三方网站的验证链接 的登陆页面;
所述第三方网站的服务器 600包括第二输出模块, 用于当接收到所述用户对所述输出 模块输出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器 600还包括验证模块, 用于接收所述用户在所述第三方网站 上输入的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器 600还包括返回模块, 用于当所述验证模块对所述登陆信息 验证通过后, 将所述用户的个人信息返回给所述来源网站的服务器;
所述来源网站的服务器 500还包括登陆模块, 用于获取所述用户的个人信息, 并根据 所述用户的个人信息完成登陆。
进一步地, 所述来源网站的服务器判断模块, 用于在执行登陆之前根据用户的个人信 息, 判断所述用户是否是所述来源网站的注册用户; 如果所述用户是所述来源网站的注册 用户, 生成会话密钥, 并显示登陆状态, 完成登陆, 否则执行下面的步骤。
进一步地, 所述判断模块包括:
判断单元, 用于判断注册用户的用户名中是否包括所述用户的邮箱, 如果是, 则确认 所述用户是所述来源网站的注册用户, 否则, 确认所述用户不是所述来源网站的注册用户。
本实施例中, 所述第三方网站包括为其它网站提供应用编程接口 API的开放平台网站。 本实施例提供的系统与方法实施例 2 中的来源网站属于同一构思, 其具体实现过程详 见方法这里不再赘述。
本实施例在网站登陆时, 通过第三方网站获取用户已授权的个人信息, 根据获取的个 人信息, 判断用户是否是来源网站的注册用户, 如果是, 则生成会话密钥, 并显示登陆状 态, 用户无须记忆多个密码。 并且, 如果发现未注册的用户, 则可以按照简化流程进行注 册, 再生成会话密钥, 并显示登陆状态, 节省了用户的注册时间, 并且用户无须记忆多个 密码。 值得注意的是, 上述注册的或登陆的系统的实施例中, 所包括的各个模块只是按照功 能逻辑进行划分的, 但并不局限于上述的划分, 只要能够实现相应的功能即可; 另外, 各 功能模块的具体名称也只是为了便于相互区分, 并不用于限制本发明的保护范围。 本领域普通技术人员可以理解实现上述实施例的全部或部分步骤可以通过硬件来完 成, 也可以通过程序来指令相关的硬件完成, 所述的程序可以存储于一种计算机可读存储 介质中, 上述提到的存储介质可以是只读存储器, 磁盘或光盘等。
以上所述仅为本发明的较佳实施例, 并不用以限制本发明, 凡在本发明的精神和原则 之内, 所作的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。

Claims

权 利 要 求 书
1、 一种注册的方法, 其特征在于, 所述方法包括:
来源网站的服务器提供具有第三方网站的验证链接的注册页面;
当所述第三方网站的服务器接收到对所述第三方网站的验证链接的触发时, 输出所述第 三方网站的登陆页面;
所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并对所述 登陆信息进行验证;
当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息返回给 所述来源网站的服务器;
所述来源网站的服务器获取所述用户的个人信息, 并将所述个人信息相应地填充到所述 来源网站的注册页面的注册信息中。
2、根据权利要求 1所述的方法, 其特征在于, 所述第三方网站的服务器将所述用户的个 人信息返回给所述来源网站的服务器, 包括:
所述第三方网站的服务器输出所述用户在所述第三方网站上填写的个人信息供所述用户 选择;
所述第三方网站的服务器接收所述用户选择的授予所述来源网站的服务器使用的所述用 户的个人信息;
所述第三方网站的服务器将所述用户选择授予所述来源网站的服务器使用的所述个人信 息返回给所述来源网站的服务器。
3、根据权利要求 2所述的方法, 其特征在于, 所述第三方网站的服务器输出所述用户在 所述第三方网站上填写的个人信息供所述用户选择, 包括:
所述第三方网站的服务器输出授权页面, 所述授权页面包括所述用户在所述第三方网站 上填写的个人信息, 和, 所述每个个人信息对应的 "允许来源网站使用 "和 "不允许来源网 站使用" 的选项供所述用户选择。
4、 根据权利要求 1-3任一项所述的方法, 其特征在于, 所述来源网站的服务器将所述个 人信息相应地填充到所述来源网站的注册页面的注册信息中之后, 还包括: 所述来源网站的服务器随机产生一个密码作为用户登录来源网站的初始密码; 或者所述 来源网站服务器将接收到的所述用户填写的密码作为用户登录来源网站的初始密码。
5、 根据权利要求 1-4任一项所述的方法, 其特征在于, 所述第三方网站包括为其它网站 提供应用编程接口 API的开放平台网站。
6、 根据权利要求 1-5任一项所述的方法, 其特征在于, 所述具有第三方网站的验证链接 的注册页面包括: 基本的注册流程的选项。
7、 一种登陆的方法, 其特征在于, 所述方法包括:
来源网站的服务器提供具有第三方网站的验证链接的登陆页面;
当所述第三方网站的服务器接收到所述用户对所述第三方网站的验证链接的触发时, 输 出所述第三方网站的登陆页面;
所述第三方网站的服务器接收所述用户在所述第三方网站上输入的登陆信息, 并对所述 登陆信息进行验证;
当所述第三方网站的服务器对所述登陆信息验证通过后, 将所述用户的个人信息返回给 所述来源网站的服务器;
所述来源网站的服务器根据接收到的用户的个人信息完成登陆。
8、 根据权利要求 7所述的方法, 其特征在于, 该方法在执行之前还包括:
所述来源网站的服务器根据用户的个人信息, 判断所述用户是否是所述来源网站的注册 用户;
如果所述用户是所述来源网站的注册用户, 则所述来源网站的服务器生成会话密钥, 并 显示登陆状态, 完成登陆;
否则, 直接执行下面的步骤。
9、根据权利要求 8所述的方法, 其特征在于, 所述来源网站的服务器根据用户的个人信 息, 判断所述用户是否是所述来源网站的注册用户, 包括:
所述来源网站的服务器判断注册用户的用户名中是否包括所述用户的邮箱, 如果是, 则 所述来源网站的服务器确认所述用户是所述来源网站的注册用户, 否则, 所述来源网站的服 务器确认所述用户不是所述来源网站的注册用户。
10、 根据权利要求 7-9任一项所述的方法, 其特征在于, 所述第三方网站包括为其它网 站提供应用编程接口 API的开放平台网站。
11、 一种注册的系统, 其特征在于, 所述系统包括: 来源网站的服务器和第三方网站的 服务器;
所述来源网站的服务器包括第一输出模块, 用于提供具有第三方网站的验证链接的注册 页面;
所述第三方网站的服务器包括第二输出模块, 用于当所述第三方网站的服务器接收到所 述用户对所述输出模块输出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的 登陆页面;
所述第三方网站的服务器还包括验证模块, 用于接收所述用户在所述第三方网站上输入 的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器还包括返回模块, 用于当所述验证模块对所述登陆信息验证通 过后, 将所述用户的个人信息返回给所述来源网站的服务器;
所述来源网站的服务器还包括注册模块, 用于获取所述用户的个人信息, 并将所述个人 信息相应地填充到所述来源网站的注册页面的注册信息中。
12、 根据权利要求 11所述的系统, 其特征在于, 所述返回模块包括:
输出单元, 用于输出所述用户在所述第三方网站上填写的个人信息供所述用户选择; 接收单元, 用于接收所述用户选择的授予所述来源网站的服务器使用的所述用户的个人 信息;
返回单元, 用于将所述用户选择授予所述来源网站的服务器使用的所述个人信息返回给 所述来源网站的服务器。
13、 根据权利要求 12所述的系统, 其特征在于, 所述输出单元具体用于:
输出授权页面, 所述授权页面包括所述用户在所述第三方网站上填写的个人信息, 和, 所述每个个人信息对应的 "允许来源网站使用"和 "不允许来源网站使用" 的选项供所述用 户选择。
14、 根据权利要求 11-13任一项所述的系统, 其特征在于, 所述来源网站的服务器还包 括:
密码产生模块, 用于在所述注册模块将所述个人信息相应地填充到所述来源网站的注册 页面的注册信息中之后, 随机产生一个密码作为用户登录来源网站的初始密码; 或者将接收 到的所述用户填写的密码作为用户登录来源网站的初始密码。
15、 根据权利要求 11-14任一项所述的系统, 其特征在于, 所述第三方网站包括为其它 网站提供应用编程接口 API的开放平台网站。
16、 根据权利要求 11-15任一项所述的系统, 其特征在于, 所述具有第三方网站的验证 链接的注册页面包括: 基本的注册流程的选项。
17、 一种登陆的系统, 其特征在于, 所述系统包括: 来源网站的服务器和第三方网站的 服务器;
所述来源网站的服务器包括第一输出模块, 用于提供具有第三方网站的验证链接的登陆 页面;
所述第三方网站的服务器包括第二输出模块, 用于当接收到所述用户对所述输出模块输 出的所述第三方网站的验证链接的触发时, 输出所述第三方网站的登陆页面;
所述第三方网站的服务器还包括验证模块, 用于接收所述用户在所述第三方网站上输入 的登陆信息, 并对所述登陆信息进行验证;
所述第三方网站的服务器还包括返回模块, 用于当所述验证模块对所述登陆信息验证通 过后, 将所述用户的个人信息返回给所述来源网站的服务器;
所述来源网站的服务器还包括登陆模块, 用于获取所述用户的个人信息, 并根据所述用 户的个人信息完成登陆。
18、 根据权利要求 17所述的系统, 其特征在于,
所述来源网站的服务器判断模块, 用于在执行登陆之前根据用户的个人信息, 判断所述 用户是否是所述来源网站的注册用户; 如果所述用户是所述来源网站的注册用户, 则生成会 话密钥, 并显示登陆状态, 完成登陆, 否则执行下面的步骤。
19、 根据权利要求 18所述的系统, 其特征在于, 所述判断模块包括:
判断单元, 用于判断注册用户的用户名中是否包括所述用户的邮箱, 如果是, 则确认所 述用户是所述来源网站的注册用户, 否则, 确认所述用户不是所述来源网站的注册用户。
20、 根据权利要求 17-19任一项所述的系统, 其特征在于, 所述第三方网站包括为其它 网站提供应用编程接口 API的开放平台网站。
PCT/CN2012/079020 2011-08-03 2012-07-23 注册或登陆的方法和系统 WO2013017029A1 (zh)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US14/161,929 US20140136704A1 (en) 2011-08-03 2014-01-23 Method and system for registration or login

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110220837.3 2011-08-03
CN2011102208373A CN102916933A (zh) 2011-08-03 2011-08-03 通过第三方网站进行注册或登陆的方法和系统

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US14/161,929 Continuation US20140136704A1 (en) 2011-08-03 2014-01-23 Method and system for registration or login

Publications (1)

Publication Number Publication Date
WO2013017029A1 true WO2013017029A1 (zh) 2013-02-07

Family

ID=47615167

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/079020 WO2013017029A1 (zh) 2011-08-03 2012-07-23 注册或登陆的方法和系统

Country Status (3)

Country Link
US (1) US20140136704A1 (zh)
CN (1) CN102916933A (zh)
WO (1) WO2013017029A1 (zh)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104518876A (zh) * 2013-09-29 2015-04-15 腾讯科技(深圳)有限公司 服务登录方法及装置
CN110855446A (zh) * 2019-11-27 2020-02-28 杭州迪普科技股份有限公司 一种密码验证方法及装置
CN111651777A (zh) * 2020-05-23 2020-09-11 浙江台谊消防设备有限公司 一种应用于消防监控的用户管理系统及其应用方法
US11494767B1 (en) * 2019-05-21 2022-11-08 United Services Automobile Association (Usaa) Electronic transaction verification system

Families Citing this family (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104065621B (zh) * 2013-03-21 2018-10-30 腾讯科技(深圳)有限公司 一种第三方服务的身份验证方法、客户端和系统
CN103268233A (zh) * 2013-06-05 2013-08-28 四目信息科技(上海)有限公司 计算机系统中平台系统帐号和第三方系统帐号合并的方法
CN104253686B (zh) * 2013-06-25 2017-12-29 华为技术有限公司 账号登录的方法、设备及系统
CN104468480B (zh) * 2013-09-18 2018-05-11 北京齐尔布莱特科技有限公司 通过通讯标识修改已发布车源信息的方法
CN104660560B (zh) * 2013-11-20 2018-09-18 腾讯科技(北京)有限公司 授权统计信息的上报方法和装置
CN103607601A (zh) * 2013-11-22 2014-02-26 乐视致新电子科技(天津)有限公司 协助第三方应用进行帐号注册的方法及装置
CN104331407A (zh) * 2013-12-26 2015-02-04 乐视网信息技术(北京)股份有限公司 一种多媒体文件信息推荐方法及装置
CN105101196B (zh) 2014-05-06 2018-11-02 阿里巴巴集团控股有限公司 一种用户账户管理方法及装置
CN104753943B (zh) * 2015-03-30 2016-04-20 努比亚技术有限公司 第三方账号的登录控制方法及装置
CN104715369B (zh) * 2015-04-02 2017-11-03 江苏金智教育信息股份有限公司 一种防钓鱼的第三方交易的方法、装置和系统
CN104835034A (zh) * 2015-06-07 2015-08-12 张忠义 可实现资金自动划转的注册与划转方法
CN105701694A (zh) * 2015-12-31 2016-06-22 广州东海网络科技有限公司 创建电子商店的方法及创建电子商店的系统
CN105763533B (zh) * 2016-01-15 2019-02-05 网际傲游(北京)科技有限公司 一种使用伪装邮箱注册app或登陆网站的方法
CN106446666B (zh) * 2016-09-18 2019-03-08 珠海格力电器股份有限公司 一种权限配置方法及装置
CN106447444A (zh) * 2016-09-25 2017-02-22 安徽辛普信息科技有限公司 一种电商系统操作方法
CN106878298B (zh) * 2017-02-08 2019-11-29 飞天诚信科技股份有限公司 一种认证设备与网站的集成方法、系统及装置
CN109948074A (zh) * 2017-09-25 2019-06-28 北京国双科技有限公司 网站数据对接方法、装置、存储介质、处理器及电子设备
CN107508835B (zh) * 2017-09-25 2020-07-10 咪咕文化科技有限公司 一种账户的验证方法、装置及计算机可读存储介质
CN107613015A (zh) * 2017-10-11 2018-01-19 成都知道创宇信息技术有限公司 一种网站注册用户首访来源获取方法
US11651095B2 (en) * 2018-01-23 2023-05-16 Equifax Inc. Data access control system accessible from third-party web server
CN108809931A (zh) * 2018-04-09 2018-11-13 天津五八到家科技有限公司 司机注册方法、司机终端及服务端
CN109120596B (zh) * 2018-07-18 2021-06-11 河北中科恒运软件科技股份有限公司 一种多单点登陆集成方法
CN109063148A (zh) * 2018-08-07 2018-12-21 黑龙江阳光惠远信息技术有限公司 一种基于第三方平台的相关专利推荐系统及推荐方法
TWI780218B (zh) * 2018-09-04 2022-10-11 林淑貞 結合社群通訊程式的房地產互動方法及其裝置
CN109905398B (zh) * 2019-03-13 2020-07-24 北京字节跳动网络技术有限公司 手机号换绑验证方法、装置、设备及存储介质
CN110336840B (zh) * 2019-08-12 2022-05-13 思必驰科技股份有限公司 用于语音对话平台的第三方账号注册方法及系统
CN111352552B (zh) * 2020-03-30 2021-09-10 北京达佳互联信息技术有限公司 一种应用登录方法、装置、电子设备及存储介质
CN111614676B (zh) * 2020-05-21 2022-03-22 深圳追一科技有限公司 一种登录方法、装置、设备、介质
CN114943592B (zh) * 2022-05-16 2024-03-26 山东浪潮爱购云链信息科技有限公司 一种企业快速注册的方法、设备及存储介质

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5790785A (en) * 1995-12-11 1998-08-04 Customer Communications Group, Inc. World Wide Web registration information processing system
CN1708162A (zh) * 2004-06-04 2005-12-14 上海环达计算机科技有限公司 移动设备的身份判别方法及系统
CN101262377A (zh) * 2008-04-25 2008-09-10 北京工业大学 用户身份信息整合管理架构及其方法
CN101977194A (zh) * 2010-10-29 2011-02-16 赵俊平 一种第三方验证码系统及第三方验证码提供方法

Family Cites Families (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20080015998A1 (en) * 1998-10-01 2008-01-17 Feyzi Celik Method and Apparatus for Storing and Retrieving Business Contact Information in a Computer System
US6496855B1 (en) * 1999-03-02 2002-12-17 America Online, Inc. Web site registration proxy system
US20020062342A1 (en) * 2000-11-22 2002-05-23 Sidles Charles S. Method and system for completing forms on wide area networks such as the internet
US8484333B2 (en) * 2001-08-22 2013-07-09 Aol Inc. Single universal authentication system for internet services
US7610390B2 (en) * 2001-12-04 2009-10-27 Sun Microsystems, Inc. Distributed network identity
KR100989487B1 (ko) * 2002-05-24 2010-10-22 텔레폰악티에볼라겟엘엠에릭슨(펍) 서비스 제공자의 서비스에 대한 사용자를 인증하는 방법
US8590027B2 (en) * 2007-02-05 2013-11-19 Red Hat, Inc. Secure authentication in browser redirection authentication schemes
US20090171760A1 (en) * 2007-12-31 2009-07-02 Nokia Corporation Systems and Methods for Facilitating Electronic Commerce
US20090300097A1 (en) * 2008-05-29 2009-12-03 Ebay Inc. Systems and methods for facilitating clientless form-filling over a network
US8910256B2 (en) * 2008-08-08 2014-12-09 Microsoft Corporation Form filling with digital identities, and automatic password generation
EP2338262B1 (en) * 2008-10-06 2012-12-12 Nokia Siemens Networks OY Service provider access
US20100185871A1 (en) * 2009-01-15 2010-07-22 Authentiverse, Inc. System and method to provide secure access to personal information
US20110022450A1 (en) * 2009-07-21 2011-01-27 Rivalroo, Inc. Comptuer network chat system for display of text and video in a rivalry context
US8914342B2 (en) * 2009-08-12 2014-12-16 Yahoo! Inc. Personal data platform
US20110173105A1 (en) * 2010-01-08 2011-07-14 Nokia Corporation Utilizing AAA/HLR infrastructure for Web-SSO service charging
US9710765B2 (en) * 2011-05-26 2017-07-18 Facebook, Inc. Browser with integrated privacy controls and dashboard for social network data
US9043886B2 (en) * 2011-09-29 2015-05-26 Oracle International Corporation Relying party platform/framework for access management infrastructures
US8844013B2 (en) * 2011-10-04 2014-09-23 Salesforce.Com, Inc. Providing third party authentication in an on-demand service environment
US20130144738A1 (en) * 2011-12-01 2013-06-06 Spenzi, Inc. Gifting and Sharing Using SMS Messages for Shared Coupon/Gift-Card Auto-Redemption and Multi-Source Payment from Buyer's Mobile Phone
US9203829B1 (en) * 2012-07-18 2015-12-01 Google Inc. Unified user login

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5790785A (en) * 1995-12-11 1998-08-04 Customer Communications Group, Inc. World Wide Web registration information processing system
CN1708162A (zh) * 2004-06-04 2005-12-14 上海环达计算机科技有限公司 移动设备的身份判别方法及系统
CN101262377A (zh) * 2008-04-25 2008-09-10 北京工业大学 用户身份信息整合管理架构及其方法
CN101977194A (zh) * 2010-10-29 2011-02-16 赵俊平 一种第三方验证码系统及第三方验证码提供方法

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104518876A (zh) * 2013-09-29 2015-04-15 腾讯科技(深圳)有限公司 服务登录方法及装置
US11494767B1 (en) * 2019-05-21 2022-11-08 United Services Automobile Association (Usaa) Electronic transaction verification system
CN110855446A (zh) * 2019-11-27 2020-02-28 杭州迪普科技股份有限公司 一种密码验证方法及装置
CN111651777A (zh) * 2020-05-23 2020-09-11 浙江台谊消防设备有限公司 一种应用于消防监控的用户管理系统及其应用方法

Also Published As

Publication number Publication date
US20140136704A1 (en) 2014-05-15
CN102916933A (zh) 2013-02-06

Similar Documents

Publication Publication Date Title
WO2013017029A1 (zh) 注册或登陆的方法和系统
US10708257B2 (en) Systems and methods for using imaging to authenticate online users
US10200863B2 (en) System and method for using a symbol as instruction for a target system to request identity information and authentication from a mobile identity
KR102141836B1 (ko) 이중 인증
CN106164919B (zh) 有多个登录的基于浏览器的身份
US9325696B1 (en) System and method for authenticating to a participating website using locally stored credentials
US9003506B2 (en) Mobile out-of-band authentication service
US8615794B1 (en) Methods and apparatus for increased security in issuing tokens
US8151326B2 (en) Using audio in N-factor authentication
US8522010B2 (en) Providing remote user authentication
US8892885B2 (en) System and method for delivering a challenge response in an authentication protocol
CN103001975B (zh) 基于二维码的登录控制方法、系统和装置
US20120198531A1 (en) Multi-device session pairing using a visual tag
ES2741895T3 (es) Método para controlar una ventana de navegador
US10171457B2 (en) Service provider initiated additional authentication in a federated system
EP2779012A1 (en) Pro-Active Identity Verification For Authentication Of Transaction Initiated Via Non-Voice Channel
KR20110081977A (ko) 사용자 인증 관리
US20140259135A1 (en) Method and system for simplified user registration on a website
CN102132304A (zh) 利用数字身份的表单填充以及自动口令生成
TR201810238T4 (tr) Bir mobil kimlik doğrulama uygulaması kullanarak kullanıcıya uygun kimlik doğrulama yöntemi ve aparatı.
TW201533589A (zh) 上傳表單附件的方法、系統和web伺服器
US11245695B2 (en) Secure two-way authentication using encoded mobile image
TWI643086B (zh) Method for binding by scanning two-dimensional barcode
CN108141434B (zh) 经由设备通知提供多因素认证凭证
TWI612436B (zh) 自然人憑證認證方法

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12819611

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205 DATED 16/06/2014)

122 Ep: pct application non-entry in european phase

Ref document number: 12819611

Country of ref document: EP

Kind code of ref document: A1