CN104168261B - Dynamic password login method and device - Google Patents
Dynamic password login method and device Download PDFInfo
- Publication number
- CN104168261B CN104168261B CN201410313130.0A CN201410313130A CN104168261B CN 104168261 B CN104168261 B CN 104168261B CN 201410313130 A CN201410313130 A CN 201410313130A CN 104168261 B CN104168261 B CN 104168261B
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- application
- account name
- interface channel
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Telephonic Communication Services (AREA)
- Information Transfer Between Computers (AREA)
- Telephone Function (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention proposes a kind of login method and device based on dynamic password, the login method based on dynamic password includes the request message for receiving the first application and sending, include account name in the request message, first application is the application that current guiding user carries out register;Judge whether long interface channel corresponding with the account name, and when there are the long interface channel, generate dynamic password, the long interface channel is the interface channel between server-side and the second application, and second application is mounted in the application for receiving dynamic password in mobile device;The dynamic password is sent to second application according to the long interface channel;The first login authentication request that first application is sent is received, includes the account name and the dynamic password in the first login authentication request, and login authentication processing is carried out to user according to the account name and the dynamic password.This method can improve the scope of application of dynamic password login.
Description
Technical field
The present invention relates to field of communication technology more particularly to a kind of dynamic password login methods and device.
Background technology
Traditional login mode based on account name and set static password has become more and more dangerous.In order to
Safety is improved, dynamic password may be used and logged in.In the related technology, cell-phone number can be registered as account name, alternatively,
The account name of registration and cell-phone number are bound, dynamic password is dealt by way of short message on mobile phone later, is inputted by user
Dynamic password.
But dynamic password is sent on mobile phone by this mode due to needing, when user is not by account name and mobile phone
Number binding or cell-phone number cannot be in use, user cannot obtain dynamic password so that this dynamic password login mode
Using limited.
Invention content
The present invention is directed to solve at least some of the technical problems in related technologies.
For this purpose, an object of the present invention is to provide a kind of login method based on dynamic password, this method can carry
The scope of application of high dynamic password login.
It is another object of the present invention to propose a kind of entering device based on dynamic password.
In order to achieve the above objectives, the login method based on dynamic password that first aspect present invention embodiment proposes, including:
The request message that the first application is sent is received, includes account name in the request message, first application is that current guiding is used
Family carries out the application of register;Judge whether long interface channel corresponding with the account name, and there are the length
When interface channel, dynamic password is generated, the long interface channel is the interface channel between server-side and the second application, described the
Two applications are mounted in the application for receiving dynamic password in mobile device;According to the long interface channel by the dynamic
Password is sent to second application;The first login authentication request that first application is sent is received, first login is recognized
Include the account name and the dynamic password in card request, and user is carried out according to the account name and the dynamic password
Login authentication is handled.
The login method based on dynamic password that first aspect present invention embodiment proposes, will move by using interface channel
State password is sent to mobile device, is not limited to be sent according to cell-phone number, effectively improves the scope of application of dynamic password login.
In order to achieve the above objectives, the login method based on dynamic password that second aspect of the present invention embodiment proposes, including:
And server-side establishes long interface channel corresponding with account name;According to the long interface channel, receive what the server-side was sent
Dynamic password, the dynamic password are that the server-side disappears in the request comprising the account name for receiving the first application transmission
It is generated after breath, first application is the application that current guiding user carries out register.
The login method based on dynamic password that second aspect of the present invention embodiment proposes, will move by using interface channel
State password is sent to mobile device, is not limited to send server-side according to cell-phone number, effectively improves being applicable in for dynamic password login
Range.
In order to achieve the above objectives, the entering device based on dynamic password that third aspect present invention embodiment proposes, including:
First receiving module, the request message sent for receiving the first application, comprising account name in the request message, described first
Using the application for being current guiding user progress register;Processing module, for judging whether and the account name pair
The long interface channel answered, and when there are the long interface channel, generates dynamic password, the long interface channel be server-side with
Interface channel between second application, second application are mounted in mobile device and are used to receive answering for dynamic password
With;Sending module, for the dynamic password to be sent to second application according to the long interface channel;Login module,
The the first login authentication request sent for receiving first application, includes the account in the first login authentication request
Name and the dynamic password, and login authentication processing is carried out to user according to the account name and the dynamic password.
The entering device based on dynamic password that third aspect present invention embodiment proposes, will move by using interface channel
State password is sent to mobile device, is not limited to be sent according to cell-phone number, effectively improves the scope of application of dynamic password login.
In order to achieve the above objectives, the entering device based on dynamic password that fourth aspect present invention embodiment proposes, including:
Module is established, is used for and server-side establishes long interface channel corresponding with account name;Receiving module, for according to the long connection
Channel, receives the dynamic password that the server-side is sent, and the dynamic password is that the server-side is receiving the first application hair
It is generated after the request message comprising the account name sent, first application is that current guiding user carries out register
Using.
The entering device based on dynamic password that fourth aspect present invention embodiment proposes, will move by using interface channel
State password is sent to mobile device, is not limited to send server-side according to cell-phone number, effectively improves being applicable in for dynamic password login
Range.
The additional aspect of the present invention and advantage will be set forth in part in the description, and will partly become from the following description
Obviously, or practice through the invention is recognized.
Description of the drawings
Above-mentioned and/or additional aspect and advantage of the invention will become from the following description of the accompanying drawings of embodiments
Obviously and it is readily appreciated that, wherein:
Fig. 1 is the flow diagram for the login method based on dynamic password that one embodiment of the invention proposes;
Fig. 2 is the flow diagram for the login method based on dynamic password that another embodiment of the present invention proposes;
Fig. 3 is the flow diagram for the login method based on dynamic password that another embodiment of the present invention proposes;
Fig. 4 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes;
Fig. 5 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes;
Fig. 6 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes;
Fig. 7 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes.
Specific implementation mode
The embodiment of the present invention is described below in detail, examples of the embodiments are shown in the accompanying drawings, wherein from beginning to end
Same or similar label indicates same or similar element or element with the same or similar functions.Below with reference to attached
The embodiment of figure description is exemplary, and is only used for explaining the present invention, and is not considered as limiting the invention.On the contrary, this
The embodiment of invention includes all changes fallen within the scope of the spiritual and intension of attached claims, modification and is equal
Object.
Fig. 1 is the flow diagram for the login method based on dynamic password that one embodiment of the invention proposes, this method packet
It includes:
S11:Server-side receives the request message that the first application is sent, and includes account name in the request message, and described the
One application is the application that current guiding user carries out register.
The server-side can be specifically account system server-side.
Wherein, the first application can be in PC equipment, can also be on the intelligent terminals such as smart television.
Optionally, account name can be name, cell-phone number or user name, user name such as number, letter and character
Arbitrary combination.
The when of obtaining dynamic password can needed to send request message, for example, when user logs in a website, need to obtain dynamic
State password, when obtaining dynamic password when the user clicks, the first application sends request message to server-side, with request dynamic password.
S12:Judge whether long interface channel corresponding with the account name, and there are the long interface channels
When, dynamic password is generated, the long interface channel is the interface channel between server-side and the second application, and second application is
The application for receiving dynamic password of installation on the mobile apparatus.
Wherein, dynamic password is generated according to preset algorithm, and preset algorithm can be random algorithm, for example, with
Machine generates the combination of number and/or letter as dynamic password.
Further, after generating dynamic password, the expired time of dynamic password can be set.
Specifically, account system server-side can pre-establish the correspondence of account name and long interface channel, to judge
Whether existing long interface channel corresponding with account name that is including in the request message.
Long interface channel is the interface channel between server-side and the second application, and the second application is that user is pre- in mobile device
The application first installed and started, second application are properly termed as safe app.
Link connection is divided into long connection and short connection and is just established when short connection refers to communication two party data interaction every time
Primary connection, after this data is sent completely, then disconnects this connection, and connection sum number is re-established when having data interaction again next time
According to interaction;Long connection refers to communication two party after this data is sent completely, and also keeps connection, next time can be directly with the connection
Transmission data is without re-establishing connection.
S13:The dynamic password is sent to second application according to the long interface channel.
Wherein, account system server-side can be issued dynamic password in mobile device by server-side by long interface channel
Application, which is properly termed as safe app, and safe app can be presented to user after receiving dynamic password.
S14:The first login authentication request that first application is sent is received, includes in the first login authentication request
The account name and the dynamic password, and user is carried out at login authentication according to the account name and the dynamic password
Reason.
Wherein, user can know dynamic password according to the displaying of the second application, later in the login interface of the first application
Dynamic password input frame in input dynamic password, first application is the application that current guiding user carries out register,
In addition, user can also input account name in login interface, the dynamic password and account name are sent to account by the first application later
Number server of the system is authenticated.
Account system server-side found from the information pre-saved according to account name corresponding dynamic password and it is expired when
Between, expired time, and the dynamic password received and the letter from preservation are not above when if receiving the first login authentication request
The dynamic password obtained in breath is consistent, then otherwise not authenticated by the certification of dynamic password.
Further, after by certification, login process can be carried out to user, returns to login sessions (session) and gives
Client, and the correspondence of account name and dynamic password is deleted, to cancel dynamic password.It, can be with when not authenticated
Error message is returned to the first application.
Dynamic password is sent to mobile device by the present embodiment by using long interface channel, is not limited to be sent out according to cell-phone number
It send, effectively improves the scope of application of dynamic password login.
Fig. 2 is the flow diagram for the login method based on dynamic password that another embodiment of the present invention proposes, this method
Including:
S21:And server-side establishes long interface channel corresponding with account name.
The server-side can be specifically account system server-side.
Specifically, user starts preassembled application on their mobile devices, can be safe app, and input account
Name in an account book and static password trigger safe app and send the second login authentication request to account system server-side, wherein second logs in
Include the account name and static password of user setting in certification request.
Wherein, user can register to account system server-side in advance, and account system server-side preserves log-on message,
Log-on message includes account name and static password.
Account system server-side receive the second login authentication request after, by the second login authentication ask in account name and
Password carries out comparison certification with the pre-registered account name of user and password of preservation.
If account name and password that account system server-side receives, with the account name and static state obtained from log-on message
Password is consistent, then by login authentication, if account name and static password appoint have one it is inconsistent or all inconsistent, then do not have
Have and passes through login authentication.
Further, if account name and static password are not over login authentication, safe app prompts user is wrong accordingly
False information, for example, the account name that you input is not present!Such as the static password that you input is wrong!
Further, safe app prompts user inputs account name and/or static password again.
Wherein, long connection can be by establishing, alternatively, long connection can also be that other account names are logical after login authentication
It crosses after login authentication and to establish.
Specifically, after by login authentication, connection when server-side keeps app to send account name and static password obtains
It is connected to long, and preserves the correspondence of length connection and account name.Alternatively, app forward direction server-side send another account
Name and static password, server-side to another account name by certification after, the long connection of corresponding another account name can be established, when
After this account name is by verification, this account name can also be corresponded in the long connection having built up.That is,
Each a long connection can be corresponded to by account name, alternatively, multiple account names correspond to a long connection.
S22:According to the long interface channel, the dynamic password that the server-side is sent is received, the dynamic password is institute
State what server-side generated after receiving the request message comprising the account name that the first application is sent, first application is
Current guiding user carries out the application of register.
Wherein, dynamic password is generated according to preset algorithm, and preset algorithm can be random algorithm, for example, with
Machine generates the combination of number and/or letter as dynamic password.
Specifically, account system server-side receive first application send request message, it can be determined that whether it is existing with
The corresponding long interface channel of account name in request message, when there is long interface channel corresponding with the account name, according to
Preset algorithm generates dynamic password.
Long interface channel is between the application that user installs and starts in advance in account system server-side and mobile device
Interface channel, which is properly termed as safe app.
Link connection is divided into long connection and short connection and is just established when short connection refers to communication two party data interaction every time
Primary connection, after this data is sent completely, then disconnects this connection, and connection sum number is re-established when having data interaction again next time
According to interaction;Long connection refers to communication two party after this data is sent completely, and also keeps connection, next time can be directly with the connection
Transmission data is without re-establishing connection.
Wherein, mobile device receives the dynamic password that account system server-side is sent by long interface channel, using reception
User can be presented to after to dynamic password.
Dynamic password is sent to mobile device by the present embodiment by using interface channel, is not limited to be sent according to cell-phone number
Server-side effectively improves the scope of application of dynamic password login.
Fig. 3 is the flow diagram for the login method based on dynamic password that another embodiment of the present invention proposes, this method
Including:
S301:User when adding account name in second application, triggers mobile device to account after starting the second application
Number server of the system sends the second login authentication request, includes account name and static password in the second login authentication request, and second
Using being preassembled application in mobile device.
Wherein, mobile device is such as mobile phone or tablet computer.The preassembled application is properly termed as safe app.
Specifically, user starts safe app on their mobile devices, and inputs account name and static password, triggering peace
Full app sends the second login authentication request to account system server-side, wherein includes user setting in the second login authentication request
Account name and static password.
S302:After account system server-side receives the second login authentication request, login authentication is carried out, and judge whether to lead to
Login authentication is crossed, if so, executing S304, otherwise, executes S303.
Wherein, user can register to account system server-side in advance, and account system server-side preserves log-on message,
Log-on message includes account name and static password.
Account system server-side receive the second login authentication request after, by the second login authentication ask in account name and
Password carries out comparison certification with the pre-registered account name of user and password of preservation.
If account name and password that account system server-side receives, with the account name and static state obtained from log-on message
Password is consistent, then by login authentication, if account name and static password appoint have one it is inconsistent or all inconsistent, then do not have
Have and passes through login authentication.
S303:Account system server-side returns to error message to mobile device.
Specifically, if account name and static password are not over login authentication, safe app prompts user is wrong accordingly
False information, for example, the account name that you input is not present!Such as the static password that you input is wrong!
Further, safe app prompts user inputs account name and/or static password again.
S304:Long connection is established in account system server-side and the second application, and by account name and the corresponding preservation of long connection.
Wherein, long connection can be by establishing, alternatively, long connection can also be that other account names are logical after login authentication
It crosses after login authentication and to establish.
Specifically, after by login authentication, when account system server-side keeps app to send account name and static password
Connection, obtains long connection, and preserves the correspondence of length connection and account name.Alternatively, app forward direction account system service
End sends another account name and static password, account system server-side to another account name by certification after, correspondence can be established
The long connection of another account name, after this account name is by verification, can also correspond to this account name
In the long connection of foundation.That is, each a long connection can be corresponded to account name, alternatively, multiple account names correspond to one
Long connection.
S305:User inputs account name on the login interface of the first application, and triggers the first application and taken to account system
Business end sends request message, which is used for request dynamic password, includes account name in request message, the first application is to work as
It is preceding guiding user carry out register application, such as first apply it is first-class in PC or smart television.
The when of obtaining dynamic password can needed to send request message, for example, when user logs in a website, need to obtain dynamic
State password, when obtaining dynamic password when the user clicks, the first application sends request message to server-side, with request dynamic password.
S306:Whether account system server-side judges corresponding long interface channel according to the account name for including in request message
In the presence of, if being not present, execution S307, and if it exists, execute S308.
Since account system server-side can preserve the correspondence of account name and long connection, according to the letter pre-saved
Breath can determine whether there is long connection corresponding with current account name.
S307:Error message is returned to the first application by account system server-side, by the first Application Hints user.
First Application Hints user can be specifically:It prompts user installation, start safe app, register user account, and pre-
First addition can be supported in the account to the account management module of safe app that dynamic password logs in.
S308:Account system server-side generates dynamic password according to the request message, and expired time is arranged, Yi Jijian
The correspondence opened an account between name in an account book and dynamic password and expired time.
Wherein, dynamic password is generated according to preset algorithm, and preset algorithm can be random algorithm, for example, with
Machine generates the combination of number and/or letter as dynamic password.
Further, after generating dynamic password, the expired time of dynamic password can be set, and establish account name and
Correspondence between dynamic password and expired time, and correspondence is saved in caching.
S309:Account system server-side uses long interface channel corresponding with account name, and dynamic password is sent to shifting
The second application in dynamic equipment.
Wherein, dynamic password can be issued by answering in mobile device by account system server-side by long interface channel
With.
S310:Dynamic password is presented to the user by the second application.
Wherein, the second application receives the dynamic password of server-side transmission, can be presented to the user dynamic password and see.
Dynamic password can be presented to the user by the second application by way of sending system message, alternatively, in safe app
Interface on dynamic password is presented.
S311:The dynamic password input frame of the login interface for the first application of dynamic password input that user will be seen that, and touch
The first application of hair sends the first logging request, the account name and dynamic password inputted comprising user in the first logging request.
S312:Account system server-side judges whether to login process according to the first login authentication request, if so, executing
Otherwise S314 executes S313.
Specifically, including dynamic password and account name in the first login authentication request, account system server-side is according to account
Name finds corresponding dynamic password and expired time from the information pre-saved, if receive the first login authentication request
It is not above expired time, and the dynamic password received is consistent with the dynamic password obtained from the information of preservation, then is stepped on
Record is handled, otherwise without login process.
S313:Account system server-side returns to error message to the first application.
The message such as unsuccessful are logged in for example, returning.
S314:Account system server-side carries out login process to user, obtains login sessions (session), and to first
Using return login sessions information.
Optionally, after completing the login process to user, the correspondence of account name and dynamic password can be deleted, with
Cancel dynamic password.
S315:First application completes user's login process according to login sessions information.
Specifically, after the login interface of the first application receives the login session information that account system server-side returns,
The respective logic processing after user logs in can be completed, for example, showing the interface etc. after logging in user.
The present embodiment by interface channel in mobile device by, using interface channel is established with server-side, it is close to transmit dynamic
Code can be not limited by cell-phone number transmission dynamic password, can improve the scope of application.The present embodiment is connected by establishing length,
Can dynamic password be sent to mobile device in time, ensure the validity of dynamic password.The present embodiment passes through to user's checking
After establish corresponding interface channel, safety can be improved.
Fig. 4 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes, the device
40 include the first receiving module 41, processing module 42, sending module 43 and login module 44.
First receiving module 41 is used to receive the request message that the first application is sent, and includes account in the request message
Name, first application are the applications that current guiding user carries out register.
Wherein, the first application can be in PC equipment, can also be on the intelligent terminals such as smart television.
Optionally, account name can be name, cell-phone number or user name, user name such as number, letter and character
Arbitrary combination.
The when of obtaining dynamic password can needed to send request message, for example, when user logs in a website, need to obtain dynamic
State password, when obtaining dynamic password when the user clicks, the first application sends request message to server-side, with request dynamic password.
Processing module 42 is for judging whether long interface channel corresponding with the account name, and there are the length
When interface channel, dynamic password is generated, the long interface channel is the interface channel between server-side and the second application, described the
Two applications are mounted in the application for receiving dynamic password in mobile device.
Wherein, dynamic password is generated according to preset algorithm, and preset algorithm can be random algorithm, for example, with
Machine generates the combination of number and/or letter as dynamic password.
Further, after generating dynamic password, the expired time of dynamic password can be set.
Specifically, account system server-side can pre-establish the correspondence of account name and long interface channel, to judge
Whether existing long interface channel corresponding with account name that is including in the request message.
Long interface channel is the interface channel between server-side and the second application, and the second application is that user is pre- in mobile device
The application first installed and started, second application are properly termed as safe app.
Link connection is divided into long connection and short connection and is just established when short connection refers to communication two party data interaction every time
Primary connection, after this data is sent completely, then disconnects this connection, and connection sum number is re-established when having data interaction again next time
According to interaction;Long connection refers to communication two party after this data is sent completely, and also keeps connection, next time can be directly with the connection
Transmission data is without re-establishing connection.Sending module 43 is for sending out the dynamic password according to the long interface channel
Give second application.
Wherein, account system server-side can be issued dynamic password in mobile device by server-side by long interface channel
Application, which is properly termed as safe app, and safe app can be presented to user after receiving dynamic password.
Login module 44 is used to receive the first login authentication request that first application is sent, first login authentication
Include the account name and the dynamic password in request, and user is stepped on according to the account name and the dynamic password
Record authentication processing.
In one embodiment, after the generation dynamic password, described device 40 further includes setup module 45, such as Fig. 5 institutes
Show, the setup module 45 is used to correspond to the account name and the dynamic password and preserve, and the dynamic password is arranged
Expired time, the login module 44 are specifically used for obtaining dynamic corresponding with the account name received from the information pre-saved
Password and expired time;It is not out of date in the dynamic password of the preservation, and the dynamic password one of the dynamic password and reception preserved
When cause, the corresponding user of the account name is allowed to log in.
Wherein, user can know dynamic password according to the displaying of the second application, later in the login interface of the first application
Dynamic password input frame in input dynamic password, first application is the application that current guiding user carries out register,
In addition, user can also input account name in login interface, the dynamic password and account name are sent to account by the first application later
Number server of the system is authenticated.
Account system server-side found from the information pre-saved according to account name corresponding dynamic password and it is expired when
Between, expired time, and the dynamic password received and the letter from preservation are not above when if receiving the first login authentication request
The dynamic password obtained in breath is consistent, then otherwise not authenticated by the certification of dynamic password.
Further, after by certification, login process can be carried out to user, returns to login sessions (session) and gives
Client, and the correspondence of account name and dynamic password is deleted, to cancel dynamic password.It, can be with when not authenticated
Error message is returned to the first application.
In another embodiment, it is described allow the corresponding user of the account name to log in after, described device 40 is also
Including removing module 46, as shown in figure 5, the removing module 46 is used to delete the dynamic password preserved.
In another embodiment, described device 40 further includes the second receiving module 47, establishes module 48 and preserving module
49。
Second receiving module 47 is used to receive the second login authentication request that second application is sent upon actuation, described
Include the account name and static password in second login authentication request;
Module 48 is established for after the account name and static password are by verification, establishing between second application
Long interface channel;
Preserving module 49 is used to that the account name and the long interface channel to be corresponded to and be preserved.
Dynamic password is sent to mobile device by the present embodiment by using interface channel, is not limited to be sent out according to cell-phone number
It send, effectively improves the scope of application of dynamic password login.
Fig. 6 is the structural schematic diagram for the entering device based on dynamic password that another embodiment of the present invention proposes, the device
60 include establishing module 61 and receiving module 62.
Establish module 61 for and server-side establish corresponding with account name long interface channel.
In one embodiment, the module 61 of establishing includes first unit 611 and second unit 612, as shown in Figure 7.
The first unit 611, after the second application starts, for sending login authentication request, institute to the server-side
It includes the account name and static password to state in login authentication request, and second application is pre-installed in mobile device
Application for receiving dynamic password;
The second unit 612, the server-side to the account name and static password by verification after, for establishing
The long interface channel, and make the server-side that the account name and the long interface channel are corresponded to and be preserved.
In another embodiment, after the long interface channel interrupts, the module 61 of establishing is specifically used for by described
Using automatically attempting to establish interface channel with the server-side, until establishing the long interface channel.
Receiving module 62 is used to receive the dynamic password that the server-side is sent according to the long interface channel, described dynamic
State password is that the server-side generates after receiving the request message comprising the account name that the first application is sent, described
First application is the application that current guiding user carries out register.
In one embodiment, described device 60 further includes that module 63 is presented, as shown in fig. 7, the presentation module 63 is used for
The dynamic password is presented to the user by way of notifications;Alternatively, the dynamic password is presented on the application
Interface on.
Dynamic password is sent to mobile device by the present embodiment by using interface channel, is not limited to be sent according to cell-phone number
Server-side effectively improves the scope of application of dynamic password login.
It should be noted that in the description of the present invention, term " first ", " second " etc. are used for description purposes only, without
It can be interpreted as indicating or implying relative importance.In addition, in the description of the present invention, unless otherwise indicated, the meaning of " multiple "
It is two or more.
Any process described otherwise above or method description are construed as in flow chart or herein, and expression includes
It is one or more for realizing specific logical function or process the step of executable instruction code module, segment or portion
Point, and the range of the preferred embodiment of the present invention includes other realization, wherein can not press shown or discuss suitable
Sequence, include according to involved function by it is basic simultaneously in the way of or in the opposite order, to execute function, this should be of the invention
Embodiment person of ordinary skill in the field understood.
It should be appreciated that each section of the present invention can be realized with hardware, software, firmware or combination thereof.Above-mentioned
In embodiment, software that multiple steps or method can in memory and by suitable instruction execution system be executed with storage
Or firmware is realized.It, and in another embodiment, can be under well known in the art for example, if realized with hardware
Any one of row technology or their combination are realized:With the logic gates for realizing logic function to data-signal
Discrete logic, with suitable combinational logic gate circuit application-specific integrated circuit, programmable gate array (PGA), scene
Programmable gate array (FPGA) etc..
Those skilled in the art are appreciated that realize all or part of step that above-described embodiment method carries
Suddenly it is that relevant hardware can be instructed to complete by program, the program can be stored in a kind of computer-readable storage medium
In matter, which includes the steps that one or a combination set of embodiment of the method when being executed.
In addition, each functional unit in each embodiment of the present invention can be integrated in a processing module, it can also
That each unit physically exists alone, can also two or more units be integrated in a module.Above-mentioned integrated mould
The form that hardware had both may be used in block is realized, can also be realized in the form of software function module.The integrated module is such as
Fruit is realized in the form of software function module and when sold or used as an independent product, can also be stored in a computer
In read/write memory medium.
Storage medium mentioned above can be read-only memory, disk or CD etc..
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specifically show
The description of example " or " some examples " etc. means specific features, structure, material or spy described in conjunction with this embodiment or example
Point is included at least one embodiment or example of the invention.In the present specification, schematic expression of the above terms are not
Centainly refer to identical embodiment or example.Moreover, particular features, structures, materials, or characteristics described can be any
One or more embodiments or example in can be combined in any suitable manner.
Although the embodiments of the present invention has been shown and described above, it is to be understood that above-described embodiment is example
Property, it is not considered as limiting the invention, those skilled in the art within the scope of the invention can be to above-mentioned
Embodiment is changed, changes, replacing and modification.
Claims (16)
1. a kind of login method based on dynamic password, which is characterized in that including:
The request message that the first application is sent is received, includes account name in the request message, first application is mounted in
Guiding user carries out the application of register before mobile device is taken in;
It judges whether long interface channel corresponding with the account name, and when there are the long interface channel, generates dynamic
State password, the long interface channel are the interface channels between server-side and the second application, and second application is mounted in institute
State the application for receiving dynamic password in mobile device;
The dynamic password is sent to second application according to the long interface channel;
The first login authentication request that first application is sent is received, includes the account in the first login authentication request
Name and the dynamic password, and login authentication processing is carried out to user according to the account name and the dynamic password.
2. according to the method described in claim 1, it is characterized in that, further including:
The second login authentication request that second application is sent upon actuation is received, includes in the second login authentication request
The account name and static password;
After the account name and static password are by verification, the long interface channel between second application is established;
The account name and the long interface channel are corresponded to and preserved.
3. according to the method described in claim 1, it is characterized in that, after the generation dynamic password, the method further includes:
The account name and the dynamic password are corresponded to and preserved, and the expired time of the dynamic password is set, described in the basis
Account name and the dynamic password carry out login authentication processing to user, including:
Dynamic password corresponding with the account name received and expired time are obtained from the information pre-saved;
It is not out of date in the dynamic password of the preservation, and preserve dynamic password it is consistent with the dynamic password of reception when, allow institute
The corresponding user of account name is stated to log in.
4. according to the method described in claim 3, it is characterized in that, described allow the corresponding user of the account name to log in
Later, the method further includes:
Delete the dynamic password preserved.
5. a kind of login method based on dynamic password, which is characterized in that including:
And server-side establishes long interface channel corresponding with account name;The long interface channel is between server-side and the second application
Interface channel, second application be mounted in mobile device for receiving the application of dynamic password;
According to the long interface channel, the dynamic password that the server-side is sent is received, the dynamic password is the server-side
It is generated after receiving the request message comprising the account name that the first application is sent, first application is mounted in institute
State the application that guiding user before mobile device is taken in carries out register.
6. according to the method described in claim 5, it is characterized in that, described and server-side establishes long connection corresponding with account name
Channel, including:
After the second application starts, login authentication request is sent to the server-side, comprising described in the login authentication request
Account name and static password, second application are the applications for receiving dynamic password being pre-installed in mobile device;
The server-side to the account name and static password by verification after, establish the long interface channel, and make described
The account name and the long interface channel are corresponded to and are preserved by server-side.
7. according to the method described in claim 5, it is characterized in that, the dynamic password for receiving the server-side and sending
Later, the method further includes:
The dynamic password is presented to the user by way of notifications;Alternatively,
The dynamic password is presented on the interface of the application.
8. according to claim 5 to 7 any one of them method, which is characterized in that described after the long interface channel interrupts
Method further includes:
It automatically attempts to establish interface channel with the server-side by the application, until establishing the long interface channel.
9. a kind of entering device based on dynamic password, which is characterized in that including:
First receiving module includes account name in the request message for receiving the first request message using transmission, described
First application is mounted in the application that guiding user before mobile device is taken in carries out register;
Processing module, for judging whether long interface channel corresponding with the account name, and there are the long connections
When channel, dynamic password is generated, the long interface channel is the interface channel between server-side and the second application, and described second answers
With the application for receiving dynamic password being mounted in the mobile device;
Sending module, for the dynamic password to be sent to second application according to the long interface channel;
Login module, the first login authentication request sent for receiving first application, the first login authentication request
In include the account name and the dynamic password, and user log according to the account name and the dynamic password and is recognized
Card processing.
10. device according to claim 9, which is characterized in that further include:
Second receiving module, the second login authentication request sent upon actuation for receiving second application, described second
Include the account name and static password in login authentication request;
Module is established, for after the account name and static password are by verification, establishing the length between second application
Interface channel;
Preserving module, for corresponding to and preserving the account name and the long interface channel.
11. device according to claim 9, which is characterized in that after the generation dynamic password, described device further includes
Setup module, the setup module is used to correspond to the account name and the dynamic password and preserve, and it is close that the dynamic is arranged
The expired time of code, the login module are specifically used for:
Dynamic password corresponding with the account name received and expired time are obtained from the information pre-saved;
It is not out of date in the dynamic password of the preservation, and preserve dynamic password it is consistent with the dynamic password of reception when, allow institute
The corresponding user of account name is stated to log in.
12. according to the devices described in claim 11, which is characterized in that described that the corresponding user of the account name is allowed to step on
After record, described device further includes:
Removing module, for deleting the dynamic password preserved.
13. a kind of entering device based on dynamic password, which is characterized in that including:
Module is established, is used for and server-side establishes long interface channel corresponding with account name;Wherein, the long interface channel is clothes
The interface channel being engaged between end and the second application, second application are mounted in mobile device and are used to receive dynamic password
Application;
Receiving module, for according to the long interface channel, receiving the dynamic password that the server-side is sent, the dynamic password
It is that the server-side generates after receiving the request message comprising the account name that the first application is sent, described first answers
The application of register is carried out with guiding user before the mobile device is taken in is mounted in.
14. device according to claim 13, which is characterized in that the module of establishing includes that first unit and second are single
Member, including:
The first unit, after the second application starts, for sending login authentication request to the server-side, the login is recognized
Include the account name and static password in card request, second application is to be pre-installed in mobile device to be used to receive
The application of dynamic password;
The second unit, the server-side to the account name and static password by verification after, for establishing the length
Interface channel, and make the server-side that the account name and the long interface channel are corresponded to and be preserved.
15. device according to claim 13, which is characterized in that described device further includes that module, the presentation mould is presented
Block is used for:
The dynamic password is presented to the user by way of notifications;Alternatively,
The dynamic password is presented on the interface of the application.
16. according to claim 13 to 15 any one of them device, which is characterized in that after the long interface channel interrupts,
The module of establishing is specifically used for:
It automatically attempts to establish interface channel with the server-side by the application, until establishing the long interface channel.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410313130.0A CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410313130.0A CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104168261A CN104168261A (en) | 2014-11-26 |
| CN104168261B true CN104168261B (en) | 2018-09-07 |
Family
ID=51911885
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410313130.0A Active CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104168261B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107682316B (en) * | 2017-09-05 | 2020-02-14 | 平安科技(深圳)有限公司 | Method for generating dynamic password sending strategy and method for sending dynamic password |
| CN107919964B (en) * | 2017-12-29 | 2021-02-23 | 北京奇虎科技有限公司 | Method and system for data synchronization based on dynamic authentication information |
| CN112688979B (en) * | 2019-10-17 | 2022-08-16 | 阿波罗智能技术(北京)有限公司 | Unmanned vehicle remote login processing method, device, equipment and storage medium |
| CN116108474B (en) * | 2023-04-13 | 2023-06-30 | 深圳奥联信息安全技术有限公司 | Big data system password service method and system |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179382A (en) * | 2006-12-20 | 2008-05-14 | 腾讯科技(深圳)有限公司 | Login method and system |
| CN102546914A (en) * | 2010-12-27 | 2012-07-04 | 梁志龙 | Automatic login system based on smart phone and control method |
| CN103124267A (en) * | 2013-02-07 | 2013-05-29 | 百度在线网络技术(北京)有限公司 | Method, system and cloud server for login/registration through mobile terminal |
| CN103152399A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Login method, login system and cloud server |
| CN103401686A (en) * | 2013-07-31 | 2013-11-20 | 陕西海基业高科技实业有限公司 | User Internet identity authentication system and application method thereof |
| CN103888451A (en) * | 2014-03-10 | 2014-06-25 | 百度在线网络技术(北京)有限公司 | Method, device and system for certification authorization |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2498472A1 (en) * | 2011-03-10 | 2012-09-12 | France Telecom | Method and system for granting access to a secured website |
| US8474014B2 (en) * | 2011-08-16 | 2013-06-25 | Veritrix, Inc. | Methods for the secure use of one-time passwords |
-
2014
- 2014-07-02 CN CN201410313130.0A patent/CN104168261B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179382A (en) * | 2006-12-20 | 2008-05-14 | 腾讯科技(深圳)有限公司 | Login method and system |
| CN102546914A (en) * | 2010-12-27 | 2012-07-04 | 梁志龙 | Automatic login system based on smart phone and control method |
| CN103124267A (en) * | 2013-02-07 | 2013-05-29 | 百度在线网络技术(北京)有限公司 | Method, system and cloud server for login/registration through mobile terminal |
| CN103152399A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Login method, login system and cloud server |
| CN103401686A (en) * | 2013-07-31 | 2013-11-20 | 陕西海基业高科技实业有限公司 | User Internet identity authentication system and application method thereof |
| CN103888451A (en) * | 2014-03-10 | 2014-06-25 | 百度在线网络技术(北京)有限公司 | Method, device and system for certification authorization |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104168261A (en) | 2014-11-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110351269B (en) | Method for logging in open platform through third-party server | |
| CN108768970B (en) | Binding method of intelligent equipment, identity authentication platform and storage medium | |
| CN106209763B (en) | A kind of login method and system | |
| US9015804B2 (en) | Mobile human challenge-response test | |
| CN104092811B (en) | Mobile terminal information download method, system, terminal device and server | |
| CN103152400B (en) | The method, system and the cloud server that log in is carried out by mobile terminal | |
| CN104113533B (en) | Log in authorization method and device | |
| WO2017091401A1 (en) | Identity authentication method, system, business server and authentication server | |
| CN103986720A (en) | Log-in method and device | |
| US10015668B2 (en) | Method of establishing communications | |
| CN104901970B (en) | A kind of Quick Response Code login method, server and system | |
| CN104168261B (en) | Dynamic password login method and device | |
| CN104967622B (en) | Based on the means of communication of vocal print, device and system | |
| CN109639719B (en) | Identity verification method and device based on temporary identifier | |
| CN111949958B (en) | Authorization authentication method and device in Oauth protocol | |
| CN111953668B (en) | Network security information processing method and device | |
| CN108600234A (en) | A kind of auth method, device and mobile terminal | |
| CN109218370A (en) | Message method and device, electronic equipment | |
| CN109981598A (en) | Convenient processing method, device and the electronic equipment of personal information | |
| CN107087293A (en) | A kind of cut-in method, terminal and server | |
| CN105095729B (en) | A kind of Quick Response Code login method, server and system | |
| CN107819766A (en) | Safety certifying method, system and computer-readable recording medium | |
| CN107707529A (en) | A kind of client validation method for realizing limitation identifying code transmission times | |
| CN104270336B (en) | The migration method, apparatus and system of remote applications running terminal | |
| CN103595611A (en) | A method, a system and a device for realizing instant messaging application |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |