WO2014183526A1 - Procédé, dispositif, et système de reconnaissance d'identité - Google Patents

Procédé, dispositif, et système de reconnaissance d'identité Download PDF

Info

Publication number
WO2014183526A1
WO2014183526A1 PCT/CN2014/075513 CN2014075513W WO2014183526A1 WO 2014183526 A1 WO2014183526 A1 WO 2014183526A1 CN 2014075513 W CN2014075513 W CN 2014075513W WO 2014183526 A1 WO2014183526 A1 WO 2014183526A1
Authority
WO
WIPO (PCT)
Prior art keywords
application
identification information
terminal
terminal identification
application client
Prior art date
Application number
PCT/CN2014/075513
Other languages
English (en)
Chinese (zh)
Inventor
夏潘斌
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2014183526A1 publication Critical patent/WO2014183526A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication

Definitions

  • the present invention relates to the field of communications, and in particular, to a method, device and system for identity recognition. Background technique
  • OpenID is a user-centric open, decentralized digital identity framework.
  • the framework is based on the OpenID service website.
  • the OpenID service website stores a certain The same password corresponding to multiple applications in the terminal device.
  • the user logs in to a website that supports OpenID, he only needs to input the OpenID username and password registered on the OpenID service website, and then the pre-login website will jump to the OpenID service website. After the password is verified by the OpenID service website, it directly returns to the pre-registered website and the login is successful.
  • an OAuth-based method the OAuth allows a user to have a third-party application access information stored by the user on a website without providing a username and password to a third-party application.
  • a third-party application accesses information stored on a website, it must first obtain authorization from the website, obtain an access license, and then exchange the access license for the access pass, and finally access the resource card of the website to present the access pass.
  • the information stored on the website In the above technical scenario, the user only needs to input the username and password of the resource server on the terminal device to achieve the purpose of logging in to the third-party application.
  • the embodiments of the present invention provide a method, an apparatus, and a system for identifying an identity, which are required to memorize a user name and a password when the user logs in to the application on the terminal device, and improve the security of the application on the user to log in to the terminal device.
  • a method for identifying an identity comprising:
  • the terminal middleware acquires the terminal identification information of the terminal device, where the terminal identification information at least includes the first terminal identification information;
  • the method is Also includes:
  • the first request message carries the first application name of the application client, according to the first possible implementation manner
  • the method further includes:
  • the step of opening the first terminal identification information to the application client is performed.
  • the first request message carries the first application name of the application client, according to the first possible implementation manner; After the receiving the first request message sent by the application client, the method further includes:
  • the application first invokes the first terminal identifier information, requesting the user right to open the first terminal identifier information to the application client;
  • the step of opening the first terminal identification information to the application client is performed.
  • the requesting, by the requesting user, the opening of the first terminal identifier information to the application client includes:
  • the method further includes:
  • the indication message that the authentication succeeds is sent to the application client, so that the application client opens the application of the application client according to the first terminal identifier information stored by the application client.
  • the method before the sending, sending the indication message that the authentication succeeds to the application client, the method further includes: Sending a pre-stored indication information of whether a login password is required to log in to the application client to the application client;
  • the indication message that the authentication succeeds is sent to the application client, so that the application client opens the application according to the first terminal identification information stored by the application client and the indication information of whether the login password is required. Client application.
  • the corresponding relationship between the saving the first application name and the first terminal identification information includes:
  • the opening the first terminal identifier information to the application client specifically includes: the encrypted first terminal identifier
  • the information is opened to the application client, so that the application client obtains and stores the encrypted first terminal identifier information, so that the first terminal identifier information stored by the application client is specifically an encrypted first terminal. Identification information.
  • determining, according to the first application name, whether the application is legal or not specifically includes: reading a local database Information
  • the local database information includes the first application name, determining that the application is legal; if the first application name is not included in the local database information, requesting the capability open platform/app store to obtain the first Application name
  • the terminal identifier information specifically includes:
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • a method for identifying an identity comprising:
  • the application client receives an access request message, and the access request message requests to open an application of the application client;
  • the method further includes:
  • the first request message is sent to the terminal middleware, and the first request message requests to acquire the first terminal identifier information;
  • the first request message carries a first application name of the application client, so that the terminal middleware is configured according to the first application name, according to the first possible implementation manner. And determining whether the application is legal, and the first terminal identification information is opened to the application client when the application is legal.
  • the first request message carries the first application name of the application client, so that the terminal middleware is configured according to the first application name, according to the first possible implementation manner. Determining whether the application is legal, and when the application is legal, according to the first application Determining whether the application first invokes the first terminal identification information, and after determining that the application is the first time to invoke the first terminal identification information, requesting the user to authorize opening the first terminal identification information to the application client, After receiving the authorization response that the user returns to the application client to open the first terminal identifier information, the first terminal identifier information is opened to the application client.
  • the application for performing the login authentication according to the stored first terminal identifier information to open the application client includes:
  • the first application name and the stored first terminal identification information are authenticated; if the indication message of successful authentication sent by the terminal middleware is received, the application of the application client is opened.
  • the method further includes:
  • the application for opening the application client includes:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • the obtaining, by the third possible implementation manner to the fifth possible implementation manner, the acquiring the first terminal identifier information that is open by the terminal middleware specifically: acquiring the terminal middleware Encrypted first terminal identification information, wherein the encrypted first terminal identification information is generated by the terminal middleware according to the first application name and the first terminal identification information, using an advanced encryption standard AES ;
  • the storing the first terminal identifier information specifically includes:
  • the terminal identifier information specifically includes:
  • the international mobile subscriber identity of the SIM card in the terminal device IMSI is the international mobile subscriber identity of the SIM card in the terminal device IMSI;
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • a terminal middleware in a third aspect, includes an acquiring unit and an opening unit;
  • the acquiring unit is configured to acquire terminal identification information of the terminal device, where the terminal identification information includes at least first terminal identification information;
  • the opening unit is configured to open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information, and after receiving the access request message, according to the The first terminal identification information is used for login authentication.
  • the terminal middleware further includes a receiving unit
  • the receiving unit is configured to: after the acquiring unit acquires the terminal identifier information of the terminal device, the open unit receives the first terminal identifier information to the application client, and receives the application client And sending the first request message, where the first request message requests to acquire the first terminal identifier information.
  • the terminal middleware further includes a determining unit and an executing unit, according to the first possible implementation manner;
  • the first request message carries a first application name of the application client
  • the determining unit is configured to determine, according to the first application name, whether the application is legal after the receiving unit receives the first request message sent by the application client;
  • the executing unit is further configured to: when the application is legal, perform the step of opening the first terminal identification information to an application client.
  • the terminal middleware further includes a determining unit, a requesting unit, a storage unit, and an executing unit, according to the first possible implementation manner;
  • the first request message carries a first application name of the application client
  • the determining unit is configured to determine, according to the first application name, whether the application is legal after the receiving unit receives the first request message sent by the application client;
  • the determining unit is further configured to: determine, according to the first application name, whether the application first invokes the first terminal identification information according to the first application name;
  • the requesting unit is configured to: if the application first invokes the first terminal identification information, request the user to authorize opening the first terminal identification information to the application client;
  • the receiving unit is further configured to receive a response to the user that opens the first terminal identification information to the application client.
  • the storage unit is configured to save a correspondence between the first application name and the first terminal identification information
  • the executing unit is configured to perform the step of opening the first terminal identification information to an application client.
  • the requesting unit requesting the user to authorize the opening of the first terminal identification information to the application client, specifically includes: sending an authentication short message, requesting the user to pass Entering the content of the authentication short message for authorization; or
  • the terminal middleware further includes an checking unit and a sending unit, according to the third possible implementation manner or the fourth possible implementation manner;
  • the receiving unit is further configured to receive a second request message that is sent by the application client to request authentication, where the second request message carries a first application name of the application client and a first terminal that is stored by the application client. Identification information;
  • the checking unit is configured to check whether a correspondence between the first application name and the first terminal identification information stored by the application client is stored;
  • the sending unit is further configured to: if stored, send an indication message that the authentication succeeds to the application client, so that the application client opens the application client according to the first terminal identifier information stored by the application client. application.
  • the sending unit is further configured to send, before the sending, sending the indication message that the authentication succeeds to the application client, the pre-stored indication information of whether the login password is required to log in to the application client;
  • the application client opens the application of the application client according to the first terminal identifier information stored by the application client, and specifically includes:
  • the indication message that the authentication succeeds is sent to the application client, so that the application client opens the application according to the first terminal identification information stored by the application client and the indication information of whether the login password is required. Client application.
  • the terminal middleware further includes a generating unit, according to the third possible implementation manner to the sixth possible implementation manner;
  • the generating unit configured to: after receiving, by the receiving unit, an authorization response that is opened by the user to open the first terminal identifier information to the application client, according to the first application name and the first terminal identifier information, Generating the encrypted first terminal identification information corresponding to the first application name by using the advanced encryption standard AES;
  • the storing, by the storage unit, the corresponding relationship between the first application name and the first terminal identification information includes:
  • the opening, by the open unit, the opening the first terminal identifier information to the application client specifically includes:
  • the determining, by the determining unit, whether the application is legal according to the first application name specifically includes:
  • the local database information includes the first application name, determining that the application is legal; if the first application name is not included in the local database information, requesting the capability open platform/app store to obtain the first Application name
  • the terminal identifier information specifically includes:
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • the fourth aspect provides an application client, where the application client includes a receiving unit and a login authentication unit.
  • the receiving unit is configured to receive an access request message, where the access request message requests to open an application of the application client;
  • the login authentication unit is configured to perform login authentication according to the stored first terminal identifier information to open an application of the application client.
  • the application client further includes a determining unit, a sending unit, an obtaining unit, and a first storage unit;
  • the determining unit is configured to determine, after the receiving unit receives the access request message, whether to store the first terminal identification information of the terminal device;
  • the sending unit is configured to: if the first terminal identifier information of the terminal device is not stored, send a first request message to the terminal middleware, where the first request message requests to acquire the first terminal identifier information;
  • the acquiring unit is configured to acquire the first terminal identifier information that is open by the terminal middleware, and the first storage unit is configured to store the first terminal identifier information.
  • the first request message carries a first application name of the application client, so that the terminal middleware is configured according to the first application, according to the first possible implementation manner. And determining whether the application is legal, and the first terminal identification information is opened to the application client when the application is legal.
  • the first request message carries the first application name of the application client, so that the terminal middleware is configured according to the first application name, according to the first possible implementation manner. Determining whether the application is legal, and determining whether the application first invokes the first terminal identification information according to the first application name, and determining that the application is the first call to the first terminal After the information is identified, the user is requested to open the first terminal identification information to the application client, and after receiving the authorization response returned by the user to open the first terminal identification information to the application client, the first The terminal identification information is sent to the application client.
  • the login authentication unit performs login authentication according to the stored first terminal identifier information, to open the application of the application client, specifically, according to the fourth aspect to the third possible implementation manner.
  • the first application name and the stored first terminal identification information are authenticated; if the indication message of successful authentication sent by the terminal middleware is received, the application of the application client is opened.
  • the application client further includes a second storage unit according to the fourth possible implementation manner;
  • the receiving unit is further configured to receive, by the terminal middleware, indication information about whether a login password is required when logging in to the application;
  • the second storage unit is configured to store the indication information of whether the password is required to be logged in. If the indication message of the authentication success is sent by the terminal middleware, the application of the application client is specifically:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • the obtaining, by the acquiring unit, the first terminal identifier information that is open by the terminal middleware, according to the third possible implementation manner to the fifth possible implementation manner specifically includes:
  • the storing, by the storage unit, the first terminal identifier information specifically includes:
  • the terminal identifier information specifically includes:
  • the international mobile subscriber identity of the SIM card in the terminal device IMSI is the international mobile subscriber identity of the SIM card in the terminal device IMSI;
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • a system for identifying an identity the system terminal terminal middleware and an application client;
  • the terminal middleware is configured to acquire terminal identification information of the terminal device, where the terminal identification information includes at least first terminal identification information;
  • the terminal middleware is further configured to: open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information;
  • the application client is configured to receive an access request message, where the access request message requests to open an application of the application client;
  • the application client is further configured to perform login authentication according to the stored first terminal identification information to open an application of the application client.
  • An embodiment of the present invention provides a method, an apparatus, and a system for identifying an identity, where the method includes acquiring, by a terminal middleware, terminal identification information of a terminal device, where the terminal identification information includes at least the first terminal identification information, The first terminal identifier information is opened to the application client. After receiving the access request message, the application client performs login authentication according to the stored first terminal identifier information to open the application of the application client.
  • the method for authenticating the first terminal identification information is used to solve the problem that the user needs to memorize the user name and password when logging in to the application on the terminal device.
  • the first terminal identification information is used as a unique identifier of the application that the user logs in to the terminal device, which improves the security of the application that the user logs in to the terminal device.
  • FIG. 1 is a schematic diagram of an identity recognition method according to an embodiment of the present invention
  • FIG. 3 is still another method for identity recognition according to an embodiment of the present invention.
  • FIG. 4 is still another method for identity recognition according to an embodiment of the present invention.
  • FIG. 5 is still another method for identity recognition according to an embodiment of the present invention.
  • FIG. 6 is a schematic diagram of an authorization interface according to an embodiment of the present invention.
  • FIG. 7 is still another method for identity recognition according to an embodiment of the present invention
  • FIG. 8 is still another method for identity recognition according to an embodiment of the present invention
  • FIG. 9 is a terminal middleware according to an embodiment of the present invention.
  • FIG. 10 is another terminal middleware according to an embodiment of the present invention.
  • FIG. 11 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 12 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 13 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 14 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 15 is an application client according to an embodiment of the present invention.
  • FIG. 16 is an application client according to an embodiment of the present invention.
  • FIG. 17 is an application client according to an embodiment of the present invention.
  • FIG. 18 is a terminal middleware according to an embodiment of the present invention.
  • FIG. 19 is another terminal middleware according to an embodiment of the present invention.
  • FIG. 20 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 21 is still another terminal middleware according to an embodiment of the present invention.
  • FIG. 22 is an identification system according to an embodiment of the present invention.
  • An embodiment of the present invention provides a method for identity identification, where the method is applied to a terminal middleware, as shown in FIG. 1 , the method includes:
  • terminal identification information of the terminal device where the terminal identification information includes at least first terminal identification information.
  • the terminal identifier information of the terminal device may be an IMSI (International Mobile Subscriber Identification Number) and/or a terminal design of a SIM (Subscriber Identity Module) card in the terminal device.
  • IMSI International Mobile Subscriber Identification Number
  • SIM Subscriber Identity Module
  • the IMEI International Mobile Equipment Identity
  • MAC Media Access Control address of the terminal device are not specifically limited in this embodiment of the present invention.
  • the terminal identifier information includes at least first terminal identifier information.
  • the terminal middleware may acquire multiple terminal identification information, and the “first” in the first terminal identification information does not have any special meaning, and only refers to the terminal identification information acquired by the terminal middleware. A terminal identification information.
  • the first terminal identifier information is opened to the application client, so that the application client obtains and stores the first terminal identifier information, and after receiving the access request message, according to the first terminal identifier information. Perform login authentication.
  • opening the first terminal identifier information to the application client may be determined by the configuration of the terminal device.
  • the configuration of the first terminal identification information in the following two scenarios:
  • the international mobile subscriber identity code IMSI can be configured as the first terminal identifier information.
  • the international mobile terminal identification code IMEI or the medium access control MAC address may be used as the first terminal identification information.
  • the terminal middleware may open the first terminal identification information to the application client according to the configuration of the terminal device, or the application client may determine when the user triggers the application client.
  • the first request message is sent to the terminal middleware, and the first terminal identifier information is requested to be obtained, so that the terminal middleware opens the first terminal identifier.
  • Information to the application client In this case, the terminal middleware may directly open the first terminal identification information to the application client; or the terminal middleware may determine whether the application is legal, and determine that the application is legal.
  • Opening the first terminal identification information to the application client; or the terminal middleware is configured to open the first terminal identification information to the application client after determining whether the application is legal, determining that the application is legal and authorized by the user end.
  • the embodiment of the present invention does not specifically limit this, and only describes that the terminal middleware opens the first terminal identification information to the application client after acquiring the terminal identification information.
  • the client so that the application client obtains and stores the first terminal identifier information, and after receiving the access request message, may perform login authentication according to the first terminal identifier information. Therefore, the security of the application that the user logs in to the terminal device is improved, and the problem that the user name and password need to be memorized when the user logs in to the application on the terminal device is avoided.
  • the embodiment of the present invention further provides a method for the identity identification, where the method is applied to an application client, as shown in FIG. 2, the method includes:
  • the application client receives an access request message, and the access request message requests to open an application of the application client.
  • the first terminal identifier information may be stored in the application client before receiving the access request message, or the application client may determine, after receiving the access request message, the first terminal identifier of the terminal device not stored. After the information is obtained, the first terminal identifier information is obtained from the terminal middleware, and then stored in the application client, which is not specifically limited in this embodiment of the present invention.
  • the terminal middleware may use the advanced encryption standard AES according to the first application name and the first terminal identification information of the application client. And generating the encrypted first terminal identifier information corresponding to the first application name, so the stored first terminal identifier information may be the encrypted first terminal identifier information, or may be the unencrypted first terminal identifier information.
  • the embodiment of the present invention does not specifically limit this, and only depends on actual conditions.
  • the application for performing the login authentication according to the stored first terminal identifier information to open the application client may include:
  • the application client may receive the indication information of whether the login password is required to log in to the application, and the method for opening the application of the application client may be determined according to the indication information, including:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • An embodiment of the present invention provides a method for identity identification, where the method includes: acquiring terminal identification information of a terminal device in a terminal middleware, where the terminal identification information includes at least first terminal identification information, and the first The terminal identifier information is opened to the application client. After receiving the access request message, the application client performs login authentication according to the stored first terminal identifier information to open the application of the application client.
  • the method for authenticating the first terminal identification information is used to solve the problem that the user needs to memorize the user name and password when the user logs in to the application on the terminal device.
  • An embodiment of the present invention provides a method for identity identification, where the method is based on a terminal middleware and an application client, where the application client does not store the first terminal identification information of the terminal device, as shown in FIG. 3
  • the method includes: after the terminal middleware acquires the terminal identifier information of the terminal device, the method includes:
  • the application client receives an access request message, where the access request message requests to open an application of the application client.
  • the application client receives an access request message, and the access request message requests to open an application of the application client. 302.
  • the application client determines whether to store the first terminal identifier information of the terminal device. Specifically, after the application client receives the access request message, it first determines whether the first terminal identifier information of the terminal device has been stored.
  • step 308 is performed;
  • the terminal middleware If the first terminal identifier information of the terminal device is not stored, send a first request message to the terminal middleware, where the first request message requests to acquire the first terminal identifier information.
  • the first request message requests to acquire the first terminal identification information.
  • the terminal middleware receives the first request message sent by the application client.
  • the terminal middleware opens the first terminal identification information to the application client.
  • the first request message is sent to the terminal middleware, and the triggering device is triggered.
  • the terminal middleware opens the first terminal identification information to the application client.
  • the application client After the first terminal identification information is requested by the application client, after the first terminal information is opened to the application client, the application client acquires the first terminal identification information, and receives After the request message is accessed, the login authentication is performed according to the first terminal identifier information, which prevents the terminal middleware from opening the problem that the terminal identifier information of the application client does not match the terminal identifier information required by the application client.
  • the application client acquires the first terminal identifier information that is open by the terminal middleware.
  • the application client stores the first terminal identifier information.
  • the application client stores the first terminal identifier information, so that the application client opens the application of the application client after performing login authentication according to the first terminal identifier information.
  • the terminal middleware may use the first application name and the first terminal identification information of the application client to use advanced Encrypting standard AES, generating the first application name corresponding The encrypted first terminal identifier information, so the stored first terminal identifier information may be the encrypted first terminal identifier information, or may be the unencrypted first terminal identifier information, which is not specifically described in this embodiment of the present invention. Limited, only based on actual conditions.
  • the application client performs login authentication according to the first terminal identifier information to open an application of the application client.
  • the application for performing the login authentication according to the stored first terminal identifier information to open the application client may include:
  • the first application name and the stored first terminal identification information are authenticated; if the indication message of successful authentication sent by the terminal middleware is received, the application of the application client is opened.
  • the application client may receive the indication information of the login password that is sent by the terminal middleware, and the method for opening the application of the application client may be determined according to the indication information, including:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • the embodiment of the present invention further provides a method for identity identification, where the method is based on the terminal middleware and the application client, to determine that the application is legal, the terminal device sends the first terminal identification information for description.
  • the method includes:
  • the application client receives an access request message, where the access request message requests to open an application of the application client. Specifically, after the user triggers the application client, the application client receives an access request message, and the access request message requests to open an application of the application client.
  • the application client determines whether to store the first terminal identifier information of the terminal device. Specifically, after the application client receives the access request message, it first determines whether the first terminal identification information of the terminal device has been stored.
  • the first terminal identifier information of the terminal device is not stored, send a first request message to the terminal middleware, and the first request message requests to acquire the first terminal identifier information, where the first The request message carries the first application name of the application client.
  • the first application name is obtained by registering on an application platform, where the first application name does not have any special
  • the meaning of the application only refers to the application name of the application client that currently receives the access request message.
  • the terminal middleware receives the first request message sent by the application client.
  • the terminal middleware determines, according to the first application name, whether the application is legal.
  • determining, according to the first application name, whether the application is legal or not may include:
  • the first application name is included in the local database information, determining that the application is legal; if the first application name is not included in the first database information, requesting the capability open platform/app store to obtain the first An application name;
  • the capability open platform/app store If the first application name sent by the capability open platform/app store is not received, it is determined that the application is illegal. It should be noted that if the application of the SP (Service Provider) / CP (Content Provider Content Provider) is registered in the capability open platform/app store, the application is legal. Therefore, if the first application name is not included in the first database information, and the capability open platform/app store requests to obtain the first application name, if the application is legal, the capability open platform/app store It should contain the unique identifying information assigned to the app when it is registered, ie the app name.
  • SP Service Provider
  • CP Content Provider
  • the application is determined to be legal; if the first application name sent by the capability open platform/app store is not received, the The application is not registered with the capability open platform/app store, and the application is determined to be illegal. No specific limitation.
  • the terminal middleware opens the first terminal identification information to the application client.
  • the information is opened to the application client, which increases the security of accessing the application.
  • the application client acquires the first terminal identifier information that is open by the terminal middleware.
  • the application client stores the first terminal identifier information.
  • the application client stores the first terminal identifier information, so that the application client opens the application of the application client after performing login authentication according to the first terminal identifier information.
  • the terminal middleware may use the first application name and the first terminal identification information of the application client to use advanced
  • the encryption standard AES is configured to generate the encrypted first terminal identifier information corresponding to the first application name, so the stored first terminal identifier information may be the encrypted first terminal identifier information, or may be the first unencrypted information.
  • the terminal identification information is not specifically limited in this embodiment of the present invention, and is determined only according to actual conditions.
  • the application client performs login authentication according to the first terminal identifier information to open an application of the application client.
  • the application for performing the login authentication according to the stored first terminal identifier information to open the application client may include:
  • the first application name and the stored first terminal identification information are authenticated; if the indication message of successful authentication sent by the terminal middleware is received, the application of the application client is opened.
  • the application client may receive the indication information of whether the login password is required to be sent by the terminal middleware, and the method for opening the application of the application client may be determined according to the indication information, including:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • the embodiment of the present invention further provides a method for identity identification, where the method is based on the terminal middleware and the application client, and specifically, after determining that the application is legal and the user authorizes, the terminal device sends the first terminal.
  • the identification information is described. Specifically, as shown in FIG. 5, after the terminal middleware acquires terminal identification information of the terminal device, the method includes:
  • the application client receives an access request message, where the access request message requests to open an application of the application client.
  • the application client receives an access request message, and the access request message requests to open an application of the application client.
  • the application client determines whether to store the first terminal identifier information of the terminal device. Specifically, after the application client receives the access request message, it first determines whether the first terminal identifier information of the terminal device has been stored. If the application client has stored the first terminal identifier information of the terminal device, perform the step
  • the first terminal identifier information of the terminal device is not stored, send a first request message to the terminal middleware, and the first request message requests to acquire the first terminal identifier information, where the first The request message carries the first application name of the application client.
  • the first application name is obtained by registering on an application platform, where the first application name does not have any special
  • the meaning of the application only refers to the application name of the application client that currently receives the access request message.
  • the terminal middleware receives the first request message sent by the application client.
  • the terminal middleware determines, according to the first application name, whether the application is legal.
  • the method for the terminal middleware to determine whether the application is legal according to the first application name may refer to the description of step 405, which is not repeatedly described in the embodiment of the present invention.
  • the terminal middleware determines, according to the first application name, whether the application first invokes the first terminal identification information.
  • the terminal middleware may store the correspondence between the application name and the number of times the application corresponding to the terminal identifier information is called by the application name, so it may be determined, according to the first application name, whether the application first invokes the first terminal. Identification information.
  • step 507 If the application is to call the first terminal identification information for the first time, go to step 507;
  • step 511 is performed.
  • the terminal middleware If the application first invokes the first terminal identifier information, the terminal middleware requests the user to authorize opening the first terminal identifier information to the application client.
  • the terminal middleware requesting the user to authorize the opening of the first terminal identifier information to the application client may include:
  • the terminal middleware requests the user to authorize opening the first terminal to the application client.
  • the user performs the first terminal identification information right.
  • the terminal middleware can provide a 4 authorized interface as shown in FIG. 6, and the user can authorize the user information by setting the content of the authorization interface.
  • a service-level agreement can be provided to different types of application clients.
  • SLA service-level agreement
  • the user can authorize the password without login, and only the first terminal identifier is required. If the information is successfully authenticated, you can log in to the application, such as news and other tools.
  • the user can authorize the password input at login.
  • the first terminal identification information and password must be authenticated before logging in to the application. Similar to the bank's USB key and terminal identification information.
  • Account number the user needs to enter a password to log in correctly, such as bank/securities client, Alipay client, etc.
  • a password such as bank/securities client, Alipay client, etc.
  • the option of the login password is not necessarily included in the authorization interface.
  • the embodiment of the present invention only provides an illustration of the authorization interface, and the specific content of the authorization interface is not specifically limited. Authorization of terminal identification information.
  • the user returns a 4 authorized response that opens the first terminal identification information to the application client.
  • the terminal middleware opens the first terminal identification information to the application client. Specifically, in the embodiment of the present invention, when it is determined that the application is legal, and the user is authorized to send the first terminal identification information to the application client, the first terminal identification information is opened to the application client, The user's authorization further increases the security of the access application.
  • the application client acquires the first terminal identifier information that is open by the terminal middleware.
  • the application client stores the first terminal identifier information.
  • the application client stores the first terminal identifier information, so that the application client opens the application of the application client after performing login authentication according to the first terminal identifier information.
  • the terminal middleware after being authorized by the user, the terminal middleware also saves the following configuration information of the application client:
  • the application client performs login authentication according to the first terminal identifier information to open an application of the application client.
  • the application client stores the first terminal identification information, and the application client logs in according to the stored first terminal identification information.
  • the interaction between the terminal middleware and the application client is as shown in FIG. 7, and includes:
  • the application client sends a second request message requesting authentication to the terminal middleware, where the second request message carries a first application name of the application client and the stored first terminal identifier information.
  • the first application name of the application client and the stored first terminal identifier information carried by the second request message are used for login authentication.
  • the terminal middleware receives the second request message that is sent by the application client to request authentication.
  • the terminal middleware checks whether a correspondence between the first application name and the first terminal identifier information stored by the application client is stored.
  • the terminal middleware stores the first application name and the application client Corresponding relationship of the stored first terminal identification information, indicating that the authentication is successful, and performing step 704;
  • the terminal middleware does not store the correspondence between the first application name and the first terminal identification information stored by the application client, indicating that the authentication fails, the login fails.
  • the application client receives an indication message that the terminal middleware sends the authentication success.
  • the application client opens an application of the application client according to the stored first terminal identifier information.
  • the application client opens the application of the application client according to the stored first terminal identifier information.
  • the user is not required to memorize the username and password, and the security of the application on the user's login terminal device is improved.
  • the indication information of whether the login password is required when logging in to the application may be pre-configured in the terminal middleware.
  • the authorization interface shown in FIG. 6 may include an option of whether a login password is required to log in to the application, that is, whether the login password is required to log in to the application is pre-configured in the terminal middleware.
  • the method further includes: before the sending, sending the indication message that the authentication succeeds to the application client, the method further includes:
  • the terminal middleware sends a pre-stored indication information of whether the login password is required to log in to the application client to the application client;
  • the application client receives the indication information of whether the password is required to be logged in when the login is sent by the terminal middleware and stores the information.
  • the interaction between the terminal middleware and the application client is specifically as shown in FIG. 8, and includes: 801,
  • the application client sends a second request message for requesting authentication to the terminal middleware, where the second request message carries the first application name of the application client and the stored first terminal identification information.
  • the first application name of the application client and the stored first terminal identifier information carried by the second request message are used for login authentication.
  • the terminal middleware receives the second request message that is sent by the application client and requests authentication. -twenty one-
  • the terminal middleware checks whether a correspondence between the first application name and the first terminal identifier information stored by the application client is stored.
  • step 804 is performed;
  • the terminal middleware does not store the correspondence between the first application name and the first terminal identification information stored by the application client, indicating that the authentication fails, the login fails.
  • the application client stores indication information about whether a login password is required when logging in to the application, it may be determined at this time whether a login password is required.
  • the embodiment of the present invention provides a solution for different security levels to the user according to the stored indication information of whether the login password is required.
  • the user can log in without using a password.
  • Only the first terminal identification information can be successfully authenticated to log in to the application, such as news and other tools.
  • users can enter a password when logging in.
  • the first terminal identification information and password must be authenticated before they can log in to the application. Similar to the bank's USB key and terminal identification information as an account. Users need to enter a password to log in correctly, such as bank/securities client, Alipay client, etc.
  • the terminal middleware receives the response from the user that provides the terminal identification information to the application client, the terminal middleware further includes:
  • the terminal middleware generates the encrypted first terminal identification information corresponding to the first application name by using the advanced encryption standard AES according to the first application name and the first terminal identification information.
  • the opening the first terminal identifier information to the application client specifically includes: the encrypted first terminal identifier The information is open to the application client.
  • the application client obtains the encrypted first terminal identification information that is open by the terminal middleware
  • the storing, by the application client, the first terminal identifier information specifically includes:
  • the terminal middleware may use the first application name and the first terminal identification information of the application client to use advanced
  • the encryption standard AES generates the encrypted first terminal identification information corresponding to the first application name.
  • the application client stores the encrypted first terminal identification information, so that in the subsequent identity identification process, the application client and the terminal middleware communicate with each other through the encrypted first terminal identification information, thereby ensuring the terminal.
  • the first terminal identifier information in the terminal identifier information is opened to the application client by acquiring the terminal identifier information of the terminal device, so that the application client obtains and stores the first terminal identifier.
  • the information and after receiving the access request message, the technical solution for performing login authentication according to the first terminal identification information, which solves the problem that the user needs to memorize the user name and password when logging in to the application on the terminal device, and the first The terminal identification information is used as the unique identifier of the application that the user logs in to the terminal device, which improves the security of the application that the user logs in to the terminal device.
  • the embodiment of the present invention provides a terminal middleware 900.
  • the terminal middleware 900 includes an obtaining unit 901 and an opening unit 902.
  • the obtaining unit 901 is configured to acquire terminal identification information of the terminal device, where the terminal identifier information includes at least first terminal identifier information.
  • the opening unit 902 is configured to open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information, and receives the access request. After the message is obtained, login authentication is performed according to the first terminal identification information.
  • the terminal middleware 900 further includes a receiving unit 903.
  • the receiving unit 903 is configured to: after the acquiring unit 901 acquires the terminal identifier information of the terminal device, the opening unit 902 receives the first terminal identifier information before the application client is opened, and receives the The first request message sent by the client is requested, and the first request message requests to acquire the first terminal identifier information.
  • the terminal middleware 900 further includes a determining unit 904 and an executing unit 905.
  • the first request message carries a first application name of the application client.
  • the determining unit 904 is configured to determine, according to the first application name, whether the application is legal after the receiving unit 903 receives the first request message sent by the application client;
  • the executing unit 905 is further configured to: if the application is legal, perform the step of opening the first terminal identification information to an application client.
  • the terminal middleware 900 further includes a determining unit 904, a requesting unit 906, a storage unit 907, and an executing unit 905.
  • the first request message carries a first application name of the application client
  • the determining unit 904 is configured to determine, according to the first application name, whether the application is legal after the receiving unit 903 receives the first request message sent by the application client.
  • the determining unit 904 is further configured to: determine, according to the first application name, whether the application first invokes the first terminal identification information according to the first application name.
  • the requesting unit 906 is configured to request the user to open the first terminal identification information to the application client if the application first invokes the first terminal identification information.
  • the receiving unit 903 is configured to receive, by the user, a response to the application of the first terminal identifier information to the application client.
  • the storage unit 907 is configured to save a correspondence between the first application name and the first terminal identifier information.
  • the executing unit 905 is configured to perform the step of opening the first terminal identification information to an application client.
  • the requesting unit 906 requests the user to authorize the opening of the application to the application client.
  • the first terminal identification information specifically includes:
  • the terminal middleware further includes an checking unit 908 and a sending unit 909.
  • the receiving unit 903 is further configured to receive a second request message that is sent by the application client to request authentication, where the second request message carries a first application name of the application client and a first stored by the application client. Terminal identification information;
  • the checking unit 908 is configured to check whether a correspondence between the first application name and the first terminal identification information stored by the application client is stored.
  • the sending unit 909 is further configured to: if stored, send an indication message that the authentication succeeds to the application client, so that the application client opens the application client according to the first terminal identifier information stored by the application client. End application.
  • the sending unit 909 is further configured to send, before the sending, sending the indication message that the authentication succeeds to the application client, the pre-stored indication information of whether the login password is required to log in to the application to the Application client.
  • the sending unit 909 sends an indication message that the authentication succeeds to the application client, so that the application client opens the application of the application client according to the first terminal identifier information stored by the application client, including :
  • the indication message that the authentication succeeds is sent to the application client, so that the application client opens the application according to the first terminal identification information stored by the application client and the indication information of whether the login password is required. Client application.
  • the terminal middleware further includes a generating unit 910.
  • the generating unit 910 is configured to: after receiving, by the receiving unit 903, an authorization response that is opened by the user to open the first terminal identifier information to the application client, according to the first application name and the first terminal identifier
  • the information is generated by using the advanced encryption standard AES to generate the encrypted first terminal identification information corresponding to the first application name.
  • the storage unit 907 stores the correspondence between the first application name and the first terminal identification information.
  • the relationship specifically includes:
  • the identification information is specifically the encrypted first terminal identification information.
  • the determining unit 904 according to the first application name, determining whether the application is legal or not specifically includes:
  • the capability open platform/app store is requested to acquire the first application name.
  • the first application name is stored.
  • terminal identifier information specifically includes:
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • the method for performing identity identification by using the terminal middleware can refer to the descriptions of the first embodiment and the second embodiment, and details are not described herein again.
  • the terminal middleware provided by the present invention includes an acquisition unit and an open unit.
  • the acquiring unit is configured to acquire terminal identification information of the terminal device, where the terminal identifier
  • the information includes at least the first terminal identification information
  • the open unit is configured to open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information, and
  • the terminal middleware provided by the embodiment of the present invention solves the problem that the user name and password need to be memorized when the user logs in to the application on the terminal device, and the user is improved at the same time. Log in to the security of the app on the terminal device.
  • the embodiment of the present invention provides an application client 1500.
  • the application client 1500 includes a receiving unit 1501 and a login authentication unit 1502.
  • the receiving unit 1501 is configured to receive an access request message, where the access request message requests to open an application of the application client.
  • the login authentication unit 1502 is configured to perform login authentication according to the stored first terminal identification information to open an application of the application client.
  • the first terminal identifier information may be stored in the application client before the receiving unit 1501 receives the access request message, or may be determined by the receiving unit 1501 not to store after receiving the access request message. After the first terminal identifier information of the terminal device is obtained, the first terminal identifier information is obtained from the terminal middleware, and then stored in the application client, which is not specifically limited in this embodiment of the present invention.
  • the application client further includes a determining unit 1503, a sending unit 1504, an obtaining unit 1505, and a first storage unit 1506.
  • the determining unit 1503 is configured to determine, after the receiving unit 1501 receives the access request message, whether to store the first terminal identification information of the terminal device.
  • the sending unit 1504 is configured to: if the first terminal identifier information of the terminal device is not stored, send a first request message to the terminal middleware, where the first request message requests to acquire the first terminal identifier information.
  • the obtaining unit 1505 is configured to acquire the first terminal identification information that is open by the terminal middleware.
  • the first storage unit 1505 is configured to store the first terminal identification information.
  • the first request message carries a first application name of the application client, so that The terminal middleware determines whether the application is legal according to the first application name, and the first terminal identification information is opened to the application client when the application is legal.
  • the first request message carries the first application name of the application client, so that the terminal middleware determines whether the application is legal according to the first application name, and the application is legal according to the
  • the first application name determines whether the application first invokes the first terminal identification information, and after determining that the application is the first time to invoke the first terminal identification information, requesting the user to authorize opening the first to the application client.
  • the terminal identification information is: after receiving the authorization response returned by the user to open the first terminal identification information to the application client, the first terminal identification information is opened to the application client.
  • the login authentication unit 1502 performs login authentication according to the stored first terminal identifier information, to open the application of the application client, specifically:
  • the application of the application client is opened.
  • the application client further includes a second storage unit 1507.
  • the receiving unit 1501 is further configured to receive, by the terminal middleware, indication information that a login password is required when logging in to the application.
  • the second storage unit 1507 is configured to store the indication information of whether the password is required to be used for the login. If the indication message that the authentication succeeds is sent by the terminal middleware, the application of the application client is specifically:
  • the application of the application client is opened according to the stored first terminal identifier information
  • the application of the application client is opened according to the stored first terminal identification information and the input login password.
  • the acquiring unit 1505 acquires a first terminal identification letter that is open by the terminal middleware.
  • the specific information includes:
  • the encrypted first terminal identifier information that is open to the terminal middleware, where the encrypted first terminal identifier information is that the terminal middleware is used according to the first application name and the first terminal identifier information. Generated by the advanced encryption standard AES.
  • the storing, by the first storage unit 1506, the first terminal identification information includes: storing the encrypted first terminal identification information, so that the stored first terminal identification information is specifically the encrypted first terminal identification information.
  • terminal identifier information specifically includes:
  • the international mobile subscriber identity of the SIM card in the terminal device IMSI is the international mobile subscriber identity of the SIM card in the terminal device IMSI;
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • the method for performing the identification by the application client may refer to the descriptions of the first embodiment and the second embodiment, and details are not described herein again.
  • the application client provided by the embodiment of the present invention includes a receiving unit and a login authentication unit.
  • the receiving unit is configured to receive an access request message, where the access request message requests to open an application of the application client
  • the login authentication unit is configured to perform login authentication according to the stored first terminal identifier information, to open the The application application client.
  • the application client provided by the embodiment of the present invention solves the problem that the user needs to memorize the user name and password when logging in to the application on the terminal device, and improves the security of the application that the user logs in to the terminal device.
  • the embodiment of the present invention provides a terminal middleware 1800.
  • the terminal middleware includes a processor 1801.
  • the processor 1801 is configured to acquire terminal identifier information of the terminal device, where the terminal identifier information includes at least first terminal identifier information.
  • the processor 1801 is further configured to: open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information, and after receiving the access request message, according to the The first terminal identification information is used for login authentication.
  • the terminal middleware 1800 further includes an input interface 1802.
  • the input interface 1802 is configured to: after the processor 1801 acquires terminal identification information of the terminal device, Before the terminal identifier information is opened to the application client, the first request message sent by the application client is received, and the first request message requests to acquire the first terminal identifier information.
  • the first request message carries a first application name of the application client.
  • the processor 1801 is further configured to: after the input interface 1802 receives the first request message sent by the application client, determine, according to the first application name, whether the application is legal.
  • the processor 1801 is further configured to: when the application is legal, perform the step of opening the first terminal identification information to an application client.
  • the terminal middleware 1800 further includes a memory 1803.
  • the first request message carries a first application name of the application client.
  • the processor 1801 is further configured to: after the input interface 1802 receives the first request message sent by the application client, determine, according to the first application name, whether the application is legal.
  • the processor 1801 is further configured to determine, according to the first application name, whether the application first invokes the first terminal identification information according to the first application name.
  • the processor 1801 is further configured to: if the application first invokes the first terminal identifier information, request the user to authorize opening the first terminal identifier information to the application client.
  • the input interface 1802 is further configured to receive a response from the user that opens the first terminal identification information to the application client.
  • the memory 1803 is configured to save a correspondence between the first application name and the first terminal identification information.
  • the processor 1801 is configured to perform the step of opening the first terminal identification information to an application client.
  • the requesting, by the processor 1801, the user to open the first terminal identification information to the application client includes:
  • the terminal middleware 1800 further includes an output interface 1804.
  • the input interface 1802 is further configured to receive a second request message that is sent by the application client to request authentication, where the second request message carries a first application name of the application client and a first stored by the application client. Terminal identification information.
  • the processor 1801 is further configured to check whether a correspondence between the first application name and the first terminal identification information stored by the application client is stored.
  • the output interface 1804 is further configured to: if stored, send an indication message that the authentication succeeds to the application client, so that the application client opens the application client according to the first terminal identifier information stored by the application client. End application.
  • the output interface 1804 is further configured to send, before the sending, sending an indication message that the authentication succeeds to the application client, a pre-stored indication information of whether a login password is required to log in to the application, to the Application client.
  • the output interface 1804 sends an indication that the authentication succeeds to the application client, so that the application client opens the application of the application client according to the first terminal identifier information stored by the application client, including :
  • the indication message that the authentication succeeds is sent to the application client, so that the application client opens the application according to the first terminal identification information stored by the application client and the indication information of whether the login password is required. Client application.
  • the processor 1801 is further configured to: after receiving, by the input interface 1802, an authorization response returned by the user to open the first terminal identification information to the application client, according to the first application name and the The first terminal identification information is generated by using the advanced encryption standard AES to generate the encrypted first terminal identification information corresponding to the first application name.
  • the storing, by the memory 1803, the correspondence between the first application name and the first terminal identifier information specifically includes:
  • the opening, by the processor 1801, the first terminal identification information to the application client includes:
  • the stored first terminal identification information is specifically the encrypted first terminal identification information.
  • the determining, by the processor 1801, whether the application is legal according to the first application name specifically includes:
  • the local database information includes the first application name, determining that the application is legal; if the first application name is not included in the local database information, requesting the capability open platform/app store to obtain the first Application name
  • terminal identifier information specifically includes:
  • the media access control MAC address of the terminal device is the media access control MAC address of the terminal device.
  • the method for performing identity identification by using the terminal middleware can refer to the descriptions of the first embodiment and the second embodiment, and details are not described herein again.
  • the terminal middleware provided by the present invention includes a processor.
  • the processor is configured to obtain the terminal identifier information of the terminal device, where the terminal identifier information includes at least the first terminal identifier information, and the processor is further configured to: open the first terminal identifier information to the application client, so that The application client obtains and stores the first terminal identification information, and after receiving the access request message, performs login authentication according to the first terminal identification information.
  • the terminal middleware provided by the embodiment of the present invention solves the problem that the user needs to memorize the user name and the password when logging in to the application on the terminal device, and improves the security of the application of the user logging in to the terminal device.
  • Embodiment 6 The embodiment of the present invention provides an identity recognition system 2200. As shown in FIG. 22, the identity recognition system 2200 includes a terminal middleware 900 and an application client 1500.
  • the terminal middleware 900 is configured to acquire terminal identification information of the terminal device, where the terminal identification information includes at least first terminal identification information.
  • the terminal middleware 900 is further configured to open the first terminal identification information to the application client, so that the application client obtains and stores the first terminal identification information.
  • the application client 1500 is configured to receive an access request message, and perform login authentication according to the stored first terminal identification information to open an application of the application client.
  • the method for the identity identification system to perform the identity identification by the terminal middleware and the application client may refer to the descriptions of the first embodiment and the second embodiment, and details are not described herein again.
  • the terminal identifier information of the terminal device is obtained by the terminal middleware, and the first terminal identifier information in the terminal identifier information is opened to the application client, so that the application client obtains and stores the first a terminal identification information, and after receiving the access request message, performing a login authentication according to the first terminal identification information, which solves the problem that the user needs to memorize the user name and password when logging in to the application on the terminal device, and at the same time
  • the first terminal identifier information is used as the unique identifier of the application that the user logs in to the terminal device, which improves the security of the application that the user logs in to the terminal device.
  • the terminal middleware may be a software module on the terminal device;
  • the terminal middleware may also be an independent device having the function of the terminal middleware, that is, the terminal middleware can be connected with the terminal device, or can be built in the terminal device, for example, by means of card insertion or software integration, the present invention
  • the embodiment does not specifically limit this.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Power Engineering (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Computing Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephone Function (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

L'invention concerne un procédé, un dispositif, et un système de reconnaissance d'identité. Elle résout le problème lié au fait qu'un utilisateur qui se connecte à une application d'un terminal mobile doit se rappeler son nom d'utilisateur et son mot de passe. Elle renforce également la sécurité de l'utilisateur quand il se connecte à l'application du terminal mobile. Le procédé comprend les étapes suivantes : l'intergiciel d'un terminal acquiert des informations d'identification de terminal relatives à un dispositif terminal, les informations d'identification de terminal comprenant au moins des premières informations d'identification de terminal; et il ouvre les premières informations d'identification de terminal sur un client d'application afin de permettre au client d'application d'acquérir et d'enregistrer les informations d'identification de terminal et d'exécuter une authentification de connexion d'après les premières informations d'identification de terminal, après avoir reçu un message de demande d'accès. La présente invention peut s'appliquer au domaine des communications.
PCT/CN2014/075513 2013-05-13 2014-04-16 Procédé, dispositif, et système de reconnaissance d'identité WO2014183526A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310173612.6 2013-05-13
CN201310173612.6A CN103249045B (zh) 2013-05-13 2013-05-13 一种身份识别的方法、装置和系统

Publications (1)

Publication Number Publication Date
WO2014183526A1 true WO2014183526A1 (fr) 2014-11-20

Family

ID=48928211

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/075513 WO2014183526A1 (fr) 2013-05-13 2014-04-16 Procédé, dispositif, et système de reconnaissance d'identité

Country Status (2)

Country Link
CN (1) CN103249045B (fr)
WO (1) WO2014183526A1 (fr)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105049410A (zh) * 2015-05-28 2015-11-11 北京奇艺世纪科技有限公司 一种账号登录方法、装置及系统
CN107743114A (zh) * 2016-12-15 2018-02-27 腾讯科技(深圳)有限公司 一种网络访问方法、装置和系统
CN112765587A (zh) * 2021-01-20 2021-05-07 Oppo广东移动通信有限公司 业务操作验证方法和装置、控制方法和装置、服务器

Families Citing this family (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103249045B (zh) * 2013-05-13 2016-08-10 华为技术有限公司 一种身份识别的方法、装置和系统
CN103875211B (zh) * 2013-08-23 2018-02-02 华为技术有限公司 一种互联网账号管理方法、管理器、服务器和系统
CN103731268A (zh) * 2013-09-23 2014-04-16 中兴通讯股份有限公司 终端、网络侧设备、终端应用控制方法及系统
CN104468096B (zh) * 2014-12-01 2018-01-05 公安部第三研究所 基于密钥分散运算实现网络电子身份标识信息保护的方法
CN105790945B (zh) * 2014-12-22 2019-09-03 中国移动通信集团公司 一种实现用户唯一身份认证的认证方法、装置和系统
CN104539399B (zh) * 2015-01-22 2018-07-13 上海云鱼智能科技有限公司 具有无线通讯功能的设备的编码识别通讯方法
CN104820797B (zh) * 2015-04-13 2018-07-03 努比亚技术有限公司 应用账户的管理方法及装置
CN106161392B (zh) * 2015-04-17 2019-08-23 深圳市腾讯计算机系统有限公司 一种身份验证方法和设备
CN105100415B (zh) * 2015-05-28 2018-03-30 努比亚技术有限公司 登录方法、移动终端
CN104902028B (zh) * 2015-06-19 2019-02-15 广州密码科技有限公司 一种一键登录认证方法、装置及系统
CN105072112A (zh) * 2015-08-07 2015-11-18 中国联合网络通信集团有限公司 一种身份认证方法及装置
CN106919827B (zh) * 2015-12-24 2020-04-17 北京奇虎科技有限公司 无线解锁的方法、计算机设备和网络服务器
TWI595796B (zh) * 2016-01-21 2017-08-11 拓連科技股份有限公司 電子裝置間之註冊管理方法及系統,及相關電腦程式產品
CN105786630B (zh) * 2016-02-26 2019-02-15 浪潮通用软件有限公司 一种基于中间件的Web API调控方法
CN107135075B (zh) * 2016-02-29 2020-12-04 义乌兰思体育用品有限公司 一种对用户操作的授权方法及装置
CN106452738A (zh) * 2016-09-21 2017-02-22 北京神州绿盟信息安全科技股份有限公司 一种登录设备的认证方法、装置和系统
CN107872428A (zh) * 2016-09-26 2018-04-03 平安科技(深圳)有限公司 应用程序的登录方法及装置
CN107889093A (zh) * 2016-09-29 2018-04-06 北京京东尚科信息技术有限公司 管理移动终端的应用的方法和装置
CN106790240B (zh) * 2017-01-22 2021-04-23 常卫华 基于第三方认证的无密码登录方法、装置和系统
CN109361535B (zh) * 2018-09-27 2022-08-05 北京小米移动软件有限公司 智能设备绑定方法、装置及存储介质
CN109286933B (zh) * 2018-10-18 2021-11-30 世纪龙信息网络有限责任公司 认证方法、装置、系统、计算机设备和存储介质
CN110290055B (zh) * 2019-06-25 2021-09-10 携程计算机技术(上海)有限公司 微信小程序WebView与原生组件的通信方法及系统
CN112398792B (zh) * 2019-08-15 2022-07-05 奇安信安全技术(珠海)有限公司 登录的防护方法、客户端、中控管理设备及存储介质
CN111245803B (zh) * 2020-01-06 2021-12-07 上海孚厘科技有限公司 一种通过浏览器获取计算机设备mac地址的方法

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101610502A (zh) * 2009-07-23 2009-12-23 江苏鸿信系统集成有限公司 基于移动应用门户的不同业务系统移动信息化整合的方法
CN102026195A (zh) * 2010-12-17 2011-04-20 北京交通大学 基于一次性口令的移动终端身份认证方法和系统
CN102111349A (zh) * 2009-12-25 2011-06-29 上海格尔软件股份有限公司 安全认证网关
CN103249045A (zh) * 2013-05-13 2013-08-14 华为技术有限公司 一种身份识别的方法、装置和系统

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101610502A (zh) * 2009-07-23 2009-12-23 江苏鸿信系统集成有限公司 基于移动应用门户的不同业务系统移动信息化整合的方法
CN102111349A (zh) * 2009-12-25 2011-06-29 上海格尔软件股份有限公司 安全认证网关
CN102026195A (zh) * 2010-12-17 2011-04-20 北京交通大学 基于一次性口令的移动终端身份认证方法和系统
CN103249045A (zh) * 2013-05-13 2013-08-14 华为技术有限公司 一种身份识别的方法、装置和系统

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105049410A (zh) * 2015-05-28 2015-11-11 北京奇艺世纪科技有限公司 一种账号登录方法、装置及系统
CN105049410B (zh) * 2015-05-28 2018-08-07 北京奇艺世纪科技有限公司 一种账号登录方法、装置及系统
CN107743114A (zh) * 2016-12-15 2018-02-27 腾讯科技(深圳)有限公司 一种网络访问方法、装置和系统
CN107743114B (zh) * 2016-12-15 2020-03-17 腾讯科技(深圳)有限公司 一种网络访问方法、装置和系统
CN112765587A (zh) * 2021-01-20 2021-05-07 Oppo广东移动通信有限公司 业务操作验证方法和装置、控制方法和装置、服务器

Also Published As

Publication number Publication date
CN103249045B (zh) 2016-08-10
CN103249045A (zh) 2013-08-14

Similar Documents

Publication Publication Date Title
WO2014183526A1 (fr) Procédé, dispositif, et système de reconnaissance d'identité
US20200162255A1 (en) System for improved identification and authentication
US8606234B2 (en) Methods and apparatus for provisioning devices with secrets
EP3223549B1 (fr) Procédé d'accès à un réseau sans fil et appareil d'accès, client et support de stockage
US9038138B2 (en) Device token protocol for authorization and persistent authentication shared across applications
US11510054B2 (en) Methods, apparatuses, and computer program products for performing identification and authentication by linking mobile device biometric confirmation with third-party mobile device account association
US10594695B2 (en) Authentication arrangement
US8769289B1 (en) Authentication of a user accessing a protected resource using multi-channel protocol
DK2924944T3 (en) Presence authentication
US11823007B2 (en) Obtaining device posture of a third party managed device
WO2018014760A1 (fr) Procédé et dispositif servant à fournir et à obtenir des informations de code graphique, et terminal
JP2014525077A (ja) 2つの通信デバイスを介した認証システム
TWI632798B (zh) 伺服器、行動終端機、網路實名認證系統及方法
CN101986598B (zh) 认证方法、服务器及系统
US20160149894A1 (en) System and method for providing multi factor authentication
WO2016078419A1 (fr) Procédé d'autorisation ouverte, dispositif et plate-forme ouverte
KR20130109322A (ko) 통신 시스템에서 사용자 인증을 대행하는 장치 및 방법
JP2014528129A (ja) インターネットベースのアプリケーションへのアクセスを制御する方法
CN106161475B (zh) 用户鉴权的实现方法和装置
FI128171B (en) network authentication
KR20150036371A (ko) 클라우드 서버를 위한 바우처 인가
KR20130103537A (ko) 사용자 계정 회복
US11601807B2 (en) Mobile device authentication using different channels
KR20220167366A (ko) 온라인 서비스 서버와 클라이언트 간의 상호 인증 방법 및 시스템
AU2020296853A1 (en) Method and chip for authenticating to a device and corresponding authentication device and system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14798123

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14798123

Country of ref document: EP

Kind code of ref document: A1