[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

WO2016188127A1 - Virtual keyboard-based encryption method and apparatus - Google Patents

Virtual keyboard-based encryption method and apparatus Download PDF

Info

Publication number
WO2016188127A1
WO2016188127A1 PCT/CN2016/071219 CN2016071219W WO2016188127A1 WO 2016188127 A1 WO2016188127 A1 WO 2016188127A1 CN 2016071219 W CN2016071219 W CN 2016071219W WO 2016188127 A1 WO2016188127 A1 WO 2016188127A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
virtual keyboard
layout
user
character information
Prior art date
Application number
PCT/CN2016/071219
Other languages
French (fr)
Chinese (zh)
Inventor
王小松
卫伟
张家明
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016188127A1 publication Critical patent/WO2016188127A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords

Definitions

  • the present invention relates to the field of communications, and in particular to a method and apparatus for encrypting based on a virtual keyboard.
  • the keyboards used by the mobile payment technology are ordinary keyboards, similar ordinary keyboards or out-of-order virtual keyboards, and then the user-entered payment passwords are encrypted.
  • the ordinary virtual keyboard is easy to cause the password to be peeked by bystanders, and the out-of-order virtual keyboard can be effective.
  • the virtual keyboard of the most cutting-edge order is used.
  • the virtual keyboard tends to be applied to the PC device of the personal device.
  • the processing of the keyboard layout and the numeric keys is not involved, and the original keyboard has one by one.
  • the mapping relationship is formed on the PC side, and the original keyboard is QWER.
  • the generated out-of-order keyboard is ERPY...
  • the character input by the user is Q, it is mapped to E, and then the user is input by using a preset encryption algorithm. Encrypt. This method solves the password security problem to a certain extent, but it is not ideal.
  • the main purpose of the embodiment of the present invention is to provide a virtual keyboard-based encryption method and apparatus, so as to at least solve the problem that the online payment of the mobile client is not sufficiently secure in the related art.
  • a virtual keyboard-based encryption method including: randomly displaying one of a plurality of preset virtual keyboard character information layouts when a user initiates a virtual keyboard to perform information input. And encrypting information input by the user on the randomly displayed virtual keyboard character information layout by a preset rule.
  • the character information includes: alphanumeric information, symbol information, and function key information
  • Displaying, by the machine, one of the preset virtual keyboard character information layouts comprises: displaying the commonly used symbol information and the function key information in the symbol information on a specified position of the character information layout; The alphanumeric information is randomly displayed on the character information layout.
  • the digital information is Chinese digital information.
  • encrypting information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule includes: inputting, by using an RSA public key encryption algorithm, the user on the randomly displayed virtual keyboard character information layout The information is encrypted.
  • the method further includes: sending the encrypted information to the third platform for verification.
  • a virtual keyboard-based encryption device including: a display module, configured to randomly display a plurality of preset virtual keyboard characters when a user initiates a virtual keyboard to perform information input.
  • the encryption module is configured to encrypt the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule.
  • the character information includes: letter and number information, symbol information, and function key information
  • the display module includes: a first display unit, configured to specify common symbol information in the symbol information, and the The function key information is displayed at a specified position of the character information layout; and the second display unit is configured to randomly display the letter and number information on the character information layout.
  • the digital information is Chinese digital information.
  • the encryption module is further configured to encrypt, by using an RSA public key encryption algorithm, information input by the user on the randomly displayed virtual keyboard character information layout.
  • the apparatus further includes: a sending module, configured to send the encrypted information to the third platform Check it out.
  • the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal has only one layout manner. Then, the information input by the user is encrypted on the randomly displayed virtual keyboard character information layout.
  • the user is more secure in online payment, and the problem that the online payment of the mobile client is not sufficiently secure in the related art is solved.
  • FIG. 1 is a flow chart of a virtual keyboard based encryption method in accordance with an embodiment of the present invention
  • FIG. 2 is a structural block diagram of a virtual keyboard-based encryption device according to an embodiment of the present invention.
  • FIG. 3 is a block diagram 1 of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention.
  • FIG. 4 is a block diagram 2 of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention.
  • FIG. 5 is a block diagram showing the system structure of a secure keyboard for implementing fast payment according to an alternative embodiment of the present invention
  • FIG. 6 is a layout diagram 1 of a security keyboard in accordance with an alternative embodiment of the present invention.
  • FIG. 7 is a layout view 2 of a security keyboard according to an alternative embodiment of the present invention.
  • FIG. 8 is a flow chart of a method of implementing a secure keyboard for fast payment, in accordance with an alternative embodiment of the present invention.
  • FIG. 9 is a flow diagram of operational procedures within a cryptographic processing module in accordance with an alternate embodiment of the present invention.
  • FIG. 1 is a flowchart of a virtual keyboard-based encryption method according to an embodiment of the present invention. As shown in FIG. 1 , the steps of the method include:
  • Step S102 randomly display one of a plurality of preset virtual keyboard character information layouts when the user initiates the virtual keyboard to perform information input;
  • Step S104 Encrypt the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule.
  • the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal has only one layout mode, and then The information input by the user is encrypted on the randomly displayed virtual keyboard character information layout.
  • the user is more secure in online payment, and the problem that the online payment of the mobile client is not sufficiently secure in the related art is solved.
  • the character information related to the embodiment may include: alphanumeric information, symbol information, and function key information. Based on this, in step S102, multiple preset virtual keyboard character information layouts are randomly displayed in step S102.
  • One of the ways can be achieved by:
  • Step S11 displaying commonly used symbol information and function key information in the symbol information on a specified position of the character information layout
  • Step S12 Randomly display the letter and number information on the character information layout.
  • the layout of the virtual keyboard may be: the layout of the conventional keyboard includes 49 buttons, and in the embodiment, the top is a stow button (function button), commonly used 6 character keys (specify commonly used symbol keys) and delete keys (function keys), followed by a row of numbers from zero to nine, the middle area is 26 letter keys, the lower left side of the uppercase switch and lowercase switch Key (function key), the lower right side of the distribution symbol switching and confirmation key (function key), the bottom right side is the space bar (function key).
  • the function keys and the designated common symbol keys are distributed at a fixed position, and the letter and character keys are only in the fixed area, and the order of the letters and the character keys is random in this fixed area.
  • the digital information related to the embodiment is optional Chinese digital information.
  • the numeric keys are indicated by the Chinese key
  • the input password is still processed according to the Arabic numerals 0-9 in the background. The purpose of this is to ensure the security of the user input.
  • the input seen by others is different from the actual stored input in the background.
  • the input on the keyboard and the background storage are related, which is easy for the user to understand their input, which not only facilitates the user's input but also ensures the security of the user input.
  • the information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by using a preset rule.
  • the following manner can be adopted.
  • Implementation: The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by the RSA public key encryption algorithm.
  • the RSA public key encryption algorithm is an RSA public key cryptosystem
  • the public key cryptographic prompt uses different encryption keys and decryption keys, which is a kind of "derivation of a decryption key by a uniform encryption key.
  • the cryptosystem is not computationally feasible.
  • the RSA algorithm is for illustrative purposes only and does not constitute a limitation of the present invention. Other algorithms that can be used for encryption are also within the scope of the present invention.
  • the method in this embodiment may further include: sending the encrypted information to the third platform for verification. .
  • a virtual keyboard-based encryption device is also provided, which is used to implement the above-mentioned embodiments and optional embodiments, and has not been described again.
  • the term “module” "unit” may implement a combination of software and/or hardware of a predetermined function.
  • the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
  • FIG. 2 is a structural block diagram of a virtual keyboard-based encryption device according to an embodiment of the present invention, as shown in FIG. 2,
  • the device includes: a display module 22 configured to randomly display one of a plurality of preset virtual keyboard character information layouts when the user initiates the virtual keyboard to perform information input; the encryption module 24 is coupled to the display module 22 and configured to be The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by a preset rule.
  • the character information includes: alphanumeric information, symbol information, and function key information
  • the display module 22 includes: The first display unit 32 is configured to display the commonly used symbol information and the function key information in the symbol information in a specified position of the character information layout; the second display unit 34 is coupled to the first display unit 32 and configured to set the letters. And digital information is randomly displayed on the character information layout.
  • the digital information related to the embodiment is Chinese digital information.
  • the encryption module 24 is further configured to encrypt information input by the user on the randomly displayed virtual keyboard character information layout by using an RSA public key encryption algorithm.
  • the sending module 42 is coupled to the encryption module 24 and configured to send the encrypted information to the third platform for verification.
  • the optional embodiment provides a secure keyboard method for implementing fast payment, wherein the security keyboard layout portion includes 49 buttons, the top is a stow button, the commonly used 6 character button and the delete button, and then the row is Chinese. From zero to nine buttons, the middle area is 26 letters or character keys, the upper left side is distributed with uppercase switching and lowercase switching keys, the lower right side is distributed with symbol switching and confirmation keys, and the bottom right side is the space bar.
  • the security keyboard has numeric keys that are always in the second row and are randomly distributed.
  • the alphabetic keys and the character keys are rearranged each time or the layout is switched, and only the fold, delete, uppercase, lowercase, symbols, and spaces are arranged. And the confirmation key layout does not change.
  • the stow button is used to put away the security soft keyboard
  • the delete key is used to delete a single character in the input password
  • the uppercase key is used to switch the lowercase letters on the keyboard to uppercase letters
  • the lowercase key is used to switch the keyboard.
  • the symbol keys are used to switch the lowercase letters on the soft keyboard to the character area.
  • the space key is used to enter a single space character.
  • the confirmation key is used to encrypt the password and transfer it to the server.
  • the present optional embodiment also provides a system for implementing a secure keyboard for fast payment, the system comprising the following parts:
  • the layout contains letters, Chinese numerals, characters and The necessary function buttons; wherein the function button is used to provide out-of-order letters, Chinese numerals and character keyboards, each time the virtual keyboard layout is partially changed, the background randomly sorts letters, Chinese numerals and characters and is performed in different areas of the keyboard.
  • the password collection module passes.
  • the keyboard is monitored to obtain the value of each keyboard and the input password is obtained.
  • each button of the keyboard has a code value, and the code value is unique and corresponds to the buttons one by one, and each button is monitored to obtain the user's input;
  • the Chinese digital processing module is set to use the corresponding Arabic numerals as the user input when the Chinese numeric keypad operation is monitored;
  • the function button processing module is set as the monitor function button, and when the function button is operated, the corresponding function is triggered, for example, when the case switching function is triggered, the uppercase and lowercase letters of the letter area are switched;
  • the password encryption module is set to encrypt the input password and encrypt using RSA;
  • a transmission module configured to transmit the generated ciphertext to a third-party platform for verification
  • the optional embodiment is mainly divided into four major modules: a security keyboard layout module, a security keyboard input module, a password processing module, and a ciphertext transmission module.
  • the security keyboard layout module displays a reasonable button layout.
  • the security keyboard input module mainly handles password input and various switching.
  • the password processing module encrypts the password, and the ciphertext transmission module implements the ciphertext to interface with the third-party platform.
  • the keyboard in the optional embodiment includes: a personalized virtual keyboard
  • the package system has a keyboard, re-layout the keyboard
  • the security keyboard in the alternative embodiment is divided into Chinese character numbers, alphabet keys, symbol keys, and Function key.
  • the lowercase key randomly displays the lowercase alphabet keyboard, rewrites the symbol key, realizes the click symbol key to randomly display the symbol keyboard, customizes the delete key, realizes clicking the delete key to delete a password in the password box, and customizes the confirmation key to realize the click confirmation key.
  • the password is input into Chinese digital processing
  • the Chinese digital input is monitored, and the Chinese numeric key is processed in the background in Arabic numerals.
  • the password encryption algorithm is called to complete the encryption of the password.
  • the ciphertext is transmitted to the third-party platform.
  • the optional embodiment can effectively identify the user who operates the fund and protect the user.
  • the funds are safe and convenient for users to pay online.
  • the security risks of mobile payment in the related art are solved, thereby ensuring the security of user funds.
  • the optional embodiment can be applied to: (1) Alipay, Alipay's password payment can use the method of the present invention, when the user is on the Internet Taobao or transfer, the security keyboard with the invention can be used to secure your funds and achieve convenience. Use, quick use and safe and secure effects.
  • Mobile online banking mobile online banking can call the security keyboard of the present invention when the password is input, and the user can use the security keyboard to input the password when using the mobile phone for capital operation, to prevent the password from being viewed and leaked by others, and at the same time encrypting the password, double protection .
  • (3) Financial application the financial application on the mobile phone can use the security keyboard for the login password and the payment password to ensure the security of funds.
  • Train tickets, mobile phone login password when logging in 12306 can use the security keyboard, which can protect the user's password from being leaked, and protect the user's ticket purchase information and personal information security.
  • FIG. 5 is a system block diagram of a security keyboard for implementing fast payment according to an optional embodiment of the present invention.
  • the system of the optional implementation includes: a security keyboard layout module, a security keyboard input module, a password processing module, and Password transmission module.
  • the security keyboard layout module is designed for the virtual keyboard layout.
  • the top row is a common character, followed by a row of Chinese digital layouts.
  • the middle area is a letter display area that can be switched to uppercase letters or characters, and the surrounding layout functions are practical; the keyboard input is safe.
  • the module is set to complete various operations of input, including switching case, switching characters, re-layout of the contents of the keyboard each time, and a function of closing the security keyboard and deleting the input;
  • the password processing module mainly completes the password input by the user for RSA
  • the encryption operation obtains the encrypted user password;
  • the password transmission module completes the transmission of the ciphertext to the third-party server.
  • FIG. 6 is a layout view of a security keyboard according to an alternative embodiment of the present invention
  • FIG. 7 is a layout view of a security keyboard according to an alternative embodiment of the present invention
  • FIG. 6 shows a layout of an alphabetic keyboard
  • FIG. 7 shows a symbol.
  • the layout of the keyboard this layout in the Android platform by using xml file to write the layout file, create two new xml files under Res, qwerty.xml and symbols.xml, qwerty.xml is the layout file of Figure 6, symbols.
  • Xml is the layout file of Figure 7.
  • the layout file implements the layout of the soft keyboard, and each button has a code value, that is, each keyboard button in the layout has a code code value corresponding to one of the ones, for example, the code value corresponding to the button a is 97, and the code value is passed.
  • the code needs to encapsulate the keyBoard of the existing Android platform, using the original keyBoard method, for the special needs of the function needs to re-implement some methods or customize some methods to achieve, for the IOS platform, through Get the view of the system keyboard, then customize a view to cover the system keyboard view, and then add a personalized implementation.
  • FIG. 8 is a flowchart of a method for implementing a secure keyboard for fast payment according to an alternative embodiment of the present invention. As shown in FIG. 8, the steps of the process include:
  • Step S802 Start a security keyboard
  • Step S804 password input processing
  • Step S806 encrypting the password
  • Step S808 password transmission
  • Step S810 determining whether the password is correct; when the determination is yes, step S812 is performed, and if the determination is no, step S814 is performed;
  • Step S812 the payment is successful
  • Step S814 The payment fails.
  • the whole process of the above steps S802 to S814 is: starting the security keyboard, at this time, the customized security keyboard layout of the present invention is popped up, the operation is performed on the security keyboard, and the password is entered, because the keyboard of the security keyboard is popped each time.
  • the layout of the content is different, so as to avoid the leakage of the input password.
  • the background monitors according to the code of each button. When the Chinese digit is clicked, the background is judged according to the Arabic numeral, and then the system encrypts the password input by the user using the RSA method.
  • the plaintext can be decrypted, and the encrypted ciphertext is transmitted to the server database for comparison, and the correctness of the password is determined.
  • the direct payment fails to return. If the password is correct, jump to the payment success interface, prompting the user's payment operation to complete successfully.
  • FIG. 9 is a flowchart of an operation process inside a cryptographic processing module according to an alternative embodiment of the present invention. As shown in FIG. 9, the steps of the process include:
  • Step S902 input a password
  • Step S904 encrypting the RSA
  • Step S906 Output the encrypted password.
  • the detailed process of the process is as follows: the 1024-bit RSA algorithm is used for cryptographic processing.
  • the public key and the private key are first generated.
  • the user's password is encrypted into a ciphertext output according to the public key.
  • the server uses the private key and ciphertext. Decryption, if the result of the decryption is consistent with the result stored in the database, the password is entered correctly, otherwise the password is entered incorrectly.
  • a storage medium is further provided, wherein the software includes the above-mentioned software, including but not limited to: an optical disk, a floppy disk, a hard disk, an erasable memory, and the like.
  • computing devices which may be centralized on a single computing device or distributed over a network of computing devices, optionally implemented in program code executable by the computing device, such that they may be
  • the storage is performed by the computing device in a storage device, and in some cases, the steps shown or described may be performed in an order different than that herein, or they may be separately fabricated into individual integrated circuit modules, or Multiple modules or steps are made into a single integrated circuit module.
  • the invention is not limited to any specific combination of hardware and software.
  • the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal. There is only one layout mode, and then the information input by the user is encrypted on the randomly displayed virtual keyboard character information layout. According to the embodiment, the user is more secure in online payment, and the online payment of the mobile client in the related technology is solved. Not safe enough.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Input From Keyboards Or The Like (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

A virtual keyboard-based encryption method and apparatus. The method comprises: when a user enables a virtual keyboard to execute information input, randomly displaying one of a plurality of pre-set virtual keyboard character information layouts (S102); and encrypting information input by the user on the randomly displayed virtual keyboard character information layout by means of a pre-set rule (S104). The method makes an on-line payment of a user more secure, and solves the problem in the related art that the on-line payment of a mobile client is not secure enough.

Description

基于虚拟键盘的加密方法及装置Encryption method and device based on virtual keyboard 技术领域Technical field
本发明涉及通信领域,具体而言,涉及一种基于虚拟键盘的加密方法及装置。The present invention relates to the field of communications, and in particular to a method and apparatus for encrypting based on a virtual keyboard.
背景技术Background technique
随着互联网迅速发展,网上购物成为现在人们生活的主题,如淘宝、京东以及各大网购网站,并且随着智能手机的普及,人们的生活渐渐成为掌上生活,移动支付应运而生,这是对传统面对面资金交易的转变。所以能否快捷并安全的支付成为目前资金转移的重要问题。With the rapid development of the Internet, online shopping has become the theme of people's lives, such as Taobao, Jingdong and major online shopping sites, and with the popularity of smart phones, people's lives have gradually become a pocket life, mobile payment came into being, this is the right The transformation of traditional face-to-face capital transactions. Therefore, the ability to pay quickly and securely becomes an important issue in the current transfer of funds.
目前手机系统大都是Android和IOS系统,但是目前各个客户端软件均没有非常严密的保护措施,使得用户完全信赖自己的资金安全,所以制约了移动支付的蓬勃发展。At present, most mobile phone systems are Android and IOS systems, but at present, each client software does not have very strict protection measures, so that users completely rely on their own funds security, thus restricting the vigorous development of mobile payment.
目前移动支付技术使用的键盘均是普通键盘、类似普通键盘或乱序的虚拟键盘,然后对用户输入的支付密码进行加密,普通虚拟键盘容易造成密码被旁观者偷窥,乱序的虚拟键盘可以有效的防止这一点,以最前沿的乱序的虚拟键盘为例,该虚拟键盘在使用上趋向于个人设备PC端应用,对键盘布局和数字键的处理没有涉及,采用同原有键盘具有一一映射关系,形成映射表存储于PC端,原键盘为QWER,如生成的乱序键盘为ERPY…,若用户输入的字符为Q,则映射为E,然后采用预设的加密算法,对用户输入进行加密。该方法一定程度上解决了密码安全问题,但是还不够理想。At present, the keyboards used by the mobile payment technology are ordinary keyboards, similar ordinary keyboards or out-of-order virtual keyboards, and then the user-entered payment passwords are encrypted. The ordinary virtual keyboard is easy to cause the password to be peeked by bystanders, and the out-of-order virtual keyboard can be effective. To prevent this, for example, the virtual keyboard of the most cutting-edge order is used. The virtual keyboard tends to be applied to the PC device of the personal device. The processing of the keyboard layout and the numeric keys is not involved, and the original keyboard has one by one. The mapping relationship is formed on the PC side, and the original keyboard is QWER. If the generated out-of-order keyboard is ERPY..., if the character input by the user is Q, it is mapped to E, and then the user is input by using a preset encryption algorithm. Encrypt. This method solves the password security problem to a certain extent, but it is not ideal.
针对相关技术中移动客户端在线支付不够安全的问题,目前尚未提出有效的解决方案。In view of the problem that the online payment of mobile clients in the related art is not sufficiently secure, an effective solution has not been proposed yet.
发明内容Summary of the invention
本发明实施例的主要目的在于提供一种基于虚拟键盘的加密方法及装置,以至少解决相关技术中移动客户端在线支付不够安全的问题。The main purpose of the embodiment of the present invention is to provide a virtual keyboard-based encryption method and apparatus, so as to at least solve the problem that the online payment of the mobile client is not sufficiently secure in the related art.
根据本发明实施例的一个方面,提供了一种基于虚拟键盘的加密方法,包括:在用户启动虚拟键盘执行信息输入时,随机显示多种预设的所述虚拟键盘字符信息布局中的一种;通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。According to an aspect of the embodiments of the present invention, a virtual keyboard-based encryption method is provided, including: randomly displaying one of a plurality of preset virtual keyboard character information layouts when a user initiates a virtual keyboard to perform information input. And encrypting information input by the user on the randomly displayed virtual keyboard character information layout by a preset rule.
可选地,所述字符信息包括:字母和数字信息、符号信息以及功能键信息,则随 机显示多种预设的所述虚拟键盘字符信息布局中的一种包括:将所述符号信息中指定常用的符号信息和所述功能键信息在所述字符信息布局的指定位置上显示;将所述字母和数字信息在所述字符信息布局上随机显示。Optionally, the character information includes: alphanumeric information, symbol information, and function key information, Displaying, by the machine, one of the preset virtual keyboard character information layouts comprises: displaying the commonly used symbol information and the function key information in the symbol information on a specified position of the character information layout; The alphanumeric information is randomly displayed on the character information layout.
可选地,所述数字信息为中文数字信息。Optionally, the digital information is Chinese digital information.
可选地,通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密包括:通过RSA公钥加密算法对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。Optionally, encrypting information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule includes: inputting, by using an RSA public key encryption algorithm, the user on the randomly displayed virtual keyboard character information layout The information is encrypted.
可选地,在通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密之后,所述方法还包括:将加密后信息发送到第三平台进行校验。Optionally, after encrypting the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule, the method further includes: sending the encrypted information to the third platform for verification.
根据本发明实施例的另一个方面,提供了一种基于虚拟键盘的加密装置,包括:显示模块,设置为在用户启动虚拟键盘执行信息输入时,随机显示多种预设的所述虚拟键盘字符信息布局中的一种;加密模块,设置为通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。According to another aspect of the embodiments of the present invention, a virtual keyboard-based encryption device is provided, including: a display module, configured to randomly display a plurality of preset virtual keyboard characters when a user initiates a virtual keyboard to perform information input. One of the information layouts; the encryption module is configured to encrypt the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule.
可选地,所述字符信息包括:字母和数字信息、符号信息以及功能键信息,则所述显示模块包括:第一显示单元,设置为将所述符号信息中指定常用的符号信息和所述功能键信息在所述字符信息布局的指定位置上显示;第二显示单元,设置为将所述字母和数字信息在所述字符信息布局上随机显示。Optionally, the character information includes: letter and number information, symbol information, and function key information, where the display module includes: a first display unit, configured to specify common symbol information in the symbol information, and the The function key information is displayed at a specified position of the character information layout; and the second display unit is configured to randomly display the letter and number information on the character information layout.
可选地,所述数字信息为中文数字信息。Optionally, the digital information is Chinese digital information.
可选地,所述加密模块,还设置为通过RSA公钥加密算法对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。Optionally, the encryption module is further configured to encrypt, by using an RSA public key encryption algorithm, information input by the user on the randomly displayed virtual keyboard character information layout.
可选地,在通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密之后,所述装置还包括:发送模块,设置为将加密后信息发送到第三平台进行校验。Optionally, after encrypting the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule, the apparatus further includes: a sending module, configured to send the encrypted information to the third platform Check it out.
通过本发明实施例,采用在用户启动虚拟键盘执行信息输入时,在终端的界面随机显示一种虚拟键盘字符信息的布局,也就是说在终端显示的键盘字符信息并只是只有一种布局方式,然后在随机显示的虚拟键盘字符信息布局上对用户输入的信息进行加密,通过本实施例,使得用户在在线支付时更加安全,解决了相关技术中移动客户端在线支付不够安全的问题。Through the embodiment of the present invention, when the user initiates the virtual keyboard to perform information input, the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal has only one layout manner. Then, the information input by the user is encrypted on the randomly displayed virtual keyboard character information layout. In this embodiment, the user is more secure in online payment, and the problem that the online payment of the mobile client is not sufficiently secure in the related art is solved.
附图说明DRAWINGS
此处所说明的附图用来提供对本发明的进一步理解,构成本申请的一部分,本发 明的示意性实施例及其说明用于解释本发明,并不构成对本发明的不当限定。在附图中:The drawings described herein are provided to provide a further understanding of the invention and constitute a part of the present application. The illustrative embodiments and the description thereof are intended to explain the present invention and are not intended to limit the invention. In the drawing:
图1是根据本发明实施例的基于虚拟键盘的加密方法的流程图;1 is a flow chart of a virtual keyboard based encryption method in accordance with an embodiment of the present invention;
图2是根据本发明实施例的基于虚拟键盘的加密装置的结构框图;2 is a structural block diagram of a virtual keyboard-based encryption device according to an embodiment of the present invention;
图3是根据本发明实施例的基于虚拟键盘的加密装置的可选结构框图一;3 is a block diagram 1 of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention;
图4是根据本发明实施例的基于虚拟键盘的加密装置的可选结构框图二;4 is a block diagram 2 of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention;
图5是根据本发明可选实施例的实现快捷支付的安全键盘的系统结构框图;5 is a block diagram showing the system structure of a secure keyboard for implementing fast payment according to an alternative embodiment of the present invention;
图6是根据本发明可选实施例的安全键盘的布局图一;Figure 6 is a layout diagram 1 of a security keyboard in accordance with an alternative embodiment of the present invention;
图7是根据本发明可选实施例的安全键盘的布局图二;7 is a layout view 2 of a security keyboard according to an alternative embodiment of the present invention;
图8是根据本发明可选实施例的实现快捷支付的安全键盘的方法的流程图;8 is a flow chart of a method of implementing a secure keyboard for fast payment, in accordance with an alternative embodiment of the present invention;
图9是根据本发明可选实施例的密码处理模块内部的操作过程的流程图。9 is a flow diagram of operational procedures within a cryptographic processing module in accordance with an alternate embodiment of the present invention.
具体实施方式detailed description
需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。下面将参考附图并结合实施例来详细说明本发明。It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. The invention will be described in detail below with reference to the drawings in conjunction with the embodiments.
本实施例提供了一种基于虚拟键盘的加密方法,图1是根据本发明实施例的基于虚拟键盘的加密方法的流程图,如图1所示,该方法的步骤包括:The embodiment provides a virtual keyboard-based encryption method. FIG. 1 is a flowchart of a virtual keyboard-based encryption method according to an embodiment of the present invention. As shown in FIG. 1 , the steps of the method include:
步骤S102:在用户启动虚拟键盘执行信息输入时,随机显示多种预设的虚拟键盘字符信息布局中的一种;Step S102: randomly display one of a plurality of preset virtual keyboard character information layouts when the user initiates the virtual keyboard to perform information input;
步骤S104:通过预设规则对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密。Step S104: Encrypt the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule.
通过本实施例,采用在用户启动虚拟键盘执行信息输入时,在终端的界面随机显示一种虚拟键盘字符信息的布局,也就是说在终端显示的键盘字符信息并只是只有一种布局方式,然后在随机显示的虚拟键盘字符信息布局上对用户输入的信息进行加密,通过本实施例,使得用户在在线支付时更加安全,解决了相关技术中移动客户端在线支付不够安全的问题。In this embodiment, when the user initiates the virtual keyboard to perform information input, the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal has only one layout mode, and then The information input by the user is encrypted on the randomly displayed virtual keyboard character information layout. In this embodiment, the user is more secure in online payment, and the problem that the online payment of the mobile client is not sufficiently secure in the related art is solved.
对于本实施例涉及到的字符信息可以包括:字母和数字信息、符号信息以及功能键信息,基于此,本实施例中步骤S102中随机显示多种预设的虚拟键盘字符信息布局 中的一种的方式,可以通过如下方式来实现:The character information related to the embodiment may include: alphanumeric information, symbol information, and function key information. Based on this, in step S102, multiple preset virtual keyboard character information layouts are randomly displayed in step S102. One of the ways can be achieved by:
步骤S11:将符号信息中指定常用的符号信息和功能键信息在字符信息布局的指定位置上显示;Step S11: displaying commonly used symbol information and function key information in the symbol information on a specified position of the character information layout;
步骤S12:将字母和数字信息在字符信息布局上随机显示。Step S12: Randomly display the letter and number information on the character information layout.
对于上述步骤S11和步骤S12,在本实施例的一个应用场景中,虚拟键盘的布局可以是:常规键盘的布局包含49个按键,在本实施例中顶部是收起键(功能键)、常用的6个字符键(指定常用的符号键)和删除键(功能键),接着一排是从零到九的数字按键,中间区域是26个字母键,下侧左边分布大写切换和小写切换转换键(功能键),下侧右边分布符号切换和确认键(功能键),正中最下侧是空格键(功能键)。可见,在本实施例中功能键和指定常用的符号键分布在固定的位置,而字母和字符键只是在固定区域,而在这个固定区域内字母和字符键的顺序是随机的。For the above-mentioned step S11 and step S12, in an application scenario of the embodiment, the layout of the virtual keyboard may be: the layout of the conventional keyboard includes 49 buttons, and in the embodiment, the top is a stow button (function button), commonly used 6 character keys (specify commonly used symbol keys) and delete keys (function keys), followed by a row of numbers from zero to nine, the middle area is 26 letter keys, the lower left side of the uppercase switch and lowercase switch Key (function key), the lower right side of the distribution symbol switching and confirmation key (function key), the bottom right side is the space bar (function key). It can be seen that in the present embodiment, the function keys and the designated common symbol keys are distributed at a fixed position, and the letter and character keys are only in the fixed area, and the order of the letters and the character keys is random in this fixed area.
在本实施例的另一个可选实施方式中,对于本实施例涉及到的数字信息为可选为中文数字信息。虽然数字键用中文键表示,但在后台处理输入的密码时依然按阿拉伯数字0-9来处理,这样做的目的是保障用户输入的安全,别人看到的输入和后台实际存储的输入有差别,同时键盘上输入和后台存储又有关联,易于用户理解自己的输入,既方便了用户的输入又保障了用户输入的安全。In another optional implementation manner of this embodiment, the digital information related to the embodiment is optional Chinese digital information. Although the numeric keys are indicated by the Chinese key, the input password is still processed according to the Arabic numerals 0-9 in the background. The purpose of this is to ensure the security of the user input. The input seen by others is different from the actual stored input in the background. At the same time, the input on the keyboard and the background storage are related, which is easy for the user to understand their input, which not only facilitates the user's input but also ensures the security of the user input.
而对于本实施例涉及到的步骤S104中通过预设规则对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密方式,在本实施例的一个可选实施方式,可以通过如下方式来实现:通过RSA公钥加密算法对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密。需要说明的是RSA公钥加密算法是RSA公开密钥密码体制,该公开密钥密码提示就是使用不同的加密密钥与解密密钥,是一种“由一致加密密钥推导出解密密钥在计算上不可行的”密码体制,此外,该RSA算法仅仅是用来进行举例说明,并不构成本发明的限定,其他可以用来进行加密的算法也是在本发明的保护范围之内的。In the step S104 of the embodiment, the information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by using a preset rule. In an optional implementation manner of this embodiment, the following manner can be adopted. Implementation: The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by the RSA public key encryption algorithm. It should be noted that the RSA public key encryption algorithm is an RSA public key cryptosystem, and the public key cryptographic prompt uses different encryption keys and decryption keys, which is a kind of "derivation of a decryption key by a uniform encryption key. The cryptosystem is not computationally feasible. In addition, the RSA algorithm is for illustrative purposes only and does not constitute a limitation of the present invention. Other algorithms that can be used for encryption are also within the scope of the present invention.
而在本实施例的通过预设规则对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密之后,本实施例的方法还可以包括:将加密后信息发送到第三平台进行校验。After the information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by the preset rule in this embodiment, the method in this embodiment may further include: sending the encrypted information to the third platform for verification. .
在本实施例中还提供了一种基于虚拟键盘的加密装置,该装置用于实现上述实施例及可选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”“单元”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。In the embodiment, a virtual keyboard-based encryption device is also provided, which is used to implement the above-mentioned embodiments and optional embodiments, and has not been described again. As used below, the term "module" "unit" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
图2是根据本发明实施例的基于虚拟键盘的加密装置的结构框图,如图2所示, 该装置包括:显示模块22,设置为在用户启动虚拟键盘执行信息输入时,随机显示多种预设的虚拟键盘字符信息布局中的一种;加密模块24,与显示模块22耦合连接,设置为通过预设规则对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密。2 is a structural block diagram of a virtual keyboard-based encryption device according to an embodiment of the present invention, as shown in FIG. 2, The device includes: a display module 22 configured to randomly display one of a plurality of preset virtual keyboard character information layouts when the user initiates the virtual keyboard to perform information input; the encryption module 24 is coupled to the display module 22 and configured to be The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by a preset rule.
图3是根据本发明实施例的基于虚拟键盘的加密装置的可选结构框图一,如图3所示,字符信息包括:字母和数字信息、符号信息以及功能键信息,则显示模块22包括:第一显示单元32,设置为将符号信息中指定常用的符号信息和功能键信息在字符信息布局的指定位置上显示;第二显示单元34,与第一显示单元32耦合连接,设置为将字母和数字信息在字符信息布局上随机显示。3 is a block diagram of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention. As shown in FIG. 3, the character information includes: alphanumeric information, symbol information, and function key information, and the display module 22 includes: The first display unit 32 is configured to display the commonly used symbol information and the function key information in the symbol information in a specified position of the character information layout; the second display unit 34 is coupled to the first display unit 32 and configured to set the letters. And digital information is randomly displayed on the character information layout.
可选地,对于本实施例中涉及到的述数字信息为中文数字信息。Optionally, the digital information related to the embodiment is Chinese digital information.
可选地,加密模块24,还设置为通过RSA公钥加密算法对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密。Optionally, the encryption module 24 is further configured to encrypt information input by the user on the randomly displayed virtual keyboard character information layout by using an RSA public key encryption algorithm.
图4是根据本发明实施例的基于虚拟键盘的加密装置的可选结构框图二,在通过预设规则对用户在随机显示的虚拟键盘字符信息布局上输入的信息进行加密之后,该装置还包括:发送模块42,与加密模块24耦合连接,设置为将加密后信息发送到第三平台进行校验。4 is a block diagram of an optional structure of a virtual keyboard-based encryption device according to an embodiment of the present invention. After encrypting information input by a user on a randomly displayed virtual keyboard character information layout by a preset rule, the device further includes The sending module 42 is coupled to the encryption module 24 and configured to send the encrypted information to the third platform for verification.
下面结合本发明的可选实施例对本发明进行举例说明;The invention is exemplified below in conjunction with an alternative embodiment of the invention;
本可选实施例,提供了一种实现快捷支付的安全键盘方法,其中,安全键盘布局部分包含49个按键,顶部是收起键、常用的6个字符键和删除键,接着一排是中文从零到九的按键,中间区域是26个字母或字符键,下侧左边分布大写切换和小写切换转换键,下侧右边分布符号切换和确认键,正中最下侧是空格键。The optional embodiment provides a secure keyboard method for implementing fast payment, wherein the security keyboard layout portion includes 49 buttons, the top is a stow button, the commonly used 6 character button and the delete button, and then the row is Chinese. From zero to nine buttons, the middle area is 26 letters or character keys, the upper left side is distributed with uppercase switching and lowercase switching keys, the lower right side is distributed with symbol switching and confirmation keys, and the bottom right side is the space bar.
本可选实施例中安全键盘具备数字键始终在第二排且随机分布,字母键和字符键每次展现或切换布局均进行重新排列,仅有收起、删除、大写、小写、符号、空格和确认键布局不会改变。In this alternative embodiment, the security keyboard has numeric keys that are always in the second row and are randomly distributed. The alphabetic keys and the character keys are rearranged each time or the layout is switched, and only the fold, delete, uppercase, lowercase, symbols, and spaces are arranged. And the confirmation key layout does not change.
需要说明的是,收起键用于收起安全软键盘,删除键用于删除输入的密码中的单个字符,大写键用于切换键盘上的小写字母至大写字母,小写键用于切换键盘上的大写字母至小写字母,符号键用于将软键盘上的小写字母区域切换成字符区域,空格键用于输入单个空格字符,确认键用于密码的加密并传输到服务器。It should be noted that the stow button is used to put away the security soft keyboard, the delete key is used to delete a single character in the input password, the uppercase key is used to switch the lowercase letters on the keyboard to uppercase letters, and the lowercase key is used to switch the keyboard. Uppercase letters to lowercase letters. The symbol keys are used to switch the lowercase letters on the soft keyboard to the character area. The space key is used to enter a single space character. The confirmation key is used to encrypt the password and transfer it to the server.
本可选实施例还提供了一种实现快捷支付的安全键盘的系统,该系统包括以下部分:The present optional embodiment also provides a system for implementing a secure keyboard for fast payment, the system comprising the following parts:
1)在终端上提供独特的虚拟键盘布局,布局中包含字母、中文数字展示、字符和 必要的功能按键;其中,该功能按键用于提供乱序的字母、中文数字和字符键盘,每次展示虚拟键盘布局局部重新改变,后台随机排序字母、中文数字和字符并在键盘的不同区域进行展现;1) Provide a unique virtual keyboard layout on the terminal, the layout contains letters, Chinese numerals, characters and The necessary function buttons; wherein the function button is used to provide out-of-order letters, Chinese numerals and character keyboards, each time the virtual keyboard layout is partially changed, the background randomly sorts letters, Chinese numerals and characters and is performed in different areas of the keyboard. Show
2)提供密码输入模块,设置为输入用*显示的用户密码输入,输入后的密码在输入框并进行加密处理,期间可以进行大小写切换、符号切换等满足用户输入的需要,密码采集模块通过监听键盘来获取每个键盘的值并得到输入的密码,乱序后键盘的每个按键具有一个码值,该码值唯一且与按键一一对应,监听每个按键获取用户的输入;2) Provide a password input module, set to input the user password input by *, and input the password in the input box and perform encryption processing. During the period, the case switching and symbol switching can be performed to meet the needs of the user input. The password collection module passes. The keyboard is monitored to obtain the value of each keyboard and the input password is obtained. After the out-of-order keyboard, each button of the keyboard has a code value, and the code value is unique and corresponds to the buttons one by one, and each button is monitored to obtain the user's input;
3)中文数字处理模块,设置为当监听到中文数字按键操作时,后台按对应阿拉伯数字作为用户输入;3) The Chinese digital processing module is set to use the corresponding Arabic numerals as the user input when the Chinese numeric keypad operation is monitored;
4)功能按键处理模块,设置为监听功能按键,当功能按键操作时,触发相应的功能,如当大小写切换功能触发时,切换字母区域的大小写字母;4) The function button processing module is set as the monitor function button, and when the function button is operated, the corresponding function is triggered, for example, when the case switching function is triggered, the uppercase and lowercase letters of the letter area are switched;
5)密码加密模块,设置为将输入的密码进行加密处理,使用RSA进行加密;5) The password encryption module is set to encrypt the input password and encrypt using RSA;
6)传输模块,设置为将生成的密文传输到第三方平台进行校验;6) a transmission module, configured to transmit the generated ciphertext to a third-party platform for verification;
可见,本可选实施例从功能上分主要分为四大模块:安全键盘布局模块、安全键盘输入模块、密码处理模块、密文传输模块。安全键盘布局模块展示合理按键布局,安全键盘输入模块主要处理密码输入和各种切换,密码处理模块是对密码进行加密处理,密文传输模块实现密文与第三方平台对接。It can be seen that the optional embodiment is mainly divided into four major modules: a security keyboard layout module, a security keyboard input module, a password processing module, and a ciphertext transmission module. The security keyboard layout module displays a reasonable button layout. The security keyboard input module mainly handles password input and various switching. The password processing module encrypts the password, and the ciphertext transmission module implements the ciphertext to interface with the third-party platform.
下面结合本可选实施例的方法及上述模块,对本可选实施例进行相关说明;The following describes the optional embodiment in combination with the method of the optional embodiment and the foregoing module;
首先,对于本可选实施例中的键盘包括:个性化虚拟键盘,封装系统自带键盘,重新布局键盘,并对本可选实施例中的安全键盘分为汉字数字键、字母键、符号键和功能键。First, the keyboard in the optional embodiment includes: a personalized virtual keyboard, the package system has a keyboard, re-layout the keyboard, and the security keyboard in the alternative embodiment is divided into Chinese character numbers, alphabet keys, symbol keys, and Function key.
其中,重写或自定义功能键的实现,自定义收起键盘方法,实现点击安全键盘收起键能收起安全键盘、重写大小写切换键,实现切换大写键随机展示大写字母键盘,切换小写键随机展示小写字母键盘,重写符号键,实现点击符号键随机展示符号键盘,自定义删除键,实现点击删除键能删除密码框中的一个密码,自定义确认键,实现点击确认键,实现密码加密并传输。Among them, the implementation of rewriting or custom function keys, customizing the folding keyboard method, realizing the click-safe keyboard to collect the security key, rewriting the uppercase and lowercase switching keys, realizing the switch uppercase key to randomly display the uppercase alphabet keyboard, and switching The lowercase key randomly displays the lowercase alphabet keyboard, rewrites the symbol key, realizes the click symbol key to randomly display the symbol keyboard, customizes the delete key, realizes clicking the delete key to delete a password in the password box, and customizes the confirmation key to realize the click confirmation key. Implement password encryption and transfer.
然后,在密码输入中文数字处理时,监听中文数字输入,对于中文数字键在后台以阿拉伯数字处理。密码输入完毕后,调用密码加密算法完成密码的加密操作。加密完成后,密文传输给第三方平台Then, when the password is input into Chinese digital processing, the Chinese digital input is monitored, and the Chinese numeric key is processed in the background in Arabic numerals. After the password is entered, the password encryption algorithm is called to complete the encryption of the password. After the encryption is completed, the ciphertext is transmitted to the third-party platform.
采用本可选实施例与相关技术相比,可以有效识别资金操作的使用者,保障用户 资金的安全并且方便用户网上支付。解决了相关技术中的移动支付存在的安全隐患,从而确保用户资金安全。Compared with the related technology, the optional embodiment can effectively identify the user who operates the fund and protect the user. The funds are safe and convenient for users to pay online. The security risks of mobile payment in the related art are solved, thereby ensuring the security of user funds.
本可选实施例可以应用于:(1)支付宝,支付宝的密码支付可以使用本发明中的方法,当用户在网上淘宝或转账时可以使用具有本发明安全键盘来保障你的资金安全,达到方便使用、快捷使用和安全有保障的效果。(2)手机网银,手机网银在密码输入时可以调用本发明的安全键盘,用户在用手机进行资金操作时可以用安全键盘输入密码,避免密码被他人查看与泄露,同时密码加密处理,双重保障。(3)理财应用,手机上的理财应用可以对登陆密码和支付密码进行安全键盘的使用,来保障资金安全。(4)火车购票,手机在登陆12306购票时登陆密码可以使用安全键盘,可以保护用户的密码不被泄露,保障用户购票信息以及个人信息的安全。The optional embodiment can be applied to: (1) Alipay, Alipay's password payment can use the method of the present invention, when the user is on the Internet Taobao or transfer, the security keyboard with the invention can be used to secure your funds and achieve convenience. Use, quick use and safe and secure effects. (2) Mobile online banking, mobile online banking can call the security keyboard of the present invention when the password is input, and the user can use the security keyboard to input the password when using the mobile phone for capital operation, to prevent the password from being viewed and leaked by others, and at the same time encrypting the password, double protection . (3) Financial application, the financial application on the mobile phone can use the security keyboard for the login password and the payment password to ensure the security of funds. (4) Train tickets, mobile phone login password when logging in 12306 can use the security keyboard, which can protect the user's password from being leaked, and protect the user's ticket purchase information and personal information security.
下面结合附图对本发明可选实施例进行详细说明;The optional embodiments of the present invention are described in detail below with reference to the accompanying drawings;
图5是根据本发明可选实施例的实现快捷支付的安全键盘的系统结构框图,如图5所示,本可选实施的系统包括:安全键盘布局模块,安全键盘输入模块,密码处理模块和密码传输模块。其中安全键盘布局模块对虚拟键盘布局进行设计,最上排是常用字符,接着是一排中文数字布局,中间区域为字母展示区域可以切换为大写字母或字符,周围布局实用的功能键;安全键盘输入模块设置为完成输入的各种操作,包含切换大小写,切换字符,每次展示键盘的内容重新布局,以及收起安全键盘和删除输入的一个字符;密码处理模块主要完成用户输入的密码进行RSA加密操作,获得加密后的用户密码;密码传输模块完成密文的传输给第三方服务器。5 is a system block diagram of a security keyboard for implementing fast payment according to an optional embodiment of the present invention. As shown in FIG. 5, the system of the optional implementation includes: a security keyboard layout module, a security keyboard input module, a password processing module, and Password transmission module. The security keyboard layout module is designed for the virtual keyboard layout. The top row is a common character, followed by a row of Chinese digital layouts. The middle area is a letter display area that can be switched to uppercase letters or characters, and the surrounding layout functions are practical; the keyboard input is safe. The module is set to complete various operations of input, including switching case, switching characters, re-layout of the contents of the keyboard each time, and a function of closing the security keyboard and deleting the input; the password processing module mainly completes the password input by the user for RSA The encryption operation obtains the encrypted user password; the password transmission module completes the transmission of the ciphertext to the third-party server.
图6是根据本发明可选实施例的安全键盘的布局图一,图7是根据本发明可选实施例的安全键盘的布局图二,图6展示了字母键盘的布局,图7展示了符号键盘的布局,这种布局在Android平台通过用xml文件写好布局文件,在Res下新建两个xml文件,分别为qwerty.xml和symbols.xml,qwerty.xml是图6的布局文件,symbols.xml是图7的布局文件。该布局文件实现软键盘的布局,每个按键都有一个codes值,即布局中的每个键盘按键有个code码值与之一一对应,如按键a对应的码值为97,通过code值来监听每一个按键,代码中需要对现有的Android平台的keyBoard进行封装,使用原有的keyBoard的方法,对于特殊需要的功能需要重新一些方法或自定义一些方法来实现,对于IOS平台,通过获取系统键盘所在的view,然后自定义一个view覆盖在系统键盘view上,接着加入个性化实现的方法。6 is a layout view of a security keyboard according to an alternative embodiment of the present invention, FIG. 7 is a layout view of a security keyboard according to an alternative embodiment of the present invention, FIG. 6 shows a layout of an alphabetic keyboard, and FIG. 7 shows a symbol. The layout of the keyboard, this layout in the Android platform by using xml file to write the layout file, create two new xml files under Res, qwerty.xml and symbols.xml, qwerty.xml is the layout file of Figure 6, symbols. Xml is the layout file of Figure 7. The layout file implements the layout of the soft keyboard, and each button has a code value, that is, each keyboard button in the layout has a code code value corresponding to one of the ones, for example, the code value corresponding to the button a is 97, and the code value is passed. To monitor each button, the code needs to encapsulate the keyBoard of the existing Android platform, using the original keyBoard method, for the special needs of the function needs to re-implement some methods or customize some methods to achieve, for the IOS platform, through Get the view of the system keyboard, then customize a view to cover the system keyboard view, and then add a personalized implementation.
图8是根据本发明可选实施例的实现快捷支付的安全键盘的方法的流程图,如图8所示,该流程的步骤包括:FIG. 8 is a flowchart of a method for implementing a secure keyboard for fast payment according to an alternative embodiment of the present invention. As shown in FIG. 8, the steps of the process include:
步骤S802:启动安全键盘; Step S802: Start a security keyboard;
步骤S804:密码输入处理;Step S804: password input processing;
步骤S806:密码加密;Step S806: encrypting the password;
步骤S808:密码传输;Step S808: password transmission;
步骤S810:判断密码是否正确;在判断为是时,执行步骤S812,在判断为否时,执行步骤S814;Step S810: determining whether the password is correct; when the determination is yes, step S812 is performed, and if the determination is no, step S814 is performed;
步骤S812:支付成功;Step S812: the payment is successful;
步骤S814:支付失败。Step S814: The payment fails.
也就是说,上述步骤S802至步骤S814整个过程为:启动安全键盘,此时会弹出本发明自定义的安全键盘布局,在安全键盘上进行操作,输入密码,因每次弹出的安全键盘中键盘内容的布局不一样,从而避免输入密码的泄露,后台根据每个按键的code进行监听,对于点击中文数字时后台进行判断按阿拉伯数字进行处理,接着系统会对用户输入的密码使用RSA方法进行加密,并且使用该算法加密的结果在java平台上给定密钥和密文后后可以解密出明文,将加密后的密文传输给服务端数据库进行比对,判断密码的正确性,若密码不对直接支付失败返回,若密码比对正确,跳转到支付成功界面,提示用户的支付操作成功完成。That is to say, the whole process of the above steps S802 to S814 is: starting the security keyboard, at this time, the customized security keyboard layout of the present invention is popped up, the operation is performed on the security keyboard, and the password is entered, because the keyboard of the security keyboard is popped each time. The layout of the content is different, so as to avoid the leakage of the input password. The background monitors according to the code of each button. When the Chinese digit is clicked, the background is judged according to the Arabic numeral, and then the system encrypts the password input by the user using the RSA method. And using the algorithm to encrypt the result, after the key and ciphertext are given on the java platform, the plaintext can be decrypted, and the encrypted ciphertext is transmitted to the server database for comparison, and the correctness of the password is determined. The direct payment fails to return. If the password is correct, jump to the payment success interface, prompting the user's payment operation to complete successfully.
图9是根据本发明可选实施例的密码处理模块内部的操作过程的流程图,如图9所示,该流程的步骤包括:FIG. 9 is a flowchart of an operation process inside a cryptographic processing module according to an alternative embodiment of the present invention. As shown in FIG. 9, the steps of the process include:
步骤S902:输入密码;Step S902: input a password;
步骤S904:密码RSA加密;Step S904: encrypting the RSA;
步骤S906:输出加密后的密码。Step S906: Output the encrypted password.
该过程的详细过程为:密码处理采用1024位RSA算法,首先生成公钥和私钥,用户的密码根据公钥加密成密文输出,传送到服务端时,服务端用私钥和密文进行解密,若解密的结果和数据库中存储的结果一致,则说明密码输入正确,否则密码输入有误。The detailed process of the process is as follows: the 1024-bit RSA algorithm is used for cryptographic processing. The public key and the private key are first generated. The user's password is encrypted into a ciphertext output according to the public key. When transmitted to the server, the server uses the private key and ciphertext. Decryption, if the result of the decryption is consistent with the result stored in the database, the password is entered correctly, otherwise the password is entered incorrectly.
在另外一个实施例中,还提供了一种软件,该软件用于执行上述实施例及优选实施方式中描述的技术方案。In another embodiment, software is also provided for performing the technical solutions described in the above embodiments and preferred embodiments.
在另外一个实施例中,还提供了一种存储介质,该存储介质中存储有上述软件,该存储介质包括但不限于:光盘、软盘、硬盘、可擦写存储器等。In another embodiment, a storage medium is further provided, wherein the software includes the above-mentioned software, including but not limited to: an optical disk, a floppy disk, a hard disk, an erasable memory, and the like.
显然,本领域的技术人员应该明白,上述本发明的各模块或各步骤可以用通用的 计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。Obviously, those skilled in the art should understand that the above modules or steps of the present invention can be used universally. Implemented by computing devices, which may be centralized on a single computing device or distributed over a network of computing devices, optionally implemented in program code executable by the computing device, such that they may be The storage is performed by the computing device in a storage device, and in some cases, the steps shown or described may be performed in an order different than that herein, or they may be separately fabricated into individual integrated circuit modules, or Multiple modules or steps are made into a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.
上述仅为本发明的可选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above is only an alternative embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
工业实用性Industrial applicability
在本发明实施例的基于虚拟键盘的加密过程中,采用在用户启动虚拟键盘执行信息输入时,在终端的界面随机显示一种虚拟键盘字符信息的布局,也就是说在终端显示的键盘字符信息并只是只有一种布局方式,然后在随机显示的虚拟键盘字符信息布局上对用户输入的信息进行加密,通过本实施例,使得用户在在线支付时更加安全,解决了相关技术中移动客户端在线支付不够安全的问题。 In the virtual keyboard-based encryption process of the embodiment of the present invention, when the user initiates the virtual keyboard to perform information input, the layout of the virtual keyboard character information is randomly displayed on the interface of the terminal, that is, the keyboard character information displayed on the terminal. There is only one layout mode, and then the information input by the user is encrypted on the randomly displayed virtual keyboard character information layout. According to the embodiment, the user is more secure in online payment, and the online payment of the mobile client in the related technology is solved. Not safe enough.

Claims (10)

  1. 一种基于虚拟键盘的加密方法,包括:A virtual keyboard based encryption method, comprising:
    在用户启动虚拟键盘执行信息输入时,随机显示多种预设的所述虚拟键盘字符信息布局中的一种;When the user initiates the virtual keyboard to perform information input, randomly display one of a plurality of preset virtual keyboard character information layouts;
    通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by a preset rule.
  2. 根据权利要求1所述的方法,其中,所述字符信息包括:字母和数字信息、符号信息以及功能键信息,则随机显示多种预设的所述虚拟键盘字符信息布局中的一种包括:The method according to claim 1, wherein the character information comprises: alphanumeric information, symbol information, and function key information, and randomly displaying one of the plurality of preset virtual keyboard character information layouts comprises:
    将所述符号信息中指定常用的符号信息和所述功能键信息在所述字符信息布局的指定位置上显示;Displaying commonly used symbol information and the function key information in the symbol information on a specified position of the character information layout;
    将所述字母和数字信息在所述字符信息布局上随机显示。The alphanumeric information is randomly displayed on the character information layout.
  3. 根据权利要求2所述的方法,其中,所述数字信息为中文数字信息。The method of claim 2 wherein said digital information is Chinese digital information.
  4. 根据权利要求1所述的方法,其特征在于,通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密包括:The method according to claim 1, wherein the encrypting the information input by the user on the randomly displayed virtual keyboard character information layout by using a preset rule comprises:
    通过RSA公钥加密算法对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。The information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by the RSA public key encryption algorithm.
  5. 根据权利要求1所述的方法,其特征在于,在通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密之后,所述方法还包括:The method according to claim 1, wherein after the information input by the user on the randomly displayed virtual keyboard character information layout is encrypted by a preset rule, the method further includes:
    将加密后信息发送到第三平台进行校验。The encrypted information is sent to the third platform for verification.
  6. 一种基于虚拟键盘的加密装置,包括:A virtual keyboard based encryption device, comprising:
    显示模块,设置为在用户启动虚拟键盘执行信息输入时,随机显示多种预设的所述虚拟键盘字符信息布局中的一种;a display module, configured to randomly display one of a plurality of preset virtual keyboard character information layouts when the user initiates the virtual keyboard to perform information input;
    加密模块,设置为通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。The encryption module is configured to encrypt, by using a preset rule, information input by the user on the randomly displayed virtual keyboard character information layout.
  7. 根据权利要求6所述的装置,其中,所述字符信息包括:字母和数字信息、符号信息以及功能键信息,则所述显示模块包括:The apparatus according to claim 6, wherein the character information comprises: alphanumeric information, symbol information, and function key information, and the display module comprises:
    第一显示单元,设置为将所述符号信息中指定常用的符号信息和所述功能键信息在所述字符信息布局的指定位置上显示; a first display unit, configured to display the commonly used symbol information and the function key information in the symbol information on a specified position of the character information layout;
    第二显示单元,设置为将所述字母和数字信息在所述字符信息布局上随机显示。And a second display unit configured to randomly display the alphanumeric information on the character information layout.
  8. 根据权利要求7所述的装置,其中,所述数字信息为中文数字信息。The apparatus of claim 7, wherein the digital information is Chinese digital information.
  9. 根据权利要求6所述的装置,其中,The apparatus according to claim 6, wherein
    所述加密模块,还设置为通过RSA公钥加密算法对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密。The encryption module is further configured to encrypt information input by the user on the randomly displayed virtual keyboard character information layout by using an RSA public key encryption algorithm.
  10. 根据权利要求6所述的装置,其中,在通过预设规则对用户在随机显示的所述虚拟键盘字符信息布局上输入的信息进行加密之后,所述装置还包括:The device according to claim 6, wherein after the information input by the user on the virtual keyboard character information layout that is randomly displayed is encrypted by a preset rule, the device further includes:
    发送模块,设置为将加密后信息发送到第三平台进行校验。 The sending module is configured to send the encrypted information to the third platform for verification.
PCT/CN2016/071219 2015-05-22 2016-01-18 Virtual keyboard-based encryption method and apparatus WO2016188127A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510268973.8A CN106295314A (en) 2015-05-22 2015-05-22 Encryption method based on dummy keyboard and device
CN201510268973.8 2015-05-22

Publications (1)

Publication Number Publication Date
WO2016188127A1 true WO2016188127A1 (en) 2016-12-01

Family

ID=57393454

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/071219 WO2016188127A1 (en) 2015-05-22 2016-01-18 Virtual keyboard-based encryption method and apparatus

Country Status (2)

Country Link
CN (1) CN106295314A (en)
WO (1) WO2016188127A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180150623A1 (en) * 2015-05-27 2018-05-31 Licentia Group Limited Authentication Methods and Systems
CN110598486A (en) * 2019-08-30 2019-12-20 北京奇艺世纪科技有限公司 Virtual keyboard encryption method and device and readable storage medium
CN111914312A (en) * 2020-08-07 2020-11-10 上海方付通商务服务有限公司 Terminal password keyboard system based on film card hardware and PIN code protection method

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107766719A (en) * 2017-09-18 2018-03-06 北京华伟恒远信息系统技术有限公司 A kind of method and device that log-on message is encrypted
CN108280647A (en) * 2018-02-12 2018-07-13 北京金山安全软件有限公司 Private key protection method and device for digital wallet, electronic equipment and storage medium
CN113378195A (en) * 2021-06-21 2021-09-10 上海盛付通电子支付服务有限公司 Method, apparatus, medium, and program product for encrypted communication
CN113806766A (en) * 2021-08-12 2021-12-17 招银云创信息技术有限公司 Data encryption method and device, computer equipment and storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6549194B1 (en) * 1999-10-01 2003-04-15 Hewlett-Packard Development Company, L.P. Method for secure pin entry on touch screen display
CN101316424A (en) * 2008-07-08 2008-12-03 阿里巴巴集团控股有限公司 Information transmission method, system and device
CN102662483A (en) * 2012-02-28 2012-09-12 浪潮电子信息产业股份有限公司 A method for cloud computing business intelligent terminal users to safely input information
CN103390124A (en) * 2012-05-08 2013-11-13 迪斯克雷蒂克斯科技公司 Apparatus, system and method for secure entry and processing of passwords
CN103996011A (en) * 2014-06-05 2014-08-20 福建天晴数码有限公司 Method and device for protecting codes to be input safely
CN104239783A (en) * 2014-09-19 2014-12-24 东软集团股份有限公司 System and method for safely inputting customizing messages
CN104866129A (en) * 2014-07-09 2015-08-26 深圳市证通电子股份有限公司 Computing device and password input method thereof

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2708358B1 (en) * 1993-07-01 1995-09-01 Bull Cp8 Method for entering confidential information, terminal and associated verification system.
CN1588280A (en) * 2004-07-08 2005-03-02 上海交通大学 Dynamic cipher input method and its keyboard
CN2751351Y (en) * 2004-12-15 2006-01-11 重庆邮电学院 Peep-proof touch screen type key position random arranged password input unit
CN101075873B (en) * 2007-06-28 2012-10-03 腾讯科技(深圳)有限公司 Method and system for inputting content
CN101388059B (en) * 2007-09-14 2010-06-02 英业达股份有限公司 Screen key entry system for preventing trojan program and method thereof
CN102566924B (en) * 2011-12-26 2014-01-01 重庆新媒农信科技有限公司 Soft keyboard operation processing method capable of enhancing safety protection

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6549194B1 (en) * 1999-10-01 2003-04-15 Hewlett-Packard Development Company, L.P. Method for secure pin entry on touch screen display
CN101316424A (en) * 2008-07-08 2008-12-03 阿里巴巴集团控股有限公司 Information transmission method, system and device
CN102662483A (en) * 2012-02-28 2012-09-12 浪潮电子信息产业股份有限公司 A method for cloud computing business intelligent terminal users to safely input information
CN103390124A (en) * 2012-05-08 2013-11-13 迪斯克雷蒂克斯科技公司 Apparatus, system and method for secure entry and processing of passwords
CN103996011A (en) * 2014-06-05 2014-08-20 福建天晴数码有限公司 Method and device for protecting codes to be input safely
CN104866129A (en) * 2014-07-09 2015-08-26 深圳市证通电子股份有限公司 Computing device and password input method thereof
CN104239783A (en) * 2014-09-19 2014-12-24 东软集团股份有限公司 System and method for safely inputting customizing messages

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20180150623A1 (en) * 2015-05-27 2018-05-31 Licentia Group Limited Authentication Methods and Systems
CN110598486A (en) * 2019-08-30 2019-12-20 北京奇艺世纪科技有限公司 Virtual keyboard encryption method and device and readable storage medium
CN110598486B (en) * 2019-08-30 2022-02-15 北京奇艺世纪科技有限公司 Virtual keyboard encryption method and device and readable storage medium
CN111914312A (en) * 2020-08-07 2020-11-10 上海方付通商务服务有限公司 Terminal password keyboard system based on film card hardware and PIN code protection method
CN111914312B (en) * 2020-08-07 2024-02-13 上海方付通科技服务股份有限公司 Terminal password keyboard system based on film card hardware and PIN code protection method

Also Published As

Publication number Publication date
CN106295314A (en) 2017-01-04

Similar Documents

Publication Publication Date Title
WO2016188127A1 (en) Virtual keyboard-based encryption method and apparatus
US10491379B2 (en) System, device, and method of secure entry and handling of passwords
US8220036B2 (en) Establishing a secure channel with a human user
US8176324B1 (en) Method and system for a secure virtual keyboard
US10848304B2 (en) Public-private key pair protected password manager
EP3230917B1 (en) System and method for enabling secure authentication
CN107742362A (en) PIN is verified
WO2013122869A1 (en) Sharing secure data
CN103905188B (en) Utilize the method and intelligent cipher key equipment of intelligent cipher key equipment generation dynamic password
CN108616352A (en) Dynamic password formation method based on safety element and system
AU2004282865B2 (en) Authentication system
JP2012248198A (en) Safe operation method of computer device
CN100459495C (en) Password dynamic enciphering inputmethod of public emipering mode
US8874912B2 (en) Systems and methods for securely transferring personal identifiers
CN104966017B (en) A kind of Password Input protects system and method
CN113032753B (en) Identity verification method and device
US20120005169A1 (en) Method and system for securing data
CN116076055A (en) Method and system for verifying user identification
CN114338055A (en) Identity authentication method and device
JP5670001B1 (en) Transaction system, transaction method, and information recording medium
JPWO2011058629A1 (en) Information management system
KR102117871B1 (en) A method and system for simple authentication through distributed storage of public key and private key elements
US9407441B1 (en) Adding entropy to key generation on a mobile device
JP6336383B2 (en) Trading system
WO2006114906A1 (en) Service providing system, service utilization device, service providing device, service relay device, authentication method, authentication program, and recording medium for the program

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16799016

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16799016

Country of ref document: EP

Kind code of ref document: A1