Nothing Special   »   [go: up one dir, main page]

CN104468101A - User identity authentication method and device and authentication service system - Google Patents

User identity authentication method and device and authentication service system Download PDF

Info

Publication number
CN104468101A
CN104468101A CN201310416425.6A CN201310416425A CN104468101A CN 104468101 A CN104468101 A CN 104468101A CN 201310416425 A CN201310416425 A CN 201310416425A CN 104468101 A CN104468101 A CN 104468101A
Authority
CN
China
Prior art keywords
picture
checking
label
authorization information
identification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201310416425.6A
Other languages
Chinese (zh)
Inventor
秦铭雪
王玉叶
黄亮
古开元
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Tencent Computer Systems Co Ltd
Original Assignee
Shenzhen Tencent Computer Systems Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Tencent Computer Systems Co Ltd filed Critical Shenzhen Tencent Computer Systems Co Ltd
Priority to CN201310416425.6A priority Critical patent/CN104468101A/en
Publication of CN104468101A publication Critical patent/CN104468101A/en
Pending legal-status Critical Current

Links

Landscapes

  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention is suitable for the field of computer security, and provides a user identity authentication method and device and an authentication service system. The method comprises the following steps: generating an authentication picture group and an authentication tag, and issuing the authentication picture group and the authentication tag to a client; receiving authentication information transmitted by the client, wherein the authentication information comprises a picture identifier of a picture selected by a user from the authentication picture group according to the authentication tag; and acquiring a tag of a picture corresponding to the picture identifier in the authentication information, and matching the tag of the picture corresponding to the picture identifier in the authentication information with the authentication tag in order to authenticate the identity of the user. The authentication method provided by the invention has high crack resistance and high security.

Description

A kind of verification method of user identity, device and authentication server
Technical field
The invention belongs to computer safety field, particularly relate to a kind of verification method of user identity, device and authentication server.
Background technology
In order to improve the fail safe of the electronic equipments such as computer, the technology verified the identity (as the login identity of user, the identity etc. of access websites) of user is more and more universal.At present, what use was the most general comprises identifying code verification technique to the technology that the identity of user is verified.Wherein verification code technology is turing test (the Completely Automated Public Turing test to tellComputers and Humans Apart automatically distinguishing computer and the mankind, CAPTCHA), the public safety auto-programming of to be a kind of user of differentiation be computer or people.
Existing identifying code verification technique is generally image authentication code verification technique, and its proof procedure is generally as follows:
Image X, according to certain rule generation image X, as generated the image X comprising numeral, English character or Chinese character, and being sent to client, showing this image X by the checking page user oriented of client, wherein verify the page as shown in Figure 1 by server.User is by observing the content in image X, and input is by the content in image X, the content that user inputs is sent to server as authorization information by client, and server carries out by the content in the image X of the content that user inputted and generation the identity contrasted user and verifies.
For existing image authentication code verification technique, because it is generally according to certain rule generation image X, and using image X as identifying code, as long as collect enough samples like this, and adopt OCR(Optical Character Recognition, optical character identification) etc. technology carry out learning and training, can obtain can machine program come automatically image authentication code is identified, thus making existing the anti-of image authentication code verification technique crack ability, fail safe is low.
Summary of the invention
The embodiment of the present invention provides a kind of verification method of user identity, is intended to solve existing user ID authentication method and resists the problem cracking ability.
First aspect, provides a kind of verification method of user identity, and described method comprises:
Generate checking picture group and checking label, and issue described checking picture group and checking label to client;
Receive the authorization information that client sends, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label;
Obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.
Second aspect, also provides a kind of verification method of user identity, and described method comprises:
The checking picture group that Receipt Validation service system issues and checking label;
Receive the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user;
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
The third aspect, provides a kind of demo plant of user identity, and described device comprises:
Identifying code generation unit, for generating checking picture group and checking label;
Identifying code issues unit, for issuing described checking picture group and checking label to client;
Authorization information receiving element, for receiving the authorization information that client sends, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label;
Authentication unit, for obtaining the label of the picture corresponding to the picture identification in described authorization information, mates the label of the picture in described authorization information corresponding to picture identification with described checking label, to carry out verification process to the identity of user.
Fourth aspect, also provides a kind of demo plant of user identity, and described device comprises:
Identifying code receiving element, the checking picture group issued for Receipt Validation service system and checking label;
Authorization information transmitting element, for receiving the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user;
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
5th aspect, provides a kind of authentication server, and described system comprises the webserver, authentication server, identifying code generation server, wherein:
Described identifying code generation server generates checking picture group;
Described authentication server pulls described checking picture group from described identifying code generation server, and arranges checking label for described checking picture group, and described checking picture group and checking label are sent to client by the webserver;
Described authentication server by the webserver from client Receipt Validation information, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label, and obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.
In embodiments of the present invention, by generating checking picture group and checking label, checking picture group and the identity of checking label to user is adopted to verify, because checking label obtains according to the label of each picture in checking picture group, and the label of machine learning picture be very complicated and loaded down with trivial details according to the process that the label of picture generates checking label, the very difficult study by limited number of time and training obtain, even and if machine learns the label of picture by the learning program of its inside and learns according to the label of picture to generate the concrete mode verifying label, as long as then for checking picture group resets checking label, the study that machine intimate learning program just can be made to complete was lost efficacy, thus greatly improve the anti-ability of cracking of this verification method.
Accompanying drawing explanation
Fig. 1 is the schematic diagram of the checking page that prior art provides;
Fig. 2 is the realization flow figure of the verification method of the user identity that the embodiment of the present invention provides;
Fig. 3 is the schematic diagram of the checking page for showing checking picture group and checking label that the embodiment of the present invention provides;
Fig. 4 is the realization flow figure of the verification method of the user identity that another embodiment of the present invention provides;
Fig. 5 is the realization flow figure of the verification method of the user identity that another embodiment of the present invention provides;
Fig. 6 is the structured flowchart of the demo plant of the user identity that the embodiment of the present invention provides;
Fig. 7 is the structured flowchart of the demo plant of the user identity that another embodiment of the present invention provides;
Fig. 8 is the Organization Chart of the authentication server that the embodiment of the present invention provides;
Fig. 9 is the hardware structure diagram of the terminal equipment that the embodiment of the present invention provides.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearly understand, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
In embodiments of the present invention, by adopting checking picture group and the user identity of checking label to user to verify, thus the anti-ability of cracking of this verification method is greatly improved.
In order to technical solutions according to the invention are described, be described below by specific embodiment.
Fig. 2 shows the realization flow of the verification method of the user identity that the embodiment of the present invention provides, and the method is applicable in authentication server, and details are as follows:
S201, generates checking picture group and checking label, and issues checking picture group and the checking label of generation to client.
In the present embodiment, needing in the scene that the user identity of user is verified, as needed the identity of the identity of the login identity to user, access websites, downloaded resources, the identity etc. of preview resource is when verifying, user by client to authentication server transmit operation request, authentication server is when receiving this operation requests, for this operation requests generation checking picture group and checking label, and issue the checking picture group for verifying the identity of user to client and verify label.Wherein operation requests includes but not limited to logging request, website visiting request, resource download request, resource pre-review request etc.
The detailed process wherein generating checking picture group and checking label is as follows:
A1, from picture library, select the picture of predetermined number, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in this picture library comprises some labels.Wherein predetermined number can be arranged according to the needs of checking, if this predetermined number can be 9 etc.Picture identification is used for unique identification one pictures, this picture and other pictures to be distinguished.Picture in picture library can, for being stored in local picture, also can be the picture pulled from the picture storage server network.
In an alternative embodiment of the invention, also comprised before steps A 1:
Picture is obtained, according to the content that the picture got presents, for the every pictures got arranges some labels, by the tag storage of the picture that gets and picture in picture library in picture storage server from local or network.
In the present embodiment, in order to infinitely picture library can be expanded, to increase the anti-ability of cracking of this verification method, not only can obtain picture from this locality and be added to picture library, picture can also be obtained from the picture storage server network and be added in picture library.After obtain picture from the picture storage server in this locality or network, be that the picture got arranges some labels according to the content that the picture got presents.As being the picture of " football " for displaying contents, can be that this picture arranges in following label one or more: " football ", " spheroid ", " sports goods ", " man-made objects " etc.Wherein for the quantity of the label of every pictures setting is not construed as limiting, can arrange according to concrete needs, and the number of labels of every pictures can be identical or different.After the every pictures for getting arranges some labels, by the tag storage of the picture that gets and picture in picture library, for checking.
In the present embodiment, because the picture in picture library can obtain from the picture storage server this locality or network, thus make the picture number in picture library unlimited, and can real-time update, thus increase the difficulty that this verification method is cracked further, improve the fail safe of this verification method.
During in the present invention, another is implemented, the method also comprises the steps:
The label of the picture in picture library is increased, deletes or revised.
A2, checking label corresponding to this checking picture group is set according to the label of each picture in checking picture group.This checking label is one or more in the label of each picture in this checking picture group.This checking label is for generating validation problem and for carrying out verification process.This validation problem is used to indicate the authorization information that user should input when verifying.The scheme provided to make the embodiment of the present invention is clearer, illustrates as follows:
In hypothesis verification picture group, the label of each picture comprises " computer ", " mobile phone ", " camera ", " gas-cooker ", " refrigerator ", " washing machine " etc.Then when arranging checking label for this checking picture group, can using the checking label of one or more the combination in " mobile phone ", " computer ", " camera ", " gas-cooker ", " refrigerator ", " washing machine " as this checking picture group.
Referring to Fig. 3, is the schematic diagram of the checking page for showing checking picture group and checking label that the embodiment of the present invention provides.In figure 3, 9 are comprised for carrying out the picture verified in this checking picture group, and the label of each picture is respectively " computer " in this checking picture group, " mobile phone ", " refrigerator ", " washing machine ", " gas-cooker ", " camera ", then when arranging checking label for the checking picture group shown in Fig. 3, checking label can be set to " mobile phone ", the validation problem now generated according to this checking label " please be clicked and choose all picture of mobile telephone " as shown in Figure 3, also checking label can be set to " mobile phone " and " computer ", the validation problem now generated according to this checking label can be " please click and choose all picture of mobile telephone and computer picture ".Be appreciated that checking picture group and checking label can also be shown with other forms, in this no limit.
S202, receives the authorization information that client sends, and this authorization information comprises the picture identification of the picture that user selects from checking picture group according to checking label.
In the present embodiment, client, after the checking picture group receiving authentication server transmission and checking label, shows the picture and checking label that comprise in this checking picture group to user.When showing checking label, can directly show checking label, also first can generate validation problem according to checking label, then showing the validation problem generated according to checking label.User is according to the picture comprised in the checking picture group of display and checking label or according to verifying the validation problem input validation information that label generates, its detailed process is as follows:
User clicks the picture in checking picture group according to checking label or validation problem, to select picture from checking picture group, client determine that user selects from checking picture group the picture identification of picture, the authorization information that the picture identification of picture user selected from checking picture group inputs as user is sent to authentication server.Illustrate as follows:
For the checking picture group shown in Fig. 3 and checking label, user " please click according to validation problem and choose all picture of mobile telephone " all picture of mobile telephone clicked in checking picture group, client is when all picture of mobile telephone that user clicks in checking picture group being detected, determine the picture identification of the picture of mobile telephone that user clicks, and the picture identification of picture of mobile telephone user clicked is sent to authentication server.
S203, obtains the label of the picture in authorization information corresponding to picture identification, is mated, to carry out verification process to the identity of user by the label of the picture in authorization information corresponding to picture identification with checking label.
Wherein the identity of user is verified that the login identity, website visiting identity, resource downloading identity, resource pre-review identity etc. included but not limited to user is verified.When being mated with checking label by the label of the picture in authorization information corresponding to picture identification, the mode of exact matching or fuzzy matching can be adopted.
Wherein the label of the picture in authorization information corresponding to picture identification and checking label are carried out exact matching, as follows with the detailed process verified the identity of user:
B1, the label of the picture in authorization information corresponding to picture identification and checking label to be compared, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label.
In the present embodiment, because a pictures may comprise multiple label, therefore, the label of the picture in the authorization information got corresponding to picture identification may comprise multiple, now each label of this picture is all compared with checking label, in all labels of this picture, there is one or more label identical with checking label, then think that the label of this picture is identical with checking label, the number of picture identical with checking label for the label of the picture in authorization information corresponding to picture identification is added 1.All above-mentioned comparison is carried out, the number of the picture that the label that can add up the picture in authorization information corresponding to picture identification is identical with checking label for the picture in authorization information corresponding to picture identification.
B2, when the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, is then verified.
Wherein first threshold refers to that the label of each picture verified in picture group is the number of the picture that checking label is identical.As hypothesis verification picture group as shown in Figure 3, the label of each picture then verified in picture group is respectively " computer ", " mobile phone ", " refrigerator ", " computer ", " mobile phone ", " washing machine ", " computer ", " gas-cooker ", " camera ", if checking is designated " computer ", the label of each picture then verified in picture group is the number of the picture of checking label is 3, and now first threshold is 3.Now, all computer pictures in checking picture group of having only had user to click, just by checking, this verification method fail safe is high.
The detailed process of wherein label of the picture in authorization information corresponding to picture identification and checking label being carried out fuzzy matching is as follows:
C1, compares the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label.Its detailed process is the same, does not repeat them here.
C2, when the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, is then verified.Wherein Second Threshold is greater than or equal to 1 and is less than first threshold.
Still for the checking picture group shown in Fig. 3, if checking is designated " computer ", then first threshold is 3, Second Threshold can for be greater than or equal to 1 and be less than 3 Arbitrary Digit, be assumed to be 2, now, as long as user has clicked the picture of mobile telephone of more than 2 or 2 in checking picture group, just can by checking, this verification method has fault-tolerant ability, and flexibility is good.
In the present embodiment, owing to adopting checking picture group and checking label, verification process is carried out to the identity of user, like this, if crack this verification method, the content presented according to picture is then needed to carry out labeling training to picture, and carry out sample collection, demarcation and study for each tag along sort, according to the content that picture presents, labeling training is carried out to picture, and carry out sample collection for each tag along sort, the process of demarcation and study is complicated, therefore, this verification method is made to have the extremely strong anti-ability of cracking.Even if third party adopts certain means to complete the above-mentioned content presented according to picture to carry out labeling training to picture in addition, and carry out sample collection, demarcation and study for each tag along sort, then this verification method only needs to revise checking label corresponding to checking picture group, abandon or reduce the probability of use of the tag along sort be cracked, the learning program just making third party complete lost efficacy, thus further increased the anti-ability of cracking of this verification method.
Fig. 4 shows the realization flow of the verification method of the user identity that another embodiment of the present invention provides, and details are as follows:
S401, generates checking picture group and checking label, carries out interference process to the picture in picture checking group.
Wherein disturb process include but not limited to add noise, interfering line etc. in picture, or picture is rotated, distortion process.
S402, issues to client and carries out the picture checking group after disturbing process and checking label to picture.Its detailed process is described above, does not repeat them here.
S403, receives the authorization information that client sends, and this authorization information comprises the picture identification of the picture that user selects from checking picture group according to checking label.Its detailed process is described above, does not repeat them here.
S404, obtains the label of the picture in authorization information corresponding to picture identification, is mated, to carry out verification process to the identity of user by the label of the picture in authorization information corresponding to picture identification with checking label.Its detailed process is described above, does not repeat them here.
In the present embodiment, by carrying out interference process to the picture in picture checking group, thus the anti-ability of cracking of this verification method is further increased.
Fig. 5 shows the realization flow of the verification method of the identity that another embodiment of the present invention provides, the method is applicable to client, wherein client can include, but are not limited to: functional mobile phone, smart mobile phone, palmtop PC, PC (PC), panel computer or PDA(Personal Digital Assistant), touch-control mobile terminal, etc.Preferably, the method has more obvious operation ease when being applicable to touch-control mobile terminal.Details are as follows for the method:
S501, the checking picture group that Receipt Validation service system issues and checking label.
In the present embodiment, after receiving the checking picture group and checking label that authentication server issues, this checking picture group and checking label is shown by checking page user oriented.When wherein showing checking label to user, can directly show checking label, also first can generate validation problem according to checking label, then show the validation problem generated according to checking label to user, with by checking label or validation problem prompting user how input validation information.
S502, receive the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the user identity of user.Wherein authorization information comprises the picture identification of the picture that user selects from checking picture group according to checking label.
In the present embodiment, after receiving the checking picture group and checking label that authentication server sends, to the validation problem that user shows the picture that comprises in this checking picture group and checking label or generates according to checking label.After user clicks the picture in checking picture group according to checking label or validation problem, client determines the picture identification of user at the picture of checking picture class mid point choosing, using the authorization information of this picture identification as input, and the authorization information this being comprised the picture identification of the picture clicked is sent to authentication server.Wherein user clicks the concrete mode of the picture verified in picture group can be the picture clicked by mouse in checking picture group, or touch to click the checking picture in checking picture group by touch-screen, or click the picture in checking picture group by modes such as hand-written or voice.
Fig. 6 shows the structure of the demo plant of the user identity that the embodiment of the present invention provides, and illustrate only the part relevant to the embodiment of the present invention for convenience of explanation.
The demo plant of this user identity may be used in the equipment such as computer, it can be the unit that software unit, hardware cell or the software and hardware run in the equipment such as computer combines, also can be integrated in the equipment such as computer as independently suspension member or run in the application system of the equipment such as computer, wherein said device comprises:
Identifying code generation unit 111, for generating checking picture group and checking label.
Preferably, described identifying code generation unit 111 specifically for selecting the picture of predetermined number from picture library, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in described picture library comprises some labels; According to the label of each picture in checking picture group, checking label corresponding to described checking picture group is set.
In a preferred embodiment of the invention, described device also comprises picture library generation unit 115, for obtaining picture from the picture storage server in this locality or network, according to the content that the picture got presents, for the every pictures got arranges some labels, by the tag storage of the picture that gets and picture in picture library.
Identifying code issues unit 112, for issuing described checking picture group and checking label to client.
Preferably, this device also comprise interference processing unit 116, for issue at identifying code unit 112 to client issue described checking picture group and checking label before, to the picture in described picture checking group carry out interference process.
Authorization information receiving element 113, for receiving the authorization information that client sends, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
Authentication unit 114, for obtaining the label of the picture corresponding to the picture identification in described authorization information, mates the label of the picture in described authorization information corresponding to picture identification with described checking label, to carry out verification process to the identity of user.
Preferably, described authentication unit 114 is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, then be verified, described first threshold is the number of the picture that the label of each picture in described checking picture group is identical with checking label.
Preferably, described authentication unit 114 is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, be then verified, wherein said Second Threshold is greater than or equal to 1 and is less than first threshold.
Fig. 7 is the structure of the demo plant of the user identity that another embodiment of the present invention provides, and for convenience of explanation, illustrate only the part relevant to the invention process.
The demo plant of this user identity may be used in terminal equipment, as smart mobile phone, panel computer, E-book reader, MP3(Moving Picture Experts Group Audio Layer III, dynamic image expert compression standard audio frequency aspect 3) player, MP4(Moving Picture Experts Group Audio LayerIV, dynamic image expert compression standard audio frequency aspect 3) player, pocket computer on knee and desktop computer etc.Can be the software unit run in terminal equipment, the unit that combines of hardware cell or software and hardware, also can be integrated in terminal equipment as independently suspension member or run in the application system of terminal equipment, wherein said device comprises:
Identifying code receiving element 211, the checking picture group issued for Receipt Validation service system and checking label.
Authorization information transmitting element 212, for receiving the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user.
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
Preferably, described device also comprises identifying code display unit 213, for showing described checking picture group and checking label by checking page user oriented; Or, first generate validation problem according to checking label, then show described checking picture group and validation problem by checking page user oriented.
The structure of the verification system that the user identity of verification method to user that Fig. 8 shows the above-mentioned user identity of employing that the embodiment of the present invention provides is verified.This verification system comprises client 1 and authentication server 2.Wherein:
Client 1 can be smart mobile phone, panel computer, E-book reader, MP3(Moving PictureExperts Group Audio Layer III, dynamic image expert compression standard audio frequency aspect 3) player, MP4(Moving Picture Experts Group Audio Layer IV, dynamic image expert compression standard audio frequency aspect 3) player, pocket computer on knee and desktop computer etc.
Authentication server 2 comprises the webserver 21, the authentication server 22 be connected with the webserver 21, the identifying code generation server 23 be connected with authentication server 22.Wherein the webserver 21, authentication server 22, identifying code generation server 23 can be respective independently server, also can be integrated in a physical server.Wherein:
In the present embodiment, when needs are needing in the scene verified the identity of user, as needed the login identity to user, the identity of access websites, the identity of downloaded resources, when the identity etc. of preview resource is verified, user passes through client 1 to authentication server 2 transmit operation request, authentication server 2 is when receiving this operation requests, checking picture group and checking label is generated for this operation requests, and issue the checking picture group for verifying the identity of user to client 1 and verify label, client 1 receives the authorization information of user's input, this authorization information comprises the picture identification of the picture that user selects from checking picture group according to checking label, authorization information is sent to authentication server 2 by client 1, authentication server 2 receives the authorization information that client 1 sends, obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.Wherein operation requests includes but not limited to logging request, website visiting request, resource download request, resource pre-review request etc.Its detailed process is as follows:
Authentication server 22 receive the webserver 21 send need the notice that the identity of user is verified after, this notice is informed identifying code generation server 23.Identifying code generation server 23 generates checking picture group.
Preferably, identifying code generation server 23 selects the picture of predetermined number from picture library, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in described picture library comprises some labels.
Preferably, identifying code generation server 23 obtains picture from the former figure storage server 24 this locality or network, and for after picture arranges some labels, the label of picture and picture is added in picture library, the picture of predetermined number is selected again from picture library, obtain the picture identification of picture and this picture selected, the picture of selection and the picture identification of picture are combined into checking picture group.
Authentication server 22 pulls checking picture group from identifying code generation server 23, and according to the label of each picture in checking picture group, checking label is set for this checking picture group, and checking picture group and checking label are handed down to client 1 by the webserver 21.
Client 1 shows this checking picture group and checking label by checking page user oriented, or generate validation problem according to checking label, this checking picture group and validation problem is shown again by checking page user oriented, client 1 determines the picture identification of the picture that user selects from checking picture group according to checking label or validation problem, and the picture identification determined is sent to authentication server 22 by the webserver 21.
Authentication server 22 passes through the webserver 21 from client 1 Receipt Validation information, and obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.
Wherein the label of the picture in described authorization information corresponding to picture identification mates with described checking label by authentication server 22, to carry out the process of verification process to the identity of user, specific as follows:
The label of the picture in authorization information corresponding to picture identification and checking label compare by authentication server 22, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, then be verified, described first threshold is the number of the picture that the label of each picture in described checking picture group is identical with checking label.
Wherein the label of the picture in described authorization information corresponding to picture identification mates with described checking label by authentication server 22, to carry out the process of verification process to the identity of user, and specifically can also be as follows:
The label of the picture in authorization information corresponding to picture identification and checking label compare by authentication server 22, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, be then verified, wherein said Second Threshold is greater than or equal to 1 and is less than first threshold.
Fig. 9 shows the hardware configuration of the terminal equipment that the embodiment of the present invention provides.This terminal equipment is functional mobile phone, smart mobile phone, palmtop PC, PC (PC), panel computer or PDA(Personal Digital Assistant), touch-control mobile terminal, etc.Preferably, this terminal equipment is touch-control mobile terminal.
With reference to figure 9, this terminal equipment comprises: the parts such as RF circuit 910, memory 920, input unit 930, display unit 940, transducer 950, voicefrequency circuit 960, Wireless Fidelity (wireless fidelity, WiFi) module 970, processor 980 and power supply 990.It will be understood by those skilled in the art that the structure of the terminal equipment shown in Fig. 9 does not form the restriction to terminal equipment, the parts more more or less than diagram can be comprised, or combine some parts, or different parts are arranged.
Concrete introduction is carried out below in conjunction with Fig. 9 each component parts to terminal equipment:
RF circuit 910 can be used for receiving and sending messages or in communication process, the reception of signal and transmission, especially, after being received by the downlink information of base station, process to processor 980; In addition, the up data of design are sent to base station.Usually, RF circuit includes but not limited to antenna, at least one amplifier, transceiver, coupler, low noise amplifier (Low Noise Amplifier, LNA), duplexer etc.In addition, RF circuit 110 can also by radio communication and network and other devices communicatings.Above-mentioned radio communication can use arbitrary communication standard or agreement, include but not limited to global system for mobile communications (Global System of Mobilecommunication, GSM), general packet radio service (General Packet Radio Service, GPRS), code division multiple access (Code Division Multiple Access, CDMA), Wideband Code Division Multiple Access (WCDMA) (Wideband Code Division Multiple Access, WCDMA), Long Term Evolution (Long TermEvolution, LTE)), Email, Short Message Service (Short Messaging Service, SMS) etc.Although Fig. 9 shows RF circuit 910, be understandable that, it does not belong to must forming of terminal equipment 900, can omit in the scope of essence not changing invention as required completely.
Memory 920 can be used for storing software program and module, and processor 980 is stored in software program and the module of memory 920 by running, thus performs various function application and the data processing of terminal equipment.Memory 920 mainly can comprise storage program district and store data field, and wherein, storage program district can storage operation system, application program (such as sound-playing function, image player function etc.) etc. needed at least one function; Store data field and can store the data (such as voice data, phone directory etc.) etc. created according to the use of terminal equipment.In addition, memory 920 can comprise high-speed random access memory, can also comprise nonvolatile memory, such as at least one disk memory, flush memory device or other volatile solid-state parts.
Input unit 930 can be used for the numeral or the character information that receive input, and generation arranges with the user of terminal equipment 900 and function controls the input of relevant key signals.Particularly, input unit 930 can comprise contact panel 931 and other input equipments 932.Contact panel 931, also referred to as touch-screen, user can be collected or neighbouring touch operation (such as user uses any applicable object or the operations of annex on contact panel 931 or near contact panel 931 such as finger, stylus) thereon, and drive corresponding jockey according to the formula preset.Optionally, contact panel 931 can comprise touch detecting apparatus and touch controller two parts.Wherein, touch detecting apparatus detects the touch orientation of user, and detects the signal that touch operation brings, and sends signal to touch controller; Touch controller receives touch information from touch detecting apparatus, and converts it to contact coordinate, then gives processor 980, and the order that energy receiving processor 980 is sent also is performed.In addition, the polytypes such as resistance-type, condenser type, infrared ray and surface acoustic wave can be adopted to realize contact panel 931.Except contact panel 931, input unit 930 can also comprise other input equipments 932.Particularly, other input equipments 932 can include but not limited to one or more in physical keyboard, function key (such as volume control button, switch key etc.), trace ball, mouse, action bars etc.
Display unit 940 can be used for the various menus showing information or the information being supplied to user and the terminal equipment inputted by user.Display unit 940 can comprise display floater 941, optionally, the forms such as liquid crystal display (Liquid Crystal Display, LCD), Organic Light Emitting Diode (Organic Light-EmittingDiode, OLED) can be adopted to configure display floater 941.Further, contact panel 931 can cover display floater 941, when contact panel 931 detects thereon or after neighbouring touch operation, send processor 980 to determine the type of touch event, on display floater 941, provide corresponding vision to export with preprocessor 980 according to the type of touch event.Although in fig .9, contact panel 931 and display floater 941 be as two independently parts to realize input and the input function of terminal equipment, but in certain embodiments, can by integrated to contact panel 931 and display floater 941 and realize the input and output function of terminal equipment.
Terminal equipment 900 also can comprise at least one transducer 950, such as optical sensor, motion sensor and other transducers.Particularly, optical sensor can comprise ambient light sensor and proximity transducer, and wherein, ambient light sensor the light and shade of environmentally light can regulate the brightness of display floater 941, proximity transducer when terminal equipment moves in one's ear, can cut out display floater 941 and/or backlight.As the one of motion sensor; accelerometer sensor can detect the size of all directions (are generally three axles) acceleration; size and the direction of gravity can be detected time static, can be used for the application (such as horizontal/vertical screen switching, dependent game, magnetometer pose calibrating) of identification terminal equipment attitude, Vibration identification correlation function (such as pedometer, knock) etc.; As for terminal equipment also other transducers such as configurable gyroscope, barometer, hygrometer, thermometer, infrared ray sensor, do not repeat them here.Although Fig. 9 shows transducer 950, be understandable that, it does not belong to must forming of terminal equipment 900, can omit in the scope of essence not changing invention as required completely.
Voicefrequency circuit 960, loud speaker 961, microphone 962 can provide the audio interface between user and terminal equipment.Voicefrequency circuit 960 can by receive voice data conversion after the signal of telecommunication, be transferred to loud speaker 961, by loud speaker 961 be converted to voice signal export; On the other hand, the voice signal of collection is converted to the signal of telecommunication by microphone 962, voice data is converted to after being received by voicefrequency circuit 960, after again voice data output processor 980 being processed, through RF circuit 910 to send to such as another terminal equipment, or export voice data to memory 920 to process further.
WiFi belongs to short range wireless transmission technology, and by WiFi module 970, terminal equipment can help that user sends and receive e-mail, browsing page and access streaming video etc., and its broadband internet wireless for user provides is accessed.Although Fig. 9 shows WiFi module 970, be understandable that, it does not belong to must forming of terminal equipment 900, can omit in the scope of essence not changing invention as required completely.
Processor 980 is control centres of terminal equipment, utilize the various piece of various interface and the whole terminal equipment of connection, software program in memory 920 and/or module is stored in by running or performing, and call the data be stored in memory 920, perform various function and the deal with data of terminal equipment, thus integral monitoring is carried out to terminal equipment.Optionally, processor 980 can comprise one or more processing unit; Preferably, processor 980 accessible site application processor and modem processor, wherein, application processor mainly processes operating system, user interface and application program etc., and modem processor mainly processes radio communication.Be understandable that, above-mentioned modem processor also can not be integrated in processor 980.
Terminal equipment 900 also comprises the power supply 990(such as battery of powering to all parts), preferably, power supply can be connected with processor 980 logic by power-supply management system, thus realizes the functions such as management charging, electric discharge and power managed by power-supply management system.
Although not shown, terminal equipment 900 can also comprise camera, bluetooth module etc., does not repeat them here.
In embodiments of the present invention, the processor 980 included by this terminal equipment also has following functions: the verification method performing user identity, comprising:
The checking picture group that Receipt Validation service system issues and checking label;
Receive the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user;
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
Further, after the checking picture group that the processor 980 of terminal equipment issues in Receipt Validation service system and checking label, also comprise:
Described checking picture group and checking label is shown by checking page user oriented; Or
First generate validation problem according to checking label, then show described checking picture group and validation problem by checking page user oriented.
Wherein the mode of user's input validation information comprises by the picture in mouse click checking picture group, or touch to click the checking picture in checking picture group by touch-screen, or click the picture in checking picture group, with input validation information by modes such as hand-written or voice.
It should be noted that said system, included unit is carry out dividing according to function logic, but is not limited to above-mentioned division, as long as can realize corresponding function; In addition, the concrete title of each functional unit, also just for the ease of mutual differentiation, is not limited to protection scope of the present invention.
The verification method of the user identity provided to make the embodiment of the present invention is easier to understand, and below to be verified as example to the login identity of user, carries out exemplary illustration, but be not limited with this example to the verification method of the user identity that the embodiment of the present invention provides.
When user needs to log in, logging request is sent to the webserver by client, when the webserver judges to need to verify the identity of the user sending this logging request, notice authentication server to the user of this this logging request of transmission identity carry out verification process, authentication server generates checking picture group by identifying code generation server.Identifying code generation server selects predetermined number (being assumed to be 9) picture from picture library, and obtains the picture identification of each picture selected, and the picture identification of the picture of selection and each picture is combined into checking picture group.Identifying code generation server also can pull 9 pictures from the picture storage server this locality or network, 9 pictures pulled shoulder to shoulder and the picture identification of picture are combined into checking picture group, after every pictures simultaneously for pulling arranges some labels, the label of the picture pulled and picture is added in picture library.Authentication server pulls the checking picture group of generation from identifying code generation server, and according to verifying the label of every pictures in picture group, for this checking picture group arranges checking label, checking picture group and checking label is issued to client.
Client is by checking page presentation checking picture group and checking label, the checking picture group of hypothesis verification page presentation and checking label are as shown in Figure 3, the then checking label " mobile phone " of user according to Fig. 3, all picture of mobile telephone are selected from checking picture class mid point, client determines the picture identification of often opening picture of mobile telephone that user clicks, and the picture identification of often opening picture of mobile telephone user clicked is sent to authentication server by the webserver, authentication server obtains the label of picture corresponding to each picture identification, the label of picture corresponding for each picture identification is mated with checking label, when the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, or when the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, then be verified, proceed the subsequent processes logged in.
One of ordinary skill in the art will appreciate that, the all or part of step realized in above-described embodiment method is that the hardware that can carry out instruction relevant by program has come, described program can be stored in a computer read/write memory medium, described storage medium, as ROM/RAM, disk, CD etc.
In the present embodiment, by adopting checking picture group and checking label as identifying code, for verifying the identity of user, because checking label obtains according to the label of each picture in checking picture group, and the label of machine learning picture be very complicated and loaded down with trivial details according to the process that the label of picture generates checking label, even and if machine learns the label of picture by the learning program of its inside and learns according to the label of picture to generate the concrete mode verifying label, as long as then for checking picture group resets checking label, machine intimate learning program just can be made to complete learning process lost efficacy, thus greatly improve the anti-ability of cracking of this verification method.In addition, by pulling picture in the former figure storage server from local or network, for generating checking picture group, thus make the scale of picture library can be infinitely great, can be used for the substantial amounts of the picture generating checking picture group, what further increase this verification method cracks difficulty.By carrying out interference process to the picture in checking picture group, thus adding the difficulty of machine learning and resolution, further increasing the fail safe of this verification method.By adopting the identity of mode to user of exact matching to verify, thus further increasing the fail safe of this verification method, being verified by the identity of mode to user of employing and fuzzy matching, thus adding the flexibility of this verification method.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any amendments done within the spirit and principles in the present invention, equivalent replacement and improvement etc., all should be included within protection scope of the present invention.

Claims (24)

1. a verification method for user identity, is characterized in that, described method comprises:
Generate checking picture group and checking label, and issue described checking picture group and checking label to client;
Receive the authorization information that client sends, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label;
Obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.
2. the method for claim 1, is characterized in that, described generation checking picture group and checking label specifically comprise:
From picture library, select the picture of predetermined number, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in described picture library comprises some labels;
According to the label of each picture in checking picture group, checking label corresponding to described checking picture group is set.
3. method as claimed in claim 1 or 2, it is characterized in that, described method also comprises:
Picture is obtained, according to the content that the picture got presents, for the every pictures got arranges some labels, by the tag storage of the picture that gets and picture in picture library in picture storage server from local or network.
4. method as claimed in claim 1 or 2, is characterized in that, described issue described checking picture group and checking label to client before, described method also comprises:
Interference process is carried out to the picture in described picture checking group.
5. method as claimed in claim 4, it is characterized in that, described interference is treated to and adds noise and/or interfering line in picture, or rotates picture and/or distortion process.
6. method as claimed in claim 1 or 2, is characterized in that, is describedly mated with described checking label by the label of the picture in described authorization information corresponding to picture identification, to carry out verification process to the identity of user, specifically comprises:
The label of the picture in authorization information corresponding to picture identification and checking label are compared, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label;
When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, then be verified, described first threshold is the number of the picture that the label of each picture in described checking picture group is identical with checking label.
7. method as claimed in claim 1 or 2, is characterized in that, is describedly mated with described checking label by the label of the picture in described authorization information corresponding to picture identification, to carry out verification process to the identity of user, specifically comprises:
The label of the picture in authorization information corresponding to picture identification and checking label are compared, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label;
When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, be then verified, wherein said Second Threshold is greater than or equal to 1 and is less than first threshold.
8. a verification method for user identity, is characterized in that, described method comprises:
The checking picture group that Receipt Validation service system issues and checking label;
Receive the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user;
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
9. method as claimed in claim 8, is characterized in that, after the checking picture group issued in described Receipt Validation service system and checking label, described method also comprises:
Described checking picture group and checking label is shown by checking page user oriented; Or
First generate validation problem according to checking label, then show described checking picture group and validation problem by checking page user oriented.
10. method as claimed in claim 8 or 9, it is characterized in that, the mode of user's input validation information comprises clicks by mouse the picture verified in picture group, or touch to click the checking picture in checking picture group by touch-screen, or click the picture in checking picture group, with input validation information by modes such as hand-written or voice.
The demo plant of 11. 1 kinds of user identity, is characterized in that, described device comprises:
Identifying code generation unit, for generating checking picture group and checking label;
Identifying code issues unit, for issuing described checking picture group and checking label to client;
Authorization information receiving element, for receiving the authorization information that client sends, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label;
Authentication unit, for obtaining the label of the picture corresponding to the picture identification in described authorization information, mates the label of the picture in described authorization information corresponding to picture identification with described checking label, to carry out verification process to the identity of user.
12. devices as claimed in claim 11, it is characterized in that, described identifying code generation unit specifically for selecting the picture of predetermined number from picture library, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in described picture library comprises some labels; According to the label of each picture in checking picture group, checking label corresponding to described checking picture group is set.
13. devices as described in claim 11 or 12, it is characterized in that, described device also comprises:
Picture library generation unit, for obtaining picture from the picture storage server in this locality or network, according to the content that the picture got presents, for the every pictures got arranges some labels, by the tag storage of the picture that gets and picture in picture library.
14. devices as described in claim 11 or 12, it is characterized in that, described device also comprises:
Interference processing unit, for before issue described checking picture group and checking label to client, carries out interference process to the picture in described picture checking group.
15. devices as described in claim 11 or 12, it is characterized in that, described authentication unit is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, then be verified, described first threshold is the number of the picture that the label of each picture in described checking picture group is identical with checking label.
16. devices as described in claim 11 or 12, it is characterized in that, described authentication unit is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, be then verified, wherein said Second Threshold is greater than or equal to 1 and is less than first threshold.
The demo plant of 17. 1 kinds of user identity, is characterized in that, described device comprises:
Identifying code receiving element, the checking picture group issued for Receipt Validation service system and checking label;
Authorization information transmitting element, for receiving the authorization information of user's input, and authorization information is sent to authentication server, with the label making authentication server obtain the picture in authorization information corresponding to picture identification, the label of the picture in authorization information corresponding to picture identification is mated with checking label, to carry out verification process to the identity of user;
Wherein said authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label.
18. devices as claimed in claim 17, it is characterized in that, described device also comprises:
Identifying code display unit, for showing described checking picture group and checking label by checking page user oriented; Or, first generate validation problem according to checking label, then show described checking picture group and validation problem by checking page user oriented.
19. 1 kinds of authentication servers, is characterized in that, described system comprises the webserver, authentication server, identifying code generation server, wherein:
Described identifying code generation server generates checking picture group;
Described authentication server pulls described checking picture group from described identifying code generation server, and arranges checking label for described checking picture group, and described checking picture group and checking label are sent to client by the webserver;
Described authentication server by the webserver from client Receipt Validation information, described authorization information comprises the picture identification of the picture that user selects from described checking picture group according to described checking label, and obtain the label of the picture corresponding to the picture identification in described authorization information, the label of the picture in described authorization information corresponding to picture identification is mated with described checking label, to carry out verification process to the identity of user.
20. authentication servers as claimed in claim 19, it is characterized in that, described identifying code generation server specifically for selecting the picture of predetermined number from picture library, obtain the picture identification of each picture and each picture selected, the picture identification of each picture obtained and each picture is combined into checking picture group, and the every pictures in described picture library comprises some labels.
21. authentication servers as described in claim 19 or 20, it is characterized in that, described identifying code generation server also for obtaining picture from the picture storage server in this locality or network, according to the content that the picture got presents, for the every pictures got arranges some labels, by the tag storage of the picture that gets and picture in picture library.
22. authentication servers as described in claim 19 or 20, is characterized in that, described identifying code generation server is also for carrying out interference process to the picture in described picture checking group.
23. authentication servers as described in claim 19 or 20, it is characterized in that, described authentication server is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is first threshold, then be verified, described first threshold is the number of the picture that the label of each picture in described checking picture group is identical with checking label.
24. authentication servers as described in claim 19 or 20, it is characterized in that, described authentication server is specifically for comparing the label of the picture in authorization information corresponding to picture identification and checking label, and the number of the label of picture in accumulative authorization information corresponding to the picture identification picture identical with verifying label; When the number of the picture identical with checking label when the label of the picture in authorization information corresponding to picture identification is greater than or equal to Second Threshold, be then verified, wherein said Second Threshold is greater than or equal to 1 and is less than first threshold.
CN201310416425.6A 2013-09-12 2013-09-12 User identity authentication method and device and authentication service system Pending CN104468101A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310416425.6A CN104468101A (en) 2013-09-12 2013-09-12 User identity authentication method and device and authentication service system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310416425.6A CN104468101A (en) 2013-09-12 2013-09-12 User identity authentication method and device and authentication service system

Publications (1)

Publication Number Publication Date
CN104468101A true CN104468101A (en) 2015-03-25

Family

ID=52913535

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310416425.6A Pending CN104468101A (en) 2013-09-12 2013-09-12 User identity authentication method and device and authentication service system

Country Status (1)

Country Link
CN (1) CN104468101A (en)

Cited By (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104899499A (en) * 2015-05-29 2015-09-09 南京理工大学 Internet image search based Web verification code generation method
CN106156595A (en) * 2015-04-02 2016-11-23 深圳市腾讯计算机系统有限公司 A kind of method, Apparatus and system being carried out by identifying code picture verifying
CN106211156A (en) * 2016-07-01 2016-12-07 北京小米移动软件有限公司 WiFi network method of attachment, device, terminal unit and WiFi access point
CN106340049A (en) * 2015-07-15 2017-01-18 中国传媒大学 Verification code generating method based on animation semantics
CN106453209A (en) * 2015-08-07 2017-02-22 阿里巴巴集团控股有限公司 Identity verifying method and apparatus
CN106485261A (en) * 2016-09-08 2017-03-08 北京小米移动软件有限公司 A kind of method and apparatus of image recognition
WO2018095282A1 (en) * 2016-11-25 2018-05-31 阿里巴巴集团控股有限公司 Identity verification method and apparatus
WO2018095279A1 (en) * 2016-11-24 2018-05-31 阿里巴巴集团控股有限公司 Method and apparatus for security question generation and identity verification
CN108159700A (en) * 2018-01-23 2018-06-15 网易(杭州)网络有限公司 Generate method, apparatus, storage medium, processor and the terminal of identifying code
CN109241723A (en) * 2017-07-11 2019-01-18 中国科学技术大学 A kind of auth method and device
CN109446823A (en) * 2018-09-30 2019-03-08 天津字节跳动科技有限公司 Preview file method, apparatus, electronic equipment and readable storage medium storing program for executing
CN109670291A (en) * 2017-10-17 2019-04-23 腾讯科技(深圳)有限公司 A kind of implementation method of identifying code, device and storage medium
CN109902475A (en) * 2019-03-13 2019-06-18 百度在线网络技术(北京)有限公司 Identifying code image generating method, device and electronic equipment
CN109951431A (en) * 2017-12-21 2019-06-28 北京京东尚科信息技术有限公司 Verification method, system, electronic equipment and computer-readable medium
CN111143813A (en) * 2019-12-27 2020-05-12 网易(杭州)网络有限公司 Verification problem generation method, verification method and device

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1980126A (en) * 2005-12-08 2007-06-13 上海盛大网络发展有限公司 Method for realizing picture identifying code
CN101197678A (en) * 2007-12-27 2008-06-11 腾讯科技(深圳)有限公司 Picture identifying code generation method and generation device
CN102103670A (en) * 2009-12-22 2011-06-22 迪斯尼实业公司 Human verification by contextually iconic visual public turing test
CN102708112A (en) * 2011-01-31 2012-10-03 游戏橘子数位科技股份有限公司 Method for randomly generating verification graph and question set
CN102724191A (en) * 2012-06-11 2012-10-10 华南理工大学 Safe protecting method and device for Web verification code with combined picture and characters
CN102761611A (en) * 2012-06-29 2012-10-31 宋超 Method for verifying verification code of Cloud platform graph
CN102882681A (en) * 2012-09-18 2013-01-16 张仁平 Method and system adopting number of image elements as security code
CN103078745A (en) * 2013-02-04 2013-05-01 马骏 Logon authentication code based on picture
CN103188263A (en) * 2013-03-22 2013-07-03 百度在线网络技术(北京)有限公司 Verification method, system and device
CN103297244A (en) * 2013-07-05 2013-09-11 百度在线网络技术(北京)有限公司 Verification method and verification server

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1980126A (en) * 2005-12-08 2007-06-13 上海盛大网络发展有限公司 Method for realizing picture identifying code
CN101197678A (en) * 2007-12-27 2008-06-11 腾讯科技(深圳)有限公司 Picture identifying code generation method and generation device
CN102103670A (en) * 2009-12-22 2011-06-22 迪斯尼实业公司 Human verification by contextually iconic visual public turing test
CN102708112A (en) * 2011-01-31 2012-10-03 游戏橘子数位科技股份有限公司 Method for randomly generating verification graph and question set
CN102724191A (en) * 2012-06-11 2012-10-10 华南理工大学 Safe protecting method and device for Web verification code with combined picture and characters
CN102761611A (en) * 2012-06-29 2012-10-31 宋超 Method for verifying verification code of Cloud platform graph
CN102882681A (en) * 2012-09-18 2013-01-16 张仁平 Method and system adopting number of image elements as security code
CN103078745A (en) * 2013-02-04 2013-05-01 马骏 Logon authentication code based on picture
CN103188263A (en) * 2013-03-22 2013-07-03 百度在线网络技术(北京)有限公司 Verification method, system and device
CN103297244A (en) * 2013-07-05 2013-09-11 百度在线网络技术(北京)有限公司 Verification method and verification server

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
陈园园: "点触式的验证码新玩法", 《互联网周刊》 *

Cited By (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106156595A (en) * 2015-04-02 2016-11-23 深圳市腾讯计算机系统有限公司 A kind of method, Apparatus and system being carried out by identifying code picture verifying
CN106156595B (en) * 2015-04-02 2020-04-07 深圳市腾讯计算机系统有限公司 Method, device and system for verifying through verification code picture
CN104899499B (en) * 2015-05-29 2017-09-22 南京理工大学 The Web verification code generation methods searched for based on Internet picture
CN104899499A (en) * 2015-05-29 2015-09-09 南京理工大学 Internet image search based Web verification code generation method
CN106340049A (en) * 2015-07-15 2017-01-18 中国传媒大学 Verification code generating method based on animation semantics
CN106453209A (en) * 2015-08-07 2017-02-22 阿里巴巴集团控股有限公司 Identity verifying method and apparatus
CN106453209B (en) * 2015-08-07 2020-01-21 阿里巴巴集团控股有限公司 Identity verification method and device
CN106211156B (en) * 2016-07-01 2019-08-30 北京小米移动软件有限公司 WiFi network connection method, device, terminal device and WiFi access point
CN106211156A (en) * 2016-07-01 2016-12-07 北京小米移动软件有限公司 WiFi network method of attachment, device, terminal unit and WiFi access point
CN106485261A (en) * 2016-09-08 2017-03-08 北京小米移动软件有限公司 A kind of method and apparatus of image recognition
CN106485261B (en) * 2016-09-08 2020-06-02 北京小米移动软件有限公司 Image recognition method and device
WO2018095279A1 (en) * 2016-11-24 2018-05-31 阿里巴巴集团控股有限公司 Method and apparatus for security question generation and identity verification
US10885178B2 (en) 2016-11-24 2021-01-05 Advanced New Technologies Co., Ltd. Methods and devices for generating security questions and verifying identities
WO2018095282A1 (en) * 2016-11-25 2018-05-31 阿里巴巴集团控股有限公司 Identity verification method and apparatus
TWI688876B (en) * 2016-11-25 2020-03-21 香港商阿里巴巴集團服務有限公司 Identity verification method and device
US10831876B2 (en) 2016-11-25 2020-11-10 Advanced New Technologies Co., Ltd. Methods and apparatuses for identity authentication in virtual reality
CN109241723B (en) * 2017-07-11 2020-08-28 中国科学技术大学 Identity verification method and device
CN109241723A (en) * 2017-07-11 2019-01-18 中国科学技术大学 A kind of auth method and device
CN109670291A (en) * 2017-10-17 2019-04-23 腾讯科技(深圳)有限公司 A kind of implementation method of identifying code, device and storage medium
WO2019076259A1 (en) * 2017-10-17 2019-04-25 腾讯科技(深圳)有限公司 Method and apparatus for generating verification code, computer device, and storage medium
US11341227B2 (en) * 2017-10-17 2022-05-24 Tencent Technology (Shenzhen) Company Limited Verification code generation method and apparatus, computer device, and storage medium
CN109951431A (en) * 2017-12-21 2019-06-28 北京京东尚科信息技术有限公司 Verification method, system, electronic equipment and computer-readable medium
CN109951431B (en) * 2017-12-21 2021-12-14 北京京东尚科信息技术有限公司 Verification method, system, electronic device and computer readable medium
CN108159700A (en) * 2018-01-23 2018-06-15 网易(杭州)网络有限公司 Generate method, apparatus, storage medium, processor and the terminal of identifying code
CN108159700B (en) * 2018-01-23 2021-09-24 网易(杭州)网络有限公司 Method, device, storage medium, processor and terminal for generating verification code
CN109446823A (en) * 2018-09-30 2019-03-08 天津字节跳动科技有限公司 Preview file method, apparatus, electronic equipment and readable storage medium storing program for executing
CN109902475A (en) * 2019-03-13 2019-06-18 百度在线网络技术(北京)有限公司 Identifying code image generating method, device and electronic equipment
CN111143813A (en) * 2019-12-27 2020-05-12 网易(杭州)网络有限公司 Verification problem generation method, verification method and device
CN111143813B (en) * 2019-12-27 2022-02-22 网易(杭州)网络有限公司 Verification problem generation method, verification method and device

Similar Documents

Publication Publication Date Title
CN104468101A (en) User identity authentication method and device and authentication service system
CN104618217B (en) Share method, terminal, server and the system of resource
CN104113782A (en) Video-based sign-in method, terminal, server and system
CN104978115A (en) Content display method and device
CN104298666B (en) Webpage sharing method and device
CN105824958A (en) Method, device and system for inquiring log
CN103368958A (en) Method, device and system for detecting webpage
CN103701926A (en) Method, device and system for obtaining fault reason information
CN103475667A (en) Method, device and system for controlling access router
CN104468464A (en) Authentication method, device and system
CN103294515A (en) Method, device and system for acquiring application programs
CN104301315A (en) Method and device for limiting information access
CN103634294A (en) Information verifying method and device
CN103310004A (en) Method, device and equipment for displaying number of unread messages
CN104580177B (en) Resource provider method, device and system
CN104852885A (en) Method, device and system for verifying verification code
CN103678502B (en) Information collection method and device
CN105681161A (en) Method, device and system for adding friend account
CN105260087A (en) Information display method and terminal
CN104424431A (en) Method and device for resetting virtual machine user login password
CN103279272B (en) A kind of method and device starting application program in an electronic
CN104539571A (en) Information interaction method, identity authentication method, server and terminal
CN105530239A (en) Multimedia data obtaining method and device
CN104735132A (en) Information inquiry method, servers and terminal
CN104573437A (en) Information authentication method, device and terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20150325

RJ01 Rejection of invention patent application after publication