CN112464700A - Authentication method based on biological characteristic information, computer system and readable medium - Google Patents
Authentication method based on biological characteristic information, computer system and readable medium Download PDFInfo
- Publication number
- CN112464700A CN112464700A CN202010836711.8A CN202010836711A CN112464700A CN 112464700 A CN112464700 A CN 112464700A CN 202010836711 A CN202010836711 A CN 202010836711A CN 112464700 A CN112464700 A CN 112464700A
- Authority
- CN
- China
- Prior art keywords
- biometric information
- computer system
- authentication
- mobile terminal
- device identification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 59
- 238000005516 engineering process Methods 0.000 claims abstract description 8
- 238000004891 communication Methods 0.000 claims description 27
- 238000004590 computer program Methods 0.000 claims description 7
- 230000001815 facial effect Effects 0.000 claims description 6
- 210000000554 iris Anatomy 0.000 claims description 4
- 210000003462 vein Anatomy 0.000 claims description 3
- 230000002452 interceptive effect Effects 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 230000004044 response Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- YMHOBZXQZVXHBM-UHFFFAOYSA-N 2,5-dimethoxy-4-bromophenethylamine Chemical compound COC1=CC(CCN)=C(OC)C=C1Br YMHOBZXQZVXHBM-UHFFFAOYSA-N 0.000 description 1
- 241000545067 Venus Species 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000006748 scratching Methods 0.000 description 1
- 230000002393 scratching effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06V—IMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
- G06V40/00—Recognition of biometric, human-related or animal-related patterns in image or video data
- G06V40/70—Multimodal biometrics, e.g. combining information from different biometric modalities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
- G06Q20/40145—Biometric identity checks
Abstract
The present invention relates to data processing technology, and more particularly, to an authentication method based on biometric information, and an apparatus and a computer-readable storage medium for implementing the method. A biometric information based authentication method according to one aspect of the invention comprises the following steps performed at a first computer system: the method comprises the steps of obtaining biological feature information of a user in a set area and obtaining equipment identifications of one or more mobile terminals in the set area; and sending the acquired biometric information and the device identification to a second computer system; determining performability of subsequent operations according to an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification, wherein the step of acquiring the biometric information is performed simultaneously with or sequentially with the step of acquiring the device identification.
Description
Technical Field
The present invention relates to data processing technology, and more particularly, to an authentication method based on biometric information, and an apparatus and a computer-readable storage medium for implementing the method.
Background
Biometric information-based authentication techniques are widely used in fields such as payment and access management. Taking a payment process based on a face recognition technology as an example, firstly, a user uses a mobile terminal to shoot a face image, then the image is uploaded to a background computer system, the face features extracted from the image are compared with a face feature template stored in a database in advance, if a template with a higher matching degree is searched, the identity authentication is judged to be passed, so that a subsequent payment process (such as deduction, account scratching and the like) is executed, otherwise, the identity authentication is judged to be failed, and therefore the payment process is rejected.
However, when biometric information-based authentication techniques are introduced into payment applications, the following problems arise: in an application scenario with high requirements on real-time performance and concurrency, searching a database for a template (i.e., a 1: N recognition pattern) matching with the facial features of a user is a great challenge, and particularly, the problem is more prominent as the size of the user or the number N of templates increases.
In view of the above, it is desirable to provide an authentication or verification scheme that solves the above problems.
Disclosure of Invention
An object of the present invention is to provide a biometric information-based authentication method, a computer system, and a computer-readable storage medium, which can facilitate execution of authentication with high instantaneity and high concurrency without increasing the burden on the user side.
A biometric information based authentication method according to one aspect of the invention comprises the following steps performed at a first computer system:
the method comprises the steps of obtaining biological feature information of a user in a set area and obtaining equipment identifications of one or more mobile terminals in the set area; and
sending the acquired biometric information and the device identification to a second computer system;
determining performability of a subsequent operation based on an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
Optionally, in the above authentication method, the biometric information includes facial features, fingerprints, irises, voice prints, and palm internal vein distribution features.
Optionally, in the above authentication method, the device identification is selected from a combination of one or more of the following: an international mobile equipment identity, an international mobile subscriber identity and a medium access control address.
Optionally, in the above authentication method, the first computer system is a cash register terminal, and the mobile terminal is one or more of the following: cell-phone, panel computer and wearable equipment.
Optionally, in the authentication method, the step of obtaining the device identifier includes:
determining the most relevant mobile terminal according to the distance and the angle relative to the biological characteristic information acquisition device; and
and acquiring the device identification of the most relevant mobile terminal.
Optionally, in the above authentication method, the distance and angle of the mobile terminal with respect to the biometric information collection device are acquired using UWB or 5G positioning technology.
Optionally, in the authentication method, the step of obtaining the device identifier includes:
searching for a mobile terminal located in the set area;
indicating the searched mobile terminal to send a corresponding equipment identifier; and
and receiving the corresponding equipment identification from the searched mobile terminal.
Optionally, in the above authentication method, the device identifier is transmitted via at least one of the following channels: bluetooth channel, WiFi channel, UWB channel and 5G channel.
Optionally, in the authentication method, the obtained biometric information and the device identifier are sent to the second computer system via a mobile terminal and the authentication result is received from the second computer system.
Optionally, in the above authentication method, the subsequent operation involves a payment application or an entrance and exit management application.
A computer system according to another aspect of the invention comprises:
a biometric information acquisition device;
a wireless communication device;
a memory;
a processor; and
a computer program stored on the memory and executable on the processor to perform the following steps prior to performing data processing:
instructing the biological characteristic information acquisition device to acquire biological characteristic information of a user in a set area;
instructing the wireless communication device to acquire equipment identifications of one or more mobile terminals located in the set area;
instructing the wireless communication apparatus to transmit the acquired biometric information and a device identification to an authentication server and to receive an authentication result from the authentication server, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification; and
determining performability of a subsequent operation based on the authentication result,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
An apparatus for authentication based on biometric information according to another aspect of the present invention comprises:
the mobile terminal comprises a first module, a second module and a third module, wherein the first module is configured to acquire the biological characteristic information of a user in a set area and acquire the equipment identification of one or more mobile terminals in the set area; and
a second module configured to send the acquired biometric information and the device identification to a second computer system;
a third module configured to determine performability of a subsequent operation based on an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
A computer-readable storage medium according to a further aspect of the invention, on which a computer program is stored, wherein the program, when executed by a processor, carries out the method as described above.
Drawings
The above and/or other aspects and advantages of the present invention will become more apparent and more readily appreciated from the following description of the various aspects taken in conjunction with the accompanying drawings, in which like or similar elements are designated with like reference numerals. The drawings comprise:
fig. 1 exemplarily shows a case where a plurality of mobile terminals simultaneously appear within a set area.
2A-2C illustrate various relative positional relationships of a user or mobile terminal with a foreground computer system.
Fig. 3 is a flowchart of an authentication method based on biometric information according to an embodiment of the present invention.
Fig. 4 is a flowchart of an authentication method based on biometric information according to another embodiment of the present invention.
Fig. 5 is a flowchart of an authentication method based on biometric information according to another embodiment of the present invention.
FIG. 6 is a schematic block diagram of a computer system in accordance with another embodiment of the present invention.
FIG. 7 is a front view of a computer system according to another embodiment of the invention.
FIG. 8 is a front view of a computer system according to another embodiment of the invention.
Fig. 9 is a schematic block diagram of an apparatus for authentication based on biometric information according to still another embodiment of the present invention.
Fig. 10 is a flow chart of a payment process using the authentication method according to the above-described embodiment of the present invention.
Detailed Description
The present invention will now be described more fully hereinafter with reference to the accompanying drawings, in which exemplary embodiments of the invention are shown. This invention may, however, be embodied in different forms and should not be construed as limited to the embodiments set forth herein. The embodiments described above are intended to provide a full and complete disclosure of the present invention to more fully convey the scope of the invention to those skilled in the art.
In the present specification, words such as "comprise" and "comprises" mean that, in addition to elements and steps directly and unequivocally stated in the specification and claims, the technical solution of the present invention does not exclude other elements and steps not directly or unequivocally stated.
Terms such as "first" and "second" do not denote an order of the elements in time, space, size, etc., but rather are used to distinguish one element from another.
In this specification, the term "biometric information" broadly refers to information characterizing a biometric feature that can distinguish one individual from another, including, for example, but not limited to, facial features, fingerprints, iris, voice print, and palm venus distribution features, among others.
In this specification, the term "device identification" broadly refers to electronic information capable of distinguishing one mobile terminal from another, including, for example, but not limited to, international mobile equipment identity, international mobile subscriber identity, and media access control address, etc., and may also be, for example, a combination of these items.
In this specification, the term "mobile terminal" generally refers to a computing device with mobility, including, for example, but not limited to, cell phones, tablets, wearable devices, and the like.
According to one or more embodiments of the invention, biometric information associated with a user and a device identification of a mobile terminal are provided for authentication. Optionally, the biometric information and the device identification of the mobile terminal are provided to a background computer system, which determines whether a biometric information template matching the biometric information exists in the biometric information template associated with the device identification, and if so, generates a result that the authentication is passed, otherwise, generates a result that the authentication is not passed.
In accordance with one or more embodiments of the present invention, the acquisition of device identification takes advantage of the location proximity characteristics of users with their mobile devices. That is, since the mobile terminal is generally carried around by the user, and the two are adjacent in position, it is highly probable that the mobile terminal in the vicinity of the user has an association with the user. Thus, the search range can be greatly reduced when searching for a template matching the biometric features of the user. In addition, the device identification is acquired by a computer system (such as a cash register terminal) by utilizing the position proximity feature, so that the trouble of self input of a user is avoided, the processing process is more user-friendly, and the user experience is improved.
It should be noted that the step of acquiring the biometric information and the step of acquiring the device identifier may be executed synchronously, or may be executed in chronological order (for example, acquiring the biometric information first and then acquiring the device identifier, or acquiring the device identifier first and then acquiring the biometric information).
It should be noted that sometimes there may be multiple mobile terminals near the user or the biometric information collection device, one or more of which may be associated with or owned by the user, while the rest may be mobile terminals of unrelated users (e.g., fellow associates of the user, shop clerks, security personnel, passersby, etc.). Fig. 1 exemplarily shows a case where a plurality of mobile terminals simultaneously appear within a set area. As shown in fig. 1, two mobile terminals MT1 and MT2, which belong to different users, appear at the same time in front of the screen of the cash register terminal T.
In the case where there are multiple mobile terminals, optionally, only the device identification of the mobile terminal most relevant to the target object or user to be authenticated may be uploaded to the background computer system along with the biometric information of the user. In one or more embodiments according to the invention, the most relevant mobile terminal may be determined in the following manner: the distance and angle of the mobile terminal relative to the biometric information acquisition device (e.g., camera, image scanner, microphone, etc.) are obtained, and then the most relevant mobile terminal is determined from the plurality of mobile terminals based on the relative distance and angle. For example, in general, as a target object of authentication, a user and a mobile terminal of the user are closest in distance to a sensing element of a biometric information device, and in many cases, the user and the mobile terminal of the user face a signal receiving plane of the sensing element. Thereby, the spatial features may be utilized to determine the most relevant mobile terminal. It should be noted that the number of the most relevant mobile terminals may be one or more (for example, when the user carries a plurality of mobile terminals at the same time).
Alternatively, the distance and angle of the mobile terminal with respect to the biometric information acquisition device may be acquired using Ultra Wideband (UWB) or 5G positioning technology. 2A-2C illustrate various relative positional relationships of a user or mobile terminal with a foreground computer system. Taking the case shown in fig. 2A-2C as an example, UWB tags UWB1, UWB2 installed on both sides of the cash register terminal T, respectively, are used to locate the mobile terminal MT. In fig. 2A, the positioning result indicates the distance L between the mobile terminal MT and the tags UWB1, UWB21、L2Relatively close and at an angle of beta1、β2Close, and therefore determined to be the most relevant mobile terminal; in fig. 2B, the positioning result indicates the angle β between the mobile terminal MT and the tags UWB1, UWB21、β2Mobile terminals that differ significantly and are therefore not determined to be most relevant; in fig. 2C, the positioning result indicates the angle β between the mobile terminal MT and the tags UWB1, UWB21、β2Close to, but at a distance L1、L2Further away and therefore not determined to be the most relevant mobile terminal.
It is noted that in the situation illustrated above with reference to fig. 2A-2C, although the distance L is present1、L2And angle beta1、β2Are relative to the tags UWB1, UWB2, but since the tags UWB1, UWB2 have a fixed positional relationship with the biological information collecting device, the distance and angle between the mobile terminal and the biological information collecting device can be determined in an indirect manner.
In the case where there are multiple mobile terminals, optionally, the device identifications of the multiple mobile terminals in the vicinity of the user may also be uploaded to the background computer system along with the biometric information of the user. In general, the number of mobile terminals in the vicinity of the user varies from several to several tens, and thus although the background computer system also performs the 1: N recognition mode, the search range is greatly reduced, and the workload is substantially equivalent to the 1:1 recognition mode (hereinafter, such a small-scale 1: N recognition mode is referred to as a "small-set recognition mode"). By introducing the small set identification mode, on one hand, the background computer system can provide the authentication result with higher response speed, and on the other hand, the probability of mistakenly excluding the target user from the authentication object can be reduced.
In one or more embodiments according to the present invention, the device identification of the mobile terminal may be obtained as follows: the method comprises the steps of firstly automatically searching or scanning a mobile terminal in a set area (such as the vicinity of a cash register terminal or the vicinity of an entrance gate), then instructing the searched mobile terminal to send a corresponding device identification, and then receiving the corresponding device identification from the searched mobile terminal. Optionally, the mobile terminal sends the respective device identifier via at least one of the following channels: bluetooth channel, WiFi channel, UWB channel and 5G channel.
Alternatively, the means for obtaining biometric information and device identification may communicate directly with the back-office computer system to transmit the obtained biometric information and device identification and receive the authentication result. Or alternatively, the means for acquiring the biometric information and the device identification may communicate with a background computer system via the mobile terminal of the user to complete the transmission of the acquired biometric information and the device identification and the reception of the authentication result.
Fig. 3 is a flowchart of an authentication method based on biometric information according to an embodiment of the present invention, which is executed at a foreground computer system (e.g., a cash register terminal or an entry/exit gate) of an application scenario. In the following description, the method steps are used, by way of example but not necessarily, for a doorway management scenario (e.g. high-speed rail entrance ticketing).
As shown in fig. 3, at step 301, a foreground computer system acquires biometric information of a user located within a set area (e.g., an area in front of a camera). For example, when the biometric feature is a facial feature, the camera of the foreground computer system will acquire an image of the face of the person in front of it.
Then, in step 302, the foreground computer system obtains the device id of the mobile terminal in the set area. As described above, when there are a plurality of mobile terminals, the device id of the most relevant mobile terminal may be acquired, or the device ids of all the mobile terminals in the setting area may be acquired.
Step 303 is then entered and the foreground computer system sends the acquired biometric information together with the device identification of the mobile terminal to the background computer system.
Accordingly, the background computer system will perform authentication of the user based on the acquired biometric information and the device identification. For example, the background computer system may compare the uploaded biometric information to a biometric information template associated with the device identification of the most relevant mobile terminal (1:1 recognition mode) to determine if the authentication passed. As another example, the background computer system may compare the uploaded biometric information to biometric information templates associated with all device identifications uploaded one-by-one (a small set identification mode) to determine whether authentication passed. In the above-described authentication process, if the biometric information template matches the biometric information (in 1:1 recognition mode) or there is a biometric information template matching the biometric information (in small set recognition mode) among the biometric information templates associated with all the device identifications uploaded, it is determined that the authentication passes or a result of passing the authentication is generated, otherwise, it is determined that the authentication fails or a result of failing the authentication is generated.
Next, at step 304, the foreground computer system receives the authentication results from the background computer system.
Then in step 305, the foreground computer system determines whether the authentication passes according to the authentication result, if so, step 306 is entered, otherwise, step 307 is entered.
At step 306, the foreground computer system performs the allowed pass operation (e.g., command gate on, etc.). At step 307, the foreground computer system performs a pass-through disable operation (e.g., instructs the gate to remain closed), and optionally presents a pass-through rejection prompt (e.g., by voice prompt or text prompt).
It is noted that in the present embodiment, although the acquisition of the biometric information and the acquisition of the device identification of the mobile terminal are implemented in temporally successive steps, this is not essential. In practice, the order of execution of steps 301 and 302 may be reversed, or may be performed in parallel.
Fig. 4 is a flowchart of an authentication method based on biometric information according to another embodiment of the present invention, which is executed at a foreground computer system (e.g., a cash register terminal or an entry/exit gate) of an application scenario. In the following description, the method steps are exemplarily but not necessarily used for payment scenarios and the foreground computer system is a cash register terminal.
As shown in fig. 4, in step 401, the cashier terminal concurrently acquires biometric information of a user located within a set area (e.g., an area adjacent to the cashier terminal) and a device identification of a mobile terminal within the set area. Taking the face feature as the biometric feature, the camera of the cashier terminal will acquire the face image of the person located in front of it. Taking the fingerprint as the biometric characteristic, the image scanner of the cash register terminal will acquire the image of the finger placed thereon.
Then, in step 402, the cashier terminal determines whether the user transacting the business has an associated mobile terminal in the set area according to the distance and angle of the user relative to the biological feature acquisition device. Taking the situation shown in fig. 2A-2C as an example, the distance L between the mobile terminal MT and the tags UWB1, UWB2 in fig. 2A1、L2Relatively close and at an angle of beta1、β2Close proximity, and therefore, it can be determined that the mobile terminal MT may have an association with a service-handling user, the angle β between the mobile terminal MT and the tags UWB1, UWB2 in fig. 2B1、β2The distance L between the mobile terminal MT and the tags UWB1, UWB2 in FIG. 2C is relatively large1、L2Further away, it can be determined that there is no association between the mobile terminal MT and the user handling the service. In step 402, if it is determined that there are mobile terminals (the number of which may be one or more) associated with the service handling user in the set area, step 403 is performed, otherwise step 404 is performed.
In step 403, the cashier terminal sends the acquired biometric information to the background computer system together with the device identifications of all mobile terminals having an association.
Next, at step 405, the cashier terminal receives the authentication result from the back-office computer system.
Then, in step 406, the cashier terminal determines whether the authentication passes according to the authentication result, and if so, step 407 is entered, otherwise, step 408 is entered.
At step 407, the checkout terminal performs a payment operation (e.g., sends a debit request or a payment record to the back-office computer system, etc.). At step 408, the cashier terminal presents a prompt to the user (e.g., by voice prompt or text prompt) to deny the payment.
Go back to another branch step 404 of step 402. In this step, the checkout terminal presents on the screen prompt information requiring the user to enter a device identification.
It should be noted that, in the present embodiment, although the acquisition of the biometric information and the acquisition of the device identifier of the mobile terminal are implemented in parallel, this is not essential, and they may be implemented in chronological order.
Fig. 5 is a flowchart of a biometric information-based authentication method according to another embodiment of the present invention, which is performed at a background computer system of an application scenario. In the following description, the method steps are used, for example but not necessarily, for payment scenarios.
As shown in fig. 5, at step 501, a background computer system receives, from a foreground computer system (e.g., a checkout terminal), biometric information of a user located within a set area (e.g., an area adjacent to the checkout terminal) and a device identification of a mobile terminal within the set area.
Then, step 502 is entered to determine whether device identifiers of a plurality of mobile terminals are received. If a single device identification is received, step 503 is entered, otherwise step 504 is entered.
At step 503, the background computer system compares the uploaded biometric information to the biometric information template associated with the device identification of the most relevant mobile terminal (1:1 recognition mode) to determine if the authentication is passed.
At step 504, the background computer system compares the uploaded biometric information one by one with biometric information templates associated with all device identifications uploaded (small set identification mode) to determine if the authentication passed.
After performing steps 503 and 504, the method flow shown in fig. 5 will proceed to step 505. In this step, the background computer system returns an authentication result to the foreground computer system.
FIG. 6 is a schematic block diagram of a computer system in accordance with another embodiment of the present invention.
The computer system 60 shown in fig. 6 includes a biometric information acquisition device 610, a wireless communication device 620, a memory 630 (e.g., non-volatile memory such as flash memory, ROM, a hard drive, a magnetic disk, an optical disk), a processor 640, and a computer program 650 stored on the memory 630 and operable on the processor 640.
In the computer system shown in fig. 6, the biometric information acquisition device 610 is coupled to a memory 630 and a processor 640, which may be, for example, a camera, an image scanner, a microphone, etc., and is configured to acquire and store in the memory biometric information of a user located within a set area (e.g., near the computer system) based on instructions of the processor.
The wireless communication means 620 is coupled to the memory 630 and the processor 640 and is configured to communicate with mobile terminals within a set area based on instructions of the processor to obtain and store device identifications within the memory. Further, the wireless communication device 620 may be further configured to acquire the distance and angle of the mobile terminal relative to the biometric information acquisition device. Optionally, the wireless communication device 620 includes one or more of the following: the device comprises a Bluetooth communication module, a WiFi communication module, a UWB communication module and a 5G communication module.
In the computer system shown in fig. 6, the method steps described above with the aid of fig. 1-5 can be implemented by executing the computer program 650.
FIG. 7 is a front view of a computer system according to another embodiment of the invention.
The computer system shown in fig. 7 is a cash register terminal. Referring to fig. 7, an interactive screen 710 is provided at the center of the front of the checkout terminal 70, UWB tags 720A, 720B are provided at both sides of the interactive screen, and a biometric acquisition device 730 is provided above the interactive screen.
FIG. 8 is a front view of a computer system according to another embodiment of the invention.
The computer system shown in fig. 8 is a cash register terminal. Referring to fig. 8, an interactive screen 810 is provided at the upper left of the front surface of the cashier terminal 80, UWB tags 820A, 820B are provided at both sides of the front surface, and a biometric acquisition device 830 is provided at the right side of the interactive screen.
Fig. 9 is a schematic block diagram of an apparatus for authentication based on biometric information according to still another embodiment of the present invention.
As shown in fig. 9, the apparatus 90 for performing authentication based on biometric information of the present embodiment includes a first module 910, a second module 920, and a third module 930. The first module 910 is configured to acquire biometric information of a user located in a set area and acquire device identifiers of one or more mobile terminals located in the set area, wherein the step of acquiring the biometric information is performed simultaneously with or sequentially with the step of acquiring the device identifiers. The second module 920 is configured to send the acquired biometric information and the device identification to a second computer system. The third module 930 is configured to determine performability of subsequent operations based on an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification.
According to a further aspect of the invention, a computer-readable storage medium is also provided, on which a computer program is stored which, when being executed by a processor, is adapted to carry out the biometric information based authentication method described above with the aid of fig. 1 to 5.
Fig. 10 is a flow chart of a payment process using the authentication method according to the above-described embodiment of the present invention.
As shown in fig. 10, in step 1001, a user carries, for example, a UWB tag-equipped mobile terminal to come in front of a checkout terminal to perform a payment operation.
Then, in step 1002, the cashier terminal collects the biometric information of the user, and synchronously triggers the cashier terminal to establish UWB communication with the mobile terminal nearby to acquire the device identifier of the mobile terminal.
Next, in step 1003, the cashier terminal uploads the biometric information and the device identification acquired in step 1002 to the background computer system. In step 1003, the cashier terminal may determine the mobile terminal most relevant to the current payment operation according to the angle and distance between the mobile device and the UWB tag set on the cashier terminal and upload only the biometric information and the device identifier of the most relevant mobile terminal to the background computer system.
In step 1004, the backend computer system uses the device identifier as an account, and compares the biometric information template corresponding to the account with the uploaded biometric information (i.e., performs 1:1 biometric information verification). If the two match, step 1005 is entered, otherwise step 1006 is entered.
At step 1005, the back-office computer system performs a payment operation in cooperation with the cash register terminal to complete the transaction.
At step 1006, the back-office computer system returns a message to the checkout terminal that the authentication failed, and the checkout terminal presents information (e.g., in voice, text, or graphics) to the user that the payment operation was not complete in response to the message.
Compared with the prior art, the invention has at least the following advantages:
1) by automatically acquiring the biological characteristic information and the equipment identifier of the mobile terminal associated with the user, the user experience is improved, and the safety of the identity authentication is improved.
2) The identity authentication of the user can be realized in a 1:1 recognition mode in an open scene, so that the requirements of application scenes with high real-time performance and high concurrency are met.
3) The relevance between the user and the equipment identifier of the mobile terminal is determined by means of the characteristic that UWB has high positioning precision, and the 1:1 identification mode or the small set identification mode can be realized without manual intervention.
The embodiments and examples set forth herein are presented to best explain the embodiments in accordance with the present technology and its particular application and to thereby enable those skilled in the art to make and utilize the invention. However, those skilled in the art will recognize that the foregoing description and examples have been presented for the purpose of illustration and example only. The description as set forth is not intended to cover all aspects of the invention or to limit the invention to the precise form disclosed.
In view of the foregoing, the scope of the present disclosure is to be determined by the following claims.
Claims (24)
1. An authentication method based on biometric information, the authentication method comprising the steps of, at a first computer system:
the method comprises the steps of obtaining biological feature information of a user in a set area and obtaining equipment identifications of one or more mobile terminals in the set area; and
sending the acquired biometric information and the device identification to a second computer system;
determining performability of a subsequent operation based on an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
2. The authentication method of claim 1, wherein the second computer system generates the authentication result in the following manner:
determining whether a biometric information template matching the biometric information exists in biometric information templates associated with device identifications of the one or more mobile terminals; and
if the result exists, the result that the identity authentication is passed is generated, otherwise, the result that the identity authentication is not passed is generated.
3. The authentication method of claim 1, wherein the biometric information comprises facial features, fingerprints, irises, voice prints, and palm vein distribution features.
4. The authentication method according to claim 1, wherein the device identification is selected from a combination of one or more of the following: an international mobile equipment identity, an international mobile subscriber identity and a medium access control address.
5. The authentication method of claim 1, wherein the first computer system is a cash register terminal and the mobile terminal is one or more of: cell-phone, panel computer and wearable equipment.
6. The authentication method of claim 1, wherein the step of obtaining the device identification comprises:
determining the most relevant mobile terminal according to the distance and the angle relative to the biological characteristic information acquisition device; and
and acquiring the device identification of the most relevant mobile terminal.
7. The authentication method as claimed in claim 6, wherein the distance and angle of the mobile terminal with respect to the biometric information collection device are acquired using UWB or 5G positioning technology.
8. The authentication method of claim 1, wherein the step of obtaining the device identification comprises:
searching for a mobile terminal located in the set area;
indicating the searched mobile terminal to send a corresponding equipment identifier; and
and receiving the corresponding equipment identification from the searched mobile terminal.
9. The authentication method of claim 8, wherein the device identification is transmitted via at least one of the following channels: bluetooth channel, WiFi channel, UWB channel and 5G channel.
10. The authentication method according to claim 1, wherein the acquired biometric information and device identification are transmitted to the second computer system via a mobile terminal and the authentication result is received from the second computer system.
11. The authentication method according to any one of claims 1-10, wherein the subsequent operation involves a payment application or an access management application.
12. A computer system, comprising:
a biometric information acquisition device;
a wireless communication device;
a memory;
a processor; and
a computer program stored on the memory and executable on the processor to perform the following steps prior to performing data processing:
instructing the biological characteristic information acquisition device to acquire biological characteristic information of a user in a set area;
instructing the wireless communication device to acquire equipment identifications of one or more mobile terminals located in the set area;
instructing the wireless communication apparatus to transmit the acquired biometric information and a device identification to an authentication server and to receive an authentication result from the authentication server, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification; and
determining performability of a subsequent operation based on the authentication result,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
13. The computer system of claim 12, wherein the authentication server generates the authentication result in the following manner:
determining whether a biometric information template matching the biometric information exists in biometric information templates associated with device identifications of the one or more mobile terminals; and
if the result exists, the result that the identity authentication is passed is generated, otherwise, the result that the identity authentication is not passed is generated.
14. The computer system of claim 13, wherein the biometric information includes facial features, fingerprints, irises, voice prints, and palm vein distribution features.
15. The computer system of claim 12, wherein the device identification is selected from a combination of one or more of: an international mobile equipment identity, an international mobile subscriber identity and a medium access control address.
16. The computer system of claim 12, wherein the computer system is a cash register terminal and the mobile terminal is one or more of: cell-phone, panel computer and wearable equipment.
17. The computer system of claim 12, wherein obtaining the device identification comprises:
determining the most relevant mobile terminal according to the distance and the angle relative to the biological characteristic information acquisition device; and
and acquiring the device identification of the most relevant mobile terminal.
18. The computer system of claim 17, wherein the wireless communication device comprises a UWB communication module or a 5G communication module to utilize UWB or 5G positioning technology to acquire the distance and angle of the mobile terminal with respect to the biometric information acquisition device.
19. The computer system of claim 12, wherein obtaining the device identification comprises:
searching for a mobile terminal located in the set area by using the wireless communication device;
utilizing the wireless communication device to indicate the searched mobile terminal to send a corresponding equipment identifier; and
and receiving the corresponding equipment identification from the searched mobile terminal by using the wireless communication device.
20. The computer system of claim 19, wherein the wireless communication means comprises at least one of the following to receive a device identification from a mobile terminal via a corresponding channel: the device comprises a Bluetooth communication module, a WiFi communication module, a UWB communication module and a 5G communication module.
21. The computer system of claim 12, wherein the wireless communication device is instructed to transmit the acquired biometric information and device identification to an authentication server via a mobile terminal and receive authentication results from the authentication server.
22. The computer system of any one of claims 12-21, wherein the subsequent operation involves a payment application or an access management application.
23. An apparatus for authentication based on biometric information, comprising:
the mobile terminal comprises a first module, a second module and a third module, wherein the first module is configured to acquire the biological characteristic information of a user in a set area and acquire the equipment identification of one or more mobile terminals in the set area; and
a second module configured to send the acquired biometric information and the device identification to a second computer system;
a third module configured to determine performability of a subsequent operation based on an authentication result returned from the second computer system, wherein the authentication result is based on a matching result between the acquired biometric information and a biometric information template associated with the device identification,
wherein the step of obtaining the biometric information is performed simultaneously with or sequentially with the step of obtaining the device identification.
24. A computer-readable storage medium, on which a computer program is stored which, when being executed by a processor, carries out the method according to any one of claims 1-11.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010836711.8A CN112464700A (en) | 2020-08-19 | 2020-08-19 | Authentication method based on biological characteristic information, computer system and readable medium |
| PCT/CN2021/075032 WO2022037024A1 (en) | 2020-08-19 | 2021-02-03 | Biometric information-based authentication method, computer system, and readable medium |
| TW110104280A TWI800791B (en) | 2020-08-19 | 2021-02-04 | Biometric information-based authentication method, device, computer system, and computer-readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010836711.8A CN112464700A (en) | 2020-08-19 | 2020-08-19 | Authentication method based on biological characteristic information, computer system and readable medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112464700A true CN112464700A (en) | 2021-03-09 |
Family
ID=74833676
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010836711.8A Pending CN112464700A (en) | 2020-08-19 | 2020-08-19 | Authentication method based on biological characteristic information, computer system and readable medium |
Country Status (3)
| Country | Link |
|---|---|
| CN (1) | CN112464700A (en) |
| TW (1) | TWI800791B (en) |
| WO (1) | WO2022037024A1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113645622A (en) * | 2021-07-08 | 2021-11-12 | 荣耀终端有限公司 | Device authentication method, electronic device, and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150206019A1 (en) * | 2014-01-17 | 2015-07-23 | Htc Corporation | Methods for identity authentication and handheld electronic devices utilizing the same |
| CN206179048U (en) * | 2016-11-09 | 2017-05-17 | 中国联合网络通信集团有限公司 | Personal identification device |
| CN107483416A (en) * | 2017-07-27 | 2017-12-15 | 湖南浩丰文化传播有限公司 | The method and device of authentication |
| CN107786547A (en) * | 2017-09-30 | 2018-03-09 | 厦门快商通信息技术有限公司 | A kind of auth method based on block chain, device and computer-readable recording medium |
| WO2020042462A1 (en) * | 2018-08-31 | 2020-03-05 | 深圳壹账通智能科技有限公司 | Physiological characteristic information-based identity authentication method, device, system and medium |
Family Cites Families (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9830589B2 (en) * | 2002-10-01 | 2017-11-28 | Zhou Tian Xing | Systems and methods for mobile application, wearable application, transactional messaging, calling, digital multimedia capture, payment transactions, and one touch payment, one tap payment, and one touch service |
| CA2724297C (en) * | 2010-12-14 | 2013-11-12 | Xtreme Mobility Inc. | System and method for authenticating transactions through a mobile device |
| CN104661280A (en) * | 2013-11-25 | 2015-05-27 | 上海益尚信息科技有限公司 | Novel method for controlling access within wireless mobile terminal UMA access network |
| US11080380B2 (en) * | 2016-11-08 | 2021-08-03 | Aware, Inc. | Decentralized biometric identity authentication |
| CN109151012A (en) * | 2018-08-11 | 2019-01-04 | 宁波亿拍客网络科技有限公司 | A kind of push mode runs program technic and its application method, correlation technique |
| CN110443014A (en) * | 2019-07-31 | 2019-11-12 | 成都商汤科技有限公司 | Auth method, the electronic equipment for authentication and server, system |
| CN110363529A (en) * | 2019-08-22 | 2019-10-22 | 北京全迹科技有限公司 | Method of payment, charging terminal and the payment system of safe and convenient |
| CN111243152A (en) * | 2020-01-06 | 2020-06-05 | 广州新科佳都科技有限公司 | Non-inductive gate-in method and device based on IMSI code, electronic equipment and storage medium |
-
2020
- 2020-08-19 CN CN202010836711.8A patent/CN112464700A/en active Pending
-
2021
- 2021-02-03 WO PCT/CN2021/075032 patent/WO2022037024A1/en active Application Filing
- 2021-02-04 TW TW110104280A patent/TWI800791B/en active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150206019A1 (en) * | 2014-01-17 | 2015-07-23 | Htc Corporation | Methods for identity authentication and handheld electronic devices utilizing the same |
| CN206179048U (en) * | 2016-11-09 | 2017-05-17 | 中国联合网络通信集团有限公司 | Personal identification device |
| CN107483416A (en) * | 2017-07-27 | 2017-12-15 | 湖南浩丰文化传播有限公司 | The method and device of authentication |
| CN107786547A (en) * | 2017-09-30 | 2018-03-09 | 厦门快商通信息技术有限公司 | A kind of auth method based on block chain, device and computer-readable recording medium |
| WO2020042462A1 (en) * | 2018-08-31 | 2020-03-05 | 深圳壹账通智能科技有限公司 | Physiological characteristic information-based identity authentication method, device, system and medium |
Non-Patent Citations (1)
| Title |
|---|
| 张锦南等: "UWB定位技术及智能制造应用", vol. 1, 北京邮电大学出版社, pages: 178 - 27 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113645622A (en) * | 2021-07-08 | 2021-11-12 | 荣耀终端有限公司 | Device authentication method, electronic device, and storage medium |
| CN113645622B (en) * | 2021-07-08 | 2023-08-15 | 荣耀终端有限公司 | Device authentication method, electronic device and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| TW202209139A (en) | 2022-03-01 |
| TWI800791B (en) | 2023-05-01 |
| WO2022037024A1 (en) | 2022-02-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109002773B (en) | Fingerprint authentication method and system and terminal supporting fingerprint authentication function | |
| EP3047423B1 (en) | Systems and methods for decoding and using data on cards | |
| CN110073407B (en) | Face image processing method and face image processing apparatus | |
| US9665754B2 (en) | Identification verification using a device with embedded radio-frequency identification functionality | |
| US20180158165A1 (en) | System and method for unified inmate information and provisioning | |
| US20190066188A1 (en) | System and Method of Assisting a User in Automated Buying from a Retail Store | |
| KR20160086830A (en) | Identity authentication by using human biological characteristics | |
| US10014967B2 (en) | System and method for authenticating a broadcast device using facial recognition | |
| US11734412B2 (en) | Information processing device | |
| US20190035042A1 (en) | Method and System for Implementing User Biometrics as a Boarding Pass for Public Transportation | |
| US20160042357A1 (en) | Biometric payment in transit systems | |
| US20210248220A1 (en) | Biological data registration support device, biological data registration support system, biological data registration support method, biological data registration support program, recording medium for strong biological data registration support program | |
| JP2010049357A (en) | Authentication device, authentication system, and authentication method | |
| US10936706B2 (en) | Biometric authentication | |
| CN112464700A (en) | Authentication method based on biological characteristic information, computer system and readable medium | |
| US20160315936A1 (en) | Method for biometric recognition of a user amongst a plurality of registered users to a service, employing user localization information | |
| CN113076533B (en) | Service processing method and device | |
| CN109213889B (en) | Method and device for merging customer information | |
| US20230298418A1 (en) | Server device, system, and control method for server device | |
| US20200125709A1 (en) | Tagging system for similarity-based retriebal | |
| CN112527934A (en) | Visitor travel analysis method and device, electronic equipment and storage medium | |
| KR100927589B1 (en) | Identification system and method using multiple biometric information | |
| US20230325955A1 (en) | Server device, system, method for controlling server device, and storage medium | |
| US20240029494A1 (en) | Server device, system, method for controlling server device, and storage medium | |
| CN116738411B (en) | Multi-mode registration method and identity recognition method based on biological feature recognition |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 40048326 Country of ref document: HK |