WO2016106989A1 - Multi-system security authentication method, multi-system security authentication apparatus and terminal - Google Patents

Multi-system security authentication method, multi-system security authentication apparatus and terminal Download PDF

Info

Publication number
WO2016106989A1
WO2016106989A1 PCT/CN2015/075608 CN2015075608W WO2016106989A1 WO 2016106989 A1 WO2016106989 A1 WO 2016106989A1 CN 2015075608 W CN2015075608 W CN 2015075608W WO 2016106989 A1 WO2016106989 A1 WO 2016106989A1
Authority
WO
WIPO (PCT)
Prior art keywords
current system
information
fingerprint information
specified application
fingerprint
Prior art date
Application number
PCT/CN2015/075608
Other languages
French (fr)
Chinese (zh)
Inventor
刘岩
刘玉清
孙巍
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 宇龙计算机通信科技(深圳)有限公司 filed Critical 宇龙计算机通信科技(深圳)有限公司
Publication of WO2016106989A1 publication Critical patent/WO2016106989A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
    • G06F21/12Protecting executable software
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks

Definitions

  • the present invention relates to the field of terminal technologies, and in particular, to a multi-system security verification method, a multi-system security verification device, and a terminal.
  • Fingerprint technology was born many years ago, from the initial optical fingerprint recognition to the current capacitive sliding fingerprint, and then to the current 360 ° pressed fingerprint, the application of fingerprints is now very common. This year, fingerprints are gradually applied on mobile phones. The entire industry has gradually developed;
  • the invention is based on the above problems, and proposes a new technical solution, which can improve the security level of fingerprint verification, prevent user fingerprints from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of user information in the terminal and improving the user's Use experience.
  • the present invention provides a multi-system security verification method for a terminal, the terminal comprising a plurality of systems, the method comprising: receiving an opening key for a specified application when running the current system Setting a command to enter the target system, wherein the security level of the target system is higher than the security level of the current system; receiving a plurality of fingerprint information input by the user in the target system, and the plurality of fingerprints Information as the opening of the specified application Key information, stored in the target system in association with the specified application, and re-entered the current system.
  • the terminal when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
  • the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information.
  • Verification information can also be used as verification information in various combinations.
  • the method further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, entering the target system, and prompting the user to input an opening key; receiving The plurality of to-be-verified fingerprint information input by the user in the target system; comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the comparison after the comparison is completed
  • the current system sends the comparison result to the current system; controlling the current system to determine whether to allow the specified application to be enabled according to the comparison result.
  • the user when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result.
  • the user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
  • comparing the plurality of to-be-verified fingerprint information with the opening key information specifically: determining that the plurality of to-be-verified fingerprint information and the opening key information are Whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order in the fingerprint information are consistent; when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not matched; And controlling the current system according to the comparison
  • the method includes: allowing the specified application to be entered when the plurality of to-be-verified fingerprint information matches the open key information; otherwise, the designated application is not allowed to enter. program.
  • the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
  • the method further includes: encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and sending the encrypted comparison result to the Current system.
  • the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
  • the method further includes: when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the current input fingerprint number, and the current remaining fingerprint. Number.
  • the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
  • a multi-system security verification apparatus for a terminal, the terminal comprising a plurality of systems, the system comprising: a system switching unit, when the current system is operated, if a pair is received Specifying a setting command of an open key of the application, and entering a target system, wherein a security level of the target system is higher than a security level of the current system; and a storage unit receives a plurality of inputs entered by the user in the target system Fingerprint information, and the plurality of fingerprint information is used as the opening key information of the specified application, stored in the target system in association with the specified application, and re-entered into the current system.
  • the terminal when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key.
  • the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
  • the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information.
  • Verification information can also be used as verification information in various combinations.
  • the prompting unit further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, the target system is entered, and the user is prompted to input the opening password.
  • a receiving unit that receives a plurality of to-be-verified fingerprint information input by the user in the target system; and a comparing unit, comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system After the comparison is completed, the current system is entered; the sending unit sends the comparison result to the current system; and the control unit controls the current system to determine whether to allow the specified application to be enabled according to the comparison result.
  • the user when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result.
  • the user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
  • the comparing unit is configured to: determine a number of fingerprints, a fingerprint image, and a fingerprint arrangement in the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information. Whether the order is consistent, and when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the matching is not; and the controlling unit is specifically configured to: When the fingerprint information to be verified matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  • the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
  • the method further includes: an encryption unit that encrypts the comparison result according to a preset encryption method before transmitting the comparison result to the current system; And the sending unit is further configured to: send the encrypted comparison result to the current system.
  • the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
  • the method further includes: a display unit, when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the number of currently input fingerprints, and The current number of remaining fingerprints.
  • the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
  • the present invention also provides a terminal, the terminal comprising a network interface, a memory, and a processor, wherein the memory stores a set of program codes, and the processor is configured to call program code stored in the memory for performing the following operating:
  • the target system When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
  • the processor is further configured to:
  • the processor is specifically configured to:
  • the control unit is specifically configured to:
  • the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  • the processor is further configured to:
  • the encrypted comparison result is sent to the current system.
  • the security level of the fingerprint verification can be improved, and the fingerprint of the user can be prevented from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of the user information in the terminal and improving the user experience.
  • FIG. 1 shows a flow chart of a multi-system security verification method in accordance with an embodiment of the present invention
  • FIG. 2 shows a block diagram of a multi-system security verification device in accordance with an embodiment of the present invention
  • FIG. 3 shows a structural diagram of a terminal according to an embodiment of the present invention
  • FIG. 4 shows a detailed flow chart of a multi-system security verification method in accordance with an embodiment of the present invention
  • FIG. 5 shows a schematic diagram of fingerprint verification in accordance with an embodiment of the present invention.
  • FIG. 1 shows a flow chart of a multi-system security verification method in accordance with an embodiment of the present invention.
  • a multi-system security verification method includes: Step 102: When a current system is run, if a setting command for an opening key of a specified application is received, the target system is entered. The security level of the target system is higher than the security level of the current system. Step 104: Receive multiple fingerprint information input by the user in the target system, and use the multiple fingerprint information as the specified application. The open key information of the program is stored in the target system in association with the specified application and re-enters the current system.
  • the terminal when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
  • the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information.
  • Verification information can also be used as verification information in various combinations.
  • the method further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, entering the target system, and prompting the user to input an opening key; receiving The plurality of to-be-verified fingerprint information input by the user in the target system; comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the comparison after the comparison is completed
  • the current system sends the comparison result to the current system; controlling the current system to determine whether to allow the specified application to be enabled according to the comparison result.
  • the user when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result.
  • the user enters the specified operating system, thereby Ensure the security of the specified operating system and ensure the accuracy of the verification results, thus ensuring the security of the user information and improving the user experience.
  • comparing the plurality of to-be-verified fingerprint information with the opening key information specifically: determining that the plurality of to-be-verified fingerprint information and the opening key information are Whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order in the fingerprint information are consistent; when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not matched; And controlling the current system to determine whether to allow the specified application to be opened according to the comparison result, specifically: when the plurality of to-be-verified fingerprint information matches the open key information, allowing entry into the specified application Otherwise, access to the specified application is not allowed.
  • the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
  • the method further includes: encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and sending the encrypted comparison result to the Current system.
  • the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
  • the method further includes: when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the current input fingerprint number, and the current remaining fingerprint. Number.
  • the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
  • FIG. 2 shows a block diagram of a multi-system security verification device in accordance with an embodiment of the present invention.
  • the multi-system security verification apparatus 200 includes: a system switching unit 202, when the current system is running, if a setting command for an opening key of a specified application is received, the system enters a target system, wherein the target system has a higher security level a security level of the current system; the storage unit 204 receives a plurality of fingerprint information input by the user of the terminal in the target system, and uses the multiple fingerprint information as the opening key information of the specified application And stored in the target system in association with the specified application and re-entering the current system.
  • the terminal when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
  • the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information.
  • Verification information can also be used as verification information in various combinations.
  • the prompting unit 206 is configured to: when the current system is running, if the application icon of the specified application is detected to be clicked, enter the target system, and prompt the user input to be turned on.
  • a receiving unit 208 which receives a plurality of to-be-verified fingerprint information input by the user in the target system; the comparing unit 210, the plurality of to-be-verified fingerprint information and an opening key stored in the target system The information is compared, and the current system is re-entered after the comparison is completed; the sending unit 212 sends the comparison result to the current system; and the control unit 214 controls the current system to determine whether to allow the designation to be enabled according to the comparison result. application.
  • the user when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result.
  • the user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
  • the comparison unit 210 is specifically configured to: determine the fingerprints of the plurality of to-be-verified fingerprint information and the plurality of fingerprint information in the opening key information. Whether the number, the fingerprint image, and the fingerprint arrangement order are consistent, and when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the matching is not; and the controlling unit 214 is specific And: when the plurality of to-be-verified fingerprint information matches the opening key information, allowing the specified application to be entered; otherwise, the specified application is not allowed to enter.
  • the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
  • the method further includes: an encryption unit 216, encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and the sending unit 212 further For: sending the encrypted comparison result to the current system.
  • the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
  • the display unit 218 does not display the total number of fingerprint information in the open key and the current number of input fingerprints when the user inputs the fingerprint information to be verified. And the current number of remaining fingerprints.
  • the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
  • the dual system terminal includes a common system 302 and a security system 304.
  • the security verification of the fingerprint is completely performed under the security system 304, and is isolated from the external network under the security system 304 to ensure that the fingerprint information cannot be Malware is acquired.
  • Another system is the ordinary system 302, which has the network and other rights. The two systems use completely physically isolated storage devices for storage.
  • FIG. 4 illustrates a specific embodiment of a multi-system security verification method in accordance with one embodiment of the present invention. flow chart.
  • the multi-system security verification method specifically includes:
  • Step 402 Set an opening key corresponding to the application that includes multiple fingerprints.
  • the user needs to input multiple fingerprints, and by extracting the corresponding feature values, the fingerprint feature inventory is stored in the secure area.
  • multiple parameters related to fingerprint verification can be established, and the parameters are stored in the corresponding secure storage area, which is equivalent to the configuration file. Specifically, whether the current terminal is in the security system or the normal system, when the key setting is performed, the environment is switched to the environment of the security system, thereby ensuring the security of the input opening key.
  • two fingerprints are used, which are the left and right index fingers of the user.
  • the user needs to verify they need to input the corresponding fingerprints in order to verify.
  • Step 404 When the user needs to use the specified application, click the application icon to open the application interface, and pop up a corresponding fingerprint verification window to prompt the user to perform fingerprint verification.
  • the application needs to input fingerprints for verification, the user will be prompted to input fingerprints, and the user will be prompted to input.
  • the first fingerprint is input and verified, it will jump to the input interface of the second fingerprint.
  • the second fingerprint interface is completed and verified successfully, it enters the third... until the user correctly inputs all the fingerprints, the corresponding operation of the application is directly executed; in order to ensure that other people are not aware of the number of fingerprint combinations set by the user, When the interface is displayed, the user will not be reminded to enter the first few fingerprints.
  • the interface Only the interface will be displayed, please continue to input fingerprints for verification and matching, so as to prevent malicious test attacks; for example, input the first fingerprint.
  • the mark that is not obvious on the interface appears when the first fingerprint has been input, but is represented by another way, such as displaying the progress bar in an irregular manner or the color of the progress bar. Indicates whether the current fingerprint has been verified. For example, when the user inputs the first fingerprint successfully, the display becomes green. When the second fingerprint is input, the display is yellow, etc., so that when the user inputs multiple fingerprints, it can be prevented. Others remember the number of fingerprints set by the owner.
  • Step 406 verifying that the specified application is run by running, the verification fails, and the specified application is not allowed to enter.
  • Mr. Zhang wants to complete a payment operation with his mobile phone:
  • the security level of the fingerprint verification can be improved, and the fingerprint of the user is prevented from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of the user information in the terminal and improving the user experience.
  • the present invention also provides a terminal, the terminal comprising a network interface, a memory and a processor, wherein the memory stores a set of program codes, and the processor is configured to call program code stored in the memory for performing the following operations:
  • the target system When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
  • the processor is further configured to:
  • the processor is specifically configured to:
  • the control unit is specifically configured to:
  • the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  • the processor is further configured to:
  • the encrypted comparison result is sent to the current system.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Multimedia (AREA)
  • Technology Law (AREA)
  • Lock And Its Accessories (AREA)
  • Collating Specific Patterns (AREA)

Abstract

Provided are a multi-system security authentication method, a multi-system security authentication apparatus and a terminal. The terminal comprises a plurality of systems. The method comprises: when a current system is running, if a setting command for enabling a secret key of a specified application program is received, entering a target system, wherein the security level of the target system is higher than the security level of the current system; and receiving a plurality of pieces of fingerprint information input by a user in the target system, taking the plurality of pieces of fingerprint information as secret key enabling information about the specified application program, storing same in the target system associatively with the specified application program, and re-entering the current system. By means of the technical solution of the present invention, the security level of the fingerprint authentication can be improved, and the user fingerprint is prevented from being used maliciously or embezzled maliciously, thereby comprehensively guaranteeing the security of user information in the terminal, and improving use experience of a user.

Description

多系统安全验证方法、多系统安全验证装置和终端Multi-system security verification method, multi-system security verification device and terminal
本申请要求于2014年12月31日提交中国专利局,申请号为201410854144.3、发明名称为“多系统安全验证方法、多系统安全验证装置和终端”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims the priority of the Chinese patent application filed on December 31, 2014, the Chinese Patent Office, the application number is 201410854144.3, and the invention is entitled "Multi-system security verification method, multi-system security verification device and terminal". The citations are incorporated herein by reference.
技术领域Technical field
本发明涉及终端技术领域,具体而言,涉及一种多系统安全验证方法、一种多系统安全验证装置和一种终端。The present invention relates to the field of terminal technologies, and in particular, to a multi-system security verification method, a multi-system security verification device, and a terminal.
背景技术Background technique
指纹技术产生于多年前,从开始的光学指纹识别到当前的电容滑动式指纹,再到当前的360°按压式指纹,现在指纹的应用已经十分普遍,今年来,在手机上逐步开始应用指纹,整个产业逐步发展起来;Fingerprint technology was born many years ago, from the initial optical fingerprint recognition to the current capacitive sliding fingerprint, and then to the current 360 ° pressed fingerprint, the application of fingerprints is now very common. This year, fingerprints are gradually applied on mobile phones. The entire industry has gradually developed;
但是,针对当前的使用情况,往往是采用用户的某单一的一个指纹进行解锁,或是进行支付等用途,在安全级别上存在一定的风险,且指纹信息的存储位置也并不安全。However, for the current use situation, it is often used to unlock a single fingerprint of the user, or to perform payment, etc., there is a certain risk in the security level, and the storage location of the fingerprint information is not secure.
因此需要一种新的技术方案,可以提升指纹验证的安全级别,防止用户指纹被恶意使用或者恶意盗用,从而全面地保证终端中用户信息的安全性,提升用户的使用体验。Therefore, a new technical solution is needed, which can improve the security level of fingerprint verification, prevent user fingerprints from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of user information in the terminal and improving the user experience.
发明内容Summary of the invention
本发明正是基于上述问题,提出了一种新的技术方案,可以提升指纹验证的安全级别,防止用户指纹被恶意使用或者恶意盗用,从而全面地保证终端中用户信息的安全性,提升用户的使用体验。The invention is based on the above problems, and proposes a new technical solution, which can improve the security level of fingerprint verification, prevent user fingerprints from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of user information in the terminal and improving the user's Use experience.
有鉴于此,本发明提出了一种多系统安全验证方法,用于终端,所述终端包括多个系统,所述方法包括:当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启 密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。In view of this, the present invention provides a multi-system security verification method for a terminal, the terminal comprising a plurality of systems, the method comprising: receiving an opening key for a specified application when running the current system Setting a command to enter the target system, wherein the security level of the target system is higher than the security level of the current system; receiving a plurality of fingerprint information input by the user in the target system, and the plurality of fingerprints Information as the opening of the specified application Key information, stored in the target system in association with the specified application, and re-entered the current system.
在该技术方案中,当终端的用户想要设置指定操作系统的开启密钥时,终端自动由当前系统切换至多系统中安全级别较高的系统,并在安全级别较高的系统中进行开启密钥设置和存储,从而保证开启密钥的安全。特别地,如果当前系统即为安全级别较高的系统,则无需进行切换,直接设置即可。并且,开启密钥为多个指纹信息,这样,提升了指纹信息的安全级别。In this technical solution, when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
具体地,本领域技术人员应该了解,接收到的用户输入的验证信息除了多个指纹信息还可以是其他信息,如声音信息、头像信息、数字密码信息等,可以将上述信息中的一种作为验证信息,也可以多种组合作为验证信息。Specifically, those skilled in the art should understand that the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information. Verification information can also be used as verification information in various combinations.
在上述技术方案中,优选地,还包括:当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;接收所述用户在所述目标系统中输入的多个待验证指纹信息;将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统,并将对比结果发送至所述当前系统;控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。In the above technical solution, preferably, the method further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, entering the target system, and prompting the user to input an opening key; receiving The plurality of to-be-verified fingerprint information input by the user in the target system; comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the comparison after the comparison is completed The current system sends the comparison result to the current system; controlling the current system to determine whether to allow the specified application to be enabled according to the comparison result.
在该技术方案中,当用户想要打开指定应用系统时,同样切换到安全级别较高的目标系统进行验证,并由目标系统将验证结果返回给当前系统,由当前系统根据验证结果确定是否允许用户进入指定操作系统,从而保证指定操作系统的安全,也保证验证结果的准确性,从而全面保证用户信息的安全性,提升用户的使用体验。In this technical solution, when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result. The user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
在上述技术方案中,优选地,将所述多个待验证指纹信息与所述开启密钥信息进行对比,具体包括:判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致;在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及控制所述当前系统根据所述对比 结果判断是否允许开启所述指定应用程序,具体包括:在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。In the above technical solution, preferably, comparing the plurality of to-be-verified fingerprint information with the opening key information, specifically: determining that the plurality of to-be-verified fingerprint information and the opening key information are Whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order in the fingerprint information are consistent; when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not matched; And controlling the current system according to the comparison As a result, it is determined whether the specified application is allowed to be opened, and the method includes: allowing the specified application to be entered when the plurality of to-be-verified fingerprint information matches the open key information; otherwise, the designated application is not allowed to enter. program.
在该技术方案中,当前输入的多个验证指纹需要与设置的开启密钥的指纹个数、指纹图像和指纹排列顺序等均一致,才能验证通过,这样,大大提升了开启密钥的安全级别。In the technical solution, the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
在上述技术方案中,优选地,还包括:在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及将加密后的对比结果发送至所述当前系统。In the above technical solution, preferably, the method further includes: encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and sending the encrypted comparison result to the Current system.
在该技术方案中,对对比结果进行加密,而不是明文发送,进一步保证了验证结果的安全性。In the technical solution, the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
在上述技术方案中,优选地,还包括:在所述用户输入所述待验证指纹信息时,不显示所述开启密钥中的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数。In the above technical solution, preferably, the method further includes: when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the current input fingerprint number, and the current remaining fingerprint. Number.
在该技术方案中,不显示开启密钥的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数,这样,使得其他用户看不出具体的指纹个数,以及指纹剩余个数,增加了其他用户破解开启密钥的难度,进一步保证了用户信息的安全。In this technical solution, the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
根据本发明的另一方面,还提供了一种多系统安全验证装置,用于终端,所述终端包括多个系统,所述系统包括:系统切换单元,当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;存储单元,接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。According to another aspect of the present invention, there is also provided a multi-system security verification apparatus for a terminal, the terminal comprising a plurality of systems, the system comprising: a system switching unit, when the current system is operated, if a pair is received Specifying a setting command of an open key of the application, and entering a target system, wherein a security level of the target system is higher than a security level of the current system; and a storage unit receives a plurality of inputs entered by the user in the target system Fingerprint information, and the plurality of fingerprint information is used as the opening key information of the specified application, stored in the target system in association with the specified application, and re-entered into the current system.
在该技术方案中,当终端的用户想要设置指定操作系统的开启密钥时,终端自动由当前系统切换至多系统中安全级别较高的系统,并在安全级别较高的系统中进行开启密钥设置和存储,从而保证开启密钥的安全。特别地,如果当前系统即为安全级别较高的系统,则无需进行切换,直接 设置即可。并且,开启密钥为多个指纹信息,这样,提升了指纹信息的安全级别。In this technical solution, when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, there is no need to switch, directly Set it up. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
具体地,本领域技术人员应该了解,接收到的用户输入的验证信息除了多个指纹信息还可以是其他信息,如声音信息、头像信息、数字密码信息等,可以将上述信息中的一种作为验证信息,也可以多种组合作为验证信息。Specifically, those skilled in the art should understand that the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information. Verification information can also be used as verification information in various combinations.
在上述技术方案中,优选地,还包括:提示单元,当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;接收单元,接收所述用户在所述目标系统中输入的多个待验证指纹信息;对比单元,将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后进入所述当前系统;发送单元,将对比结果发送至所述当前系统;控制单元,控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。In the above technical solution, preferably, the prompting unit further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, the target system is entered, and the user is prompted to input the opening password. a receiving unit that receives a plurality of to-be-verified fingerprint information input by the user in the target system; and a comparing unit, comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system After the comparison is completed, the current system is entered; the sending unit sends the comparison result to the current system; and the control unit controls the current system to determine whether to allow the specified application to be enabled according to the comparison result.
在该技术方案中,当用户想要打开指定应用系统时,同样切换到安全级别较高的目标系统进行验证,并由目标系统将验证结果返回给当前系统,由当前系统根据验证结果确定是否允许用户进入指定操作系统,从而保证指定操作系统的安全,也保证验证结果的准确性,从而全面保证用户信息的安全性,提升用户的使用体验。In this technical solution, when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result. The user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
在上述技术方案中,优选地,所述对比单元具体用于:判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致,在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及所述控制单元具体用于:在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。In the above technical solution, preferably, the comparing unit is configured to: determine a number of fingerprints, a fingerprint image, and a fingerprint arrangement in the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information. Whether the order is consistent, and when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the matching is not; and the controlling unit is specifically configured to: When the fingerprint information to be verified matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
在该技术方案中,当前输入的多个验证指纹需要与设置的开启密钥的指纹个数、指纹图像和指纹排列顺序等均一致,才能验证通过,这样,大大提升了开启密钥的安全级别。In the technical solution, the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
在上述技术方案中,优选地,还包括:加密单元,在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密; 以及所述发送单元还用于:将加密后的对比结果发送至所述当前系统。In the above technical solution, preferably, the method further includes: an encryption unit that encrypts the comparison result according to a preset encryption method before transmitting the comparison result to the current system; And the sending unit is further configured to: send the encrypted comparison result to the current system.
在该技术方案中,对对比结果进行加密,而不是明文发送,进一步保证了验证结果的安全性。In the technical solution, the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
在上述技术方案中,优选地,还包括:显示单元,在所述用户输入所述待验证指纹信息时,不显示所述开启密钥中的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数。In the above technical solution, the method further includes: a display unit, when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the number of currently input fingerprints, and The current number of remaining fingerprints.
在该技术方案中,不显示开启密钥的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数,这样,使得其他用户看不出具体的指纹个数,以及指纹剩余个数,增加了其他用户破解开启密钥的难度,进一步保证了用户信息的安全。In this technical solution, the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
相应地,本发明还提供了一种终端,所述终端包括网络接口、存储器以及处理器,其中,存储器中存储一组程序代码,且处理器用于调用存储器中存储的程序代码,用于执行以下操作:Accordingly, the present invention also provides a terminal, the terminal comprising a network interface, a memory, and a processor, wherein the memory stores a set of program codes, and the processor is configured to call program code stored in the memory for performing the following operating:
当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。Receiving a plurality of fingerprint information input by the user in the target system, and storing the plurality of fingerprint information as the opening key information of the specified application, and storing in the target system in association with the specified application, And re-enter the current system.
优选地,所述处理器还用于:Preferably, the processor is further configured to:
当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;When the current system is running, if it is detected that the application icon of the specified application is clicked, the target system is entered, and the user is prompted to input an opening key;
接收所述用户在所述目标系统中输入的多个待验证指纹信息;Receiving a plurality of to-be-verified fingerprint information input by the user in the target system;
将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统;Comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the current system after the comparison is completed;
将对比结果发送至所述当前系统;Sending the comparison result to the current system;
控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。 Controlling the current system to determine whether to allow the specified application to be opened according to the comparison result.
优选地,所述处理器具体用于:Preferably, the processor is specifically configured to:
判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致,Determining whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order of the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information are consistent.
在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及When the judgment result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not;
所述控制单元具体用于:The control unit is specifically configured to:
在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。When the plurality of to-be-verified fingerprint information matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
优选地,所述处理器还用于:Preferably, the processor is further configured to:
在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及Encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system;
将加密后的对比结果发送至所述当前系统。The encrypted comparison result is sent to the current system.
通过以上技术方案,可以提升指纹验证的安全级别,防止用户指纹被恶意使用或者恶意盗用,从而全面地保证终端中用户信息的安全性,提升用户的使用体验。Through the above technical solutions, the security level of the fingerprint verification can be improved, and the fingerprint of the user can be prevented from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of the user information in the terminal and improving the user experience.
附图说明DRAWINGS
图1示出了根据本发明的实施例的多系统安全验证方法的流程图;1 shows a flow chart of a multi-system security verification method in accordance with an embodiment of the present invention;
图2示出了根据本发明的实施例的多系统安全验证装置的框图;2 shows a block diagram of a multi-system security verification device in accordance with an embodiment of the present invention;
图3示出了根据本发明的实施例的终端的结构图;FIG. 3 shows a structural diagram of a terminal according to an embodiment of the present invention; FIG.
图4示出了根据本发明的实施例的多系统安全验证方法的具体流程图;4 shows a detailed flow chart of a multi-system security verification method in accordance with an embodiment of the present invention;
图5示出了根据本发明的实施例的指纹验证的示意图。FIG. 5 shows a schematic diagram of fingerprint verification in accordance with an embodiment of the present invention.
具体实施方式detailed description
为了能够更清楚地理解本发明的上述目的、特征和优点,下面结合附图和具体实施方式对本发明进行进一步的详细描述。需要说明的是,在不冲突的情况下,本申请的实施例及实施例中的特征可以相互组合。The present invention will be further described in detail below with reference to the drawings and specific embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict.
在下面的描述中阐述了很多具体细节以便于充分理解本发明,但是, 本发明还可以采用其他不同于在此描述的其他方式来实施,因此,本发明的保护范围并不受下面公开的具体实施例的限制。In the following description, numerous specific details are set forth in order to provide a thorough understanding of the invention. The present invention may be embodied in other specific forms than those described herein. Therefore, the scope of the present invention is not limited by the specific embodiments disclosed below.
图1示出了根据本发明的实施例的多系统安全验证方法的流程图。FIG. 1 shows a flow chart of a multi-system security verification method in accordance with an embodiment of the present invention.
如图1所示,根据本发明的实施例的多系统安全验证方法,包括:步骤102,当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;步骤104,接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。As shown in FIG. 1 , a multi-system security verification method according to an embodiment of the present invention includes: Step 102: When a current system is run, if a setting command for an opening key of a specified application is received, the target system is entered. The security level of the target system is higher than the security level of the current system. Step 104: Receive multiple fingerprint information input by the user in the target system, and use the multiple fingerprint information as the specified application. The open key information of the program is stored in the target system in association with the specified application and re-enters the current system.
在该技术方案中,当终端的用户想要设置指定操作系统的开启密钥时,终端自动由当前系统切换至多系统中安全级别较高的系统,并在安全级别较高的系统中进行开启密钥设置和存储,从而保证开启密钥的安全。特别地,如果当前系统即为安全级别较高的系统,则无需进行切换,直接设置即可。并且,开启密钥为多个指纹信息,这样,提升了指纹信息的安全级别。In this technical solution, when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
具体地,本领域技术人员应该了解,接收到的用户输入的验证信息除了多个指纹信息还可以是其他信息,如声音信息、头像信息、数字密码信息等,可以将上述信息中的一种作为验证信息,也可以多种组合作为验证信息。Specifically, those skilled in the art should understand that the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information. Verification information can also be used as verification information in various combinations.
在上述技术方案中,优选地,还包括:当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;接收所述用户在所述目标系统中输入的多个待验证指纹信息;将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统,并将对比结果发送至所述当前系统;控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。In the above technical solution, preferably, the method further includes: when the current system is running, if the application icon of the specified application is detected to be clicked, entering the target system, and prompting the user to input an opening key; receiving The plurality of to-be-verified fingerprint information input by the user in the target system; comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the comparison after the comparison is completed The current system sends the comparison result to the current system; controlling the current system to determine whether to allow the specified application to be enabled according to the comparison result.
在该技术方案中,当用户想要打开指定应用系统时,同样切换到安全级别较高的目标系统进行验证,并由目标系统将验证结果返回给当前系统,由当前系统根据验证结果确定是否允许用户进入指定操作系统,从而 保证指定操作系统的安全,也保证验证结果的准确性,从而全面保证用户信息的安全性,提升用户的使用体验。In this technical solution, when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result. The user enters the specified operating system, thereby Ensure the security of the specified operating system and ensure the accuracy of the verification results, thus ensuring the security of the user information and improving the user experience.
在上述技术方案中,优选地,将所述多个待验证指纹信息与所述开启密钥信息进行对比,具体包括:判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致;在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序,具体包括:在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。In the above technical solution, preferably, comparing the plurality of to-be-verified fingerprint information with the opening key information, specifically: determining that the plurality of to-be-verified fingerprint information and the opening key information are Whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order in the fingerprint information are consistent; when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not matched; And controlling the current system to determine whether to allow the specified application to be opened according to the comparison result, specifically: when the plurality of to-be-verified fingerprint information matches the open key information, allowing entry into the specified application Otherwise, access to the specified application is not allowed.
在该技术方案中,当前输入的多个验证指纹需要与设置的开启密钥的指纹个数、指纹图像和指纹排列顺序等均一致,才能验证通过,这样,大大提升了开启密钥的安全级别。In the technical solution, the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
在上述技术方案中,优选地,还包括:在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及将加密后的对比结果发送至所述当前系统。In the above technical solution, preferably, the method further includes: encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and sending the encrypted comparison result to the Current system.
在该技术方案中,对对比结果进行加密,而不是明文发送,进一步保证了验证结果的安全性。In the technical solution, the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
在上述技术方案中,优选地,还包括:在所述用户输入所述待验证指纹信息时,不显示所述开启密钥中的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数。In the above technical solution, preferably, the method further includes: when the user inputs the fingerprint information to be verified, does not display the total number of fingerprint information in the open key, the current input fingerprint number, and the current remaining fingerprint. Number.
在该技术方案中,不显示开启密钥的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数,这样,使得其他用户看不出具体的指纹个数,以及指纹剩余个数,增加了其他用户破解开启密钥的难度,进一步保证了用户信息的安全。In this technical solution, the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
图2示出了根据本发明的实施例的多系统安全验证装置的框图。2 shows a block diagram of a multi-system security verification device in accordance with an embodiment of the present invention.
如图2所示,根据本发明的实施例的多系统安全验证装置200,包括:系统切换单元202,当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于 所述当前系统的安全级别;存储单元204,接收所述终端的用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。As shown in FIG. 2, the multi-system security verification apparatus 200 according to the embodiment of the present invention includes: a system switching unit 202, when the current system is running, if a setting command for an opening key of a specified application is received, the system enters a target system, wherein the target system has a higher security level a security level of the current system; the storage unit 204 receives a plurality of fingerprint information input by the user of the terminal in the target system, and uses the multiple fingerprint information as the opening key information of the specified application And stored in the target system in association with the specified application and re-entering the current system.
在该技术方案中,当终端的用户想要设置指定操作系统的开启密钥时,终端自动由当前系统切换至多系统中安全级别较高的系统,并在安全级别较高的系统中进行开启密钥设置和存储,从而保证开启密钥的安全。特别地,如果当前系统即为安全级别较高的系统,则无需进行切换,直接设置即可。并且,开启密钥为多个指纹信息,这样,提升了指纹信息的安全级别。In this technical solution, when the user of the terminal wants to set the opening key of the specified operating system, the terminal automatically switches from the current system to a system with a higher security level in multiple systems, and opens the confidentiality in a system with a higher security level. Key settings and storage to ensure the security of the open key. In particular, if the current system is a system with a higher security level, it is not necessary to switch and set directly. Moreover, the opening key is a plurality of fingerprint information, thus improving the security level of the fingerprint information.
具体地,本领域技术人员应该了解,接收到的用户输入的验证信息除了多个指纹信息还可以是其他信息,如声音信息、头像信息、数字密码信息等,可以将上述信息中的一种作为验证信息,也可以多种组合作为验证信息。Specifically, those skilled in the art should understand that the received verification information input by the user may be other information, such as voice information, avatar information, digital password information, etc., in addition to the plurality of fingerprint information, and one of the above information may be used as one of the above information. Verification information can also be used as verification information in various combinations.
在上述技术方案中,优选地,还包括:提示单元206,当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;接收单元208,接收所述用户在所述目标系统中输入的多个待验证指纹信息;对比单元210,将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统;发送单元212,将对比结果发送至所述当前系统;控制单元214,控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。In the above technical solution, preferably, the prompting unit 206 is configured to: when the current system is running, if the application icon of the specified application is detected to be clicked, enter the target system, and prompt the user input to be turned on. a receiving unit 208, which receives a plurality of to-be-verified fingerprint information input by the user in the target system; the comparing unit 210, the plurality of to-be-verified fingerprint information and an opening key stored in the target system The information is compared, and the current system is re-entered after the comparison is completed; the sending unit 212 sends the comparison result to the current system; and the control unit 214 controls the current system to determine whether to allow the designation to be enabled according to the comparison result. application.
在该技术方案中,当用户想要打开指定应用系统时,同样切换到安全级别较高的目标系统进行验证,并由目标系统将验证结果返回给当前系统,由当前系统根据验证结果确定是否允许用户进入指定操作系统,从而保证指定操作系统的安全,也保证验证结果的准确性,从而全面保证用户信息的安全性,提升用户的使用体验。In this technical solution, when the user wants to open the specified application system, the user also switches to the target system with higher security level for verification, and the target system returns the verification result to the current system, and the current system determines whether to allow the verification result according to the verification result. The user enters the specified operating system to ensure the security of the specified operating system and the accuracy of the verification result, thereby ensuring the security of the user information and improving the user experience.
在上述技术方案中,优选地,所述对比单元210具体用于:判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个 数、指纹图像和指纹排列顺序是否一致,在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及所述控制单元214具体用于:在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。In the above technical solution, the comparison unit 210 is specifically configured to: determine the fingerprints of the plurality of to-be-verified fingerprint information and the plurality of fingerprint information in the opening key information. Whether the number, the fingerprint image, and the fingerprint arrangement order are consistent, and when the determination result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the matching is not; and the controlling unit 214 is specific And: when the plurality of to-be-verified fingerprint information matches the opening key information, allowing the specified application to be entered; otherwise, the specified application is not allowed to enter.
在该技术方案中,当前输入的多个验证指纹需要与设置的开启密钥的指纹个数、指纹图像和指纹排列顺序等均一致,才能验证通过,这样,大大提升了开启密钥的安全级别。In the technical solution, the plurality of verification fingerprints currently input need to be consistent with the number of fingerprints of the set opening key, the fingerprint image, and the order of the fingerprints, so as to be verified, thereby greatly improving the security level of the opening key. .
在上述技术方案中,优选地,还包括:加密单元216,在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及所述发送单元212还用于:将加密后的对比结果发送至所述当前系统。In the above technical solution, preferably, the method further includes: an encryption unit 216, encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system; and the sending unit 212 further For: sending the encrypted comparison result to the current system.
在该技术方案中,对对比结果进行加密,而不是明文发送,进一步保证了验证结果的安全性。In the technical solution, the comparison result is encrypted instead of the plaintext transmission, which further ensures the security of the verification result.
在上述技术方案中,优选地,还包括:显示单元218,在所述用户输入所述待验证指纹信息时,不显示所述开启密钥中的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数。In the above technical solution, preferably, the display unit 218 does not display the total number of fingerprint information in the open key and the current number of input fingerprints when the user inputs the fingerprint information to be verified. And the current number of remaining fingerprints.
在该技术方案中,不显示开启密钥的指纹信息的总个数、当前输入指纹个数以及当前剩余指纹个数,这样,使得其他用户看不出具体的指纹个数,以及指纹剩余个数,增加了其他用户破解开启密钥的难度,进一步保证了用户信息的安全。In this technical solution, the total number of fingerprint information of the opening key, the number of currently input fingerprints, and the current number of remaining fingerprints are not displayed, so that other users cannot see the specific number of fingerprints, and the remaining number of fingerprints. It increases the difficulty for other users to crack the open key, and further ensures the security of the user information.
下面以双系统终端为例,详细说明本发明的技术方案,但本领域技术人员应当理解,本申请中的多系统终端包括但是不限于双系统。The following is a detailed description of the technical solution of the present invention by taking a dual-system terminal as an example, but those skilled in the art should understand that the multi-system terminal in the present application includes but is not limited to a dual system.
如图3所示,双系统终端包括普通系统302和安全系统304,为了保证指纹安全,指纹的安全验证完全在安全系统304下执行,在安全系统304下与外界网络隔离,保证指纹信息不能被恶意软件获取,另一个系统是普通系统302,有网络等权限,两个系统采用完全物理隔离的存储设备进行存储。As shown in FIG. 3, the dual system terminal includes a common system 302 and a security system 304. In order to ensure fingerprint security, the security verification of the fingerprint is completely performed under the security system 304, and is isolated from the external network under the security system 304 to ensure that the fingerprint information cannot be Malware is acquired. Another system is the ordinary system 302, which has the network and other rights. The two systems use completely physically isolated storage devices for storage.
图4示出了根据本发明的一个实施例的多系统安全验证方法的具体 流程图。4 illustrates a specific embodiment of a multi-system security verification method in accordance with one embodiment of the present invention. flow chart.
如图4所示,根据本发明的一个实施例的多系统安全验证方法具体包括:As shown in FIG. 4, the multi-system security verification method according to an embodiment of the present invention specifically includes:
步骤402,设置应用程序对应的包含多个指纹的开启密钥。用户需要录入多个指纹,通过提取相应的特征值,建立指纹特征库存储在安全区域。在设置相应应用开启或其他操作的时候,可以建立多个指纹验证的相关参数,该参数存储在相应的安全存储区,相当于配置文件。具体地,无论当前终端处于安全系统还是普通系统,当进行开启密钥设置时,都会切换到安全系统的环境下,从而保证录入的开启密钥的安全性。Step 402: Set an opening key corresponding to the application that includes multiple fingerprints. The user needs to input multiple fingerprints, and by extracting the corresponding feature values, the fingerprint feature inventory is stored in the secure area. When setting the corresponding application to open or other operations, multiple parameters related to fingerprint verification can be established, and the parameters are stored in the corresponding secure storage area, which is equivalent to the configuration file. Specifically, whether the current terminal is in the security system or the normal system, when the key setting is performed, the environment is switched to the environment of the security system, thereby ensuring the security of the input opening key.
设置相关应用的指纹时,可以选择多个指纹进行设置,比如图5所示,采用了两个指纹,分别是用户的左右食指,当用户需要验证时则需要在按照顺序输入相应的指纹进行验证,这样的安全性在相比用单一指纹层面上,提升了很多;在目前指纹识别的FAR和FRR一般范围大致要求是,1/50000~1/100000的误识率@1%~3%的拒识率,也就是说单个手指的安全级别大概是相当于纯数字4~5位的组合安全等级(去除指纹是只有用户自己独一ID的考虑),当用户采用两个手指叠加在一起作为验证同一事件的必要条件时,相当于纯数字8位的密级,相当于将安全级别提升了多倍;依次类推,10个手指可以的自由组合,从而可以大大提升安全级别。When setting the fingerprint of the relevant application, you can select multiple fingerprints to set. For example, as shown in Figure 5, two fingerprints are used, which are the left and right index fingers of the user. When the user needs to verify, they need to input the corresponding fingerprints in order to verify. This kind of security is much improved compared with the single fingerprint level; in the current FAR and FRR of fingerprint identification, the general range is roughly 1@0000~1/100000 misrecognition rate @1%~3% Rejection rate, that is to say, the security level of a single finger is roughly equivalent to a combination of 4 to 5 digits of pure digits (removing fingerprints is only the user's own unique ID), when the user uses two fingers to superimpose together When verifying the necessary conditions of the same event, it is equivalent to a pure 8-bit secret level, which is equivalent to increasing the security level by multiple times; and so on, 10 fingers can be freely combined, which can greatly improve the security level.
步骤404,当用户需要使用该指定应用程序时,点击应用图标,开启应用界面,弹出相应的指纹验证窗口提示用户进行指纹验证。应用程序需要输入指纹进行验证时,此时会提醒用户需要输入指纹,在操作界面上会提醒用户进行输入,当第一个指纹输入并验证通过后,则会跳至第二个指纹的输入界面,第二个指纹界面输入完成并验证成功后,进入第三个……直到用户正确输入所有指纹后,会直接执行应用的相应操作;为了保证不让其他人了解用户设定的指纹组合数,在界面显示的时候,不会提醒用户在输入第几个指纹,只会在界面显示请继续输入指纹进行验证匹配,这样可以防止被恶意的进行试验性的测试攻击;比如在输入第一个指纹后,在界面上不明显的标识出现在已经输入完成了第一个指纹,而是用另外的一种方式表示,比如以不规则方式显示进度条,或是进度条颜色的不同来表 示是否已经验证成功了当前的指纹,例如:用户输入成功了第一个指纹时,显示成为绿色,当输入第二个指纹时,显示为黄色等等,这样在用户输入多个指纹时可以防止其他人记住机主设置的指纹数量。Step 404: When the user needs to use the specified application, click the application icon to open the application interface, and pop up a corresponding fingerprint verification window to prompt the user to perform fingerprint verification. When the application needs to input fingerprints for verification, the user will be prompted to input fingerprints, and the user will be prompted to input. When the first fingerprint is input and verified, it will jump to the input interface of the second fingerprint. After the second fingerprint interface is completed and verified successfully, it enters the third... until the user correctly inputs all the fingerprints, the corresponding operation of the application is directly executed; in order to ensure that other people are not aware of the number of fingerprint combinations set by the user, When the interface is displayed, the user will not be reminded to enter the first few fingerprints. Only the interface will be displayed, please continue to input fingerprints for verification and matching, so as to prevent malicious test attacks; for example, input the first fingerprint. After that, the mark that is not obvious on the interface appears when the first fingerprint has been input, but is represented by another way, such as displaying the progress bar in an irregular manner or the color of the progress bar. Indicates whether the current fingerprint has been verified. For example, when the user inputs the first fingerprint successfully, the display becomes green. When the second fingerprint is input, the display is yellow, etc., so that when the user inputs multiple fingerprints, it can be prevented. Others remember the number of fingerprints set by the owner.
步骤406,验证通过运行进行指定应用程序,验证不通过,不允许进入指定应用程序。 Step 406, verifying that the specified application is run by running, the verification fails, and the specified application is not allowed to enter.
下面列举一个具体实例详细说明本发明的技术方案。The technical solution of the present invention will be described in detail below by way of a specific example.
张先生想用他的手机完成一个支付操作:Mr. Zhang wants to complete a payment operation with his mobile phone:
1、首先他点击开了钱包应用,进入设置界面,设置密码方式为指纹验证—多指纹验证;1. First, he clicked on the wallet application, entered the setting interface, and set the password mode as fingerprint verification—multiple fingerprint verification;
2、提醒用户设置一个安全级别较高的组合密码,作为指纹失效时的备用选项。2. Remind the user to set a combination password with a higher security level as an alternate option when the fingerprint fails.
3、点击开始录入指纹,进入安全系统,他设置了他的左手的拇指和右手的食指作为融合密码,并且顺序是右手的食指验证,接下来左手的拇指,录入成功,存储至安全系统中;3. Click to enter the fingerprint and enter the security system. He sets the index finger of his left hand and the index finger of the right hand as the fusion password, and the order is the index finger verification of the right hand. Then the thumb of the left hand is successfully entered and stored in the security system;
4、打开钱包应用,点击对刚在已经下了订单的网购产品付款,此时切换到安全系统,弹出了用户信息的验证界面,他在这个界面上先输入了右手的食指验证成功,接下来他又用左手的食指进行验证并成功,此时应用界面显示,已经支付完成;如果用户不能输入正确的验证密码,则不能进行支付。4. Open the wallet application and click on the payment for the online shopping product that has just placed the order. At this time, switch to the security system and pop up the verification interface of the user information. On this interface, the first index finger of the right hand is successfully verified. He used the left index finger to verify and succeed. At this time, the application interface displays that the payment has been completed; if the user cannot input the correct verification password, the payment cannot be made.
以上结合附图详细说明了本发明的技术方案,可以提升指纹验证的安全级别,防止用户指纹被恶意使用或者恶意盗用,从而全面地保证终端中用户信息的安全性,提升用户的使用体验。The technical solution of the present invention is described in detail above with reference to the accompanying drawings. The security level of the fingerprint verification can be improved, and the fingerprint of the user is prevented from being maliciously used or maliciously stolen, thereby comprehensively ensuring the security of the user information in the terminal and improving the user experience.
本发明还提供了一种终端,所述终端包括网络接口、存储器以及处理器,其中,存储器中存储一组程序代码,且处理器用于调用存储器中存储的程序代码,用于执行以下操作:The present invention also provides a terminal, the terminal comprising a network interface, a memory and a processor, wherein the memory stores a set of program codes, and the processor is configured to call program code stored in the memory for performing the following operations:
当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别; When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。Receiving a plurality of fingerprint information input by the user in the target system, and storing the plurality of fingerprint information as the opening key information of the specified application, and storing in the target system in association with the specified application, And re-enter the current system.
优选地,所述处理器还用于:Preferably, the processor is further configured to:
当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;When the current system is running, if it is detected that the application icon of the specified application is clicked, the target system is entered, and the user is prompted to input an opening key;
接收所述用户在所述目标系统中输入的多个待验证指纹信息;Receiving a plurality of to-be-verified fingerprint information input by the user in the target system;
将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统;Comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the current system after the comparison is completed;
将对比结果发送至所述当前系统;Sending the comparison result to the current system;
控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。Controlling the current system to determine whether to allow the specified application to be opened according to the comparison result.
优选地,所述处理器具体用于:Preferably, the processor is specifically configured to:
判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致,Determining whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order of the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information are consistent.
在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及When the judgment result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not;
所述控制单元具体用于:The control unit is specifically configured to:
在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。When the plurality of to-be-verified fingerprint information matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
优选地,所述处理器还用于:Preferably, the processor is further configured to:
在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及Encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system;
将加密后的对比结果发送至所述当前系统。The encrypted comparison result is sent to the current system.
以上所述仅为本发明的优选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。 The above description is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims (12)

  1. 一种多系统安全验证方法,用于终端,其特征在于,所述终端包括多个系统,所述方法包括:A multi-system security verification method is provided for a terminal, wherein the terminal includes a plurality of systems, and the method includes:
    当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
    接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。Receiving a plurality of fingerprint information input by the user in the target system, and storing the plurality of fingerprint information as the opening key information of the specified application, and storing in the target system in association with the specified application, And re-enter the current system.
  2. 根据权利要求1所述的多系统安全验证方法,其特征在于,还包括:The multi-system security verification method according to claim 1, further comprising:
    当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;When the current system is running, if it is detected that the application icon of the specified application is clicked, the target system is entered, and the user is prompted to input an opening key;
    接收所述用户在所述目标系统中输入的多个待验证指纹信息;Receiving a plurality of to-be-verified fingerprint information input by the user in the target system;
    将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统,并将对比结果发送至所述当前系统;Comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, re-entering the current system after the comparison is completed, and transmitting the comparison result to the current system;
    控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。Controlling the current system to determine whether to allow the specified application to be opened according to the comparison result.
  3. 根据权利要求2所述的多系统安全验证方法,其特征在于,The multi-system security verification method according to claim 2, wherein
    将所述多个待验证指纹信息与所述开启密钥信息进行对比,具体包括:Comparing the plurality of to-be-verified fingerprint information with the opening key information, specifically including:
    判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致;Determining whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order of the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information are consistent;
    在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及When the judgment result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not;
    控制所述当前系统根据所述对比结果判断是否允许开启所述指定应 用程序,具体包括:Controlling, by the current system, whether to allow opening of the designation according to the comparison result Use the program, specifically including:
    在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。When the plurality of to-be-verified fingerprint information matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  4. 根据权利要求2或3所述的多系统安全验证方法,其特征在于,还包括:The multi-system security verification method according to claim 2 or 3, further comprising:
    在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及Encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system;
    将加密后的对比结果发送至所述当前系统。The encrypted comparison result is sent to the current system.
  5. 一种多系统安全验证装置,用于终端,其特征在于,所述终端包括多个系统,所述系统包括:A multi-system security verification device is provided for a terminal, wherein the terminal comprises a plurality of systems, and the system comprises:
    系统切换单元,当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;The system switching unit, when the current system is running, enters the target system if a setting command for the opening key of the specified application is received, wherein the security level of the target system is higher than the security level of the current system;
    存储单元,接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。a storage unit, receiving a plurality of fingerprint information input by the user in the target system, and storing the plurality of fingerprint information as opening key information of the specified application, and storing the target information in association with the specified application In the system, and re-enter the current system.
  6. 根据权利要求5所述的多系统安全验证装置,其特征在于,还包括:The multi-system security verification device according to claim 5, further comprising:
    提示单元,当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;a prompting unit, when the current system is running, if the application icon of the specified application is detected to be clicked, entering the target system, and prompting the user to input an opening key;
    接收单元,接收所述用户在所述目标系统中输入的多个待验证指纹信息;Receiving unit, receiving a plurality of to-be-verified fingerprint information input by the user in the target system;
    对比单元,将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统;The comparing unit compares the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-enters the current system after the comparison is completed;
    发送单元,将对比结果发送至所述当前系统;a sending unit, sending the comparison result to the current system;
    控制单元,控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。And a control unit that controls the current system to determine, according to the comparison result, whether to enable the specified application.
  7. 根据权利要求6所述的多系统安全验证装置,其特征在于,The multi-system security verification device according to claim 6, wherein
    所述对比单元具体用于: The comparison unit is specifically configured to:
    判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致,Determining whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order of the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information are consistent.
    在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及When the judgment result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not;
    所述控制单元具体用于:The control unit is specifically configured to:
    在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。When the plurality of to-be-verified fingerprint information matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  8. 根据权利要求6或7所述的多系统安全验证装置,其特征在于,还包括:The multi-system security verification device according to claim 6 or 7, further comprising:
    加密单元,在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及An encryption unit that encrypts the comparison result according to a preset encryption method before transmitting the comparison result to the current system;
    所述发送单元还用于:The sending unit is further configured to:
    将加密后的对比结果发送至所述当前系统。The encrypted comparison result is sent to the current system.
  9. 一种终端,其特征在于,所述终端包括网络接口、存储器以及处理器,其中,存储器中存储一组程序代码,且处理器用于调用存储器中存储的程序代码,用于执行以下操作:A terminal, comprising: a network interface, a memory, and a processor, wherein the memory stores a set of program codes, and the processor is configured to call program code stored in the memory, to perform the following operations:
    当运行当前系统时,若接收到对指定应用程序的开启密钥的设置命令,则进入目标系统,其中,所述目标系统的安全级别高于所述当前系统的安全级别;When the current system is running, if a setting command for the opening key of the specified application is received, the target system is entered, wherein the security level of the target system is higher than the security level of the current system;
    接收用户在所述目标系统中输入的多个指纹信息,并将所述多个指纹信息作为所述指定应用程序的开启密钥信息,与所述指定应用程序关联存储在所述目标系统中,并重新进入所述当前系统。Receiving a plurality of fingerprint information input by the user in the target system, and storing the plurality of fingerprint information as the opening key information of the specified application, and storing in the target system in association with the specified application, And re-enter the current system.
  10. 根据权利要求9所述的终端,其特征在于,所述处理器还用于:The terminal according to claim 9, wherein the processor is further configured to:
    当运行当前系统时,若检测到所述指定应用程序的应用图标被点击,则进入所述目标系统,并提示所述用户输入开启密钥;When the current system is running, if it is detected that the application icon of the specified application is clicked, the target system is entered, and the user is prompted to input an opening key;
    接收所述用户在所述目标系统中输入的多个待验证指纹信息;Receiving a plurality of to-be-verified fingerprint information input by the user in the target system;
    将所述多个待验证指纹信息与所述目标系统中存储的开启密钥信息进行对比,在对比完成后重新进入所述当前系统; Comparing the plurality of to-be-verified fingerprint information with the opening key information stored in the target system, and re-entering the current system after the comparison is completed;
    将对比结果发送至所述当前系统;Sending the comparison result to the current system;
    控制所述当前系统根据所述对比结果判断是否允许开启所述指定应用程序。Controlling the current system to determine whether to allow the specified application to be opened according to the comparison result.
  11. 根据权利要求10所述的终端,其特征在于,所述处理器具体用于:The terminal according to claim 10, wherein the processor is specifically configured to:
    判断所述多个待验证指纹信息与所述开启密钥信息中的多个指纹信息中的指纹个数、指纹图像和指纹排列顺序是否一致,Determining whether the number of fingerprints, the fingerprint image, and the fingerprint arrangement order of the plurality of fingerprint information to be verified and the plurality of fingerprint information in the opening key information are consistent.
    在判断结果为一致时,判定所述多个待验证指纹信息和所述开启密钥信息匹配,否则,判定为不匹配;以及When the judgment result is consistent, determining that the plurality of to-be-verified fingerprint information and the opening key information match, otherwise, determining that the match is not;
    所述控制单元具体用于:The control unit is specifically configured to:
    在所述多个待验证指纹信息与所述开启密钥信息匹配时,允许进入所述指定应用程序,否则,不允许进入所述指定应用程序。When the plurality of to-be-verified fingerprint information matches the opening key information, the specified application is allowed to enter, otherwise, the specified application is not allowed to enter.
  12. 根据权利要求10或11所述的终端,其特征在于,所述处理器还用于:The terminal according to claim 10 or 11, wherein the processor is further configured to:
    在将所述对比结果发送至所述当前系统之前,按照预设加密方法对所述对比结果进行加密;以及Encrypting the comparison result according to a preset encryption method before transmitting the comparison result to the current system;
    将加密后的对比结果发送至所述当前系统。 The encrypted comparison result is sent to the current system.
PCT/CN2015/075608 2014-12-31 2015-03-31 Multi-system security authentication method, multi-system security authentication apparatus and terminal WO2016106989A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410854144.3 2014-12-31
CN201410854144.3A CN104615927B (en) 2014-12-31 2014-12-31 Multisystem safe verification method, multisystem safety verification device and terminal

Publications (1)

Publication Number Publication Date
WO2016106989A1 true WO2016106989A1 (en) 2016-07-07

Family

ID=53150367

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/075608 WO2016106989A1 (en) 2014-12-31 2015-03-31 Multi-system security authentication method, multi-system security authentication apparatus and terminal

Country Status (2)

Country Link
CN (1) CN104615927B (en)
WO (1) WO2016106989A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109543370A (en) * 2017-09-22 2019-03-29 西安中兴新软件有限责任公司 A kind of application processing method, terminal and computer readable storage medium
CN116016766A (en) * 2022-12-29 2023-04-25 天翼电信终端有限公司 Fingerprint verification management method based on container judgment

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105634740A (en) * 2015-06-29 2016-06-01 宇龙计算机通信科技(深圳)有限公司 Fingerprint password verification method, system and terminal
CN105608358A (en) * 2015-07-30 2016-05-25 宇龙计算机通信科技(深圳)有限公司 Password information verification method, password information verification system and terminal
CN107533596B (en) * 2015-08-19 2019-11-29 华为技术有限公司 Fingerprint identification method and mobile terminal
CN105205451B (en) * 2015-08-25 2018-12-25 东莞酷派软件技术有限公司 Fingerprint authentication method, fingerprint verifying apparatus and terminal
CN105184567B (en) * 2015-08-26 2019-06-11 宇龙计算机通信科技(深圳)有限公司 Processing method, processing unit and the mobile terminal of information
CN105260664B (en) * 2015-09-24 2018-05-15 宇龙计算机通信科技(深圳)有限公司 Method for security protection and terminal are applied between a kind of multisystem
CN105160274B (en) * 2015-09-24 2017-10-27 宇龙计算机通信科技(深圳)有限公司 A kind of guard method of user data and terminal
CN105631286A (en) * 2015-09-29 2016-06-01 宇龙计算机通信科技(深圳)有限公司 Methods and apparatuses for storing fingerprint template information and performing authentication by adopting fingerprint information
CN105488680A (en) * 2015-11-27 2016-04-13 东莞酷派软件技术有限公司 Payment method and device
CN105844143A (en) * 2016-03-18 2016-08-10 联想(北京)有限公司 Password processing method and password processing electronic equipment
CN105843534A (en) * 2016-03-18 2016-08-10 努比亚技术有限公司 Control device and method of mobile terminal
CN107818249A (en) * 2016-09-13 2018-03-20 鼎桥通信技术有限公司 The configuring management method of dual system fingerprinting service
KR102462603B1 (en) * 2017-01-03 2022-11-03 삼성전자주식회사 Method for managing contents and electronic device thereof
WO2018227584A1 (en) * 2017-06-16 2018-12-20 深圳市汇顶科技股份有限公司 Method, device, and equipment for fingerprint recognition
CN108989041A (en) * 2018-05-03 2018-12-11 北京集创北方科技股份有限公司 Encryption method and device, decryption method and device
CN109685958A (en) * 2019-02-13 2019-04-26 美智光电科技有限公司 Setting method and device, control method and device for intelligent door lock
CN110362983B (en) * 2019-05-31 2022-06-17 北京中电飞华通信股份有限公司 Method and device for ensuring consistency of dual-domain system and electronic equipment

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101939750A (en) * 2008-02-08 2011-01-05 微软公司 User indicator signifying a secure mode
CN103646202A (en) * 2013-12-09 2014-03-19 东南大学 Fingerprint information coding encryption and application method
CN103902873A (en) * 2014-04-01 2014-07-02 昆腾微电子股份有限公司 Mobile device and method for authenticating identity by mobile device
CN103942481A (en) * 2014-05-04 2014-07-23 上海鼎为电子科技(集团)有限公司 Application access method and mobile terminal
CN103955638A (en) * 2014-05-20 2014-07-30 深圳市中兴移动通信有限公司 Method and device for privacy protection
CN103957107A (en) * 2014-05-19 2014-07-30 浙江维尔科技股份有限公司 Identity authentication method and device

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102104671B (en) * 2009-12-17 2014-02-12 深圳富泰宏精密工业有限公司 Mobile phone and method for locking application thereof
CN102567686A (en) * 2012-01-06 2012-07-11 上海凯卓信息科技有限公司 Security authentication method of application software of mobile terminal based on human body stable characteristics
CN104050406A (en) * 2014-07-03 2014-09-17 南昌欧菲生物识别技术有限公司 Method and terminal equipment for carrying out authentication through fingerprint combinations

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101939750A (en) * 2008-02-08 2011-01-05 微软公司 User indicator signifying a secure mode
CN103646202A (en) * 2013-12-09 2014-03-19 东南大学 Fingerprint information coding encryption and application method
CN103902873A (en) * 2014-04-01 2014-07-02 昆腾微电子股份有限公司 Mobile device and method for authenticating identity by mobile device
CN103942481A (en) * 2014-05-04 2014-07-23 上海鼎为电子科技(集团)有限公司 Application access method and mobile terminal
CN103957107A (en) * 2014-05-19 2014-07-30 浙江维尔科技股份有限公司 Identity authentication method and device
CN103955638A (en) * 2014-05-20 2014-07-30 深圳市中兴移动通信有限公司 Method and device for privacy protection

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109543370A (en) * 2017-09-22 2019-03-29 西安中兴新软件有限责任公司 A kind of application processing method, terminal and computer readable storage medium
CN109543370B (en) * 2017-09-22 2024-01-23 西安中兴新软件有限责任公司 Application processing method, terminal and computer readable storage medium
CN116016766A (en) * 2022-12-29 2023-04-25 天翼电信终端有限公司 Fingerprint verification management method based on container judgment

Also Published As

Publication number Publication date
CN104615927B (en) 2018-02-13
CN104615927A (en) 2015-05-13

Similar Documents

Publication Publication Date Title
WO2016106989A1 (en) Multi-system security authentication method, multi-system security authentication apparatus and terminal
KR102328725B1 (en) Method of using one device to unlock another device
US11012438B2 (en) Biometric device pairing
US10205711B2 (en) Multi-user strong authentication token
TWI543012B (en) Identity verification method for mobile communication device and apparatus thereof
US9769154B2 (en) Passcode operating system, passcode apparatus, and super-passcode generating method
EP3672146A1 (en) System and method for device registration and authentication
WO2016061899A1 (en) Fingerprint decryption method and device
WO2017020426A1 (en) Communication method, apparatus and system based on biological feature identification
WO2016127448A1 (en) System switching method, system switching apparatus and terminal
JP6399605B2 (en) Authentication apparatus, authentication method, and program
CN108664817A (en) Intelligent and safe memory
KR101052294B1 (en) Apparatus and method for contents security
WO2016050118A1 (en) Information processing method and information processing device
US20130198836A1 (en) Facial Recognition Streamlined Login
EP3304391B1 (en) Controlling access to resource functions at a control point of the resource via a user device
WO2017166359A1 (en) User domain access method, access device, and mobile terminal
WO2017193517A1 (en) Decryption method and system for terminal
WO2016165537A1 (en) Method for controlling intelligent terminal and apparatus for controlling intelligent terminal
KR101537564B1 (en) Biometrics used relay authorization system and its method
KR20170073843A (en) The system and method to authenticate online-user under Trusted Execution Environment
CN107818263B (en) Electronic document processing method and device, and electronic document encryption method and device
KR101969838B1 (en) Method and apparatus for authenication using dial virtual keypad
US20200125705A1 (en) User authentication based on an association of biometric information with a character-based password
US20240176854A1 (en) System and method for device-specific cryptographic key

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15874682

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205 DATED 05/12/2017)

122 Ep: pct application non-entry in european phase

Ref document number: 15874682

Country of ref document: EP

Kind code of ref document: A1