Summary of the invention
The invention provides a kind of method, portable terminal, server and system of telephone business authentication, the fail safe when carrying out telephone service through portable terminal in order to raising.
The invention provides a kind of method of telephone business authentication, comprising:
Select the user under the situation of the corresponding log-on message of telephone service,, generate the business that is used to carry out said telephone service according to said log-on message
Information; Said log-on message comprises the telephone number that said telephone service is corresponding;
Through said telephone number said business information is sent to said telephone service corresponding server;
Under the situation that the said business information of said server authentication is passed through, login said server;
Wherein, said according to log-on message, generate business information, comprising:
Call user authentication information corresponding and the AES of self preserving according to said log-on message, generate said business information through said user authentication information and said AES with said log-on message.
The invention provides a kind of portable terminal, comprising:
The business information generation module is used for selecting under the situation of the corresponding log-on message of telephone service the user, according to said log-on message, generates the business information that is used to carry out said telephone service; Said log-on message comprises the telephone number that said telephone service is corresponding;
The business information sending module is used for through said telephone number said business information being sent to said telephone service corresponding server;
Login module is used under the situation that the said business information of said server authentication is passed through, logining said server;
Wherein, said business information generation module also is used for calling user authentication information corresponding with said log-on message and the AES of self preserving according to said log-on message, generates said business information through said user authentication information and said AES.
The invention provides a kind of system of telephone business authentication, comprising: above-mentioned portable terminal and server; Wherein said server comprises:
The business information receiver module is used for the business information that is used to login said server that mobile terminal receive sends;
The business information authentication module is used to the said business information of verifying that said business information receiver module receives;
Sending module is used for verifying under the situation that said business information passes through at said business information authentication module, sends confirmation and logins said server for said portable terminal according to said confirmation.
The method of telephone business authentication provided by the invention, portable terminal, server and system; The corresponding log-on message of telephone service through selecting according to the user generates the business information that is used to carry out telephone service; Need not business information such as user's keyboard input authentication password, improved the user and carried out the fail safe of telephone service through portable terminal.
Embodiment
Through accompanying drawing and embodiment, technical scheme of the present invention is done further detailed description below.
The flow chart of the method for a kind of telephone business authentication that Fig. 1 provides for the embodiment of the invention, as shown in Figure 1, present embodiment is an example with telephone banking and IP telephone service, and the method for telephone business authentication of the present invention is described, and specifically comprises the steps:
Step 101, select under the situation of the corresponding log-on message of telephone service,, generate the business information that is used to carry out telephone service according to log-on message the user; Log-on message comprises the telephone number that telephone service is corresponding.
Concrete, can call user authentication information and the AES of self preserving corresponding according to log-on message in the present embodiment with log-on message, generate business information through user authentication information and AES.When carrying out telephone banking or IP telephone service, the user need select to be used to carry out the log-on message of telephone bank or IP phone through portable terminal to the user through portable terminal (for example, mobile phone).Wherein, for telephone bank, the user selects the corresponding telephone number of desired telephone bank; And for IP phone, the user select the telephone number that will dial.Portable terminal generates the business information that is used to carry out telephone service according to log-on message; Be specially: one, for telephone bank with need the IP telephone service of cipher authentication; Portable terminal can call user authentication information and the AES of self preserving according to log-on message, generates business information.Wherein, telephone bank's corresponding service information can be formed by being used for the authentication password that login authentication will use and the corresponding telephone number of telephone bank of log-on message, for example, can authentication password be added in the back of telephone number as suffix; IP phone corresponding service information can be made up of the telephone number that is used for authentication password, IP number and log-on message that login authentication will use, for example, can authentication password be added in the back of telephone number as suffix; And the IP number is added in the front of telephone number as prefix, and is concrete, and for example the telephone number that will dial of user is 10086; The IP number is 17951; Authentication password is 111111, then when the user dials 10086, adds that in 10086 front 17951 back add 111111; At last, portable terminal will send 1795110086111111 business information.Wherein, the disposal password that the authentication password in the present embodiment can generate according to factors such as times through AES, along with the change of time authentication password also with corresponding change thereupon.Two, for the IP telephone service that does not need cipher authentication; Portable terminal can generate business information according to log-on message, and wherein this business information can be made up of the telephone number in IP number and the log-on message; For example, can the IP number be added in the front of telephone number as prefix.
The method of present embodiment telephone business authentication exists two kinds of users to select the mode of log-on message, and specific as follows: mode one, log-on message are through the input of user's keyboard; Mode two, the corresponding telephone number inventory of preservation telephone service, log-on message is imported through selection from the telephone number inventory of preserving.
Particularly, mode one, when the user imports telephone number and dials this telephone number through keyboard,
For telephone bank, whether the telephone number that portable terminal is dialed judges is stored in the telephone number inventory of the telephone bank that self preserves.If the telephone number of preserving in the telephone number that the user dials and the telephone number inventory is identical, then log-on message is exactly the corresponding information of telephone number through the input of user's keyboard.At this moment, portable terminal will generate password according to user authentication information and the AES self preserved.If the telephone number of preserving in the telephone number that the user dials and the telephone number inventory is different, explain that then the user is not the operation of logining the telephone banking authentication, portable terminal is according to common dialing flow processing; For IP telephone service, the telephone number that portable terminal is dialed the user generates business information as log-on message according to log-on message.Mode two, portable terminal self are preserved the corresponding telephone number inventory of telephone service, and log-on message is through selecting input from the telephone number inventory of preserving.For telephone bank, after the user selected the telephone bank that will login through the telephone number inventory, log-on message was exactly the corresponding log-on message of from the telephone number inventory of preserving, selecting through the user of telephone number.Portable terminal with user authentication information and the AES self preserved, generates authentication password after selecting from the telephone number inventory through the user so.Concrete; Can preserve in the present embodiment portable terminal through user identification application development instrument (SIM Tool Kit; Hereinafter to be referred as STK) the technology STK program of writing, this STK program can be with the title that is stored in the pairing telephone bank of telephone number in the phone list, is presented on the screen of portable terminal with the form of text menu; The user can choose the telephone number of the corresponding telephone bank of this title through clicking the title that menu is listed.In actual use, when the user need login designated telephone bank, the user can be presented at the title that is stored in the telephone bank in the portable terminal on the screen through starting the STK program.The user is according to the title of the telephone bank that shows on the screen, chooses and wants the telephone bank that logins, thereby realize that the user selects to be used to login the log-on message of telephone bank's telephone business authentication.Same, for IP telephone service, behind the telephone number that the user selects to dial through the telephone number inventory, log-on message is exactly the corresponding log-on message of from the telephone number inventory of preserving, selecting through the user of telephone number.
Step 102, business information is sent to the telephone service corresponding server through telephone number.
After portable terminal generates business information, as stated, include the corresponding telephone number of telephone service in this business information, portable terminal sends to the telephone service corresponding server through dialing this telephone number with business information.
Step 103, under the situation that the server authentication business information is passed through, logon server.
Particularly; For telephone bank with need the IP phone of cipher authentication, portable terminal is with after the server of telephone bank or IP telephone service is connected, server is with the business information of mobile terminal receive transmission; Wherein, include information such as authentication password in this business information; Because when the user calls the telephone number of professional correspondence through portable terminal; The user authentication informations such as telephone number of the portable terminal that the user uses are also learnt by server accordingly; After so server receives business information; Can verify the business information that the receives user authentication informations such as telephone number corresponding with this portable terminal, judge whether the user authentication information such as telephone number of this portable terminal correspondence and the authentication password in the business information mate.Wherein, portable terminal is synchronous through authentication password and the password in the server that AES generates.Particularly, also preserve identical AES with portable terminal in the server, server also can generate a password according to user authentication information such as the corresponding telephone number of portable terminal and AES at one time.The password that server generates is identical with the authentication password that portable terminal generates, thereby whether the authentication password that can verify the portable terminal transmission is correct.If the authentication password that server authentication receives is correct, then server allow the portable terminal login the telephone bank that will login, this server and portable terminal carry out mutual message transmission.At this moment, server has confirmed that the portable terminal identity is legal, can allow the user to carry out the corresponding telephone business operation through portable terminal.That is to say that the user can sign in on the server of telephone bank or the user can carry out IP phone and calls out through portable terminal.And for the IP telephone service that does not need cipher authentication, the IP phone corresponding server can judge whether this business information is legal after receiving business information; For example; Before the telephone number that portable terminal is being dialed, be added with 17951, then server judges whether 17951 are correct IP numbers, if correct; Verify that then business information passes through, allow the user to carry out IP phone and call out.
The method of the telephone business authentication that present embodiment provides generates business information through select the corresponding log-on message of telephone service according to the user, need not the input of user's keyboard, has improved the user and has carried out the fail safe of telephone service through portable terminal.Compared with prior art; In the method for the telephone business authentication that present embodiment provides; When the user need carry out the corresponding telephone business, need not user's keyboard input corresponding business information, for example; IP number and authentication password, thus the danger that user's individual private informations such as password are stolen can be reduced effectively; And the password in the present embodiment is disposable; Even if the user is when telephone business authentication; Password is stolen, and other people also can not reuse this password and carry out telephone business authentication, thus the fail safe when more helping improving the user and carrying out telephone business authentication through portable terminal.
Based on technique scheme, optional, the method for present embodiment telephone business authentication can also comprise before step 101 generates business information: through the telephone number and the AES of air download passage download user authentication information, telephone service correspondence.Concrete; Air download (Over the Air, be called for short: OTA) technology, be one based on short message mechanism; Realize dynamic download, the deletion and renewal of service menu in the SIM making the user obtain the data value-added service of individual info service through portable terminal or server (on the net) mode.In the present embodiment, before portable terminal generated password, portable terminal can pass through the OTA passage; Download the relevant information corresponding with this portable terminal; For example, the telephone number (for example, the telephone number of telephone bank or IP number) of user authentication information, telephone service correspondence and AES etc.
Further, the method for present embodiment telephone business authentication can also comprise: the telephone number and the AES that upgrade user authentication information, telephone service correspondence through the air download passage.After information such as corresponding telephone number of user authentication information, telephone service and AES were upgraded, portable terminal can be through the relevant information of the automatic down loading updating of OTA passage.
Information such as the telephone number of the user authentication information that present embodiment is downloaded through the OTA passage, telephone service correspondence and AES; And can be after above-mentioned information updating; Through the information behind the OTA passage down loading updating, upgrade the relevant information in the portable terminal automatically.Make the operation of relevant information of mobile terminal to update telephone business authentication simpler.And the user need not to remember the telephone number of each telephone service correspondence, can learn through searching the corresponding information of telephone service of preserving in the portable terminal, makes things convenient for the user to carry out telephone business authentication through portable terminal.
The method of telephone business authentication provided by the invention not only can be applied to telephone bank and IP telephone service, also can be applied on other the telephone service, and present embodiment does not limit the method range of application of telephone business authentication.
The structural representation of a kind of portable terminal embodiment that Fig. 2 provides for the embodiment of the invention.As shown in Figure 2, the present embodiment portable terminal comprises: business information generation module 21, business information sending module 22 and login module 23.
Business information generation module 21 is used for selecting under the situation of the corresponding log-on message of telephone service the user, according to said log-on message, generates the business information that is used to carry out said telephone service; Log-on message comprises the telephone number that telephone service is corresponding.
Concrete, the business information generation module 21 of present embodiment portable terminal can specifically be used for through subscriber identification module (Subscriber Identity Module; Be called for short: SIM) or sticker realize.For example, can realize the function that business information generation module 21 is had through writing corresponding program in SIM or sticker.
Business information sending module 22 is used for through telephone number business information being sent to the telephone service corresponding server.
Concrete, after business information generation module 21 generates business information, can with business information, send to business information sending module 22 according to GSM11.11 and GSM11.14 agreement.When business information generation module 21 and business information sending module 22 communicate session according to GSM11.11 and GSM11.14 agreement; Information transmitted is that (Application ProtocolData Unit, be called for short: APDU) form of instruction is transmitted with Application Protocol Data Unit between the two.Be business information generation module 21 according to GSM11.11 and GSM11.14 agreement, business information is sent to business information sending module 22 with the form of APDU instruction.Business information sending module 22 is called professional corresponding telephone number, and business information is sent to server.
Login module 23 is used under the situation that the server authentication business information is passed through, logon server.
Concrete, the login module 23 of present embodiment portable terminal can specifically be used for realizing through SIM or sticker.For example, can realize the function that login module 23 is had through writing corresponding program in SIM or sticker.
The log-on message that the telephone service that the present embodiment portable terminal is selected according to the user through the business information generation module is corresponding generates the business information that is used to carry out telephone service; And through the business information sending module business information is sent in the server and to verify; After server authentication is passed through,, make the user when carrying out telephone service by the login module logon server; Need not the user and input business information such as password, improved the user and carried out the fail safe of telephone service through portable terminal.The concrete manifestation entity of portable terminal is unrestricted in the present embodiment, like mobile phone etc.
Based on technique scheme, optional, the present embodiment portable terminal comprises: download module 24 is used for telephone number and AES through OTA passage download user authentication information, telephone service correspondence.Download in advance in the portable terminal through information such as download module 24 telephone number that user authentication information, telephone service is corresponding and AESs, use for business information generation module 21.
Further, the present embodiment portable terminal can also comprise: update module 25 is used for telephone number and AES through OTA passage renewal user authentication information, telephone service correspondence.After information such as corresponding telephone number of user authentication information, telephone service and AES were upgraded, portable terminal can be through the relevant information of update module 25 automatic down loading updatings.
Present embodiment is through information such as corresponding telephone number of download module 24 download user authentication informations, telephone service and AESs; And can be after above-mentioned information updating; Through the information behind update module 25 down loading updatings, upgrade the relevant information in the portable terminal automatically.Make the operation of relevant information of mobile terminal to update telephone business authentication simpler.And the user need not to remember the telephone number of each telephone service correspondence, can learn through searching the corresponding information of telephone service of preserving in the portable terminal, makes things convenient for the user to carry out telephone business authentication through portable terminal.
The routine structural representation of a kind of server implementation that Fig. 3 provides for the embodiment of the invention.As shown in Figure 3, the present embodiment server comprises: business information receiver module 31, business information authentication module 32 and sending module 33.
Business information receiver module 31 is used for the business information that is used for logon server that mobile terminal receive sends;
Business information authentication module 32 is used to verify the business information of business information receiver module 31 receptions;
Sending module 33 is used under the situation that business information authentication module 32 checking business information are passed through, send confirmation for portable terminal according to the confirmation logon server.
The present embodiment server; Business information through the transmission of business information authentication module checking portable terminal; Make server need not to input business information such as password through the voice reminder user; Help reducing the user when incoming traffic information, the danger that business information is stolen, thus improved the fail safe the when user carries out telephone business authentication through portable terminal.
The structural representation of the system embodiment of a kind of telephone business authentication that Fig. 4 provides for the embodiment of the invention.As shown in Figure 4, the present embodiment login system comprises: portable terminal 41 and server 42.Portable terminal 41 is used for selecting the corresponding log-on message of telephone service to generate business information according to the user, and business information is sent to server 42; Server 42 is used to receive and verify the business information that portable terminal 41 sends, and under the situation that the checking business information is passed through, allows portable terminal 41 logins.
Portable terminal and server that the portable terminal of present embodiment and server can adopt the foregoing description to provide, its concrete structure and function repeat no more at this.
The present embodiment login system generates business information through portable terminal self; And the business information of sending through the server authentication portable terminal; Make the user when carrying out telephone business authentication, need not the user, help reducing the user when incoming traffic information through keyboard incoming traffic information; The danger that business information is stolen, thus the fail safe the when user carries out telephone business authentication through portable terminal improved.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can be accomplished through the relevant hardware of program command; Aforesaid program can be stored in the computer read/write memory medium; This program is when carrying out; Execution comprises the step of said method embodiment, and aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
What should explain at last is: above embodiment is only in order to explaining technical scheme of the present invention, but not to its restriction; Although with reference to previous embodiment the present invention has been carried out detailed explanation, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment put down in writing, and perhaps part technical characterictic wherein is equal to replacement; And these are revised or replacement, do not make the spirit and the scope of the essence disengaging various embodiments of the present invention technical scheme of relevant art scheme.