CN104639505B - A kind of short message bidirectional safe auth method and system - Google Patents
A kind of short message bidirectional safe auth method and system Download PDFInfo
- Publication number
- CN104639505B CN104639505B CN201310562250.XA CN201310562250A CN104639505B CN 104639505 B CN104639505 B CN 104639505B CN 201310562250 A CN201310562250 A CN 201310562250A CN 104639505 B CN104639505 B CN 104639505B
- Authority
- CN
- China
- Prior art keywords
- user
- account
- short message
- center
- phone number
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0846—Network architectures or network communication protocols for network security for authentication of entities using passwords using time-dependent-passwords, e.g. periodically changing passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Telephonic Communication Services (AREA)
Abstract
The present invention provides a kind of short message bidirectional safe auth method and system, the method includes:Obtain user account, the interim identifying code of user of simultaneously cache user input;Corresponding subscriber phone number is inquired, and send an SMS to user mobile phone according to subscriber phone number and verified according to the user account;Compared with receiving the interim identifying code of user of user mobile phone input and the interim identifying code of the user with caching before, when confirming that two interim identifying codes of user are consistent, verification result is returned to user.Compared with prior art, the present invention has ensured the uniqueness of user, avoids the possibility by similar fishing website fraud, provides reliable authentication scheme, security of system higher.
Description
Technical field
The present invention relates to information technology and field of data storage more particularly to a kind of short message bidirectional safe auth methods
And system.
Background technology
With the rapid development of Internet technology, various forms of the Internet, applications emerge in an endless stream, colourful service
Actual life for people brings great convenience, when people have got used to carrying out social, shopping, business using internet
While the activity such as transaction, internet also proposed higher requirement to the Thoughts on Safe Identity Verification of user.
The use of user name and static password login is the conventional method that most of the Internet, applications realize authentication, user
Username and password, the username and password that the page will be reserved when calling user's registration are inputted in the login page of the Internet, applications
It is compared with it, if consistent will recognize that user identity and provide corresponding service, will refuse it if inconsistent and continue to visit
It asks.
Some authentication systems further improve safety, provide to user mobile phone and send random cipher(Or it tests
Demonstrate,prove code)Function.A kind of authentication system of existing scheme includes server, client and mobile phone, and the identity is tested
Card device, that is, server include transceiver module, memory module, counting module, judgment module, generation module, authentication module,
Control module and computing module.It is described that identifying code is generated by server based on the auth method of short message and records generation verification
The time of code, the identifying code that generation is sent by tyre mode input client to user mobile phone, then by user, are sent out by client
It gives server to be verified, can prevent man-in-the-middle attack to a certain extent, and when the identifying code that generates of server has
Effect property, becomes invalid after the specified date.
Specifically, in the implementation of the present invention, inventor has found that currently existing scheme has the disadvantage that:
There are following defects for the existing identity validation technology using static password:Since the memory habit for being limited to user is led
The higher for causing static password security intensity that can not do, and excessively complicated password easilys lead to user's forgetting.
The operation team awareness of safety of certain the Internet, applications is thin, system there are loophole or repairing loophole to cause not in time
Username and password is easily stolen by hacker, if user uses same user name and password in multiple the Internet, applications, is let out
The information of dew will cause great security risk simultaneously to these the Internet, applications.
Fishing website steals the information of user using this kind of identity validation technology, as user be strayed into fishing website registration or
True username and password can be inputted during login, fishing website can be recorded and user is pretended to be to be used in true website should
Information is engaged in illegal activity or the illusion for causing to login successfully to user, and then provides false business function and gain user's silver by cheating
The sensitive informations such as row account, password, easily cause economic loss and emotional distress for user.
It is existing that based on the authentication system of short message, there are following defects:Although the system can using short-message verification mode
User name password and the false login of manufacture are stolen, but between its authentication module and client application to avoid fishing website
There is no information that filtering technique is isolated, reproducible this kind of authentication system of certain fishing websites simultaneously induces user to be noted in its system
Volume, and then false business user cheating is provided, however it remains security risk.
The system sends plaintext random cipher to user(Identifying code), will be made as out-of-service time setting is too short to user's input
Into inconvenience, the long hidden danger that then there is leakage.The system can be transferred to others to the identifying code that user sends and use, at some
It emphasizes the non repudiation that can not ensure to merchandise in the special applications of user's uniqueness, be easy to cause economic dispute.
Invention content
The shortcomings that it is an object of the invention to overcome the prior art and deficiency provide a kind of short message bidirectional safe authentication
Method and system.
A kind of short message bidirectional safe auth method, the method includes:
Obtain user account, the interim identifying code of user of simultaneously cache user input;
Corresponding subscriber phone number is inquired, and send an SMS to use according to subscriber phone number according to the user account
Family mobile phone is verified;
Compared with receiving the interim identifying code of user of user mobile phone input and the interim identifying code of the user with caching before, when true
Recognize two interim identifying codes of user it is consistent when, return to verification result to user.
User account, the interim identifying code of user for obtaining simultaneously cache user input, further includes:
In the absence of the user account is determined, the user is notified, user account is not present.
The method further includes:
In the absence of the user account is determined, prompt the user's registration or re-enter correct user account.
The method further includes:
In the presence of determining the user account, the user is notified to be received with mobile phone with replying verification short message.
The method further includes:
The user account is submitted into identity information storage center;
Whether the identity information storage center preserves corresponding phone number according to user account inquiry, if
It is to return to the phone number;Otherwise, return can not inquire corresponding phone number information.
The method further includes:
The verification short message for including application service identification code is sent to user;And obtain user mobile phone input with the application
The interim identifying code of the corresponding user of Service Identifier.
The method further includes:
Verification result is returned to the user by application service interface;And return to verification knot to authentication service center
Fruit;The authentication service center sends verification result to short message service center;The short message service center is short by sending
Believe to user and return to verification result.
The method further includes:
It receives the simultaneously newly-built account of cache user input, phone number and needs associated application service identification code;And it carries
Hand over duplication of name inquiry request;
The newly-built account of inquiry and phone number whether there is in data on stock to be repeated;Return to Accounting Check result.
A kind of short message bidirectional safe authentication system, the system comprises authentication service terminal, authentications to take
Business center, identity information storage center and short message service center, wherein,
The authentication service terminal, for obtaining user account, the interim identifying code of user of simultaneously cache user input;
The user account is sent to the authentication service center;The user received from authentication service center is interim
Identifying code is compared with the interim identifying code of the user of own cache, when confirming that two interim identifying codes of user are consistent,
Verification result is returned to user;
The authentication service center is associated with hand for inquiring the user account to the identity information storage center
Machine number;And the phone number is sent to the short message service center;The user that the user mobile phone is replied tests temporarily
It demonstrate,proves code and sends authentication service terminal;
The identity information storage center for storing the incidence relation of the user account and phone number, receives institute
The inquiry request at authentication service center is stated, and the corresponding phone number of the user account is returned into the authentication and is taken
Business center;
The short message service center, for sending verification short message to user;Receive described the testing temporarily of user mobile phone input
Card code is simultaneously sent to the authentication service center.
The system also includes registration service platforms, for receiving the registration request of user, are taken by the authentication
Whether business central authentication account, cell-phone number have been registered, and to user feedback verification result.
The authentication service center is additionally operable to receive and process the new user's registration from the registration service platform
Application, account of the same name and cell-phone number are checked for by the identity information storage center, if not, believing to the identity
Breath storage center increases the application service identification code that account and association user are selected newly.
The present invention by the interim check code of user with by the interim check code of association user phone number message reply into
Row compares, and realizes bidirectional safe identity authentication method.The interim check code of user and hand that user submits in login and registration
Organ's connection identifying code is the variable-length password that user freely edits, and improves safety and user experience.Authentication service is whole
End realizes that safety is direct-connected with authentication service center, and many-to-one bi-directional association, identity are realized by application service identification code
Service for checking credentials terminal only preserves user account, and user account is detached with association phone number.User registers in registration service platform
General account, by authentication service central synchronous to authentication service terminal, each application system corresponds to an identity
Service for checking credentials terminal, each application service correspond to an application service identification code, and each general account corresponds to multiple application services
Identification code realizes that general account can use in the application service system of multiple use certificate service terminals.Identity is tested
Demonstrate,prove the data dispatch that service centre provides bidirectional safe authentication.Compared with prior art, the present invention can be by by user
Interim check code is compared with by the interim check code of association user phone number message reply, in application service provider
While verifying user identity, user can also verify the identity of application service provider by answer short message, and application service carries
Supplier ensure that the uniqueness and non repudiation of user to a certain extent, and user is avoided by similar fishing website fraud
Possibility.Meanwhile the used interim check code of user and mobile phone association identifying code are variable for the on-fixed that user freely edits
Different character strings can be used in length password every time, improves security of system.
Description of the drawings
Fig. 1 is the short message bidirectional safe auth method principle flow chart that the embodiment of the present invention 1 provides;
Fig. 2 is the short message bidirectional safe authentication system structure diagram that the embodiment of the present invention 2 provides.
Specific embodiment
The specific embodiment of the present invention is described in detail below in conjunction with the accompanying drawings.But embodiments of the present invention are unlimited
In this.
In each embodiment of the present invention, a kind of bidirectional safe auth method and system based on short message are provided, is used
Independently of the bidirectional safe authentication system of application end application end and user, user and application can be realized using SMS
The bidirectional identification verification at end.The authentication system has general account service ability simultaneously, with reference to bidirectional safe authentication
A general account can be used to realize secure log in multiple application services for flow, user.
As shown in Figure 1, for the short message bidirectional safe auth method principle flow chart that the embodiment of the present invention 1 provides, tool
Body is as follows:
Step 10, user account, the interim identifying code of user of simultaneously cache user input are obtained.
User inputs user account and the interim identifying code of user at application service interface and submits registration;
Authentication service terminal inquiry account whether there is, and the interim identifying code of cache user;When determining user account
In the absence of, notify user, user account is not present;Prompting user's registration re-enters correct user account.
Authentication service terminal returns to account state by application service circle user oriented, as account has prompting user
Reinspection card short message need to be received back with mobile phone, there is no then require user's registration or re-enter correct account for account;
Authentication service terminal sends account and application service identification code to authentication service center.
Step 20, corresponding subscriber phone number is inquired, and send short message according to subscriber phone number according to user account
It is verified to user mobile phone.
Authentication service central cache application service identification code waits for account relating phone number query result;
The inquiry request of account relating phone number is submitted to identity information storage center in authentication service center;
Identity information storage center inquires the phone number of the account relating according to account;
Identity information storage center returns to the phone number of the account relating to authentication service center;
Authentication service center receives and is sent to short message service center together with application service identification code after phone number.
Short message service center sends the verification short message for including application service identification code according to phone number to user;
User inputs the user interim identifying code identical with application service interface after receiving verification short message and replys;
Short message service center will be back to authentication service center by the interim identifying code of the user of message reply.
Authentication service center will be back to authentication service terminal by the interim identifying code of the user of message reply.
Step 30, the interim identifying code of user and the interim identifying code ratio of the user with caching before of user mobile phone input are received
Compared with when confirming that two interim identifying codes of user are consistent, to user's return verification result.
Authentication service terminal is by the interim identifying code of the user received from authentication service center and has been buffered in end
The interim identifying code of user at end is compared;
Authentication service terminal returns to verification result by application service circle user oriented.
Further, authentication service terminal returns to verification result to authentication service center;
Authentication service center sends verification result to short message service center;
Short message service center returns to verification result by sending short message to user;
So far, the bidirectional safe authentication flow that user logs in terminates.
Further, it in the present embodiment, further includes user and general account flow is registered by registration service platform, specifically such as
Under:
User inputs newly-built account, phone number in registration service platform and needs associated application service identification code(With
Identity authentication service terminal-pair should)And it submits;
Registration service platform sends newly-built account, phone number and application service identification code simultaneously to authentication service center
Submit duplication of name inquiry request;
Authentication service central cache creates account, phone number and application service identification code;
Newly-built account and phone number inquiry request are submitted to identity information storage center in authentication service center;
Identity information storage center inspection creates account and phone number in data on stock with the presence or absence of repetition;
Identity information storage center returns to Accounting Check result to authentication service center;
Authentication service center returns to Accounting Check result to registration service platform;
It is NULL such as to repeat account quantity(I.e. without repeating account), then user's input is prompted for verifying account and mobile phone
The mobile phone association identifying code of number-associated relationship;
User submits mobile phone association identifying code to registration service platform;
Registration service platform caches mobile phone association identifying code;
Registration service platform sends mobile phone association identifying code and checking request to authentication service center;
Authentication service center extracts newly-built account and is associated with phone number and is sent in short message service in the buffer
The heart;
Short message service center sends newly-built account character string to user by short message and user is required to reply identical mobile phone
Correlating validation code;
User passes through the identical mobile phone association identifying code of message reply;
Short message service center receives the mobile phone association identifying code of message reply and is sent to authentication service center;
Authentication service center returns to mobile phone association identifying code to registration service platform;
The mobile phone association identifying code of registration service platform extraction caching with by the mobile phone association identifying code of message reply into
Row compares;
Registration service platform returns to comparison result to user, prompts verifying if result is True, as result is
False prompting users re-register;
Registration service platform returns to comparison result to authentication service center;
The concerned account numbers information is removed in authentication service central cache if comparison result is False, such as compares knot
Fruit then extracts account data in the buffer for True;
Authentication service center identifies the newly-built account extracted in the buffer, phone number and associated application service
Code is sent to identity information storage center;
Identity information storage center increases account data newly;
Identity information storage center returns to newly-increased account information abstract to authentication service center;
Authentication service center is same to corresponding authentication service terminal transmission account according to application service identification code
Walk information;
Authentication service terminal increases account newly;
Authentication service terminal returns to newly-built account success message to authentication service center, removes caching;
Authentication service center returns to newly-built account success message to registration service platform;
Registration service platform returns to newly-built account success message to user.
So far, user registers general account flow by registration service platform and terminates.
As shown in Fig. 2, for the short message bidirectional safe authentication system structure diagram that the embodiment of the present invention 2 provides, it should
System includes authentication service terminal 100, authentication service center 200, identity information storage center 300 and short message service
Center 400, it is specific as follows:
Authentication service terminal 100 for obtaining user account input by user, the interim identifying code of user, determines to use
In the presence of the account of family, cache user account and the interim identifying code of user;And send user account to authentication service center 200
With corresponding application service identification code;The interim identifying code of user and own cache that will be received from authentication service center 200
The interim identifying code of user be compared, when confirm two interim identifying codes of user it is consistent when, to user return verification result;
Authentication service center 200, for inquiring user account association cell-phone number to identity information storage center 300
Code;And phone number and application service identification code are sent to short message service center 400;The interim identifying code of user is sent into identity
Service for checking credentials terminal 200;
Identity information storage center 300 for storing the incidence relation of user account and phone number, receives authentication
The inquiry request of service centre, and the corresponding phone number of user account is returned into authentication service center 200;
Short message service center 400, for sending the verification short message for including application service identification code to user;It is defeated to receive user
The interim identifying code that enters simultaneously is sent to authentication service center 200.
Further, which further includes registration service platform 500, for receiving the registration request of user, passes through identity
Service for checking credentials center 200 verifies whether account, cell-phone number have been registered, and to user feedback verification result.
Further, the authentication service center 200 is additionally operable to receive and process from registration service platform 500
New user's registration application, account of the same name and cell-phone number are checked for by identity information storage center 300, if not,
The application service identification code that account and association user select is increased newly to identity information storage center 300.
In each embodiment of the present invention, authentication service terminal takes with application service provider server and authentication
Business center connects, whole user account informations of terminal storage application service provider.At application service interface when user logs in
Account and the interim check code of user are inputted, authentication service terminal searches what user submitted according to the user account information of storage
User account whether there is, if user account exists, authentication service terminal is by the interim check code of cache user and will use
Family account, application service identification code are sent to authentication service center and carry out next step bidirectional identification verification.Authentication takes
The interim check code of user that terminal of being engaged in is replied by authentication service center reception user mobile phone is with user in application service circle
The interim check code of user of face input is compared, and reversely send comparison result.
Authentication service center is the core of system, with authentication service terminal, identity information storage center, short message
Service centre, the connection of registration service platform, authentication service center and all authentication service terminal real-time synchronization accounts
Number information, and account information change conditions are sent to the storage of identity information storage center.
After authentication service center receives the account information of authentication service terminal transmission and the interim check code of user
To the phone number of identity information storage center inquiry account relating, by short message service center to user mobile phone after successful inquiring
It sends the user containing application service identification code and verifies code check short message temporarily.Authentication service center reception user passes through short
The interim check code short message of user that telecommunications services center is replied, the extraction interim check code of user are sent to the confession of authentication service terminal
It is compared.
Authentication service center receives and processes the new user from authentication service terminal and registration service platform
Application for registration checks for account of the same name and cell-phone number by identity information storage center, such as meets uniqueness principle, then
The application service identification code that account and association user select is increased newly to identity information storage center.
Short message service center is connect with authentication service center, is responsible for sending containing application service identification to user mobile phone
The user of code verifies code check request short message temporarily, while it is interim by the user that answer short message mode returns to receive user mobile phone
Check code is committed to authentication service center.
Short message service center receives the check results message from authentication service center, and passes through short message sending to use
Family mobile phone.
Identity information storage center is connect with authentication service center, storage bidirectional safe authentication system whole
Account information, mainly including user account, associated phone number, application service identification code etc., user account, associated mobile phone
Number has uniqueness, and user account can be associated with multiple application service identification codes, and to ensure safety, identity information storage center is only
The account service request at response identity service for checking credentials center.
Registration service platform is connect with identity information storage center, and major function is to meet the application need of general account
It asks, registration service platform can be by authentication service central authentication account, cell-phone number after the registration request for receiving user
It is no to be registered, and to user feedback verification result.Registration service platform is deposited by authentication service center with identity information
All application function identification codes of central synchronous are stored up, are provided to the user when user registers general account by registration service platform
A complete application service identification code list, supports the associated application service provider of user's unrestricted choice.
Bidirectional safe auth method includes the interim check code bi-directional verification of user, is received based on short message directive sending
The associated identity uniqueness verification of user account, phone number.
It should be noted that:The short message bidirectional safe authentication system that above-described embodiment provides is in short message bidirectional safe body
It, can as needed will be above-mentioned only with the division progress of above-mentioned each function module for example, in practical application during part verification
Function distribution is completed by different function module, i.e., the internal structure of system is divided into different function modules, with complete with
The all or part of function of upper description.In addition, short message bidirectional safe authentication system and short message that above-described embodiment provides
Bidirectional safe auth method embodiment belongs to same design, and specific implementation process refers to embodiment of the method, here no longer
It repeats.
The embodiments of the present invention are for illustration only, do not represent the quality of embodiment.
To sum up, in each embodiment of the present invention, the existing auth method based on short message is by server by short message
The random cipher of generation is sent to user mobile phone, then is verified by user in application service interface input random cipher, the party
Method can replicate easily, and there are security risks.Bidirectional safe authentication system is faced by the user that application service interface is submitted
When check code be compared with by the interim check code of association user phone number message reply, in application service, provider tests
While demonstrate,proving user identity, user can also verify the identity of application service provider by answer short message, and application service provides
Side ensure that the uniqueness and non repudiation of user to a certain extent, and user avoids can by similar fishing website fraud
It can property.
There is the defects of simple dangerous, complexity is not easy to remember, bidirectional safe body in existing account, the mode of fixed password
The interim check code of user that part verification system uses and the on-fixed variable-length that mobile phone association identifying code is that user freely edits
Password, can be used different character strings every time, coding can simply can be complicated, it is disposable safe.
Existing account, the mode of fixed password are easily revealed because of system vulnerability or artificial mode, and bidirectional safe identity
Authentication service terminal in verification system realizes that safety is direct-connected with authentication service center, passes through application service identification code
Realize many-to-one bi-directional association, authentication service terminal only preserves user account, because of criminal even if reveal account
The interim check code of user can not be received and avoid illegally logging in, user account ensure that account with being associated with the separate mode of phone number
Number system it is firm and safe.
Existing identity authorization system is substantially all in a manner that a kind of application service corresponds to an account, in face of multiple
Application service user needs to remember more set accounts and password, and the bidirectional safe identity authorization system based on short message supports user noting
Volume service platform registers general account, by authentication service central synchronous to authentication service terminal, realizes general account
It number can be used in the application service system of multiple use certificate service terminals, user can only one account cooperation of memory
Mobile phone may log into multiple application service systems, reduces the memory difficulty of user to greatest extent, improves user experience.
Existing identity authorization system is essentially all the part presence as application service system, with application service system
System can not detach, and the bidirectional safe identity authorization system based on short message can be independent third party's authentication system and application
Service system is isolated, and the flexibility of the system integration is higher, can be applicable in website log verification, client login authentication, movement mutually
The authentication service of the multiple types application systems such as the verification of working application service login, network trading authentication.
Above-described embodiment is the preferable embodiment of the present invention, but embodiments of the present invention are not by above-described embodiment
Limitation, other any Spirit Essences without departing from the present invention with made under principle change, modification, replacement, combine, simplification,
Equivalent substitute mode is should be, is included within protection scope of the present invention.
Claims (10)
1. a kind of short message bidirectional safe auth method, which is characterized in that the method includes:
Obtain user account, the interim identifying code of user of simultaneously cache user input;
Corresponding subscriber phone number is inquired, and send an SMS to user hand according to subscriber phone number according to the user account
Machine is verified;
Compared with receiving the interim identifying code of user of user mobile phone input and the interim identifying code of the user with caching before, when confirmation two
When a interim identifying code of the user is consistent, verification result is returned to user;
The method further includes:
Verification result is returned to the user by application service interface;And return to verification result to authentication service center;
The authentication service center sends verification result to short message service center;The short message service center by send short message to
User returns to verification result.
2. the method as described in claim 1, which is characterized in that described to obtain the simultaneously user account of cache user input, user
Interim identifying code, further includes:
In the absence of the user account is determined, the user is notified, user account is not present.
3. method as claimed in claim 2, which is characterized in that the method further includes:
In the absence of the user account is determined, prompt the user's registration or re-enter correct user account.
4. the method as described in claim 1, which is characterized in that the method further includes:
In the presence of determining the user account, the user is notified to be received with mobile phone with replying verification short message.
5. the method as described in claim 1, which is characterized in that the method further includes:
The user account is submitted into identity information storage center;
Whether the identity information storage center preserves corresponding phone number according to user account inquiry, if so, returning
Return the phone number;Otherwise, return can not inquire corresponding phone number information.
6. the method as described in claim 1, which is characterized in that the method further includes:
The verification short message for including application service identification code is sent to user;And obtain user mobile phone input with the application service
The interim identifying code of the corresponding user of identification code.
7. the method as described in claim 1, which is characterized in that the method further includes:
It receives the simultaneously newly-built account of cache user input, phone number and needs associated application service identification code;And submit weight
Name inquiry request;
The newly-built account of inquiry and phone number whether there is in data on stock to be repeated;Return to Accounting Check result.
8. a kind of short message bidirectional safe authentication system, which is characterized in that the system comprises authentication service terminal, bodies
Part service for checking credentials center, identity information storage center and short message service center, wherein,
The authentication service terminal, for obtaining user account, the interim identifying code of user of simultaneously cache user input;To institute
It states authentication service center and sends the user account;The user received from authentication service center is verified temporarily
Code is compared with the interim identifying code of the user of own cache, when two interim identifying codes of user of confirmation are consistent, Xiang Yong
Family returns to verification result;
The authentication service center is associated with cell-phone number for inquiring the user account to the identity information storage center
Code;And the phone number is sent to the short message service center;The interim identifying code of user that the user mobile phone is replied
Send authentication service terminal;
The identity information storage center for storing the incidence relation of the user account and phone number, receives the body
The inquiry request at part service for checking credentials center, and the corresponding phone number of the user account is returned in the authentication service
The heart;
The short message service center, for sending verification short message to user;Receive the interim identifying code of user mobile phone input
And it is sent to the authentication service center.
9. system as claimed in claim 8, which is characterized in that the system also includes registration service platforms, are used for receiving
Whether the registration request at family has been registered by the authentication service central authentication account, cell-phone number, and to user feedback
Verification result.
10. system as claimed in claim 9, which is characterized in that the authentication service center is additionally operable to receive and process
New user's registration application from the registration service platform is checked for of the same name by the identity information storage center
Account and cell-phone number are known if not, increasing the application service that account and association user select newly to the identity information storage center
Other code.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310562250.XA CN104639505B (en) | 2013-11-11 | 2013-11-11 | A kind of short message bidirectional safe auth method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310562250.XA CN104639505B (en) | 2013-11-11 | 2013-11-11 | A kind of short message bidirectional safe auth method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104639505A CN104639505A (en) | 2015-05-20 |
| CN104639505B true CN104639505B (en) | 2018-06-26 |
Family
ID=53217828
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310562250.XA Active CN104639505B (en) | 2013-11-11 | 2013-11-11 | A kind of short message bidirectional safe auth method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104639505B (en) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105246058B (en) * | 2015-09-01 | 2019-08-06 | 中国联合网络通信集团有限公司 | The verification method and short message server of short message |
| CN107018117A (en) * | 2016-01-27 | 2017-08-04 | 广州博鳌纵横网络科技有限公司 | A kind of method and system for preventing that webpage from maliciously being verified |
| CN105915348A (en) * | 2016-05-25 | 2016-08-31 | 天津光电安辰信息技术有限公司 | Voice encryption system based on domestic commercial cipher algorithm and realization method thereof |
| CN106027531A (en) * | 2016-05-25 | 2016-10-12 | 天津光电安辰信息技术有限公司 | Voice encryption system based on smartphone and realization method thereof |
| CN106296202A (en) * | 2016-08-15 | 2017-01-04 | 沈阳林科信息技术有限公司 | A kind of method of consumer's risk prevention and control in terminal charge payment process |
| CN108737975B (en) * | 2017-04-17 | 2021-12-28 | *** | Communication control method |
| CN110020950A (en) * | 2019-04-10 | 2019-07-16 | 湖北风口网络科技有限公司 | A kind of on-line finance method of commerce and device |
| CN110298148A (en) * | 2019-05-21 | 2019-10-01 | 视联动力信息技术股份有限公司 | A kind of method and device of login authentication |
| CN112383467A (en) * | 2020-11-12 | 2021-02-19 | 拉扎斯网络科技(上海)有限公司 | Verification method, verification device, electronic equipment and computer-readable storage medium |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1633072A (en) * | 2005-01-10 | 2005-06-29 | 虞淑瑶 | A dual-server authentication scheme supporting weak password |
| CN102164141A (en) * | 2011-04-24 | 2011-08-24 | 陈珂 | Method for protecting security of account |
| CN102457373A (en) * | 2010-10-19 | 2012-05-16 | 捷达世软件(深圳)有限公司 | System and method for bidirectionally authenticating handheld equipment |
| CN102984261A (en) * | 2012-12-04 | 2013-03-20 | 中国联合网络通信集团有限公司 | Network service login method, equipment and system based on mobile telephone terminal |
| CN103024706A (en) * | 2013-01-10 | 2013-04-03 | 甘肃省科学技术情报研究所 | Short message based device and short message based method for bidirectional multiple-factor dynamic identity authentication |
| CN102300182B (en) * | 2011-09-07 | 2013-08-14 | 飞天诚信科技股份有限公司 | Short-message-based authentication method, system and device |
-
2013
- 2013-11-11 CN CN201310562250.XA patent/CN104639505B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1633072A (en) * | 2005-01-10 | 2005-06-29 | 虞淑瑶 | A dual-server authentication scheme supporting weak password |
| CN102457373A (en) * | 2010-10-19 | 2012-05-16 | 捷达世软件(深圳)有限公司 | System and method for bidirectionally authenticating handheld equipment |
| CN102164141A (en) * | 2011-04-24 | 2011-08-24 | 陈珂 | Method for protecting security of account |
| CN102300182B (en) * | 2011-09-07 | 2013-08-14 | 飞天诚信科技股份有限公司 | Short-message-based authentication method, system and device |
| CN102984261A (en) * | 2012-12-04 | 2013-03-20 | 中国联合网络通信集团有限公司 | Network service login method, equipment and system based on mobile telephone terminal |
| CN103024706A (en) * | 2013-01-10 | 2013-04-03 | 甘肃省科学技术情报研究所 | Short message based device and short message based method for bidirectional multiple-factor dynamic identity authentication |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104639505A (en) | 2015-05-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104639505B (en) | A kind of short message bidirectional safe auth method and system | |
| CN106357644B (en) | Identity identifying method, system and server based on block chain network | |
| US20200143028A1 (en) | Authentication system | |
| CN105246073B (en) | The access authentication method and server of wireless network | |
| CN105592065B (en) | A kind of Website logging method and its login system based on SMS | |
| CN101034984B (en) | Establishing the true identify database of the user with the personal information submitted by the user | |
| CN101136909B (en) | Method and system for checking user real identification using communication network | |
| CN108463982A (en) | Carry out the system and method for certification online user for authorization server safe to use | |
| CN103209074B (en) | A kind of method of safety certification, system and short message processing device | |
| CN102164141A (en) | Method for protecting security of account | |
| CA2537455A1 (en) | Method and system for enhanced security using location-based wireless authentication | |
| CN1713571A (en) | Double-path pre-approval authentication method | |
| CN106789924A (en) | The method and system that a kind of digital certificate protection web site of use mobile terminal is logged in | |
| WO2007133274B1 (en) | Centralized identity verification and/or password validation | |
| RU2011140867A (en) | DELIVERY OF MOBILE CONTENT ON THE MOBILE NETWORK | |
| CN102130909A (en) | Authentication method and system | |
| CN102906776A (en) | A method for mutual authentication of a user and service provider | |
| CN107729727A (en) | The real name identification method and device of a kind of account number | |
| CN103024706A (en) | Short message based device and short message based method for bidirectional multiple-factor dynamic identity authentication | |
| US20120159598A1 (en) | User authentication system and method using personal identification number | |
| CN106559384A (en) | A kind of utilization public number realizes the method and device for logging in | |
| CN107241329A (en) | Account login process method and device | |
| JP2007065869A (en) | Service providing server, authentication server and authentication system | |
| CN105264817B (en) | Multi-factor authentication technology | |
| CN105871903A (en) | Information security control method and system as well as mobile terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |