WO2017080397A1 - Register or login method and device, electronic equipment, and programmable equipment - Google Patents

Register or login method and device, electronic equipment, and programmable equipment Download PDF

Info

Publication number
WO2017080397A1
WO2017080397A1 PCT/CN2016/104431 CN2016104431W WO2017080397A1 WO 2017080397 A1 WO2017080397 A1 WO 2017080397A1 CN 2016104431 W CN2016104431 W CN 2016104431W WO 2017080397 A1 WO2017080397 A1 WO 2017080397A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
information
biometric information
programmable device
user information
Prior art date
Application number
PCT/CN2016/104431
Other languages
French (fr)
Chinese (zh)
Inventor
金峙廷
李求会
张治宇
孙鹏
Original Assignee
广州神马移动信息科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 广州神马移动信息科技有限公司 filed Critical 广州神马移动信息科技有限公司
Publication of WO2017080397A1 publication Critical patent/WO2017080397A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates

Definitions

  • the present invention relates to electronic information technology and, more particularly, to a method for registration or login, a device for registration or login, an electronic device, and a contactless powered programmable device.
  • the inventors of the present invention have recognized that the above registration or login method may cause some problems.
  • the electronic device is a mobile phone, a tablet computer or the like
  • the user manually inputs a user name and a password for each application
  • the keyboard size on the electronic device is small, the user operation is very cumbersome and troublesome.
  • a method for registration or login comprising: receiving user biometric information from a contactless powered programmable device, wherein the programmable device is capable of near field communication Device for verifying the user biometric information; receiving user information from the programmable device, wherein the user information is received in a near field communication manner; in the case where the user biometric information is verified, the User information is sent to applications that need to be registered or logged in to register or log in to the application.
  • the user information is encrypted user information
  • the step of sending the user information to an application that needs to be registered or logged in comprises: decrypting the encrypted user information; and decrypting the user information. Send to an application that needs to be registered or logged in to register or log in to the application.
  • the user information is encrypted by user biometric information
  • the step of decrypting the encrypted user information comprises: decrypting the encrypted user information by using the user biometric information.
  • the user information is user information encrypted by a key
  • the step of decrypting the encrypted user information comprises: decrypting the user information by using a key, wherein the key includes The agitation factor of change.
  • the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
  • the step of transmitting the user information to an application that needs to be registered or logged in to register or log in to the application includes: Verifying at least a portion of the user information by calculating a hash value of at least a portion of the user information; and transmitting the user information to the user biometric information verification and the user information verification An application that requires registration or login to register or log in to the application.
  • the received user biometric information is user biometric information encrypted by the public key of the electronic device
  • the step of verifying the biometric information of the user further includes: using a private key pair of the electronic device
  • the encrypted user biometric information is decrypted to obtain user biometric information.
  • the step of receiving user biometric information from the contactless powered programmable device further comprises: receiving a digital certificate from the programmable device, wherein the digital certificate comprises the programmable device a public key; obtaining a public key of the programmable device, and encrypting a public key of the electronic device using a public key of the programmable device; and transmitting a public key of the encrypted electronic device to the programmable device.
  • the step of verifying the user biometric information comprises: receiving digital signature information; and verifying the user biometric information by using the digital signature information.
  • the user biometric information includes fingerprint information of the user.
  • an apparatus for registration or login comprising: means for receiving user biometric information from a contactless powered programmable device, wherein the programmable device has a device for near field communication function; means for authenticating said user biometric information; means for receiving user information from the programmable device, wherein said user information is received in a near field communication manner; For transmitting the user information to an application that needs to be registered or logged in to register or log in to the application, in the case where the user biometric information is verified.
  • the user information is encrypted by user biometric information
  • the device for registering or logging further comprising means for decrypting the encrypted user information using the user biometric information.
  • the user biometric information is user biometric information encrypted by a public key of the electronic device
  • the device for registering or logging in further includes: a private key for using the electronic device A device that decrypts encrypted user biometric information to obtain user biometric information.
  • the device for registration or login further comprises: means for receiving digital signature information; and means for verifying the biometric information of the user by the digital signature information.
  • said means for registering or logging in further comprising: means for receiving a digital certificate from said programmable device, wherein said digital certificate comprises a public key of said programmable device; And a device for encrypting a public key of the electronic device using the public key of the programmable device; and means for transmitting the public key of the encrypted electronic device to the programmable device.
  • the user information is encrypted user information
  • the device for registering or logging further comprises: means for decrypting the user information by using a key, wherein the key comprises a changeable Stirring factor.
  • the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
  • the means for registering or logging in further comprises: means for verifying at least a portion of the user information by calculating a hash value of at least a portion of the user information.
  • the user biometric information includes fingerprint information of the user.
  • the means for registering or logging in further comprises: means for providing an option for the application for the user to select for registration or login.
  • an electronic device comprising a memory and a processor coupled to the processor, wherein the memory is for storing instructions for controlling the
  • the processor is operative to: receive user biometric information from a contactless powered programmable device, wherein the programmable device is a device having near field communication functionality; verifying the user biometric information; receiving User information from the programmable device, wherein the user information is received in a near field communication manner; in the case where the user biometric information is verified, the user information is sent to an application that needs to be registered or logged in, Register or log in to the application.
  • a non-contact power supply programmable device comprising: a storage unit configured to store user information; and a sensing unit configured to sense a user Information processing unit configured to authenticate the user by the sensed user biometric information to allow transmission of user information, wherein the user information is used for registration or login in an application on the electronic device; and communication And a unit configured to transmit the user information to the electronic device in a near field communication manner, wherein the programmable device is a device having a near field communication function.
  • the processing unit is further configured to encrypt the user information using user biometric information
  • the communication unit is configured to transmit the encrypted user information to the electronic device.
  • the processing unit is further configured to encrypt the user biometric information using a public key of the electronic device
  • the communication unit is further configured to transmit the encrypted user biometric information to the electronic device.
  • said storage unit is further configured to store digital signature information, wherein said digital signature information is for verifying said user biometric information, and said communication unit is further configured to transmit said digital signature information to said electronic device .
  • the storage unit stores a digital certificate of the programmable device, wherein the digital certificate includes a public key of the programmable device; the communication unit transmits the digital certificate to the electronic device and receives the public key of the electronic device from the electronic device Wherein the public key of the electronic device is encrypted using the public key of the programmable device; and the processing device decrypts the public key of the electronic device using the private key of the programmable device to obtain the public key of the electronic device.
  • the processing unit is further configured to encrypt the user information using a key, wherein the key comprises a variable agitation factor, and the communication unit is configured to transmit the encrypted user information.
  • the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
  • the storage unit is further configured to store user biometric information
  • the processing unit is further configured to authenticate the user by the stored user biometric information and the sensed user biometric information to allow the user information to be transmitted.
  • the user biometric information includes fingerprint information of the user.
  • the storage unit is configured to store a plurality of fingerprint information corresponding to different fingerprints, the plurality of fingerprint information respectively corresponding to the plurality of user information.
  • the inventors of the present invention have found that in the prior art, there has not been a technical solution for allowing the programmable device to transmit user information for login or registration by user biometric information of the near field communication device. With the present invention, it is possible to facilitate the user's login or registration operation while providing certain security. Therefore, the technical task to be achieved by the present invention or the technical problem to be solved is not thought of or expected by those skilled in the art, so the present invention is a new technical solution.
  • FIG. 1 shows a flow chart of a method for registration or login in accordance with an embodiment of the present invention
  • FIG. 2 is a block diagram of an electronic device in accordance with an embodiment of the present invention.
  • FIG. 3 shows a block diagram of a contactless powered programmable device in accordance with an embodiment of the present invention
  • FIG. 4 is a schematic diagram of an example in accordance with an embodiment of the present invention.
  • FIG. 1 shows a flow chart of a method for registration or login in accordance with an embodiment of the present invention.
  • This embodiment is a method for registration or login performed by an electronic device. As shown in FIG. 1, the method includes at least steps S1100 to S1400.
  • step S1100 user biometric information from the contactless powered programmable device is received.
  • the non-contact power supply programmable device is a self-contained power source that obtains the power required for operation and includes programmable logic by means of a non-contact (non-direct electrical connection) through the received external signal.
  • Communication devices for example, may include radio frequency tag RFID, near field communication NFC devices, and the like.
  • the programmable logic can be programmed once (eg, at the time of manufacture) or can be reprogrammed as needed.
  • the programmable device is a device having a near field communication function.
  • step S1200 the user biometric information is verified.
  • the programmable device can detect user biometric information.
  • the programmable device can transmit user biometric information to the electronic device.
  • the electronic device verifies the user biometric information.
  • the electronic device may pre-store user biometric information, or may obtain trusted user biometric information by means of digital signature or digital certificate.
  • the electronic device can perform verification by comparing the trusted user biometric information with the user biometric information from the programmable device. If the user biometric information from the programmable device is consistent with the trusted user biometric information, then by verification, the programmable device is allowed to transmit user information; if the user biometric information from the programmable device and the trusted user biometric information If they are inconsistent, they cannot pass the verification. Other processing may be performed, such as prompting the user to manually enter, or disabling the programmable device from transmitting user information.
  • the user biometric information may include, for example, iris information, body fluid information, and the like.
  • the user biometric information includes fingerprint information of the user.
  • a plurality of fingerprint information corresponding to different fingerprints are stored in the programmable device, the plurality of fingerprint information respectively corresponding to a plurality of user information. Since each user can have multiple fingerprints, using fingerprint information as user biometric information can bring more flexibility.
  • the fingerprint information is, for example, a fingerprint code obtained by sensing a fingerprint. When the user touches the programmable device with a finger, the programmable device can immediately detect the fingerprint information. This mode of operation is relatively simple and can improve the user experience.
  • step S1300 user information from the programmable device is received.
  • the user information is received in a near field communication manner.
  • User information may include registration information or login information.
  • the user information may include at least one of a user's name, gender, zip code, mailbox, username, password, and the like.
  • the user information can be obtained directly from the programmable device when it is necessary to input at least a portion of the user information. This at least to some extent eliminates the hassle of repeated user input.
  • the security can be increased to some extent.
  • User information can be stored in the programmable device during use. Alternatively, the user may send the user information to the manufacturer in advance, and store the user information in the programmable device at the time of the manufacturing process.
  • step S1400 in the case where the user biometric information is verified, the user information is transmitted to an application that needs to be registered or logged in to register or log in to the application.
  • the user information can be used to register an application that currently needs to be registered.
  • the user information can be used to log in to all applications that can log in on the electronic device.
  • an option for the application can be provided on the electronic device for the user to select for registration or login.
  • the user information may be encrypted for increased security. That is, the user information stored in the programmable device is encrypted user information.
  • the foregoing step of sending the user information to an application that needs to be registered or logged in specifically includes: adding the The decrypted user information is decrypted; the decrypted user information is sent to an application that needs to be registered or logged in to register or log in to the application.
  • the user information includes general registration information and login information.
  • the universal registration information includes, but is not limited to, at least one of a user's name, gender, zip code, and email address.
  • the login information may be a user name and password of the user, or may be other identity information, such as biometric information such as a fingerprint.
  • the implementation of storing the user information to the programmable device may be: searching for an application in the electronic device that needs to be registered or logged in; obtaining general registration information input by the user; and obtaining user input corresponding to each application found.
  • the login information of the user device acquires the user biometric information sent by the programmable device through the near field communication method, and verifies the acquired biometric information of the user. When the verification is passed, the acquired general registration information and the login information, that is, the user information are sent.
  • user information can be encrypted using user biometric information.
  • the electronic device decrypts the received encrypted user information using the user biometric information.
  • the electronic device may pre-store user biometric information or receive user biometric information from the programmable device.
  • the user biometric information sent by the programmable device can be encrypted and decrypted by using the public key and the private key to improve the delivery of the user biometric information.
  • Security Specifically, the programmable device encrypts the user biometric information using a public key of the electronic device, and decrypts the encrypted user biometric information on the electronic device using the private key of the electronic device to obtain user biometric information. .
  • the digital signature information may be received at the electronic device, and the user biometric information transmitted by the programmable device may be verified by the digital signature information.
  • the programmable device can also send a digital certificate to the electronic device to prove the legitimacy of the source of the received user biometric information.
  • the digital certificate contains the public key of the programmable device.
  • the electronic device encrypts the public key of the electronic device using the public key of the programmable device, and transmits the public key of the encrypted electronic device to the programmable device. In this way, the programmable device can The information is encrypted using the public key of the electronic device.
  • information regarding the legality of the digital signature has been stored in the electronic device, for example, the programmable device has been registered on the electronic device and the electronic device pre-recorded the public device of the programmable device key.
  • the digital certificate can be omitted.
  • the key for encrypting/decrypting the user information may include a variable agitation factor in addition to the user biometric information.
  • the electronic device can decrypt the user information using such a key.
  • the agitation factor includes at least one of time, geographic coordinates, device address, and temperature.
  • the same user information can generate different ciphertexts, thereby preventing fraudulent attacks, such as replay attacks. Since the programmable device and the electronic device can agree in advance on the manner of acquiring the agitation factor without transmitting the agitation factor during communication, the risk of being intercepted by the fraudster can be reduced, thereby increasing safety.
  • At least a portion of the user information may be verified by calculating a hash value of at least a portion of the user information. At least a portion of the user information may be a portion that is considered important or critical.
  • the hash value of at least a portion of the user information may be stored in advance in the electronic device for comparison and verification with the calculated hash value.
  • the hash value may be stored in advance in a digital certificate issued by a trusted entity.
  • the digital certificate is stored in the programmable device, and the programmable device transmits a digital certificate to the electronic device for verifying the integrity of the user information. In this way, security can be further improved.
  • an apparatus for registration or login can also be provided.
  • the apparatus includes means that can be used to perform the method illustrated in FIG.
  • each unit can be implemented by an instruction configuration processor.
  • instructions can be stored in the ROM, and when the device is booted, instructions are read from the ROM into the programmable device to implement the various units.
  • individual units can be cured into a dedicated device such as an ASIC. Individual units Divided into separate units, or they can be combined to achieve.
  • the unit may be implemented by one of the various implementations described above, or may be implemented by a combination of two or more of the various implementations described above.
  • FIG. 2 is a block diagram showing an example of a configuration of an electronic device 2000 that can be used to implement an embodiment of the present invention.
  • the electronic device 2000 can be, for example, a mobile phone, a tablet, or the like.
  • the electronic device 2000 can include a processor 2010, a memory 2020, an interface device 2030, a communication device 2040, a display device 2050, an input device 2060, a speaker 2070, a microphone 2080, and the like.
  • the components of the processor 2010, the memory 2020, the interface device 2030, the communication device 2040, the display device 2050, the input device 2060, the speaker 2070, and the microphone 2080 are electrically connected directly or indirectly to each other to implement data transmission or interaction.
  • the components can be electrically connected to one another via one or more communication buses or signal lines.
  • the memory may be, but not limited to, Random Access Memory (RAM), Read Only Memory (ROM), Programmable Read-Only Memory (PROM), erasable only Erasable Programmable Read-Only Memory (EPROM), Electric Erasable Programmable Read-Only Memory (EEPROM), and the like.
  • RAM Random Access Memory
  • ROM Read Only Memory
  • PROM Programmable Read-Only Memory
  • EPROM erasable only Erasable Programmable Read-Only Memory
  • EEPROM Electric Erasable Programmable Read-Only Memory
  • the processor 2010 can be an integrated circuit chip with signal processing capabilities.
  • the processor 2010 may be a general-purpose processor, including a central processing unit (CPU), a network processor (NP processor, etc.), or a digital signal processor (DSP) or an application specific integrated circuit ( ASIC), off-the-shelf programmable gate array (FPGA) or other programmable logic device, discrete gate or transistor logic device, discrete hardware component.
  • CPU central processing unit
  • NP processor network processor
  • DSP digital signal processor
  • ASIC application specific integrated circuit
  • FPGA off-the-shelf programmable gate array
  • the general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
  • the interface device 2030 described above includes, for example, a USB interface, a headphone jack, and the like.
  • interface device 2030, processor 2010 can be implemented in a single chip. In other examples, they can be implemented by separate chips.
  • the communication device 2040 can, for example, communicate with a non-contact powered programmable device, for example, a device capable of supporting near field communication.
  • Communication device 2040 is also capable of wired or wireless communication.
  • the display device 2050 may be a liquid crystal display or a touch display.
  • a touch display it can be a capacitive touch screen or a resistive touch screen that supports single-point and multi-touch operations.
  • Supporting single-point and multi-touch operations means that the touch display can sense a touch operation simultaneously generated from one or more positions on the touch display, and the touch operation is transferred to the processor 2010. Perform calculations and processing.
  • Input device 2060 can include, for example, a touch screen, a keyboard, and the like. The user can input/output voice information through the speaker 2070 and the microphone 2080.
  • the memory 2020 is for storing instructions for controlling the processor 2010 to operate to perform a registration or login method in an embodiment of the present application. It will be understood by those skilled in the art that although a plurality of devices are illustrated in FIG. 2, the present invention may relate only to some of the devices, such as processor 2010 and storage device 2020, and the like. A technician can design instructions in accordance with the disclosed aspects of the present invention. How the instructions control the processor for operation is well known in the art and will not be described in detail herein.
  • FIG. 3 shows a block diagram of a contactless powered programmable device 3000 in accordance with an embodiment of the present invention.
  • programmable device 3000 can be in the form of a card. This form of equipment is convenient for users to carry.
  • the programmable device is a device having a near field communication function.
  • the programmable device 3000 includes a storage unit 3010, a sensing unit 3020, a processing unit 3030, and a communication unit 3040.
  • the storage unit 3010 is configured to store user information.
  • the sensing unit 3020 is configured to sense user biometric information.
  • Processing unit 3030 is configured to authenticate the user via the sensed user biometric information to allow for the transmission of user information.
  • the user information is used to register or log in in an application on the electronic device.
  • the communication unit 3040 is configured to transmit the user information to the electronic device in a near field communication manner.
  • the processing unit 3030 is further configured to encrypt the user information using user biometric information.
  • the communication unit 3040 is configured to transmit the encrypted user information to the electronic device.
  • the processing unit 3030 can encrypt the user biometric information using the public key of the electronic device.
  • the electronic device can then decrypt the user biometric information using its private key.
  • the public keys of the electronic device and the programmable device can be communicated in a variety of ways.
  • the legitimacy of the programmable device can be verified by digital signatures and/or the security of the communication can be improved and the public key can be passed.
  • the storage unit 3010 stores digital signature information.
  • the digital signature information is used to verify the user biometric information.
  • the communication unit 3010 transmits the digital signature information to the electronic device for the electronic device to verify the legitimacy or credibility of the programmable device.
  • digital certificates can be used to determine legitimacy and/or improve the security of communications.
  • the storage unit 3010 stores a digital certificate of a programmable device, wherein the digital certificate contains a public key of the programmable device.
  • the communication unit 3040 transmits the digital certificate to the electronic device and receives the public key of the electronic device from the electronic device, wherein the public key of the electronic device is encrypted using the public key of the programmable device.
  • the processing device 3030 decrypts the public key of the electronic device using the private key of the programmable device to obtain the public key of the electronic device.
  • the key used by the processing unit 3030 may include a variable agitation factor in addition to the user biometric information described above.
  • the agitation factor includes at least one of time, geographic coordinates, device address, and temperature.
  • the user biometric information is verified in the programmable device 3000.
  • the storage unit 3030 stores user biometric information in advance and the sensing unit 3020 senses user biometric information.
  • the processing unit 3030 verifies the user by the stored user biometric information and the sensed user biometric information to determine whether the communication unit 3040 is allowed to transmit the user information.
  • the communication unit 3040 may also directly send the user biometric information sensed by the sensing unit 3020 to the electronic device for verification and receive an indication from the electronic device to determine whether the communication unit 3040 is allowed to send the user information.
  • the user biometric information includes fingerprint information of the user.
  • the storage unit 3030 may store a plurality of fingerprint information corresponding to different fingerprints, where the plurality of fingerprint information respectively correspond to multiple uses Household information. Different accounts in different applications and/or applications in the electronic device can be registered/registered through the plurality of user information.
  • the various units in programmable device 3000 can be implemented in a variety of ways. As mentioned above, the unit can be implemented by means of software, hardware and/or a combination of software and hardware.
  • FIG. 4 is a schematic diagram of an example in accordance with an embodiment of the present invention.
  • user 5000 wishes to log into one or more applications on electronic device 4000.
  • the electronic device 4000 may include a device 3000 for registration or login, or the electronic device 4000 is the electronic device 2000 shown in FIG. 2.
  • the user 5000 holds a non-contact powered programmable device 3000 in the form of a card.
  • the electronic device 4000 transmits a signal to the programmable device 3000 through the communication device 2040 supporting the near field communication function, requesting the provision of user information.
  • the programmable device 3000 senses the fingerprint information (fingerprint code) of the user 5000.
  • the programmable device 3000 verifies the sensed fingerprint information by using the fingerprint information stored in advance, thereby verifying whether the user 5000 is a registered legitimate user.
  • the programmable device 3000 can directly send the sensed fingerprint information to the electronic device 4000 for verification.
  • the programmable device 3000 can store a plurality of fingerprint information and a plurality of user information in one-to-one correspondence with the plurality of fingerprint information.
  • the electronic device 4000 can pass its public key to the programmable device 3000.
  • the programmable device 3000 transmits the key used for communication to the electronic device 4000 using the public key.
  • the key may for example comprise the fingerprint information.
  • its public key can also be passed to the electronic device 4000 by the programmable device 3000.
  • the electronic device 4000 transmits the key used for communication to the programmable device 5000 using the public key.
  • the electronic device 4000 and the programmable device 3000 can set any key.
  • the key may also include an agitation factor, such as at least one of time, geographic coordinates, device address, temperature, to increase security.
  • the programmable device 3000 can also transmit the digital signature regarding the fingerprint information to the electronic device 4000, for example, using the key.
  • the electronic device 4000 can use the digital signature to verify the fingerprint information. certificate.
  • the programmable device 3000 encrypts the user information using the key and transmits the encrypted user information to the electronic device 4000.
  • the electronic device 4000 decrypts the encrypted user information using the key to obtain user information.
  • the electronic device 4000 can verify the integrity of the user information by calculating a hash value of the user information.
  • the hash value of the user information of the account corresponding to each fingerprint may be stored in advance, or the hash value required for the verification may be obtained by a digital certificate regarding the user information.
  • the electronic device 4000 registers or logs in the application using the user information. For example, an option can be provided on the electronic device 4000 for the user to select one or more applications for registration/login.
  • the apparatus and method of the present invention can be embodied by a program product.
  • the program product can include a readable storage medium having processor-executable non-volatile program code with readable program instructions for causing a processor to implement various aspects of the present invention.
  • the readable storage medium described above can be a tangible device that can hold and store instructions for use by the instruction execution device.
  • the readable storage medium can be, for example, but not limited to, an electrical storage device, a magnetic storage device, an optical storage device, an electromagnetic storage device, a semiconductor storage device, or any suitable combination of the foregoing.
  • readable storage media include: portable disks, hard disks, random access memory (RAM), read only memory (ROM), erasable programmable read only memory (EPROM or flash memory) ), static random access memory (SRAM), portable compact disk read only memory (CD-ROM), digital versatile disk (DVD), memory stick, floppy disk, mechanical encoding device, for example, punch card with instructions stored thereon Or a raised structure within the recess, and any suitable combination of the above.
  • RAM random access memory
  • ROM read only memory
  • EPROM or flash memory erasable programmable read only memory
  • SRAM static random access memory
  • CD-ROM compact disk read only memory
  • DVD digital versatile disk
  • memory stick floppy disk
  • mechanical encoding device for example, punch card with instructions stored thereon Or a raised structure within the recess, and any suitable combination of the above.
  • a readable storage medium as used herein is not to be interpreted as a transient signal itself, such as a radio wave or other freely propagating electromagnetic wave, an electromagnetic wave propagating through a waveguide or other transmission medium (eg, a light pulse through a fiber optic cable), or transmitted through a wire Electrical signal.
  • the readable program instructions described herein can be downloaded to a respective electronic device from a readable storage medium or downloaded to an external electronic network via a network, such as the Internet, a local area network, a wide area network, and/or a wireless network.
  • a network such as the Internet, a local area network, a wide area network, and/or a wireless network.
  • Device or external storage device may include copper transmission cables, fiber optic transmissions, wireless transmissions, routers, firewalls, switches, gateway computers, and/or edge servers.
  • a network adapter card or network interface in each electronic device receives readable program instructions from the network and forwards the readable program instructions for storage in a readable storage medium in each computing/processing device.
  • Program instructions for performing the operations of the present invention can be assembly instructions, instruction set architecture (ISA) instructions, machine instructions, machine related instructions, microcode, firmware instructions, state setting data, or any of a number of programming languages.
  • the source code or object code is written in combination, including an object oriented programming language such as Smalltalk, C++, etc., as well as a conventional procedural programming language such as a "C" language or a similar programming language.
  • the readable program instructions may be executed entirely on the user's electronic device, partly on the user's electronic device, as a stand-alone software package, partly on the user's electronic device, partly on a remote computer, or entirely on a remote computer or Executed on the server.
  • the remote computer can be connected to the consumer electronic device via any kind of network, including a local area network (LAN) or wide area network (WAN), or can be connected to an external computer (eg, using an Internet service provider) Internet connection).
  • the electronic circuitry can be customized by utilizing state information of the readable program instructions, such as a programmable logic circuit, a field programmable gate array (FPGA), or a programmable logic array (PLA).
  • the computer readable program instructions to implement various aspects of the present invention.
  • the readable program instructions can be provided to a processor of an electronic device to produce a machine that, when executed by a processor of the electronic device, produces one or more of the implementation flowcharts and/or block diagrams The device/function device specified in the box.
  • the readable program instructions can also be stored in a readable storage medium that causes the electronic device to operate in a particular manner such that the readable medium storing the instructions includes an article of manufacture including an implementation flow diagram and/or block diagram Instructions for various aspects of the functions/actions specified in one or more of the boxes.
  • the readable program instructions can also be loaded onto the electronic device such that an execution is performed on the electronic device.
  • the series of operational steps are directed to the process of the instruction implementation, such that the instructions executed on the electronic device implement the functions/acts recited in the one or more blocks of the flowchart and/or block diagram.
  • each block in the flowchart or block diagram can represent a module, a program segment, or a portion of an instruction that includes one or more components for implementing the specified logical functions.
  • Executable instructions In some alternative implementations, the functions noted in the blocks may also occur in a different order than those illustrated in the drawings. For example, two consecutive blocks may be executed substantially in parallel, and they may sometimes be executed in the reverse order, depending upon the functionality involved.
  • each block of the block diagrams and/or flowcharts, and combinations of blocks in the block diagrams and/or flowcharts can be implemented in a dedicated hardware-based system that performs the specified function or function. Or can be implemented with a combination of dedicated hardware and instructions. It is well known to those skilled in the art that implementation by hardware, implementation by software, and implementation by a combination of software and hardware are equivalent.

Abstract

Provided are a register or login method and device, electronic equipment (2000, 4000), and programmable equipment (3000). The register or login method comprises: receiving user bioinformation from programmable equipment in non-contact power supply (S1100), wherein the programmable equipment is equipment having a near field communication function; verifying the user bioinformation (S1200); receiving user information from the programmable equipment (S1300), wherein the user information is received in a near field communication way; in the case where the user bioinformation passes verification, sending the user information to an application program required to be registered or logged in, thus registering or logging in the application program (S1400). By means of the technical scheme, convenience is provided for register or login operation of a user in the case of providing certain security.

Description

注册或登录的方法、装置、电子设备及可编程设备Method, device, electronic device and programmable device for registration or login
本申请要求于2015年11月11日提交中国专利局、申请号为201510770923.X、发明名称为“注册或登录的方法、装置、电子设备及可编程设备”的中国专利申请的优先权,其全部内容通过引用结合在本申请中。This application claims priority to Chinese Patent Application No. 201510770923.X, filed on November 11, 2015, entitled "Methods, Devices, Electronic Devices and Programmable Devices for Registration or Registration", The entire contents are incorporated herein by reference.
技术领域Technical field
本发明涉及电子信息技术,更具体地,涉及一种用于注册或登录的方法、用于注册或登录的装置、电子设备和非接触式供电的可编程设备。The present invention relates to electronic information technology and, more particularly, to a method for registration or login, a device for registration or login, an electronic device, and a contactless powered programmable device.
发明背景Background of the invention
随着电子信息技术的发展,尤其是移动互联网技术的崛起,在诸如手机的电子设备中安装的应用程序的数量增长迅速。在大量应用程序为用户带来丰富服务内容的同时,它们也为用户带来了新的烦恼。一般来说,互联网应用程序在给用户提供服务时首先需要用户进行注册和登陆。不同的应用程序具有各自的账户注册和登陆系统。此外,例如,当电子设备中的应用程序的登陆信息超时而失效之后,用户需要重新登录,例如,需要重新输入用户信息,诸如每个应用程序的用户名、密码、验证码等。在这些注册、登录、重新登录的过程中,用户输入的某些信息是重复的。With the development of electronic information technology, especially the rise of mobile Internet technology, the number of applications installed in electronic devices such as mobile phones has grown rapidly. While a large number of applications bring rich service content to users, they also bring new troubles to users. In general, Internet applications require users to register and log in first when providing services to users. Different applications have their own account registration and login systems. Further, for example, after the login information of the application in the electronic device expires and fails, the user needs to log in again, for example, it is necessary to re-enter user information such as a username, a password, a verification code, and the like of each application. During these registrations, logins, and re-logins, some of the information entered by the user is duplicated.
本发明的发明人认识到,上述的注册或登录方式会产生一些问题。The inventors of the present invention have recognized that the above registration or login method may cause some problems.
例如,在用户需要重复输入相同的用户信息的情况下,这可能给用户带来不良好的操作体验。For example, in the case where the user needs to repeatedly input the same user information, this may give the user an unsatisfactory operating experience.
例如,为了安全,用户常常需要为不同的应用程序设计不同的用户名和密码。用户非常容易忘记或者混淆这些用户名和密码。For example, for security, users often need to design different usernames and passwords for different applications. It is very easy for users to forget or confuse these usernames and passwords.
例如,在所述电子设备是手机、平板电脑等的情况下,在用户手动为每个应用程序输入用户名和密码时,由于电子设备上的键盘尺寸狭小,因此,用户操作非常繁琐和麻烦。 For example, in the case where the electronic device is a mobile phone, a tablet computer or the like, when the user manually inputs a user name and a password for each application, since the keyboard size on the electronic device is small, the user operation is very cumbersome and troublesome.
例如,不同的应用程序出于自身安全保护或者竞争关系防御的考虑,往往不会同意使用第三方应用程序账户信息(用户信息)进行登陆。因此,用户需要针对不同应用程序,分别输入用户信息,以进行登录。这使得用户操作繁琐。For example, different applications often do not agree to use third-party application account information (user information) for login due to their own security protection or competitive relationship defense considerations. Therefore, the user needs to input user information for different applications to log in. This makes the user's operation cumbersome.
例如,如果用户信息发生泄露,会导致严重的安全问题。For example, if a user's information leaks, it can cause serious security problems.
发明内容Summary of the invention
本发明的一个目的是提供一种用于注册或登录的新技术方案。It is an object of the present invention to provide a new technical solution for registration or login.
根据本发明的第一方面,提供了一种用于注册或登录的方法,包括:接收来自非接触式供电的可编程设备的用户生物信息,其中,所述可编程设备是具有近场通信功能的设备;对所述用户生物信息进行验证;接收来自可编程设备的用户信息,其中,所述用户信息是以近场通信的方式被接收的;在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。According to a first aspect of the present invention, a method for registration or login is provided, comprising: receiving user biometric information from a contactless powered programmable device, wherein the programmable device is capable of near field communication Device for verifying the user biometric information; receiving user information from the programmable device, wherein the user information is received in a near field communication manner; in the case where the user biometric information is verified, the User information is sent to applications that need to be registered or logged in to register or log in to the application.
优选的,所述用户信息为加密的用户信息,所述将所述用户信息发送给需要注册或登录的应用程序的步骤,包括:对所述加密的用户信息进行解密;将解密后的用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。Preferably, the user information is encrypted user information, and the step of sending the user information to an application that needs to be registered or logged in comprises: decrypting the encrypted user information; and decrypting the user information. Send to an application that needs to be registered or logged in to register or log in to the application.
优选地,所述用户信息通过用户生物信息进行加密,所述对所述加密的用户信息进行解密的步骤包括:使用所述用户生物信息对所述加密的用户信息进行解密。Preferably, the user information is encrypted by user biometric information, and the step of decrypting the encrypted user information comprises: decrypting the encrypted user information by using the user biometric information.
优选地,所述用户信息为经过密钥加密的用户信息,所述对所述加密的用户信息进行解密的步骤包括:使用密钥对所述用户信息进行解密,其中,所述密钥包含可变化的搅动因子。Preferably, the user information is user information encrypted by a key, and the step of decrypting the encrypted user information comprises: decrypting the user information by using a key, wherein the key includes The agitation factor of change.
优选地,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。Preferably, the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
优选地,所述在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序的步骤,包括: 通过计算所述用户信息的至少一部分的散列值对所述用户信息的至少一部分进行验证;在所述用户生物信息验证和所述用户信息验证均通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。Preferably, in the case that the user biometric information is verified, the step of transmitting the user information to an application that needs to be registered or logged in to register or log in to the application includes: Verifying at least a portion of the user information by calculating a hash value of at least a portion of the user information; and transmitting the user information to the user biometric information verification and the user information verification An application that requires registration or login to register or log in to the application.
优选地,接收到的所述用户生物信息为通过电子设备的公钥进行加密后的用户生物信息,所述对所述用户生物信息进行验证的步骤之前,还包括:使用电子设备的私钥对加密的所述用户生物信息进行解密,以获得用户生物信息。Preferably, the received user biometric information is user biometric information encrypted by the public key of the electronic device, and the step of verifying the biometric information of the user further includes: using a private key pair of the electronic device The encrypted user biometric information is decrypted to obtain user biometric information.
优选地,所述接收来自非接触式供电的可编程设备的用户生物信息的步骤之前,还包括:接收来自所述可编程设备的数字证书,其中,所述数字证书包括所述可编程设备的公钥;获取所述可编程设备的公钥,并使用所述可编程设备的公钥对所述电子设备的公钥进行加密;向所述可编程设备发送经加密的电子设备的公钥。Preferably, the step of receiving user biometric information from the contactless powered programmable device further comprises: receiving a digital certificate from the programmable device, wherein the digital certificate comprises the programmable device a public key; obtaining a public key of the programmable device, and encrypting a public key of the electronic device using a public key of the programmable device; and transmitting a public key of the encrypted electronic device to the programmable device.
优选地,所述对所述用户生物信息进行验证的步骤,包括:接收数字签名信息;通过所述数字签名信息,验证所述用户生物信息。Preferably, the step of verifying the user biometric information comprises: receiving digital signature information; and verifying the user biometric information by using the digital signature information.
优选地,所述用户生物信息包括用户的指纹信息。Preferably, the user biometric information includes fingerprint information of the user.
根据本发明的第二方面,提供了一种用于注册或登录的设备,包括:用于接收来自非接触式供电的可编程设备的用户生物信息的装置,其中,所述可编程设备是具有近场通信功能的设备;用于对所述用户生物信息进行验证的装置;用于接收来自可编程设备的用户信息的装置,其中,所述用户信息是以近场通信的方式被接收的;以及用于在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序的装置。According to a second aspect of the present invention, there is provided an apparatus for registration or login comprising: means for receiving user biometric information from a contactless powered programmable device, wherein the programmable device has a device for near field communication function; means for authenticating said user biometric information; means for receiving user information from the programmable device, wherein said user information is received in a near field communication manner; For transmitting the user information to an application that needs to be registered or logged in to register or log in to the application, in the case where the user biometric information is verified.
优选地,所述用户信息通过用户生物信息进行加密,所述用于注册或登录的设备还包括用于使用所述用户生物信息对所述加密的用户信息进行解密的装置。Preferably, the user information is encrypted by user biometric information, the device for registering or logging further comprising means for decrypting the encrypted user information using the user biometric information.
优选地,所述用户生物信息为通过电子设备的公钥进行加密后的用户生物信息,所述用于注册或登录的设备还包括:用于使用电子设备的私钥 对经加密的用户生物信息进行解密以获得用户生物信息的装置。Preferably, the user biometric information is user biometric information encrypted by a public key of the electronic device, and the device for registering or logging in further includes: a private key for using the electronic device A device that decrypts encrypted user biometric information to obtain user biometric information.
优选地,所述用于注册或登录的设备还包括:用于接收数字签名信息的装置;以及用于通过所述数字签名信息验证所述用户生物信息的装置。Preferably, the device for registration or login further comprises: means for receiving digital signature information; and means for verifying the biometric information of the user by the digital signature information.
优选地,所述用于注册或登录的设备还包括:用于接收来自所述可编程设备的数字证书的装置,其中,所述数字证书包括所述可编程设备的公钥;用于获取所述可编程设备的公钥,并使用所述可编程设备的公钥对电子设备的公钥进行加密的装置;以及用于向所述可编程设备发送经加密的电子设备的公钥的装置。Advantageously, said means for registering or logging in further comprising: means for receiving a digital certificate from said programmable device, wherein said digital certificate comprises a public key of said programmable device; And a device for encrypting a public key of the electronic device using the public key of the programmable device; and means for transmitting the public key of the encrypted electronic device to the programmable device.
优选地,所述用户信息为经过加密的用户信息,所述用于注册或登录的设备还包括:用于使用密钥对所述用户信息进行解密的装置,其中,所述密钥包含可变化的搅动因子。Preferably, the user information is encrypted user information, and the device for registering or logging further comprises: means for decrypting the user information by using a key, wherein the key comprises a changeable Stirring factor.
优选地,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。Preferably, the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
优选地,所述用于注册或登录的设备还包括:用于通过计算所述用户信息的至少一部分的散列值对所述用户信息的至少一部分进行验证的装置。Advantageously, the means for registering or logging in further comprises: means for verifying at least a portion of the user information by calculating a hash value of at least a portion of the user information.
优选地,所述用户生物信息包括用户的指纹信息。Preferably, the user biometric information includes fingerprint information of the user.
优选地,所述用于注册或登录的设备还包括:用于提供应用程序的选项供用户选择以进行注册或登录的装置。Preferably, the means for registering or logging in further comprises: means for providing an option for the application for the user to select for registration or login.
根据本发明的第三方面,提供了一种电子设备,包括存储器和处理器,所述存储器耦接到所述处理器,其中,所述存储器用于存储指令,所述指令用于控制所述处理器进行操作以执行以下操作:接收来自非接触式供电的可编程设备的用户生物信息,其中,所述可编程设备是具有近场通信功能的设备;对所述用户生物信息进行验证;接收来自可编程设备的用户信息,其中,所述用户信息是以近场通信的方式被接收的;在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。According to a third aspect of the present invention, there is provided an electronic device comprising a memory and a processor coupled to the processor, wherein the memory is for storing instructions for controlling the The processor is operative to: receive user biometric information from a contactless powered programmable device, wherein the programmable device is a device having near field communication functionality; verifying the user biometric information; receiving User information from the programmable device, wherein the user information is received in a near field communication manner; in the case where the user biometric information is verified, the user information is sent to an application that needs to be registered or logged in, Register or log in to the application.
根据本发明的第四方面,提供了一种非接触式供电的可编程设备,包括:存储单元,被配置成存储用户信息;感测单元,被配置成感测用户生 物信息;处理单元,被配置成通过所感测的用户生物信息对用户进行验证,以允许发送用户信息,其中,所述用户信息用于在电子设备上的应用程序中进行注册或登录;以及通信单元,被配置成以近场通信的方式向电子设备发送所述用户信息,其中,所述可编程设备是具有近场通信功能的设备。According to a fourth aspect of the present invention, a non-contact power supply programmable device is provided, comprising: a storage unit configured to store user information; and a sensing unit configured to sense a user Information processing unit configured to authenticate the user by the sensed user biometric information to allow transmission of user information, wherein the user information is used for registration or login in an application on the electronic device; and communication And a unit configured to transmit the user information to the electronic device in a near field communication manner, wherein the programmable device is a device having a near field communication function.
优选地,所述处理单元还被配置成使用用户生物信息对所述用户信息进行加密,以及所述通信单元被配置成向电子设备发送经加密的用户信息。Advantageously, the processing unit is further configured to encrypt the user information using user biometric information, and the communication unit is configured to transmit the encrypted user information to the electronic device.
优选地,所述处理单元还被配置成使用电子设备的公钥加密所述用户生物信息,以及所述通信单元还被配置成向电子设备发送经加密的用户生物信息。Advantageously, the processing unit is further configured to encrypt the user biometric information using a public key of the electronic device, and the communication unit is further configured to transmit the encrypted user biometric information to the electronic device.
优选地,所述存储单元还被配置成存储数字签名信息,其中,所述数字签名信息用于验证所述用户生物信息,以及所述通信单元还被配置成向电子设备发送所述数字签名信息。Advantageously, said storage unit is further configured to store digital signature information, wherein said digital signature information is for verifying said user biometric information, and said communication unit is further configured to transmit said digital signature information to said electronic device .
优选地,所述存储单元存储可编程设备的数字证书,其中,该数字证书包含可编程设备的公钥;所述通信单元向电子设备发送所述数字证书并从电子设备接收电子设备的公钥,其中,电子设备的公钥使用可编程设备的公钥进行加密;以及所述处理设备使用可编程设备的私钥对电子设备的公钥进行解密,以获得电子设备的公钥。Preferably, the storage unit stores a digital certificate of the programmable device, wherein the digital certificate includes a public key of the programmable device; the communication unit transmits the digital certificate to the electronic device and receives the public key of the electronic device from the electronic device Wherein the public key of the electronic device is encrypted using the public key of the programmable device; and the processing device decrypts the public key of the electronic device using the private key of the programmable device to obtain the public key of the electronic device.
优选地,所述处理单元还被配置成使用密钥对所述用户信息进行加密,其中,所述密钥包含可变化的搅动因子,以及所述通信单元被配置成发送经加密的用户信息。Advantageously, the processing unit is further configured to encrypt the user information using a key, wherein the key comprises a variable agitation factor, and the communication unit is configured to transmit the encrypted user information.
优选地,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。Preferably, the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
优选地,所述存储单元还被配置成存储用户生物信息,以及所述处理单元还被配置成通过所存储的用户生物信息和所感测的用户生物信息对用户进行验证,以允许发送用户信息。Preferably, the storage unit is further configured to store user biometric information, and the processing unit is further configured to authenticate the user by the stored user biometric information and the sensed user biometric information to allow the user information to be transmitted.
优选地,所述用户生物信息包括用户的指纹信息。Preferably, the user biometric information includes fingerprint information of the user.
优选地,所述存储单元被配置成存储对应于不同指纹的多个指纹信息,所述多个指纹信息分别对应于多个用户信息。 Preferably, the storage unit is configured to store a plurality of fingerprint information corresponding to different fingerprints, the plurality of fingerprint information respectively corresponding to the plurality of user information.
本发明的发明人发现,在现有技术中,尚未有通过近场通信设备的用户生物信息来允许所述可编程设备发送用户信息进行登录或注册的技术方案。通过本发明,可以在提供一定安全性的情况下方便用户的登录或注册操作。因此,本发明所要实现的技术任务或者所要解决的技术问题是本领域技术人员从未想到的或者没有预期到的,故本发明是一种新的技术方案。The inventors of the present invention have found that in the prior art, there has not been a technical solution for allowing the programmable device to transmit user information for login or registration by user biometric information of the near field communication device. With the present invention, it is possible to facilitate the user's login or registration operation while providing certain security. Therefore, the technical task to be achieved by the present invention or the technical problem to be solved is not thought of or expected by those skilled in the art, so the present invention is a new technical solution.
另外,本领域技术人员应当理解,尽管现有技术中存在许多问题,但是,本发明的每个实施例或权利要求的技术方案可以仅在一个或几个方面进行改进,而不必同时解决现有技术中或者背景技术中列出的全部技术问题。本领域技术人员应当理解,对于一个权利要求中没有提到的内容不应当作为对于该权利要求的限制。In addition, it should be understood by those skilled in the art that although there are many problems in the prior art, the technical solutions of each embodiment or the claims of the present invention may be improved in only one or several aspects without simultaneously solving the existing problems. All technical issues listed in the technology or in the background. It should be understood by those skilled in the art that what is not mentioned in a claim should not be construed as a limitation.
通过以下参照附图对本发明的示例性实施例的详细描述,本发明的其它特征及其优点将会变得清楚。Other features and advantages of the present invention will become apparent from the Detailed Description of the <RTIgt;
附图简要说明BRIEF DESCRIPTION OF THE DRAWINGS
被结合在说明书中并构成说明书的一部分的附图示出了本发明的实施例,并且连同其说明一起用于解释本发明的原理。The accompanying drawings, which are incorporated in FIG
图1示出了根据本发明的实施例的用于注册或登录的方法的流程图;FIG. 1 shows a flow chart of a method for registration or login in accordance with an embodiment of the present invention;
图2根据本发明的实施例的电子设备的框图;2 is a block diagram of an electronic device in accordance with an embodiment of the present invention;
图3示出了根据本发明的实施例的非接触式供电的可编程设备的框图;3 shows a block diagram of a contactless powered programmable device in accordance with an embodiment of the present invention;
图4是根据本发明的一个实施例的例子的示意图。4 is a schematic diagram of an example in accordance with an embodiment of the present invention.
实施本发明的方式Mode for carrying out the invention
现在将参照附图来详细描述本发明的各种示例性实施例。应注意到:除非另外具体说明,否则在这些实施例中阐述的部件和步骤的相对布置、数字表达式和数值不限制本发明的范围。Various exemplary embodiments of the present invention will now be described in detail with reference to the drawings. It should be noted that the relative arrangement of the components and steps, numerical expressions and numerical values set forth in the embodiments are not intended to limit the scope of the invention unless otherwise specified.
以下对至少一个示例性实施例的描述实际上仅仅是说明性的,决不作为对本发明及其应用或使用的任何限制。 The following description of the at least one exemplary embodiment is merely illustrative and is in no way
对于相关领域普通技术人员已知的技术、方法和设备可能不作详细讨论,但在适当情况下,所述技术、方法和设备应当被视为说明书的一部分。Techniques, methods and apparatus known to those of ordinary skill in the relevant art may not be discussed in detail, but the techniques, methods and apparatus should be considered as part of the specification, where appropriate.
在这里示出和讨论的所有例子中,任何具体值应被解释为仅仅是示例性的,而不是作为限制。因此,示例性实施例的其它例子可以具有不同的值。In all of the examples shown and discussed herein, any specific values are to be construed as illustrative only and not as a limitation. Thus, other examples of the exemplary embodiments may have different values.
应注意到:相似的标号和字母在下面的附图中表示类似项,因此,一旦某一项在一个附图中被定义,则在随后的附图中不需要对其进行进一步讨论。It should be noted that similar reference numerals and letters indicate similar items in the following figures, and therefore, once an item is defined in one figure, it is not required to be further discussed in the subsequent figures.
<实施例1><Example 1>
图1示出了根据本发明的实施例的用于注册或登录的方法的流程图。本实施例为电子设备所执行的用于注册或登录的方法。如图1所示,该方法至少包括步骤S1100至步骤S1400。FIG. 1 shows a flow chart of a method for registration or login in accordance with an embodiment of the present invention. This embodiment is a method for registration or login performed by an electronic device. As shown in FIG. 1, the method includes at least steps S1100 to S1400.
在步骤S1100,接收来自非接触式供电的可编程设备的用户生物信息。At step S1100, user biometric information from the contactless powered programmable device is received.
其中,非接触式供电的可编程设备是一种自身不携带电源,通过所接收的外界信号,以非接触式(非直接电连接)的方式,获得操作所需的电力并且包括可编程逻辑的通信设备,例如可以包括射频标签RFID、近场通信NFC设备等。所述可编程逻辑可以一次性地被编程(例如,在制造时),或者可以在需要时被重新编程。例如,所述可编程设备是具有近场通信功能的设备。Wherein, the non-contact power supply programmable device is a self-contained power source that obtains the power required for operation and includes programmable logic by means of a non-contact (non-direct electrical connection) through the received external signal. Communication devices, for example, may include radio frequency tag RFID, near field communication NFC devices, and the like. The programmable logic can be programmed once (eg, at the time of manufacture) or can be reprogrammed as needed. For example, the programmable device is a device having a near field communication function.
在步骤S1200,对所述用户生物信息进行验证。In step S1200, the user biometric information is verified.
在本发明实施例中,所述可编程设备可以检测用户生物信息。可编程设备可以将用户生物信息发送给电子设备。电子设备对所述用户生物信息进行验证。例如,电子设备可以预先存储用户生物信息,或者可以通过数字签名或数字证书的方式获得可信的用户生物信息。电子设备可以通过将可信的用户生物信息与来自可编程设备的用户生物信息进行比较,从而进行验证。如果来自可编程设备的用户生物信息与可信的用户生物信息一致,则通过验证,此时允许所述可编程设备发送用户信息;如果来自可编程设备的用户生物信息与可信的用户生物信息不一致,则不能通过验证,此时 可以进行其他处理,例如提示用户手动输入、或禁止所述可编程设备发送用户信息等。In an embodiment of the invention, the programmable device can detect user biometric information. The programmable device can transmit user biometric information to the electronic device. The electronic device verifies the user biometric information. For example, the electronic device may pre-store user biometric information, or may obtain trusted user biometric information by means of digital signature or digital certificate. The electronic device can perform verification by comparing the trusted user biometric information with the user biometric information from the programmable device. If the user biometric information from the programmable device is consistent with the trusted user biometric information, then by verification, the programmable device is allowed to transmit user information; if the user biometric information from the programmable device and the trusted user biometric information If they are inconsistent, they cannot pass the verification. Other processing may be performed, such as prompting the user to manually enter, or disabling the programmable device from transmitting user information.
用户生物信息例如可以包括虹膜信息、体液信息等。优选地,用户生物信息包括用户的指纹信息。在一个例子中,在所述可编程设备中存储对应于不同指纹的多个指纹信息,所述多个指纹信息分别对应于多个用户信息。由于每个用户可以具有多个指纹,因此,使用指纹信息作为用户生物信息可以带来更多的灵活性。所述指纹信息例如是通过感测指纹获得的指纹码。当用户手指触摸所述可编程设备时,可编程设备可以立即检测指纹信息。这种操作方式比较简便,能够提高用户的使用体验。The user biometric information may include, for example, iris information, body fluid information, and the like. Preferably, the user biometric information includes fingerprint information of the user. In one example, a plurality of fingerprint information corresponding to different fingerprints are stored in the programmable device, the plurality of fingerprint information respectively corresponding to a plurality of user information. Since each user can have multiple fingerprints, using fingerprint information as user biometric information can bring more flexibility. The fingerprint information is, for example, a fingerprint code obtained by sensing a fingerprint. When the user touches the programmable device with a finger, the programmable device can immediately detect the fingerprint information. This mode of operation is relatively simple and can improve the user experience.
在步骤S1300,接收来自可编程设备的用户信息。At step S1300, user information from the programmable device is received.
其中,所述用户信息是以近场通信的方式被接收的。用户信息可以包括注册信息或登录信息。例如,用户信息可以包括用户的姓名、性别、邮编、邮箱、用户名、密码等中的至少一个。The user information is received in a near field communication manner. User information may include registration information or login information. For example, the user information may include at least one of a user's name, gender, zip code, mailbox, username, password, and the like.
根据本发明,在需要再次输入用户信息的至少一部分的时候,可以直接从所述可编程设备获取所述用户信息。这至少在一定程度上免去了用户重复输入的麻烦。此外,由于在传递用户信息之前需要验证用户生物信息,因此,可以在一定程度上增加安全性。According to the present invention, the user information can be obtained directly from the programmable device when it is necessary to input at least a portion of the user information. This at least to some extent eliminates the hassle of repeated user input. In addition, since the user biometric information needs to be verified before the user information is transmitted, the security can be increased to some extent.
可以在使用过程中将用户信息存储到所述可编程设备中。可选地,用户可以事先将用户信息发送给制造者,以及在制造过程时将用户信息存储在所述可编程设备中。User information can be stored in the programmable device during use. Alternatively, the user may send the user information to the manufacturer in advance, and store the user information in the programmable device at the time of the manufacturing process.
在步骤S1400,在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。In step S1400, in the case where the user biometric information is verified, the user information is transmitted to an application that needs to be registered or logged in to register or log in to the application.
可以使用所述用户信息注册当前需要注册的应用程序。可选地,可以使用所述用户信息登录电子设备上所有能够登录的应用程序。优选地,可以在电子设备上提供应用程序的选项,供用户选择以进行注册或登录。The user information can be used to register an application that currently needs to be registered. Optionally, the user information can be used to log in to all applications that can log in on the electronic device. Preferably, an option for the application can be provided on the electronic device for the user to select for registration or login.
在一个例子中,为了提高安全性,可以对所述用户信息进行加密。也就是说,可编程设备中存储的用户信息为经过加密的用户信息。上述将所述用户信息发送给需要注册或登录的应用程序的步骤具体包括:对所述加 密的用户信息进行解密;将解密后的用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。In one example, the user information may be encrypted for increased security. That is, the user information stored in the programmable device is encrypted user information. The foregoing step of sending the user information to an application that needs to be registered or logged in specifically includes: adding the The decrypted user information is decrypted; the decrypted user information is sent to an application that needs to be registered or logged in to register or log in to the application.
于本实施例的一种具体实施方式中,用户信息包括通用注册信息和登录信息。其中,通用注册信息包括但不限于用户的姓名、性别、邮编、邮箱中的至少一个,登录信息可以为用户的用户名和密码,也可以是其它的身份信息,例如指纹等生物特征信息。此时,将用户信息存储到可编程设备的实施方式可以为:查找电子设备中需要注册或登录的应用程序;获取用户输入的通用注册信息;对应于所查找到的每个应用程序获取用户输入的登录信息;电子设备获取可编程设备通过近场通信方式发送的用户生物信息,对所获取的用户生物信息进行验证,当验证通过时,将所获取的通用注册信息和登录信息即用户信息发送到可编程设备中存储,并将用户信息与该用户生物信息进行绑定。In a specific implementation manner of this embodiment, the user information includes general registration information and login information. The universal registration information includes, but is not limited to, at least one of a user's name, gender, zip code, and email address. The login information may be a user name and password of the user, or may be other identity information, such as biometric information such as a fingerprint. At this time, the implementation of storing the user information to the programmable device may be: searching for an application in the electronic device that needs to be registered or logged in; obtaining general registration information input by the user; and obtaining user input corresponding to each application found. The login information of the user device acquires the user biometric information sent by the programmable device through the near field communication method, and verifies the acquired biometric information of the user. When the verification is passed, the acquired general registration information and the login information, that is, the user information are sent. Stored in a programmable device and binds user information to the user's biometric information.
例如,可以使用用户生物信息对用户信息进行加密。在这种情况下,所述电子设备使用所述用户生物信息对接收到的所述加密的用户信息进行解密。所述电子设备可以预先存储用户生物信息,或者,接收来自所述可编程设备的用户生物信息。在一个例子中,若电子设备通过接收到的来自可编程设备的用户生物信息进行解密,可以通过公钥和私钥对可编程设备发送的用户生物信息进行加密和解密,以提高传递用户生物信息的安全性。具体的,在所述可编程设备使用电子设备的公钥加密所述用户生物信息,以及在电子设备上使用电子设备的私钥对所述经加密的用户生物信息进行解密,以获得用户生物信息。For example, user information can be encrypted using user biometric information. In this case, the electronic device decrypts the received encrypted user information using the user biometric information. The electronic device may pre-store user biometric information or receive user biometric information from the programmable device. In an example, if the electronic device decrypts through the received user biometric information from the programmable device, the user biometric information sent by the programmable device can be encrypted and decrypted by using the public key and the private key to improve the delivery of the user biometric information. Security. Specifically, the programmable device encrypts the user biometric information using a public key of the electronic device, and decrypts the encrypted user biometric information on the electronic device using the private key of the electronic device to obtain user biometric information. .
优选地,为了验证可编程设备发送的用户生物信息的合法性,以进一步提高安全性,可以在电子设备接收数字签名信息,以及通过所述数字签名信息,验证可编程设备发送的用户生物信息。在一个例子中,所述可编程设备还可以将数字证书发送给电子设备,以证明所接收到的用户生物信息的来源的合法性。该数字证书中包含所述可编程设备的公钥。接着,电子设备使用所述可编程设备的公钥对电子设备的公钥进行加密,以及向所述可编程设备发送经加密的电子设备的公钥。这样,所述可编程设备可以 使用电子设备的公钥对信息进行加密。在另一个例子中,电子设备中已经保存了关于数字签名合法性的信息,例如,所述可编程设备已经在所述电子设备上进行登记且所述电子设备预先记录了该可编程设备的公钥。在这种情况下,可以省略数字证书。Preferably, in order to verify the legitimacy of the user biometric information transmitted by the programmable device to further improve security, the digital signature information may be received at the electronic device, and the user biometric information transmitted by the programmable device may be verified by the digital signature information. In one example, the programmable device can also send a digital certificate to the electronic device to prove the legitimacy of the source of the received user biometric information. The digital certificate contains the public key of the programmable device. Next, the electronic device encrypts the public key of the electronic device using the public key of the programmable device, and transmits the public key of the encrypted electronic device to the programmable device. In this way, the programmable device can The information is encrypted using the public key of the electronic device. In another example, information regarding the legality of the digital signature has been stored in the electronic device, for example, the programmable device has been registered on the electronic device and the electronic device pre-recorded the public device of the programmable device key. In this case, the digital certificate can be omitted.
可选地,对所述用户信息进行加密/解密的密钥除了包括上述用户生物信息外,还可以包含可变化的搅动因子。所述电子设备可以使用这样的密钥对所述用户信息进行解密。例如,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。通过使用这样的搅动因子,相同的用户信息可以产生不同的密文,从而可以防止欺骗者的攻击,例如,重放攻击。由于可编程设备和电子设备可以事先约定获取搅动因子的方式,而无需在通信时传递搅动因子,因此,可以减小被欺骗者截取的危险,从而增加安全性。Optionally, the key for encrypting/decrypting the user information may include a variable agitation factor in addition to the user biometric information. The electronic device can decrypt the user information using such a key. For example, the agitation factor includes at least one of time, geographic coordinates, device address, and temperature. By using such an agitation factor, the same user information can generate different ciphertexts, thereby preventing fraudulent attacks, such as replay attacks. Since the programmable device and the electronic device can agree in advance on the manner of acquiring the agitation factor without transmitting the agitation factor during communication, the risk of being intercepted by the fraudster can be reduced, thereby increasing safety.
在一个例子中,电子设备获取到用户信息后,可以通过计算所述用户信息的至少一部分的散列值对所述用户信息的至少一部分进行验证。所述用户信息的至少一部分可以是被认为重要或关键的部分。本领域技术人员应当理解,可以预先在电子设备存储所述用户信息的至少一部分的散列值,从而与所计算的散列值进行比较和验证。可选地,可以事先将所述散列值存储在可信实体颁发的数字证书中。例如,所述数字证书被存储在所述可编程设备中,以及所述可编程设备将数字证书发送给电子设备,用于验证用户信息的完整性。通过这种方式可以进一步提高安全性。In an example, after the electronic device acquires the user information, at least a portion of the user information may be verified by calculating a hash value of at least a portion of the user information. At least a portion of the user information may be a portion that is considered important or critical. Those skilled in the art will appreciate that the hash value of at least a portion of the user information may be stored in advance in the electronic device for comparison and verification with the calculated hash value. Alternatively, the hash value may be stored in advance in a digital certificate issued by a trusted entity. For example, the digital certificate is stored in the programmable device, and the programmable device transmits a digital certificate to the electronic device for verifying the integrity of the user information. In this way, security can be further improved.
<实施例2><Example 2>
根据本发明的第二实施例,还可以提供一种用于注册或登录的设备。该设备包括可以用于执行图1所示的方法的装置。本领域技术人员应当理解,在电子技术领域,在公开了本发明的方案的基础上,可以很容易地根据需要使用软件、硬件和/或软件和硬件的组合来实现所述方案。例如,可以通过指令配置处理器来实现各个单元。例如,可以将指令存储在ROM中,并且当启动设备时,将指令从ROM读取到可编程器件中来实现各个单元。例如,可以将各个单元固化到专用器件(例如ASIC)中。可以将各个单元 分成相互独立的单元,或者可以将它们合并在一起实现。所述单元可以通过上述各种实现方式中的一种来实现,或者可以通过上述各种实现方式中的两种或更多种方式的组合来实现。According to a second embodiment of the present invention, an apparatus for registration or login can also be provided. The apparatus includes means that can be used to perform the method illustrated in FIG. It will be understood by those skilled in the art that in the field of electronic technology, based on the disclosure of the solution of the present invention, the solution can be easily implemented using software, hardware, and/or a combination of software and hardware as needed. For example, each unit can be implemented by an instruction configuration processor. For example, instructions can be stored in the ROM, and when the device is booted, instructions are read from the ROM into the programmable device to implement the various units. For example, individual units can be cured into a dedicated device such as an ASIC. Individual units Divided into separate units, or they can be combined to achieve. The unit may be implemented by one of the various implementations described above, or may be implemented by a combination of two or more of the various implementations described above.
<实施例3><Example 3>
图2是显示可用于实现本发明的实施例的电子设备2000的配置的例子的框图。2 is a block diagram showing an example of a configuration of an electronic device 2000 that can be used to implement an embodiment of the present invention.
电子设备2000例如可以是手机、平板电脑等。The electronic device 2000 can be, for example, a mobile phone, a tablet, or the like.
如图2所示,电子设备2000可以包括处理器2010、存储器2020、接口装置2030、通信装置2040、显示装置2050、输入装置2060、扬声器2070、麦克风2080,等等。处理器2010、存储器2020、接口装置2030、通信装置2040、显示装置2050、输入装置2060、扬声器2070、麦克风2080各元件相互之间直接或间接地电性连接,以实现数据的传输或交互。例如,这些元件相互之间可通过一条或多条通讯总线或信号线实现电性连接。As shown in FIG. 2, the electronic device 2000 can include a processor 2010, a memory 2020, an interface device 2030, a communication device 2040, a display device 2050, an input device 2060, a speaker 2070, a microphone 2080, and the like. The components of the processor 2010, the memory 2020, the interface device 2030, the communication device 2040, the display device 2050, the input device 2060, the speaker 2070, and the microphone 2080 are electrically connected directly or indirectly to each other to implement data transmission or interaction. For example, the components can be electrically connected to one another via one or more communication buses or signal lines.
存储器可以是,但不限于,随机存取存储器(Random Access Memory,RAM),只读存储器(Read Only Memory,ROM),可编程只读存储器(Programmable Read-Only Memory,PROM),可擦除只读存储器(Erasable Programmable Read-Only Memory,EPROM),电可擦除只读存储器(Electric Erasable Programmable Read-Only Memory,EEPROM)等。The memory may be, but not limited to, Random Access Memory (RAM), Read Only Memory (ROM), Programmable Read-Only Memory (PROM), erasable only Erasable Programmable Read-Only Memory (EPROM), Electric Erasable Programmable Read-Only Memory (EEPROM), and the like.
所述处理器2010可以是一种集成电路芯片,具有信号的处理能力。上述处理器2010可以是通用处理器,包括中央处理器(Central Processing Unit,简称CPU)、网络处理器(Network Processor,简称NP)等;还可以是数字信号处理器(DSP)、专用集成电路(ASIC)、现成可编程门阵列(FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件。其可以实现或者执行本发明实施例中的公开的各方法、步骤及逻辑框图。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。The processor 2010 can be an integrated circuit chip with signal processing capabilities. The processor 2010 may be a general-purpose processor, including a central processing unit (CPU), a network processor (NP processor, etc.), or a digital signal processor (DSP) or an application specific integrated circuit ( ASIC), off-the-shelf programmable gate array (FPGA) or other programmable logic device, discrete gate or transistor logic device, discrete hardware component. The methods, steps, and logical block diagrams disclosed in the embodiments of the present invention may be implemented or executed. The general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
上述接口装置2030例如包括USB接口、耳机接口等。在一些实施例中,接口装置2030、处理器2010可以在单个芯片中实现。在其他一些实例中,它们可以分别由独立的芯片实现。 The interface device 2030 described above includes, for example, a USB interface, a headphone jack, and the like. In some embodiments, interface device 2030, processor 2010 can be implemented in a single chip. In other examples, they can be implemented by separate chips.
通信装置2040例如能够与非接触式供电的可编程设备进行通信,例如,是能支持近场通信的装置。通信装置2040还能够进行有线或无线通信。The communication device 2040 can, for example, communicate with a non-contact powered programmable device, for example, a device capable of supporting near field communication. Communication device 2040 is also capable of wired or wireless communication.
在本实施例中,上述显示装置2050可以是液晶显示器或触控显示器。若为触控显示器,其可为支持单点和多点触控操作的电容式触控屏或电阻式触控屏等。支持单点和多点触控操作是指触控显示器能感应到来自该触控显示器上一个或多个位置处同时产生的触控操作,并将该感应到的触控操作交由处理器2010进行计算和处理。In the embodiment, the display device 2050 may be a liquid crystal display or a touch display. For a touch display, it can be a capacitive touch screen or a resistive touch screen that supports single-point and multi-touch operations. Supporting single-point and multi-touch operations means that the touch display can sense a touch operation simultaneously generated from one or more positions on the touch display, and the touch operation is transferred to the processor 2010. Perform calculations and processing.
输入装置2060例如可以包括触摸屏、键盘等。用户可以通过扬声器2070和麦克风2080输入/输出语音信息。Input device 2060 can include, for example, a touch screen, a keyboard, and the like. The user can input/output voice information through the speaker 2070 and the microphone 2080.
图2所示的电子设备仅是解释性的,并且决不是为了要限制本发明、其应用或用途。The electronic device shown in Figure 2 is merely illustrative and is in no way intended to limit the invention, its application or use.
在这个实施例中,所述存储器2020用于存储指令,所述指令用于控制所述处理器2010进行操作以执行本申请实施例中的注册或登录方法。本领域技术人员应当理解,尽管在图2中示出了多个装置,但是,本发明可以仅涉及其中的部分装置,例如,处理器2010和存储装置2020等。技术人员可以根据本发明所公开方案设计指令。指令如何控制处理器进行操作,这是本领域公知,故在此不再详细描述。In this embodiment, the memory 2020 is for storing instructions for controlling the processor 2010 to operate to perform a registration or login method in an embodiment of the present application. It will be understood by those skilled in the art that although a plurality of devices are illustrated in FIG. 2, the present invention may relate only to some of the devices, such as processor 2010 and storage device 2020, and the like. A technician can design instructions in accordance with the disclosed aspects of the present invention. How the instructions control the processor for operation is well known in the art and will not be described in detail herein.
图3示出了根据本发明的实施例的非接触式供电的可编程设备3000的框图。FIG. 3 shows a block diagram of a contactless powered programmable device 3000 in accordance with an embodiment of the present invention.
例如,可编程设备3000可以是卡片形式的。这种形式的设备方便用户携带。例如,所述可编程设备是具有近场通信功能的设备。For example, programmable device 3000 can be in the form of a card. This form of equipment is convenient for users to carry. For example, the programmable device is a device having a near field communication function.
如图3所示,可编程设备3000包括存储单元3010、感测单元3020、处理单元3030和通信单元3040。As shown in FIG. 3, the programmable device 3000 includes a storage unit 3010, a sensing unit 3020, a processing unit 3030, and a communication unit 3040.
存储单元3010被配置成存储用户信息。感测单元3020被配置成感测用户生物信息。处理单元3030被配置成通过所感测的用户生物信息对用户进行验证,以允许发送用户信息。所述用户信息用于在电子设备上的应用程序中进行注册或登录。通信单元3040被配置成以近场通信的方式向电子设备发送所述用户信息。 The storage unit 3010 is configured to store user information. The sensing unit 3020 is configured to sense user biometric information. Processing unit 3030 is configured to authenticate the user via the sensed user biometric information to allow for the transmission of user information. The user information is used to register or log in in an application on the electronic device. The communication unit 3040 is configured to transmit the user information to the electronic device in a near field communication manner.
在一个例子中,所述处理单元3030还被配置成使用用户生物信息对所述用户信息进行加密。所述通信单元3040被配置成向电子设备发送经加密的用户信息。例如,为了安全地传递所述生物信息,所述处理单元3030可以使用电子设备的公钥加密所述用户生物信息。然后,电子设备可以使用其私钥对所述用户生物信息进行解密。In one example, the processing unit 3030 is further configured to encrypt the user information using user biometric information. The communication unit 3040 is configured to transmit the encrypted user information to the electronic device. For example, to securely communicate the biometric information, the processing unit 3030 can encrypt the user biometric information using the public key of the electronic device. The electronic device can then decrypt the user biometric information using its private key.
可以通过多种方式来传递电子设备和可编程设备的公钥。例如,可以通过数字签名的方式来验证可编程设备的合法性和/或提高通信的安全性,并传递所述公钥。例如,存储单元3010存储数字签名信息。所述数字签名信息用于验证所述用户生物信息。所述通信单元3010向电子设备发送所述数字签名信息,以用于电子设备验证所述可编程设备的合法性或可信性。此外,还可以使用数字证书来确定合法性和/或提高通信的安全性。例如,所述存储单元3010存储可编程设备的数字证书,其中,该数字证书包含可编程设备的公钥。所述通信单元3040向电子设备发送所述数字证书并从电子设备接收电子设备的公钥,其中,电子设备的公钥使用可编程设备的公钥被加密。所述处理设备3030使用可编程设备的私钥对电子设备的公钥进行解密,以获得电子设备的公钥。The public keys of the electronic device and the programmable device can be communicated in a variety of ways. For example, the legitimacy of the programmable device can be verified by digital signatures and/or the security of the communication can be improved and the public key can be passed. For example, the storage unit 3010 stores digital signature information. The digital signature information is used to verify the user biometric information. The communication unit 3010 transmits the digital signature information to the electronic device for the electronic device to verify the legitimacy or credibility of the programmable device. In addition, digital certificates can be used to determine legitimacy and/or improve the security of communications. For example, the storage unit 3010 stores a digital certificate of a programmable device, wherein the digital certificate contains a public key of the programmable device. The communication unit 3040 transmits the digital certificate to the electronic device and receives the public key of the electronic device from the electronic device, wherein the public key of the electronic device is encrypted using the public key of the programmable device. The processing device 3030 decrypts the public key of the electronic device using the private key of the programmable device to obtain the public key of the electronic device.
优选地,处理单元3030所使用的密钥除了包括上述用户生物信息外,还可以包含可变化的搅动因子。例如,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。Preferably, the key used by the processing unit 3030 may include a variable agitation factor in addition to the user biometric information described above. For example, the agitation factor includes at least one of time, geographic coordinates, device address, and temperature.
优选地,在可编程设备3000中对用户生物信息进行验证。例如,存储单元3030预先存储用户生物信息以及所述感测单元3020感测用户生物信息。处理单元3030通过所存储的用户生物信息和所感测的用户生物信息对用户进行验证,以确定是否允许通信单元3040发送用户信息。可选地,通信单元3040还可以直接将感测单元3020所感测的用户生物信息发送给电子设备进行验证并接收来自电子设备的指示以确定是否允许通信单元3040发送用户信息。Preferably, the user biometric information is verified in the programmable device 3000. For example, the storage unit 3030 stores user biometric information in advance and the sensing unit 3020 senses user biometric information. The processing unit 3030 verifies the user by the stored user biometric information and the sensed user biometric information to determine whether the communication unit 3040 is allowed to transmit the user information. Optionally, the communication unit 3040 may also directly send the user biometric information sensed by the sensing unit 3020 to the electronic device for verification and receive an indication from the electronic device to determine whether the communication unit 3040 is allowed to send the user information.
例如,所述用户生物信息包括用户的指纹信息。存储单元3030可以存储对应于不同指纹的多个指纹信息,所述多个指纹信息分别对应于多个用 户信息。可以通过所述多个用户信息注册/登录电子设备中的不同应用程序和/或应用程序中的不同账户。For example, the user biometric information includes fingerprint information of the user. The storage unit 3030 may store a plurality of fingerprint information corresponding to different fingerprints, where the plurality of fingerprint information respectively correspond to multiple uses Household information. Different accounts in different applications and/or applications in the electronic device can be registered/registered through the plurality of user information.
本领域技术人员应当明白,可以通过各种方式来实现可编程设备3000中的各个单元。如上所述,可以通过软件、硬件和/或软件和硬件结合的方式来实现所述单元。Those skilled in the art will appreciate that the various units in programmable device 3000 can be implemented in a variety of ways. As mentioned above, the unit can be implemented by means of software, hardware and/or a combination of software and hardware.
<例子><example>
图4是根据本发明的一个实施例的例子的示意图。4 is a schematic diagram of an example in accordance with an embodiment of the present invention.
在图4的例子中,用户5000希望登录电子设备4000上的一个或多个应用程序。电子设备4000可以包括用于注册或登录的装置3000,或者电子设备4000是图2所示的电子设备2000。用户5000持有卡片形式的非接触式供电的可编程设备3000。In the example of FIG. 4, user 5000 wishes to log into one or more applications on electronic device 4000. The electronic device 4000 may include a device 3000 for registration or login, or the electronic device 4000 is the electronic device 2000 shown in FIG. 2. The user 5000 holds a non-contact powered programmable device 3000 in the form of a card.
例如,电子设备4000通过支持近场通信功能的通信装置2040向可编程设备3000发送信号,要求提供用户信息。For example, the electronic device 4000 transmits a signal to the programmable device 3000 through the communication device 2040 supporting the near field communication function, requesting the provision of user information.
可编程设备3000感测用户5000的指纹信息(指纹码)。可编程设备3000通过事先存储的指纹信息对所感测的指纹信息进行验证,从而验证用户5000是否是已经登记的合法用户。可选地,可编程设备3000可以直接将所感测的指纹信息发送给电子设备4000进行验证。可编程设备3000可以存储多个指纹信息和与多个指纹信息一一对应的多个用户信息。The programmable device 3000 senses the fingerprint information (fingerprint code) of the user 5000. The programmable device 3000 verifies the sensed fingerprint information by using the fingerprint information stored in advance, thereby verifying whether the user 5000 is a registered legitimate user. Optionally, the programmable device 3000 can directly send the sensed fingerprint information to the electronic device 4000 for verification. The programmable device 3000 can store a plurality of fingerprint information and a plurality of user information in one-to-one correspondence with the plurality of fingerprint information.
电子设备4000可以将它的公钥传递给可编程设备3000。可编程设备3000使用所述公钥将通信所使用的密钥传递给电子设备4000。所述密钥例如可以包括所述指纹信息。可选地,也可以由可编程设备3000将它的公钥传递给电子设备4000。电子设备4000使用所述公钥将通信所使用的密钥传递给可编程设备5000。电子设备4000和可编程设备3000可以设置任意的密钥。例如,所述密钥还可以包括搅动因子,例如,时间、地理坐标、设备地址、温度中的至少一个,从而增加安全性。The electronic device 4000 can pass its public key to the programmable device 3000. The programmable device 3000 transmits the key used for communication to the electronic device 4000 using the public key. The key may for example comprise the fingerprint information. Alternatively, its public key can also be passed to the electronic device 4000 by the programmable device 3000. The electronic device 4000 transmits the key used for communication to the programmable device 5000 using the public key. The electronic device 4000 and the programmable device 3000 can set any key. For example, the key may also include an agitation factor, such as at least one of time, geographic coordinates, device address, temperature, to increase security.
在可编程设备3000将指纹信息发送给电子设备4000的情况下,可编程设备3000还可以例如使用所述密钥将关于指纹信息的数字签名发送给电子设备4000。电子设备4000可以利用所述数字签名对指纹信息进行验 证。In the case where the programmable device 3000 transmits the fingerprint information to the electronic device 4000, the programmable device 3000 can also transmit the digital signature regarding the fingerprint information to the electronic device 4000, for example, using the key. The electronic device 4000 can use the digital signature to verify the fingerprint information. certificate.
可编程设备3000使用所述密钥对用户信息进行加密,并将加密的用户信息发送给电子设备4000。The programmable device 3000 encrypts the user information using the key and transmits the encrypted user information to the electronic device 4000.
电子设备4000使用所述密钥对经加密的用户信息进行解密,以得到用户信息。为了防止用户信息被篡改,电子设备4000可以通过计算用户信息的散列值来验证用户信息的完整性。在这种情况下,可以预先存储每个指纹对应的账户的用户信息的散列值,或者通过关于用户信息的数字证书来得到验证所需的散列值。The electronic device 4000 decrypts the encrypted user information using the key to obtain user information. In order to prevent user information from being tampered with, the electronic device 4000 can verify the integrity of the user information by calculating a hash value of the user information. In this case, the hash value of the user information of the account corresponding to each fingerprint may be stored in advance, or the hash value required for the verification may be obtained by a digital certificate regarding the user information.
之后,电子设备4000使用所述用户信息注册或登录应用程序。例如,可以在电子设备4000上提供选项,供用户选择一个或多个应用程序进行注册/登录。Thereafter, the electronic device 4000 registers or logs in the application using the user information. For example, an option can be provided on the electronic device 4000 for the user to select one or more applications for registration/login.
本发明的设备和方法可以通过程序产品体现。程序产品可以包括具有处理器可执行的非易失的程序代码的可读存储介质,其上载有用于使处理器实现本发明的各个方面的可读程序指令。The apparatus and method of the present invention can be embodied by a program product. The program product can include a readable storage medium having processor-executable non-volatile program code with readable program instructions for causing a processor to implement various aspects of the present invention.
上述可读存储介质可以是可以保持和存储由指令执行设备使用的指令的有形设备。可读存储介质例如可以是—但不限于—电存储设备、磁存储设备、光存储设备、电磁存储设备、半导体存储设备或者上述的任意合适的组合。可读存储介质的更具体的例子(非穷举的列表)包括:便携式盘、硬盘、随机存取存储器(RAM)、只读存储器(ROM)、可擦式可编程只读存储器(EPROM或闪存)、静态随机存取存储器(SRAM)、便携式压缩盘只读存储器(CD-ROM)、数字多功能盘(DVD)、记忆棒、软盘、机械编码设备、例如其上存储有指令的打孔卡或凹槽内凸起结构、以及上述的任意合适的组合。这里所使用的可读存储介质不被解释为瞬时信号本身,诸如无线电波或者其他自由传播的电磁波、通过波导或其他传输媒介传播的电磁波(例如,通过光纤电缆的光脉冲)、或者通过电线传输的电信号。The readable storage medium described above can be a tangible device that can hold and store instructions for use by the instruction execution device. The readable storage medium can be, for example, but not limited to, an electrical storage device, a magnetic storage device, an optical storage device, an electromagnetic storage device, a semiconductor storage device, or any suitable combination of the foregoing. More specific examples (non-exhaustive lists) of readable storage media include: portable disks, hard disks, random access memory (RAM), read only memory (ROM), erasable programmable read only memory (EPROM or flash memory) ), static random access memory (SRAM), portable compact disk read only memory (CD-ROM), digital versatile disk (DVD), memory stick, floppy disk, mechanical encoding device, for example, punch card with instructions stored thereon Or a raised structure within the recess, and any suitable combination of the above. A readable storage medium as used herein is not to be interpreted as a transient signal itself, such as a radio wave or other freely propagating electromagnetic wave, an electromagnetic wave propagating through a waveguide or other transmission medium (eg, a light pulse through a fiber optic cable), or transmitted through a wire Electrical signal.
这里所描述的可读程序指令可以从可读存储介质下载到各个电子设备,或者通过网络、例如因特网、局域网、广域网和/或无线网下载到外部电子 设备或外部存储设备。网络可以包括铜传输电缆、光纤传输、无线传输、路由器、防火墙、交换机、网关计算机和/或边缘服务器。每个电子设备中的网络适配卡或者网络接口从网络接收可读程序指令,并转发该可读程序指令,以供存储在各个计算/处理设备中的可读存储介质中。The readable program instructions described herein can be downloaded to a respective electronic device from a readable storage medium or downloaded to an external electronic network via a network, such as the Internet, a local area network, a wide area network, and/or a wireless network. Device or external storage device. The network may include copper transmission cables, fiber optic transmissions, wireless transmissions, routers, firewalls, switches, gateway computers, and/or edge servers. A network adapter card or network interface in each electronic device receives readable program instructions from the network and forwards the readable program instructions for storage in a readable storage medium in each computing/processing device.
用于执行本发明操作的程序指令可以是汇编指令、指令集架构(ISA)指令、机器指令、机器相关指令、微代码、固件指令、状态设置数据、或者以一种或多种编程语言的任意组合编写的源代码或目标代码,所述编程语言包括面向对象的编程语言—诸如Smalltalk、C++等,以及常规的过程式编程语言—诸如“C”语言或类似的编程语言。可读程序指令可以完全地在用户电子设备上执行、部分地在用户电子设备上执行、作为一个独立的软件包执行、部分在用户电子设备上部分在远程计算机上执行、或者完全在远程计算机或服务器上执行。在涉及远程计算机的情形中,远程计算机可以通过任意种类的网络—包括局域网(LAN)或广域网(WAN)—连接到用户电子设备,或者,可以连接到外部计算机(例如利用因特网服务提供商来通过因特网连接)。在一些实施例中,通过利用可读程序指令的状态信息来个性化定制电子电路,例如可编程逻辑电路、现场可编程门阵列(FPGA)或可编程逻辑阵列(PLA),该电子电路可以执行计算机可读程序指令,从而实现本发明的各个方面。Program instructions for performing the operations of the present invention can be assembly instructions, instruction set architecture (ISA) instructions, machine instructions, machine related instructions, microcode, firmware instructions, state setting data, or any of a number of programming languages. The source code or object code is written in combination, including an object oriented programming language such as Smalltalk, C++, etc., as well as a conventional procedural programming language such as a "C" language or a similar programming language. The readable program instructions may be executed entirely on the user's electronic device, partly on the user's electronic device, as a stand-alone software package, partly on the user's electronic device, partly on a remote computer, or entirely on a remote computer or Executed on the server. In the case of a remote computer, the remote computer can be connected to the consumer electronic device via any kind of network, including a local area network (LAN) or wide area network (WAN), or can be connected to an external computer (eg, using an Internet service provider) Internet connection). In some embodiments, the electronic circuitry can be customized by utilizing state information of the readable program instructions, such as a programmable logic circuit, a field programmable gate array (FPGA), or a programmable logic array (PLA). The computer readable program instructions to implement various aspects of the present invention.
这里参照根据本发明实施例的方法、设备的流程图和/或框图描述了本发明的各个方面。应当理解,流程图和/或框图的每个方框以及流程图和/或框图中各方框的组合,都可以由可读程序指令实现。Aspects of the present invention are described herein with reference to flowchart illustrations and/or block diagrams of methods and apparatus in accordance with embodiments of the invention. It will be understood that each block of the flowchart illustrations and/or FIG.
这些可读程序指令可以提供给电子设备的处理器,从而生产出一种机器,使得这些指令在通过电子设备的处理器执行时,产生了实现流程图和/或框图中的一个或多个方框中规定的功能/动作的装置。也可以把这些可读程序指令存储在可读存储介质中,这些指令使得电子设备以特定方式工作,从而,存储有指令的可读介质则包括一个制造品,其包括实现流程图和/或框图中的一个或多个方框中规定的功能/动作的各个方面的指令。The readable program instructions can be provided to a processor of an electronic device to produce a machine that, when executed by a processor of the electronic device, produces one or more of the implementation flowcharts and/or block diagrams The device/function device specified in the box. The readable program instructions can also be stored in a readable storage medium that causes the electronic device to operate in a particular manner such that the readable medium storing the instructions includes an article of manufacture including an implementation flow diagram and/or block diagram Instructions for various aspects of the functions/actions specified in one or more of the boxes.
也可以把可读程序指令加载到电子设备上,使得在电子设备上执行一 系列操作步骤,以产生指令实现的过程,从而使得在电子设备上执行的指令实现流程图和/或框图中的一个或多个方框中规定的功能/动作。The readable program instructions can also be loaded onto the electronic device such that an execution is performed on the electronic device The series of operational steps are directed to the process of the instruction implementation, such that the instructions executed on the electronic device implement the functions/acts recited in the one or more blocks of the flowchart and/or block diagram.
附图中的流程图和框图显示了根据本发明的多个实施例的装置和方法的可能实现的体系架构、功能和操作。在这点上,流程图或框图中的每个方框可以代表一个模块、程序段或指令的一部分,所述模块、程序段或指令的一部分包含一个或多个用于实现规定的逻辑功能的可执行指令。在有些作为替换的实现中,方框中所标注的功能也可以以不同于附图中所标注的顺序发生。例如,两个连续的方框实际上可以基本并行地执行,它们有时也可以按相反的顺序执行,这依所涉及的功能而定。也要注意的是,框图和/或流程图中的每个方框、以及框图和/或流程图中的方框的组合,可以用执行规定的功能或动作的专用的基于硬件的系统来实现,或者可以用专用硬件与指令的组合来实现。对于本领域技术人员来说公知的是,通过硬件方式实现、通过软件方式实现以及通过软件和硬件结合的方式实现都是等价的。The flowchart and block diagrams in the Figures illustrate the architecture, functionality, and operation of possible implementations of apparatus and methods in accordance with various embodiments of the present invention. In this regard, each block in the flowchart or block diagram can represent a module, a program segment, or a portion of an instruction that includes one or more components for implementing the specified logical functions. Executable instructions. In some alternative implementations, the functions noted in the blocks may also occur in a different order than those illustrated in the drawings. For example, two consecutive blocks may be executed substantially in parallel, and they may sometimes be executed in the reverse order, depending upon the functionality involved. It is also noted that each block of the block diagrams and/or flowcharts, and combinations of blocks in the block diagrams and/or flowcharts, can be implemented in a dedicated hardware-based system that performs the specified function or function. Or can be implemented with a combination of dedicated hardware and instructions. It is well known to those skilled in the art that implementation by hardware, implementation by software, and implementation by a combination of software and hardware are equivalent.
以上已经描述了本发明的各实施例,上述说明是示例性的,并非穷尽性的,并且也不限于所披露的各实施例。在不偏离所说明的各实施例的范围和精神的情况下,对于本技术领域的普通技术人员来说许多修改和变更都是显而易见的。本文中所用术语的选择,旨在最好地解释各实施例的原理、实际应用或对市场中的技术的改进,或者使本技术领域的其它普通技术人员能理解本文披露的各实施例。本发明的范围由所附权利要求来限定。 The embodiments of the present invention have been described above, and the foregoing description is illustrative, not limiting, and not limited to the disclosed embodiments. Numerous modifications and changes will be apparent to those skilled in the art without departing from the scope of the invention. The choice of terms used herein is intended to best explain the principles, practical applications, or improvements of the techniques in the various embodiments of the embodiments, or to enable those of ordinary skill in the art to understand the embodiments disclosed herein. The scope of the invention is defined by the appended claims.

Claims (16)

  1. 一种用于注册或登录的方法,其特征在于,所述方法包括:A method for registration or login, characterized in that the method comprises:
    接收来自非接触式供电的可编程设备的用户生物信息,其中,所述可编程设备是具有近场通信功能的设备;Receiving user biometric information from a contactless powered programmable device, wherein the programmable device is a device having a near field communication function;
    对所述用户生物信息进行验证;Verifying the user biometric information;
    接收来自可编程设备的用户信息,其中,所述用户信息是以近场通信的方式被接收的;Receiving user information from a programmable device, wherein the user information is received in a near field communication manner;
    在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。In the case where the user biometric information is verified, the user information is sent to an application that needs to be registered or logged in to register or log in to the application.
  2. 根据权利要求1所述的方法,其特征在于,所述用户信息为加密的用户信息,所述将所述用户信息发送给需要注册或登录的应用程序的步骤,包括:The method according to claim 1, wherein the user information is encrypted user information, and the step of transmitting the user information to an application that needs to be registered or logged in comprises:
    对所述加密的用户信息进行解密;Decrypting the encrypted user information;
    将解密后的用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。The decrypted user information is sent to an application that needs to be registered or logged in to register or log in to the application.
  3. 根据权利要求2所述的方法,其特征在于,所述用户信息通过用户生物信息进行加密,所述对所述加密的用户信息进行解密的步骤包括:使用所述用户生物信息对所述加密的用户信息进行解密。The method according to claim 2, wherein said user information is encrypted by user biometric information, and said step of decrypting said encrypted user information comprises: using said user biometric information for said encrypted User information is decrypted.
  4. 根据权利要求2所述的方法,其特征在于,所述用户信息为经过密钥加密的用户信息,所述对所述加密的用户信息进行解密的步骤包括:The method according to claim 2, wherein the user information is user information encrypted by a key, and the step of decrypting the encrypted user information comprises:
    使用密钥对所述用户信息进行解密,其中,所述密钥包含可变化的搅动因子。The user information is decrypted using a key, wherein the key contains a variable agitation factor.
  5. 根据权利要求4所述的方法,其特征在于,所述搅动因子包括时间、地理坐标、设备地址、温度中的至少一个。 The method of claim 4 wherein the agitation factor comprises at least one of time, geographic coordinates, device address, temperature.
  6. 根据权利要求1所述的方法,其特征在于,所述在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序的步骤,包括:The method according to claim 1, wherein in the case that the user biometric information is verified, the user information is sent to an application that needs to be registered or logged in to register or log in to the application. ,include:
    通过计算所述用户信息的至少一部分的散列值对所述用户信息的至少一部分进行验证;Verifying at least a portion of the user information by calculating a hash value of at least a portion of the user information;
    在所述用户生物信息验证和所述用户信息验证均通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。In the case that both the user biometric information verification and the user information verification are passed, the user information is sent to an application that needs to be registered or logged in to register or log in to the application.
  7. 根据权利要求1所述的方法,其特征在于,接收到的所述用户生物信息为通过电子设备的公钥进行加密后的用户生物信息,所述对所述用户生物信息进行验证的步骤之前,还包括:使用所述电子设备的私钥对经加密的所述用户生物信息进行解密,以获得用户生物信息。The method according to claim 1, wherein the received user biometric information is user biometric information encrypted by a public key of the electronic device, and before the step of verifying the biometric information of the user, The method further includes decrypting the encrypted user biometric information using a private key of the electronic device to obtain user biometric information.
  8. 根据权利要求7所述的方法,其特征在于,所述接收来自非接触式供电的可编程设备的用户生物信息的步骤之前,还包括:The method of claim 7, wherein the step of receiving user biometric information from the contactless powered programmable device further comprises:
    接收来自所述可编程设备的数字证书,其中,所述数字证书包括所述可编程设备的公钥;Receiving a digital certificate from the programmable device, wherein the digital certificate includes a public key of the programmable device;
    获取所述可编程设备的公钥,并使用所述可编程设备的公钥对所述电子设备的公钥进行加密;Obtaining a public key of the programmable device, and encrypting a public key of the electronic device by using a public key of the programmable device;
    向所述可编程设备发送经加密的电子设备的公钥。The public key of the encrypted electronic device is sent to the programmable device.
  9. 根据权利要求1所述的方法,其特征在于,所述对所述用户生物信息进行验证的步骤,包括:The method according to claim 1, wherein the step of verifying the user biometric information comprises:
    接收数字签名信息;Receiving digital signature information;
    通过所述数字签名信息,验证所述用户生物信息。The user biometric information is verified by the digital signature information.
  10. 根据权利要求1所述的方法,其特征在于,所述用户生物信息包 括用户的指纹信息。The method of claim 1 wherein said user biometric packet Includes the user's fingerprint information.
  11. 一种用于注册或登录的设备,其特征在于,包括:A device for registering or logging in, comprising:
    用于接收来自非接触式供电的可编程设备的用户生物信息的装置,其中,所述可编程设备是具有近场通信功能的设备;Means for receiving user biometric information from a contactless powered programmable device, wherein the programmable device is a device having near field communication functionality;
    用于对所述用户生物信息进行验证的装置;Means for verifying the biometric information of the user;
    用于接收来自可编程设备的用户信息的装置,其中,所述用户信息是以近场通信的方式被接收的;以及Means for receiving user information from a programmable device, wherein the user information is received in a near field communication manner;
    用于在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以登录或注册所述应用程序的装置。For transmitting the user information to an application that needs to be registered or logged in to log in or register the application, if the user biometric information is verified.
  12. 一种电子设备,其特征在于,包括存储器和处理器,所述存储器耦接到所述处理器,其中,所述存储器用于存储指令,所述指令用于控制所述处理器进行操作以执行以下操作:An electronic device, comprising: a memory coupled to the processor, and a processor, wherein the memory is configured to store instructions for controlling the processor to perform to perform The following operations:
    接收来自非接触式供电的可编程设备的用户生物信息,其中,所述可编程设备是具有近场通信功能的设备;Receiving user biometric information from a contactless powered programmable device, wherein the programmable device is a device having a near field communication function;
    对所述用户生物信息进行验证;Verifying the user biometric information;
    接收来自可编程设备的用户信息,其中,所述用户信息是以近场通信的方式被接收的;以及Receiving user information from a programmable device, wherein the user information is received in a near field communication manner;
    在用户生物信息验证通过的情况下,将所述用户信息发送给需要注册或登录的应用程序,以注册或登录所述应用程序。In the case where the user biometric information is verified, the user information is sent to an application that needs to be registered or logged in to register or log in to the application.
  13. 一种非接触式供电的可编程设备,其特征在于,包括:A non-contact power supply programmable device, comprising:
    存储单元,被配置成存储用户信息;a storage unit configured to store user information;
    感测单元,被配置成感测用户生物信息;a sensing unit configured to sense user biometric information;
    处理单元,被配置成通过所感测的用户生物信息对用户进行验证,以允许发送用户信息,其中,所述用户信息用于在电子设备上的应用程序中进行注册或登录;以及a processing unit configured to authenticate the user by the sensed user biometric information to allow transmission of user information, wherein the user information is for registration or login in an application on the electronic device;
    通信单元,被配置成以近场通信的方式向电子设备发送所述用户信息, a communication unit configured to transmit the user information to the electronic device in a near field communication manner,
    其中,所述可编程设备是具有近场通信功能的设备。Wherein, the programmable device is a device having a near field communication function.
  14. 根据权利要求13所述的可编程设备,其特征在于,所述存储单元还被配置成存储数字签名信息,其中,所述数字签名信息用于验证所述用户生物信息,The programmable device of claim 13, wherein the storage unit is further configured to store digital signature information, wherein the digital signature information is used to verify the user biometric information,
    其中,所述通信单元还被配置成向电子设备发送所述数字签名信息。The communication unit is further configured to send the digital signature information to an electronic device.
  15. 根据权利要求13所述的可编程设备,其特征在于,所述处理单元还被配置成使用密钥对所述用户信息进行加密,其中,所述密钥包含可变化的搅动因子,以及所述通信单元被配置成发送经加密的用户信息。A programmable device according to claim 13 wherein said processing unit is further configured to encrypt said user information using a key, wherein said key comprises a variable agitation factor, and said The communication unit is configured to transmit the encrypted user information.
  16. 根据权利要求13所述的可编程设备,其特征在于,所述存储单元还被配置成存储用户生物信息,以及所述处理单元还被配置成通过所存储的用户生物信息和所感测的用户生物信息对用户进行验证,以允许发送用户信息。 The programmable device of claim 13, wherein the storage unit is further configured to store user biometric information, and the processing unit is further configured to pass the stored user biometric information and the sensed user biometric The information authenticates the user to allow the user information to be sent.
PCT/CN2016/104431 2015-11-11 2016-11-03 Register or login method and device, electronic equipment, and programmable equipment WO2017080397A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510770923.X 2015-11-11
CN201510770923.XA CN105447366A (en) 2015-11-11 2015-11-11 Registration or login method and apparatus, electronic device, and programmable device

Publications (1)

Publication Number Publication Date
WO2017080397A1 true WO2017080397A1 (en) 2017-05-18

Family

ID=55557534

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/104431 WO2017080397A1 (en) 2015-11-11 2016-11-03 Register or login method and device, electronic equipment, and programmable equipment

Country Status (2)

Country Link
CN (1) CN105447366A (en)
WO (1) WO2017080397A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113378146A (en) * 2021-05-27 2021-09-10 广州朗国电子科技有限公司 Method for quickly logging in user by using NFC

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105447366A (en) * 2015-11-11 2016-03-30 广州神马移动信息科技有限公司 Registration or login method and apparatus, electronic device, and programmable device
CN109583165A (en) * 2018-10-12 2019-04-05 阿里巴巴集团控股有限公司 A kind of biological information processing method, device, equipment and system
CN110189474A (en) * 2019-04-19 2019-08-30 镇江西陆文化传媒有限公司 A kind of Intelligent charging management system and method for controlling security for mobile terminal

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101430808A (en) * 2007-11-09 2009-05-13 王巍 Fingerprint credit pen payment system, method and apparatus
CN101986641A (en) * 2010-10-20 2011-03-16 杭州晟元芯片技术有限公司 Trusted computing platform chip applicable to mobile communication equipment and authentication method thereof
US20130074170A1 (en) * 2011-09-16 2013-03-21 Google Inc Authenticating a user of a system using near field communication
CN103729948A (en) * 2014-01-13 2014-04-16 深圳市亚略特生物识别科技有限公司 Electronic payment method of mobile terminal with NFC (near field communication) and fingerprint functions
CN104965650A (en) * 2015-06-12 2015-10-07 福州瑞芯微电子有限公司 Control method and device for public place display equipment
CN105447366A (en) * 2015-11-11 2016-03-30 广州神马移动信息科技有限公司 Registration or login method and apparatus, electronic device, and programmable device

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100533490C (en) * 2007-05-29 2009-08-26 北京飞天诚信科技有限公司 Method and device for starting intelligent card fingerprint identification through condition judging
CN103258154A (en) * 2012-02-19 2013-08-21 上海博路信息技术有限公司 NFC (negative feedback circuit) terminal based locking and unlocking method
CN103001773B (en) * 2012-11-28 2015-07-01 鹤山世达光电科技有限公司 Fingerprint authentication system and fingerprint authentication method based on near field communication (NFC)
CN103514392A (en) * 2013-09-24 2014-01-15 亚太宝龙科技(湖南)有限公司 Login authentication device and method of computer operation system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101430808A (en) * 2007-11-09 2009-05-13 王巍 Fingerprint credit pen payment system, method and apparatus
CN101986641A (en) * 2010-10-20 2011-03-16 杭州晟元芯片技术有限公司 Trusted computing platform chip applicable to mobile communication equipment and authentication method thereof
US20130074170A1 (en) * 2011-09-16 2013-03-21 Google Inc Authenticating a user of a system using near field communication
CN103729948A (en) * 2014-01-13 2014-04-16 深圳市亚略特生物识别科技有限公司 Electronic payment method of mobile terminal with NFC (near field communication) and fingerprint functions
CN104965650A (en) * 2015-06-12 2015-10-07 福州瑞芯微电子有限公司 Control method and device for public place display equipment
CN105447366A (en) * 2015-11-11 2016-03-30 广州神马移动信息科技有限公司 Registration or login method and apparatus, electronic device, and programmable device

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113378146A (en) * 2021-05-27 2021-09-10 广州朗国电子科技有限公司 Method for quickly logging in user by using NFC

Also Published As

Publication number Publication date
CN105447366A (en) 2016-03-30

Similar Documents

Publication Publication Date Title
US10666642B2 (en) System and method for service assisted mobile pairing of password-less computer login
US10904234B2 (en) Systems and methods of device based customer authentication and authorization
US10348715B2 (en) Computer-implemented systems and methods of device based, internet-centric, authentication
US10541995B1 (en) First factor contactless card authentication system and method
US9838205B2 (en) Network authentication method for secure electronic transactions
US10754941B2 (en) User device security manager
US20180285555A1 (en) Authentication method, device and system
US9231925B1 (en) Network authentication method for secure electronic transactions
US9635014B2 (en) Method and apparatus for authenticating client credentials
US9166777B2 (en) Method and system for user authentication for computing devices utilizing PKI and other user credentials
KR101671351B1 (en) Privacy enhanced key management for a web service provider using a converged security engine
JP6374119B2 (en) Security protocol for integrated near field communication infrastructure
US10484372B1 (en) Automatic replacement of passwords with secure claims
US9723003B1 (en) Network beacon based credential store
EP3227823B1 (en) Remote crypto services using tpm of server
US10003467B1 (en) Controlling digital certificate use
US20140164762A1 (en) Apparatus and method of online authentication
US11044085B2 (en) Method employed in user authentication system and information processing apparatus included in user authentication system
US8397281B2 (en) Service assisted secret provisioning
US10645077B2 (en) System and method for securing offline usage of a certificate by OTP system
US10129299B1 (en) Network beacon management of security policies
WO2017080397A1 (en) Register or login method and device, electronic equipment, and programmable equipment
KR101570773B1 (en) Cloud authentication method for securing mobile service
US10063592B1 (en) Network authentication beacon
KR101350438B1 (en) Digital signature system for using se(secure element) inside mobile unit and method therefor

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16863574

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16863574

Country of ref document: EP

Kind code of ref document: A1