WO2019109817A1 - Short message verification method, apparatus, storage medium, short message verification system, and terminal - Google Patents

Short message verification method, apparatus, storage medium, short message verification system, and terminal Download PDF

Info

Publication number
WO2019109817A1
WO2019109817A1 PCT/CN2018/117129 CN2018117129W WO2019109817A1 WO 2019109817 A1 WO2019109817 A1 WO 2019109817A1 CN 2018117129 W CN2018117129 W CN 2018117129W WO 2019109817 A1 WO2019109817 A1 WO 2019109817A1
Authority
WO
WIPO (PCT)
Prior art keywords
short message
verified
verification
verification report
receiving device
Prior art date
Application number
PCT/CN2018/117129
Other languages
French (fr)
Chinese (zh)
Inventor
谢小亮
曾伟
刘君
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to CN201711276214.1 priority Critical
Priority to CN201711276214.1A priority patent/CN109889469A/en
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2019109817A1 publication Critical patent/WO2019109817A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L29/00Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/00 - H04L27/00
    • H04L29/02Communication control; Communication processing
    • H04L29/06Communication control; Communication processing characterised by a protocol
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements, e.g. access security or fraud detection; Authentication, e.g. verifying user identity or authorisation; Protecting privacy or anonymity ; Protecting confidentiality; Key management; Integrity; Mobile application security; Using identity modules; Secure pairing of devices; Context aware security; Lawful interception
    • H04W12/12Fraud detection or prevention
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/12Messaging; Mailboxes; Announcements
    • H04W4/14Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]

Abstract

The embodiments of the present invention provide a short message verification method, an apparatus, a storage medium, a short message verification system, and a terminal. The method comprises: receiving a short message to be verified, issued by a short message center or a short message gateway; calculating a check string corresponding to said short message; generating a verification report according to the calculated check string, and issuing the verification report to a receiving device configured to receive said short message, the verification report being used by said receiving device to verify the authenticity of said short message. By means of the embodiments of the present invention, the information and property safety of a user can be guaranteed while verifying the authenticity of a short message without the need for the receiving device to send the content of the short message to a server side, thereby effectively solving the problem in the related art of high expenses and large manpower and material resources consumed during the verification of the short message.

Description

SMS verification method, device, storage medium, short message verification system and terminal Technical field

The present invention relates to the field of communications, and in particular, to a short message verification method, apparatus, storage medium, short message verification system, and terminal.

Background technique

With the rapid development of communication technology, some criminals often use fake base stations to send false information. Due to the huge harm of pseudo base stations, users' rights and interests are greatly threatened. For example, due to the high incidence of SMS fraud, people are often deceived. The main reason why the masses are deceived is that it is impossible to distinguish which text messages are true and which text messages are fake. The method of SMS verification (also called SMS verification) is still lacking. Therefore, there is an urgent need for a fast set in the field of telecommunications. An accurate system approach to solve this technical problem.

In the prior art, the short message verification is mainly implemented by the following methods:

The user initiates SMS verification from the terminal and sends the SMS information to the server. The server uses the received SMS information to compare with the sent SMS database. If it exists, it indicates that the SMS is secure. If it does not exist, it indicates a hidden danger.

However, the above-mentioned method of verification will have the following problems:

Question 1: Due to the need to upload the user's SMS message to the server, this process may involve the risk of information leakage and infringement that may cause the server contractor to be fined a lot.

Question 2: Since the SMS verification active party is the user terminal, the possibility of implementation by the user is very low.

Question 3: A huge SMS cache database needs to be established, which is a very heavy server system, and the deployment and operation and maintenance costs are extremely high.

Question 4: Because all messages to be verified need to be sent from the terminal to the server again, the bandwidth requirements are very high.

In addition, the existing short message identification and security identification are based on smart phones, while the marking methods of functional machines (for example, old people's machines, children's mobile phones) and the like are missing.

In view of the problems associated with the related art in implementing SMS verification, it requires a relatively high cost and a large manpower and material resources, and no effective solution has been proposed yet.

Summary of the invention

The embodiment of the invention provides a method, a device, a storage medium, a short message verification system and a terminal for verifying a short message, so as to at least solve the problem of high cost and large manpower and material resources in realizing short message verification in the related art. problem.

According to an embodiment of the present invention, a method for verifying a short message is provided, which includes: receiving a short message to be verified sent by a short message center or a short message gateway; calculating a check string corresponding to the short message to be verified; The verification string generates a verification report, and the verification report is sent to a receiving device configured to receive the short message to be verified, wherein the verification report is used by the receiving device to The authenticity of the SMS to be verified is verified.

According to another embodiment of the present invention, a second method for verifying a short message is provided, including: receiving a verification report of the short message to be verified, wherein the verification report carries the calculated short message with the to be verified Corresponding verification string; comparing the verification string carried in the verification report with the locally stored verification string obtained by calculating the short message to be verified; determining the authenticity of the short message to be verified according to the comparison result .

According to another embodiment of the present invention, a first type of short message verification apparatus is provided, including: a first receiving module, configured to receive a short message to be verified sent by a short message center or a short message gateway; and a first calculating module configured to calculate a verification string corresponding to the to-be-verified short message; the processing module is configured to generate a verification report according to the calculated verification string, and send the verification report to the receiving the to-be-verified The receiving device of the short message, wherein the verification report is used by the receiving device to verify the authenticity of the short message to be verified.

According to another embodiment of the present invention, a second short message verification apparatus is further provided, including: a second receiving module, configured to receive a verification report of the short message to be verified, wherein the verification report carries a calculation a check string corresponding to the short message to be verified; a comparison module, configured to compare a check string carried in the verification report with a locally stored check string obtained by calculating the short message to be verified; The module is configured to determine the authenticity of the short message to be verified according to the comparison result.

According to another embodiment of the present invention, there is also provided a storage medium comprising a stored program, wherein the program is executed to perform the method of any of the above.

According to still another embodiment of the present invention, there is also provided a processor, the processor being arranged to run a program, wherein the program is executed to perform the method of any of the above.

According to still another embodiment of the present invention, a short message verification system is provided, including a short message center or a short message gateway, and a first processor, wherein the short message center or the short message gateway is used to send a short message to be verified. a receiving device and the first processor; the first processor is connected to the short message center or the short message gateway, and is configured to receive the short message to be verified delivered by the short message center or the short message gateway, and calculate Determining a verification string corresponding to the verified short message, and generating a verification report according to the calculated verification string, and transmitting the verification report to the receiving device, where the verification report is used for The receiving device verifies the authenticity of the short message to be verified.

According to still another embodiment of the present invention, a terminal is provided, including a second processor, where the second processor is configured to receive a verification report of a short message to be verified, where the verification report carries Calculating a check string corresponding to the short message to be verified; comparing the check string carried in the verification report with a locally stored check string obtained by calculating the short message to be verified; determining according to the comparison result The authenticity of the short message to be verified.

Through the embodiment of the present invention, the verification report of the to-be-verified short message can be generated by the server side (ie, the short message verification system side), so that the device receiving the short message can verify the authenticity of the short message according to the verification report. The receiving device does not need to send the short message content to the server side, thereby ensuring the authenticity of the short message while ensuring the security of the user's information and property, and effectively solving the cost incurred in implementing the short message verification in the related art. Large human and material problems.

DRAWINGS

The drawings described herein are intended to provide a further understanding of the invention, and are intended to be a part of the invention. In the drawing:

1 is a block diagram showing the hardware structure of a mobile terminal of a short message verification method according to an embodiment of the present invention;

2 is a flowchart of a first method for verifying a short message according to an embodiment of the present invention;

3 is a flowchart of a second method for verifying a short message according to an embodiment of the present invention;

4 is a flowchart of a method for short message verification based on a data network according to an embodiment of the present invention;

FIG. 5 is a flowchart of a short message verification method based on a short message method according to an embodiment of the present invention; FIG.

6 is a structural block diagram of a first short message verification apparatus according to an embodiment of the present invention;

7 is a structural block diagram of a second short message verification apparatus according to an embodiment of the present invention;

FIG. 8 is a structural block diagram of a short message verification system according to an embodiment of the present invention; FIG.

9 is a flow chart of an online intelligent machine short message verification according to an embodiment of the present invention;

10 is a flowchart of a short message verification of an offline intelligent machine according to an embodiment of the present invention;

11 is a flow chart of a function machine short message verification according to an embodiment of the present invention;

12 is a flow chart of a short message verification and verification report push according to an embodiment of the present invention;

FIG. 13 is a schematic diagram of displaying a “verified” identifier of a terminal short message interface according to an embodiment of the present invention;

FIG. 14 is a schematic diagram of a short message verification report popup window according to an embodiment of the present invention.

Detailed ways

The invention will be described in detail below with reference to the drawings in conjunction with the embodiments. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict.

It is to be understood that the terms "first", "second" and the like in the specification and claims of the present invention are used to distinguish similar objects, and are not necessarily used to describe a particular order or order.

In the related art, the short message verification mechanism mainly includes the following three types of mechanisms:

Mechanism 1: Encrypted transmission of SMS content. This kind of technology can solve the problem of illegal interception of user SMS information by criminals, but it cannot solve the problem of authenticity of SMS messages received by users;

Mechanism 2: Identify and classify SMS risks by SMS content keywords. Such mechanisms strongly rely on key information stored in the local database. Unidentified SMS messages such as pseudo base stations cannot be identified, and local database updates have time differences. This time difference is very prone to errors and omissions. ;

Mechanism 3: The big data SMS verification represented by some spam identification system relies entirely on big data analysis (all the user's SMS keyword information needs to be uploaded to their database, this process may have infringement on the user) At the same time, such applications are not connected to the operator, and the recognition rate is less than 100%;

It can be seen that the verification capability of the above-mentioned short message verification mechanism in the related art is limited and the verification accuracy is relatively low.

In order to solve the problem of at least one of the related technologies, the present invention provides a complete set of SMS security verification mechanisms for intelligent terminals and function machines that can be accessed within an operator. The recognition rate can reach 100%; the method does not need to obtain any short message information from the terminal (ie, the receiving device), and can easily pass the requirements of the EU GDPR Act; the implementation system of the method belongs to a lightweight system, and can realize the industry SMS server provider (Service) Provider, referred to as SP) certification, has a high commercial value; it can directly perform SMS verification on the operator or the verification system, and push the SMS verification report to the terminal; after the terminal matches the specific SMS, it will display the verification according to the configured template. As a result, the user can identify junk and illegal text messages based on the verification results displayed by the terminal. In the entire interaction process, no message transmission of the user is involved. Greatly protect the user's information and property security, and reduce the success rate of SMS fraud in the telecommunications field. The following describes various embodiments of the present invention:

The method embodiments provided in the embodiments of the present application may be executed in a mobile terminal, a computer terminal, or the like. Taking a mobile terminal as an example, FIG. 1 is a hardware structural block diagram of a mobile terminal of a short message verification method according to an embodiment of the present invention. As shown in FIG. 1, mobile terminal 10 may include one or more (only one shown in FIG. 1) processor 102 (processor 102 may include, but is not limited to, a processing device such as a microprocessor MCU or a programmable logic device FPGA. ), a memory 104 that is set to store data, and a transmission device 106 that is set to a communication function. It will be understood by those skilled in the art that the structure shown in FIG. 1 is merely illustrative and does not limit the structure of the above electronic device. For example, the mobile terminal 10 may also include more or fewer components than those shown in FIG. 1, or have a different configuration than that shown in FIG.

The memory 104 can be configured as a software program and a module for storing application software, such as a program instruction/module corresponding to the short message verification method in the embodiment of the present invention, and the processor 102 executes each by executing a software program and a module stored in the memory 104. A functional application and data processing, that is, the above method is implemented. Memory 104 may include high speed random access memory, and may also include non-volatile memory such as one or more magnetic storage devices, flash memory, or other non-volatile solid state memory. In some examples, memory 104 may further include memory remotely located relative to processor 102, which may be connected to mobile terminal 10 over a network. Examples of such networks include, but are not limited to, the Internet, intranets, local area networks, mobile communication networks, and combinations thereof.

Transmission device 106 is arranged to receive or transmit data via a network. The above-described network specific example may include a wireless network provided by a communication provider of the mobile terminal 10. In one example, the transmission device 106 includes a Network Interface Controller (NIC) that can be connected to other network devices through a base station to communicate with the Internet. In one example, the transmission device 106 can be a Radio Frequency (RF) module configured to communicate with the Internet wirelessly.

A method for verifying a short message is also provided in the embodiment of the present invention. FIG. 2 is a flowchart of a first method for verifying a short message according to an embodiment of the present invention. As shown in FIG. 2, the process includes the following steps:

Step S202, receiving a short message to be verified sent by the short message center or the short message gateway;

Step S204, calculating a check string corresponding to the short message to be verified;

Step S206, generating a verification report according to the calculated verification string, and sending the verification report to the receiving device configured to receive the short message to be verified, wherein the verification report is used by the receiving device to be verified. The authenticity of the text message is verified.

The device performing the foregoing operations may be a device on the server side, and when calculating the check string corresponding to the short message to be verified, the calculation may be performed according to a predetermined algorithm, and the algorithm may be flexibly set according to actual conditions, where the check string is The generation method is not unique, and can be generated by a conventional report generation method, as long as the generated verification report has relevant information and a check string.

In this embodiment, the verification report of the short message to be verified can be generated by the server side, so that the device receiving the short message can verify the authenticity of the short message according to the verification report, and the receiving device does not need to send the short message content to the server side. The information and property security of the user can be ensured while verifying the authenticity of the short message, and the problem of high cost and large manpower and material resources in realizing the short message verification in the related technology is effectively solved.

In an optional embodiment, calculating the check string corresponding to the short message to be verified includes: calculating, according to the sending device information of the short message to be verified, that the sending device has the short message verifying authority, calculating and verifying The verification string corresponding to the short message. In this embodiment, the sending device with the short message verification authority may be the sending device that has paid the short message verification fee. If it is determined that the sender of the short message to be verified does not have the short message verification authority, the short message sent is not verified.

In an optional embodiment, generating the verification report according to the calculated verification string includes: determining related information of the short message to be verified, wherein the related information includes at least one of the following: sending the short message to be verified. The sending device information, the sending time information of the short message to be verified, the content of the short message to be verified, and the information of the receiving device; generating the verification report by the related information and the check string. In this embodiment, in actual operation, it is preferable to carry at least the sending device information, so as to facilitate the receiving device to perform a corresponding searching operation according to the sending device information.

In an optional embodiment, the sending the verification report to the receiving device configured to receive the short message to be verified includes: determining a device type of the receiving device; and transmitting the verification report to the receiving device according to the device type . In this embodiment, the transmission manners corresponding to different types of devices may be different.

In an optional embodiment, determining the device type of the receiving device includes: determining a device type of the receiving device by querying the registration information of the receiving device; in this embodiment, the receiving device may report the device itself when registering in advance The type of device (for example, a smart phone or a feature machine).

In an optional embodiment, the sending the verification report to the receiving device according to the device type includes: determining that the device type is a smart machine, determining a network connection status of the smart device; In the state, the verification report is sent to the receiving device through the data network or the wireless network; when it is the offline state of the unconnected network, the verification report is sent to the receiving device by means of the short message sending; the device type is determined to be the function machine. In the case of sending a verification report to the receiving device by means of short message transmission. In this embodiment, the information receiving manners supported by different types of receiving devices are different. For the smart phone, when it is connected to the network, it can receive information through the wireless network or the data network, but for the unconnected network. In the case of an intelligent machine and a function machine, it is impossible to receive information through a wireless network or a data network, and information can only be received by receiving a short message. In this embodiment, when the verification report is sent to the receiving device by means of short message sending, the verification report may be sent to the receiving device by means of a shadow short message or a binary short message.

In an optional embodiment, determining the network connection status of the smart machine includes: determining identification information of the receiving device; determining a network connection status of the smart machine by using the identification information to query a database, wherein the database is used for storing Correspondence between the identification information of the device and the network connection status of the device. In this embodiment, in order to be able to query the status of the receiving device, the server side needs to perform link keep-alive with the receiving device. Since the smart machine can perform data network connection and wireless network connection, data can be utilized during keep-alive operation. The network or wireless network transmits bearer data as a bearer. In addition, in practical applications, the receiving device can also actively report its own status at regular intervals.

In the embodiment of the present invention, a short message verification method that can be run on the terminal shown in FIG. 1 is provided. FIG. 3 is a flowchart of a second short message verification method according to an embodiment of the present invention, as shown in FIG. The process includes the following steps:

Step S302, receiving a verification report of the short message to be verified, where the verification report carries the calculated verification string corresponding to the short message to be verified;

Step S304, comparing the check string carried in the verification report with the locally stored check string obtained by calculating the short message to be verified;

Step S304, determining the authenticity of the short message to be verified according to the comparison result.

The performing the above operation may be a receiving device of a short message, for example, a user equipment UE. The received verification report may be sent by the server, and the verification string corresponding to the short message to be verified may be calculated according to a predetermined algorithm.

In this embodiment, the verification report of the short message to be verified can be generated by the server side, so that the device receiving the short message can verify the authenticity of the short message according to the verification report, and the receiving device does not need to send the short message content to the server side. It can ensure the security of the user's information and property while verifying the authenticity of the text message, and effectively solve the problem that the related technology cannot effectively implement the short message verification.

In an optional embodiment, before the comparison between the verification string carried in the verification report and the verification string calculated by the local pre-verification of the short message, the method further includes: receiving the short message to be verified. Calculating a check string corresponding to the short message to be verified; storing the check string and the sending device information of the short message to be verified in the short message check string library. In this embodiment, when receiving the short message to be verified, the receiving may be performed according to the conventional short message receiving manner. When calculating the check string, the same algorithm as the server side is used for calculation. In the embodiment of the present invention, the same algorithm may be set in advance on the receiving device and the server side, or the algorithm may be determined by dynamic negotiation between the receiving device and the server side, but the algorithms on the receiving device and the server side need to be consistent.

In an optional embodiment, comparing the check string carried in the verification report with the locally stored check string obtained by calculating the short message to be verified includes: sending device information carried in the verification report according to the foregoing The check string corresponding to the sending device information is searched in the short message check string library; the check string carried in the comparison report is compared with the found check string corresponding to the sending device information. In this embodiment, the receiving device side can compare whether the verification string generated by the calculation by the server side is consistent with the verification string generated by the local calculation, and if the two are consistent, the short message to be verified is true, if the two are inconsistent If the short message to be verified is forged, in the embodiment, the short message is true, indicating that the short message is sent by the legal base station, and the fake short message is sent by the pseudo base station.

In an optional embodiment, after determining the authenticity of the short message to be verified according to the comparison result, the method further includes: adding a verified identifier to the short message to be verified when determining that the short message to be verified is true . In this embodiment, the verified identifier may be added to the verified text message, and the identifier may be in any form, which may be a way of adding text, or adding a symbol (for example, “√”), in some manners. In this case, you can also adjust the form of the text message display (for example, the displayed color, font) (in this case, you can create a link for the verified text message to enable the user to know the verification report through the link) .

In an optional embodiment, after the verified identifier is added to the short message to be verified, the method further includes: generating a verification report according to the comparison result; and linking the verified identifier with the verification report. In this embodiment, the verification report can be generated and saved to facilitate subsequent viewing, and the specific generated verification report can be automatically linked to and displayed when the verified identification is clicked. Therefore, in the related art, since the terminal side does not store the content of the verification result, the user needs to check the verification result again, and repeats the verification of the short message to consume more user traffic.

The above embodiments are separately described from the server side and the receiving device side respectively, and the present invention is generally described below in conjunction with the server side and the receiving device side:

4 is a flowchart of a method for verifying a short message based on a data network according to an embodiment of the present invention. The specific process is shown in FIG. 4, where

The first step indicates that the service provider (Service Provider, SP for short) sends the enterprise text message through the SMS center or the SMS gateway of the operator.

Steps 2 and 3 indicate that the short message center or the short message gateway is responsible for sending a short message to the short message receiver terminal (corresponding to the above receiving terminal) through the short message protocol.

Step 4: After the terminal receives the short message, the APP in the terminal reads the short message, and calculates a short message hash string (corresponding to the above check string) according to an algorithm consistent with the server, and stores it in the local database (corresponding to the above) SMS check string library).

After the step 5 indicates that the enterprise short message of the SP is successfully delivered, the short message center or the short message gateway copies the short message to the short message verification server (corresponding to the above short message verification system) in the embodiment of the present invention, and the short message verification server receives the message. After the short message (corresponding to S202 in FIG. 2), the hash string corresponding to the short message is calculated according to an algorithm consistent with the APP, and the SP message is queried by the short message sender, the verification time, etc., and combined into a verification report (corresponding to S204-206 in Fig. 2).

Steps 6 and 7 describe the process by which the SMS verification server pushes the verification report to the terminal over the data network.

Step 8 describes that after receiving the verification report, the APP takes out the hash string and matches the terminal local hash string library, and displays the flow of the verification report according to the matching result (corresponding to steps S302-S304 in FIG. 3).

FIG. 5 is a flowchart of a short message verification method based on a short message method according to an embodiment of the present invention. The specific process is shown in FIG. 5, wherein:

The first step indicates that the industry SMS SP sends the enterprise text message through the operator's SMS center or SMS gateway.

Steps 2 and 3 indicate that the short message center or the short message gateway is responsible for sending a short message to the short message receiver terminal through the short message protocol.

After the terminal receives the short message, the smart phone reads the short message through the APP (the function machine through the short message receiving module), and calculates the short message hash string according to the algorithm consistent with the server, and stores it in the local database.

Step 5 indicates that after the enterprise SMS of the SP is successfully delivered, the SMS center or the SMS gateway copies the short message to the short message verification server of the patent, and the short message verification server receives the short message (corresponding to S202 of FIG. 2), according to The algorithm consistent with the APP calculates a hash string corresponding to the short message (corresponding to S204 of FIG. 2), and simultaneously queries the SP information, the verification time, and the like by the short message sender, and combines them into a verification report (corresponding to S206 in FIG. 2). A verification report is generated based on the calculated check string.

Steps 6 and 7 describe the process in which the short message verification server pushes the verification report to the terminal through the short message transmission protocol (shadow message or binary message) (corresponding to the verification report sent in S206 of FIG. 2 is set to receive The receiving device of the above-mentioned short message to be verified).

Step 8 describes the processing flow after the terminal receives the verification report. After receiving the verification report through the APP (the function machine through the short message receiving module), the smart machine takes out the hash string and matches the terminal local hash string library, and displays the flow of the verification report according to the matching result (corresponding to FIG. 3). Process).

Through the description of the above embodiments, those skilled in the art can clearly understand that the method according to the above embodiment can be implemented by means of software plus a necessary general hardware platform, and of course, by hardware, but in many cases, the former is A better implementation. Based on such understanding, the technical solution of the present invention, which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a storage medium (such as ROM/RAM, disk, The optical disc includes a number of instructions for causing a terminal device (which may be a cell phone, a computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.

In the embodiment, a short message verification device is provided, which is used to implement the foregoing embodiments and preferred embodiments, and has not been described again. As used below, the term "module" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.

FIG. 6 is a structural block diagram of a first short message verification apparatus according to an embodiment of the present invention. As shown in FIG. 6, the apparatus includes a first receiving module 62, a first calculating module 64, and a processing module 66. Description:

The first receiving module 62 is configured to receive the short message to be verified sent by the short message center or the short message gateway; the first calculating module 64 is connected to the first receiving module 62, and is configured to calculate the short message corresponding to the to-be-verified according to a predetermined algorithm. The verification module 66 is connected to the first calculation module 64, and configured to generate a verification report according to the calculated verification string, and send the verification report to the short message set to receive the verification. The receiving device, wherein the verification report is used for verifying the authenticity of the short message to be verified by the device.

In an optional embodiment, the first calculating module 64 includes: a calculating unit, configured to calculate, according to a predetermined algorithm, that the sending device has the short message verifying authority according to the sending device information of the short message to be verified. The check string corresponding to the short message to be verified.

In an optional embodiment, when the verification report is generated according to the calculated verification string, the processing module 66 includes: a first determining unit, configured to determine related information of the short message to be verified, where The related information includes at least one of the following: a sending device information for sending the short message to be verified, a sending time information of the short message to be verified, a content of the short message to be verified, and information of the receiving device, and a generating unit configured to The related information and the check string generate the verification report.

In an optional embodiment, when the verification report is sent to the receiving device that is configured to receive the short message to be verified, the processing module 66 includes: a second determining unit, configured to determine the device of the receiving device. The type; the sending unit is configured to send the verification report to the receiving device according to the device type.

In an optional embodiment, the second determining unit is configured to: determine the device type of the receiving device by querying the registration information of the receiving device; in this embodiment, the receiving device may report the self in the pre-registration The type of device (for example, a smart phone or a feature machine).

In an optional embodiment, the sending unit is configured to determine a network connection status of the smart device when the device type is determined to be a smart phone, and a data network or a wireless network when the online state of the network is connected. The verification report is sent to the receiving device; when it is the offline state of the unconnected network, the verification report is sent to the receiving device by means of short message sending; when the device type is determined to be the function machine, the method of sending the short message is sent Send the verification report to the receiving device.

In an optional embodiment, the sending unit may determine the network connection status of the smart machine by determining the identification information of the receiving device by using the identification information to query the database, and determining the network connection status of the smart machine. The database is used to store the correspondence between the identification information of the device and the network connection status of the device.

Figure 6 and related embodiments can be applied to the server side.

In the embodiment of the present invention, a short message verification device is provided. FIG. 7 is a structural block diagram of a second short message verification device according to an embodiment of the present invention. As shown in FIG. 7, the device includes a second receiving module 72. Comparing module 74 and determining module 76, the device is described below:

The second receiving module 72 is configured to receive a verification report of the short message to be verified, where the verification report carries a verification string corresponding to the to-be-verified short message calculated according to a predetermined algorithm; and the comparison module 74 is connected to The second receiving module 72 is configured to compare the check string carried in the verification report with the check string calculated by the locally stored short message to be verified, and the determining module 76 is connected to the comparison module 74 to set In order to determine the authenticity of the above-mentioned short message to be verified according to the comparison result.

In an optional embodiment, the foregoing apparatus further includes: a third receiving module, configured to compare the check string carried in the verification report with the check string calculated by the local pre-verified short message Receiving the short message to be verified; the second calculating module is configured to calculate a check string corresponding to the short message to be verified according to the predetermined algorithm; and the storage module is configured to send the check string and the sending device information of the short message to be verified Correspondingly stored in the SMS check string library.

In an optional embodiment, the comparison module includes: a searching unit, configured to search, in the short message check string library, a check string corresponding to the sending device information according to the sending device information carried in the verification report; The comparing unit is configured to compare the check string carried in the verification report and the found check string corresponding to the sending device information.

In an optional embodiment, the foregoing apparatus is further configured to: after determining the authenticity of the short message to be verified according to the comparison result, adding a verified identifier to the short message to be verified when determining that the short message to be verified is true .

In an optional embodiment, the apparatus is further configured to: after adding the verified identifier to the short message to be verified, generate a verification report according to the comparison result; and link the verified identifier with the verification report.

FIG. 7 and related embodiments can be applied to the receiving device side (ie, the UE side).

The present invention will be specifically described below in conjunction with specific embodiments:

Embodiment 1

In this embodiment, a system is provided, the framework of which is shown in FIG. 8. FIG. 8 is a structural block diagram of a short message verification system according to an embodiment of the present invention, which mainly includes the following modules:

The native Native or Internet SMS verification APP on the smart terminal: (The operations performed in the native Native or APP are consistent with the operations performed by the second receiving module 72, the comparison module 74 and the determining module 76 described above): responsible for receiving and The test truth information, the system client in this embodiment is displayed. After receiving the short message, the same message verification string generation rule as the server is used to generate a short message check string, and is stored in the terminal short message check string library. After receiving the verification result, the SP information and the short message verification string information are parsed. The check string is searched from the local short message check string library, and different verification results are displayed according to the result of the query.

The SMS verification module developed by the function machine is customized: (The operation performed in the SMS verification module customized by the function machine is the same as the operation performed by the second receiving module 72, the comparison module 74 and the determination module 76 described above): After receiving the short message, the system client in this embodiment uses the same short message check string generation rule as the server to receive the short message, and generates a short message check string, which is stored in the terminal short message check string library. After receiving the verification result, the SP information and the short message verification string information are parsed. The check string is searched from the local short message check string library, and different verification results are displayed according to the query result.

The new access module of the SMS is added. The operation performed by the new access module of the SMS is the same as that of the first receiving module 62. The module is responsible for the short message center (hereinafter referred to as SMSC) or the short message gateway (hereinafter referred to as SMGW). The module is connected to receive the key information of the short message. The module is part of the system server of the present invention. The SMSC or SMGW module directly interfaces with the module to use the module to send short message information (including but not limited to the sender of the short message, the sending time, and the short message. The content, the message recipient, and the like are delivered to the system described in the embodiment of the present invention.

The short message verification module (the operation performed by the short message verification module is consistent with the first calculation module 64 described above): the module is responsible for the short message verification, and can pass the verification result to the downstream module. For example, the sender's number information is queried through the industry SMS payment SP list, whether it exists, whether it is a paid SP, SP level, etc., and is also responsible for passing hash algorithms (including but not limited to MD5, SHA, etc.), symmetric encryption algorithms, or non- The symmetric encryption algorithm acquires a unique string representing the entire short message, and the above information will be transmitted to the short message verification report pushing module as part of the verification result.

The short message verification report pushing module (the operation performed by the short message verification report pushing module is consistent with the processing module 66 described above): the module is mainly responsible for encapsulating the real short message verification report, and selecting an appropriate pushing mode to send the report to the terminal. The module mainly has several functions: firstly, according to the terminal type (including the smart machine or the function machine), the push mode is selected; the short message verification report is encapsulated according to the verification report template configured by the system; and finally the short message verification report is pushed to the terminal.

The link keep-alive module is responsible for processing the registration and link keep-alive process of the terminal client, and for other modules of the system to query the status of the smart terminal. This module is mainly applicable to intelligent terminals, and uses the data network of the terminal or the WIFI network as the bearer mode to transmit keep-alive data. Each time the terminal starts, it sends a login request to the system. The request needs to carry at least the terminal number (representing the identity of the recipient of the short message, such as the phone number of the recipient of the short message) and the type of the terminal (currently there are two main types: smart machine and function machine) To the server; at the same time, other modules of the system query the status of the smart terminal. Here, two states are defined: "smart machine terminal online" and "smart machine terminal offline", and the system updates the terminal status every time the system receives the keep-alive message sent by the terminal APP.

Specific embodiment 2:

In this embodiment, an online intelligent machine short message verification process is provided. As shown in FIG. 9, the method includes the following steps:

Step 1. The SP or MO terminal (sender sender) sends a text message through the operator, and the message is finally delivered to the SMSC or SMGW.

Step 2: After receiving the short message sending request, the SMSC or the SMGW sends a copy of the key information of the short message (including but not limited to the short message sender, the sending time, the short message content, the short message receiver, etc.) to the embodiment of the present invention. In the system (corresponding to S202 in Fig. 2).

Step 3: The SMS new access module converts the external request into an internal request format and sends it to the short message verification module.

Step 4: After receiving the request, the short message verification module firstly stores the short message uniformly for traceability; at the same time, the module is responsible for the specific verification process, for example, querying the sender number information through the industry SMS payment SP list, whether it exists, whether Pay SP, SP level and other information, and also be responsible for obtaining a unique string representing the entire message by hash algorithm (including but not limited to MD5, SHA, etc.), symmetric encryption algorithm or asymmetric encryption algorithm (ie, calculation and above) The verification string corresponding to the short message corresponds to S204) of FIG. 2, and the above information will be transmitted to the short message verification report pushing module as part of the verification result.

Step 5: After receiving the verification result, the short message verification report pushing module first finds the configured short message verification report template and encapsulates the real verification report.

Step 6: Next, the push module acquires the terminal type (the system sets the terminal type to include two types of "smartphone terminal" and "function machine terminal" for convenience of description), and assumes that the acquired terminal type is "smartphone terminal".

Step 7: The short message verification report pushing module sends a terminal status query request to the link keep-alive module (must carry the terminal number information used for registration).

Step 8: After receiving the status query request, the link keep-alive module parses the request to obtain the terminal number information, and then queries the database to obtain the status of the terminal where the number is located. Assume that the acquired status is the "online" status.

Step 9, the push module selects the "online status" queried in step 8, selects the data network (IP network) mode to send the verification report to the smart terminal (corresponding to S206 of FIG. 2), and the terminal performs the short message matching and the verification result. Show.

Specific embodiment 3:

In this embodiment, an offline smart phone short message verification process is provided, as shown in FIG. 10, including the following steps:

Step 1. The SP or MO terminal (sender sender) sends a text message through the operator, and the message is finally delivered to the SMSC or SMGW.

Step 2: After receiving the short message sending request, the SMSC or the SMGW sends a copy of the key information of the short message (including but not limited to the short message sender, the sending time, the short message content, the short message receiver, etc.) to the embodiment of the present invention. In the system (corresponding to S202 of Fig. 2).

Step 3: The SMS newly added access module converts the external request into an internal request format and sends it to the short message verification module.

Step 4: After receiving the request, the short message verification module firstly stores the short message uniformly for traceability; at the same time, the module is responsible for the specific verification process, for example, querying the sender number information through the industry SMS payment SP list, whether it exists, whether Pay SP, SP level and other information, and also be responsible for obtaining a unique string representing the entire message by hash algorithm (including but not limited to MD5, SHA, etc.), symmetric encryption algorithm or asymmetric encryption algorithm (ie, calculation and above) The verification string corresponding to the short message corresponds to S204) of FIG. 2, and the above information will be transmitted to the short message verification report pushing module as part of the verification result.

Step 5: After receiving the verification result, the short message verification report pushing module first finds the configured short message verification report template and encapsulates the real verification report.

Step 6: Next, the push module acquires the terminal type (the system sets the terminal type to include two types of "smartphone terminal" and "function machine terminal" for convenience of description), and assumes that the acquired terminal type is "smartphone terminal".

Step 7: The short message verification report pushing module sends a terminal status query request to the link keep-alive module (must carry the terminal number information used for registration).

Step 8: After receiving the status query request, the link keep-alive module parses the request to obtain the terminal number information, and then queries the database to obtain the status of the terminal where the number is located. Assume that the acquired status is "not online".

Step 9: The push module selects a shadow message or a binary message mode to send a verification report to the smart terminal according to the “not online status” queried in step 8 (corresponding to S206 in FIG. 2), and the terminal performs short message matching and verification result. Show. These two kinds of short messages belong to the invisible short message of the user, and are directly processed by the APP, and the user experience is good.

Specific Embodiment 4:

In this embodiment, a function message short message verification process is provided, as shown in FIG. 11, including the following steps:

Step 1. The SP or MO terminal (sender sender) sends a text message through the operator, and the message is finally delivered to the SMSC or SMGW.

Step 2: After receiving the short message sending request, the SMSC or the SMGW sends a copy of the key information of the short message (including but not limited to the short message sender, the sending time, the short message content, the short message receiver, etc.) to the embodiment of the present invention. In the described system (corresponding to S202 of Fig. 2).

Step 3: The SMS newly added access module converts the external request into an internal request format and sends it to the short message verification module.

Step 4: After receiving the request, the short message verification module firstly stores the short message uniformly for traceability; at the same time, the module is responsible for the specific verification process, for example, querying the sender number information through the industry SMS payment SP list, whether it exists, whether Pay SP, SP level and other information, and also be responsible for obtaining a unique string representing the entire message by hash algorithm (including but not limited to MD5, SHA, etc.), symmetric encryption algorithm or asymmetric encryption algorithm (ie, calculation and above) The verification string corresponding to the short message corresponds to S204) of FIG. 2, and the above information will be transmitted as a part of the verification result to the short message verification report pushing module.

Step 5: After receiving the verification result, the short message verification report pushing module first queries whether the terminal type is “smartphone terminal” or “function machine terminal”, and assumes that the acquired terminal type is “function machine terminal”. Then the push module finds the configured SMS verification report template and encapsulates the real verification report.

In step 6, the push module selects the shadow message or the binary message mode to send the verification report to the function machine (corresponding to S206 of FIG. 2), and the terminal performs the short message matching and the verification result display. These two kinds of short messages belong to the invisible short message of the user, and are directly handled by the terminal CLIENT, and the user experience is good.

Embodiment 5:

In this embodiment, a short message verification and verification report pushing process is provided, as shown in FIG. 12, including the following steps:

Step 1: The SMSC or the SMGW first delivers the short message sent by the SP to the user terminal. In the embodiment of the present invention, the client needs to have the short message access right, and after receiving the short message, the terminal can use the four parameters of the short message sender, the sending time, the content, and the short message receiver to do HASH ( The hash string calculation rule of MD5 and SHA algorithm generates a local short message hash string and stores it in the local database. At the same time, the client needs to record the correspondence between the hash string and the short message locally, so that it is convenient to quickly find the short message, and finally form a Local SMS hashing library.

Step 2: After the SMSC or the SMGW sends the short message to the terminal successfully, a short message information (corresponding to S204 in FIG. 2) is sent to the short message verification system mentioned in the embodiment of the present invention, and the system performs the short message verification. .

In step 3, the system converts the external request in step 1 into an internal verification request format, and passes the verification module to continue processing.

Step 4: After receiving the request, the short message verification module first queries the sender's number information through the industry SMS payment SP list, whether there is information, whether the SP and the SP level are paid, and the sender of the short message, the sending time, the content, and the short message receiving. The four parameters are combined to perform HASH (MD5, SHA algorithm) to obtain a hash string representing the entire short message (that is, a check string corresponding to the above short message is calculated, corresponding to S204 of FIG. 2). The previously obtained SP information and hash string will be part of the verification result.

Step 5: After the verification result is obtained, the system will package the short report according to the result and the obtained short message verification template.

Step 6. Next, the system needs to select a suitable push mode. The selection here is based on the terminal status ("online", "offline") and the terminal type ("smartphone terminal", "function machine terminal").

Step 7. After the system successfully selects the appropriate push mode, the system directly pushes the verification report (corresponding to S206 of FIG. 2).

Step 8. After receiving the verification report (corresponding to S302 of FIG. 3), the terminal side parses out the SP information and the SMS hash string. Then, it is found whether the hash string exists in the hash string library calculated in step 1, and if so, the "verified" flag is displayed on the right side of the short message corresponding to the hash string. At the same time, according to the locally configured verification report detailed information module, a detailed report of the verification of the short message is obtained and stored for the user to view at any time. After the user sees the "verified" identifier of the APP or the short message interface, as shown in FIG. 13 and FIG. 14, the identification information can be directly clicked to view the verification report detailed information (corresponding to S304-S306 of FIG. 3).

In addition, in the SMS adding process of FIG. 9, FIG. 10 and FIG. 11, the SMSC or the SMGW needs to write at least the sender of the short message, the specific sending time, the short message content, the recipient of the short message, and the like through the SMS new access module. In the system described in the embodiment of the invention.

In the embodiment of the present invention, in order to be able to query the status of the smart terminal ("online" or "offline"), the terminal and the authentication system are required to perform link keep-alive. In the embodiment of the present invention, the data network or the WIFI network of the terminal is selected as the bearer mode, and the keep-alive data is transmitted. In order to ensure that data is not intercepted or forged, communication and transmission methods must be secure and streamlined. Before the keepalive, the terminal must log in first. The login request must carry at least the terminal number (representing the identity of the sender of the message, such as the phone number of the recipient of the message), the type of the terminal ("smartphone terminal", "function machine terminal") and other data. After the login is successful, the terminal actively keeps alive. In the embodiment of the present invention, the specific implementation mechanism (for example, the keep-alive transmission mode and the keep-alive protocol field format) is not limited, but the implementation needs to consider secure transmission and saving, for example, sending \r\n\r\n TLS keepalive message.

The smart terminal APP described in FIG. 8 of the present invention includes a short message verification application downloaded from each major application mall or AppStore, and also includes a native short message verification true APP of each smart phone.

In the embodiment of the present invention, the unique string information generation mechanism of the system-side short message is not limited. For example, in a specific implementation, an MD5 or SHA hashing algorithm may be used, and a short message sender, a sending time, a short message content, and a short message receiver may be combined to form a hash algorithm to generate a unique string; and the terminal also needs to adopt The same rules, otherwise the SMS match will fail.

The system push mode is not limited in the embodiment of the present invention. The specific implementation can take into account the safe transmission, saving and the feasibility of the solution. For example, the smart terminal preferentially adopts the data network push, and the shadow or binary short message mode is adopted when the data network is not connected. The function machine is mainly pushed by shadow or binary message.

The client side of the present invention needs to store the verification information pushed by the verification server into the local database, so as to be able to view the verification result in the "flight mode" or the scene without any signal (2G, 3G, 4G). .

The solution in the embodiment of the present invention can be applied to multiple scenarios, and can be applied to scenarios such as pseudo base station short message identification and operator industry SMS payment SP authentication. In the present invention, an example of an operator industry SMS payment SP authentication is illustrated.

Assume that the paid SP is a certain bank. The certain bank wants to notify a certain bank cardholder by SMS to conduct SMS promotion (such as financial management, red envelopes or general merchandising, etc.). In order to win the trust of a certain bank card holder, and also to avoid forgery of SMS fraud, a certain bank paid the operator for a text message verification value-added service. The service is for each sales message sent from a certain bank, and the operator verification network element will actively push a short message verification report to the mobile terminal. After receiving the report, the cardholder mobile terminal will display the "verified" logo on the right side of the SMS or APP interface, as shown in Figure 13.

At the same time, the cardholder can also click on the "verified" logo to display the detailed information of the verification report, such as "has passed the China Mobile certification, confirmed by a certain bank, verification time: 2011.07.0512:34:56", as shown in Figure 14. Shown.

It should be noted that each module in the embodiment of the present invention may be implemented by software or hardware. For the latter, the foregoing may be implemented by, but not limited to, the foregoing modules are all located in the same processor; The individual modules are located in different processors in any combination.

Embodiments of the present invention also provide a storage medium including a stored program, wherein the program described above executes the method of any of the above.

Optionally, in the embodiment, the foregoing storage medium may include, but is not limited to, a USB flash drive, a Read-Only Memory (ROM), and a Random Access Memory (RAM). A variety of media that can store program code, such as a hard disk, a disk, or an optical disk.

Embodiments of the present invention also provide a processor configured to execute a program, wherein the program is operative to perform the steps of any of the above methods.

According to still another embodiment of the present invention, a short message verification system is provided, including a short message center or a short message gateway, and a first processor, wherein the short message center or the short message gateway is used to send a short message to be verified. a receiving device and the first processor; the first processor is connected to the short message center or the short message gateway, and is configured to receive the short message to be verified delivered by the short message center or the short message gateway, and calculate Determining a verification string corresponding to the verified short message, and generating a verification report according to the calculated verification string, and transmitting the verification report to the receiving device, where the verification report is used for The receiving device verifies the authenticity of the short message to be verified. In this embodiment, the first processor is consistent with the foregoing first receiving module 62, the first computing module 64, and the processing module 66 when performing a specific operation, and details are not described herein again.

According to still another embodiment of the present invention, a terminal is provided, including a second processor, where the second processor is configured to receive a verification report of a short message to be verified, where the verification report carries Calculating a check string corresponding to the short message to be verified; comparing the check string carried in the verification report with a locally stored check string obtained by calculating the short message to be verified; determining according to the comparison result The authenticity of the short message to be verified. In this embodiment, the second processor is consistent with the foregoing second receiving module 72, the comparing module 74 and the determining module 76 when performing a specific operation, and details are not described herein again.

Through the solution in the embodiment of the present invention, the following problems existing in the related art can be solved:

Lack of a fully automated set of mechanisms for verifying the identity of the sender of the message, the time of transmission, and the integrity of the content, initiated by the operator;

Lack of marking and identification methods for functional machines (senior machines, children's mobile phones);

At present, the method for identifying a pseudo base station short message based on big data or other schemes may involve any short message transmission of the user multiple times in the entire interaction process, increasing the transmission bandwidth, and endangering the identity information and property security of the user;

At present, there is a lack of a reliable and pseudo base station short message recognition rate of 100%.

In the embodiment of the present invention, a complete set of short message security verification mechanism for the intelligent terminal and the function machine is provided in the access operator, and the following beneficial effects can be obtained:

Effect 1: Introduce a new reliable and commercially valuable SMS verification mechanism for operators, which will not change existing network elements and increase the operator's right to speak in this field;

Effect 2: The patent-accepted verification scene extends from the ordinary SMS verification to the industry SMS SP certification, while the industry SMS SP is required for SMS verification and is willing to pay, so the commercial value of the invention is huge;

Effect 3: After adopting the system of the present invention, the terminal can display the “verified” flag on the short message or APP interface, and can also see the specific short message verification report after clicking;

Effect 4: At the same time, a text message verification mechanism of a function machine is added to fill the gap in this field;

Effect 5: Smart terminals that are not connected to the data network can also implement SMS verification by shadow or binary SMS, and the application scenario is wider;

Effect 6: The whole verification process does not involve the transmission of user SMS information, reducing network bandwidth and reducing the risk of user information leakage, and will not violate the GDP R-type legislation such as the EU, with the potential to join norms or standards;

Effect 7: The invention improves the success rate of short message verification, and can accurately determine whether the short message is from an illegal channel such as a trusted channel or a pseudo base station, and the pseudo base station short message recognition rate can reach 100%, and the short message sender identity verification success rate can be Up to 100%.

In summary, the present invention can effectively protect user information and property security, reduce the success rate of SMS fraud in the telecommunications field, and has a positive effect on identifying and preventing illegal criminal acts such as pseudo base stations, and has great commercial value and social value.

It will be apparent to those skilled in the art that the various modules or steps of the present invention described above can be implemented by a general-purpose computing device that can be centralized on a single computing device or distributed across a network of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. The steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.

The above description is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the scope of the present invention are intended to be included within the scope of the present invention.

Industrial applicability

As described above, the method, the device, the storage medium, the short message verification system, and the terminal provided by the embodiment of the present invention have the following beneficial effects: the receiving device does not need to send the short message content to the server side, so that the authenticity of the short message can be verified. It protects the user's information and property security, and effectively solves the problem of high cost and large manpower and material resources in the related technology when implementing SMS verification.

Claims (21)

  1. A method for verifying a short message, comprising:
    Receiving a short message to be verified sent by the short message center or the short message gateway;
    Calculating a check string corresponding to the short message to be verified;
    Generating a verification report according to the calculated verification string, and transmitting the verification report to a receiving device configured to receive the short message to be verified, wherein the verification report is used for the receiving device Verifying the authenticity of the short message to be verified.
  2. The method according to claim 1, wherein calculating a check string corresponding to the short message to be verified comprises:
    And determining, in the case that the sending device has the short message verification authority according to the sending device information of the short message to be verified, calculating a check string corresponding to the short message to be verified.
  3. The method of claim 1, wherein generating the verification report based on the calculated verification string comprises:
    And determining the related information of the short message to be verified, where the related information includes at least one of: sending device information of the short message to be verified, sending time information of the short message to be verified, and the to-be-verified The content of the short message and the information of the receiving device;
    The related information and the check string are generated to generate the verification report.
  4. The method of claim 1, wherein the sending the verification report to the receiving device configured to receive the short message to be verified comprises:
    Determining a device type of the receiving device;
    And sending the verification report to the receiving device according to the device type.
  5. The method of claim 4, comprising at least one of the following:
    Determining the device type of the receiving device includes: determining a device type of the receiving device by querying registration information of the receiving device;
    And sending the verification report to the receiving device according to the device type includes:
    Determining, by the data network or the wireless network, the verification report to the receiving device when determining that the device type is a smart phone; When the offline state of the network is not connected, the verification report is sent to the receiving device by means of sending a short message;
    In the case that the device type is determined to be a function machine, the verification report is sent to the receiving device by means of short message transmission.
  6. The method of claim 5, wherein determining the network connection status of the smartphone comprises:
    Determining identification information of the receiving device;
    The network connection status of the smart machine is determined by querying the database by using the identifier information, wherein the database is used to store a correspondence between the identification information of the device and the network connection status of the device.
  7. A method for verifying a short message, comprising:
    Receiving a verification report of the short message to be verified, where the verification report carries a calculated verification string corresponding to the short message to be verified;
    Comparing the check string carried in the verification report with the locally stored check string calculated by the short message to be verified;
    Determining the authenticity of the short message to be verified according to the comparison result.
  8. The method according to claim 7, wherein the method further comprises: comparing the check string carried in the verification report with the check string calculated by the local pre-verified short message, the method further comprising:
    Receiving the short message to be verified;
    Calculating a check string corresponding to the short message to be verified;
    And correspondingly storing the check string and the sending device information of the short message to be verified into the short message check string library.
  9. The method according to claim 8, wherein comparing the check string carried in the verification report with the locally stored check string calculated for the short message to be verified includes:
    Searching, in the short message check string library, a check string corresponding to the sending device information according to the sending device information carried in the verification report;
    Comparing the check string carried in the verification report with the found check string corresponding to the sending device information.
  10. The method according to claim 7, wherein after determining the authenticity of the short message to be verified according to the comparison result, the method further comprises:
    When it is determined that the short message to be verified is true, the verified identifier is added to the short message to be verified.
  11. The method of claim 10, wherein after the verified identifier is added to the short message to be verified, the method further includes:
    Generating a verification report based on the comparison result;
    Linking the verified identification to the verification report.
  12. A short message verification device includes:
    The first receiving module is configured to receive the short message to be verified sent by the short message center or the short message gateway;
    a first calculating module, configured to calculate a check string corresponding to the short message to be verified;
    a processing module, configured to generate a verification report according to the calculated verification string, and send the verification report to a receiving device configured to receive the short message to be verified, where the verification report is used And verifying, by the receiving device, the authenticity of the short message to be verified.
  13. The apparatus of claim 12, wherein the first computing module comprises:
    The calculating unit is configured to calculate a check string corresponding to the short message to be verified if the sending device has the short message verifying authority according to the sending device information of the short message to be verified.
  14. The apparatus of claim 12, wherein when the verification report is generated based on the calculated verification string, the processing module comprises:
    a first determining unit, configured to determine related information of the short message to be verified, where the related information includes at least one of: sending device information of the short message to be verified, and sending the short message to be verified Time information, content of the short message to be verified, and information of the receiving device;
    And generating a unit, configured to generate the verification report by using the related information and the verification string.
  15. The apparatus according to claim 12, wherein, when the verification report is sent to a receiving device configured to receive the short message to be verified, the processing module includes:
    a second determining unit, configured to determine a device type of the receiving device;
    And a sending unit, configured to send the verification report to the receiving device according to the device type.
  16. A short message verification device includes:
    a second receiving module, configured to receive a verification report of the short message to be verified, where the verification report carries a calculated verification string corresponding to the short message to be verified;
    a comparison module, configured to compare a verification string carried in the verification report with a locally stored verification string obtained by calculating the short message to be verified;
    The determining module is configured to determine the authenticity of the short message to be verified according to the comparison result.
  17. The apparatus of claim 16 wherein said apparatus further comprises:
    The third receiving module is configured to receive the short message to be verified before comparing the check string carried in the verification report with the check string calculated by the local pre-verified short message;
    a second calculating module, configured to calculate a check string corresponding to the short message to be verified;
    The storage module is configured to store the check string and the sending device information of the short message to be verified in a short message check string library.
  18. The apparatus of claim 17 wherein said comparing module comprises:
    a search unit, configured to search, in the short message check string library, a check string corresponding to the sending device information according to the sending device information carried in the verification report;
    The comparing unit is configured to compare the check string carried in the verification report with the found check string corresponding to the sending device information.
  19. A storage medium, the storage medium comprising a stored program, wherein the program is executed to perform the method of any one of claims 1 to 6, or the execution of any one of claims 7 to Methods.
  20. A short message verification system, including a short message center or a short message gateway, and a first processor, wherein
    The short message center or the short message gateway is configured to send the short message to be verified to the receiving device and the first processor;
    The first processor is connected to the short message center or the short message gateway, and is configured to receive the short message to be verified sent by the short message center or the short message gateway, and calculate a check string corresponding to the short message to be verified. And generating a verification report according to the calculated verification string, and sending the verification report to the receiving device, where the verification report is used by the receiving device to send the short message to be verified. The authenticity is verified.
  21. A terminal includes a second processor, the second processor is configured to receive a verification report of the short message to be verified, where the verification report carries a calculated school corresponding to the short message to be verified The check string is carried out; the check string carried in the verification report is compared with the locally stored check string obtained by calculating the short message to be verified; and the authenticity of the short message to be verified is determined according to the comparison result.
PCT/CN2018/117129 2017-12-06 2018-11-23 Short message verification method, apparatus, storage medium, short message verification system, and terminal WO2019109817A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201711276214.1 2017-12-06
CN201711276214.1A CN109889469A (en) 2017-12-06 2017-12-06 Short-message verification method, apparatus, storage medium, short-message verification system and terminal

Publications (1)

Publication Number Publication Date
WO2019109817A1 true WO2019109817A1 (en) 2019-06-13

Family

ID=66750786

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2018/117129 WO2019109817A1 (en) 2017-12-06 2018-11-23 Short message verification method, apparatus, storage medium, short message verification system, and terminal

Country Status (2)

Country Link
CN (1) CN109889469A (en)
WO (1) WO2019109817A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105392124A (en) * 2015-10-12 2016-03-09 中国联合网络通信集团有限公司 Short message verification method, mobile terminal, server and system
US20170032360A9 (en) * 2002-09-09 2017-02-02 U.S. Encode Corporation Systems and methods for enrolling a token in an online authentication program
CN106911661A (en) * 2016-09-23 2017-06-30 阿里巴巴集团控股有限公司 A kind of short-message verification method, device, client, server and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20170032360A9 (en) * 2002-09-09 2017-02-02 U.S. Encode Corporation Systems and methods for enrolling a token in an online authentication program
CN105392124A (en) * 2015-10-12 2016-03-09 中国联合网络通信集团有限公司 Short message verification method, mobile terminal, server and system
CN106911661A (en) * 2016-09-23 2017-06-30 阿里巴巴集团控股有限公司 A kind of short-message verification method, device, client, server and system

Also Published As

Publication number Publication date
CN109889469A (en) 2019-06-14

Similar Documents

Publication Publication Date Title
US9268946B2 (en) Quantifying the risks of applications for mobile devices
US20140066015A1 (en) Secure device service enrollment
KR20130094359A (en) System and method for reinforcing authentication using context information for mobile cloud
EP2630815B1 (en) Method and apparatus for access credential provisioning
JP2019016370A (en) System and method of monitoring and controlling enterprise information stored on cloud computing service (ccs), and performing encryption per document
US20140207679A1 (en) Online money transfer service in connection with instant messenger
US9277378B2 (en) Short message service validation engine
US10200362B2 (en) Method and system for verifying an account operation
US9900290B2 (en) Methods and systems for proxying data
US10050998B1 (en) Malicious message analysis system
CA2966408C (en) A system and method for network intrusion detection of covert channels based on off-line network traffic
US20140380478A1 (en) User centric fraud detection
CN102955700A (en) System and method for upgrading software
US8973118B2 (en) Token based security protocol for managing access to web services
CN103607385A (en) Method and apparatus for security detection based on browser
US9391960B2 (en) Systems and methods for controlling email access
US9553864B2 (en) Dual code authentication system
WO2014012500A1 (en) Method and device for processing messages
US9900161B2 (en) Method for certifying android client application by local service unit
CN102843421A (en) Realizing method and device of user relationship in application of social network
US9060262B2 (en) Method and apparatus of providing messaging service and callback feature to mobile stations
CN103841130A (en) Verification information pushing method and device, and identity authentication method and device
US9769688B2 (en) Device and method for prompting information about Wi-Fi signal
WO2014172956A1 (en) Login method,apparatus, and system
CN103155513B (en) Accelerate the method and apparatus of certification

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18886033

Country of ref document: EP

Kind code of ref document: A1