[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

WO2016095564A1 - Identity verification method and device - Google Patents

Identity verification method and device Download PDF

Info

Publication number
WO2016095564A1
WO2016095564A1 PCT/CN2015/088404 CN2015088404W WO2016095564A1 WO 2016095564 A1 WO2016095564 A1 WO 2016095564A1 CN 2015088404 W CN2015088404 W CN 2015088404W WO 2016095564 A1 WO2016095564 A1 WO 2016095564A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
identity verification
detected
authentication
biological information
Prior art date
Application number
PCT/CN2015/088404
Other languages
French (fr)
Chinese (zh)
Inventor
杜霁轩
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016095564A1 publication Critical patent/WO2016095564A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints

Definitions

  • This document relates to, but is not limited to, smart terminal technology, and more particularly to a method, apparatus, and computer readable storage medium for implementing authentication.
  • the authentication method commonly used by the website is that when the user applies for the network service, the user is prompted to input user information such as an account and password for the user to apply for the network service, and prompt the user to input a verification code according to the information in the provided picture, that is, a person skilled in the art.
  • a well-known public Turing machine test If you enter the wrong verification code, you will not be able to pass the verification even if you entered the correct user information. This better prevents malicious attacks against websites and improves the reliability of web services provided by websites.
  • the embodiment of the invention provides a method and device for implementing identity verification, which can reduce the complexity of the user to perform identity verification, thereby improving the user experience.
  • the embodiment of the invention discloses a method for implementing identity verification, including:
  • the preset biometric information is detected from the biometric information, determining whether the detected biometric information is related to the current identity verification according to a preset time correlation policy;
  • the time correlation policy is: when the absolute value of the difference between the time when the identity verification information is obtained and the time when the biometric information is detected is less than or equal to a time threshold corresponding to the preset biometric information, The detected biological information is related to the current identity verification.
  • the biometric information includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
  • the preset biometric information is not detected, it is determined that the identity verification fails.
  • An embodiment of the present invention further discloses an apparatus for implementing identity verification, where the apparatus includes a detecting unit, a correlation determining unit, and a verifying unit, where
  • the detecting unit is configured to acquire the authentication information when performing the authentication, and detect whether the obtained biological information includes the preset biological information;
  • a correlation determining unit configured to determine, according to a preset time correlation policy, whether the detected biological information is related to the current identity verification when the detecting unit detects the preset biological information
  • the verification unit is configured to determine, according to the obtained identity information, whether the identity verification is successful, when the relevant determining unit determines that the detected biological information is related to the current identity verification.
  • the time correlation policy is: when the absolute value of the difference between the time when the identity verification is obtained and the time when the biometric information is detected is less than or equal to the preset biometric information.
  • the detected biological information is related to the current authentication.
  • the biometric information includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
  • the verification unit is further configured to: when the detecting unit does not detect the preset biometric information, determine that the identity verification fails.
  • the verification unit is further configured to: when the correlation determining unit determines that the detected biometric information is not related to the current identity verification, determine that the identity verification fails.
  • the embodiment of the present invention further provides a computer readable storage medium, which stores program instructions, and when the program instructions are executed by the processor, can implement a method for implementing identity verification provided by the embodiments of the present invention.
  • the technical solution of the embodiment of the present invention includes: obtaining identity verification information and biometric information when performing identity verification; detecting whether the obtained biometric information includes pre-set biometric information; and if pre-set biometric information is detected, according to a preset time
  • the correlation policy determines whether the detected biological information is related to the current authentication; if relevant, determines whether the authentication is successful according to the obtained authentication information.
  • the verification code is replaced by the biological information in the identity verification, and the identity verification is performed in combination with the identity verification information. Since the biometric information is automatically acquired by the sensor of the terminal in the identity verification process, the improvement is improved.
  • the success rate of the user's authentication also reduces the complexity of the user's authentication, thereby improving the user experience.
  • FIG. 1 is a flowchart of a method for implementing identity verification according to Embodiment 1 of the present invention
  • FIG. 2 is a schematic structural diagram of a device for implementing identity verification according to Embodiment 2 of the present invention.
  • a method for implementing authentication including:
  • Step 101 Acquire identity verification information and biometric information when performing identity verification, and detect whether the obtained biometric information includes pre-set biometric information;
  • Step 102 If the preset biometric information is detected from the biometric information, determine whether the detected biometric information is related to the current identity verification according to a preset time correlation policy;
  • Step 103 If relevant, determine whether the identity verification is successful according to the obtained authentication information.
  • the biometric information is information generated by human behavior such as clicking and/or emitting voice during the authentication process, and includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
  • the biometric information may generate pressure information and/or temperature information when a human clicks or presses the touch screen, and may be detected by a sensor of the terminal device, for example, the sensor detects a current and/or a resistance change of the touch screen.
  • the sensor detects temperature information of the touch screen; or detecting information of current and/or resistance change of the touch screen, thereby determining that the human clicks or presses the touch screen Temperature information generated.
  • the optional detection method is not limited to the above example manner, and the smart terminal, such as the human-computer interaction technology of the smart phone, can be used to acquire the biological information.
  • the preset biometric information is pressure information.
  • the touch screen displays an interface for performing authentication, that is, when performing identity verification
  • the identity verification interface displays a user name and password automatically input by the smart terminal according to the pre-stored user information. Also show the submit option to complete the authentication by clicking Confirm.
  • the user submits the option by clicking, clicking the terminal screen generates pressure information, and the smart terminal can obtain the authentication information and the biological information, and the pressure information is detected from the obtained biological information; indicating that the obtained biological information includes the pre- If the biological information is set, proceed to step 102.
  • the authentication information includes a username and password.
  • the smart terminal detects the voice information from the obtained biological information, but does not detect the pressure information, indicating that the obtained biological information is If the preset biometric information is not included, step 102 is not performed, and the current authentication fails.
  • the preset biometric information is pressure information and temperature information.
  • the authentication interface prompts to input a user name and a password respectively in the input box of the user name and the input box of the password.
  • the submitting option for completing the authentication is required.
  • the smart terminal obtains the authentication information and the biological information, wherein the authentication information includes the username and password; the biometric information is The user performs pressure input information and temperature information generated by input box switching, user name/password input, and click submit option; pressure information and temperature information are detected from the biological information, indicating that the obtained biological information includes preset biological information. Then proceed to step 102.
  • the preset biometric information is voice information.
  • the touch screen displays an interface for performing authentication
  • the identity verification interface displays the user name and password automatically input by the smart terminal according to the pre-stored user information, and simultaneously displays the completed identity verification.
  • the "submission" needs to be read out.
  • the smart terminal obtains the authentication information and the biological information, and the voice information is detected from the obtained biological information, indicating that the obtained biological information includes the preset voice. Information, proceed to step 102;
  • the terminal prompts to complete the authentication and needs to read “submit”. The user does not sound.
  • the smart terminal acquires the biological information, and only the pressure information is detected from the obtained biological information, and the voice information is not detected, indicating If the obtained biometric information does not include pre-set voice information, step 102 is not performed, and the current authentication fails.
  • the preset biometric information is voiceprint information
  • the touch screen displays the interface for performing authentication
  • the identity verification interface displays the user name and password automatically input by the smart terminal according to the pre-stored user information, and simultaneously displays the completed identity.
  • Verify the pre-set text to be read such as "application for login”.
  • the smart terminal obtains authentication information and biometric information, wherein the authentication information includes the user name and password, and the biometric information is read by the user.
  • the voiceprint information of the "application registration” is detected, and the terminal detects the voiceprint information matched with the preset voiceprint template from the obtained biological information, indicating that the obtained biological information includes the preset voiceprint information, and then continues. Go to step 102;
  • the terminal displays a preset text to be read out after completing the authentication, such as “application for login”, and when the user reads “hello”, the smart terminal obtains the authentication information and the biological information, wherein the authentication information includes the user name and The password and the biometric information read the voiceprint information of "hello" for the user, and the terminal does not detect the voiceprint information matching the preset voiceprint template from the obtained biometric information, indicating that the obtained biometric information does not include the advance If the voiceprint information is set, then step 102 is not performed, and the identity verification fails.
  • a preset text to be read out after completing the authentication such as “application for login”
  • the smart terminal obtains the authentication information and the biological information, wherein the authentication information includes the user name and The password and the biometric information read the voiceprint information of "hello" for the user, and the terminal does not detect the voiceprint information matching the preset voiceprint template from the obtained biometric information, indicating that the obtained biometric information does not include the advance If the voiceprint information is set, then step
  • the preset biometric information is temperature information.
  • the touch screen displays the interface for performing authentication
  • the authentication interface prompts to complete the authentication
  • the unlocking pattern is input, and the user inputs the unlocking pattern by sliding the finger on the touch screen.
  • the biometric information inputting the unlocking pattern for the user is temperature information generated by touching and/or tapping the screen; the smart terminal detects the temperature information from the obtained biological information, indicating that the obtained information
  • the biometric information includes pre-set temperature information, and then proceeds to step 102.
  • the biological information may also be other types of biological information, such as gravity sensing information generated by the mobile terminal, acceleration information, and the like.
  • the time correlation strategy is: when the absolute value of the difference between the time when the identity verification information is obtained and the time when the biometric information is detected is less than or equal to the time threshold corresponding to the preset biometric information, the detected organism Information is related to this authentication.
  • the preset biometric information is pressure information
  • the time threshold corresponding to the preset pressure information is 100 milliseconds, and the time for obtaining the authentication information is t1; after the terminal sensor is obtained, the pressure information is detected.
  • the time is t2, and the absolute value of the difference between t1 and t2 is 60 milliseconds, and it is determined that the pressure information detected this time is related to the current identity verification, indicating that the detected
  • the measured pressure information is the pressure information generated by the user according to the prompt when performing the identity verification; if the absolute value of the difference between t1 and t2 is 150 milliseconds, the pressure information detected this time is determined.
  • This authentication is irrelevant, indicating that the detected pressure information is not the pressure information generated by the user according to the operation performed during the current authentication, but may be the user's touch and/or obtained by the sensor at other unrelated times. Or click on the pressure information generated by the screen.
  • the preset biological information is pressure information and temperature information
  • the time thresholds corresponding to the preset pressure information and the temperature information are respectively 100 milliseconds and 90 milliseconds, and after the terminal sensor is obtained, the pressure information is detected.
  • the absolute values of the difference between the temperature information and the time at which the authentication information is obtained are 60 mm and 80 milliseconds, respectively, and it is determined according to the time correlation strategy that the pressure information and the temperature information detected this time are related to the current identity verification.
  • the preset biometric information is voice information
  • the time threshold corresponding to the preset voice information is 150 milliseconds
  • the time for obtaining the identity verification information is t1; after the terminal sensor is obtained, the voice information is detected.
  • the time is t2, and the absolute value of the difference between t1 and t2 is 100 milliseconds, and it is determined that the voice information detected this time is related to the current identity verification, indicating that the detected voice information is performed when the identity verification is performed.
  • the voice information generated by the user according to the prompt sound if the absolute value of the difference between t1 and t2 is 200 milliseconds, it is determined that the voice information detected this time is not related to the current identity verification, indicating the detected voice information, It is not the voice information generated by the user according to the prompt when performing this authentication, but may be the voice information of the user's voice obtained by the sensor at other unrelated times.
  • the preset biometric information is temperature information and/or pressure information
  • the unlock pattern information and the temperature information and/or the pressure information can be obtained for a period of time
  • the time when the corresponding temperature information and/or the pressure information is detected after the unlocking pattern information is obtained may be the time when the corresponding temperature information and/or the pressure information is detected after the unlocking pattern information is finally obtained in the above time period, that is, the complete unlocking pattern is obtained.
  • the time corresponding to the temperature information and/or pressure information is detected after the information.
  • the time threshold in this embodiment is not the timeout threshold of the user operating the terminal according to the prompt, but is determined whether the biometric information generated and verified by the human operation is authenticated with the identity verification system in time when the identity verification is performed.
  • the threshold of the time correlation between the information. Determining that the detected biological information is related to the current authentication, that is, the biologically obtained and detected by the sensor The information is biological information generated by humans when performing human operations during the threshold time interval according to the prompt; determining that the detected biological information is not related to the current authentication, that is, the biological information obtained and detected by the sensor is not According to the prompts, humans are specifically generated for the actions performed by this authentication, but the biometric information generated by the sensors at other times and for other applications.
  • an optional implementation manner of determining whether the identity verification is successful according to the obtained identity verification information is: verifying whether the username and password are consistent with the authorized username and password.
  • step 103 when the user performs the authentication to complete the authentication according to the prompt, such as clicking the submit option or issuing a "submitted" voice, etc., if relevant, the determination in step 103 is performed.
  • the preset biometric information is not detected, it is determined that the authentication fails; or the authentication is ended.
  • step 102 if it is determined in step 102 that the detected biometric information is not related to the current identity verification, it is determined that the identity verification fails; or the identity verification is ended.
  • the identity verification may be returned to perform the authentication, or the authentication based on the method of the embodiment of the present invention may be performed, or the authentication may be performed based on other verification codes.
  • the method of the embodiment of the present invention can be applied to an intelligent terminal having a touch screen, and can also be applied to other intelligent terminals having a function of detecting biological information, such as a computer having a keyboard input pressure.
  • a device for implementing identity verification includes a detecting unit 20, a correlation determining unit 21, and a verifying unit 22, wherein
  • the detecting unit 20 is configured to obtain identity verification information and biometric information when the identity verification is performed, and detect whether the obtained biometric information includes pre-set biometric information.
  • the correlation determining unit 21 is configured to determine, when the detecting unit 20 detects the preset biometric information, whether the detected biometric information is related to the current identity verification according to a preset time correlation policy.
  • the verification unit 22 is configured to determine the detected biological information when the correlation determining unit 21 determines When it is related to this authentication, it is determined whether the authentication is successful according to the obtained identity information.
  • the time correlation strategy is: determining the detected biological information when the absolute value of the difference between the time when the authentication information is obtained and the time when the biological information is detected is less than or equal to the time threshold corresponding to the preset biological information. Related to this authentication.
  • the biometric information is information generated by human behavior during the authentication process, and includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
  • the verification unit 22 is further configured to: when the detection unit 20 does not detect the preset biometric information, determine that the identity verification fails; or end the execution.
  • the verification unit 22 is further configured to: when the correlation determination unit 21 determines that the detected biometric information is irrelevant related to the current identity verification, determine that the identity verification fails; or end the execution.
  • the embodiment of the present invention further provides a computer readable storage medium, which stores program instructions, and when the program instructions are executed by the processor, can implement a method for implementing identity verification provided by Embodiment 1 of the present invention.
  • all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
  • the devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
  • Each device/function module/function unit in the above embodiment is implemented in the form of a software function module. And when sold or used as a stand-alone product, it can be stored on a computer readable storage medium.
  • the above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
  • the embodiment of the invention realizes the target of using the biometric information learned by the terminal sensor for identity verification.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Collating Specific Patterns (AREA)
  • Telephonic Communication Services (AREA)
  • User Interface Of Digital Computer (AREA)
  • Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)

Abstract

Disclosed in an embodiment of the present invention are an identity verification method and device, the method comprising: upon identity verification, acquiring identity verification information and biological information; detecting whether the acquired biological information comprises preset biological information; if the preset biological information is detected, determining whether the detected biological information is relevant to the identity verification according to a preset time relativity policy; if relevant, determining whether the identity verification succeeds according to the acquired identity verification information.

Description

一种实现身份验证的方法和装置Method and device for implementing identity verification 技术领域Technical field
本文涉及但不限于智能终端技术,尤指一种实现身份验证的方法、装置和计算机可读存储介质。This document relates to, but is not limited to, smart terminal technology, and more particularly to a method, apparatus, and computer readable storage medium for implementing authentication.
背景技术Background technique
众所周知,越来越多的网站,为了防止恶意攻击如通过大量重复申请网络服务来阻塞正常网络服务和通过大量尝试输入猜测的用户信息进行用户信息的暴力破解,当用户申请网络服务时,需要进行身份验证。目前,网站常用的身份验证方法是,当用户申请网络服务时,提示用户输入用户信息如用户申请网络服务的账户和密码,同时提示用户根据提供的图片中的信息输入验证码即本领域技术人员公知的公共图灵机测试。如果输入了错误的验证码,即使输入了正确的用户信息也无法通过验证。这样较好地防止了针对网站的恶意攻击,提高了网站提供网络服务的可靠性。As we all know, more and more websites, in order to prevent malicious attacks, such as blocking a normal network service through a large number of repeated application of network services and violent cracking of user information through a large number of attempts to input guessed user information, when users apply for network services, they need to Authentication. At present, the authentication method commonly used by the website is that when the user applies for the network service, the user is prompted to input user information such as an account and password for the user to apply for the network service, and prompt the user to input a verification code according to the information in the provided picture, that is, a person skilled in the art. A well-known public Turing machine test. If you enter the wrong verification code, you will not be able to pass the verification even if you entered the correct user information. This better prevents malicious attacks against websites and improves the reliability of web services provided by websites.
然而,随着图片文字识别技术的发展,通过计算机程序从图片中的信息提取验证码的技术逐渐成熟。这使得恶意程序能够利用图片文字识别技术提取验证码对网站进行恶意攻击。为了降低恶意程序通过图片文字识别技术提取验证码的成功率,目前通常采用本领域技术人员公知的在图片中增加干扰元素和/或调整逻辑顺序的方法增加图片中的信息的识别难度。这样,虽然较好地防止了通过图片文字识别技术对网站进行恶意攻击,然而明显增加了用户辨别图片中信息的难度,使得用户很难一次性根据图片中的信息准确辨别出验证码,使得用户往往需要进行两次或两次以上身份验证才能通过身份验证,从而增加了用户进行身份验证的复杂度,降低了用户体验。However, with the development of picture text recognition technology, the technology of extracting verification codes from information in pictures by computer programs has gradually matured. This allows malicious programs to use image text recognition technology to extract verification codes to maliciously attack websites. In order to reduce the success rate of the malicious program to extract the verification code through the picture text recognition technology, the method of adding interference elements and/or adjusting the logical order in the picture, which is well known to those skilled in the art, is generally used to increase the difficulty of identifying the information in the picture. In this way, although the malicious attack on the website by the picture text recognition technology is better prevented, the difficulty of the user to distinguish the information in the picture is obviously increased, so that it is difficult for the user to accurately identify the verification code according to the information in the picture at one time, so that the user It often requires two or more authentications to pass authentication, which increases the complexity of the user's authentication and reduces the user experience.
发明内容Summary of the invention
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保护范围。 The following is an overview of the topics detailed in this document. This Summary is not intended to limit the scope of the claims.
本发明实施例提供了一种实现身份验证方法和装置,能够降低用户进行身份验证的复杂度,从而较好地提高用户体验。The embodiment of the invention provides a method and device for implementing identity verification, which can reduce the complexity of the user to perform identity verification, thereby improving the user experience.
本发明实施例公开了一种实现身份验证的方法,包括:The embodiment of the invention discloses a method for implementing identity verification, including:
进行身份验证时,获取身份验证信息和生物信息;检测所获得的生物信息是否包含预先设置的生物信息;Acquire authentication information and biometric information when performing authentication; and detect whether the obtained biometric information includes pre-set biometric information;
如果从所述生物信息中检测出预先设置的生物信息,则根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;If the preset biometric information is detected from the biometric information, determining whether the detected biometric information is related to the current identity verification according to a preset time correlation policy;
如果相关,根据获得的身份验证信息判定身份验证是否成功。If relevant, it is determined based on the obtained authentication information whether the authentication is successful.
其中,所述时间相关性策略为:当获得所述身份验证信息的时间与检测出所述生物信息的时间的差值的绝对值小于或等于预先设置的所述生物信息对应的时间阈值时,所述检测出的生物信息与本次身份验证相关。The time correlation policy is: when the absolute value of the difference between the time when the identity verification information is obtained and the time when the biometric information is detected is less than or equal to a time threshold corresponding to the preset biometric information, The detected biological information is related to the current identity verification.
其中,所述生物信息至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。The biometric information includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
可选地,如果没有检测出所述预设的生物信息,则判定身份验证失败。Optionally, if the preset biometric information is not detected, it is determined that the identity verification fails.
可选地,如果确定所检测出的生物信息与与本次身份验证不相关,则判定身份验证失败。Optionally, if it is determined that the detected biological information is not related to the current authentication, it is determined that the authentication fails.
本发明实施例还公开一种实现身份验证的装置,该装置包括检测单元、相关性确定单元和验证单元,其中,An embodiment of the present invention further discloses an apparatus for implementing identity verification, where the apparatus includes a detecting unit, a correlation determining unit, and a verifying unit, where
检测单元,设置为在进行身份验证时,获取用身份验证信息;检测所获得的生物信息中是否包含预先设置的生物信息;The detecting unit is configured to acquire the authentication information when performing the authentication, and detect whether the obtained biological information includes the preset biological information;
相关性确定单元,设置为当检测单元检测出预先设置的生物信息时,根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;a correlation determining unit, configured to determine, according to a preset time correlation policy, whether the detected biological information is related to the current identity verification when the detecting unit detects the preset biological information;
验证单元,设置为当相关确定单元确定出所检测出的生物信息与本次身份验证相关时,根据获得的身份信息判定身份验证是否成功。The verification unit is configured to determine, according to the obtained identity information, whether the identity verification is successful, when the relevant determining unit determines that the detected biological information is related to the current identity verification.
其中,所述时间相关性策略为:当获得所述身份验证的时间与检测出所述生物信息的时间的差值的绝对值小于或等于预先设置的所述生物信息对应 的时间阈值时,所述检测出的生物信息与本次身份验证相关。The time correlation policy is: when the absolute value of the difference between the time when the identity verification is obtained and the time when the biometric information is detected is less than or equal to the preset biometric information. The detected biological information is related to the current authentication.
其中,所述生物信息至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。The biometric information includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
可选地,所述验证单元还设置为:当所述检测单元没有检测出所述预先设置的生物信息时,判定身份验证失败。Optionally, the verification unit is further configured to: when the detecting unit does not detect the preset biometric information, determine that the identity verification fails.
可选地,所述验证单元还设置为:当所述相关性确定单元确定出所检测出的生物信息与本次身份验证不相关时,判定身份验证失败。Optionally, the verification unit is further configured to: when the correlation determining unit determines that the detected biometric information is not related to the current identity verification, determine that the identity verification fails.
本发明实施例还提供一种计算机可读存储介质,存储有程序指令,当该程序指令被处理器执行时可实现本发明实施例所提供的一种实现身份验证的方法。The embodiment of the present invention further provides a computer readable storage medium, which stores program instructions, and when the program instructions are executed by the processor, can implement a method for implementing identity verification provided by the embodiments of the present invention.
本发明实施例技术方案包括:进行身份验证时,获取身份验证信息和生物信息;检测所获得的生物信息中是否包含预先设置的生物信息;如果检测出预先设置的生物信息,根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;如果相关,根据获得的身份验证信息判定身份验证是否成功。通过本发明实施例的技术方案,实现了在身份验证中通过生物信息代替验证码,并结合身份验证信息进行身份验证,由于生物信息是在身份验证过程中通过终端的传感器自动获取的,因此提高了用户进行身份验证的成功率,也降低了用户进行身份验证的复杂度,从而较好地提高了用户体验。The technical solution of the embodiment of the present invention includes: obtaining identity verification information and biometric information when performing identity verification; detecting whether the obtained biometric information includes pre-set biometric information; and if pre-set biometric information is detected, according to a preset time The correlation policy determines whether the detected biological information is related to the current authentication; if relevant, determines whether the authentication is successful according to the obtained authentication information. Through the technical solution of the embodiment of the present invention, the verification code is replaced by the biological information in the identity verification, and the identity verification is performed in combination with the identity verification information. Since the biometric information is automatically acquired by the sensor of the terminal in the identity verification process, the improvement is improved. The success rate of the user's authentication also reduces the complexity of the user's authentication, thereby improving the user experience.
本发明的其它特征和优点将在随后的说明书中阐述,并且,部分地从说明书中变得显而易见,或者通过实施本发明而了解。本发明的目的和其他优点可通过在说明书、权利要求书以及附图中所特别指出的结构来实现和获得。Other features and advantages of the invention will be set forth in the description which follows, The objectives and other advantages of the invention may be realized and obtained by means of the structure particularly pointed in the appended claims.
在阅读并理解了附图和详细描述后,可以明白其他方面。Other aspects will be apparent upon reading and understanding the drawings and detailed description.
附图概述BRIEF abstract
附图用来提供对本发明实施例技术方案的进一步理解,并且构成说明书的一部分,与本申请的实施例一起用于解释本发明实施例的技术方案,并不 构成对本发明实施例技术方案的限制。The drawings are used to provide a further understanding of the technical solutions of the embodiments of the present invention, and constitute a part of the specification, which together with the embodiments of the present application are used to explain the technical solutions of the embodiments of the present invention, and are not It embodies the limitations of the technical solutions of the embodiments of the present invention.
图1为本发明实施例一中一种实现身份验证的方法的流程图;1 is a flowchart of a method for implementing identity verification according to Embodiment 1 of the present invention;
图2为本发明实施例二中一种实现身份验证的装置的组成结构示意图。FIG. 2 is a schematic structural diagram of a device for implementing identity verification according to Embodiment 2 of the present invention.
本发明的较佳实施方式Preferred embodiment of the invention
为使本发明实施例的目的、技术方案和优点更加清楚明白,下文中将结合附图对本发明的实施例进行详细说明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。The embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.
在附图的流程图示出的步骤可以在诸如一组计算机可执行指令的计算机系统中执行。并且,虽然在流程图中示出了逻辑顺序,但是在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤。The steps illustrated in the flowchart of the figures may be executed in a computer system such as a set of computer executable instructions. Also, although logical sequences are shown in the flowcharts, in some cases the steps shown or described may be performed in a different order than the ones described herein.
实施例一Embodiment 1
一种实现身份验证的方法,其流程如图1所示,包括:A method for implementing authentication, the flow of which is shown in Figure 1, including:
步骤101:进行身份验证时,获取身份验证信息和生物信息;检测所获得的的生物信息中是否包含预先设置的生物信息;Step 101: Acquire identity verification information and biometric information when performing identity verification, and detect whether the obtained biometric information includes pre-set biometric information;
步骤102:如果从所述生物信息中检测出预先设置的生物信息,则根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;Step 102: If the preset biometric information is detected from the biometric information, determine whether the detected biometric information is related to the current identity verification according to a preset time correlation policy;
步骤103:如果相关,根据获得的身份验证信息判定身份验证是否成功。Step 103: If relevant, determine whether the identity verification is successful according to the obtained authentication information.
其中,步骤101中,生物信息为进行身份验证过程中人类行为如点击和/或发出语音等产生的信息,至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。以具有触摸屏的智能终端为例,生物信息可以为人类点击或者按压触摸屏时产生压力信息和/或温度信息,可以由终端设备的传感器检测到,例如,传感器检测到触摸屏的电流和/或电阻变化的信息,由此来确定人类点击或按压触摸屏产生的压力信息;例如,传感器检测到触摸屏的温度信息;或者检测到触摸屏的电流和/或电阻变化的信息,由此来确定人类点击或按压触摸屏产生的温度信息。可选的检测方法,不限于上述举例的方式,可以采用智能终端,如智能手机的人机交互技术获取生物信息。 In step 101, the biometric information is information generated by human behavior such as clicking and/or emitting voice during the authentication process, and includes at least one or more of pressure information, temperature information, voiceprint information, and voice information. Taking a smart terminal with a touch screen as an example, the biometric information may generate pressure information and/or temperature information when a human clicks or presses the touch screen, and may be detected by a sensor of the terminal device, for example, the sensor detects a current and/or a resistance change of the touch screen. Information, thereby determining pressure information generated by a human clicking or pressing the touch screen; for example, the sensor detects temperature information of the touch screen; or detecting information of current and/or resistance change of the touch screen, thereby determining that the human clicks or presses the touch screen Temperature information generated. The optional detection method is not limited to the above example manner, and the smart terminal, such as the human-computer interaction technology of the smart phone, can be used to acquire the biological information.
在上述智能终端中,假设预先设置的生物信息为压力信息,当触摸屏显示进行身份验证的界面,即进行身份验证时,身份验证界面显示智能终端根据预先保存的用户信息自动输入的用户名和密码,同时显示完成身份验证需点击确认的提交选项。用户以点击的方式提交选项时,点击终端屏幕,产生了压力信息,智能终端能够获取身份验证信息和生物信息,从获得的生物信息中检测出压力信息;表明所获得的生物信息中包括了预设的生物信息,则继续进行步骤102。这里,身份验证信息包括用户名和密码。In the above smart terminal, it is assumed that the preset biometric information is pressure information. When the touch screen displays an interface for performing authentication, that is, when performing identity verification, the identity verification interface displays a user name and password automatically input by the smart terminal according to the pre-stored user information. Also show the submit option to complete the authentication by clicking Confirm. When the user submits the option by clicking, clicking the terminal screen generates pressure information, and the smart terminal can obtain the authentication information and the biological information, and the pressure information is detected from the obtained biological information; indicating that the obtained biological information includes the pre- If the biological information is set, proceed to step 102. Here, the authentication information includes a username and password.
或者,用户没有点击触摸屏上的提交选项,而是,说出“确定”时,智能终端从获得的生物信息中检测出了语音信息,但没有检测出压力信息,则表明所获得的生物信息中不包括预先设置的生物信息,则不进行步骤102,本次身份验证失败。Alternatively, the user does not click the submit option on the touch screen, but when the "OK" is spoken, the smart terminal detects the voice information from the obtained biological information, but does not detect the pressure information, indicating that the obtained biological information is If the preset biometric information is not included, step 102 is not performed, and the current authentication fails.
在上述智能终端中,假设预先设置的生物信息为压力信息和温度信息,当触摸屏显示进行身份验证的界面时,身份验证界面提示分别在用户名的输入框和密码的输入框输入用户名和密码,同时显示完成身份验证需点击的提交选项,用户切换输入框、输入用户名、密码或激活提交选项时,智能终端获取身份验证信息和生物信息,其中,身份验证信息包括用户名和密码;生物信息是用户进行输入框切换、用户名/密码输入以及点击提交选项所产生的压力信息和温度信息;从生物信息中检测出了压力信息和温度信息,表明所获得的生物信息包括了预先设置的生物信息,则继续进行步骤102。In the above smart terminal, it is assumed that the preset biometric information is pressure information and temperature information. When the touch screen displays an interface for performing authentication, the authentication interface prompts to input a user name and a password respectively in the input box of the user name and the input box of the password. At the same time, the submitting option for completing the authentication is required. When the user switches the input box, enters the username, password or activates the submitting option, the smart terminal obtains the authentication information and the biological information, wherein the authentication information includes the username and password; the biometric information is The user performs pressure input information and temperature information generated by input box switching, user name/password input, and click submit option; pressure information and temperature information are detected from the biological information, indicating that the obtained biological information includes preset biological information. Then proceed to step 102.
在上述智能终端中,假设预先设置的生物信息为语音信息,当触摸屏显示进行身份验证的界面时,身份验证界面显示智能终端根据预先保存的用户信息自动输入的用户名和密码,同时显示完成身份验证需读出“提交”,用户通过发出“提交”的语音时,智能终端获取身份验证信息和生物信息,从获得的生物信息中检测出了语音信息,表明所获得的生物信息包括预先设置的语音信息,则继续进行步骤102;In the above smart terminal, it is assumed that the preset biometric information is voice information. When the touch screen displays an interface for performing authentication, the identity verification interface displays the user name and password automatically input by the smart terminal according to the pre-stored user information, and simultaneously displays the completed identity verification. The "submission" needs to be read out. When the user sends out the "submitted" voice, the smart terminal obtains the authentication information and the biological information, and the voice information is detected from the obtained biological information, indicating that the obtained biological information includes the preset voice. Information, proceed to step 102;
或者,终端提示完成身份验证需读出“提交”,用户未发声,确点击了屏幕时,智能终端获取生物信息,从获得的生物信息中只检测出了压力信息,未检测出语音信息,表明所获得的生物信息不包含预先设置的语音信息,则不进行步骤102,本次身份验证失败。 Alternatively, the terminal prompts to complete the authentication and needs to read “submit”. The user does not sound. When the screen is clicked, the smart terminal acquires the biological information, and only the pressure information is detected from the obtained biological information, and the voice information is not detected, indicating If the obtained biometric information does not include pre-set voice information, step 102 is not performed, and the current authentication fails.
在上述智能终端中,假设预先设置的生物信息为声纹信息,当触摸屏显示进行身份验证的界面时,身份验证界面显示智能终端根据预先保存的用户信息自动输入的用户名和密码,同时显示完成身份验证需读出的预先设置的文字,如“申请登录”,用户读出“申请登录”时,智能终端获得身份验证信息和生物信息,其中,身份验证信息包括用户名和密码,生物信息为用户读出“申请登录”的声纹信息,终端从所获得的生物信息中检测出了与预先设置的声纹模板匹配的声纹信息,表明所获得的生物信息包括预先设置的声纹信息,则继续进行步骤102;In the above intelligent terminal, it is assumed that the preset biometric information is voiceprint information, and when the touch screen displays the interface for performing authentication, the identity verification interface displays the user name and password automatically input by the smart terminal according to the pre-stored user information, and simultaneously displays the completed identity. Verify the pre-set text to be read, such as "application for login". When the user reads "application for login", the smart terminal obtains authentication information and biometric information, wherein the authentication information includes the user name and password, and the biometric information is read by the user. The voiceprint information of the "application registration" is detected, and the terminal detects the voiceprint information matched with the preset voiceprint template from the obtained biological information, indicating that the obtained biological information includes the preset voiceprint information, and then continues. Go to step 102;
或者,终端显示完成身份验证需读出的预先设置的文字,如“申请登录”,而用户读出“你好”时,智能终端获得身份验证信息和生物信息,其中,身份验证信息包括用户名和密码,生物信息为用户读出“你好”的声纹信息,终端从所获得的生物信息中没有检测出与预先设置的声纹模板匹配的声纹信息,表明所获得的生物信息不包括预先设置的声纹信息,则不进行步骤102,本次身份验证失败。Alternatively, the terminal displays a preset text to be read out after completing the authentication, such as “application for login”, and when the user reads “hello”, the smart terminal obtains the authentication information and the biological information, wherein the authentication information includes the user name and The password and the biometric information read the voiceprint information of "hello" for the user, and the terminal does not detect the voiceprint information matching the preset voiceprint template from the obtained biometric information, indicating that the obtained biometric information does not include the advance If the voiceprint information is set, then step 102 is not performed, and the identity verification fails.
在上述智能终端中,假设预先设置的生物信息为温度信息,当触摸屏显示进行身份验证的界面时,身份验证界面提示完成身份验证需输入解锁图案,用户以在触摸屏上滑动手指的方式输入解锁图案时,智能终端获取身份验证信息和生物信息,生物信息为用户输入解锁图案是触摸和/或点击屏幕产生的温度信息;智能终端从所获得的生物信息中检测出了温度信息,表明所获得的生物信息包括预先设置的温度信息,则继续进行步骤102。In the above smart terminal, it is assumed that the preset biometric information is temperature information. When the touch screen displays the interface for performing authentication, the authentication interface prompts to complete the authentication, and the unlocking pattern is input, and the user inputs the unlocking pattern by sliding the finger on the touch screen. When the smart terminal obtains the authentication information and the biological information, the biometric information inputting the unlocking pattern for the user is temperature information generated by touching and/or tapping the screen; the smart terminal detects the temperature information from the obtained biological information, indicating that the obtained information The biometric information includes pre-set temperature information, and then proceeds to step 102.
可选地,基于上述生物信息的说明,生物信息还可以是其它类型的生物信息,如移动终端产生的重力感应信息、加速度信息等。Optionally, based on the description of the biological information, the biological information may also be other types of biological information, such as gravity sensing information generated by the mobile terminal, acceleration information, and the like.
步骤102中,时间相关性策略为:当获得身份验证信息的时间与检测出生物信息的时间的差值的绝对值小于或等于预先设置的生物信息对应的时间阈值时,则所检测出的生物信息与本次身份验证相关。In step 102, the time correlation strategy is: when the absolute value of the difference between the time when the identity verification information is obtained and the time when the biometric information is detected is less than or equal to the time threshold corresponding to the preset biometric information, the detected organism Information is related to this authentication.
在上述智能终端中,当预先设置的生物信息为压力信息时,假设预先设置的压力信息对应的时间阈值为100毫秒,获得身份验证信息的时间为t1;通过终端传感器获得后,检测出压力信息的时间为t2,t1与t2的差值的绝对值为60毫秒,则确定本次检测出的压力信息与本次身份验证相关,表示所检 测出的压力信息,是进行本次身份验证时,用户根据提示进行的操作所产生的压力信息;如果t1与t2的差值的绝对值为150毫秒,则确定本次检测出的压力信息与本次身份验证不相关,表示所检测出的压力信息,不是进行本次身份验证时,用户根据提示所进行的操作产生的压力信息,而可能是传感器在其他无关时间所获得的用户触摸和/或点击屏幕产生的压力信息。In the above intelligent terminal, when the preset biometric information is pressure information, it is assumed that the time threshold corresponding to the preset pressure information is 100 milliseconds, and the time for obtaining the authentication information is t1; after the terminal sensor is obtained, the pressure information is detected. The time is t2, and the absolute value of the difference between t1 and t2 is 60 milliseconds, and it is determined that the pressure information detected this time is related to the current identity verification, indicating that the detected The measured pressure information is the pressure information generated by the user according to the prompt when performing the identity verification; if the absolute value of the difference between t1 and t2 is 150 milliseconds, the pressure information detected this time is determined. This authentication is irrelevant, indicating that the detected pressure information is not the pressure information generated by the user according to the operation performed during the current authentication, but may be the user's touch and/or obtained by the sensor at other unrelated times. Or click on the pressure information generated by the screen.
在上述智能终端中,当预先设置的生物信息为压力信息和温度信息时,假设预先设置压力信息和温度信息对应的时间阈值分别为100毫秒和90毫秒,通过终端传感器获得后,检测出压力信息和温度信息与获得身份验证信息的时间的差值的绝对值分别为60毫米和80毫秒,根据时间相关性策略确定本次检测出的压力信息和温度信息与本次身份验证相关。In the above intelligent terminal, when the preset biological information is pressure information and temperature information, it is assumed that the time thresholds corresponding to the preset pressure information and the temperature information are respectively 100 milliseconds and 90 milliseconds, and after the terminal sensor is obtained, the pressure information is detected. The absolute values of the difference between the temperature information and the time at which the authentication information is obtained are 60 mm and 80 milliseconds, respectively, and it is determined according to the time correlation strategy that the pressure information and the temperature information detected this time are related to the current identity verification.
在上述智能终端中,当预先设置的生物信息为语音信息时,假设预先设置的语音信息对应的时间阈值为150毫秒,获得身份验证信息的时间为t1;通过终端传感器获得后,检测出语音信息的时间为t2,t1与t2的差值的绝对值为100毫秒,则确定本次检测出的语音信息与本次身份验证相关,表示所检测出的语音信息,是进行本次身份验证时,用户根据提示发出声音所产生的语音信息;如果t1与t2的差值的绝对值为200毫秒,则确定本次检测出的语音信息与本次身份验证不相关,表示所检测出的语音信息,不是进行本次身份验证时,用户根据提示发出声音所产生的语音信息,而可能是传感器在其他无关时间所获得的用户发声的语音信息。In the above smart terminal, when the preset biometric information is voice information, it is assumed that the time threshold corresponding to the preset voice information is 150 milliseconds, and the time for obtaining the identity verification information is t1; after the terminal sensor is obtained, the voice information is detected. The time is t2, and the absolute value of the difference between t1 and t2 is 100 milliseconds, and it is determined that the voice information detected this time is related to the current identity verification, indicating that the detected voice information is performed when the identity verification is performed. The voice information generated by the user according to the prompt sound; if the absolute value of the difference between t1 and t2 is 200 milliseconds, it is determined that the voice information detected this time is not related to the current identity verification, indicating the detected voice information, It is not the voice information generated by the user according to the prompt when performing this authentication, but may be the voice information of the user's voice obtained by the sensor at other unrelated times.
需要说明的是,在上述智能终端中,当预设的生物信息为温度信息和/或压力信息时,由于在一段时间中均可以获得解锁图案信息和检测出温度信息和/或压力信息,因此获得解锁图案信息后检测出对应温度信息和/或压力信息的时间可以为在上述时间段中最后获得解锁图案信息后检测出对应的温度信息和/或压力信息的时间,即获得完整的解锁图案信息后检测出对应温度信息和/或压力信息的时间。It should be noted that, in the above smart terminal, when the preset biometric information is temperature information and/or pressure information, since the unlock pattern information and the temperature information and/or the pressure information can be obtained for a period of time, The time when the corresponding temperature information and/or the pressure information is detected after the unlocking pattern information is obtained may be the time when the corresponding temperature information and/or the pressure information is detected after the unlocking pattern information is finally obtained in the above time period, that is, the complete unlocking pattern is obtained. The time corresponding to the temperature information and/or pressure information is detected after the information.
本实施例中的时间阀值,不是用户按照提示操作终端的超时时间阀值,而是进行身份验证时,确定人为操作产生并检验出的生物信息的在时间上是否与身份验证系统获得身份验证信息之间的时间相关性的阀值。确定所检测出的生物信息与本次身份验证相关,即表明通过传感器获得并检测出的生物 信息,是人类根据提示,在阀值时间间隔内执行人为操作时产生的生物信息;确定所检测出的生物信息与本次身份验证不相关,即表明通过传感器获得并检测出的生物信息,不是人类根据提示,专门针对本次身份验证所进行的动作所产生,而是传感器获得的在其他时间,针对其他应用,人为操作所产生的生物信息。The time threshold in this embodiment is not the timeout threshold of the user operating the terminal according to the prompt, but is determined whether the biometric information generated and verified by the human operation is authenticated with the identity verification system in time when the identity verification is performed. The threshold of the time correlation between the information. Determining that the detected biological information is related to the current authentication, that is, the biologically obtained and detected by the sensor The information is biological information generated by humans when performing human operations during the threshold time interval according to the prompt; determining that the detected biological information is not related to the current authentication, that is, the biological information obtained and detected by the sensor is not According to the prompts, humans are specifically generated for the actions performed by this authentication, but the biometric information generated by the sensors at other times and for other applications.
步骤103中,根据获得的身份验证信息判定身份验证是否成功的可选的实现方式是:验证用户名和密码是否与已授权的用户名和密码一致。In step 103, an optional implementation manner of determining whether the identity verification is successful according to the obtained identity verification information is: verifying whether the username and password are consistent with the authorized username and password.
在上述智能终端中,当用户根据提示进行了完成身份验证需进行的动作如点击提交选项或发出“提交”的语音等,如果相关,执行步骤103中的判定。In the above smart terminal, when the user performs the authentication to complete the authentication according to the prompt, such as clicking the submit option or issuing a "submitted" voice, etc., if relevant, the determination in step 103 is performed.
可选地,如果没有检测出预先设置的生物信息,则判定身份验证失败;或者结束身份验证。Optionally, if the preset biometric information is not detected, it is determined that the authentication fails; or the authentication is ended.
可选地,如果步骤102中确定检测出的生物信息与本次身份验证不相关,则判定身份验证失败;或者结束身份验证。Optionally, if it is determined in step 102 that the detected biometric information is not related to the current identity verification, it is determined that the identity verification fails; or the identity verification is ended.
如果判定身份验证失败,可以返回进行身份验证即返回进行基于本发明实施例一方法的身份验证,或者进行基于其他验证码的方式进行身份验证。If it is determined that the authentication fails, the identity verification may be returned to perform the authentication, or the authentication based on the method of the embodiment of the present invention may be performed, or the authentication may be performed based on other verification codes.
需要说明的是,本发明实施例的方法可以应用于具有触摸屏的智能终端中,还可以应用于具有检测生物信息功能的其他智能终端中,如具有感知键盘输入压力的计算机中。It should be noted that the method of the embodiment of the present invention can be applied to an intelligent terminal having a touch screen, and can also be applied to other intelligent terminals having a function of detecting biological information, such as a computer having a keyboard input pressure.
实施例二Embodiment 2
一种实现身份验证的装置,如图2所示,包括检测单元20、相关性确定单元21和验证单元22,其中,A device for implementing identity verification, as shown in FIG. 2, includes a detecting unit 20, a correlation determining unit 21, and a verifying unit 22, wherein
检测单元20,设置为进行身份验证时,获取身份验证信息和生物信息,检测所获得的生物信息中是否包含预先设置的生物信息。The detecting unit 20 is configured to obtain identity verification information and biometric information when the identity verification is performed, and detect whether the obtained biometric information includes pre-set biometric information.
相关性确定单元21,设置为当检测单元20检测出预先设置的生物信息时,根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关。The correlation determining unit 21 is configured to determine, when the detecting unit 20 detects the preset biometric information, whether the detected biometric information is related to the current identity verification according to a preset time correlation policy.
验证单元22,设置为当相关性确定单元21确定出所检测出的生物信息 与本次身份验证相关时,根据获得的身份信息判定身份验证是否成功。The verification unit 22 is configured to determine the detected biological information when the correlation determining unit 21 determines When it is related to this authentication, it is determined whether the authentication is successful according to the obtained identity information.
其中,时间相关性策略为:当获得身份验证信息的时间与检测出生物信息的时间的差值的绝对值小于或等于预先设置的生物信息对应的时间阈值时,则确定所检测出的生物信息与本次身份验证相关。The time correlation strategy is: determining the detected biological information when the absolute value of the difference between the time when the authentication information is obtained and the time when the biological information is detected is less than or equal to the time threshold corresponding to the preset biological information. Related to this authentication.
其中,生物信息为进行身份验证过程中人类行为产生的信息,至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。The biometric information is information generated by human behavior during the authentication process, and includes at least one or more of pressure information, temperature information, voiceprint information, and voice information.
可选地,验证单元22还设置为:当检测单元20没有检测出预先设置的生物信息时,判定身份验证失败;或者结束执行。Optionally, the verification unit 22 is further configured to: when the detection unit 20 does not detect the preset biometric information, determine that the identity verification fails; or end the execution.
可选地,验证单元22还设置为:当相关性确定单元21确定出所检测出的生物信息与本次身份验证相关不相关时,判定身份验证失败;或者结束执行。Optionally, the verification unit 22 is further configured to: when the correlation determination unit 21 determines that the detected biometric information is irrelevant related to the current identity verification, determine that the identity verification fails; or end the execution.
实施例三Embodiment 3
本发明实施例还提供一种计算机可读存储介质,存储有程序指令,当该程序指令被处理器执行时可实现本发明实施例一所提供的一种实现身份验证的方法。The embodiment of the present invention further provides a computer readable storage medium, which stores program instructions, and when the program instructions are executed by the processor, can implement a method for implementing identity verification provided by Embodiment 1 of the present invention.
本领域普通技术人员可以理解上述实施例的全部或部分步骤可以使用计算机程序流程来实现,所述计算机程序可以存储于一计算机可读存储介质中,所述计算机程序在相应的硬件平台上(如系统、设备、装置、器件等)执行,在执行时,包括方法实施例的步骤之一或其组合。One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.
可选地,上述实施例的全部或部分步骤也可以使用集成电路来实现,这些步骤可以被分别制作成一个个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve.
上述实施例中的各装置/功能模块/功能单元可以采用通用的计算装置来实现,它们可以集中在单个的计算装置上,也可以分布在多个计算装置所组成的网络上。The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.
上述实施例中的各装置/功能模块/功能单元以软件功能模块的形式实现 并作为独立的产品销售或使用时,可以存储在一个计算机可读取存储介质中。上述提到的计算机可读取存储介质可以是只读存储器,磁盘或光盘等。Each device/function module/function unit in the above embodiment is implemented in the form of a software function module. And when sold or used as a stand-alone product, it can be stored on a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
工业实用性Industrial applicability
本发明实施例实现了利用终端传感器获知的生物信息进行身份验证的目标。 The embodiment of the invention realizes the target of using the biometric information learned by the terminal sensor for identity verification.

Claims (11)

  1. 一种实现身份验证的方法,包括:A method of implementing authentication, including:
    获取身份验证信息和生物信息;检测所获得的生物信息中是否包含预先设置的生物信息;Obtaining authentication information and biological information; detecting whether the obtained biological information includes preset biological information;
    如果从所述生物信息中检测出预先设置的生物信息,则根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;If the preset biometric information is detected from the biometric information, determining whether the detected biometric information is related to the current identity verification according to a preset time correlation policy;
    如果相关,根据获得的身份验证信息判定身份验证是否成功。If relevant, it is determined based on the obtained authentication information whether the authentication is successful.
  2. 根据权利要求1所述的方法,其中,所述时间相关性策略为:当获得所述身份验证信息的时间与检测出所述生物信息的时间的差值的绝对值小于或等于预先设置的所述生物信息对应的时间阈值时,所述检测出的生物信息与本次身份验证相关。The method according to claim 1, wherein the time correlation strategy is: an absolute value of a difference between a time at which the authentication information is obtained and a time at which the biometric information is detected is less than or equal to a preset When the time threshold corresponding to the biological information is described, the detected biological information is related to the current identity verification.
  3. 根据权利要求1所述的方法,其中,所述生物信息至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。The method of claim 1 wherein said biological information comprises at least one or more of pressure information, temperature information, voiceprint information, voice information.
  4. 根据权利要求1所述的方法,如果从所述生物信息中没有检测出所述预先设置的生物信息,则所述方法还包括:判定身份验证失败。The method according to claim 1, if the pre-set biometric information is not detected from the biometric information, the method further comprises: determining that the identity verification fails.
  5. 根据权利要求1~4任一项所述的方法,如果确定出所检测出的生物信息与本次身份验证不相关,则所述方法还包括:判定身份验证失败。The method according to any one of claims 1 to 4, if it is determined that the detected biological information is not related to the current identity verification, the method further comprises: determining that the identity verification fails.
  6. 一种实现身份验证的装置,包括:检测单元、相关性确定单元和验证单元,其中,An apparatus for implementing identity verification, comprising: a detecting unit, a correlation determining unit, and a verifying unit, wherein
    所述检测单元,设置为在进行身份验证时,获取身份验证信息和生物信息;检测所获得的生物信息中是否包含预先设置的生物信息;The detecting unit is configured to: obtain identity verification information and biometric information when performing identity verification; and detect whether the obtained biometric information includes pre-set biometric information;
    所述相关性确定单元,设置为当所述检测单元检测出预先设置的生物信息时,根据预先设置的时间相关性策略确定所检测出的生物信息是否与本次身份验证相关;The correlation determining unit is configured to determine, according to a preset time correlation policy, whether the detected biological information is related to the current identity verification when the detecting unit detects the preset biological information;
    所述验证单元,设置为当所述相关性确定单元确定出所检测出的生物信息与本次身份验证相关时,根据获得的身份验证信息判定身份验证是否成功。 The verification unit is configured to determine, according to the obtained identity verification information, whether the identity verification is successful, when the correlation determination unit determines that the detected biological information is related to the current identity verification.
  7. 根据权利要求6所述的装置,其中,所述时间相关性策略为:当获得所述身份验证信息的时间与检测出所述生物信息的时间的差值的绝对值小于或等于预先设置的所述生物信息对应的时间阈值时,所述检测出的生物信息与本次身份验证相关。The apparatus according to claim 6, wherein the time correlation policy is: an absolute value of a difference between a time when the authentication information is obtained and a time when the biometric information is detected is less than or equal to a preset When the time threshold corresponding to the biological information is described, the detected biological information is related to the current identity verification.
  8. 根据权利要求6所述的装置,其中,所述生物信息至少包括压力信息、温度信息、声纹信息、语音信息中的一个或一个以上。The apparatus of claim 6, wherein the biological information comprises at least one or more of pressure information, temperature information, voiceprint information, and voice information.
  9. 根据权利要求6所述的装置,所述验证单元还设置为:当所述检测单元没有检测出所述预先设置的生物信息时,判定身份验证失败。The apparatus according to claim 6, wherein the verification unit is further configured to determine that the identity verification has failed when the detection unit does not detect the preset biometric information.
  10. 根据权利要求6~9任一项所述的装置,所述验证单元还设置为:当所述相关性确定单元确定出所检测出的生物信息与本次身份验证不相关时,判定身份验证失败。The apparatus according to any one of claims 6 to 9, wherein the verification unit is further configured to determine that the identity verification fails when the correlation determination unit determines that the detected biological information is not related to the current identity verification.
  11. 一种计算机可读存储介质,存储有程序指令,当该程序指令被处理器执行时可实现权利要求1-5任一项所述的方法。 A computer readable storage medium storing program instructions that, when executed by a processor, implement the method of any of claims 1-5.
PCT/CN2015/088404 2014-12-15 2015-08-28 Identity verification method and device WO2016095564A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410776596.4 2014-12-15
CN201410776596.4A CN105763504A (en) 2014-12-15 2014-12-15 Method and device for realizing identity authentication

Publications (1)

Publication Number Publication Date
WO2016095564A1 true WO2016095564A1 (en) 2016-06-23

Family

ID=56125838

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/088404 WO2016095564A1 (en) 2014-12-15 2015-08-28 Identity verification method and device

Country Status (2)

Country Link
CN (1) CN105763504A (en)
WO (1) WO2016095564A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107665293A (en) * 2016-07-28 2018-02-06 中兴通讯股份有限公司 A kind of switching method and mobile terminal of multi-user's account
CN107886330A (en) * 2017-11-28 2018-04-06 北京旷视科技有限公司 Settlement method, apparatus and system

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108205616A (en) * 2016-12-16 2018-06-26 北京小米移动软件有限公司 Identity information method of calibration and device

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103425914A (en) * 2012-05-17 2013-12-04 宇龙计算机通信科技(深圳)有限公司 Login method of application program and communication terminal
CN103685259A (en) * 2013-12-06 2014-03-26 北京奇虎科技有限公司 Method and device for account logging in
CN103997504A (en) * 2014-06-13 2014-08-20 谭知微 Identity authentication system and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103425914A (en) * 2012-05-17 2013-12-04 宇龙计算机通信科技(深圳)有限公司 Login method of application program and communication terminal
CN103685259A (en) * 2013-12-06 2014-03-26 北京奇虎科技有限公司 Method and device for account logging in
CN103997504A (en) * 2014-06-13 2014-08-20 谭知微 Identity authentication system and method

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107665293A (en) * 2016-07-28 2018-02-06 中兴通讯股份有限公司 A kind of switching method and mobile terminal of multi-user's account
CN107665293B (en) * 2016-07-28 2023-07-11 中兴通讯股份有限公司 Multi-user account switching method and mobile terminal
CN107886330A (en) * 2017-11-28 2018-04-06 北京旷视科技有限公司 Settlement method, apparatus and system

Also Published As

Publication number Publication date
CN105763504A (en) 2016-07-13

Similar Documents

Publication Publication Date Title
US20220398594A1 (en) Pro-active identity verification for authentication of transaction initiated via non-voice channel
US10708257B2 (en) Systems and methods for using imaging to authenticate online users
KR102387568B1 (en) Method and apparatus for authentication based on fingerprint recognition
CN108810021B (en) Query system and method for determining verification function
US20130326604A1 (en) Rhythm-based authentication
WO2016112687A1 (en) Method and apparatus for identity authentication on terminal and terminal
KR20170041731A (en) System and method for performing authentication using data analytics
JP5043857B2 (en) Transaction confirmation method and system
KR20170126444A (en) Face detection
WO2013095626A1 (en) Eye movement based knowledge demonstration
US10878071B2 (en) Biometric authentication anomaly detection
CN105450405B (en) A kind of setting of password and authentication method and system
KR20120082772A (en) Apparatus and method for statistical user identification using incremental user behavior
US20180107813A1 (en) User Authentication Persistence
CN106888204B (en) Implicit identity authentication method based on natural interaction
Yıldırım et al. Android based mobile application development for web login authentication using fingerprint recognition feature
JP2018525696A5 (en)
WO2016095564A1 (en) Identity verification method and device
US10650163B2 (en) Bot detection and access grant or denial based on bot identified
KR102633314B1 (en) method and apparatus for processing authentication information and user terminal including the same
WO2016112792A1 (en) Identity authentication method and device
JP2011118561A (en) Personal identification device and personal identification method
WO2020192260A2 (en) Fingerprint authentication method and device, and computer readable storage medium
CN105897429A (en) Authentication method, authentication device and terminal
WO2020125260A1 (en) Identity authentication method and device, storage medium, and electronic apparatus

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15869075

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15869075

Country of ref document: EP

Kind code of ref document: A1