WO2014044052A1 - 用户验证处理方法、用户设备和服务器 - Google Patents

用户验证处理方法、用户设备和服务器 Download PDF

Info

Publication number
WO2014044052A1
WO2014044052A1 PCT/CN2013/074450 CN2013074450W WO2014044052A1 WO 2014044052 A1 WO2014044052 A1 WO 2014044052A1 CN 2013074450 W CN2013074450 W CN 2013074450W WO 2014044052 A1 WO2014044052 A1 WO 2014044052A1
Authority
WO
WIPO (PCT)
Prior art keywords
sensor data
verification
action
server
verification code
Prior art date
Application number
PCT/CN2013/074450
Other languages
English (en)
French (fr)
Inventor
何秀强
张弓
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to EP13805723.7A priority Critical patent/EP2739006A4/en
Priority to US14/145,226 priority patent/US20140115682A1/en
Publication of WO2014044052A1 publication Critical patent/WO2014044052A1/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/316User authentication by observing the pattern of computer usage, e.g. typical user behaviour
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/30Services specially adapted for particular environments, situations or purposes
    • H04W4/38Services specially adapted for particular environments, situations or purposes for collecting sensor information
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2133Verifying human interaction, e.g., Captcha
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06VIMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
    • G06V40/00Recognition of biometric, human-related or animal-related patterns in image or video data
    • G06V40/20Movements or behaviour, e.g. gesture recognition

Definitions

  • the present invention relates to communication technologies, and in particular, to a user authentication processing method, a user equipment, and a server. Background technique
  • the verification code is an abbreviation of Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA), which is a public fully automatic program that distinguishes users from computers and people.
  • CATCHA Completely Automated Public Turing test to tell Computers and Humans Apart
  • the most commonly used verification code is to generate a picture by a string of randomly generated numbers or symbols, and add some interference to the picture, such as randomly drawing a plurality of lines, drawing some points, and verifying the verification by the user's naked eye.
  • Code information, input form submission website verification, verification can be used to use a certain function.
  • the verification code consisting of such irregular characters is easy to crack. For example, obtaining a digital image through a screen capture operation, and performing mathematical processing on the digital image, such as projection, passivation, sharpening, refinement, edge detection, etc., obtain profile information of the verification code, and then through artificial intelligence, pattern recognition, etc. The verification code is recognized, which leads to the increasing security risks of traditional verification codes. Summary of the invention
  • the embodiment of the invention provides a user authentication processing method, a user equipment and a server, so as to improve the security of the verification code.
  • an embodiment of the present invention provides a user authentication processing method, including: receiving, by a server, a notification message including an action verification code instruction;
  • the verification information is fed back to the server.
  • the reporting, by the sensor data, the verification information to the server includes: Performing verification processing of the action verification code on the sensor data, and transmitting the verification result information to the server.
  • the method before the verifying the action verification code of the sensor data, the method further includes:
  • the pre-processing the sensor data to obtain the feature information of the sensor data includes:
  • performing the verification processing of the action verification code according to the feature information including: performing a comparison verification process on the fluctuation amplitude value and the preset threshold value in the fluctuation amplitude feature information;
  • Sending the verification result information to the server includes:
  • the verified verification result information is sent to the server.
  • the sending, by the server, the verification information, according to the sensor data includes:
  • the sensor data is transmitted to the server to cause the server to perform verification processing of the action verification code based on the sensor data.
  • the method before the sending the sensor data to the server, the method further includes: pre-processing the sensor data Processing, acquiring the feature information of the sensor data; the sending the sensor data to the server, including:
  • the method before the sending the the sensor data to the server, the method further includes: Performing preprocessing on the sensor data, the preprocessing comprising at least one of: processing for reducing a sampling frequency of the sensor data;
  • the sending the sensor data to the server includes:
  • the preprocessed sensor data is sent to the server.
  • Notification messages including:
  • Notification messages including:
  • the action verification code instruction includes the following instructions At least one instruction:
  • the embodiment of the present invention further provides a user authentication processing method, including: sending, to a user equipment UE, a notification message including an action verification code instruction, so that the UE acquiring user performs a corresponding operation with the action verification code instruction.
  • Sensor data generated by the action;
  • the verification result is determined.
  • the receiving the verification information that is sent by the UE according to the sensor data includes:
  • the receiving the verification information that is sent by the UE according to the sensor data includes:
  • the feature information is: the feature information obtained by the UE pre-processing the sensor data.
  • the receiving, by the UE, the verification result information after performing verification processing on the action verification code for the feature information including:
  • the verification result information after the verification processing includes: verification result information passed by the verification when the fluctuation amplitude value in the fluctuation amplitude characteristic information of the sensor data is greater than a preset threshold.
  • the receiving the verification information that is sent by the UE according to the sensor data includes:
  • Determining the verification result according to the verification information including:
  • the sensor data is matched with the matching feature information to obtain a verification result.
  • the method before the matching the sensor data with the matching feature information, the method further includes:
  • test sensor data having the common attribute in the test sensor data is determined, and the test sensor data having the common attribute is used as the matching feature information.
  • the method before the determining the test sensor data with the common attribute in the test sensor data, the method further includes:
  • Determining the test sensor data having the common attribute in the test sensor data, and using the test sensor data having the common attribute as the matching feature information including: determining feature information having a common attribute in the feature information, And the feature information having the common attribute is used as the matching feature information.
  • the method before the matching the sensor data with the matching feature information, the method further includes:
  • test sensor data having the common attribute in the pre-processed test sensor data is determined, and the pre-processed test sensor data having the common attribute is used as the matching feature information.
  • the sending, by the user equipment UE, the action verification code instruction Notification messages including:
  • the notification message of the verification code instruction including:
  • the action verification code instruction includes At least one instruction:
  • an embodiment of the present invention provides a user equipment, including:
  • the instruction receiving unit is configured to receive a notification message that is sent by the server and includes an action verification code instruction
  • a sensor configured to generate sensor data according to an action performed by the user corresponding to the action verification code instruction
  • a data collection unit configured to acquire the sensor data
  • the data sending unit is configured to feed back verification information to the server according to the sensor data.
  • the data sending unit is configured to: perform verification processing of the action verification code on the sensor data, and send the verification result information to the server.
  • the data sending unit is configured to: perform pre-processing on the sensor data, and acquire the sensor data. Characteristic information; performing verification processing of the action verification code according to the feature information, and transmitting the verification result information to the server.
  • the data sending unit is specifically configured to: extract a fluctuation amplitude of the sensor data And comparing the fluctuation amplitude value and the preset threshold value in the fluctuation amplitude characteristic information; if the fluctuation amplitude value is greater than the preset threshold, sending verification verification result information to the server.
  • the data sending unit is specifically configured to: send the sensor data to the server, so that the server performs an action according to the sensor data. Verification code verification processing.
  • the data sending unit is configured to: perform pre-processing on the sensor data, and acquire the sensor data. Feature information; transmitting characteristic information of the sensor data to the server, so that the server performs verification processing of the action verification code according to the feature information.
  • the data sending unit is specifically configured to: preprocess the sensor data, and send the data to the server Preprocessed sensor data;
  • the pre-processing includes at least one of the following processes:
  • the instruction receiving unit is specifically configured to: receive the An application service message sent by the server, where the action verification code instruction is embedded in the application service message.
  • an embodiment of the present invention provides a server, including:
  • a notification information sending unit configured to send, to the user equipment UE, a notification message that includes an action verification code instruction, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • An information receiving unit configured to receive verification information that is sent by the UE according to the sensor data;
  • Verification unit configured to determine a verification result according to the verification information.
  • the information is connected
  • the receiving unit is specifically configured to: receive the verification result information after the verification processing of the action verification code of the sensor data sent by the UE.
  • the information receiving unit is configured to: receive, by the UE, verification result information after performing verification processing of the action verification code on the feature information;
  • the feature information is: the feature information obtained by the UE pre-processing the sensor data.
  • the information receiving unit is specifically configured to: receive, according to the fluctuation amplitude feature information, the action verification performed by the UE Verification result information after verification processing of the code;
  • the verification result information after the verification processing includes: verification result information passed by the verification when the fluctuation amplitude value in the fluctuation amplitude characteristic information of the sensor data is greater than a preset threshold.
  • the information receiving unit is specifically configured to: receive sensor data sent by the UE;
  • the verification unit is specifically configured to: match the sensor data with matching feature information to obtain a verification result.
  • the notification information sending unit is configured to: send, by the at least one UE, the action verification code instruction Verifying the code test message, so that the at least one UE acquires test sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • the information receiving unit is specifically configured to: receive the test sensor data sent by the at least one UE;
  • the verification unit is specifically configured to determine test sensor data having a common attribute in the test sensor data, and use the test sensor data having a common attribute as the matching feature information.
  • the verifying unit is specifically configured to: preprocess the test sensor data, and obtain the sensor data Feature information; determining feature information having a common attribute in the feature information, and using the feature information having the common attribute as the matching feature information.
  • the notification information sending unit is specifically configured to: send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquisition user performs a correspondence with the action verification code instruction.
  • the information receiving unit is specifically configured to: receive test sensor data that is preprocessed by the at least one UE and that is preprocessed by the test sensor data;
  • the verification unit is specifically configured to: determine test sensor data having a common attribute in the pre-processed test sensor data, and use the pre-processed test sensor data having a common attribute as the matching feature information.
  • the application service message is sent to the UE, where the application is The action verification code instruction is embedded in the service message.
  • the UE receives the notification message that is sent by the server and includes the action verification code instruction, and the user performs a specified action according to the action verification code instruction, and then the sensor that is generated by the user to perform the action corresponding to the action verification code instruction may be acquired from the sensor. Data, based on sensor data, feeds back verification information to the server.
  • the action of the human can be effectively identified, and the verification code cracking program of the image processing combined with the pattern recognition can be used to crack the existing verification code, and the person and the machine can be effectively distinguished, and the verification code is added. Crack the difficulty and improve the security of the verification code.
  • Embodiment 1 is a flowchart of Embodiment 1 of a user authentication method according to the present invention
  • Embodiment 2 is a flowchart of Embodiment 2 of a user authentication method according to the present invention
  • Embodiment 3 is a flowchart of Embodiment 3 of a user authentication method according to the present invention.
  • Embodiment 4 is a flowchart of Embodiment 4 of a user authentication method according to the present invention.
  • Embodiment 5 is a flowchart of Embodiment 5 of a user authentication method according to the present invention.
  • FIG. 6 is a flowchart of Embodiment 6 of a user authentication method according to the present invention
  • 7 is a flowchart of Embodiment 7 of a user authentication method according to the present invention
  • Embodiment 8 is a flowchart of Embodiment 8 of a user authentication method according to the present invention.
  • Embodiment 9 is a flowchart of Embodiment 9 of a user authentication method according to the present invention.
  • Embodiment 10 is a flowchart of Embodiment 10 of a user authentication method according to the present invention.
  • Embodiment 11 is a flowchart of Embodiment 11 of a user authentication method according to the present invention.
  • Embodiment 12 is a flowchart of Embodiment 12 of a user authentication method according to the present invention.
  • Embodiment 13 is a flowchart of Embodiment 13 of a user authentication method according to the present invention.
  • Embodiment 14 is a flowchart of Embodiment 14 of a user authentication method according to the present invention.
  • Embodiment 15 is a flowchart of Embodiment 15 of a user authentication method according to the present invention.
  • Embodiment 16 is a flowchart of Embodiment 16 of a user authentication method according to the present invention.
  • Embodiment 17 is a flowchart of Embodiment 17 of a user authentication method according to the present invention.
  • Embodiment 1 of a user equipment according to the present invention is a schematic structural diagram of Embodiment 1 of a user equipment according to the present invention.
  • Embodiment 19 is a schematic structural diagram of Embodiment 1 of a server according to the present invention.
  • Embodiment 2 of a user equipment according to the present invention.
  • FIG. 21 is a schematic structural diagram of Embodiment 2 of a server according to the present invention.
  • the technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. example. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
  • FIG. 1 is a flowchart of Embodiment 1 of a user authentication method according to the present invention.
  • a user equipment is used as an execution subject to describe a user authentication method.
  • the user equipment (User Equipment, UE for short) in this example may be a smart phone, a computer, etc., but the embodiment of the present invention is not limited thereto, and any device equipped with a sensor and a data transmission function may be used in the embodiment of the present invention.
  • the user authentication method in this embodiment includes:
  • Step S101 receiving a notification message that is sent by the server and containing the action verification code instruction.
  • the notification message including the action verification code command sent by the corresponding server is received.
  • Action verification code The command may be an instruction to instruct the user to complete various prescribed actions. For example, if the UE is a smart phone or the like, the user may hold the UE “shake”, “draw circle”, “walk”, etc., if the UE is a computer or the like, the user may hold the UE.
  • Various peripheral devices such as the mouse, the keyboard “shake”, “circle”, “walking” and so on.
  • Step S102 Acquire sensor data generated by the user performing an action corresponding to the action verification code instruction
  • the user completes the corresponding action according to the action verification code command in the notification message, and at the same time, the sensor provided in the user equipment can accurately recognize various simple actions performed by the user, such as sitting, standing, walking, running, etc., as well as complicated Actions, such as making phone calls, etc., and generating sensor data.
  • the embodiment of the present invention may be an acceleration sensor, a direction sensor, a proximity sensor, etc., and the embodiment of the present invention is not particularly limited herein.
  • the UE can obtain the sensor data generated by the action corresponding to the action verification code command in the equipped sensor from the relevant standard interface.
  • Step S103 Feeding back verification information to the server according to the sensor data.
  • the UE may send the verification information to the server in various forms. Specifically, the UE may feed back the verification result directly to the server, or may feed back the sensor data to the server or feed back the characteristic information of the pre-processed sensor data to the server.
  • the specific form of the verification information fed back to the server by the UE may be determined according to the difficulty level of the action of the action verification code instruction or the amount of the sensor data. For example, when the action of the verification code instruction is relatively simple, the UE directly sends the verification to the server.
  • the result information of the passage when the action of the action command is difficult, the generated sensor data is large, the UE can compress the data of the sensor, and feed back the compressed sensor data to the server in the form of verification information, etc., There is no particular limitation here.
  • the UE receives the notification message including the action verification code command sent by the server, and the user performs a specified action according to the action verification code instruction, and the UE may acquire, from the sensor, the sensor data generated by the user performing the action corresponding to the action verification code instruction.
  • the verification information is fed back to the server, which can effectively identify the human action, avoid the image processing combined with the pattern recognition verification code cracking program to crack the existing verification code, can effectively distinguish the person and the machine, and increase the verification.
  • the difficulty of cracking the code improves the security of the verification code.
  • FIG. 2 is a flowchart of Embodiment 2 of the user authentication method of the present invention.
  • a user equipment is used as an execution subject to describe a user authentication method.
  • User verification of this embodiment Methods include:
  • Step S201 Receive a notification message that is sent by the server and include an action verification code command.
  • Step S202 Acquire sensor data generated by the user performing an action corresponding to the action verification code instruction.
  • Step S203 Perform verification processing of the action verification code on the sensor data, and send the verification result information to the server.
  • steps S201 and S202 are similar to the steps S101 and S102 in the embodiment of the present invention, and the details are not described herein again.
  • the UE may directly perform verification processing of the action verification code on the sensor data generated by the simple action verification code command executed by the user, and determine whether the action performed by the user is consistent with the specified action of the action verification code command, and directly
  • the verification result information is sent to the server to enable the server to determine the verification result, and to allow or prohibit the user from continuing to access the relevant website or forum.
  • the UE may send the result information of the verification pass to the server, and the server receives the verification result information, and determines that the verification result is passed. , allowing users to continue to access related websites and forums.
  • the UE's processor and memory have strong functions, the UE may match the sensor data with the sensor matching data stored by the UE to determine whether the action performed by the user is consistent with the specified action of the action verification code command.
  • the UE directly performs verification processing of the action verification code on the sensor data, which is convenient and fast, reduces the data transmission amount of the UE and the server, distributes the verification processing work to the mobile phone, reduces the processing load of the server, and improves the verification code service. s efficiency.
  • FIG. 3 is a flowchart of Embodiment 3 of the user authentication method of the present invention.
  • the user equipment is used as an execution subject to describe the user verification method.
  • the user authentication method of this embodiment includes:
  • Step S301 Receive a notification message that is sent by the server and include an action verification code instruction.
  • Step S302 Acquire sensor data generated by the user performing an action corresponding to the action verification code instruction.
  • Step S303 Perform pre-processing on the sensor data to obtain feature information of the sensor data.
  • Step S304 Perform verification processing of the action verification code according to the feature information, and check The certificate result information is sent to the server.
  • steps S301 and S302 are similar to the steps S101 and S102 in the embodiment of the present invention, and are not described herein again.
  • the UE may perform pre-processing on the acquired sensor data to extract feature information of the sensor data.
  • the sensor data may be denoised, and various time domains and frequency domains of the sensor data may be extracted. Characteristic information of the statistics.
  • the UE performs verification processing of the action verification code according to the feature information, determines whether the action performed by the user is consistent with the specified action of the action verification code command, and directly sends the verification result information to the server, so that the server determines the verification result, allows or prohibits Users continue to visit related websites or forums.
  • the functions of the processor and the memory of the UE are sufficiently powerful, the UE may match the feature information with the matching feature information stored by the UE to determine whether the action performed by the user is consistent with the specified action of the action verification code command.
  • the UE performs pre-processing on the sensor data to obtain feature information of the sensor data. After the pre-processing, the UE does not need to perform verification processing on interference information such as noise, and only needs to perform verification processing of the action verification code according to the feature information, which does not cause Interference information such as noise affects the UE to perform correct verification processing, which can improve the accuracy and accuracy of the UE's verification processing of the action verification code.
  • interference information such as noise
  • FIG. 4 is a flowchart of Embodiment 4 of the user authentication method of the present invention.
  • a user equipment is used as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S401 Receive a notification message that is sent by the server and include a motion verification code command.
  • Step S402 Acquire sensor data generated by the user performing an action corresponding to the action verification code command.
  • Step S403 Extracting fluctuation amplitude characteristic information of the sensor data
  • Step S404 Comparing the fluctuation amplitude value in the fluctuation amplitude characteristic information with a preset threshold value - a risk certificate processing;
  • Step S405 If the fluctuation amplitude value is greater than the preset threshold, the verified verification result information is sent to the server.
  • Steps S401 and S402 are similar to the steps S101 and S102 in the embodiment of the present invention, and the details are not described herein again.
  • the verification processing of the code includes comparing and verifying the fluctuation amplitude value and the preset threshold value in the fluctuation amplitude characteristic information.
  • the action in the action verification code instruction is a relatively simple action, such as "shake", "circle”, etc.
  • the UE may preprocess the acquired sensor data, and extract the three-dimensional data in the sensor data for a period of time.
  • the fluctuation amplitude characteristic information is compared, and the fluctuation amplitude value is compared with the preset threshold value.
  • the preset threshold value can be set according to actual needs, and the present invention is not particularly limited herein. If the fluctuation amplitude value is greater than the preset threshold, the UE determines that the verification is passed, and sends the verification result information of the verification to the server, so that the server allows the user to perform the corresponding operation; if the fluctuation amplitude characteristic value is less than the preset threshold, the UE determines The verification fails, and the verification result information of the verification failure is sent to the server, so that the server prohibits the user from performing the corresponding operation.
  • the "hacking attack” may be added by transmitting the authentication result information of the UE represented by the agreed password, the random data conforming to the specific rule, the character string, and the like in the UE and the server, and combining the data encryption mechanism. Difficulty.
  • the UE performs pre-processing on the sensor data, acquires the fluctuation amplitude characteristic information of the sensor data, compares and verifies the fluctuation amplitude and the preset threshold, and obtains the verification result information, which can not only improve the verification of the action verification code of the UE.
  • the accuracy and accuracy of the processing is also easy to implement.
  • FIG. 5 is a flowchart of Embodiment 5 of the user authentication method of the present invention.
  • a user equipment is used as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S501 Receive a notification message that is sent by the server and include an action verification code instruction.
  • Step S502 Acquire sensor data generated by the user performing an action corresponding to the action verification code instruction.
  • Step S503 Send the sensor data to the server, so that the server performs verification processing of the action verification code according to the sensor data.
  • steps S501 and S502 are similar to the steps S101 and S102 in the embodiment of the present invention, and the details are not described herein again.
  • the user equipment can send the sensor data to the server, so that the server performs the verification process of the action verification code according to the sensor data.
  • the user equipment sends the sensor data to the server, and the server performs the verification process of the action verification code according to the sensor data, which can complete the verification processing of the sensor data generated by the user performing the action verification code command of various complicated actions, and avoids Image processing combined with pattern recognition verification code cracking program to crack the verification code, can effectively distinguish between people and machines, increase the difficulty of cracking the verification code, and improve the security of the verification code.
  • FIG. 6 is a flowchart of Embodiment 6 of the user authentication method according to the present invention. As shown in FIG. 6, this embodiment uses a user equipment as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S601 Receive a notification message that is sent by the server and include a motion verification code command.
  • Step S602 Acquire sensor data generated by the user performing an action corresponding to the action verification code command.
  • Step S603 Perform pre-processing on the sensor data to obtain feature information of the sensor data.
  • Step S604 Send the feature information of the sensor data to the server, so that the server performs the verification process of the action verification code according to the feature information.
  • steps S601 and S602 are similar to the steps S101 and S102 in the embodiment of the present invention, and the details are not described herein again.
  • the embodiment of the present invention before sending the sensor data to the server, further includes: preprocessing the sensor data, acquiring feature information of the sensor data, and sending the sensor data to the server.
  • the sensor data includes: transmitting characteristic information of the sensor data to the server.
  • the sensor data may be preprocessed, for example, extracting a plurality of statistics of the time series of the sensor data in the time domain and the frequency domain, and transmitting the feature information of the sensor data to the server. , so that the server performs verification processing of the action verification code according to the feature information.
  • the original data may be pre-processed on the UE, and the extracted feature information is transmitted to the server, which can reduce the data transmission traffic between the UE and the server, and improve the identification of the server.
  • the processing work is dispersed on the UE, which can reduce the processing load of the server and improve the efficiency of the verification code service.
  • FIG. 7 is a flowchart of Embodiment 7 of the user authentication method of the present invention. As shown in FIG. 7, this embodiment uses a user equipment as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S701 Receive a notification message that is sent by the server and include a motion verification code command.
  • Step S702 Acquire sensor data generated by the user performing an action corresponding to the action verification code command.
  • Step S703 Perform preprocessing on the sensor data.
  • Step S704 Send the pre-processed sensor data to the server, so that the server performs the verification process of the action verification code according to the pre-processed sensor data.
  • steps S701 and S702 are similar to the steps S101 and S102 in the embodiment of the present invention, and the details are not described herein again.
  • the embodiment of the present invention before transmitting the sensor data to the server, according to the embodiment of the present invention, further includes: preprocessing the sensor data, where the preprocessing includes the following At least one processing: a process of reducing a sampling frequency of the sensor data;
  • the UE may preprocess the sensor data by itself, or receive a pre-processing indication sent by the server, and pre-process the sensor data.
  • Smartphones such as Android phones, support four sampling frequencies (5 ⁇ , 16 ⁇ , 50 ⁇ , 100 ⁇ ), which can effectively reduce the amount of sensor data by selecting the lowest sampling frequency that meets the requirements, so by reducing the sampling frequency of the sensor data. Reduce the amount of data that the UE transmits to the server.
  • Pre-processing the sensor data of the original set to extract time domain features and/or frequency features within a unit time window such as mean, variance, magnitude, energy, entropy (entropy), etc.
  • time domain features and/or frequency features within a unit time window such as mean, variance, magnitude, energy, entropy (entropy), etc.
  • the statistics in the continuous time series are transmitted.
  • the manner of extracting the time domain features and/or frequency features in the unit time window can be reduced by orders of magnitude. The amount of data transferred.
  • the UE compresses the sensor data, which can reduce the UE transmitting sensor data to the server.
  • the amount of data transferred. Experiments have shown that by compressing the raw sensor data, the amount of data can be compressed by more than 10 times.
  • the server receives the compressed sensor data, decompresses it, and then performs the action verification code.
  • the above three methods can be used alone or in combination, and the most suitable data processing method can be selected by comprehensively considering the recognition efficiency and the amount of data transmission.
  • the embodiment of the present invention is not particularly limited herein.
  • the UE transmits the sensor data to the server, and can use the data encryption technology used by the existing secure transmission to ensure the security of the UE's verification result information and sensor data transmission, and is not cracked and modified by the hacker technology.
  • the sensor data obtained by the UE is preprocessed, and the preprocessed data is transmitted to the server, and the data transmission amount is greatly reduced, thereby improving the recognition efficiency and the data communication efficiency of the action verification code.
  • FIG. 8 is a flowchart of Embodiment 8 of the user authentication method according to the present invention. As shown in FIG. 8, this embodiment uses a user equipment as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S801 Receive an application service message sent by the server, where the action verification code command is embedded in the application service message.
  • Step S802 Acquire sensor data generated by a user performing an action corresponding to the action verification code instruction
  • Step S803 The verification information is fed back to the server according to the sensor data.
  • the embodiment of the present invention can embed the verification code service in various applications on the basis of the foregoing embodiments of FIG. 1 to FIG. 7 , and receive an application service message sent by the server, where the application service message is embedded.
  • the action verification code command can make the verification code instruction not need to be explicitly performed by the user.
  • the sensor configured by the UE continuously performs detection, and can detect the movement of the user when operating the UE, such as rotation, jitter, etc., UE By capturing the corresponding sensor data and performing verification processing of the action verification code on the sensor data, the verification result information of the user being a person rather than the machine can be obtained.
  • the verification code service is embedded in the application, and the application service message sent by the server is received, which can provide a transparent verification code mechanism to the user, thereby reducing the user operation and bringing a better user experience.
  • the receiving server sends the inclusion
  • the notification message of the verification code instruction includes: receiving the short message sent by the server, where the short message includes the action verification code instruction described by the text; or receiving the multimedia message sent by the server, where the multimedia message includes The action verification code instruction described in the picture or animation; or, receiving a voice prompt message sent by the server, where the voice prompt message includes voice prompt information of the action verification code command.
  • the user accepts the action verification code command sent by the server in various forms, which can be selected according to actual needs.
  • the server may notify the user by using a short message, which may include, for example, "Swipe", “Swipe left-right three times", and "circle” (draw a circle)" and other text descriptions
  • the server can also notify the user through MMS, the MMS can contain the action verification code instructions described by pictures or animations.
  • the server can not only use text or pictures.
  • the user can also be notified by voice, and the voice includes a specific action verification code command.
  • the notification message including the action verification code command sent by the server is received in a plurality of manners, so that the user can perform the verification of the action verification code under any circumstances, thereby improving the practicability and convenience of the action verification code.
  • the action verification code instruction includes at least one of the following instructions: an instruction for instructing a user to perform a gesture operation; an instruction for instructing a user to perform a whole body motion ; Used to instruct the user to complete.
  • the action verification code instruction specifies a prescribed action performed by the user, and different difficulty levels may be set according to different applications, and the user may be instructed to perform gesture operations, such as “shaking” and “circling”; the user may be instructed to perform whole body motion. , such as “walking”, “jogging”, “rotating”, etc.; can also instruct the user to complete instructions for specific task operations, such as combining simple gestures, whole body movements, or associative actions, such as “drinking action", "playing Phone action” and so on.
  • gesture operations such as “shaking” and “circling”
  • whole body motion such as “walking”, “jogging”, “rotating”, etc.
  • the various embodiments of the action verification code command provided by the embodiment of the present invention are not limited herein.
  • the embodiment of the present invention can satisfy the needs of various groups, various occasions, and various applications through various action verification code commands with different degrees of difficulty, and increases the applicability of the action verification code.
  • FIG. 9 is a flowchart of Embodiment 9 of the user authentication method of the present invention. As shown in FIG. 9, this embodiment uses a server as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S901 Send a notification message including a motion verification code instruction to the user equipment UE, to And causing the UE to acquire sensor data generated by a user performing an action corresponding to the action verification code instruction;
  • the server sends a notification message including the action verification instruction to the UE, and the action verification instruction may be an instruction indicating that the user completes various prescribed actions, such as the user holding the UE or The peripheral devices of the UE “shake”, “draw circle”, “walk”, and the like.
  • the user completes the corresponding action according to the action verification code command, and the sensor equipped with the user equipment can accurately recognize various simple actions performed by the user, such as sitting, standing, walking, running, etc., as well as complicated actions such as making a phone call, etc. , generating sensor data.
  • Step S902 Receive verification information that is sent by the UE according to the sensor data.
  • the server may receive the verification information sent by the UE in multiple forms. Specifically, it may be the verification result information of the action verification code command, or may be the sensor data. It is also possible to characterize the sensor data after the sensor data is preprocessed by the UE.
  • Step S903 Determine a verification result according to the verification information.
  • the server may determine the verification result according to the form of the verification information sent by the UE, thereby allowing or prohibiting the user from continuing to access the relevant website or forum.
  • the server sends a notification message including the action verification code instruction to the user equipment UE, so that the UE acquires the sensor data generated by the user performing the action corresponding to the action verification code instruction, and receives the verification information sent by the UE according to the sensor data.
  • the server determines the verification result according to the verification information, can effectively identify the human action, avoids the image processing combined with the pattern recognition verification code cracking program to crack the verification code, can effectively distinguish the person and the machine, and increase the difficulty of cracking the verification code. Improve the security of the verification code.
  • FIG. 10 is a flowchart of Embodiment 10 of the user authentication method of the present invention.
  • the embodiment of the present invention uses a server as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment includes:
  • Step S1001 Send a notification message including an action verification code instruction to the user equipment UE, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • Step S1002 Receive verification result information after performing verification processing on the sensor data by using the verification code sent by the UE;
  • Step S1003 Determine a verification result according to the verification result information.
  • steps S1001 and S1003 are similar to the steps S901 and S903 in the embodiment of FIG. 9, and the details are not described herein again.
  • the embodiment of the present invention receives the verification information sent by the UE according to the sensor data, and includes: receiving, by the UE, verification result information after performing verification processing on the sensor data.
  • the UE may directly perform verification processing of the action verification code on the sensor data generated by the user to execute the simple action verification code instruction, determine whether the action performed by the user is consistent with the specified action of the action verification code instruction, and send the message to the server. Whether the action verification code passes the verification result information.
  • the server may directly receive the verification result information sent by the UE, determine whether the action verification code passes according to the verification result information, and allow or prohibit the user to continue to access the related website or forum.
  • the server receives the verification result after the verification processing of the action verification code of the sensor data sent by the UE, which is convenient and fast, reduces the data transmission amount of the UE and the server, distributes the verification processing work to the mobile phone, and reduces the server. Handling the load and improving the efficiency of the verification code service.
  • FIG. 11 is a flowchart of Embodiment 11 of the user authentication method of the present invention. As shown in FIG. 11, the embodiment illustrates a user authentication method by using a server as an execution subject.
  • the user authentication method of this embodiment includes:
  • Step S1101 Send a notification message including an action verification code instruction to the user equipment UE, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • Step S1102 Receive verification result information after performing verification processing of the action verification code on the feature information sent by the UE;
  • Step S1103 Determine the verification result according to the verification result information.
  • steps S1101 and S1103 are similar to the steps S901 and S903 in the embodiment of FIG. 9, and the details are not described herein again.
  • the embodiment of the present invention receives the verification result information sent by the UE according to the sensor data, and includes: receiving the verification result information after the verification processing of the action verification code sent by the UE on the feature information; Specifically: UE enters sensor data Line preprocessing, obtaining feature information of sensor data.
  • the UE may perform pre-processing on the acquired sensor data, and extract feature information of the sensor data. For example, feature information of various statistics of various time domains and frequency domains of the sensor data may be extracted.
  • the UE performs verification processing of the action verification code according to the feature information, determines whether the action performed by the user is consistent with the specified action of the action verification code command, and directly transmits the verification result information of the verification pass or fail to the server, and the server receives the verification process. After the verification result information, the verification verifies and passes the verification result, thereby allowing or prohibiting the user to continue to access the relevant website or forum.
  • the server receives the verification result after the verification processing of the action verification code sent by the UE by the server, which is convenient and fast, and the verification and verification accuracy of the verification code is high, and the data transmission amount of the UE and the server is reduced, and The work of verification processing is spread over the mobile phone, reducing the processing load of the server and improving the efficiency of the verification code service.
  • FIG. 12 is a flowchart of Embodiment 12 of the user authentication method according to the present invention. As shown in FIG. 12, in this embodiment, a user authentication method is described by using a server as an execution subject. The user authentication method of this embodiment includes:
  • Step S1201 Send a notification message including an action verification code instruction to the user equipment UE, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • Step S1202 Receive verification result information after performing verification processing of the action verification code according to the fluctuation amplitude feature information sent by the UE;
  • Step S1203 Determine a verification result according to the verification result information.
  • step S1201 is similar to the step S901 in the embodiment of FIG. 9, and the embodiment will not be described again.
  • the receiving the verification information after performing the verification processing on the feature verification code sent by the UE includes: receiving the action according to the fluctuation amplitude feature information sent by the UE Verification result information after verification processing of the verification code.
  • the result information of the verification pass includes: verification result information passed by the verification when the fluctuation amplitude value in the fluctuation amplitude characteristic information of the sensor data is greater than a preset threshold.
  • the UE performs pre-processing on the sensor data, extracts fluctuation amplitude characteristic information of the three-dimensional data in the sensor data over a period of time, and compares the fluctuation amplitude value with a preset threshold.
  • the server receives the result information of the verification verification sent by the UE, and the server determines that the verification is passed, and allows the user to continue to access the related website or forum; if the fluctuation amplitude value is less than the preset threshold, the server Receiving the result information that the verification sent by the UE fails, the server determines that the verification fails, and prohibits the user from continuing to access the related website or forum.
  • the embodiment of the present invention receives the verification result information after the verification processing of the action verification code according to the fluctuation amplitude feature information sent by the UE, which is easy to implement, reduces the data transmission amount of the UE and the server, and distributes the verification processing work to the mobile phone. Reduce the processing load of the server and improve the efficiency of the verification code service.
  • FIG. 13 is a flowchart of a thirteenth embodiment of the user authentication method of the present invention. As shown in FIG. 13, the embodiment illustrates a user authentication method by using a server as an execution subject.
  • the user authentication method of this embodiment includes:
  • Step S1301 Send, to the user equipment UE, a notification message including an action verification code instruction, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction;
  • Step S1302 Receive sensor data sent by the UE.
  • Step S1303 Match the sensor data with the matching feature information to obtain a verification result.
  • step S1201 is similar to the step S901 in the embodiment of FIG. 9, and the embodiment will not be described again.
  • the receiving the verification information that is sent by the UE according to the sensor data includes: receiving sensor data sent by the UE; Determining the verification result includes: matching the sensor data with the matching feature information to obtain a verification result.
  • each action verification code command sent by the server to the UE stores corresponding matching feature information at the server, and the information can effectively distinguish the action verification code command from other action verification code commands.
  • the server receives the sensor data sent by the UE, and may be the sensor data directly obtained by the UE, or the feature information of the sensor data obtained by the UE after the pre-processing, and the server may match the feature information of the sensor data or the sensor data with the matching feature information. , obtain verification results, allow or prohibit UE access to the corresponding website or forum.
  • the sensor data is matched with the matching feature information by the server, and the obtained
  • the verification result can effectively identify the human action, avoiding the image processing combined with the pattern recognition verification code cracking program to crack the verification code, can effectively distinguish the person and the machine, increase the difficulty of cracking the verification code, and improve the verification code. safety.
  • FIG. 14 is a flowchart of Embodiment 14 of the user authentication method of the present invention.
  • this embodiment uses a server as an execution subject to describe a user authentication method.
  • the user authentication method of this embodiment before the server matches the sensor data with the matching feature information, based on the foregoing embodiment of FIG. 13, further includes:
  • Step S1401 Send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquires test sensor data generated by a user performing an action corresponding to the action verification code instruction;
  • Step S1402 receiving the test sensor data sent by the at least one UE;
  • Step S1403 determining test sensor data having a common attribute in the test sensor data, and using the test sensor data having a common attribute as the Match feature information.
  • Matching sensor data with matching feature information requires a large amount of matching feature information. Since the sensor data will be different when different people execute the same action verification code command, if you want to get enough good discrimination, you need to experiment with as many people or groups as possible to complete the acquisition of matching feature information.
  • the server sends the same action verification code command to multiple users. After receiving the action verification code command, the user performs the corresponding action according to "the respective understanding", and the UE sends the corresponding sensor data to the server.
  • the sensor data generated by the majority of users correctly performing the verification code action is test sensor data having a common attribute, and the test sensor data having the common attribute is used as the matching feature information.
  • the method can be called a "voting mechanism", and the server determines that most of the users pass the verification.
  • the method for determining the "voting mechanism" of the test sensor data having the common attribute may be implemented by an algorithm such as an outlier detection, a clustering algorithm, a classification algorithm, a machine learning algorithm, etc., and the embodiment of the present invention is not particularly limited herein.
  • FIG. 15 is a flowchart of the fifteenth embodiment of the user authentication method of the present invention. As shown in FIG. 15, this embodiment uses a server as an execution subject to describe a user authentication method.
  • the user authentication method in this embodiment includes:
  • Step S1501 Send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquires test sensor data generated by a user performing an action corresponding to the action verification code instruction;
  • Step S1502 Receive the test sensor data sent by the at least one UE.
  • Step S1503 Perform pre-processing on the test sensor data to obtain feature information of the sensor data.
  • Step S1504 Determine feature information having a common attribute in the feature information, and use the feature information having the common attribute as the matching feature information.
  • step S1501 and step S1502 are similar to S1401 and step S1402 in the embodiment of FIG. 14, and the details are not described herein again.
  • the embodiment of the present invention before determining the test sensor data having the common attribute in the test sensor data, further includes: preprocessing the test sensor data to obtain the sensor data. Determining the test sensor data having the common attribute in the test sensor data, and using the test sensor data having the common attribute as the matching feature information, including: determining that the feature information has a common attribute Feature information, and the feature information having the common attribute is used as the matching feature information.
  • the test sensor data may be pre-processed to obtain the feature information of the sensor data, and the feature information of the sensor data sent by the UE may be received, and then the feature information with the common attribute in the feature information is determined, and The feature information of the public attribute is used as matching feature information.
  • the embodiment of the invention determines the feature information with the common attribute in the feature information, and uses the feature information with the common attribute as the matching feature information, not only extracts the feature of the action, but also acquires the feature information of the sensor data, thereby better capturing the person.
  • the actions and behaviors better identify the user's actions and behaviors, and provide a large number of matching feature information for the server to determine the verification results, improve the accuracy and response speed of the action verification code instructions.
  • Embodiment 16 is a flowchart of Embodiment 16 of a user authentication method according to the present invention, as shown in FIG.
  • the embodiment describes the user authentication method by using the server as an execution subject.
  • the user authentication method in this embodiment includes:
  • Step S1601 Send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquires test sensor data generated by a user performing an action corresponding to the action verification code instruction;
  • Step S1602 Receive test sensor data that is preprocessed by the at least one UE and that is preprocessed by the test sensor data.
  • Step S1603 Determine test sensor data with common attributes in the pre-processed test sensor data, and use the pre-processed test sensor data with common attributes as the matching feature information.
  • the UE may preprocess the sensor data by itself, or receive the pre-processing indication sent by the server to pre-process the sensor data.
  • Smartphones such as Android phones, support four sampling frequencies (5HZ, 16HZ, 50HZ, 100HZ). By selecting the lowest sampling frequency that meets the requirements, the amount of sensor data can be effectively reduced, so by reducing the sampling frequency of the sensor data. Reduce the amount of data that the UE transmits to the server.
  • Pre-processing the sensor data of the original set to extract time domain features and/or frequency features within a unit time window such as mean, variance, magnitude, energy, entropy (entropy), etc.
  • time domain features and/or frequency features within a unit time window such as mean, variance, magnitude, energy, entropy (entropy), etc.
  • the statistics in the continuous time series are transmitted.
  • the manner of extracting the time domain features and/or frequency features in the unit time window can be reduced by orders of magnitude. The amount of data transferred.
  • the UE compresses the sensor data to reduce the amount of data transmitted by the UE to the server for transmitting sensor data.
  • compressing raw sensor data can compress the amount of data by more than 10 times.
  • the server receives the compressed sensor data, decompresses it, and then performs the action verification code.
  • the server receives test sensor data sent by the UE and preprocesses the test sensor data, and determines test sensor data with common attributes in the pre-processed test sensor data, and uses the pre-processed test sensor data with common attributes as Match feature information.
  • the server receives the pre-processed sensor data sent by the UE, determines the test sensor data with the common attribute in the pre-processed test sensor data, and uses the pre-processed test sensor data with common attributes as the matching feature.
  • Information better able Capturing people's actions and behaviors, better identifying the user's actions and behaviors, improving the accuracy and response speed of the motion verification code technology; reducing the data transmission volume between the UE and the server, and dispersing the work of preprocessing the sensor data On the phone, reduce the processing load of the server, improve the efficiency of the verification code service
  • FIG. 17 is a flowchart of Embodiment 17 of the user authentication method of the present invention. As shown in FIG. 17, the embodiment illustrates a user authentication method by using a server as an execution subject.
  • the user authentication method of this embodiment includes:
  • Step S1701 Send an application service message to the UE, where the action verification code command is embedded in the application service message.
  • Step S1702 Receive verification information that is sent by the UE according to the sensor data.
  • Step S1703 Determine a verification result according to the verification information.
  • the embodiment of the present invention can embed the verification code service in the application, and the server sends an application service message to the UE, and the action verification is embedded in the application service message.
  • the code command enables the verification code instruction to be completely completed by the user, and the sensor configured by the UE continuously performs automatic detection to detect that the user is a person rather than a machine.
  • the server sends an application service message that the verification code service is embedded in the application to the UE, and provides a transparent verification code mechanism to the user, which reduces the user operation and brings a better user experience.
  • the sending, by the user equipment UE, the notification message that includes the action verification code command includes: sending a short message to the UE, where the short message includes a text description.
  • the action verification code instruction or, sending a multimedia message to the UE, where the multimedia message includes the action verification code command described by a picture or an animation; or sending a voice prompt message to the UE, where the voice prompt message is sent
  • the voice prompt information including the action verification code instruction.
  • the server generates the action verification code instruction in various forms, for example, one can randomly select one from the action verification code instruction library; the multiple action verification code instructions can be randomly combined; according to the parameters of the action verification code instruction, Select different parameters to generate, such as "shake” action parameters including velocity, number of times, etc.
  • the generated actions include: “shake three times hard” or “slightly shake five times", etc., for the specific form of the server to generate the action verification code,
  • the invention is not particularly limited herein.
  • the server sends the generated action verification code to the UE in various forms, and the server can notify the user by using a short message, which can include, for example, "Swipe" and “Swipe left-right three times".
  • the server can notify the user by MMS , the MMS can contain the action verification code instructions described by pictures or animations , the server can also notify the user by voice , the voice includes specific Action verification code instructions.
  • the server sends various forms of notification messages including action verification code instructions to the UE, so that the user can verify the verification code under any circumstances, thereby improving the practicability and convenience of the verification code.
  • the action verification code instruction includes at least one of the following instructions: an instruction for instructing a user to perform a gesture operation; an instruction for instructing a user to perform a whole body motion ; Used to instruct the user to complete.
  • the embodiment of the present invention can meet the needs of various applications and various applications through various action verification code commands with different degrees of difficulty, and increases the applicability of the action verification code.
  • FIG. 18 is a schematic structural diagram of Embodiment 1 of a user equipment according to the present invention.
  • the user equipment provided by the embodiment of the present invention includes an instruction receiving unit 181, a sensor 182, a data collecting unit 183, and a data sending unit 184.
  • the command receiving unit 181 is configured to receive a notification message that is sent by the server and includes a motion verification code command.
  • the sensor 182 is configured to generate sensor data according to an action performed by the user corresponding to the action verification code command.
  • the data collecting unit 183 is configured to: Acquiring the sensor data; the data sending unit 184 is configured to feed back verification information to the server according to the sensor data.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 1.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the data sending unit 184 is specifically configured to: perform verification processing of the action verification code on the sensor data, and send the verification result information to the server.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 2, and the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing data sending unit 184 is specifically configured to: preprocess the sensor data, acquire feature information of the sensor data; perform verification processing of the action verification code according to the feature information, and verify the result Information is sent to the server.
  • the user equipment in this embodiment may be used to perform the technical solution of the method embodiment shown in FIG. 3, and the implementation principle and technical effects are similar, and details are not described herein again.
  • the data sending unit 184 is specifically configured to: extract the fluctuation amplitude feature information of the sensor data; perform a comparison verification process on the fluctuation amplitude value and the preset threshold in the fluctuation amplitude feature information; If the amplitude value is greater than the preset threshold, the verification result information of the verification is sent to the server.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 4, and the implementation principle and technical effects are similar, and details are not described herein again.
  • the data sending unit 184 is specifically configured to: send the sensor data to the server, so that the server performs verification processing of the action verification code according to the sensor data.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 5, and the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing data sending unit 184 is specifically configured to: preprocess the sensor data, acquire feature information of the sensor data, and send feature information of the sensor data to the server, so that the server The verification process of the action verification code is performed based on the feature information.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 6.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing data sending unit 184 is specifically configured to: preprocess the sensor data, and send the preprocessed sensor data to the server;
  • the pre-processing includes at least one of the following processes:
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 7.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the instruction receiving unit 181 is specifically configured to: receive an application service message sent by the server, where the action verification code instruction is embedded in the application service message.
  • the user equipment in this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 8. The implementation principle and technical effects are similar, and details are not described herein again.
  • the instruction receiving unit 181 in the foregoing embodiment is specifically configured to: receive a short message sent by the server, where the short message includes the action verification code instruction described by a text; or
  • the instruction receiving unit receives the notification message including the action verification code command sent by the server in multiple manners, so that the user can perform the verification of the action verification code under any circumstances, thereby improving the practicability and convenience of the action verification code.
  • the action instruction in the foregoing embodiment includes at least one of the following instructions: an instruction for instructing a user to perform a gesture operation;
  • the embodiment of the present invention can satisfy the needs of various groups, various occasions, and various applications through various action verification code commands with different degrees of difficulty, and increases the applicability of the action verification code.
  • FIG. 19 is a schematic structural diagram of Embodiment 1 of the server of the present invention.
  • the server provided by the embodiment of the present invention includes a notification information sending unit 191, an information receiving unit 192, and an authentication unit 193.
  • the notification information sending unit 191 is configured to send a notification message including the action verification code instruction to the user equipment UE, so that the UE acquires sensor data generated by the user performing an action corresponding to the action verification code instruction; 192 is configured to receive verification information that is sent by the UE according to the sensor data.
  • the verification unit 193 is configured to determine a verification result according to the verification information.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 9.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the information receiving unit 192 is specifically configured to: receive the technical solution that is sent by the UE to the server in this embodiment, and may be used to perform the method embodiment shown in FIG.
  • the implementation principle and technical effects are similar, and will not be described here.
  • the information receiving unit 192 is specifically configured to: receive the verification result information after performing verification processing of the action verification code on the feature information sent by the UE.
  • the feature information is: the feature information obtained by the UE pre-processing the sensor data.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 11.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the information receiving unit 192 is specifically configured to: receive, by the UE, verification result information after performing verification processing of the action verification code according to the fluctuation amplitude feature information;
  • the verification result information after the verification processing includes: verification result information passed by the verification when the fluctuation amplitude value in the fluctuation amplitude characteristic information of the sensor data is greater than a preset threshold.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 12, and the implementation principle and the technical effect are similar, and details are not described herein again.
  • the information receiving unit 192 is specifically configured to: receive the sensor data sent by the UE;
  • the verification unit 193 is specifically configured to: match the sensor data with the matching feature information to obtain a verification result.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 13 , and the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing notification information sending unit 191 is specifically configured to: send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquires a user execution and the action verification code instruction.
  • the test sensor data generated by the corresponding action; the information receiving unit 192 is specifically configured to: receive the test sensor data sent by the at least one UE;
  • the verification unit 193 is specifically configured to determine test sensor data having common attributes in the test sensor data, and use the test sensor data having a common attribute as the matching feature information.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 14.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the verification unit 193 is specifically configured to: perform the test sensor data Pre-processing, acquiring feature information of the sensor data; determining feature information having a common attribute in the feature information, and using the feature information having a common attribute as the matching feature information.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 15.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing notification information sending unit 191 is specifically configured to: send, to the at least one UE, a verification code test message that includes the action verification code instruction, so that the at least one UE acquires a user execution and the action verification code instruction.
  • the test sensor data generated by the corresponding action; the information receiving unit 192 is configured to: receive test sensor data that is preprocessed by the at least one UE and preprocessed by the test sensor data;
  • the verification unit 193 is specifically configured to: determine test sensor data having a common attribute in the pre-processed test sensor data, and use the pre-processed test sensor data having a common attribute as the matching feature information.
  • the server of this embodiment may be used to perform the technical solution of the method embodiment shown in FIG. 16.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the notification information sending unit 191 is specifically configured to: send an application service message to the UE, where the action verification code command is embedded in the application service message.
  • the server of this embodiment may be used to implement the technical solution of the method embodiment shown in FIG. 17.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the foregoing notification information sending unit 191 is specifically configured to: send a short message to the UE, where the short message includes the action verification code command described by a text; or
  • the server sends various forms of notification messages including action verification code instructions to the UE, so that the user can verify the verification code under any circumstances, thereby improving the practicability and convenience of the verification code.
  • the foregoing action verification code instruction includes at least one of the following instructions: an instruction for instructing a user to perform a gesture operation; and a finger for instructing a user to perform a whole body motion Order; an instruction to instruct the user to complete a specific task operation.
  • the embodiment of the present invention can meet the needs of various applications and various applications through various action verification code commands with different degrees of difficulty, and increases the applicability of the action verification code.
  • FIG. 20 is a schematic structural diagram of Embodiment 2 of a user equipment according to the present invention.
  • the user equipment 200 provided in this embodiment includes a processor 2001 and a memory 2002 and a sensor 2005.
  • the user equipment 200 may further include a transmitter 2003, a receiver 2004.
  • the transmitter 2003 and the receiver 2004 may be combined with a processor.
  • the memory 2002 stores execution instructions.
  • the processor 2001, the sensor 2005 and the memory 2002 communicate with each other, and the processor 2001 calls an execution instruction in the memory 2002 to acquire sensor data.
  • the processor 2001 and the sensor 2005 call the execution instructions in the memory 2002 for performing the above-mentioned embodiment of the user authentication processing method.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • FIG. 21 is a schematic structural diagram of Embodiment 2 of a server according to the present invention.
  • the server 210 includes: at least one processor 2101, such as a CPU, at least one network interface 2104 or other user interface 2103, a memory 2105, and at least one communication bus 2102. Communication bus 2102 is used to implement connection communication between these components.
  • the server 210 optionally includes a user interface 2103 including a display, a keyboard or a pointing device (e.g., a mouse, a trackball, a touchpad, or a tactile display).
  • the memory 2105 may include a high speed RAM memory and may also include a non-volatile memory such as at least one disk memory.
  • the memory 2105 can optionally include at least one memory device located remotely from the processor 2101.
  • the memory 2105 stores the following elements, executable modules or data structures, or a subset thereof, or their extension set:
  • Operating system 2151 which contains various system programs for implementing various basic services and handling hardware-based tasks;
  • Application module 2152 which contains various applications for implementing various application services.
  • the application module 2152 includes, but is not limited to, a notification information transmitting unit 191, an information receiving unit 192, and a verification unit 193.
  • each module in the application module 2152 refers to the corresponding module in the embodiment shown in FIG. 19, and details are not described herein.
  • the processor 2101 communicates with the memory 2105, and the processor 2105 executes the instructions, so that the server 210 performs the user authentication processing method in the foregoing method embodiment, and the implementation principle and technical effects are similar, and details are not described herein again.
  • the aforementioned program can be stored in a computer readable storage medium.
  • the program when executed, performs the steps including the above method embodiments; and the foregoing storage medium includes: a medium that can store program codes, such as a ROM, a RAM, a magnetic disk, or an optical disk.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Social Psychology (AREA)
  • Medical Informatics (AREA)
  • Telephonic Communication Services (AREA)
  • Telephone Function (AREA)

Abstract

本发明实施例提供一种用户验证处理方法、用户设备和服务器,该方法包括:接收服务器发送的包含动作验证码指令的通知消息;获取用户执行与所述动作验证码指令对应的动作所产生的传感器数据;根据所述传感器数据,向所述服务器反馈验证信息。本发明实施例提供的用户验证处理方法、用户设备和服务器,能够增加验证码的破解难度,提高了验证码的安全性。

Description

用户验证处理方法、 用户设备和服务器
技术领域 本发明涉及通信技术, 尤其涉及一种用户验证处理方法、 用户设备和 服务器。 背景技术
验证码是全自动区分计算机和人类的图灵测试( Completely Automated Public Turing test to tell Computers and Humans Apart, 简称 CAPTCHA ) 的缩 写, 是一种区分用户是计算机和人的公共全自动程序。
现有技术中, 最常用的验证码, 就是将一串随机产生的数字或符号, 生 成一幅图片, 图片里加上一些干扰, 例如随机画数条直线, 画一些点, 由用 户肉眼识别其中的验证码信息, 输入表单提交网站验证, 验证成功后才能使 用某项功能。
但是这种不规则字符组成的验证码很容易被破解。 例如, 通过截屏操作 获得数字图像、 并对数字图像进行数学处理, 如投影、 钝化、 锐化、 细化、 边缘检测等方法获得验证码的轮廓信息, 然后通过人工智能、 模式识别等方 法对验证码进行识别, 导致传统的验证码面临着越来越多的安全风险。 发明内容
本发明实施例提供一种用户验证处理方法、 用户设备和服务器, 以提 高验证码的安全性。
第一方面, 本发明实施例提供一种用户验证处理方法, 包括: 接收服务器发送的包含动作验证码指令的通知消息;
获取用户执行与所述动作验证码指令对应的动作所产生的传感器数 据;
根据所述传感器数据, 向所述服务器反馈验证信息。
结合第一方面, 在第一方面的第一种可能的实现方式中, 所述根据所 述传感器数据, 向所述服务器反馈验证信息, 包括: 对所述传感器数据进行动作验证码的验证处理, 并将验证结果信息发 送给所述服务器。
结合第一方面的第一种可能的实现方式, 在第一方面的第二种可能的 实现方式中, 所述对所述传感器数据进行动作验证码的验证处理之前, 还 包括:
对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 对所述传感器数据进行动作验证码的验证处理, 包括:
根据所述特征信息, 进行动作验证码的验证处理。
结合第一方面的第二种可能的实现方式, 在第一方面的第三种可能的 实现方式中, 所述对所述传感器数据进行预处理, 获取所述传感器数据的 特征信息, 包括:
提取所述传感器数据的波动幅度特征信息;
所述根据所述特征信息, 进行动作验证码的验证处理, 包括: 对所述波动幅度特征信息中的波动幅度值和预设阈值进行比较验证 处理;
所述将验证结果信息发送给所述服务器, 包括:
若所述波动幅度值大于所述预设阈值, 则将验证通过的验证结果信息 发送给所述服务器。
结合第一方面, 在第一方面的第四种可能的实现方式中, 所述根据所 述传感器数据, 向所述服务器反馈验证信息, 包括:
向所述服务器发送所述传感器数据, 以使所述服务器根据所述传感器 数据进行动作验证码的验证处理。
结合第一方面的第四种可能的实现方式, 在第一方面的第五种可能的 实现方式中, 所述向所述服务器发送所述传感器数据之前, 还包括: 对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 所述向所述服务器发送所述传感器数据, 包括:
向所述服务器发送所述传感器数据的特征信息, 以使所述服务器根据 所述特征信息进行动作验证码的验证处理。
结合第一方面的第四种可能的实现方式, 在第一方面的第六种可能的 实现方式中, 所述向所述服务器发送所述传感器数据之前, 还包括: 对所述传感器数据进行预处理,所述预处理, 包括下述至少一种处理: 降低所述传感器数据的釆样频率的处理;
提取所述传感器数据在单位时间窗内的时域特征和 /或频率特征的处 理;
对所述传感器数据进行压缩的处理;
所述向所述服务器发送所述传感器数据, 包括:
向所述服务器发送预处理后的传感器数据。
结合第一方面、 第一方面的第一种至第六种任一种可能的实现方式, 在在第一方面的第七种可能的实现方式中, 所述接收服务器发送的包含动 作验证码指令的通知消息, 包括:
接收所述服务器发送的应用业务消息, 所述应用业务消息中嵌入所述 动作验证码指令。
结合第一方面、 第一方面的第一种至第六种任一种可能的实现方式, 在在第一方面的第八种可能的实现方式中, 所述接收服务器发送的包含动 作验证码指令的通知消息, 包括:
接收所述服务器发送的短消息, 所述短消息中包含文字描述的所述动 作验证码指令; 或者,
接收所述服务器发送的彩信, 所述彩信中包含图片或动画描述的所述 动作验证码指令; 或者,
接收所述服务器发送的语音提示消息, 所述语音提示消息中包含所述 动作验证码指令的语音提示信息。
结合第一方面、 第一方面的第一种至第六种任一种可能的实现方式, 在第一方面的第九种可能的实现方式中, 所述动作验证码指令, 包括下述 指令中的至少一种指令:
用于指示用户进行手势操作的指令;
用于指示用户进行全身运动的指令;
用于指示用户完成特定任务操作的指令。
第二方面, 本发明实施例还提供一种用户验证处理方法, 包括: 向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE 获取用户执行与所述动作验证码指令对应的动作所产生的传感器数据; 接收所述 UE根据所述传感器数据发送的验证信息;
根据所述验证信息, 确定验证结果。
结合第二方面, 在第二方面的第一种可能的实现方式中, 所述接收所 述 UE根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的对所述传感器数据进行动作验证码的验证处理后 的验证结果信息。
结合第二方面, 在第二方面的第二种可能的实现方式中, 所述接收所 述 UE根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的对特征信息进行动作验证码的验证处理后的验证 结果信息;
所述特征信息为: UE 对所述传感器数据进行预处理获取的所述特征 信息。
结合第二方面的第二种可能的实现方式, 在第二方面的第三种可能的 实现方式中, 所述接收所述 UE发送的对特征信息进行动作验证码的验证 处理后的验证结果信息, 包括:
接收所述 UE发送的根据波动幅度特征信息进行动作验证码的验证处 理后的验证结果信息;
所述验证处理后的验证结果信息包括: 所述传感器数据的波动幅度特 征信息中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
结合第二方面, 在第二方面的第四种可能的实现方式中, 所述接收所 述 UE根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的传感器数据;
所述根据所述验证信息, 确定验证结果, 包括:
将所述传感器数据与匹配特征信息进行匹配, 获得验证结果。
结合第二方面的第四种可能的实现方式, 在第二方面的第五种可能的 实现方式中, 所述将所述传感器数据与匹配特征信息进行匹配之前, 还包 括:
向至少一个 UE发送包含所述动作验证码指令的验证码测试消息, 以 使所述至少一个 UE获取用户执行与所述动作验证码指令对应的动作所产 生的测试传感器数据; 接收所述至少一个 UE发送的所述测试传感器数据;
确定所述测试传感器数据中具有公共属性的测试传感器数据, 并将所 述具有公共属性的测试传感器数据作为所述匹配特征信息。
结合第二方面的第五种可能的实现方式, 在第二方面的第六种可能的 实现方式中, 所述确定所述测试传感器数据中具有公共属性的测试传感器 数据之前, 还包括:
对所述测试传感器数据进行预处理, 获取所述传感器数据的特征信 息;
所述确定所述测试传感器数据中具有公共属性的测试传感器数据, 并 将所述具有公共属性的测试传感器数据作为所述匹配特征信息, 包括: 确定所述特征信息中具有公共属性的特征信息, 并将所述具有公共属 性的特征信息作为所述匹配特征信息。
结合第二方面的第四种可能的实现方式, 在第二方面的第七种可能的 实现方式中, 所述将所述传感器数据与匹配特征信息进行匹配之前, 还包 括:
向至少一个 UE发送包含所述动作验证码指令的验证码测试消息, 以 使所述至少一个 UE获取用户执行与所述动作验证码指令对应的动作所产 生的测试传感器数据;
接收所述至少一个 UE发送的对所述测试传感器数据进行预处理后的 测试传感器数据;
确定所述预处理后的测试传感器数据中具有公共属性的测试传感器 数据, 并将所述具有公共属性的预处理后的测试传感器数据作为所述匹配 特征信息。
结合第二方面、 第二方面第一种至第七种任一种可能的实现方式, 在 第二方面的第八种可能的实现方式中, 所述向用户设备 UE发送包含动作 验证码指令的通知消息, 包括:
向所述 UE发送应用业务消息, 所述应用业务消息中嵌入所述动作验 证码指令。
结合第二方面、 第二方面第一种至第七种任一种可能的实现方式, 在 第二方面的第九种可能的实现方式中, 所述向用户设备 UE发送包含动作 验证码指令的通知消息, 包括:
向所述 UE发送短消息, 所述短消息中包含文字描述的所述动作验证 码指令; 或者,
向所述 UE发送彩信, 所述彩信中包含图片或动画描述的所述动作验 证码指令; 或者,
向所述 UE发送语音提示消息, 所述语音提示消息中包含所述动作验 证码指令的语音提示信息。
结合第二方面、 第二方面第一种至第七种任一种可能的实现方式, 在 第二方面的第十种可能的实现方式中, 所述动作验证码指令, 包括下述指 令中的至少一种指令:
用于指示用户进行手势操作的指令;
用于指示用户进行全身运动的指令;
用于指示用户完成特定任务操作的指令。
第三方面, 本发明实施例提供一种用户设备, 包括:
指令接收单元: 用于接收服务器发送的包含动作验证码指令的通知消 息;
传感器: 用于根据用户执行与所述动作验证码指令对应的动作, 产生 传感器数据;
数据收集单元: 用于获取所述传感器数据;
数据发送单元: 用于根据所述传感器数据, 向所述服务器反馈验证信 息。
结合第三方面, 在第三方面的第一种可能的实现方式中, 所述数据发 送单元具体用于: 对所述传感器数据进行动作验证码的验证处理, 并将验 证结果信息发送给所述服务器。
结合第三方面的第一种可能的实现方式, 在第三方面的第二种可能的 实现方式中,所述数据发送单元具体用于:对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 根据所述特征信息, 进行动作验证码的 验证处理, 并将验证结果信息发送给所述服务器。
结合第三方面的第二种可能的实现方式, 在第三方面的第三种可能的 实现方式中, 所述数据发送单元具体用于: 提取所述传感器数据的波动幅 度特征信息; 对所述波动幅度特征信息中的波动幅度值和预设阈值进行比 较验证处理; 若所述波动幅度值大于所述预设阈值, 则将验证通过的验证 结果信息发送给所述服务器。
结合第三方面, 在第三方面的第四种可能的实现方式中, 所述数据发 送单元具体用于: 向所述服务器发送所述传感器数据, 以使所述服务器根 据所述传感器数据进行动作验证码的验证处理。
结合第三方面的第四种可能的实现方式, 在第三方面的第五种可能的 实现方式中,所述数据发送单元具体用于:对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 向所述服务器发送所述传感器数据的特 征信息, 以使所述服务器根据所述特征信息进行动作验证码的验证处理。
结合第三方面的第四种可能的实现方式, 在第三方面的第六种可能的 实现方式中,所述数据发送单元具体用于:对所述传感器数据进行预处理, 向所述服务器发送预处理后的传感器数据;
所述预处理, 包括下述至少一种处理:
降低所述传感器数据的釆样频率的处理;
提取所述传感器数据在单位时间窗内的时域特征和 /或频率特征的处 理;
对所述传感器数据进行压缩的处理。
结合第三方面、 第三方面的第一种至第六种任一种可能的实现方式, 在第三方面的第七种可能的实现方式中, 所述指令接收单元具体用于: 接 收所述服务器发送的应用业务消息, 所述应用业务消息中嵌入所述动作验 证码指令。
第四方面, 本发明实施例提供一种服务器, 包括:
通知信息发送单元: 用于向用户设备 UE发送包含动作验证码指令的 通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作 所产生的传感器数据;
信息接收单元: 用于接收所述 UE根据所述传感器数据发送的验证信 息;
验证单元: 用于根据所述验证信息, 确定验证结果。
结合第四方面, 在第四方面的第一种可能的实现方式中, 所述信息接 收单元具体用于: 接收所述 UE发送的对所述传感器数据进行动作验证码 的验证处理后的验证结果信息。
结合第四方面, 在第四方面的第二种可能的实现方式中, 所述信息接 收单元具体用于: 接收所述 UE发送的对特征信息进行动作验证码的验证 处理后的验证结果信息;
所述特征信息为: UE 对所述传感器数据进行预处理获取的所述特征 信息。
结合第四方面的第二种可能的实现方式, 在第四方面的第三种可能的 实现方式中, 所述信息接收单元具体用于: 接收所述 UE发送的根据波动 幅度特征信息进行动作验证码的验证处理后的验证结果信息;
所述验证处理后的验证结果信息包括: 所述传感器数据的波动幅度特 征信息中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
结合第四方面, 在第四方面的第四种可能的实现方式中, 所述信息接 收单元具体用于: 接收所述 UE发送的传感器数据;
所述验证单元具体用于: 将所述传感器数据与匹配特征信息进行匹 配, 获得验证结果。
结合第四方面的第四种可能的实现方式, 在第四方面的第五种可能的 实现方式中, 所述通知信息发送单元具体用于: 向至少一个 UE发送包含 所述动作验证码指令的验证码测试消息, 以使所述至少一个 UE获取用户 执行与所述动作验证码指令对应的动作所产生的测试传感器数据;
所述信息接收单元具体用于: 接收所述至少一个 UE发送的所述测试 传感器数据;
所述验证单元具体用于确定所述测试传感器数据中具有公共属性的 测试传感器数据, 并将所述具有公共属性的测试传感器数据作为所述匹配 特征信息。
结合第四方面的第五种可能的实现方式, 在第四方面的第六种可能的 实现方式中,所述验证单元具体用于:对所述测试传感器数据进行预处理, 获取所述传感器数据的特征信息; 确定所述特征信息中具有公共属性的特 征信息, 并将所述具有公共属性的特征信息作为所述匹配特征信息。
结合第四方面的第四种可能的实现方式, 在第四方面的第七种可能的 实现方式中, 所述通知信息发送单元具体用于: 向至少一个 UE发送包含 所述动作验证码指令的验证码测试消息, 以使所述至少一个 UE获取用户 执行与所述动作验证码指令对应的动作所产生的测试传感器数据;
所述信息接收单元具体用于: 接收所述至少一个 UE发送的对所述测 试传感器数据进行预处理后的测试传感器数据;
所述验证单元具体用于: 确定所述预处理后的测试传感器数据中具有 公共属性的测试传感器数据, 并将所述具有公共属性的预处理后的测试传 感器数据作为所述匹配特征信息。
结合第四方面、 第四方面的第一种至第七种任一种可能的实现方式, 在第四方面的第八种可能的实现方式中, 向所述 UE发送应用业务消息, 所述应用业务消息中嵌入所述动作验证码指令。
根据本发明实施例, UE接收服务器发送的包含动作验证码指令的通 知消息, 用户根据动作验证码指令执行规定的动作, 然后可从传感器获取 用户执行与动作验证码指令对应的动作所产生的传感器数据, 根据传感器 数据, 向服务器反馈验证信息。 釆用本发明实施例的技术方案, 能够有效 地鉴别人的动作, 避免了图像处理结合模式识别的验证码破解程序对现有 验证码的破解, 能够有效的区分人和机器, 增加验证码的破解难度, 提高 了验证码的安全性。 附图说明 为了更清楚地说明本发明实施例或现有技术中的技术方案, 下面将对实 施例或现有技术描述中所需要使用的附图作简单地介绍, 显而易见地, 下面 描述中的附图仅仅是本发明的一些实施例, 对于本领域普通技术人员来讲, 在不付出创造性劳动性的前提下, 还可以根据这些附图获得其他的附图。
图 1为本发明用户验证方法实施例一的流程图;
图 2为本发明用户验证方法实施例二的流程图;
图 3为本发明用户验证方法实施例三的流程图;
图 4为本发明用户验证方法实施例四的流程图;
图 5为本发明用户验证方法实施例五的流程图;
图 6为本发明用户验证方法实施例六的流程图; 图 7为本发明用户验证方法实施例七的流程图;
图 8为本发明用户验证方法实施例八的流程图;
图 9为本发明用户验证方法实施例九的流程图;
图 10为本发明用户验证方法实施例十的流程图;
图 11为本发明用户验证方法实施例十一的流程图;
图 12为本发明用户验证方法实施例十二的流程图;
图 13为本发明用户验证方法实施例十三的流程图;
图 14为本发明用户验证方法实施例十四的流程图;
图 15为本发明用户验证方法实施例十五的流程图;
图 16为本发明用户验证方法实施例十六的流程图;
图 17为本发明用户验证方法实施例十七的流程图;
图 18为本发明用户设备实施例一的结构示意图;
图 19为本发明服务器实施例一的结构示意图;
图 20为本发明用户设备实施例二的结构示意图;
图 21为本发明服务器实施例二的结构示意图。 具体实施方式 下面将结合本发明实施例中的附图, 对本发明实施例中的技术方案进 行清楚、 完整地描述, 显然, 所描述的实施例仅仅是本发明一部分实施例, 而不是全部的实施例。 基于本发明中的实施例, 本领域普通技术人员在没 有做出创造性劳动前提下所获得的所有其他实施例, 都属于本发明保护的 范围。
图 1为本发明用户验证方法实施例一的流程图, 如图 1所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实例的用户设备 (User Equipment, 简称 UE)可以为智能手机, 电脑等, 但本发明实施例不 以此为限, 凡是配备有传感器和数据传输功能的设备均可以为本发明实施 例中的用户设备。 本实施例的用户验证方法包括:
步骤 S101 : 接收服务器发送的包含动作验证码指令的通知消息; 当用户登录网上银行进行购物或通过论坛等客户端浏览内容时, 会接 收到相应服务器发送的包含动作验证码指令的通知消息, 该动作验证码指 令可以为指示用户完成各种规定动作的指令, 例如,若 UE为智能手机等, 用户可手持 UE "摇晃" 、 "画圈" 、 "行走" 等, 若 UE为电脑等, 用 户可手持 UE的各种外围设备, 例如鼠标, 键盘 "摇晃" 、 "画圈" 、 "行 走" 等。
步骤 S102:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
用户根据通知消息中的动作验证码指令, 完成相应的动作, 同时, 用 户设备内配备的传感器可以精确地识别用户完成的各种简单的动作, 如 坐、 站、 走、 跑等, 以及复杂的动作, 如打电话动作等, 并产生传感器数 据。 本发明实施例 UE内配备的传感器, 可以为加速度传感器、 方向传感 器、 接近度传感器等, 本发明实施例在此不作特别限制。 UE 可从相关标 准接口获得配备的传感器中动作验证码指令对应的动作所产生的传感器 数据。
步骤 S103: 根据所述传感器数据, 向所述服务器反馈验证信息。
UE 根据传感器数据, 向服务器反馈验证信息可以包括多种形式, 具 体可以为直接向服务器反馈验证结果, 也可以向服务器反馈传感器数据或 向服务器反馈预处理后的传感器数据的特征信息。 UE 向服务器反馈的验 证信息的具体形式, 可以根据动作验证码指令的动作的难易程度或传感器 数据量的大小而决定, 例如, 当验证码指令的动作较简单时, UE 直接向 服务器发送验证通过的结果信息, 当动作指令的动作较难时, 产生的传感 器数据较多, UE 可对传感器的数据进行压缩处理, 将压缩处理后的传感 器数据以验证信息的形式反馈给服务器等, 本发明在此不作特别限制。
本发明实施例通过 UE接收服务器发送的包含动作验证码指令的通知 消息, 用户根据动作验证码指令执行规定的动作, UE 可从传感器获取用 户执行与动作验证码指令对应的动作所产生的传感器数据, 并根据传感器 数据, 向服务器反馈验证信息, 能够有效地鉴别人的动作, 避免了图像处 理结合模式识别的验证码破解程序对现有验证码的破解, 能够有效的区分 人和机器, 增加验证码的破解难度, 提高了验证码的安全性。
图 2为本发明用户验证方法实施例二的流程图, 如图 2所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S201 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S202:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S203 : 对所述传感器数据进行动作验证码的验证处理, 并将验证 结果信息发送给所述服务器。
上述步骤 S201与步骤 S202与图 1实施例中的步骤 S101与步骤 S 102 类似, 本实施例在此不再赘述。
在步骤 S203中, UE可直接对用户执行的简单的动作验证码指令产生 的传感器数据进行动作验证码的验证处理, 判断用户执行的动作是否与动 作验证码指令的规定动作是否一致, 并直接将验证结果信息发送给服务 器,以使服务器确定验证结果,允许或禁止用户继续访问相关网站或论坛。 例如, 当 UE根据传感数据的波形图判断用户执行的动作与验证码指令的 规定动作一致时, UE 可将验证通过的结果信息发送给服务器, 服务器接 收到验证结果信息, 确定验证结果为通过, 则允许用户继续访问相关网站 和论坛。 当 UE的处理器和存储器各种功能较强时, UE可以将传感器数 据与 UE存储的传感器匹配数据进行匹配, 来判断用户执行的动作是否与 动作验证码指令的规定动作是否一致。
本实施例通过 UE直接对传感器数据进行动作验证码的验证处理, 方 便快捷, 减少了 UE与服务器的数据传输量, 将验证处理的工作分散到手 机上, 减少服务器的处理负载, 提高验证码服务的效率。
图 3为本发明用户验证方法实施例三的流程图, 如图 3所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S301 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S302:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S303 : 对所述传感器数据进行预处理, 获取所述传感器数据的特 征信息;
步骤 S304: 根据所述特征信息, 进行动作验证码的验证处理, 并将验 证结果信息发送给所述服务器。
上述步骤 S301与步骤 S302与图 1实施例中的步骤 S101与步骤 S 102 类似, 本实施例在此不再赘述。
在步骤 S303与步骤 S304中, UE可对获取的传感器数据进行预处理, 提取传感器数据的特征信息, 例如可以对传感器数据进行去噪处理, 提取 传感器数据的各种时域和频域的各种统计量的特征信息。 UE 根据特征信 息, 进行动作验证码的验证处理, 判断用户执行的动作是否与动作验证码 指令的规定动作是否一致, 并直接将验证结果信息发送给服务器, 以使服 务器确定验证结果, 允许或禁止用户继续访问相关网站或论坛。 当 UE的 处理器和存储器各种功能足够强大时, UE可以将特征信息与 UE存储的 匹配特征信息进行匹配, 来判断用户执行的动作是否与动作验证码指令的 规定动作是否一致。
本实施例通过 UE对传感器数据进行预处理, 获取传感器数据的特征 信息, 预处理之后, UE 无需对噪声等干扰信息进行验证处理, 只需根据 特征信息进行动作验证码的验证处理, 不会使噪声等干扰信息影响 UE进 行正确的验证处理, 可以提高 UE进行动作验证码的验证处理的精度和准 确度。
图 4为本发明用户验证方法实施例四的流程图, 如图 4所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S401 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S402:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S403 : 提取所述传感器数据的波动幅度特征信息;
步骤 S404:对所述波动幅度特征信息中的波动幅度值和预设阈值进行 比较 -险证处理;
步骤 S405: 若所述波动幅度值大于所述预设阈值, 则将验证通过的验 证结果信息发送给所述服务器。
上述步骤 S401与步骤 S402与图 1实施例中的步骤 S101与步骤 S 102 类似, 本实施例在此不再赘述。 步骤 S403至 S405在图 3所示实施例的基础上,对传感器数据进行预 处理, 获取所述传感器数据的特征信息, 包括提取传感器数据的波动幅度 特征信息; 根据所述特征信息, 进行动作验证码的验证处理, 包括对波动 幅度特征信息中的波动幅度值和预设阈值进行比较验证处理。 具体的, 当 动作验证码指令中的动作为较简单的动作时, 如 "摇晃" 、 "化圈" 等, UE 可对获取的传感器数据进行预处理, 提取传感器数据中的三维数据在 一段时间内的波动幅度特征信息, 并将波动幅度值与预设阈值进行比较验 证处理, 预设阈值可根据实际需要进行设定, 本发明在此不作特别限制。 若波动幅度值大于预设阈值, 则 UE判定验证通过, 并将验证通过的验证 结果信息发送给服务器, 以使服务器允许用户执行相应的操作; 若波动幅 度特征值小于预设阈值, 则 UE判定验证不通过, 并将验证不通过的验证 结果信息发送给服务器, 以使服务器禁止用户执行相应的操作。
对于 UE的验证结果信息的传输, 可以通过在 UE和服务器传输约定 好的密码、 符合特定规律的随机数据、 文字串等代表的 UE的验证结果信 息, 并结合数据加密机制, 增加 "黑客攻击" 的难度。
本发明实施例通过 UE对传感器数据进行预处理, 获取传感器数据的 波动幅度特征信息, 对波动幅值和预设阈值进行比较验证处理, 获取验证 结果信息,不仅可以提高 UE进行动作验证码的验证处理的精度和准确度, 还易于实现。
图 5为本发明用户验证方法实施例五的流程图, 如图 5所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S501 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S502:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S503 : 向所述服务器发送所述传感器数据, 以使所述服务器根据 所述传感器数据进行动作验证码的验证处理。
上述步骤 S501与步骤 S502与图 1实施例中的步骤 S101与步骤 S 102 类似, 本实施例在此不再赘述。
在具体实现过程中, 当动作验证码指令指示用户完成各种规定动作较 为复杂时, 在用户设备侧进行动作验证码的验证处理需要浪费大量资源和 时间时, 用户设备可向服务器发送传感器数据, 以使服务器根据传感器数 据进行动作验证码的验证处理。
本发明实施例通过用户设备向服务器发送传感器数据, 由服务器根据 传感器数据进行动作验证码的验证处理, 可以完成对用户执行各种复杂动 作的动作验证码指令产生的传感器数据的验证处理, 避免了图像处理结合 模式识别的验证码破解程序对验证码的破解, 能够有效的区分人和机器, 增加验证码的破解难度, 提高了验证码的安全性。
图 6为本发明用户验证方法实施例六的流程图, 如图 6所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S601 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S602:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S603 : 对所述传感器数据进行预处理, 获取所述传感器数据的特 征信息;
步骤 S604: 向所述服务器发送所述传感器数据的特征信息, 以使所述 服务器根据所述特征信息进行动作验证码的验证处理。
上述步骤 S601与步骤 S602与图 1实施例中的步骤 S101与步骤 S 102 类似, 本实施例在此不再赘述。
在具体实现过程中, 本发明实施例在本发明图 5实施例的基础上, 向 服务器发送所述传感器数据之前, 还包括: 对传感器数据进行预处理, 获 取传感器数据的特征信息; 向服务器发送所述传感器数据, 包括: 向服务 器发送传感器数据的特征信息。 具体地, UE 将传感器数据传输给服务器 之前, 还可以对传感器数据进行预处理, 例如提取传感器数据的时间序列 在时域和频域的多个统计量等, 将传感器数据的特征信息发送给服务器, 以使服务器根据特征信息进行动作验证码的验证处理。
本发明实施例 UE将传感器数据传输给服务器之前, 可以在 UE上先 对原始数据进行预处理, 将抽取出的特征信息传输到服务器上, 可以减少 UE 与服务器端的数据传输流量, 提高服务器的鉴别精度; 同时通过将预 处理的工作分散在 UE上, 可以减少服务器的处理负载, 提高验证码服务 的效率。
图 7为本发明用户验证方法实施例七的流程图, 如图 7所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S701 : 接收服务器发送的包含动作验证码指令的通知消息; 步骤 S702:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S703: 对所述传感器数据进行预处理;
步骤 S704: 向所述服务器发送预处理后的传感器数据, 以使所述服务 器根据所述预处理后的传感器数据进行动作验证码的验证处理。
上述步骤 S701与步骤 S702与图 1实施例中的步骤 S101与步骤 S102 类似, 本实施例在此不再赘述。
在具体实现过程中, 本发明实施例在本发明图 5实施例的基础上, 向 服务器发送所述传感器数据之前,还包括:对所述传感器数据进行预处理, 所述预处理, 包括下述至少一种处理: 降低所述传感器数据的釆样频率的 处理;
提取传感器数据在单位时间窗内的时域特征和 /或频率特征的处理;对传感 器数据进行压缩的处理。
具体地, UE 可以自行对传感器数据进行预处理, 也可以接收服务器 发送的预处理指示, 对传感器数据进行预处理。 智能手机, 如 Android手 机, 支持四种釆样频率( 5ΗΖ,16ΗΖ,50ΗΖ,100ΗΖ ) , 通过选择满足要求的 最低釆样频率可以有效减少传感器数据量, 因此可通过降低传感器数据的 釆样频率来减少 UE向服务器传输的数据量。
对原始釆集的传感器数据进行预处理, 提取单位时间窗内的时域特征 和 /或频率特征, 如均值(mean)、 方差(variance)、 量级(magnitude) , 能级 ( energy ) 、 熵(entropy)等, 并对连续时间串内的统计量进行传输, 相比 较原始釆集的传感器数据的传输方式, 提取单位时间窗内的时域特征和 / 或频率特征的方式能够从数量级上减少数据传输量。
UE对传感器数据进行压缩, 可以减少 UE向服务器传输传感器数据 的数据传输量。 实验表明, 对原始传感器数据进行压缩, 可以将数据量压 缩 10倍以上。 服务器收到压缩后的传感器数据, 对其进行解压缩操作后, 再执行动作验证码的判断。
上述三种方法可以单独使用, 也可以结合使用, 具体可通过识别效率 和数据传输量进行综合考虑, 选择最合适的数据处理方法。 本发明实施例 在此不作特别限制。 UE 将传感器数据传输给服务器, 可使用现有安全传 输使用的数据加密技术等, 保证 UE的验证结果信息和传感器数据传输的 安全性, 不被黑客技术所破解和修改。
本发明实施例通过对 UE获得的传感器数据进行预处理, 并将预处理 后的数据传输到服务器, 数据传输量大大减小, 从而提高了动作验证码的 识别效率和数据通信效率。
图 8为本发明用户验证方法实施例八的流程图, 如图 8所示, 本实施 例以用户设备为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S801 : 接收所述服务器发送的应用业务消息, 所述应用业务消息 中嵌入所述动作验证码指令。
步骤 S802:获取用户执行与所述动作验证码指令对应的动作所产生的 传感器数据;
步骤 S803 : 根据所述传感器数据, 向所述服务器反馈验证信息。
在具体实现过程中, 本发明实施例在上述图 1-图 7实施例的基础上, 可将验证码服务内嵌在各种应用中, 接收服务器发送的应用业务消息, 该 应用业务消息中嵌入动作验证码指令, 可使验证码指令无需显式地交由用 户完成, 在 UE内部, 通过 UE配置的传感器持续进行检测, 可以检测到 用户在操作 UE时的移动, 如旋转、 抖动等, UE捕捉到对应传感器数据, 并对传感器数据进行动作验证码的验证处理, 可以获得用户为人而非机器 的验证结果信息。
本发明实施例通过将验证码服务内嵌在应用中, 接收服务器发送的应 用业务消息, 可以提供给用户透明的验证码机制, 减小用户操作, 带给用 户更好的使用体验。
优选地, 在上述图 1-图 7的实施例中, 所述接收服务器发送的包含动 作验证码指令的通知消息, 包括: 接收所述服务器发送的短消息, 所述短 消息中包含文字描述的所述动作验证码指令; 或者, 接收所述服务器发送 的彩信, 所述彩信中包含图片或动画描述的所述动作验证码指令; 或者, 接收所述服务器发送的语音提示消息, 所述语音提示消息中包含所述动作 验证码指令的语音提示信息。
用户接受服务器发送的动作验证码指令可以有多种形式, 可根据实际 需要进行选择。 具体地, 当 UE为智能手机时, 服务器可以通过短消息通 知用户,短消息中可以包括如 "摇一摇( Swipe ) "、 "左右晃动三次( Swipe left-right three times ) " 、 "画圈 (draw a circle)" 等文字描述, 月良务器还 可以通过彩信通知用户, 彩信中可以包含图片或动画描述的动作验证码指 令, 当 UE为电脑等, 服务器不仅可以通过文字或图片等方式, 还可以通 过语音通知用户, 语音中包括了具体的动作验证码指令。
本发明实施例通过多种方式接收服务器发送的包含动作验证码指令 的通知消息, 可以使用户在任何情况下进行动作验证码的验证, 提高了动 作验证码的实用性和便利性。
优选地, 在上述图 1-图 7的实施例中, 动作验证码指令, 包括下述指 令中的至少一种指令: 用于指示用户进行手势操作的指令; 用于指示用户 进行全身运动的指令; 用于指示用户完成。
具体地, 动作验证码指令中规定用户执行的规定的动作, 可以根据应用的 不同, 设置不同的难度, 可以指示用户进行手势操作, 如 "摇晃" 、 "画圈" ; 可以指示用户进行全身运动, 如 "行走" 、 "慢跑" 、 "旋转" 等; 还可以指 示用户完成特定任务操作的指令, 如对简单手势动作、 全身动作进行组合, 或 者联想动作, 如 "喝水动作" 、 "打电话动作" 等。 本发明实施例提供的动作 验证码指令的各种形式, 本发明实施例在此不作特别限制。
本发明实施例通过多种难易程度不同的动作验证码指令,可以满足各种人 群, 各种场合, 各种应用的需要, 增加了动作验证码的适用性。
图 9为本发明用户验证方法实施例九的流程图, 如图 9所示, 本实施 例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验证方 法包括:
步骤 S901 : 向用户设备 UE发送包含动作验证码指令的通知消息, 以 使所述 UE获取用户执行与所述动作验证码指令对应的动作所产生的传感 器数据;
用户登录网上银行进行购物或通过论坛等客户端浏览内容时, 服务器 会向 UE发送包含动作验证指令的通知消息, 该动作验证指令可以为指示 用户完成各种规定动作的指令, 例如用户手持 UE或 UE的外围设备 "摇 晃" 、 "画圈" 、 "行走" 等。 用户根据动作验证码指令, 完成相应的动 作, 用户设备配备的传感器可以精确地识别用户完成的各种简单的动作, 如坐、 站、 走、 跑等, 以及复杂的动作, 如打电话动作等, 产生传感器数 据。
步骤 S902: 接收所述 UE根据所述传感器数据发送的验证信息; 服务器接收 UE发送的验证信息可以有多种形式, 具体地, 可以为动 作验证码指令的验证结果信息, 也可以为传感器数据, 还可以为 UE将传 感器数据预处理之后的传感器数据的特征信息。
步骤 S903: 根据所述验证信息, 确定验证结果。
服务器可以根据 UE发送的验证信息的形式, 确定验证结果, 从而允 许或禁止用户继续访问相关网站或论坛。
本发明实施例通过服务器向用户设备 UE发送包含动作验证码指令的 通知消息, 以使 UE获取用户执行与动作验证码指令对应的动作所产生的 传感器数据, 接收 UE根据传感器数据发送的验证信息; 服务器根据验证 信息, 确定验证结果, 能够有效地鉴别人的动作, 避免了图像处理结合模 式识别的验证码破解程序对验证码的破解, 能够有效的区分人和机器, 增 加验证码的破解难度, 提高了验证码的安全性。
图 10为本发明用户验证方法实施例十的流程图, 如图 10所示, 本实 施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验证 方法包括:
步骤 S1001 : 向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作所产生的传 感器数据;
步骤 S1002: 接收所述 UE发送的对所述传感器数据进行动作验证码 的验证处理后的验证结果信息; 步骤 S1003 : 根据所述验证结果信息, 确定验证结果。
上述步骤 S 1001与步骤 S 1003与图 9实施例中的步骤 S901与步骤 S903 类似, 本实施例在此不再赘述。
本发明实施例在图 9实施例的基础上, 接收 UE根据传感器数据发送 的验证信息, 包括: 接收 UE发送的对传感器数据进行动作验证码的验证 处理后的验证结果信息。
在步骤 S 1002中, UE可直接对用户执行简单动作验证码指令产生的 传感器数据进行动作验证码的验证处理, 判断用户执行的动作是否与动作 验证码指令的规定动作是否一致, 并向服务器发送动作验证码是否通过验 证的验证结果信息。 服务器可以直接接收 UE发送的验证结果信息, 根据 验证结果信息, 确定动作验证码是否通过, 允许或禁止用户继续访问相关 网站或论坛。
本实施例通过服务器接收 UE发送的对传感器数据进行动作验证码的 验证处理后的验证结果, 方便快捷, 减少了 UE与服务器的数据传输量, 将验证处理的工作分散到手机上, 减少服务器的处理负载, 提高验证码服 务的效率。
图 11为本发明用户验证方法实施例十一的流程图, 如图 11所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S 1101 : 向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作所产生的传 感器数据;
步骤 S 1102: 接收所述 UE发送的对特征信息进行动作验证码的验证 处理后的验证结果信息;
步骤 S1 103 : 根据所述验证结果信息, 确定验证结果。
上述步骤 S 1101和步骤 S 1103与图 9实施例中的步骤 S901和步骤 S903 类似, 本实施例在此不再赘述。
本发明实施例在本发明图 9实施例的基础上, 接收 UE根据传感器数 据发送的验证结果信息, 包括: 接收 UE发送的对特征信息进行动作验证 码的验证处理后的验证结果信息; 特征信息具体为: UE 对传感器数据进 行预处理, 获取传感器数据的特征信息。
UE可对获取的传感器数据进行预处理,提取传感器数据的特征信息, 例如可以提取传感器数据的各种时域和频域的各种统计量的特征信息。 UE 根据特征信息, 进行动作验证码的验证处理, 判断用户执行的动作是否与 动作验证码指令的规定动作是否一致, 并直接将验证通过或不通过的验证 结果信息发送给服务器, 服务器接收验证处理后的验证结果信息, 确定验 证通过与不通过的验证结果, 从而允许或禁止用户继续访问相关网站或论 坛。
本实施例通过服务器接收 UE发送的对特征信息进行动作验证码的验 证处理后的验证结果, 方便快捷, 验证码的验证处理的精度和准确度高, 减少了 UE与服务器的数据传输量, 将验证处理的工作分散到手机上, 减 少服务器的处理负载, 提高验证码服务的效率。
图 12为本发明用户验证方法实施例十二的流程图, 如图 12所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S1201 : 向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作所产生的传 感器数据;
步骤 S1202: 接收所述 UE发送的根据波动幅度特征信息进行动作验 证码的验证处理后的验证结果信息;
步骤 S1203 : 根据所述验证结果信息, 确定验证结果。
上述步骤 S1201与图 9实施例中的步骤 S901类似, 本实施例在此不 再赘述。
本发明实施例在本发明图 11实施例的基础上,接收所述 UE发送的对 特征信息进行动作验证码的验证处理后的验证信息包括: 接收所述 UE发 送的根据波动幅度特征信息进行动作验证码的验证处理后的验证结果信 息。 所述验证通过的结果信息包括: 所述传感器数据的波动幅度特征信息 中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
具体地, UE 对传感器数据进行预处理, 提取传感器数据中的三维数 据在一段时间内的波动幅度特征信息, 并将波动幅度值与预设阈值进行比 较验证处理, 若波动幅度值大于预设阈值, 则服务器接收 UE发送的验证 通过的结果信息, 服务器确定验证通过, 允许用户继续访问相关网站或论 坛; 若波动幅度值小于预设阈值, 则服务器接收 UE发送的验证不通过的 结果信息, 服务器确定验证不通过, 禁止用户继续访问相关网站或论坛。
本发明实施例通过服务器接收 UE发送的根据波动幅度特征信息进行 动作验证码的验证处理后的验证结果信息, 易于实现, 减少了 UE与服务 器的数据传输量, 将验证处理的工作分散到手机上, 减少服务器的处理负 载, 提高验证码服务的效率。
图 13为本发明用户验证方法实施例十三的流程图, 如图 13所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S1301 : 向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作所产生的传 感器数据;
步骤 S1302: 接收所述 UE发送的传感器数据;
步骤 S1303: 将所述传感器数据与匹配特征信息进行匹配, 获得验证 结果。
上述步骤 S1201与图 9实施例中的步骤 S901类似, 本实施例在此不 再赘述。
本发明实施例在本发明图 9实施例的基础上, 所述接收所述 UE根据 所述传感器数据发送的验证信息, 包括: 接收所述 UE发送的传感器数据; 所述根据所述验证信息, 确定验证结果, 包括: 将所述传感器数据与匹配 特征信息进行匹配, 获得验证结果。
具体地, 服务器向 UE发出的每个动作验证码指令, 在服务器都保存 有对应的匹配特征信息, 该信息能有效地将该动作验证码指令与其他的动 作验证码指令相区别。 服务器接收 UE发送的传感器数据, 可以为 UE直 接获得的传感器数据, 也可以为 UE进行预处理后获得的传感器数据的特 征信息, 服务器可将传感器数据或传感器数据的特征信息与匹配特征信息 进行匹配, 获得验证结果, 允许或禁止 UE访问相应的网站或论坛。
本发明实施例通过服务器将传感器数据与匹配特征信息进行匹配, 获 得验证结果, 能够有效地鉴别人的动作, 避免了图像处理结合模式识别的 验证码破解程序对验证码的破解, 能够有效的区分人和机器, 增加验证码 的破解难度, 提高了验证码的安全性。
图 14为本发明用户验证方法实施例十四的流程图, 如图 14所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法, 在上述图 13 实施例的基础上, 服务器将传感器数据与匹配特征 信息进行匹配之前, 还包括:
步骤 S 1401 : 向至少一个 UE发送包含所述动作验证码指令的验证码 测试消息, 以使所述至少一个 UE获取用户执行与所述动作验证码指令对 应的动作所产生的测试传感器数据;
步骤 S1402: 接收所述至少一个 UE发送的所述测试传感器数据; 步骤 S 1403 : 确定所述测试传感器数据中具有公共属性的测试传感器 数据, 并将所述具有公共属性的测试传感器数据作为所述匹配特征信息。
将传感器数据与匹配特征信息进行匹配, 需要大量的匹配特征信息。 由于不同的人执行同一动作验证码指令时, 传感器数据会有所不同, 因此 如果要获得足够好的区分度, 则需要尽可能多的人或群体进行实验, 以完 成匹配特征信息的获取。
服务器向多个用户发送同一个动作验证码指令, 用户接收到该动作验 证码指令后, 按照 "各自的理解" 执行相应的动作, UE将相应的传感器数 据发送给服务器。 当大部分用户正确地执行验证码动作时, 则确定该大部 分用户正确地执行验证码动作产生的传感器数据为具有公共属性的测试 传感器数据, 并将具有公共属性的测试传感器数据作为匹配特征信息, 该 方法可以称为一种 "投票机制", 同时服务器确定该大部分用户通过验证。
上述确定具有公共属性的测试传感器数据的 "投票机制" 的方法, 可 通过离群点检测、 聚类算法、 分类算法、 机器学习算法等算法实现, 本发 明实施例在此不作特别限制。
本发明实施例通过确定测试传感器数据中具有公共属性的测试传感 器数据, 并将具有公共属性的测试传感器数据作为匹配特征信息, 能够为 服务器确定验证结果提供大量的匹配特征信息, 提高动作验证码指令的准 确性和响应速度。 图 15为本发明用户验证方法实施例十五的流程图, 如图 15所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S 1501 : 向至少一个 UE发送包含所述动作验证码指令的验证码 测试消息, 以使所述至少一个 UE获取用户执行与所述动作验证码指令对 应的动作所产生的测试传感器数据;
步骤 S1502: 接收所述至少一个 UE发送的所述测试传感器数据; 步骤 S 1503 : 对所述测试传感器数据进行预处理, 获取所述传感器数 据的特征信息;
步骤 S 1504: 确定所述特征信息中具有公共属性的特征信息, 并将所 述具有公共属性的特征信息作为所述匹配特征信息。
上述步骤 S1501和步骤 S 1502与图 14实施例中的 S1401和步骤 S 1402 类似, 本实施例在此不再赘述。
本发明实施例在图 14 实施例的基础上, 所述确定所述测试传感器数 据中具有公共属性的测试传感器数据之前, 还包括: 对所述测试传感器数 据进行预处理, 获取所述传感器数据的特征信息; 所述确定所述测试传感 器数据中具有公共属性的测试传感器数据, 并将所述具有公共属性的测试 传感器数据作为所述匹配特征信息, 包括: 确定所述特征信息中具有公共 属性的特征信息, 并将所述具有公共属性的特征信息作为所述匹配特征信 息。
在具体实现过程中, 可先对测试传感器数据进行预处理, 获取传感器 数据的特征信息, 还可以接收 UE发送的传感器数据的特征信息, 再确定 特征信息中具有公共属性的特征信息, 并将具有公共属性的特征信息作为 匹配特征信息。
本发明实施例确定特征信息中具有公共属性的特征信息, 并将具有公 共属性的特征信息作为匹配特征信息, 不仅通过抽取出动作真正的特征, 获取传感器数据的特征信息, 能够更好地捕捉人的动作和行为, 更好的鉴 别出用户的动作和行为, 还能够为服务器确定验证结果提供大量的匹配特 征信息, 提高动作验证码指令的准确性和响应速度。
图 16为本发明用户验证方法实施例十六的流程图, 如图 16所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S1601 : 向至少一个 UE发送包含所述动作验证码指令的验证码 测试消息, 以使所述至少一个 UE获取用户执行与所述动作验证码指令对 应的动作所产生的测试传感器数据;
步骤 S1602: 接收所述至少一个 UE发送的对所述测试传感器数据进 行预处理后的测试传感器数据;
步骤 S 1603:确定所述预处理后的测试传感器数据中具有公共属性的 测试传感器数据, 并将所述具有公共属性的预处理后的测试传感器数据作 为所述匹配特征信息。
在具体实现过程中, UE 可以自行对传感器数据进行预处理, 也可以 接收服务器发送的预处理指示, 对传感器数据进行预处理。 智能手机, 如 Android手机, 支持四种釆样频率 ( 5HZ,16HZ,50HZ,100HZ ) , 通过选择 满足要求的最低釆样频率可以有效减少传感器数据量, 因此可通过降低传 感器数据的釆样频率来减少 UE向服务器传输的数据量。
对原始釆集的传感器数据进行预处理, 提取单位时间窗内的时域特征 和 /或频率特征, 如均值(mean)、 方差(variance)、 量级(magnitude) , 能级 ( energy ) 、 熵(entropy)等, 并对连续时间串内的统计量进行传输, 相比 较原始釆集的传感器数据的传输方式, 提取单位时间窗内的时域特征和 / 或频率特征的方式能够从数量级上减少数据传输量。
UE对传感器数据进行压缩, 可以减少 UE向服务器传输传感器数据 的数据传输量。 实验表明, 对原始传感器数据进行压缩, 可以将数据量压 缩 10倍以上。 服务器收到压缩后的传感器数据, 对其进行解压缩操作后, 再执行动作验证码的判断。
服务器接收 UE发送的对测试传感器数据进行预处理后的测试传感器 数据, 并确定预处理后的测试传感器数据中具有公共属性的测试传感器数 据, 并将具有公共属性的预处理后的测试传感器数据作为匹配特征信息。
本发明实施例通过服务器接收 UE发送的预处理后的传感器数据, 确 定预处理后的测试传感器数据中具有公共属性的测试传感器数据, 并将具 有公共属性的预处理后的测试传感器数据作为匹配特征信息, 能够更好地 捕捉人的动作和行为, 更好的鉴别出用户的动作和行为, 提高动作验证码 技术的准确性和响应速度; 同时减少了 UE与服务器的数据传输量, 将对 传感器数据预处理的工作分散到手机上, 减少服务器的处理负载, 提高验 证码服务的效率
图 17为本发明用户验证方法实施例十七的流程图, 如图 17所示, 本 实施例以服务器为执行主体对用户验证方法加以说明。 本实施例的用户验 证方法包括:
步骤 S1701 : 向所述 UE发送应用业务消息, 所述应用业务消息中嵌 入所述动作验证码指令;
步骤 S1702: 接收所述 UE根据所述传感器数据发送的验证信息; 步骤 S1703 : 根据所述验证信息, 确定验证结果。
在具体实现过程中,本发明实施例在上述图 9-图 16实施例的基础上, 可将验证码服务内嵌在应用中, 服务器向 UE发送应用业务消息, 该应用 业务消息中嵌入动作验证码指令, 使验证码指令无需显式地交由用户完 成,通过 UE配置的传感器持续进行自动检测,检测出用户为人而非机器。
本发明实施例通过服务器向 UE发送将验证码服务内嵌在应用中的应 用业务消息, 可以提供给用户透明的验证码机制, 减小用户操作, 带给用 户更好的使用体验。
优选地, 上述图 9-图 16实施例的基础上, 所述向用户设备 UE发送 包含动作验证码指令的通知消息, 包括: 向所述 UE发送短消息, 所述短 消息中包含文字描述的所述动作验证码指令; 或者, 向所述 UE发送彩信, 所述彩信中包含图片或动画描述的所述动作验证码指令; 或者, 向所述 UE 发送语音提示消息, 所述语音提示消息中包含所述动作验证码指令的 语音提示信息。
在具体实现过程中, 服务器生成动作验证码指令可以有多种形式, 例 如可以从动作验证码指令库中随机选择一种; 可以随机组合多种动作验证 码指令; 按照动作验证码指令的参数,选择不同的参数,进行生成,如 "摇 晃" 动作的参数包括力度、 次数等, 生成的动作包括: "用力摇晃三次" 或者 "轻微摇晃五次" 等, 对于服务器生成动作验证码的具体形式, 本发 明在此不作特别限制。 服务器将生成的动作验证码发送给 UE具有多种形式, 服务器可以通 过短消息通知用户, 短消息中可以包括如 "摇一摇 (Swipe ) " 、 "左右 晃动三次 ( Swipe left-right three times ) " 、 "画圈 (draw a circle)" 等文 字描述, 服务器可以通过彩信通知用户, 彩信中可以包含图片或动画描述 的动作验证码指令, 服务器还可以通过语音通知用户, 语音中包括了具体 的动作验证码指令。
本发明实施例通过服务器向 UE发送多种形式的包含动作验证码指令 的通知消息, 可以使用户在任何情况下进行验证码的验证, 提高了验证码 的实用性和便利性。
优选地, 上述图 9-图 16实施例的基础上, 动作验证码指令, 包括下 述指令中的至少一种指令: 用于指示用户进行手势操作的指令; 用于指示 用户进行全身运动的指令; 用于指示用户完成。
本发明实施例通过多种难易程度不同的动作验证码指令,可以满足各种场 合、 各种应用的需要, 增加了动作验证码的适用性。
图 18为本发明用户设备实施例一的结构示意图, 如图 18所示, 本发 明实施例提供的用户设备包括指令接收单元 181、 传感器 182、 数据收集 单元 183、 数据发送单元 184。 其中, 指令接收单元 181用于接收服务器 发送的包含动作验证码指令的通知消息; 传感器 182: 用于根据用户执行 与所述动作验证码指令对应的动作, 产生传感器数据; 数据收集单元 183 用于获取所述传感器数据; 数据发送单元 184用于根据所述传感器数据, 向所述服务器反馈验证信息。
本实施例的用户设备,可以用于执行图 1所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 对所述传感器数据进行 动作验证码的验证处理, 并将验证结果信息发送给所述服务器。
本实施例的用户设备,可以用于执行图 2所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 对所述传感器数据进行 预处理, 获取所述传感器数据的特征信息; 根据所述特征信息, 进行动作 验证码的验证处理, 并将验证结果信息发送给所述服务器。 本实施例的用户设备,可以用于执行图 3所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 提取所述传感器数据的 波动幅度特征信息; 对所述波动幅度特征信息中的波动幅度值和预设阈值 进行比较验证处理; 若所述波动幅度值大于所述预设阈值, 则将验证通过 的验证结果信息发送给所述服务器。
本实施例的用户设备,可以用于执行图 4所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 向所述服务器发送所述 传感器数据, 以使所述服务器根据所述传感器数据进行动作验证码的验证 处理。
本实施例的用户设备,可以用于执行图 5所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 对所述传感器数据进行 预处理, 获取所述传感器数据的特征信息; 向所述服务器发送所述传感器 数据的特征信息, 以使所述服务器根据所述特征信息进行动作验证码的验 证处理。
本实施例的用户设备,可以用于执行图 6所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的数据发送单元 184具体用于: 对所述传感器数据进行 预处理, 向所述服务器发送预处理后的传感器数据;
所述预处理, 包括下述至少一种处理:
降低所述传感器数据的釆样频率的处理;
提取所述传感器数据在单位时间窗内的时域特征和 /或频率特征的处 理;
对所述传感器数据进行压缩的处理。
本实施例的用户设备,可以用于执行图 7所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述指令接收单元 181具体用于: 接收所述服务器发送的应 用业务消息, 所述应用业务消息中嵌入所述动作验证码指令。 本实施例的用户设备,可以用于执行图 8所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述实施例中的指令接收单元 181具体用于: 接收所述服务 器发送的短消息, 所述短消息中包含文字描述的所述动作验证码指令; 或 者,
接收所述服务器发送的彩信, 所述彩信中包含图片或动画描述的所述 动作验证码指令; 或者,
接收所述服务器发送的语音提示消息, 所述语音提示消息中包含所述 动作验证码指令的语音提示信息。
本发明实施例通过指令接收单元多种方式接收服务器发送的包含动 作验证码指令的通知消息, 可以使用户在任何情况下进行动作验证码的验 证, 提高了动作验证码的实用性和便利性。
可选地,上述实施例中的动作指令, 包括下述指令中的至少一种指令: 用于指示用户进行手势操作的指令;
用于指示用户进行全身运动的指令;
用于指示用户完成特定任务操作的指令。
本发明实施例通过多种难易程度不同的动作验证码指令,可以满足各种人 群, 各种场合, 各种应用的需要, 增加了动作验证码的适用性。
图 19为本发明服务器实施例一的结构示意图, 如图 19所示, 本发明 实施例提供的服务器包括通知信息发送单元 191 , 信息接收单元 192, 验 证单元 193。 其中, 通知信息发送单元 191用于向用户设备 UE发送包含 动作验证码指令的通知消息, 以使所述 UE获取用户执行与所述动作验证 码指令对应的动作所产生的传感器数据; 信息接收单元 192用于接收所述 UE根据所述传感器数据发送的验证信息; 验证单元 193用于根据所述验 证信息, 确定验证结果。
本实施例的服务器, 可以用于执行图 9所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的信息接收单元 192具体用于: 接收所述 UE发送的对 本实施例的服务器, 可以用于执行图 10所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的信息接收单元 192具体用于: 接收所述 UE发送的对 特征信息进行动作验证码的验证处理后的验证结果信息。
所述特征信息为: UE 对所述传感器数据进行预处理获取的所述特征 信息。
本实施例的服务器, 可以用于执行图 11所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的信息接收单元 192具体用于: 接收所述 UE发送的根 据波动幅度特征信息进行动作验证码的验证处理后的验证结果信息;
所述验证处理后的验证结果信息包括: 所述传感器数据的波动幅度特 征信息中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
本实施例的服务器, 可以用于执行图 12所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的信息接收单元 192具体用于: 接收所述 UE发送的传 感器数据;
上述的验证单元 193具体用于: 将所述传感器数据与匹配特征信息进 行匹配, 获得验证结果。
本实施例的服务器, 可以用于执行图 13所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的通知信息发送单元 191具体用于: 向至少一个 UE发 送包含所述动作验证码指令的验证码测试消息, 以使所述至少一个 UE获 取用户执行与所述动作验证码指令对应的动作所产生的测试传感器数据; 上述的信息接收单元 192具体用于: 接收所述至少一个 UE发送的所 述测试传感器数据;
上述的验证单元 193具体用于确定所述测试传感器数据中具有公共属 性的测试传感器数据, 并将所述具有公共属性的测试传感器数据作为所述 匹配特征信息。
本实施例的服务器, 可以用于执行图 14所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的验证单元 193具体用于: 对所述测试传感器数据进行 预处理, 获取所述传感器数据的特征信息; 确定所述特征信息中具有公共 属性的特征信息, 并将所述具有公共属性的特征信息作为所述匹配特征信 息。
本实施例的服务器, 可以用于执行图 15所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的通知信息发送单元 191具体用于: 向至少一个 UE发 送包含所述动作验证码指令的验证码测试消息, 以使所述至少一个 UE获 取用户执行与所述动作验证码指令对应的动作所产生的测试传感器数据; 上述的信息接收单元 192具体用于: 接收所述至少一个 UE发送的对 所述测试传感器数据进行预处理后的测试传感器数据;
上述的验证单元 193具体用于: 确定所述预处理后的测试传感器数据 中具有公共属性的测试传感器数据, 并将所述具有公共属性的预处理后的 测试传感器数据作为所述匹配特征信息。
本实施例的服务器, 可以用于执行图 16所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述通知信息发送单元 191具体用于: 向所述 UE发送应用 业务消息, 所述应用业务消息中嵌入所述动作验证码指令。
本实施例的服务器, 可以用于执行图 17所示方法实施例的技术方案, 其实现原理和技术效果类似, 此处不再赘述。
可选地, 上述的通知信息发送单元 191具体用于: 向所述 UE发送短 消息, 所述短消息中包含文字描述的所述动作验证码指令; 或者,
向所述 UE发送彩信, 所述彩信中包含图片或动画描述的所述动作验 证码指令; 或者,
向所述 UE发送语音提示消息, 所述语音提示消息中包含所述动作验 证码指令的语音提示信息。
本发明实施例通过服务器向 UE发送多种形式的包含动作验证码指令 的通知消息, 可以使用户在任何情况下进行验证码的验证, 提高了验证码 的实用性和便利性。
可选地, 上述的动作验证码指令, 包括下述指令中的至少一种指令: 用于指示用户进行手势操作的指令; 用于指示用户进行全身运动的指 令; 用于指示用户完成特定任务操作的指令。
本发明实施例通过多种难易程度不同的动作验证码指令,可以满足各种场 合、 各种应用的需要, 增加了动作验证码的适用性。
图 20为本发明用户设备实施例二的结构示意图。 如图 20所示, 本实 施例提供的用户设备 200 包括处理器 2001 和存储器 2002 以及传感器 2005„ 用户设备 200还可以包括发射器 2003、 接收器 2004。 发射器 2003 和接收器 2004可以和处理器 2001相连。 其中, 存储器 2002存储执行指 令, 当用户设备 200运行时, 处理器 2001、 传感器 2005与存储器 2002 三者之间通信, 处理器 2001调用存储器 2002中的执行指令, 获取传感器 数据, 同时, 处理器 2001与传感器 2005调用存储器 2002中的执行指令, 用于执行上述用户验证处理方法的实施例, 其实现原理和技术效果类似, 此处不再赘述。
图 21为本发明服务器实施例二的结构示意图。 如图 21所示, 该服务 器 210包括: 至少一个处理器 2101 , 例如 CPU, 至少一个网络接口 2104 或者其他用户接口 2103 , 存储器 2105 , 至少一个通信总线 2102。 通信总 线 2102用于实现这些组件之间的连接通信。 该服务器 210可选的包含用 户接口 2103 , 包括显示器, 键盘或者点击设备 (例如, 鼠标, 轨迹球 ( trackball ) , 触感板或者触感显示屏)。 存储器 2105可能包含高速 RAM 存储器, 也可能还包括非不稳定的存储器 (non-volatile memory ) , 例如 至少一个磁盘存储器。 存储器 2105 可选的可以包含至少一个位于远离前 述处理器 2101的存储装置。
在一些实施方式中, 存储器 2105存储了如下的元素, 可执行模块或 者数据结构, 或者他们的子集, 或者他们的扩展集:
操作系统 2151 , 包含各种系统程序, 用于实现各种基础业务以及处理 基于硬件的任务;
应用模块 2152 , 包含各种应用程序, 用于实现各种应用业务。
应用模块 2152中包括但不限于通知信息发送单元 191、信息接收单元 192、 验证单元 193。
应用模块 2152中各模块的具体实现参见图 19所示实施例中的相应模 块, 在此不赘述。 当服务器 210运行时, 处理器 2101与存储器 2105之间通信, 处理器 2105 执行指令使得服务器 210执行上述方法实施例中的用户验证处理方 法, 其实现原理和技术效果类似, 此处不再赘述。
本领域普通技术人员可以理解: 实现上述各方法实施例的全部或部分 步骤可以通过程序指令相关的硬件来完成。 前述的程序可以存储于一计算 机可读取存储介质中。 该程序在执行时, 执行包括上述各方法实施例的步 骤; 而前述的存储介质包括: ROM、 RAM, 磁碟或者光盘等各种可以存 储程序代码的介质。
最后应说明的是: 以上各实施例仅用以说明本发明的技术方案, 而非对 其限制; 尽管参照前述各实施例对本发明进行了详细的说明, 本领域的普通 技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改, 或者对其中部分或者全部技术特征进行等同替换; 而这些修改或者替换, 并 不使相应技术方案的本质脱离本发明各实施例技术方案的范围。

Claims

权 利 要 求 书
1、 一种用户验证处理方法, 其特征在于, 包括:
接收服务器发送的包含动作验证码指令的通知消息;
获取用户执行与所述动作验证码指令对应的动作所产生的传感器数 据;
根据所述传感器数据, 向所述服务器反馈验证信息。
2、 根据权利要求 1所述的方法, 其特征在于, 所述根据所述传感器 数据, 向所述服务器反馈验证信息, 包括:
对所述传感器数据进行动作验证码的验证处理, 并将验证结果信息发 送给所述服务器。
3、 根据权利要求 2所述的方法, 其特征在于, 所述对所述传感器数 据进行动作验证码的验证处理之前, 还包括:
对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 对所述传感器数据进行动作验证码的验证处理, 包括:
根据所述特征信息, 进行动作验证码的验证处理。
4、 根据权利要求 3所述的方法, 其特征在于, 所述对所述传感器数 据进行预处理, 获取所述传感器数据的特征信息, 包括:
提取所述传感器数据的波动幅度特征信息;
所述根据所述特征信息, 进行动作验证码的验证处理, 包括: 对所述波动幅度特征信息中的波动幅度值和预设阈值进行比较验证 处理;
所述将验证结果信息发送给所述服务器, 包括:
若所述波动幅度值大于所述预设阈值, 则将验证通过的验证结果信息 发送给所述服务器。
5、 根据权利要求 1所述的方法, 其特征在于, 所述根据所述传感器 数据, 向所述服务器反馈验证信息, 包括:
向所述服务器发送所述传感器数据, 以使所述服务器根据所述传感器 数据进行动作验证码的验证处理。
6、 根据权利要求 5所述的方法, 其特征在于, 所述向所述服务器发 送所述传感器数据之前, 还包括: 对所述传感器数据进行预处理, 获取所述传感器数据的特征信息; 所述向所述服务器发送所述传感器数据, 包括:
向所述服务器发送所述传感器数据的特征信息, 以使所述服务器根据 所述特征信息进行动作验证码的验证处理。
7、 根据权利要求 5所述的方法, 其特征在于, 所述向所述服务器发 送所述传感器数据之前, 还包括:
对所述传感器数据进行预处理,所述预处理, 包括下述至少一种处理: 降低所述传感器数据的釆样频率的处理;
提取所述传感器数据在单位时间窗内的时域特征和 /或频率特征的处 理;
对所述传感器数据进行压缩的处理;
所述向所述服务器发送所述传感器数据, 包括:
向所述服务器发送预处理后的传感器数据。
8、 根据权利要求 1〜7中任一项所述的方法, 其特征在于, 所述接收 服务器发送的包含动作验证码指令的通知消息, 包括:
接收所述服务器发送的应用业务消息, 所述应用业务消息中嵌入所述 动作验证码指令。
9、 根据权利要求 1〜7中任一项所述的方法, 其特征在于, 所述接收 服务器发送的包含动作验证码指令的通知消息, 包括:
接收所述服务器发送的短消息, 所述短消息中包含文字描述的所述动 作验证码指令; 或者,
接收所述服务器发送的彩信, 所述彩信中包含图片或动画描述的所述 动作验证码指令; 或者,
接收所述服务器发送的语音提示消息, 所述语音提示消息中包含所述 动作验证码指令的语音提示信息。
10、 根据权利要求 1〜7中任一项所述的方法, 其特征在于, 所述动作 验证码指令, 包括下述指令中的至少一种指令:
用于指示用户进行手势操作的指令;
用于指示用户进行全身运动的指令;
用于指示用户完成特定任务操作的指令。
11、 一种用户验证处理方法, 其特征在于, 包括:
向用户设备 UE发送包含动作验证码指令的通知消息, 以使所述 UE 获取用户执行与所述动作验证码指令对应的动作所产生的传感器数据; 接收所述 UE根据所述传感器数据发送的验证信息;
根据所述验证信息, 确定验证结果。
12、 根据权利要求 11所述的方法, 其特征在于, 所述接收所述 UE 根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的对所述传感器数据进行动作验证码的验证处理后 的验证结果信息。
13、 根据权利要求 11所述的方法, 其特征在于, 所述接收所述 UE 根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的对特征信息进行动作验证码的验证处理后的验证 结果信息;
所述特征信息为: UE对所述传感器数据进行预处理获取的所述特征 信息。
14、 根据权利要求 13所述的方法, 其特征在于, 所述接收所述 UE 发送的对特征信息进行动作验证码的验证处理后的验证结果信息, 包括: 接收所述 UE发送的根据波动幅度特征信息进行动作验证码的验证处 理后的验证结果信息;
所述验证处理后的验证结果信息包括: 所述传感器数据的波动幅度特 征信息中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
15、 根据权利要求 11所述的方法, 其特征在于, 所述接收所述 UE 根据所述传感器数据发送的验证信息, 包括:
接收所述 UE发送的传感器数据;
所述根据所述验证信息, 确定验证结果, 包括:
将所述传感器数据与匹配特征信息进行匹配, 获得验证结果。
16、 根据权利要求 15所述的方法, 其特征在于, 所述将所述传感器 数据与匹配特征信息进行匹配之前, 还包括:
向至少一个 UE发送包含所述动作验证码指令的验证码测试消息, 以 使所述至少一个 UE获取用户执行与所述动作验证码指令对应的动作所产 生的测试传感器数据;
接收所述至少一个 UE发送的所述测试传感器数据;
确定所述测试传感器数据中具有公共属性的测试传感器数据, 并将所 述具有公共属性的测试传感器数据作为所述匹配特征信息。
17、 根据权利要求 16所述的方法, 其特征在于, 所述确定所述测试 传感器数据中具有公共属性的测试传感器数据之前, 还包括:
对所述测试传感器数据进行预处理, 获取所述传感器数据的特征信 息;
所述确定所述测试传感器数据中具有公共属性的测试传感器数据, 并 将所述具有公共属性的测试传感器数据作为所述匹配特征信息, 包括: 确定所述特征信息中具有公共属性的特征信息, 并将所述具有公共属 性的特征信息作为所述匹配特征信息。
18、 根据权利要求 15所述的方法, 其特征在于, 所述将所述传感器 数据与匹配特征信息进行匹配之前, 还包括:
向至少一个 UE发送包含所述动作验证码指令的验证码测试消息, 以 使所述至少一个 UE获取用户执行与所述动作验证码指令对应的动作所产 生的测试传感器数据;
接收所述至少一个 UE发送的对所述测试传感器数据进行预处理后的 测试传感器数据;
确定所述预处理后的测试传感器数据中具有公共属性的测试传感器 数据, 并将所述具有公共属性的预处理后的测试传感器数据作为所述匹配 特征信息。
19、 根据权利要求 11〜18中任一项所述的方法, 其特征在于, 所述向 用户设备 UE发送包含动作验证码指令的通知消息, 包括:
向所述 UE发送应用业务消息, 所述应用业务消息中嵌入所述动作验 证码指令。
20、 根据权利要求 11〜18中任一项所述的方法, 其特征在于, 所述向 用户设备 UE发送包含动作验证码指令的通知消息, 包括:
向所述 UE发送短消息, 所述短消息中包含文字描述的所述动作验证 码指令; 或者, 向所述 UE发送彩信, 所述彩信中包含图片或动画描述的所述动作验 证码指令; 或者,
向所述 UE发送语音提示消息, 所述语音提示消息中包含所述动作验 证码指令的语音提示信息。
21、 根据权利要求 1 1〜18中任一项所述的方法, 其特征在于, 所述动 作验证码指令, 包括下述指令中的至少一种指令:
用于指示用户进行手势操作的指令;
用于指示用户进行全身运动的指令;
用于指示用户完成特定任务操作的指令。
22、 一种用户设备, 其特征在于, 包括:
指令接收单元: 用于接收服务器发送的包含动作验证码指令的通知消 息;
传感器: 用于根据用户执行与所述动作验证码指令对应的动作, 产生 传感器数据;
数据收集单元: 用于获取所述传感器数据;
数据发送单元: 用于根据所述传感器数据, 向所述服务器反馈验证信 息。
23、 根据权利要求 22所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 对所述传感器数据进行动作验证码的验证处理, 并将验证 结果信息发送给所述服务器。
24、 根据权利要求 23所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 对所述传感器数据进行预处理, 获取所述传感器数据的特 征信息; 根据所述特征信息, 进行动作验证码的验证处理, 并将验证结果 信息发送给所述服务器。
25、 根据权利要求 24所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 提取所述传感器数据的波动幅度特征信息; 对所述波动幅 度特征信息中的波动幅度值和预设阈值进行比较验证处理; 若所述波动幅 度值大于所述预设阈值, 则将验证通过的验证结果信息发送给所述服务 器。
26、 根据权利要求 22所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 向所述服务器发送所述传感器数据, 以使所述服务器根据 所述传感器数据进行动作验证码的验证处理。
27、 根据权利要求 26所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 对所述传感器数据进行预处理, 获取所述传感器数据的特 征信息; 向所述服务器发送所述传感器数据的特征信息, 以使所述服务器 根据所述特征信息进行动作验证码的验证处理。
28、 根据权利要求 26所述的用户设备, 其特征在于, 所述数据发送 单元具体用于: 对所述传感器数据进行预处理, 向所述服务器发送预处理 后的传感器数据;
所述预处理, 包括下述至少一种处理:
降低所述传感器数据的釆样频率的处理;
提取所述传感器数据在单位时间窗内的时域特征和 /或频率特征的处 理;
对所述传感器数据进行压缩的处理。
29、 根据权利要求 22〜28中任一项所述的用户设备, 其特征在于, 所 述指令接收单元具体用于: 接收所述服务器发送的应用业务消息, 所述应 用业务消息中嵌入所述动作验证码指令。
30、 一种服务器, 其特征在于, 包括:
通知信息发送单元: 用于向用户设备 UE发送包含动作验证码指令的 通知消息, 以使所述 UE获取用户执行与所述动作验证码指令对应的动作 所产生的传感器数据;
信息接收单元: 用于接收所述 UE根据所述传感器数据发送的验证信 息;
验证单元: 用于根据所述验证信息, 确定验证结果。
31、 根据权利要求 30所述的服务器, 其特征在于, 所述信息接收单 元具体用于: 接收所述 UE发送的对所述传感器数据进行动作验证码的验 证处理后的验证结果信息。
32、 根据权利要求 30所述的服务器, 其特征在于, 所述信息接收单 元具体用于: 接收所述 UE发送的对特征信息进行动作验证码的验证处理 后的验证结果信息; 所述特征信息为: UE对所述传感器数据进行预处理获取的所述特征 信息。
33、 根据权利要求 32所述的服务器, 其特征在于, 所述信息接收单 元具体用于: 接收所述 UE发送的根据波动幅度特征信息进行动作验证码 的验证处理后的验证结果信息;
所述验证处理后的验证结果信息包括: 所述传感器数据的波动幅度特 征信息中的波动幅度值大于预设阈值时的验证通过的验证结果信息。
34、 根据权利要求 30所述的服务器, 其特征在于, 所述信息接收单 元具体用于: 接收所述 UE发送的传感器数据;
所述验证单元具体用于: 将所述传感器数据与匹配特征信息进行匹 配, 获得验证结果。
35、 根据权利要求 34所述的服务器, 其特征在于, 所述通知信息发 送单元具体用于: 向至少一个 UE发送包含所述动作验证码指令的验证码 测试消息, 以使所述至少一个 UE获取用户执行与所述动作验证码指令对 应的动作所产生的测试传感器数据;
所述信息接收单元具体用于: 接收所述至少一个 UE发送的所述测试 传感器数据;
所述验证单元具体用于确定所述测试传感器数据中具有公共属性的 测试传感器数据, 并将所述具有公共属性的测试传感器数据作为所述匹配 特征信息。
36、 根据权利要求 35所述的服务器, 其特征在于, 所述验证单元具 体用于: 对所述测试传感器数据进行预处理, 获取所述传感器数据的特征 信息; 确定所述特征信息中具有公共属性的特征信息, 并将所述具有公共 属性的特征信息作为所述匹配特征信息。
37、 根据权利要求 34所述的服务器, 其特征在于, 所述通知信息发 送单元具体用于: 向至少一个 UE发送包含所述动作验证码指令的验证码 测试消息, 以使所述至少一个 UE获取用户执行与所述动作验证码指令对 应的动作所产生的测试传感器数据;
所述信息接收单元具体用于: 接收所述至少一个 UE发送的对所述测 试传感器数据进行预处理后的测试传感器数据; 所述验证单元具体用于: 确定所述预处理后的测试传感器数据中具有 公共属性的测试传感器数据, 并将所述具有公共属性的预处理后的测试传 感器数据作为所述匹配特征信息。
38、 根据权利要求 30〜37中任一项所述的服务器, 其特征在于, 所述 通知信息发送单元具体用于: 向所述 UE发送应用业务消息, 所述应用业 务消息中嵌入所述动作验证码指令。
PCT/CN2013/074450 2012-09-21 2013-04-19 用户验证处理方法、用户设备和服务器 WO2014044052A1 (zh)

Priority Applications (2)

Application Number Priority Date Filing Date Title
EP13805723.7A EP2739006A4 (en) 2012-09-21 2013-04-19 VALIDATION PROCESSING, USER DEVICE AND SERVER
US14/145,226 US20140115682A1 (en) 2012-09-21 2013-12-31 User Verification Processing Method, User Equipment, and Server

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210355371.2 2012-09-21
CN201210355371.2A CN103685195A (zh) 2012-09-21 2012-09-21 用户验证处理方法、用户设备和服务器

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US14/145,226 Continuation US20140115682A1 (en) 2012-09-21 2013-12-31 User Verification Processing Method, User Equipment, and Server

Publications (1)

Publication Number Publication Date
WO2014044052A1 true WO2014044052A1 (zh) 2014-03-27

Family

ID=50321521

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/074450 WO2014044052A1 (zh) 2012-09-21 2013-04-19 用户验证处理方法、用户设备和服务器

Country Status (4)

Country Link
US (1) US20140115682A1 (zh)
EP (1) EP2739006A4 (zh)
CN (1) CN103685195A (zh)
WO (1) WO2014044052A1 (zh)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107920044A (zh) * 2016-10-09 2018-04-17 中国移动通信有限公司研究院 一种安全验证方法及装置

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104954343B (zh) * 2014-03-31 2018-04-17 腾讯科技(深圳)有限公司 验证信息处理方法、服务器及系统
US9241079B1 (en) * 2014-06-27 2016-01-19 Sap Se Mobile application usage monitor
GB201411912D0 (en) * 2014-07-03 2014-08-20 Realeyes O Method of collecting computer user data
CN105450410A (zh) * 2014-08-06 2016-03-30 阿里巴巴集团控股有限公司 一种校验方法和装置
CA2957739C (en) * 2014-08-13 2023-10-17 Tyco Safety Products Canada Ltd. Method and apparatus for automation and alarm architecture
US10592306B2 (en) 2014-10-03 2020-03-17 Tyco Safety Products Canada Ltd. Method and apparatus for resource balancing in an automation and alarm architecture
US10803720B2 (en) 2014-08-13 2020-10-13 Tyco Safety Products Canada Ltd. Intelligent smoke sensor with audio-video verification
CN105512539A (zh) * 2014-09-24 2016-04-20 腾讯科技(深圳)有限公司 验证信息发布方法及装置、信息验证方法及装置
CN104901936B (zh) * 2014-10-17 2018-12-07 腾讯科技(深圳)有限公司 一种业务处理方法、装置、终端及服务器
CN105844124A (zh) * 2015-06-30 2016-08-10 维沃移动通信有限公司 一种密码数据的处理方法和装置
CN105119880B (zh) * 2015-07-08 2019-04-26 Oppo广东移动通信有限公司 一种账号登录方法、系统、用户终端及服务器
CN105072610B (zh) * 2015-07-08 2019-02-05 Oppo广东移动通信有限公司 一种网络接入方法、系统、用户终端及服务器
CN106656913A (zh) * 2015-10-28 2017-05-10 珠海金山办公软件有限公司 一种数字验证码的生成方法及装置
CN105471921B (zh) * 2016-01-20 2018-09-21 广东欧珀移动通信有限公司 一种应用登录方法和装置
CN107154924B (zh) * 2016-03-04 2021-01-05 阿里巴巴集团控股有限公司 基于验证码的验证处理方法及装置
CN106453237A (zh) * 2016-08-18 2017-02-22 广州凰腾通信科技有限公司 安全验证方法及安全验证装置
CN106845209A (zh) * 2017-02-20 2017-06-13 百度在线网络技术(北京)有限公司 安全验证方法和装置
CN108573131B (zh) * 2017-03-09 2020-12-08 腾讯科技(深圳)有限公司 控制终端设备中验证的方法和装置
CN109791670B (zh) * 2018-08-22 2023-08-18 区链通网络有限公司 基于区块链系统的人机识别方法、装置和存储介质
CN110046647A (zh) * 2019-03-08 2019-07-23 同盾控股有限公司 一种验证码机器行为识别方法及装置
EP3939213A4 (en) 2019-03-13 2022-10-05 Hitachi Vantara LLC SYSTEMS AND METHODS FOR CONFIGURING AND TESTING AN EXTERNAL DEVICE THROUGH A MOBILE DEVICE
CN110706707B (zh) * 2019-11-13 2020-09-18 百度在线网络技术(北京)有限公司 用于语音交互的方法、装置、设备和计算机可读存储介质
CN111062025B (zh) * 2019-12-09 2022-03-01 Oppo广东移动通信有限公司 应用数据处理方法及相关装置

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102143482A (zh) * 2011-04-13 2011-08-03 中国工商银行股份有限公司 一种手机银行客户端信息认证方法、系统及移动终端
CN102509053A (zh) * 2011-11-23 2012-06-20 唐辉 用于验证授权的方法、处理器、设备和移动终端
CN102664903A (zh) * 2012-05-16 2012-09-12 李明 一种网络用户验证方法及系统

Family Cites Families (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6719690B1 (en) * 1999-08-13 2004-04-13 Synaptec, L.L.C. Neurological conflict diagnostic method and apparatus
US20040123113A1 (en) * 2002-12-18 2004-06-24 Svein Mathiassen Portable or embedded access and input devices and methods for giving access to access limited devices, apparatuses, appliances, systems or networks
US7533419B2 (en) * 2004-10-29 2009-05-12 Microsoft Corporation Human interactive proof service
US20090320123A1 (en) * 2008-06-20 2009-12-24 Motorola, Inc. Method and apparatus for user recognition employing motion passwords
US8353018B2 (en) * 2008-11-13 2013-01-08 Yahoo! Inc. Automatic local listing owner authentication system
US20100328074A1 (en) * 2009-06-30 2010-12-30 Johnson Erik J Human presence detection techniques
US8391613B2 (en) * 2009-06-30 2013-03-05 Oracle America, Inc. Statistical online character recognition
JP2011170857A (ja) * 2010-02-22 2011-09-01 Ailive Inc 最小のディレイでモーション認識を行うシステム及び方法
US20110231913A1 (en) * 2010-03-17 2011-09-22 State of Oregon acting by and through the State Board of Education on Behalf of Portland State System and methods of determining computational puzzle difficulty for challenge-response authentication
WO2012103265A1 (en) * 2011-01-25 2012-08-02 Framehawk, Inc. Methods and system for enabling communication of identity information during online transaction
US20120233218A1 (en) * 2011-03-09 2012-09-13 Christopher Liam Ivey System and Method for Delivering Brand Reinforcement as a Component of a Human Interactive Proof

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102143482A (zh) * 2011-04-13 2011-08-03 中国工商银行股份有限公司 一种手机银行客户端信息认证方法、系统及移动终端
CN102509053A (zh) * 2011-11-23 2012-06-20 唐辉 用于验证授权的方法、处理器、设备和移动终端
CN102664903A (zh) * 2012-05-16 2012-09-12 李明 一种网络用户验证方法及系统

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP2739006A4 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107920044A (zh) * 2016-10-09 2018-04-17 中国移动通信有限公司研究院 一种安全验证方法及装置

Also Published As

Publication number Publication date
CN103685195A (zh) 2014-03-26
EP2739006A1 (en) 2014-06-04
EP2739006A4 (en) 2014-09-17
US20140115682A1 (en) 2014-04-24

Similar Documents

Publication Publication Date Title
WO2014044052A1 (zh) 用户验证处理方法、用户设备和服务器
CN108351932B (zh) 基于图像的captcha挑战
US10440019B2 (en) Method, computer program, and system for identifying multiple users based on their behavior
US11989275B2 (en) Passive identification of a device user
KR102224721B1 (ko) 사용자와 연관된 생체인식 모델에 기초하여 사용자를 인증하는 시스템 및 방법
US20180253542A1 (en) Variation Analysis-Based Public Turing Test to Tell Computers and Humans Apart
CN110378095B (zh) 基于验证码的交互验证方法、装置、介质和计算设备
KR102429406B1 (ko) 콘텐츠 플랫폼에서 사용자 상호작용 확인
TWI616821B (zh) Bar code generation method, bar code based authentication method and related terminal
CN108229220B (zh) 用于在不可信用户设备上的信息的可信呈现的系统和方法
CN106850503B (zh) 一种免登录身份认证方法及装置
CN102957682A (zh) 一种用于基于验证安全等级提供图片验证码的方法与设备
JP6480710B2 (ja) 手書きデータ検証方法及びユーザ認証方法
JP2023522835A (ja) 暗号化認証のためのシステム及び方法
WO2014018296A1 (en) Securing information using entity detection
WO2017114167A1 (zh) 终端真伪验证方法、装置及系统
CN105339952A (zh) 检测用户和修改设备设置
JP2015115079A (ja) 認証入力方法および装置
WO2022000959A1 (zh) 人机验证方法、装置、设备及存储介质
JP2023549934A (ja) ユーザ認識のための方法及び機器
CN104618100B (zh) 身份验证、基于终端进行支付的方法、终端及服务器
CN114612986A (zh) 检测方法、装置、电子设备及存储介质
CN104811304B (zh) 身份验证方法及装置
CN108289096A (zh) 一种直播间关注、验证直播间关注的方法及装置
CN116110159A (zh) 基于cfca认证标准的用户认证方法、设备和介质

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 2013805723

Country of ref document: EP

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13805723

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE