WO2019165978A1 - Password input method and device using indirect input of random character field mark - Google Patents

Password input method and device using indirect input of random character field mark Download PDF

Info

Publication number
WO2019165978A1
WO2019165978A1 PCT/CN2019/076338 CN2019076338W WO2019165978A1 WO 2019165978 A1 WO2019165978 A1 WO 2019165978A1 CN 2019076338 W CN2019076338 W CN 2019076338W WO 2019165978 A1 WO2019165978 A1 WO 2019165978A1
Authority
WO
WIPO (PCT)
Prior art keywords
icon
password
input
character segment
user
Prior art date
Application number
PCT/CN2019/076338
Other languages
French (fr)
Chinese (zh)
Inventor
于君
Original Assignee
于君
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 于君 filed Critical 于君
Publication of WO2019165978A1 publication Critical patent/WO2019165978A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/83Protecting input, output or interconnection devices input devices, e.g. keyboards, mice or controllers thereof
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation

Definitions

  • the invention relates to the interaction technology between a user and a computer, in particular to a password input method for inputting a password indirectly by using a random character segment mark and a device applying the same.
  • the system when users input passwords on various types of computer devices, in order to prevent the input content from being seen by others, the system generally adopts a non-meaningful special character instead of the input password in the password input box on the screen.
  • users in order to increase the confidentiality intensity, users often set the password to a meaningless long string that is not easy to be accurately and quickly blinded.
  • the special character of the substitute password is displayed in the password input box on the screen, the user It will be difficult to find errors in the input in time.
  • what is hidden is only the password on the screen, but it cannot cover the action when the user inputs the password with the finger on the keyboard at the same time, and the password is still obtained by the others by observing and analyzing the finger action when the user operates the button.
  • the present invention provides a password input method and device for indirect input by using random character segment marks, which is convenient for the user to memorize and has high password security.
  • the invention has made the following improvements:
  • an embodiment provides a password input method indirectly input with a random character segment mark, the steps of which include:
  • the currently received input character segment is compared with all the random character segment marks of the password icon, and the current password input is determined according to the comparison result.
  • an embodiment provides a password input device indirectly input with a random character segment mark, comprising:
  • a display unit for displaying information related to a password input operation
  • a data processing unit for analyzing and processing information related to the password input operation
  • An input unit configured to send information related to the password input operation to the data processing unit
  • the display unit is further configured to display at least one set of the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon;
  • the input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit;
  • the data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one a character processing unit is further configured to compare the currently received input character segment with all random character segment marks of the password icon, and determine whether the password input is correct according to the comparison result;
  • the distribution position of each icon in the first icon group randomly changes during the process of receiving the character segments input by the user.
  • the password input method and device indirectly input by the random character segment mark
  • the password is set by the icon which is convenient for the user to memorize and the random character segment mark corresponding to each icon, and each of the first icon group
  • the distribution position of the icon is also randomly changed during the process of receiving the character segment input by the user.
  • This method makes it impossible to determine the password icon by peek into the character segment input by the user and the positioning position of the user's gaze, thereby enhancing the security of the password.
  • the easy-to-remember password icon reduces the user's memory burden.
  • FIG. 1 is a schematic diagram of an icon group and a random character segment mark of an embodiment
  • FIG. 2 is a schematic diagram of the icon and the random character segment mark in the icon group being randomly changed compared with FIG. 1;
  • FIG. 3 is a schematic diagram of an icon group and a random character segment mark of another embodiment
  • FIG. 4 is a schematic diagram of four password icons set by a user in an embodiment
  • Figure 5 is a set of random character segments typed by a user of an embodiment
  • FIG. 6 is a schematic diagram of the icon and the random character segment mark in the icon group being randomly changed compared with FIG. 3;
  • Figure 7 is another set of random character segments entered by a user of an embodiment.
  • the present application provides a password input method and device for indirect input by a random character segment mark, which sets a password by an icon that is convenient for the user to memorize and a random character segment mark corresponding to each icon, and the first icon
  • the distribution position of each icon in the group may be randomly changed during the process of receiving the character segment input by the user, and the password segment matching is performed by inputting the character segment corresponding to the password icon in at least one group of the first icon group, the first figure
  • the randomly changed icons in the distribution group greatly enhance the security of the password.
  • interconnect may be static or dynamic characters, numbers, symbols, icons, logos, graphics, tiles, or a combination thereof, or may be included in dynamic or static images or drawings. Multiple local areas with exact boundaries and shapes but with exact approximate positional features.
  • icon group refers to a set of icons including a plurality of icons arranged in an ordered or unordered manner and displayed at the same time; or a static group containing a plurality of virtual regions serving as icons or
  • the dynamic picture has a certain degree of discriminability between the pictures of the virtual areas serving as icons in the present application, so that when the distribution position of each icon changes, each icon can be distinguished and recognized.
  • the "input” referred to in the present application may be input through a physical keyboard or a virtual keyboard, or may be input by a pen, a finger on a touch screen, a stroke drawing or a gesture drawing input, or may be input through a voice. It may be the movement and positioning input of the viewing focus of the human eye on the screen detected by the photoelectric recognition and sensing device.
  • the "character" referred to in the present application may be a letter, a number, a symbol typed on a physical keyboard or a virtual keyboard, a sliding track input by a pen or a finger on a touch screen, or a note input by voice.
  • the corresponding letters, numbers, and symbols may also be letters, numbers, and symbols corresponding to and triggered by the observation focus of the human eye input on the screen through the photoelectric recognition and sensing device.
  • character segment includes at least one character.
  • characters Of course, in order to increase the difficulty of voyeur recording, it is best to use multiple characters. The more characters the character segment contains, the higher the security level of the password, but the amount of calculation of the system will also increase. In actual operation, the number of characters contained in the character segment should be selected as needed.
  • random character segment refers to a character segment that is randomly assigned and has a corresponding relationship with a specific icon in only one display; when the specific icon is displayed again, it is randomly assigned another one and still only A random segment of a correspondence.
  • random character segment mark refers to a random character segment that follows the area of the position where the "icon" is located.
  • display unit includes an electronic display, or a combination of electronic displays, or a combination of an electronic display and a static graphic display.
  • a password input device indirectly input with a random character segment mark, the device comprising a display unit, a data processing unit and an input unit, wherein the data processing unit is connected with the display unit and the input unit signal,
  • the display unit is also coupled to the input unit signal.
  • the input unit is configured to acquire an input character segment currently input by the user, and then send the received input character segment to the data processing unit.
  • the input unit may send the input character segments to the data processing unit in batches, or may send all the input character segments to the data processing unit after the user inputs.
  • a data processing unit configured to receive an input character segment sent by the input unit, and assign a different random segment segment mark to each icon in the first icon group currently displayed by the display unit, and the first icon group The distribution position of each icon randomly changes during the process of receiving the character segments input by the user. After receiving the input character segment, the input character segment is compared with the random character segment mark of the password icon, and according to the comparison result, it is determined whether the user's password input is correct. It should be noted that the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or after inputting all the input character segments together with the password icon. Random character segment marks are used for comparison.
  • the judgment result can be given after all the input is completed, so that the password thief will have difficulty judging that there are several input character segments and that the input character segments have errors. Increased the difficulty of password cracking.
  • the display unit is configured to display a first icon group including an icon, and a random segment label assigned to each icon by the data processing unit, and the random segment mark corresponding to the icon can be displayed beside the icon , can also be displayed in other one-to-one correspondence.
  • the method further includes: a setting unit connected to the data processing unit, wherein the setting unit is configured to set the password icon, and send the set password icon to the data processing unit, that is, when the password is set,
  • the setting unit is configured to obtain a set of password icons, and the password icon is at least two icons selected by the user from at least one set of the second icon group including the plurality of icons currently displayed by the display unit.
  • the setting unit is further configured to set the number of icons in the first icon group displayed by the display unit; or the setting unit is further configured to set the number of icons in the password icon;
  • the unit can also be used to set the number of random segment markers assigned for each icon.
  • Display 1 And keyboard 2 It may be a separate electronic component that is connected to each other by wired or wireless communication, or may be a virtual keyboard displayed on the same screen in the same touch screen.
  • Display 1 Shows an icon containing the set number of English letters 3
  • the first icon group wherein the set number may be a system setting, or may be manually set by the user according to requirements, in this embodiment, as shown in the figure 1
  • the first icon group contains 25 Icon 3 .
  • each icon 3 Next to it, a random segment marker consisting of at least one character is displayed. 4 .
  • the random character segment mark 4 It consists of three characters, and the characters are composed of numbers.
  • each random segment marker 4 The number of characters in the middle may also be one, two or more, and the characters may not be limited to numbers, and may be symbols, letters, etc., and in specific embodiments, random segment marks. 4 The greater the number of characters in the middle, the higher the security of the password.
  • keyboard 2 Include a plurality of character keys, wherein the character keys include a random character segment mark 4 All the characters, in some embodiments, the keyboard also includes the figure 3
  • the function buttons shown, the function buttons include: a backspace button for a backspace operation when an input error occurs. 7 with / Or the Enter key for confirming the operation when the input is completed. 6 In this embodiment, the character buttons are included 0 to 9 of 10 Number of characters 5 .
  • the first icon group 25 The distribution of the icons will change randomly.
  • the distribution position of the icon in the first icon group displayed by the display unit may also be, for example, approximately 2 The interval of seconds varies randomly.
  • the icon in order to memorize and search with the user, the icon preferably has various unique features, graphics, icons that are easy to identify, distinguish, and memorize, and may be static or dynamic.
  • the present invention further provides a password input method for indirectly inputting with a random character segment mark based on the above-mentioned password input device indirectly input with a random character segment mark.
  • the password is first set by the setting unit. First, at least two icons are obtained as a set of password icons in the displayed second icon group of the second icon group containing multiple icons.
  • the second icon group of the password setting step in this embodiment is 30 Icon icon 3 Composition.
  • the user can set a similar password icon in advance through the setting unit. 4
  • the four iconic icons shown in These four icons are selected and remembered by the user from the second icon group displayed in the password setting step.
  • the second icon group that sets the password icon in the password setting step may also have multiple groups. At this time, the user selects the favorite icon as the password by selecting all the second icon groups. Icon.
  • the password input method is as follows:
  • the display unit will display a set of the first icon group including the password icon, and display the different random segment marks assigned to each icon, and display the random character segments of each icon in the The position where each icon forms a correspondence ,
  • Each random character segment includes at least one character, and the distribution position of each icon in the first icon group will randomly change during the process of receiving the character segment input by the user, and the user observes and determines that the first icon group is in advance with him.
  • the four character segments shown with the password icon are displayed, then press Enter. After receiving the input character segment input by the user, the input unit sends the corresponding character segment to the data processing unit.
  • the icon in the first icon group displayed by the unit and the icon in the second icon group may be completely identical, and the icon in the first icon group may also be only the second icon group. Part of the middle icon, but all the password icons must be included in the first icon group.
  • the first icon group displayed by the display unit may also randomly change or change (including the change of the icon in the first icon group or the first The distribution position of the icon in an icon group changes), but the current password icon to be input should be included in the first icon group currently displayed.
  • the icons in the first icon group may be different or partially repeated, and the same group of random segment marks are shared for the repeated icons.
  • the data processing unit After the data processing unit obtains the input character segment, the input character segment is compared with the random character segment mark of the password icon, and the current password input is determined according to the comparison result.
  • the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or mark all the input character segments together with the random character segment of the password icon after the input is completed. Compared. In a preferred embodiment, for the two comparison methods, it is preferable to wait until all the inputs are completed to give a judgment result, so that the password thief will have difficulty judging that there are several input segments and that the input segments have appeared. The error increases the security of the password.
  • the system will determine that the user password is entered correctly and enter the normal program afterwards. If the character segment input by the user does not completely match the password icon, the system will send a prompt message to the user that the password input is incorrect.
  • the prompt may be a prompt mode for indicating a voice, a text or a pattern.
  • the user may be allowed to select a sequence rule for typing a random character segment mark in the password setting step.
  • a sequence rule for typing a random character segment mark is input according to the specified order rule to calculate the password.
  • Successful matching increases the difficulty of the thief to crack the password through voyeurism or other means.
  • Such an operation although lowering the encryption level, is more convenient for the user to remember the password and password input operations, because the user only needs to remember the four password icons, without having to remember the order.
  • the user can input the correct password input result to the data processing unit simply by inputting the random character segment mark of each password icon observed by the user.
  • each random character segment typed by the user during the password input operation process is easily observed and recorded by the person next to it, since these random character segments are only valid once, it is useless to write down; Even if others peek into the process of eye rotation and positioning when the user looks for the password icon to guess the approximate position of the password icon in the display unit, the distribution position of each icon in the first icon group is received in succession.
  • the input character segment changes randomly during the process.
  • the other group of random character segment marks corresponding to each of the previous password icons that are observed by the user can be input in the eyes of the public, and there is no need to worry about the voyeurism and recording of others. .
  • the password peeper quickly observes and records the random segment mark of the icon on the current screen by means of a tool such as a camera, and simultaneously observes and records each random segment mark typed by the user, it is still possible to know the password.
  • the data processing unit will be assigned at least for each icon.
  • the random character segment marks, all the random character segment marks of all the icons of the first icon group are different, and each random character segment mark of each icon is randomly rotated and displayed. For example, assigning each icon 30 Random character segment marks and approximate 1 The second interval is randomly rotated. The user can type any random segment marker for each password icon it sees. Obviously, the ever-changing random character segment mark will greatly improve the difficulty of the voyeur's complete recording of the random character segment mark displayed on the screen. Even if the technique of sneak shot screen is used, it is difficult to accurately determine which four maps the user inputs. symbol.
  • the random segment mark of all the icons displayed in the display has been refreshed many times, making it difficult for the voyeur to accurately record all the displayed random segment marks at the same time, thereby It is difficult to know the password.
  • the icon group includes 100 Icon, a complete password by 3 a password icon, then, if you want to enter the random segment mark of the password icon in a specific order, you can form 100 With 10,000 possible combinations of passwords, it is almost impossible for others to crack passwords by guessing.
  • the icons in the icon group can be distinguished by a few background colors, and there are only a few icons having the same background color. In this way, when the user searches for the password icon, the password icon can be found only in the icon with a specific background color.
  • any tangible, non-transitory computer readable storage medium can be used, including magnetic storage devices (hard disks, floppy disks, etc.), optical storage devices ( CD-ROM , DVD , Blu Ray Disk, etc.), flash memory and / Or something like that.
  • These computer program instructions can be loaded onto a general purpose computer, special purpose computer or other programmable data processing device to form a machine such that the instructions executed on the computer or other programmable data processing device can generate means for performing the specified function.
  • the computer program instructions can also be stored in a computer readable memory, which can instruct the computer or other programmable data processing device to operate in a particular manner such that the instructions stored in the computer readable memory can form a single piece Manufacturing, including implementations that implement specified functions.
  • Computer program instructions can also be loaded onto a computer or other programmable data processing device to perform a series of operational steps on a computer or other programmable device to produce a computer-implemented process for execution on a computer or other programmable device. Instructions can provide steps for implementing a given function.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • User Interface Of Digital Computer (AREA)
  • Input From Keyboards Or The Like (AREA)

Abstract

Provided are a password input method and device using the indirect input of a random character field mark. The method comprises: displaying a first icon group that contains a password icon; assigning different random character field marks to each icon in the icon group; acquiring a currently received character field input by a user, wherein the distribution position of each icon in the first icon group randomly changes during the process of successively receiving character fields input by the user; and comparing the currently received input character field with all random character field marks of the password icon, so as to determine, according to a comparison result, whether the current password has been input correctly. As a random character field of an icon changes randomly, and a distribution position of each icon in an icon group does not remain unchanged during the process of successively receiving character fields input by a user, a password icon can not be determined by means of peeking at a character field input by the user and a positioning location of the user's gaze, and the security of the password is enhanced, and a password icon that is easy to remember reduces the memory burden of the user.

Description

以随机字符段标记间接输入的密码输入方法及设备Password input method and device for indirect input by random character segment mark 技术领域Technical field
本发明涉及用户与计算机之间的交互技术,尤其涉及一种以随机字符段标记间接输入密码的密码输入方法及应用这种方法的设备。The invention relates to the interaction technology between a user and a computer, in particular to a password input method for inputting a password indirectly by using a random character segment mark and a device applying the same.
背景技术Background technique
随着信息化时代的到来,人们为了保护自己的身份、财产等安全,通常会对存有个人信息的各类计算机设备、手机以及各种账号等设置密码。又由于密码一旦被不法分子偷窥到往往会给用户带来不可挽回的损失,故如何有效防止用户输入密码时被不法分子偷窥到,已经成为急需解决的社会问题。With the advent of the information age, in order to protect their identity, property and other security, people usually set passwords for various types of computer equipment, mobile phones and various accounts with personal information. Moreover, once the password is sneaked by the criminals, it will bring irreparable damage to the user. Therefore, how to effectively prevent the user from being sneaked by the criminals when entering the password has become a social problem that needs to be solved urgently.
目前,用户在各类计算机设备输入密码时,为了防止输入内容被他人看到,***一般采取在屏幕上的密码输入框内用无意义的特殊字符来代替输入的密码。同时,为了增加保密强度,用户往往将密码设置成不容易准确快速盲打的没有意义的长字符串,但是,采用这么方式,若屏幕上的密码输入框内只显示替代密码的特殊字符,用户会难以及时发现输入上的差错。并且,被隐藏的只是屏幕上的密码,却不能同时遮盖用户在键盘上用手指输入密码时的动作,仍然会被旁人通过观察分析用户操作按键时的手指动作来获取密码。At present, when users input passwords on various types of computer devices, in order to prevent the input content from being seen by others, the system generally adopts a non-meaningful special character instead of the input password in the password input box on the screen. At the same time, in order to increase the confidentiality intensity, users often set the password to a meaningless long string that is not easy to be accurately and quickly blinded. However, in this way, if only the special character of the substitute password is displayed in the password input box on the screen, the user It will be difficult to find errors in the input in time. Moreover, what is hidden is only the password on the screen, but it cannot cover the action when the user inputs the password with the finger on the keyboard at the same time, and the password is still obtained by the others by observing and analyzing the finger action when the user operates the button.
对此,在银行环境中常用的措施,是在键盘上设置遮挡手指操作动作的遮罩。但遮罩的遮挡效果与用户操作难度之间存在矛盾。遮盖角度越大,隐秘效果越好,但操作难度也越高,影响用户体验。In this regard, a common measure in the banking environment is to set a mask on the keyboard that blocks the finger operation. However, there is a contradiction between the occlusion effect of the mask and the difficulty of the user's operation. The larger the occlusion angle, the better the hidden effect, but the higher the difficulty of operation, affecting the user experience.
同时,在家庭和办公环境中,普通台式电脑、笔记本电脑的键盘上显然不便于设置遮罩,但这类环境中仍然有经常性的密码输入操作。 在手机屏幕上,也由于更难以隐藏手指的动作,使得更容易泄露密码或者锁屏图案。At the same time, in the home and office environment, it is obviously not convenient to set the mask on the keyboard of ordinary desktop computers and notebook computers, but there are still frequent password input operations in such environments. On the screen of the mobile phone, it is also more difficult to hide the action of the finger, making it easier to leak the password or the lock screen pattern.
并且,在隐蔽摄像设备很容易得到的现代社会中,不法分子采用高技术手段偷窥密码已经让人防不胜防,一般性的措施已经难以招架。为了提高破解难度,设置各类密码一般都被要求采用长字符段,并且可能还要包括大小写、特殊字符的组合。但这样复杂抽象的密码如何记忆,一直是让人们头痛的难题。Moreover, in modern society where concealed camera equipment is easily available, it is hard to prevent sneak peeks at the use of high-tech means to peek into passwords. General measures have been difficult to parry. In order to improve the difficulty of cracking, setting various types of passwords is generally required to use long characters, and may also include a combination of uppercase and lowercase characters. But how to remember such complex and abstract passwords has always been a headache for people.
综上所述,在目前的各种密码输入环境中,不仅都存在密码容易泄露的问题。而且,密码所有者还难以确定自己的密码在输入操作时是否曾经被不法分子偷窥盗取,只能采用经常更换密码的方式来补救和预防。可是,符合破解难度要求的密码本来就不容易记忆,频繁更换的结果会增加人们的记忆负担,使人更加苦恼。In summary, in the current various password input environments, not only the password is easily leaked. Moreover, it is difficult for the password owner to determine whether his or her password has been sneaked and stolen by criminals during the input operation, and can only be remedied and prevented by frequently changing the password. However, passwords that meet the difficulty of cracking are not easy to remember. The result of frequent replacement will increase people's memory burden and make people more distressed.
技术问题technical problem
针对现有技术的上述缺陷,本发明提供了一种以随机字符段标记间接输入的密码输入方法及设备,该方法便于用户记忆,且密码安全性高,为了加大密码被偷窥的难度,本发明作出了如下的改进:In view of the above-mentioned deficiencies of the prior art, the present invention provides a password input method and device for indirect input by using random character segment marks, which is convenient for the user to memorize and has high password security. In order to increase the difficulty of password voyeurism, The invention has made the following improvements:
技术解决方案Technical solution
根据第一方面,一种实施例提供了一种以随机字符段标记间接输入的密码输入方法,其步骤包括:According to a first aspect, an embodiment provides a password input method indirectly input with a random character segment mark, the steps of which include:
显示包含有密码图符在内的第一图符组;为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置,每一随机字符段包含至少一个字符;Displaying a first icon group including a password icon; assigning each of the icons in the first icon group different random character segment marks, and displaying random characters of each icon in each The icon forms a position of the correspondence, and each random character segment contains at least one character;
获取当前接收到的用户输入的字符段;第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化;Obtaining a currently received character segment of the user input; the distribution position of each icon in the first icon group randomly changes during the process of receiving the character segment input by the user;
将当前接收到的输入字符段与密码图符的所有随机字符段标记作对比,根据对比结果确定当前的密码输入是否正确。The currently received input character segment is compared with all the random character segment marks of the password icon, and the current password input is determined according to the comparison result.
根据第二方面,一种实施例提供了一种以随机字符段标记间接输入的密码输入设备,包括:According to a second aspect, an embodiment provides a password input device indirectly input with a random character segment mark, comprising:
显示单元,用于显示与密码输入操作相关的信息;a display unit for displaying information related to a password input operation;
数据处理单元,用于分析和处理与密码输入操作相关的信息;a data processing unit for analyzing and processing information related to the password input operation;
输入单元,用于向数据处理单元发送与密码输入操作相关的信息;An input unit, configured to send information related to the password input operation to the data processing unit;
显示单元还用于显示至少一组包含有密码图符在内的第一图符组,并在与各图符形成对应关系的位置显示各图符的随机字符段;The display unit is further configured to display at least one set of the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon;
输入单元用于获取当前接收到的用户输入的字符段,并将输入字符段发送给数据处理单元;The input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit;
数据处理单元还用于为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段发送至显示单元,每个随机字符段包含至少一个字符;数据处理单元还用于将当前接收到的输入字符段与密码图符的所有随机字符段标记作对比,根据对比结果确定密码输入是否正确;The data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one a character processing unit is further configured to compare the currently received input character segment with all random character segment marks of the password icon, and determine whether the password input is correct according to the comparison result;
第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。The distribution position of each icon in the first icon group randomly changes during the process of receiving the character segments input by the user.
有益效果Beneficial effect
依据上述实施例的以随机字符段标记间接输入的密码输入方法及设备,通过便于用户记忆的图符和与各个图符对应的随机字符段标记对密码进行设置,且第一图符组中各图符的分布位置在先后接收用户输入的字符段过程中也随机变化,通过该方法使得通过窥视用户输入的字符段和用户目光的定位位置都无法确定密码图符,增强了密码的安全性,同时便于记忆的密码图符减轻了用户的记忆负担。According to the above embodiment, the password input method and device indirectly input by the random character segment mark, the password is set by the icon which is convenient for the user to memorize and the random character segment mark corresponding to each icon, and each of the first icon group The distribution position of the icon is also randomly changed during the process of receiving the character segment input by the user. This method makes it impossible to determine the password icon by peek into the character segment input by the user and the positioning position of the user's gaze, thereby enhancing the security of the password. At the same time, the easy-to-remember password icon reduces the user's memory burden.
附图说明DRAWINGS
图1是一种实施例的图符组和随机字符段标记的示意图;1 is a schematic diagram of an icon group and a random character segment mark of an embodiment;
图2是与图1相比图符组中图符和随机字符段标记经过随机变化后的示意图;2 is a schematic diagram of the icon and the random character segment mark in the icon group being randomly changed compared with FIG. 1;
图3是另一种实施例的图符组和随机字符段标记的示意图;3 is a schematic diagram of an icon group and a random character segment mark of another embodiment;
图4是一种实施例的用户设置的四个密码图符的示意图;4 is a schematic diagram of four password icons set by a user in an embodiment;
图5是一种实施例的用户键入的一组随机字符段;Figure 5 is a set of random character segments typed by a user of an embodiment;
图6是与图3相比图符组中图符和随机字符段标记经过随机变化后的示意图;6 is a schematic diagram of the icon and the random character segment mark in the icon group being randomly changed compared with FIG. 3;
图7是一种实施例的用户键入的另一组随机字符段。Figure 7 is another set of random character segments entered by a user of an embodiment.
具体实施方式Detailed ways
下面通过具体实施方式结合附图对本发明作进一步详细说明。其中不同实施方式中类似元件采用了相关联的类似的元件标号。在以下的实施方式中,很多细节描述是为了使得本申请能被更好的理解。然而,本领域技术人员可以毫不费力的认识到,其中部分特征在不同情况下是可以省略的,或者可以由其他元件、材料、方法所替代。在某些情况下,本申请相关的一些操作并没有在说明书中显示或者描述,这是为了避免本申请的核心部分被过多的描述所淹没,而对于本领域技术人员而言,详细描述这些相关操作并不是必要的,他们根据说明书中的描述以及本领域的一般技术知识即可完整了解相关操作。The present invention will be further described in detail below with reference to the accompanying drawings. Similar elements in different embodiments employ associated similar component numbers. In the following embodiments, many of the details are described in order to provide a better understanding of the application. However, those skilled in the art can easily realize that some of the features may be omitted in different situations, or may be replaced by other components, materials, and methods. In some cases, some operations related to the present application have not been shown or described in the specification, in order to avoid that the core portion of the present application is overwhelmed by excessive description, and those skilled in the art will describe these in detail. Related operations are not necessary, they can fully understand the relevant operations according to the description in the manual and the general technical knowledge in the field.
另外,说明书中所描述的特点、操作或者特征可以以任意适当的方式结合形成各种实施方式。同时,方法描述中的各步骤或者动作也可以按照本领域技术人员所能显而易见的方式进行顺序调换或调整。因此,说明书和附图中的各种顺序只是为了清楚描述某一个实施例,并不意味着是必须的顺序,除非另有说明其中某个顺序是必须遵循的。In addition, the features, operations, or characteristics described in the specification may be combined in any suitable manner to form various embodiments. At the same time, the steps or actions in the method description can also be sequentially changed or adjusted in a manner that can be apparent to those skilled in the art. Therefore, the various sequences in the specification and the drawings are only for the purpose of describing a particular embodiment, and are not intended to
本文中为部件所编序号本身,例如“第一”、“第二”等,仅用于区分所描述的对象,不具有任何顺序或技术含义。而本申请所说“连接”、“联接”,如无特别说明,均包括直接和间接连接。The serial numbers themselves for the components herein, such as "first", "second", etc., are only used to distinguish the described objects, and do not have any order or technical meaning. As used herein, "connected" or "coupled", unless otherwise specified, includes both direct and indirect connections.
本申请提供了一种以随机字符段标记间接输入的密码输入方法及设备,该方法通过便于用户记忆的图符和与各个图符对应的随机字符段标记对密码进行设置,并且第一图符组中各图符的分布位置在先后接收用户输入的字符段过程中可以随机变化,通过在至少一组第一图符组中输入与密码图符对应的字符段以进行密码匹配,第一图符组中分布位置随机变化的图符极大的增强了密码的安全性。The present application provides a password input method and device for indirect input by a random character segment mark, which sets a password by an icon that is convenient for the user to memorize and a random character segment mark corresponding to each icon, and the first icon The distribution position of each icon in the group may be randomly changed during the process of receiving the character segment input by the user, and the password segment matching is performed by inputting the character segment corresponding to the password icon in at least one group of the first icon group, the first figure The randomly changed icons in the distribution group greatly enhance the security of the password.
本申请中用到的术语定义包括:The definitions of terms used in this application include:
本申请所称的“图符”,可以是静态的或者动态的字符、数字、符号、图标、标志、图形、图块或者它们的组合,也可以是包含在动态或者静态图片、图画中的没有确切边界和形状但有确切的大致位置特征的多个局部区域。The term "icon" as used in this application may be static or dynamic characters, numbers, symbols, icons, logos, graphics, tiles, or a combination thereof, or may be included in dynamic or static images or drawings. Multiple local areas with exact boundaries and shapes but with exact approximate positional features.
本申请所称的“图符组”,是指包含有多个以有序或者无序方式分布的并同时显示的图符集合;也可以是包含了多个充当图符的虚拟区域的静态或者动态图画,在本申请中充当图符的各虚拟区域的图画之间有一定的辨识性,使得当各图符的分布位置发生变化后,也能对各图符进行区分、识别。The term “icon group” as used in the present application refers to a set of icons including a plurality of icons arranged in an ordered or unordered manner and displayed at the same time; or a static group containing a plurality of virtual regions serving as icons or The dynamic picture has a certain degree of discriminability between the pictures of the virtual areas serving as icons in the present application, so that when the distribution position of each icon changes, each icon can be distinguished and recognized.
本申请所称的“输入”,可以是通过实体键盘、虚拟键盘的输入,也可以是通过笔、手指在触摸屏幕上的点击、笔画绘制或者笔势绘制输入,也可以是通过语音的输入,还可以是通过光电识别和传感装置检测到的人眼在屏幕上的观察焦点的移动和定位输入。The "input" referred to in the present application may be input through a physical keyboard or a virtual keyboard, or may be input by a pen, a finger on a touch screen, a stroke drawing or a gesture drawing input, or may be input through a voice. It may be the movement and positioning input of the viewing focus of the human eye on the screen detected by the photoelectric recognition and sensing device.
本申请所称的“字符”,可以是通过实体键盘、虚拟键盘上键入的字母、数字、符号,也可以是笔、手指在触摸屏幕上输入的滑动轨迹,也可以是通过语音输入的音符所对应的字母、数字、符号,也可以是通过光电识别和传感装置输入的人眼在屏幕上的观察焦点所对应和触发的字母、数字、符号。The "character" referred to in the present application may be a letter, a number, a symbol typed on a physical keyboard or a virtual keyboard, a sliding track input by a pen or a finger on a touch screen, or a note input by voice. The corresponding letters, numbers, and symbols may also be letters, numbers, and symbols corresponding to and triggered by the observation focus of the human eye input on the screen through the photoelectric recognition and sensing device.
本申请所称的“字符段”,至少包含一个字符。当然,为了增加偷窥记录难度,最好采用多个字符。字符段包含的字符越多,密码的安全级别越高,但是***的计算量也会随之增加,在实际操作中应根据需要选择字符段中包含的字符数量。The "character segment" referred to in the present application includes at least one character. Of course, in order to increase the difficulty of voyeur recording, it is best to use multiple characters. The more characters the character segment contains, the higher the security level of the password, but the amount of calculation of the system will also increase. In actual operation, the number of characters contained in the character segment should be selected as needed.
本申请所称的“随机字符段”,是指随机分配并且仅在一次显示中与特定图符具有对应关系的字符段;该特定图符被再次显示时,会被随机分配另一个与其仍然仅有一次对应关系的随机字符段。The term "random character segment" as used in the present application refers to a character segment that is randomly assigned and has a corresponding relationship with a specific icon in only one display; when the specific icon is displayed again, it is randomly assigned another one and still only A random segment of a correspondence.
本申请所称的“随机字符段标记”,是指跟随显示在“图符”所在位置区域的随机字符段。The term "random character segment mark" as used in the present application refers to a random character segment that follows the area of the position where the "icon" is located.
本申请所称的“显示单元”,包括电子显示屏,或者电子显示屏的组合,或者电子显示屏与静态图文板的组合。The term "display unit" as used in this application includes an electronic display, or a combination of electronic displays, or a combination of an electronic display and a static graphic display.
在本发明实施例中,提供了一种以随机字符段标记间接输入的密码输入设备,该设备包括显示单元、数据处理单元和输入单元,其中数据处理单元与显示单元和输入单元信号连接,在有的实施例中,显示单元还与输入单元信号连接。In the embodiment of the present invention, there is provided a password input device indirectly input with a random character segment mark, the device comprising a display unit, a data processing unit and an input unit, wherein the data processing unit is connected with the display unit and the input unit signal, In some embodiments, the display unit is also coupled to the input unit signal.
输入单元用于获取用户当前输入的输入字符段,然后将接收到的输入字符段发送至数据处理单元。在具体实施例中,输入单元可以分批次将输入字符段发送至数据处理单元,也可以待用户输入完毕后,集中将所有的输入字符段发送至数据处理单元。The input unit is configured to acquire an input character segment currently input by the user, and then send the received input character segment to the data processing unit. In a specific embodiment, the input unit may send the input character segments to the data processing unit in batches, or may send all the input character segments to the data processing unit after the user inputs.
数据处理单元,用于接收输入单元发送的输入字符段,为显示单元当前显示的第一图符组中的每个图符分配各不相同的随机字符段标记,且第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。在接收到输入字符段后将输入字符段与密码图符的随机字符段标记作对比,并根据对比结果确定该用户的密码输入是否正确。需要说明的是,数据处理单元既可以分批次将每个输入字符段与密码图符的随机字符段标记作对比,也可以在输入完毕后,将所有的输入字符段一起与密码图符的随机字符段标记作对比。在优选的实施例中,无论哪种对比方式,可以等到所有输入完毕后才给出判断结果,这样密码盗窃者将很难判断有几个输入字符段出现了错误以及哪些输入字符段出现了错误,增加了密码被破解的难度。a data processing unit, configured to receive an input character segment sent by the input unit, and assign a different random segment segment mark to each icon in the first icon group currently displayed by the display unit, and the first icon group The distribution position of each icon randomly changes during the process of receiving the character segments input by the user. After receiving the input character segment, the input character segment is compared with the random character segment mark of the password icon, and according to the comparison result, it is determined whether the user's password input is correct. It should be noted that the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or after inputting all the input character segments together with the password icon. Random character segment marks are used for comparison. In the preferred embodiment, no matter which comparison method is used, the judgment result can be given after all the input is completed, so that the password thief will have difficulty judging that there are several input character segments and that the input character segments have errors. Increased the difficulty of password cracking.
显示单元,显示单元用于显示包含图符的第一图符组,以及数据处理单元分配给每个图符的随机字符段标记,与图符对应的随机字符段标记可以显示在图符的旁边,也可以以其他一一对应的方式显示。a display unit, the display unit is configured to display a first icon group including an icon, and a random segment label assigned to each icon by the data processing unit, and the random segment mark corresponding to the icon can be displayed beside the icon , can also be displayed in other one-to-one correspondence.
在有的实施例中,还包括与数据处理单元信号连接的设置单元,设置单元用于对密码图符进行设置,并将设置的密码图符发送给数据处理单元,即在进行密码设置时,设置单元用于获取一组密码图符,密码图符为用户从显示单元当前显示的至少一组包含多个图符的第二图符组中选取的至少两个图符。在有的实施例中,设置单元还用于对显示单元显示的第一图符组中图符的数量进行设置;或者设置单元还用于对密码图符中图符的数量进行设置;另外设置单元还可以用于对为每个图符分配的随机字符段标记的数量进行设置。In some embodiments, the method further includes: a setting unit connected to the data processing unit, wherein the setting unit is configured to set the password icon, and send the set password icon to the data processing unit, that is, when the password is set, The setting unit is configured to obtain a set of password icons, and the password icon is at least two icons selected by the user from at least one set of the second icon group including the plurality of icons currently displayed by the display unit. In some embodiments, the setting unit is further configured to set the number of icons in the first icon group displayed by the display unit; or the setting unit is further configured to set the number of icons in the password icon; The unit can also be used to set the number of random segment markers assigned for each icon.
在一种实施例中,如图In one embodiment, as shown 11 to 22 所示,包括作为显示单元的显示屏As shown, including a display as a display unit 11 和作为输入单元的键盘And the keyboard as an input unit 22 。显示屏. Display 11 和键盘And keyboard 22 ,可以是相互以有线或者无线通讯方式连接的独立的电子部件,也可以是在同一个触摸屏中同屏显示的虚拟键盘。It may be a separate electronic component that is connected to each other by wired or wireless communication, or may be a virtual keyboard displayed on the same screen in the same touch screen.
显示屏Display 11 显示了一个包含设定数量英文字母型的图符Shows an icon containing the set number of English letters 33 的第一图符组,其中,设定数量可以是***设定,也可以是用户根据需要人工设定,在本实施例中,如图The first icon group, wherein the set number may be a system setting, or may be manually set by the user according to requirements, in this embodiment, as shown in the figure 11 所示,第一图符组中包含As shown, the first icon group contains 2525 个图符Icon 33 。在这个第一图符组中,每个图符. In this first icon group, each icon 33 的旁边都显示了一个由至少一个字符构成的随机字符段标记Next to it, a random segment marker consisting of at least one character is displayed. 44 。在本实施例中,为了提高密码盗窃者的观察和记录难度,随机字符段标记. In this embodiment, in order to improve the difficulty of observing and recording the password thief, the random character segment mark 44 包括三个字符,字符由数字构成。在其他的实施例中,每个随机字符段标记It consists of three characters, and the characters are composed of numbers. In other embodiments, each random segment marker 44 中字符的数量也可以为一个、两个或多个,字符可以不局限于数字,可以为符号、字母等,且在具体实施例中随机字符段标记The number of characters in the middle may also be one, two or more, and the characters may not be limited to numbers, and may be symbols, letters, etc., and in specific embodiments, random segment marks. 44 中字符的数量越多,密码的安全性越高。键盘The greater the number of characters in the middle, the higher the security of the password. keyboard 22 包括多个字符按键,其中字符按键包括组成随机字符段标记Include a plurality of character keys, wherein the character keys include a random character segment mark 44 的所有字符,在有的实施例中,键盘还包括如图All the characters, in some embodiments, the keyboard also includes the figure 33 所示的功能按键,功能按键包括:用于出现输入错误时退格操作的退格键The function buttons shown, the function buttons include: a backspace button for a backspace operation when an input error occurs. 77 with // 或用于出现输入完成后时确认操作的回车键Or the Enter key for confirming the operation when the input is completed. 66 ,在本实施例中,字符按键为包括In this embodiment, the character buttons are included 00 to 99 of 1010 个数字的字符按键Number of characters 55 .
参见图See picture 22 ,当用户重新启动密码输入步骤,或者键入了一个随机字符段标记后,第一图符组中的When the user restarts the password input step or types a random segment marker, the first icon group 2525 个图符的分布位置将随机变化。在有的实施例中,显示单元显示的第一图符组中的图符的分布位置也可以以例如大约The distribution of the icons will change randomly. In some embodiments, the distribution position of the icon in the first icon group displayed by the display unit may also be, for example, approximately 22 秒的间隔随机变化。The interval of seconds varies randomly.
在具体实施例中,为了便与用户记忆和查找,图符优选各种有独特特征的、便于识别、区分和记忆的图形、图标,可以是静态的,也可以是动态。In a specific embodiment, in order to memorize and search with the user, the icon preferably has various unique features, graphics, icons that are easy to identify, distinguish, and memorize, and may be static or dynamic.
基于上述以随机字符段标记间接输入的密码输入设备,本申请还提供了一种以随机字符段标记间接输入的密码输入方法,The present invention further provides a password input method for indirectly inputting with a random character segment mark based on the above-mentioned password input device indirectly input with a random character segment mark.
在输入密码之前首先通过设置单元对密码进行设置,首先需在显示的至少一组包含多个图符的第二图符组中获取至少两个图符作为一组密码图符。Before setting the password, the password is first set by the setting unit. First, at least two icons are obtained as a set of password icons in the displayed second icon group of the second icon group containing multiple icons.
请参见图Please see the picture 33 ,本实施例中密码设置步骤的第二图符组由The second icon group of the password setting step in this embodiment is 3030 个图标型图符Icon icon 33 构成。用户预先通过设置单元设置好的密码图符可以是类似图Composition. The user can set a similar password icon in advance through the setting unit. 44 中所示的四个图标型的图符。这四个图符是用户从密码设置步骤显示的第二图符组中自行选中并记住的。在有的实施例中,在密码设置步骤对密码图符进行设置的第二图符组也可以有多组,此时用户通过从所有的第二图符组中自行选中中意的图符作为密码图符。待密码设置完成后,当用户需要进入密码保护设备或查看相关信息时,需要通过输入密码以打开设备或信息页面,密码输入方法的过程如下:The four iconic icons shown in . These four icons are selected and remembered by the user from the second icon group displayed in the password setting step. In some embodiments, the second icon group that sets the password icon in the password setting step may also have multiple groups. At this time, the user selects the favorite icon as the password by selecting all the second icon groups. Icon. After the password is set, when the user needs to enter the password protection device or view related information, the password or the information page needs to be opened by entering the password. The password input method is as follows:
显示单元将显示一组包含密码图符在内的第一图符组,并同时显示分配给每个图符的各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置The display unit will display a set of the first icon group including the password icon, and display the different random segment marks assigned to each icon, and display the random character segments of each icon in the The position where each icon forms a correspondence ,, 每一随机字符段包含至少一个字符,第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中将随机变化,用户观察并确定第一图符组中与他预先设置的四个密码图符对应的随机字符段标记,并在输入单元上键入这四个密码图符的四个随机字符段标记,例如键入图Each random character segment includes at least one character, and the distribution position of each icon in the first icon group will randomly change during the process of receiving the character segment input by the user, and the user observes and determines that the first icon group is in advance with him. Set the random character segment mark corresponding to the four password icons, and type four random character segment marks of the four password icons on the input unit, for example, input a figure 55 所示的四个与密码图符对应的字符段,然后按回车。输入单元接收到用户输入的输入字符段后将相应的字符段发送与数据处理单元。The four character segments shown with the password icon are displayed, then press Enter. After receiving the input character segment input by the user, the input unit sends the corresponding character segment to the data processing unit.
在具有实施例中,单元显示的第一图符组中的图符与第二图符组中的图符可以完全一致,第一图符组中的图符也可以只为第二图符组中图符的一部分,但在第一图符组中需包含所有的密码图符。在有的实施例中,在每键入一个随机字符段标记后,显示单元显示的第一图符组也可以随机的发生变化或不变(包括第一图符组中的图符发生变化或第一图符组中的图符的分布位置发生变化),但当前待输入的密码图符应包括在当前显示的第一图符组中。另外,第一图符组中的图符可以各不相同,也可以有部分重复,对于重复的图符其共用同一组随机字符段标记。In an embodiment, the icon in the first icon group displayed by the unit and the icon in the second icon group may be completely identical, and the icon in the first icon group may also be only the second icon group. Part of the middle icon, but all the password icons must be included in the first icon group. In some embodiments, after each random character segment mark is typed, the first icon group displayed by the display unit may also randomly change or change (including the change of the icon in the first icon group or the first The distribution position of the icon in an icon group changes), but the current password icon to be input should be included in the first icon group currently displayed. In addition, the icons in the first icon group may be different or partially repeated, and the same group of random segment marks are shared for the repeated icons.
数据处理单元获取输入字符段后,将输入字符段与密码图符的随机字符段标记作对比,并根据对比结果确定当前的密码输入是否正确。数据处理单元既可以分批次将每个输入字符段与密码图符的随机字符段标记作对比,也可以在输入完毕后,将所有的输入字符段一起与密码图符的随机字符段标记作对比。在优选的实施例中,针对两种对比方式,最好等到所有输入完毕后才给出判断结果,这样密码盗窃者将很难判断有几个输入字符段出现了错误以及哪些输入字符段出现了错误,增加了密码的安全性。After the data processing unit obtains the input character segment, the input character segment is compared with the random character segment mark of the password icon, and the current password input is determined according to the comparison result. The data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or mark all the input character segments together with the random character segment of the password icon after the input is completed. Compared. In a preferred embodiment, for the two comparison methods, it is preferable to wait until all the inputs are completed to give a judgment result, so that the password thief will have difficulty judging that there are several input segments and that the input segments have appeared. The error increases the security of the password.
若用户输入的字符段与密码图符全部匹配成功,则***会判定用户密码输入正确,进入之后的正常程序。若用户输入的字符段与密码图符没有完全匹配成功,则***会向用户发出密码输入不正确的提示信息,该提示可以是用于表示密码错误的语音、文字或图案等提示方式。If the character segment entered by the user and the password icon all match successfully, the system will determine that the user password is entered correctly and enter the normal program afterwards. If the character segment input by the user does not completely match the password icon, the system will send a prompt message to the user that the password input is incorrect. The prompt may be a prompt mode for indicating a voice, a text or a pattern.
本实施例中,可以在密码设置步骤中容许用户选择键入随机字符段标记的顺序规则,此时在输入密码时,只有按照指定的顺序规则输入与密码图符对应的随机字符段标记才算密码匹配成功,增加了盗窃者通过偷窥或其他手段破解密码的难度。若应用环境对加密级别要求不很高,可以不对键入随机字符段标记的顺序进行限定,此时按任意顺序键入与密码图符对应的随机字符段标记即为密码匹配成功。这样的操作,虽然会降低加密级别,但更便于用户对密码的记忆和密码输入操作,因为用户只要记住四个密码图符即可,无需记住顺序。In this embodiment, the user may be allowed to select a sequence rule for typing a random character segment mark in the password setting step. At this time, when the password is input, only the random character segment mark corresponding to the password icon is input according to the specified order rule to calculate the password. Successful matching increases the difficulty of the thief to crack the password through voyeurism or other means. If the application environment does not require a high level of encryption, you can not limit the order in which random character segments are typed. In this case, the random segment identifier corresponding to the password icon is entered in any order. Such an operation, although lowering the encryption level, is more convenient for the user to remember the password and password input operations, because the user only needs to remember the four password icons, without having to remember the order.
采用上述方法,用户只需输入其观察到的每个密码图符的随机字符段标记,就能向数据处理单元传送正确的密码输入结果。在整个过程中,虽然用户在密码输入操作过程键入的每条随机字符段很容易被旁边的人观察到并记录下来,但因这些随机字符段只一次性有效,记下也没用;同时,即使他人通过窥视用户在查找密码图符时眼球转动和定位的过程以猜测密码图符在显示单元中的大致位置也无济于事,因第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。用户下次进行密码输入操作时,同样可以在众目睽睽下从容输入其观察到的对应于每个密码图符的不同于前次的另一组随机字符段标记,并且仍然不用担心别人的偷窥与记录。With the above method, the user can input the correct password input result to the data processing unit simply by inputting the random character segment mark of each password icon observed by the user. Throughout the process, although each random character segment typed by the user during the password input operation process is easily observed and recorded by the person next to it, since these random character segments are only valid once, it is useless to write down; Even if others peek into the process of eye rotation and positioning when the user looks for the password icon to guess the approximate position of the password icon in the display unit, the distribution position of each icon in the first icon group is received in succession. The input character segment changes randomly during the process. The next time the user performs the password input operation, the other group of random character segment marks corresponding to each of the previous password icons that are observed by the user can be input in the eyes of the public, and there is no need to worry about the voyeurism and recording of others. .
但是,若密码偷窥者借助相机等工具迅速观察并记录当前屏幕上图符的随机字符段标记,并同时观察和记录了用户键入的各随机字符段标记,将仍然有可能获知密码。However, if the password peeper quickly observes and records the random segment mark of the icon on the current screen by means of a tool such as a camera, and simultaneously observes and records each random segment mark typed by the user, it is still possible to know the password.
为了增加他人窥视密码的技术难度,在本发明的另一实施例中,数据处理单元将为每个图符都被分配至少In order to increase the technical difficulty of others to peep the password, in another embodiment of the present invention, the data processing unit will be assigned at least for each icon. 22 个随机字符段标记,第一图符组的所有图符的所有随机字符段标记各不相同,且每个图符的各个随机字符段标记随机轮换显示。比如为每个图符都分配The random character segment marks, all the random character segment marks of all the icons of the first icon group are different, and each random character segment mark of each icon is randomly rotated and displayed. For example, assigning each icon 3030 个随机字符段标记,并以大约Random character segment marks and approximate 11 秒间隔随机轮换显示。用户可键入其看到的每个密码图符的任意一个随机字符段标记。显然,不断变化的随机字符段标记,会极大提高偷窥者对屏幕显示的随机字符段标记完整记录的难度,即便采用偷拍屏幕的技术手段,也难以准确判断用户键入内容究竟对应哪四个图符。The second interval is randomly rotated. The user can type any random segment marker for each password icon it sees. Obviously, the ever-changing random character segment mark will greatly improve the difficulty of the voyeur's complete recording of the random character segment mark displayed on the screen. Even if the technique of sneak shot screen is used, it is difficult to accurately determine which four maps the user inputs. symbol.
请参考图Please refer to the map 66 ,在第一图符组内所有图符位置都随机变化之后,所有随机字符段标记也都已经过轮换变化,但用户仍然可以从观察到的与密码图符对应的新的随机字符段标记来键入。比如,通过键入图After all the icon positions in the first icon group are randomly changed, all the random segment marks have also been rotated, but the user can still observe the new random segment marks corresponding to the password icon. Type. For example, by typing a graph 77 中的四段字符段,也可以正确选定图The four-segment character segment can also be correctly selected. 44 所示的四个密码图符,从而被***判定为密码匹配成功。The four password icons shown are thus determined by the system to be a successful password match.
因用户在键入四段随机字符段的一段时间内,显示屏中显示的所有图符的随机字符段标记已经过多次刷新变化,使偷窥者难以同时准确记录所有显示的随机字符段标记,从而难以获知密码。Because the user has entered the four-segment random character segment for a period of time, the random segment mark of all the icons displayed in the display has been refreshed many times, making it difficult for the voyeur to accurately record all the displayed random segment marks at the same time, thereby It is difficult to know the password.
本发明具体实施例中,若图符组包含In a specific embodiment of the present invention, if the icon group includes 100100 个图符,一个完整密码由Icon, a complete password by 33 个密码图符组成,那么,若要求按特定顺序规则输入密码图符的随机字符段标记,就可形成a password icon, then, if you want to enter the random segment mark of the password icon in a specific order, you can form 100100 万个可能的密码组合,他人通过猜测来破解密码几乎不可能。With 10,000 possible combinations of passwords, it is almost impossible for others to crack passwords by guessing.
在有的实施例中,为了降低用户搜寻密码图符的难度,可以将图符组内的图符用很少的几种背景颜色来区分,具有相同背景颜色的图符只有数个。这样在用户搜寻密码图符时,可以只在具有特定背景颜色的图符中寻找密码图符。In some embodiments, in order to reduce the difficulty of the user searching for the password icon, the icons in the icon group can be distinguished by a few background colors, and there are only a few icons having the same background color. In this way, when the user searches for the password icon, the password icon can be found only in the icon with a specific background color.
同理,也可以用特殊轮廓之类的其他容易区分的形状特征来区分图符,比如用方形、菱形、圆形、星型轮廓来区分多组图符。因人眼的生理能力限制,同一个人无法同时观察和记录用户输入密码时的手指动作和屏幕上的每个图符组的所有随机字符段标记,也就无法确切观察和记录下用户每次输入的随机字符段究竟对应屏幕上的哪一个图符。尤其是当每个图符都有轮换交替显示的多个随机字符段标记、和Similarly, other easily distinguishable shape features such as special contours can be used to distinguish between icons, such as square, diamond, circle, and star outlines to distinguish multiple sets of icons. Due to the limitation of the physiological ability of the human eye, the same person cannot simultaneously observe and record the finger movements when the user inputs the password and all the random character segment marks of each icon group on the screen, so that it is impossible to accurately observe and record the user's input every time. Which of the icons on the screen corresponds to the random character segment. Especially when each icon has multiple random segment marks alternately displayed in rotation, and // 或图符的分布位置随机变化时,即便被人偷拍屏幕也难以破解密码。Or when the distribution position of the icon changes randomly, it is difficult to crack the password even if the screen is taken by a person.
本文参照了各种示范实施例进行说明。然而,本领域的技术人员将认识到,在不脱离本文范围的情况下,可以对示范性实施例做出改变和修正。例如,各种操作步骤以及用于执行操作步骤的组件,可以根据特定的应用或考虑与***的操作相关联的任何数量的成本函数以不同的方式实现。Descriptions are made herein with reference to various exemplary embodiments. However, it will be appreciated by those skilled in the art that changes and modifications may be made to the exemplary embodiments without departing from the scope of the invention. For example, various operational steps and components for performing the operational steps can be implemented in different ways depending on the particular application or any number of cost functions associated with the operation of the system.
另外,如本领域技术人员所理解的,本文的原理可以反映在计算机可读存储介质上的计算机程序产品中,该可读存储介质预装有计算机可读程序代码。任何有形的、非暂时性的计算机可读存储介质皆可被使用,包括磁存储设备(硬盘、软盘等)、光学存储设备(In addition, as will be appreciated by those skilled in the art, the principles herein may be embodied in a computer program product on a computer readable storage medium preloaded with computer readable program code. Any tangible, non-transitory computer readable storage medium can be used, including magnetic storage devices (hard disks, floppy disks, etc.), optical storage devices ( CD-ROMCD-ROM , DVDDVD , BluBlu Ray Ray 盘等)、闪存和Disk, etc.), flash memory and // 或诸如此类。这些计算机程序指令可被加载到通用计算机、专用计算机或其他可编程数据处理设备上以形成机器,使得这些在计算机上或其他可编程数据处理装置上执行的指令可以生成实现指定的功能的装置。这些计算机程序指令也可以存储在计算机可读存储器中,该计算机可读存储器可以指示计算机或其他可编程数据处理设备以特定的方式运行,这样存储在计算机可读存储器中的指令就可以形成一件制造品,包括实现指定功能的实现装置。计算机程序指令也可以加载到计算机或其他可编程数据处理设备上,从而在计算机或其他可编程设备上执行一系列操作步骤以产生一个计算机实现的进程,使得在计算机或其他可编程设备上执行的指令可以提供用于实现指定功能的步骤。Or something like that. These computer program instructions can be loaded onto a general purpose computer, special purpose computer or other programmable data processing device to form a machine such that the instructions executed on the computer or other programmable data processing device can generate means for performing the specified function. The computer program instructions can also be stored in a computer readable memory, which can instruct the computer or other programmable data processing device to operate in a particular manner such that the instructions stored in the computer readable memory can form a single piece Manufacturing, including implementations that implement specified functions. Computer program instructions can also be loaded onto a computer or other programmable data processing device to perform a series of operational steps on a computer or other programmable device to produce a computer-implemented process for execution on a computer or other programmable device. Instructions can provide steps for implementing a given function.
虽然在各种实施例中已经示出了本文的原理,但是许多特别适用于特定环境和操作要求的结构、布置、比例、元件、材料和部件的修改可以在不脱离本披露的原则和范围内使用。以上修改和其他改变或修正将被包含在本文的范围之内。Although the principles of the present invention have been shown in the various embodiments, various modifications of the structures, arrangements, ratios, components, materials and components that are particularly suitable for the specific environment and operational requirements may be made without departing from the principles and scope of the disclosure. use. The above modifications and other changes or modifications are intended to be included within the scope of the disclosure.
前述具体说明已参照各种实施例进行了描述。然而,本领域技术人员将认识到,可以在不脱离本披露的范围的情况下进行各种修正和改变。因此,对于本披露的考虑将是说明性的而非限制性的意义上的,并且所有这些修改都将被包含在其范围内。同样,有关于各种实施例的优点、其他优点和问题的解决方案已如上所述。然而,益处、优点、问题的解决方案以及任何能产生这些的要素,或使其变得更明确的解决方案都不应被解释为关键的、必需的或必要的。本文中所用的术语“包括”和其任何其他变体,皆属于非排他性包含,这样包括要素列表的过程、方法、文章或设备不仅包括这些要素,还包括未明确列出的或不属于该过程、方法、***、文章或设备的其他要素。此外,本文中所使用的术语“耦合”和其任何其他变体都是指物理连接、电连接、磁连接、光连接、通信连接、功能连接和The foregoing detailed description has been described with reference to various embodiments. However, those skilled in the art will recognize that various modifications and changes can be made without departing from the scope of the disclosure. Therefore, the present disclosure is intended to be illustrative, and not restrictive, and all such modifications are included. Also, solutions to the advantages, other advantages, and problems of the various embodiments have been described above. However, benefits, advantages, solutions to problems, and any solution that produces these elements, or makes them more explicit, should not be construed as critical, necessary, or necessary. The term "comprise" and any other variants thereof, as used herein, are meant to be non-exclusive, such that a process, method, article, or device that includes a list of elements includes not only those elements but also those not explicitly listed or not , methods, systems, articles, or other elements of the device. Furthermore, the term "coupled" and any other variants thereof, as used herein, refers to physical, electrical, magnetic, optical, communication, functional, and // 或任何其他连接。Or any other connection.
具有本领域技术的人将认识到,在不脱离本发明的基本原理的情况下,可以对上述实施例的细节进行许多改变。因此,本发明的范围应根据以下权利要求确定。It will be appreciated by those skilled in the art that many changes may be made in the details of the embodiments described above without departing from the basic principles of the invention. Therefore, the scope of the invention should be determined according to the following claims.

Claims (6)

  1. 以随机字符段标记间接输入的密码输入方法,其特征在于包括:A password input method indirectly input with a random character segment mark, which is characterized by:
    显示包含有密码图符在内的第一图符组;为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置,每一随机字符段包含至少一个字符;Displaying a first icon group including a password icon; assigning each of the icons in the first icon group different random character segment marks, and displaying random characters of each icon in each The icon forms a position of the correspondence, and each random character segment contains at least one character;
    获取当前接收到的用户输入的字符段;所述第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化;Obtaining a character segment of the currently received user input; the distribution position of each icon in the first icon group randomly changes during the process of receiving the character segment input by the user;
    将当前接收到的输入字符段与密码图符的所有随机字符段标记作对比,根据对比结果确定当前的密码输入是否正确。The currently received input character segment is compared with all the random character segment marks of the password icon, and the current password input is determined according to the comparison result.
  2. 如权利要求1所述的方法,其特征在于:The method of claim 1 wherein:
    为每个图符分配至少2个随机字符段标记,每个图符的各个随机字符段标记随机轮换显示。Each icon is assigned at least 2 random character segment marks, and each random character segment mark of each icon is randomly rotated and displayed.
  3. 如权利要求1所述的方法,其特征在于:还包括密码设置步骤,具体包括:显示至少一组包含多个图符的第二图符组,将用户在第二图符组中选择的至少两个图符作为一组密码图符。The method of claim 1 further comprising the step of setting a password, comprising: displaying at least one set of second icons comprising a plurality of icons, selecting at least one of the plurality of icons selected by the user in the second set of icons. Two icons act as a set of password icons.
  4. 以随机字符段标记间接输入的密码输入设备,包括:A password input device that is indirectly input with a random character segment, including:
    显示单元,用于显示与密码输入操作相关的信息;a display unit for displaying information related to a password input operation;
    数据处理单元,用于分析和处理与密码输入操作相关的信息;a data processing unit for analyzing and processing information related to the password input operation;
    输入单元,用于向数据处理单元发送与密码输入操作相关的信息;An input unit, configured to send information related to the password input operation to the data processing unit;
    其特征在于,It is characterized in that
    显示单元还用于显示至少一组包含有密码图符的第一图符组,并在与各图符形成对应关系的位置显示各图符的随机字符段;The display unit is further configured to display at least one set of the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon;
    输入单元用于获取当前接收到的用户输入的字符段,并将输入字符段发送给数据处理单元;The input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit;
    数据处理单元还用于为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段发送至显示单元,每个随机字符段包含至少一个字符;数据处理单元还用于将当前接收到的输入字符段与密码图符的所有随机字符段标记作对比,根据对比结果确定密码输入是否正确;The data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one a character processing unit is further configured to compare the currently received input character segment with all random character segment marks of the password icon, and determine whether the password input is correct according to the comparison result;
    所述第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。The distribution position of each icon in the first icon group randomly changes during the process of receiving the character segments input by the user.
  5. 如权利要求4所述的设备,其特征在于,The device of claim 4 wherein:
    数据处理单元还用于为每个图符分配至少2个随机字符段标记,每个图符的各个随机字符段标记随机轮换显示。The data processing unit is further configured to allocate at least 2 random character segment marks for each icon, and each random character segment mark of each icon is randomly rotated and displayed.
  6. 如权利要求4所述的设备,其特征在于,所述数据处理单元还用于将至少一组包含多个图符的第二图符组发送至显示单元显示,并将用户在第二图符组中选择的至少两个图符作为一组密码图符。The device according to claim 4, wherein the data processing unit is further configured to send at least one set of the second icon group including the plurality of icons to the display unit display, and the user is in the second icon At least two icons selected in the group act as a set of password icons.
PCT/CN2019/076338 2018-02-28 2019-02-27 Password input method and device using indirect input of random character field mark WO2019165978A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201810165912.2A CN108229219A (en) 2018-02-28 2018-02-28 The cipher-code input method and equipment inputted indirectly with random character segment mark
CN201810165912.2 2018-02-28

Publications (1)

Publication Number Publication Date
WO2019165978A1 true WO2019165978A1 (en) 2019-09-06

Family

ID=62662323

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/076338 WO2019165978A1 (en) 2018-02-28 2019-02-27 Password input method and device using indirect input of random character field mark

Country Status (2)

Country Link
CN (1) CN108229219A (en)
WO (1) WO2019165978A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108229219A (en) * 2018-02-28 2018-06-29 于君 The cipher-code input method and equipment inputted indirectly with random character segment mark
CN114999045A (en) * 2022-05-26 2022-09-02 珠海市深九鼎光电科技有限公司 Passing system and method based on two-dimensional code encryption

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183941A (en) * 2007-08-03 2008-05-21 廖睿 Random concealed inquiry type cipher authentication technique
CN101382975A (en) * 2007-09-07 2009-03-11 杨文馨 Method for inputting password
CN103034798A (en) * 2012-12-14 2013-04-10 广东欧珀移动通信有限公司 Random password generation method and device
CN103916515A (en) * 2012-12-31 2014-07-09 比亚迪股份有限公司 Dynamic decryption method used for mobile terminal, and mobile terminal
CN108229219A (en) * 2018-02-28 2018-06-29 于君 The cipher-code input method and equipment inputted indirectly with random character segment mark

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183941A (en) * 2007-08-03 2008-05-21 廖睿 Random concealed inquiry type cipher authentication technique
CN101382975A (en) * 2007-09-07 2009-03-11 杨文馨 Method for inputting password
CN103034798A (en) * 2012-12-14 2013-04-10 广东欧珀移动通信有限公司 Random password generation method and device
CN103916515A (en) * 2012-12-31 2014-07-09 比亚迪股份有限公司 Dynamic decryption method used for mobile terminal, and mobile terminal
CN108229219A (en) * 2018-02-28 2018-06-29 于君 The cipher-code input method and equipment inputted indirectly with random character segment mark

Also Published As

Publication number Publication date
CN108229219A (en) 2018-06-29

Similar Documents

Publication Publication Date Title
US11055394B2 (en) Password pattern recognition authentication method
RU2589397C2 (en) Authentication graphic gestures
US10176315B2 (en) Graphical authentication
US9304655B2 (en) Graphical user interface (GUI) that receives directional input to change face for receiving passcode
US9589125B2 (en) 3D pass-go
KR101885836B1 (en) Method of Providing User Certification and Additional Service Using Image Password System
WO2019165976A1 (en) Password input method and apparatus
KR20140132286A (en) Method and apparatus for Unlocking Terminal Device
Ritter et al. Miba: Multitouch image-based authentication on smartphones
WO2019137489A1 (en) Password input method, device, and computer-readable storage medium
Kwon et al. SteganoPIN: Two-faced human–machine interface for practical enforcement of PIN entry security
WO2019165978A1 (en) Password input method and device using indirect input of random character field mark
WO2019165979A1 (en) Method and equipment for inputting password having symbol and random character segment tag
KR102014408B1 (en) Method and computer program for user authentication using image touch password
WO2019210819A1 (en) Method and apparatus for authenticating icon password having random character field mark
KR20150047735A (en) User Authentication Method base on User Input on the Image and Electronic Device using the same
Rajarajan et al. GRAMAP: Three stage graphical password authentication scheme.
Gao et al. Usability and security of the recall-based graphical password schemes
KR101969838B1 (en) Method and apparatus for authenication using dial virtual keypad
KR102325833B1 (en) User authentification method and system using graphic otp
BG112680A (en) User iidentity and will proving method
Citty et al. Tapi: touch-screen authentication using partitioned images
KR20190033697A (en) Method and Computer Program for User Authentication using Graphic Touch Password
TW202343203A (en) Method for inputting characters with eye gazes, host, and computer readable storage medium
JP2017211907A (en) Information processing device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19760774

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19760774

Country of ref document: EP

Kind code of ref document: A1