CN113726797A - Safe login method, system and account management device - Google Patents

Safe login method, system and account management device Download PDF

Info

Publication number
CN113726797A
CN113726797A CN202111022877.7A CN202111022877A CN113726797A CN 113726797 A CN113726797 A CN 113726797A CN 202111022877 A CN202111022877 A CN 202111022877A CN 113726797 A CN113726797 A CN 113726797A
Authority
CN
China
Prior art keywords
security code
authentication
authentication result
application software
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202111022877.7A
Other languages
Chinese (zh)
Other versions
CN113726797B (en
Inventor
许鹏飞
王刚
马幸晖
陶智明
黄文欢
谢雪滔
代思语
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tianyi Digital Life Technology Co Ltd
Original Assignee
CENTURY DRAGON INFORMATION NETWORK CO LTD
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by CENTURY DRAGON INFORMATION NETWORK CO LTD filed Critical CENTURY DRAGON INFORMATION NETWORK CO LTD
Priority to CN202111022877.7A priority Critical patent/CN113726797B/en
Publication of CN113726797A publication Critical patent/CN113726797A/en
Application granted granted Critical
Publication of CN113726797B publication Critical patent/CN113726797B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computing Systems (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The application discloses a safe login method, a system and an account management device, wherein the login authentication request of application software is received and uploaded to an account platform for gateway authentication to obtain a gateway authentication result; if the gateway authentication result is successful, judging whether the equipment corresponding to the application software supports biological authentication, and if so, performing biological authentication to obtain a biological authentication result; otherwise, carrying out safety verification to obtain a safety code verification result; and further, generating a secret-free authentication result query key by combining a gateway authentication result and a biological authentication result or combining a gateway authentication result and a security code verification result, and sending the secret-free authentication result query key to the application software so that the application software can acquire login information from the software user platform according to the secret-free authentication result query key for login.

Description

Safe login method, system and account management device
Technical Field
The present application relates to the field of communications technologies, and in particular, to a secure login method, a secure login system, and an account management apparatus.
Background
Application software (Application) is a collection of various programming languages that can be used by a user, and applications programmed in various programming languages, corresponding to system software. The application software can meet the application requirements of users in different fields and different problems. Before the user uses the application software, the user needs to register and log in, after the user registers for the first time, the user needs to input the registered account and password during the registration to use the application software. For users, whether to prevent malicious repeated registration or to take user stickiness into consideration, a mobile phone number is generally used for registration login of application software.
At present, the method for verifying login by using a user mobile phone number is to identify the user mobile phone number to perform quick login by relying on a mobile data network of an operator and adopting technologies of 'communication gateway number fetching' and SIM card identification and the like. Because the user does not need to input an account number and a password in the login process, the method is also called secret-free authentication.
Compared with other login modes, the password-free authentication saves the operation of inputting an account number and a password, and greatly simplifies the user login operation process. However, the password-free authentication can only verify the login device, and cannot ensure whether the user himself performs the login operation, and in this case, the privacy and account security of the user are not guaranteed.
Disclosure of Invention
In view of the above problems, the present application provides a secure login scheme to implement secure login of application software. The specific scheme is as follows:
a secure login method, comprising:
receiving a login authentication request from application software, wherein the login authentication request comprises a device identifier and a device IP corresponding to the application software;
uploading the login authentication request to an account platform, so that the account platform performs gateway authentication based on the equipment identifier and the equipment IP to obtain a gateway authentication result returned by the account platform;
if the gateway authentication result is successful, judging whether the equipment corresponding to the application software supports biological authentication, if so, performing biological authentication to obtain a biological authentication result, and if not, performing security code verification to obtain a security code verification result;
generating a secret-free authentication result query key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code verification result;
and sending the secret-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
Optionally, the determining whether the device corresponding to the application software supports biometric authentication includes:
and judging whether the application software has the authority of acquiring biological characteristics, if so, judging that the equipment supports biological authentication, wherein the biological characteristics comprise human faces and fingerprints.
Optionally, the process of performing the security code check to obtain the security code check result includes:
acquiring a security code preset by a user, wherein the security code comprises a gesture security code or a digital security code;
encrypting a security code preset by the user;
and uploading the encrypted security code to an account platform so that the account platform can decrypt the encrypted security code, and starting an authentication logic corresponding to the type of the security code according to the type of the security code preset by the user to verify the decrypted security code to obtain a security code verification result.
Optionally, generating a secret-free authentication result query key by combining the gateway authentication result and the biometric authentication result, or combining the gateway authentication result and the security code verification result, including:
encrypting the gateway authentication result and the biological authentication result to generate a secret-free authentication result query key;
or the like, or, alternatively,
and encrypting the gateway authentication result and the security code verification result to generate a secret-free authentication result query key.
A secure login system may include client application software, an account management device, an account platform, and a software user platform:
client application software initiates a login authentication request, wherein the login authentication request comprises a device identifier and a device IP corresponding to the application software;
the account management device receives the login authentication request and uploads the login authentication request to an account platform;
the account platform performs gateway authentication based on the equipment identification and the equipment IP, generates a gateway authentication result and returns the gateway authentication result to the account management device;
when the account management device determines that the gateway authentication result is successful, whether the device corresponding to the application software supports biological authentication is judged, if so, biological authentication is carried out to obtain a biological authentication result, and if not, security code verification is carried out to obtain a security code verification result;
the account management device generates a secret-free authentication result query key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security verification result;
and the account management device sends the password-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the password-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
Optionally, the process of verifying the security code by the account management device to obtain the result of the security code verification includes:
the account management device acquires a gesture safety code currently input by a user and forwards the gesture safety code currently input by the user to the account platform;
and the account platform receives the gesture safety code currently input by the user, compares whether the gesture safety code currently input by the user is consistent with the gesture safety code set during user registration to obtain a safety code check result, and returns the safety code check result to the account management device.
Optionally, the process of verifying the security code by the account management device to obtain the result of the security code verification includes:
the account management device acquires a digital security code currently input by a user and forwards the digital security code currently input by the user to the account platform;
and the account platform receives the digital security code currently input by the user, compares whether the digital security code currently input by the user is consistent with the digital security code set during user registration to obtain a security code check result, and returns the security code check result to the account management device.
Optionally, the sending, by the account management device, the secret-free authentication result query key to the application software, so that the application software obtains login information from a software user platform according to the secret-free authentication result query key to perform login, where the sending includes:
the account management device sends the password-free authentication result inquiry key to the application software;
the application software uploads the secret-free authentication result query key to the application software user platform;
the application software user platform requests the account platform to inquire a password-free authentication result through the password-free authentication inquiry key, wherein the password-free authentication result is an encryption result of successful gateway authentication and successful security code verification;
and the account platform returns a password-free authentication result and user login information to the application software user platform, so that the application software user platform forwards the user login information to the application software for login.
Optionally, the account management platform performs security code verification, and after obtaining a security code verification result, the method further includes:
and when the account management platform determines that the security code verification result is authentication failure, judging whether the client re-inputs the security code, and if so, starting an authentication logic corresponding to the security code to verify the security code.
An account management apparatus may include:
the device comprises a request receiving unit, a login authentication unit and a processing unit, wherein the request receiving unit is used for receiving a login authentication request from application software, and the login authentication request comprises a device identifier and a device IP corresponding to the application software;
the uploading unit is used for uploading the login authentication request to an account platform so that the account platform can perform gateway authentication based on the equipment identifier and the equipment IP to obtain a gateway authentication result returned by the account platform;
the judging unit is used for judging whether the equipment corresponding to the application software supports biological authentication or not if the gateway authentication result is successful, if so, carrying out biological authentication to obtain a biological authentication result, and if not, carrying out security code verification to obtain a security code verification result;
the inquiry key generating unit is used for generating a secret-free authentication result inquiry key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code verification result;
and the query key sending unit is used for sending the secret-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
By means of the technical scheme, after a login authentication request from application software is received, the login authentication request is uploaded to an account platform for gateway authentication, and a gateway authentication result is obtained; if the gateway authentication result is successful, judging whether the equipment corresponding to the application software needing to be logged in supports biological authentication, and if so, performing biological authentication to obtain a biological authentication result; if not, performing safety verification to obtain a safety code verification result; furthermore, whether login information of the user is returned or not is judged by combining the two authentication results, so that whether the user logs in for the user can be verified, and the safe login of the account is guaranteed. Specifically, a secret-free authentication result query key is generated by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code check result, the secret-free authentication result query key is sent to the application software, so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, the software user platform stores the login information of the application software user, and the acquisition of the login information from the software user platform according to the secret-free authentication result query key is safer, so that a client can be prevented from being decompiled and cracked to reveal user privacy information, the account security of the user is protected, and the application software can be safely logged in.
Drawings
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, it is obvious that the drawings in the following description are only embodiments of the present application, and for those skilled in the art, other drawings can be obtained according to the provided drawings without creative efforts.
FIG. 1 is a diagram illustrating an alternative system architecture for implementing secure login provided by embodiments of the present application;
fig. 2 is an alternative signaling flow diagram of a secure login method according to an embodiment of the present application;
fig. 3 is a flowchart of a secure login method according to an embodiment of the present application;
fig. 4 is a schematic structural diagram of an account management device disclosed in an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
In order to make the technical solution of the present application more clearly understood, fig. 1 shows an alternative system architecture diagram for implementing secure login provided in the embodiment of the present application, and as shown in fig. 1, the system architecture may include: a client 10, an account platform 20, and a software user platform 30. The client 10 is provided with an application APP and an account management device (also referred to as an account SDK), and the client 10, the account platform 20, and the software user platform 30 perform data interaction via a network.
The client 10 may be any device that can implement functions of working, learning, and entertainment in motion, such as a smart phone, a platform computer, a handheld game console, and the like. The account platform 20 may be implemented by a single server, or may be implemented by a server cluster formed by multiple servers. Similarly, the software user platform 30 may be implemented by a single server or a server cluster formed by a plurality of servers. The account platform 20 is a server corresponding to the account SDK102, and the relationship between the application software APP101 and the software user platform 30 can be understood as that a client is used to present the function of the application software APP101, and the software user platform 30 is used to perform background data processing.
In this embodiment, the account platform 20 can obtain a login authentication request sent by the client 10, perform gateway authentication based on the device identifier and the device IP obtained by the information, further perform biometric authentication or security code verification, obtain a secret-free authentication result, and return the secret-free authentication result to the client 10, so that the client 10 can obtain login information from the software user platform to log in.
Referring to fig. 2, an embodiment of the present application will describe a security login method in detail, as shown in fig. 2, fig. 2 is an optional signaling flowchart of the security login method provided in the embodiment of the present application. The process of the method may include:
step S100, the application software APP101 initiates a login authentication request.
Specifically, in response to the user clicking the application software, the application software APP101 may generate information requesting login authentication, and send a login authentication request to the account SDK102, and correspondingly, the account SDK102 receives the login authentication request from the application software APP 101. It should be noted that the login authentication request includes the device identifier and the device IP corresponding to the application software. In the embodiment of the application, the device identifier corresponding to the application software may be a unique device identifier, and the unique device identifier may be identified by using an SIM identification technology, and may be used to identify a user identity. In addition, the device IP corresponding to the application software refers to an IP address of the client currently accessing the mobile network, and the device IP may also be referred to as a private network IP of the client 10, and may be used in a subsequent gateway authentication process.
In step S101, the account SDK102 uploads the login authentication request to the account platform 20.
Specifically, the account SDK102 uploads the login authentication request to the account platform 20, where the login authentication request may be consistent with the login authentication request received by the account SDK102 in step S100, and may also include the device identifier and the device IP corresponding to the application software. It should be noted that the IP address of the device carried in the secret-free authentication request may be replaced by other logical address data for uniquely identifying the network and the device according to the continuous development and progress of the internet.
In step S102, the account platform 20 performs gateway authentication.
Specifically, the account platform 20 performs gateway authentication based on the device identifier and the device IP carried in the login authentication request, so as to obtain a gateway authentication result, and the account platform 20 returns the gateway authentication result to the account SDK 102. The account platform 20 compares the private network IP of the client 10 uploaded by the account SDK101 with the public network IP allocated to the client 10 by the operator gateway side, and if the private network IP is consistent with the public network IP, the gateway authentication is successful, otherwise, the gateway authentication is failed. The failure of the gateway authentication indicates that the client user logs in the application APP101 by using a non-native device, which means that the login device is inconsistent with a device of the user bound with the SIM card. At this time, the account SDK102 sends a login instruction with an account password to the application APP 101.
In step S103, the account platform 20 returns a gateway authentication result.
Specifically, the account platform 20 returns the gateway authentication result obtained in step S102 to the account SDK 102. It should be noted that the gateway authentication result may have two results, one is that the gateway authentication is successful, and the other is that the gateway authentication is failed. The gateway authentication is successful, and only the verification of the login equipment can be realized, and whether the user performs the login operation cannot be ensured, so that the privacy and the account security of the user cannot be guaranteed due to the fact that the user directly uses one key for login. In order to solve the problem, the application ensures that the one-key login function is started only when the application software is logged in by the user through further authentication.
In step S104, the account SDK102 determines whether the client 10 supports biometric authentication.
Specifically, if the gateway authentication result is that the authentication is successful, the account SDK102 determines whether the device corresponding to the application software supports biometric authentication, and if so, the account SDK10 performs biometric authentication to obtain a biometric authentication result.
In step S105, the account SDK102 performs biometric authentication.
Specifically, in the case where the user terminal 10 supports biometric authentication, the account SDK may determine whether to log in the application software by himself or herself through biometric authentication. The success of biometric authentication may indicate that a login application operation is currently being performed for the user himself.
In step S106, the account platform 20 performs security code verification.
In the case that the client 10 does not support biometric authentication, the account platform 20 may determine whether to log in the application software by checking the security code. The successful verification of the security code can indicate that the user is currently performing the operation of logging in the application software.
In step S107, the account platform 20 returns the security code verification result to the account SDK 102.
Specifically, the account SDK102 may obtain the security code check result obtained in step S106 and cache the security code check result, which may be used in subsequent steps of the method.
And step S108, combining the gateway authentication result and the biological authentication result, or combining the gateway authentication result and the security code check result to generate a secret-free authentication result inquiry key.
Specifically, the account SDK102 combines the gateway authentication result returned by the account platform 20 in step S103 with the biometric authentication result, or combines the gateway authentication result with the security code check result, to generate a secret-free authentication result query key. It should be noted that the gateway authentication result is the case of successful authentication, if the gateway authentication fails, the account SDK102 sends an instruction to log in by using an account password to the application software APP101, and the user is required to input a correct account password to log in the application software APP 101. The inquiry key is an encryption string generated by the account SDK102 through encryption according to the secret-free authentication result, and whether the gateway authentication result and the biometric authentication result are both successful or not can be inquired by using the inquiry key, or whether the gateway authentication result and the security code verification result are both successful or not can be inquired by using the inquiry key.
In step S109, the account SDK102 sends the authentication result inquiry key to the application software APP 101.
Specifically, the account SDK102 sends the secret-free authentication result query key obtained in step S108 to the application software APP 101. It can be understood that the application software APP101 obtains the authentication result query key sent by the account SDK102, which is equivalent to obtaining a query authentication result credential.
Step S110, the application software APP101 obtains login information from the software user platform 30 according to the secret-free authentication result query key to log in.
Specifically, the application software APP101 receives the authentication result query key sent by the account SDK102, and may obtain login information from the software user platform 30 according to the password-free authentication result query key to log in, where the software user platform 30 stores the login information of the application software user.
By means of the technical scheme, after a login authentication request from application software is received, the login authentication request is uploaded to an account platform for gateway authentication, and a gateway authentication result is obtained; if the gateway authentication result is successful, judging whether the equipment corresponding to the application software needing to be logged in supports biological authentication, and if so, performing biological authentication to obtain a biological authentication result; if not, performing safety verification to obtain a safety code verification result; furthermore, whether login information of the user is returned or not is judged by combining the two authentication results, so that whether the user logs in for the user can be verified, and the safe login of the account is guaranteed. Specifically, a secret-free authentication result query key is generated by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code check result, the secret-free authentication result query key is sent to the application software, so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, the software user platform stores the login information of the application software user, and the acquisition of the login information from the software user platform according to the secret-free authentication result query key is safer, so that a client can be prevented from being decompiled and cracked to reveal user privacy information, the account security of the user is protected, and the application software can be safely logged in.
Next, a method for secure login in accordance with the present application will be described with reference to the account management device 102, and fig. 3 is a flowchart of a secure login method according to an embodiment of the present application. The process of the method may include:
step S200, a login authentication request is received.
Specifically, the account management apparatus 102 receives a login request from the application software, where the login request authentication includes a device identifier and a device IP corresponding to the application software.
And step S210, uploading the login authentication request to an account platform, so that the account platform can perform gateway authentication based on the equipment identifier and the equipment IP.
Specifically, the account management apparatus 102 uploads the login authentication request to the account platform 20, so that the account platform 20 performs gateway authentication by using the device identifier and the device IP, and thus a gateway authentication result returned by the account platform 20 can be obtained.
Step S220, determining whether the device corresponding to the application software supports biometric authentication.
Specifically, when the gateway authentication result is authentication success, further principal verification may be performed. If the gateway authentication result is that the authentication is successful, the account management apparatus 102 determines whether the device (which may also be referred to as the client 10) corresponding to the application software supports biometric authentication.
In step S230, biometric authentication is performed to obtain a biometric authentication result.
Specifically, if the client terminal 10 supports biometric authentication, biometric authentication is performed, thereby ensuring that the application software is logged in for the user himself.
And step S240, carrying out safety code verification to obtain a safety code verification result.
Specifically, if the client terminal 10 does not support biometrics authentication, principal authentication may be performed using a security code, and performing security code verification may ensure whether a login operation is being performed for the user himself.
Step S250, generating a secret-free authentication result query key.
Specifically, in the case of performing biometric authentication, the account management device 102 may generate a secret-less authentication result query key having a function of querying a secret-less authentication result, in combination with the gateway authentication result and the biometric authentication result. In the case of performing security code verification, the account management device 102 may generate a secret-free authentication result query key having a function of querying a secret-free authentication result, by combining the gateway authentication result and the security code verification result.
Step S260, sending the secret-free authentication result query key to the application software.
Specifically, the account management device 102 may send the secret-free authentication result query key to the application software APP101, so that the APP obtains user login information from the software user platform 30 according to the secret-free authentication result query key to log in. It should be noted that the software user platform caches the APP user login information.
In some embodiments of the present application, a process of determining, by the account SDK102, whether the device corresponding to the application software supports biometric authentication in step S220 is described, where the process may include:
and judging whether the application software has the authority of acquiring biological characteristics, if so, judging that the equipment supports biological authentication, wherein the biological characteristics comprise human faces and fingerprints.
Specifically, the account SDK determines whether the device corresponding to the application software supports biometric authentication, and may determine whether the application software has an authority to acquire a biometric feature. On the one hand, in many cases, in order to protect privacy of an individual, a user does not have an authority to obtain biological features such as a human face or a fingerprint from the application software APP, and in such cases, biometric authentication cannot be performed. On the other hand, the client 10 may not have a means of acquiring a human face or a fingerprint by itself, for example, a camera or a fingerprint reader, and also cannot perform biometric authentication in this case.
In some embodiments of the present application, a process of performing security code verification in step S240 to obtain a security code verification result is described, where the process may include:
step S1, acquiring a security code preset by a user, wherein the security code comprises a gesture security code or a digital security code;
specifically, when the user uses the application software APP101 for the first time, the account SDK102 may send an instruction to the application software APP101 to prompt the user to set a security code type, and require the user to select one security code type before using the application software APP101, and the user may set a gesture security code as a default security code verification type, and may also set a digital security code as a default security code verification type. The gesture safety code can be in a nine-square grid layout, corresponding exclusive encryption data can be generated according to lines drawn between points of a user, and the user can be verified after a gateway fetches a number. In addition, the digital security code can be a six-digit Arabic number combination set by a user, corresponding exclusive encryption data can be generated according to the data combination and the number sequence input by the user, and the digital security code can be verified by the user after the number is fetched by the gateway.
Step S2, encrypting the security code preset by the user;
specifically, the security set in advance by the user may be encrypted in consideration of the security problem of the set security code.
And step S3, uploading the encrypted security code to an account platform, so that the account platform can decrypt the encrypted security code, and starting an authentication logic corresponding to the type of the security code according to the type of the security code preset by the user to verify the decrypted security code, thereby obtaining a security code verification result.
Specifically, the account SDK102 uploads the encrypted security code to the account platform 20, and the account platform 20 may decrypt the encrypted security code and start an authentication logic corresponding to the type of the security code according to the type of the security code preset by the user to verify the decrypted security code, so as to obtain a verification result. For example, if the security code preset by the user is the gesture security code, the authentication logic corresponding to the gesture security code is started, and if the security code preset by the user is the digital security code, the authentication logic corresponding to the digital security code is started.
In some embodiments of the present application, a process of generating the secret-less authentication result query key in step S250 is described, and the account management device 102 generates the secret-less authentication result query key by combining the gateway authentication result and the biometric authentication result, or combining the gateway authentication result and the security code verification result. The process may include:
encrypting the gateway authentication result and the biological authentication result to generate a secret-free authentication result query key;
or the like, or, alternatively,
and encrypting the gateway authentication result and the security code verification result to generate a secret-free authentication result query key.
Specifically, after the gateway authentication is successful, the account SDK verifies whether the logged-in user performs the login operation by himself, and the verification may be biometric authentication or security code verification for authentication. Under the condition that the client 10 supports the biometric authentication, the account number SDK acquires the biometric features for the account number platform 20 to perform the biometric authentication, and after the account number platform 20 returns the biometric authentication result, the account number SDK102 is encrypted by combining the gateway authentication result and the biometric authentication result to obtain a corresponding password-free authentication result query key; under the condition that the client 10 does not support the biometric authentication, the account SDK102 acquires a security code input by the user for the account platform 20 to perform security code verification, and after the account platform 20 returns a security code verification result, the account SDK102 encrypts in combination with the gateway authentication result and the security code verification result to obtain a corresponding password-free authentication result query key.
In some embodiments of the present application, a secure login system corresponding to the secure login method will be described. The secure login system may include client application software 101, account management device 102, account platform 20, and software user platform 30. In some embodiments of the present application, the account management device 102 may also be denoted as an account SDK 102. The functions of each terminal of the secure login system can be expressed as follows:
the client application software initiates a login authentication request, wherein the login authentication request comprises a device identification and a device IP corresponding to the application software.
Specifically, after the application software APP101 of the client 10 responds to the login click action of the user, the application software APP101 may generate a login authentication request, and send the login authentication request to the account SDK102, where it should be noted that the login authentication request may include the device identifier and the device IP of the client 10.
And the account management device is used for receiving the login authentication request and uploading the login authentication request to an account platform.
Specifically, the account management device 102 receives a login authentication request from the application software APP101, and uploads the login authentication request to the account platform 20, so that the account platform performs gateway authentication according to information carried in the login authentication request.
And the account platform performs gateway authentication based on the equipment identification and the equipment IP, generates a gateway authentication result and returns the gateway authentication result to the account management device.
Specifically, after receiving the login authentication request, the account platform 20 acquires the device identifier and the device IP of the client 10 from the login authentication request, performs gateway authentication on the device identifier and the device IP, and generates a gateway authentication result. After the account platform 20 completes the gateway authentication, the authentication result is returned to the account management device 102.
And when the account management device determines that the gateway authentication result is successful, judging whether the device corresponding to the application software supports biometric authentication, if so, performing biometric authentication to obtain a biometric authentication result, and if not, performing security code verification to obtain a security code verification result.
Specifically, the account management device 102 determines the acquired gateway authentication result, and determines whether the gateway authentication result is authentication success or authentication failure. If the account management apparatus 102 determines that the gateway authentication result is that the authentication is successful, it further determines whether the device corresponding to the application software supports biometric authentication, that is, it determines that all the devices of the client 10 support biometric authentication. And if the equipment corresponding to the application software supports biological authentication, performing the biological authentication, and otherwise, performing security code verification.
And the account management device generates a secret-free authentication result query key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the safety verification result.
Specifically, the account management device 102 may generate the secret-less authentication result query key in combination with the gateway authentication result and the biometric authentication result, or, in a case that the client 10 device does not support biometric authentication, the account management device 102 may generate the secret-less authentication result query key in combination with the gateway authentication result and the security code verification result.
Furthermore, the account management device sends the password-free authentication result query key to the application software, so that the application software can obtain login information from a software user platform according to the password-free authentication result query key to log in, and the software user platform stores the login information of the application software user.
Specifically, the account management device 102 sends the generated secret-free authentication result query key to the application software APP101, and further, the application software APP101 obtains login information from the software user platform according to the secret-free authentication result query key to log in.
The safety login system provided by the embodiment of the application can realize one-key login and can carry out personal verification through biological authentication or safety code verification, so that the privacy and account safety of a user can be protected.
In some embodiments of the present application, a function of verifying a security code of an account management device in the secure login system to obtain a security code verification result is introduced. The functions may include:
on one hand, the account management device acquires a gesture security code currently input by a user and forwards the gesture security code currently input by the user to the account platform.
Specifically, the user generates a corresponding gesture security code by drawing a line between the points of the squared figure displayed by the client 10, and the account management device 102 obtains the gesture security code currently input by the user. After acquiring the gesture security code currently input by the user, the account management device 102 forwards the gesture security code currently input by the user to the account platform 20.
On the other hand, the account platform receives the gesture safety code currently input by the user, compares whether the gesture safety code currently input by the user is consistent with the gesture safety code set during user registration to obtain a safety code check result, and returns the safety code check result to the account management device.
Specifically, the account platform 20 receives the gesture security code currently input by the user, the account platform 20 compares whether the gesture security code currently input by the user is consistent with the gesture security code set during user registration, if so, the gesture security code is successfully verified, otherwise, the gesture security code is failed to be verified, and meanwhile, the account platform 20 may return a verification result of the gesture security code to the account management device 102.
In some embodiments of the present application, the security code may be a gesture security code or a digital security code. In the above embodiment, the function of verifying the security code of the account management device by taking the gesture security code as an example to obtain the result of verifying the security code is introduced. In this embodiment, when the security code is a digital security code, the function of checking the security code by the account management device to obtain a result of checking the security code is introduced. The functions may include:
on one hand, the account management device acquires the digital security code currently input by the user and forwards the digital security code currently input by the user to the account platform.
Specifically, the account management device 102 obtains the digital security code currently input by the user by inputting a six-digit arabic numeral combination in the digital security code input box displayed by the client 10. After acquiring the digital security code currently input by the user, the account management device 102 forwards the digital security code currently input by the user to the account platform 20.
On the other hand, the account platform receives the digital security code currently input by the user, compares whether the digital security code currently input by the user is consistent with the digital security code set during user registration to obtain a security code check result, and returns the security code check result to the account management device.
Specifically, the account platform 20 receives the digital security code currently input by the user, the account platform 20 compares whether the digital security code currently input by the user is consistent with the digital security code set during user registration, if so, the digital security code is successfully verified, otherwise, the digital security code is failed to be verified, and meanwhile, the account platform 20 may return the verification result of the digital security code to the account management device 102.
In some embodiments of the present application, the account management device sends the secret-free authentication result query key to the application software, so that the application software obtains login information from a software user platform according to the secret-free authentication result query key to introduce the login function. The functions may include:
and the account management device sends the password-free authentication result inquiry key to the application software.
Specifically, the account management device 102 stores the two authentication results after obtaining the gateway authentication result and the biometric authentication result, or after obtaining the gateway authentication result and the security code verification result, and sends the generated secret-free authentication result query key to the application software APP 101. It should be noted that, the account management apparatus 102 does not directly send the secret-free authentication result to the application software APP101, but first generates a secret-free authentication result query key by combining the two authentication results, and then only sends the secret-free authentication result query key to the application software APP101, where the application software APP101 only obtains a credential that can query the secret-free authentication result from the account platform 20.
In addition, the application software uploads the secret-free authentication result query key to the application software user platform.
Specifically, after the application software APP101 receives the secret-free authentication result query key, the application software APP101 uploads the secret-free authentication result query key to the application software platform.
Further, the application software user platform requests the account platform to query a password-free authentication result through the password-free authentication query key.
Specifically, the application software platform 30 requests the account platform 20 to query the secret-free authentication result according to the received secret-free authentication result query key, where the secret-free authentication result is an encryption result of successful gateway authentication and successful security code verification.
And finally, the account platform returns a password-free authentication result and user login information to the application software user platform, so that the application software user platform forwards the user login information to the application software for login.
Specifically, the account platform 20 sends the password-free authentication result and the user login information to the application software platform 30, and meanwhile, the account platform may send the login information of the user to the application software user platform 30. The application software user platform 30 caches the login information of the user, and if the password-free authentication result is that the authentication is successful, the application software APP101 may request to acquire the login information of the user from the application software user platform 30 to perform the password-free login.
The applicant considers that, when a user inputs a security code, the security code may be incorrectly input due to a hand mistake or the security code input is influenced by an external factor, in some embodiments of the application, the performing, by the account management platform, a security code check to obtain a security code check result may further include:
and when the account management platform determines that the security code verification result is authentication failure, judging whether the client re-inputs the security code, and if so, starting an authentication logic corresponding to the security code to verify the security code.
Specifically, after obtaining the security code check result, the account management platform may determine the security code check result, determine whether the security code check result is correct, if it is determined that the security code check result is an authentication failure, start to interpret whether the user re-inputs the security code, if so, continue to start the authentication logic corresponding to the security code, and perform the security code check again. It should be noted that, in the embodiment of the present application, the number of times that the user is allowed to re-input the security code may be set to 5 times. If the user inputs the security code again for 5 times, and the security code check result is still authentication failure, the account management device will return a prompt of authentication failure to the application software.
The account management device provided in the embodiment of the present application is described below, and the account management device described below and the secure login method described above may be referred to in a corresponding manner.
Referring to fig. 4, fig. 4 is a schematic structural diagram of an account management device disclosed in the embodiment of the present application.
As shown in fig. 4, the apparatus may include:
a request receiving unit 11, configured to receive a login authentication request from application software, where the login authentication request includes a device identifier and a device IP corresponding to the application software;
the uploading unit 12 is configured to upload the login authentication request to an account platform, so that the account platform performs gateway authentication based on the device identifier and the device IP to obtain a gateway authentication result returned by the account platform;
a determining unit 13, configured to determine whether the device corresponding to the application software supports biometric authentication if the gateway authentication result is successful, perform biometric authentication if the device supports biometric authentication, obtain a biometric authentication result, and perform security code verification if the device does not support biometric authentication, obtain a security code verification result;
an inquiry key generating unit 14, configured to generate a secret-free authentication result inquiry key by combining the gateway authentication result and the biometric authentication result, or combining the gateway authentication result and the security code verification result;
and the query key sending unit 15 is configured to send the secret-free authentication result query key to the application software, so that the application software obtains login information from a software user platform according to the secret-free authentication result query key to log in, where the software user platform stores the login information of the application software user.
Optionally, the judging unit 13 may include:
and the authority judgment unit is used for judging whether the application software has the authority of acquiring the biological characteristics, if so, the device is judged to support biological authentication, and the biological characteristics comprise human faces and fingerprints.
Optionally, the judging unit 13 may include:
the security code checking unit is configured to perform security code checking to obtain a security code checking result, where the process may include:
acquiring a security code preset by a user, wherein the security code comprises a gesture security code or a digital security code;
encrypting a security code preset by the user;
and uploading the encrypted security code to an account platform so that the account platform can decrypt the encrypted security code, and starting an authentication logic corresponding to the type of the security code according to the type of the security code preset by the user to verify the decrypted security code to obtain a security code verification result.
Optionally, the query key generating unit 14 may include:
the encryption unit is used for encrypting the gateway authentication result and the biological authentication result to generate a secret-free authentication result inquiry key; or, the gateway authentication result and the security code verification result are encrypted to generate a secret-free authentication result query key.
Finally, it should also be noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
The embodiments in the present description are described in a progressive manner, each embodiment focuses on differences from other embodiments, the embodiments may be combined as needed, and the same and similar parts may be referred to each other.
The previous description of the disclosed embodiments is provided to enable any person skilled in the art to make or use the present application. Various modifications to these embodiments will be readily apparent to those skilled in the art, and the generic principles defined herein may be applied to other embodiments without departing from the spirit or scope of the application. Thus, the present application is not intended to be limited to the embodiments shown herein but is to be accorded the widest scope consistent with the principles and novel features disclosed herein.

Claims (10)

1. A secure login method, comprising:
receiving a login authentication request from application software, wherein the login authentication request comprises a device identifier and a device IP corresponding to the application software;
uploading the login authentication request to an account platform, so that the account platform performs gateway authentication based on the equipment identifier and the equipment IP to obtain a gateway authentication result returned by the account platform;
if the gateway authentication result is successful, judging whether the equipment corresponding to the application software supports biological authentication, if so, performing biological authentication to obtain a biological authentication result, and if not, performing security code verification to obtain a security code verification result;
generating a secret-free authentication result query key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code verification result;
and sending the secret-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
2. The method of claim 1, wherein determining whether the device to which the application software corresponds supports biometric authentication comprises:
and judging whether the application software has the authority of acquiring biological characteristics, if so, judging that the equipment supports biological authentication, wherein the biological characteristics comprise human faces and fingerprints.
3. The method according to claim 1, wherein the process of performing the security code check to obtain the security code check result comprises:
acquiring a security code preset by a user, wherein the security code comprises a gesture security code or a digital security code;
encrypting a security code preset by the user;
and uploading the encrypted security code to an account platform so that the account platform can decrypt the encrypted security code, and starting an authentication logic corresponding to the type of the security code according to the type of the security code preset by the user to verify the decrypted security code to obtain a security code verification result.
4. The method of claim 1, wherein generating a secret-free authentication result query key by combining the gateway authentication result and the biometric authentication result or combining the gateway authentication result and the security code verification result comprises:
encrypting the gateway authentication result and the biological authentication result to generate a secret-free authentication result query key;
or the like, or, alternatively,
and encrypting the gateway authentication result and the security code verification result to generate a secret-free authentication result query key.
5. A safe login system is characterized by comprising client application software, an account management device, an account platform and a software user platform:
client application software initiates a login authentication request, wherein the login authentication request comprises a device identifier and a device IP corresponding to the application software;
the account management device receives the login authentication request and uploads the login authentication request to an account platform;
the account platform performs gateway authentication based on the equipment identification and the equipment IP, generates a gateway authentication result and returns the gateway authentication result to the account management device;
when the account management device determines that the gateway authentication result is successful, whether the device corresponding to the application software supports biological authentication is judged, if so, biological authentication is carried out to obtain a biological authentication result, and if not, security code verification is carried out to obtain a security code verification result;
the account management device generates a secret-free authentication result query key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security verification result;
and the account management device sends the password-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the password-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
6. The secure login system of claim 5, wherein the process of the account management device performing the security code check to obtain the security code check result comprises:
the account management device acquires a gesture safety code currently input by a user and forwards the gesture safety code currently input by the user to the account platform;
and the account platform receives the gesture safety code currently input by the user, compares whether the gesture safety code currently input by the user is consistent with the gesture safety code set during user registration to obtain a safety code check result, and returns the safety code check result to the account management device.
7. The secure login system of claim 5, wherein the process of the account management device performing the security code check to obtain the security code check result comprises:
the account management device acquires a digital security code currently input by a user and forwards the digital security code currently input by the user to the account platform;
and the account platform receives the digital security code currently input by the user, compares whether the digital security code currently input by the user is consistent with the digital security code set during user registration to obtain a security code check result, and returns the security code check result to the account management device.
8. The secure login system of claim 5, wherein the account management device sends the secret-free authentication result query key to the application software, so that the application software obtains login information from a software user platform according to the secret-free authentication result query key for login, and the secure login system comprises:
the account management device sends the password-free authentication result inquiry key to the application software;
the application software uploads the secret-free authentication result query key to the application software user platform;
the application software user platform requests the account platform to inquire a password-free authentication result through the password-free authentication inquiry key, wherein the password-free authentication result is an encryption result of successful gateway authentication and successful security code verification;
and the account platform returns a password-free authentication result and user login information to the application software user platform, so that the application software user platform forwards the user login information to the application software for login.
9. The secure login system of claim 5, wherein the account management platform performs security code verification to obtain a security code verification result, and further comprising:
and when the account management platform determines that the security code verification result is authentication failure, judging whether the client re-inputs the security code, and if so, starting an authentication logic corresponding to the security code to verify the security code.
10. An account management apparatus, comprising:
the device comprises a request receiving unit, a login authentication unit and a processing unit, wherein the request receiving unit is used for receiving a login authentication request from application software, and the login authentication request comprises a device identifier and a device IP corresponding to the application software;
the uploading unit is used for uploading the login authentication request to an account platform so that the account platform can perform gateway authentication based on the equipment identifier and the equipment IP to obtain a gateway authentication result returned by the account platform;
the judging unit is used for judging whether the equipment corresponding to the application software supports biological authentication or not if the gateway authentication result is successful, if so, carrying out biological authentication to obtain a biological authentication result, and if not, carrying out security code verification to obtain a security code verification result;
the inquiry key generating unit is used for generating a secret-free authentication result inquiry key by combining the gateway authentication result and the biological authentication result or combining the gateway authentication result and the security code verification result;
and the query key sending unit is used for sending the secret-free authentication result query key to the application software so that the application software can acquire login information from a software user platform according to the secret-free authentication result query key to log in, wherein the software user platform stores the login information of the application software user.
CN202111022877.7A 2021-09-01 2021-09-01 Safe login method, system and account management device Active CN113726797B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111022877.7A CN113726797B (en) 2021-09-01 2021-09-01 Safe login method, system and account management device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111022877.7A CN113726797B (en) 2021-09-01 2021-09-01 Safe login method, system and account management device

Publications (2)

Publication Number Publication Date
CN113726797A true CN113726797A (en) 2021-11-30
CN113726797B CN113726797B (en) 2023-03-24

Family

ID=78680695

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111022877.7A Active CN113726797B (en) 2021-09-01 2021-09-01 Safe login method, system and account management device

Country Status (1)

Country Link
CN (1) CN113726797B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114726606A (en) * 2022-03-31 2022-07-08 北京九州恒盛电力科技有限公司 User authentication method, client, gateway and authentication server
CN115442809A (en) * 2022-11-08 2022-12-06 北京紫光青藤微***有限公司 Login method and device

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI220502B (en) * 2001-08-07 2004-08-21 Bo-Dung Wang Method of using cryptography with biometric verification on security authentication
CN105450637A (en) * 2015-11-09 2016-03-30 歌尔声学股份有限公司 Single sign-on method and device for multiple application systems
CN106301783A (en) * 2016-07-29 2017-01-04 李曙胜 Control method, device and the wireless key component of authentication are provided with wireless key
CN106656952A (en) * 2016-09-21 2017-05-10 北京神州绿盟信息安全科技股份有限公司 Authentication method, device and system for registration equipment
CN107948204A (en) * 2017-12-29 2018-04-20 咪咕文化科技有限公司 One-key login method and system, related equipment and computer readable storage medium
CN109089264A (en) * 2018-08-02 2018-12-25 江苏满运软件科技有限公司 A kind of mobile terminal exempts from the method and system of close login
CN109246133A (en) * 2018-10-19 2019-01-18 清华大学 A kind of network access verifying method based on bio-identification
CN110266656A (en) * 2019-05-30 2019-09-20 世纪龙信息网络有限责任公司 Exempt from close authenticating identity recognition methods, device and computer equipment
CN111581624A (en) * 2020-05-18 2020-08-25 安徽中科美络信息技术有限公司 Intelligent terminal user identity authentication method
CN111654468A (en) * 2020-04-29 2020-09-11 平安国际智慧城市科技股份有限公司 Secret-free login method, device, equipment and storage medium
CN112272089A (en) * 2020-10-26 2021-01-26 中国联合网络通信集团有限公司 Cloud host login method, device, equipment and computer readable storage medium

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI220502B (en) * 2001-08-07 2004-08-21 Bo-Dung Wang Method of using cryptography with biometric verification on security authentication
CN105450637A (en) * 2015-11-09 2016-03-30 歌尔声学股份有限公司 Single sign-on method and device for multiple application systems
CN106301783A (en) * 2016-07-29 2017-01-04 李曙胜 Control method, device and the wireless key component of authentication are provided with wireless key
CN106656952A (en) * 2016-09-21 2017-05-10 北京神州绿盟信息安全科技股份有限公司 Authentication method, device and system for registration equipment
CN107948204A (en) * 2017-12-29 2018-04-20 咪咕文化科技有限公司 One-key login method and system, related equipment and computer readable storage medium
CN109089264A (en) * 2018-08-02 2018-12-25 江苏满运软件科技有限公司 A kind of mobile terminal exempts from the method and system of close login
CN109246133A (en) * 2018-10-19 2019-01-18 清华大学 A kind of network access verifying method based on bio-identification
CN110266656A (en) * 2019-05-30 2019-09-20 世纪龙信息网络有限责任公司 Exempt from close authenticating identity recognition methods, device and computer equipment
CN111654468A (en) * 2020-04-29 2020-09-11 平安国际智慧城市科技股份有限公司 Secret-free login method, device, equipment and storage medium
CN111581624A (en) * 2020-05-18 2020-08-25 安徽中科美络信息技术有限公司 Intelligent terminal user identity authentication method
CN112272089A (en) * 2020-10-26 2021-01-26 中国联合网络通信集团有限公司 Cloud host login method, device, equipment and computer readable storage medium

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114726606A (en) * 2022-03-31 2022-07-08 北京九州恒盛电力科技有限公司 User authentication method, client, gateway and authentication server
CN115442809A (en) * 2022-11-08 2022-12-06 北京紫光青藤微***有限公司 Login method and device

Also Published As

Publication number Publication date
CN113726797B (en) 2023-03-24

Similar Documents

Publication Publication Date Title
US20220191016A1 (en) Methods, apparatuses, and computer program products for frictionless electronic signature management
KR101451359B1 (en) User account recovery
KR101383761B1 (en) User authentication system and method thereof
JP2019046060A (en) Delegation-of-authority system, control method and program
TW201424324A (en) Method and apparatus of account login
CN113726797B (en) Safe login method, system and account management device
US9124571B1 (en) Network authentication method for secure user identity verification
US20200067904A1 (en) Method for authenticating a user and corresponding device, first and second servers and system
US20110289567A1 (en) Service access control
CN113826095A (en) Single click login process
US20220247555A1 (en) Method for securing an execution of a local application and corresponding first and second user device and system
KR20220167366A (en) Cross authentication method and system between online service server and client
EP3987419A1 (en) Method and chip for authenticating to a device and corresponding authentication device and system
CN113872989A (en) Authentication method and device based on SSL protocol, computer equipment and storage medium
KR101133167B1 (en) Method and apparatus for user verifing process with enhanced security
WO2013118302A1 (en) Authentication management system, authentication management method, and authentication management program
WO2019224234A1 (en) Method for authorizing operations
KR100930012B1 (en) Method for Processing User's Certification
AU2021304822B2 (en) Method, user device, verifier device, server and system for authenticating user data while preserving user privacy
JP2019092031A (en) Mutual authentication system and mutual authentication method
US12032674B2 (en) Method and system for managing access to a service
AU2010361584B2 (en) User account recovery
US20220067138A1 (en) Method and system for managing access to a service
CN114912126A (en) Identity verification method and system for preventing password forgetting
JP2021093063A (en) Information processing device, authentication system, information processing method, and authentication method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20211214

Address after: Room 1423, No. 1256 and 1258, Wanrong Road, Jing'an District, Shanghai 200040

Applicant after: Tianyi Digital Life Technology Co.,Ltd.

Address before: 1 / F and 2 / F, East Garden, Huatian International Plaza, 211 Longkou Middle Road, Tianhe District, Guangzhou, Guangdong 510000

Applicant before: Century Dragon Information Network Co.,Ltd.

GR01 Patent grant
GR01 Patent grant