[go: up one dir, main page]

WO2018018787A1 - Password authentication method and device, mobile terminal, and computer storage medium - Google Patents

Password authentication method and device, mobile terminal, and computer storage medium Download PDF

Info

Publication number
WO2018018787A1
WO2018018787A1 PCT/CN2016/105746 CN2016105746W WO2018018787A1 WO 2018018787 A1 WO2018018787 A1 WO 2018018787A1 CN 2016105746 W CN2016105746 W CN 2016105746W WO 2018018787 A1 WO2018018787 A1 WO 2018018787A1
Authority
WO
WIPO (PCT)
Prior art keywords
verification
information
parameter
terminal
original
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2016/105746
Other languages
French (fr)
Chinese (zh)
Inventor
王剑平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Publication of WO2018018787A1 publication Critical patent/WO2018018787A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M1/00Substation equipment, e.g. for use by subscribers
    • H04M1/72Mobile telephones; Cordless telephones, i.e. devices for establishing wireless links to base stations without route selection
    • H04M1/724User interfaces specially adapted for cordless or mobile telephones
    • H04M1/72448User interfaces specially adapted for cordless or mobile telephones with means for adapting the functionality of the device according to specific conditions
    • H04M1/72463User interfaces specially adapted for cordless or mobile telephones with means for adapting the functionality of the device according to specific conditions to restrict the functionality of the device
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2203/00Aspects of automatic or semi-automatic exchanges
    • H04M2203/60Aspects of automatic or semi-automatic exchanges related to security aspects in telephonic communication systems
    • H04M2203/6045Identity confirmation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M2203/00Aspects of automatic or semi-automatic exchanges
    • H04M2203/60Aspects of automatic or semi-automatic exchanges related to security aspects in telephonic communication systems
    • H04M2203/6054Biometric subscriber identification

Definitions

  • the present invention relates to the field of security verification technologies, and in particular, to a password verification method and apparatus, a mobile terminal, and a computer storage medium.
  • the fingerprint identification technology of the terminal is generally a single fingerprint information that is pre-recorded, and then the obtained fingerprint is compared with the single fingerprint information. If the comparison is consistent, the fingerprint is verified, otherwise the fingerprint verification fails.
  • there is also a solution for performing fingerprint verification by using multiple fingerprint information generally by judging whether the input multiple fingerprint information matches the preset multiple fingerprint information, and the sequence of input multiple fingerprint information and preset multiple fingerprints. Whether the preset sequence of information matches, if the matching is successful, the fingerprint verification is successful, otherwise the fingerprint verification fails.
  • fingerprint verification is performed by a single fingerprint information, the recognition rate is not high. When the fingerprint is damaged or the fingerprint template is lost, the fingerprint verification cannot be completed, and the single fingerprint information is easily copied, which may cause leakage of user data or bring benefits. Loss.
  • the password verification method and device, the mobile terminal and the computer storage medium provided by the embodiments of the present invention solve the related art, and the security performance of the single password security verification method is low, and is easily sneaked or cracked, resulting in the user's password and data. The technical problem of being leaked.
  • an embodiment of the present invention provides a password verification method, including:
  • the authentication information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;
  • the identity verification passes.
  • the embodiment of the invention further provides a password verification apparatus, comprising: a receiving module and a verification module;
  • the obtaining module is configured to obtain an identity verification message, where the identity verification information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;
  • the verification module is configured to perform matching verification on the identity verification information according to the pre-stored legal verification information; when the identity verification information matches the legal verification information, the identity verification is passed.
  • the embodiment of the invention further provides a mobile terminal, comprising: an acquisition unit, an acceleration sensor unit, a processor and a storage unit;
  • the collecting unit is configured to obtain a verification parameter input by the user in the authentication information, and send the verification parameter to the processor;
  • the acceleration sensor unit is configured to obtain an operation parameter of the terminal when the user inputs the verification parameter in the identity verification information, and sends the operation parameter to the processor;
  • the processor is configured to perform matching verification on the authentication information acquired by the collecting unit and the acceleration sensor unit according to the pre-stored legal verification information, and when the identity verification information matches the legal verification information, the identity verification by;
  • the storage unit is configured to store the verification parameter input by the user, the operation parameter of the terminal, and legal verification information.
  • the embodiment of the invention further provides a computer storage medium, wherein the computer storage medium stores computer executable instructions, and the computer executable instructions are used to execute the foregoing password verification method.
  • the identity verification information is obtained, and the identity verification information is matched and verified according to the pre-stored legal verification information.
  • the identity verification information matches the legal verification information, , the identity test
  • the certificate information is verified and unlocked or paid for.
  • the implementation of the method provided by the embodiment of the present invention needs to obtain the verification parameter input by the user for verification, and also needs to obtain the operation parameter of the user when inputting the verification parameter, and simultaneously verify the verification parameter and the operation parameter.
  • the authentication information is verified, and the authentication information is verified by the combination information to improve the security of the password and the security of the password verification, thereby further ensuring the user terminal information.
  • the security enhances the user experience and facilitates the user's use.
  • FIG. 1 is a flowchart of a password verification method according to a first embodiment of the present invention
  • FIG. 2 is a flowchart of a password registration method according to a first embodiment of the present invention
  • FIG. 3 is a flowchart of a fingerprint verification method according to a first embodiment of the present invention.
  • FIG. 4 is a flowchart of a fingerprint registration method according to a first embodiment of the present invention.
  • FIG. 5 is a flowchart of an iris verification method according to a first embodiment of the present invention.
  • FIG. 6 is a flowchart of a method for registering an iris according to a first embodiment of the present invention
  • FIG. 7 is a flowchart of a character password registration method according to a first embodiment of the present invention.
  • FIG. 8 is a flowchart of a character password verification method according to a first embodiment of the present invention.
  • FIG. 9 is a structural block diagram of a password verification apparatus according to a second embodiment of the present invention.
  • FIG. 10 is a structural block diagram of a mobile terminal according to a third embodiment of the present invention.
  • FIG. 11 is a first structural block diagram of a mobile terminal according to a third embodiment of the present invention.
  • FIG. 12 is a second structural block diagram of a mobile terminal according to a third embodiment of the present invention.
  • FIG. 13 is a third structural block diagram of a mobile terminal according to a third embodiment of the present invention.
  • FIG. 1 is a flowchart of a password verification method provided by an embodiment of the present invention.
  • the password verification method provided in this embodiment mainly matches the obtained verification parameter and the operation parameter with the pre-stored legal verification parameter by acquiring the verification parameter input by the user and inputting the verification parameter, the current operation parameter of the terminal. Verification, only when the verification parameters and the running parameters match the legal verification parameters, the authentication information input by the user can be verified successfully.
  • the verification processing steps are as follows:
  • the authentication information obtained in the step includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter.
  • the terminal and the running parameter specifically include at least one of a placement parameter of the terminal and an application parameter of the terminal.
  • the placement parameter of the terminal may be when the user inputs the verification parameter, and the terminal
  • the posture information of the position the so-called posture information refers to whether the mobile phone is currently in a vertical screen or a horizontal screen, or the angle between the mobile phone and the horizontal plane
  • the application parameter of the terminal may be a system application software on the terminal, For example, the camera, at this time the application parameter refers to whether the camera is already on or in operation.
  • the verification parameter is specifically a digital password or a character password input by the user, and may also be fingerprint information of the user, iris information, and the like.
  • S101 Perform matching verification on the identity verification information according to the pre-stored legal verification information.
  • the verification in the step refers to comparing the identity verification information with the legal verification information and performing comparison processing.
  • the verification parameter in the identity verification information is compared with the original verification parameter in the legal verification information, and the terminal operation parameter in the identity verification information and the original terminal in the legal verification information are used. Run parameters for comparison.
  • the verification parameter in the verification process, may be first compared with the original verification parameter.
  • the execution of the terminal compares the operation parameter of the terminal with the original operation parameter, and determines Whether the comparison result is the same, if the same, Then, step S102 is performed; otherwise, the authentication information does not pass.
  • the method before performing the verification of the identity verification information, the method further includes: performing security password verification registration on the terminal, and the step of registering is specifically as shown in FIG. 2 .
  • S201 The user inputs the original verification parameter on the terminal to register in advance;
  • S202 Collect original operation parameters of the terminal, where the original operation parameter is an operation parameter of the terminal when the user inputs the original verification parameter to register;
  • S203 Generate legal verification information according to the original verification parameter and the original operation parameter, and store the information.
  • the user After the user completes the registration on the terminal, if the user needs to unlock the terminal in the off state, the user obtains the identity verification information input by the user, and matches the authentication information with the already registered legal verification information.
  • the method further includes performing corresponding processing according to the obtained identity verification information.
  • the obtained identity verification information is unlocking verification information
  • the terminal is performed.
  • Unlocking processing when the obtained authentication information is payment verification information, after the verification is passed, payment processing is performed on the payment application in the terminal.
  • the acquired identity verification information includes the fingerprint information and the mobile phone posture information when the fingerprint information is detected, whether the fingerprint information and the mobile phone posture information when the fingerprint information is detected meet the predetermined condition.
  • the preset condition is the pre-stored original fingerprint information and the original posture information of the corresponding mobile phone; when the detection result is yes, the fingerprint verification is allowed, otherwise, the fingerprint verification is prohibited.
  • the predetermined condition is the pre-stored original iris information and the original posture information of the corresponding mobile phone; when the detection result is YES, the iris verification is allowed, otherwise, the iris verification is prohibited.
  • the preset condition is The pre-stored original password information and the original gesture information of the corresponding mobile phone; when the detection result is yes, the password verification is allowed; otherwise, the password verification is prohibited.
  • the verification processing step is as shown in FIG. 3.
  • the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input a fingerprint, and the verification interface detects the fingerprint information of the user, and records the entry into the verification system.
  • the fingerprint image is collected by the fingerprint sensor, and the collected fingerprint image information is converted into fingerprint feature data.
  • the posture information may be that the mobile phone terminal is in a horizontal screen or a vertical screen, or the screen is upwardly parallel to the horizontal plane, corresponding to
  • the posture related data refers to a spatial three-dimensional coordinate value (x, y, z) corresponding to the posture information.
  • the posture of the terminal is determined by the three-axis value of the acceleration sensor.
  • the first aspect of the mobile phone gesture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original password set of the mobile phone gesture is generated by the actual value of the three axes of gravity acceleration.
  • S305 Perform a matching comparison between the cipher set and the cipher set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.
  • the identity verification information includes character password information and mobile phone posture information
  • the character password information can easily obtain exactly the same information, but the gesture letter of the mobile phone cannot be obtained 100% correctly, and it must be There is a certain error.
  • the phone posture is expressed by the angle
  • the actual value (x, y, z) of the three axes of gravity acceleration is calculated and the space X is calculated.
  • the angle of the /Y/Z axis ( ⁇ x , ⁇ y , ⁇ z ), that is, the original cipher set of the mobile phone pose is generated by the actual value of the three axes of gravity acceleration, where ⁇ x , ⁇ y , ⁇ z have a value range of [ -90°, 90°].
  • the angle calculation method of the space X/Y/Z is as follows:
  • x, y, and z are the acceleration values on the three axes of gravity acceleration, and G is the acceleration value of gravity, which is a constant.
  • g 9.8 m / s ⁇ 2.
  • the gesture of the mobile phone can be judged by other means of gravity acceleration triaxial sensor, for example, only the angle between the mobile phone and the X/Y axis plane is calculated, and the angle between the mobile phone and the X/Y axis plane is used as a hand. Machine posture.
  • the geomagnetic sensor can be used to assist the acceleration sensor in calculating the absolute coordinate system of the mobile phone, using the calculated absolute coordinate system as the mobile phone gesture.
  • the user experience is improved, and the judgment of the gesture of the mobile phone is set within a certain threshold range, that is, the posture of the mobile phone is considered to satisfy the preset condition.
  • the gravity acceleration triaxial (x, y, z) when used as the data of the posture, when the gravity acceleration triaxial (x, y, z) is used as the original password of the mobile phone posture, it is assumed that the three-axis value of the gravity acceleration of the mobile phone posture acquired when the password is registered is ( x 0 , y 0 , z 0 ), the three-axis value of the gravity acceleration of the phone gesture acquired when verifying the password is (x 1 , y 1 , z 1 ), if and only if
  • T is the set acceleration threshold, for example, 1.7 m/s ⁇ 2, and the corresponding angle is 10°.
  • the angle ( ⁇ x , ⁇ y , ⁇ with respect to the space X/Y/Z axis is calculated using the actual value (x, y, z) of the three axes of gravity acceleration.
  • a flowchart of a fingerprint registration method includes specific steps:
  • S402. Collect an image of a fingerprint when the user presses, and generate fingerprint feature data information, for example. Such as acquisition by a fingerprint sensor.
  • S403. Collect posture information of the terminal, and generate posture related data of the terminal, for example, collecting and converting by an acceleration sensor.
  • S404 Generate a cipher set according to the collected fingerprint information and posture information, and perform encrypted storage, where the cipher set includes the converted fingerprint feature data information and the original password of the posture related data.
  • the verification processing step is as shown in FIG. 5.
  • the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input the iris, the verification interface detects the iris information of the user, and records the entry into the verification system.
  • S502 Acquire an image of a user's iris and generate iris characteristic data information.
  • the image of the iris is collected by the iris sensor, and the collected iris image information is converted into iris feature data.
  • the posture of the terminal is determined by the three-axis value of the acceleration sensor.
  • the first aspect of the mobile phone posture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original value of the mobile phone posture is generated by the actual value of the three axes of gravity acceleration. Code set.
  • S505 Perform a matching comparison between the password set and the password set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.
  • FIG. 6 it is a flowchart of the iris registration method provided in this embodiment, and the specific processing steps include:
  • S601 enter the setting interface and wait for the iris to be entered.
  • S602. Acquire an image of the user's iris and generate iris characteristic data information, for example, by an iris sensor acquisition conversion.
  • the verification processing step is as shown in FIG. 7.
  • the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input the iris, and the verification interface detects the digital password information of the user, and records the entry into the verification system.
  • S702. Collect digital password information input by the user.
  • the current posture information of the terminal is generated, and the terminal posture related data is generated.
  • z 0), using a spatial three-dimensional coordinate system to represent the posture of the terminal.
  • the posture information of the collection terminal is specifically an acceleration sensor.
  • the triaxial value is used to calculate the posture of the terminal.
  • the first aspect of the mobile phone gesture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original password set of the mobile phone gesture is generated by the actual value of the three axes of gravity acceleration.
  • S705 Perform a matching comparison between the cipher set and the cipher set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.
  • FIG. 8 it is a flowchart of the iris registration method provided in this embodiment, and the specific processing steps include:
  • S801 enter the setting interface and wait for the character password information to be entered, for example, input digital password information.
  • S802. Collect digital password information input by a user, for example, input through a numeric keypad.
  • the password verification method performs password verification, specifically, by obtaining the verification parameter input by the user and the operation parameter when the terminal inputs the verification parameter, when the obtained verification parameter is obtained and the terminal is running at the same time.
  • the authentication can be passed, thereby improving the password verification.
  • the security further ensures the security of the user information, facilitates the use of the user, and improves the user experience.
  • FIG. 9 is a schematic structural diagram of a password verification apparatus according to an embodiment of the present invention.
  • the password verification apparatus 9 provided in this embodiment includes: a receiving module 91 and a verification module 92, wherein:
  • the obtaining module 91 is configured to obtain an authentication verification message, where the authentication verification information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;
  • the verification parameter may include fingerprint information, iris information, character password information, and the like.
  • the character password information refers to a number or a letter or a punctuation symbol, etc.
  • the operation information of the terminal specifically includes a placement parameter of the terminal and an application parameter of the terminal.
  • the placement parameter of the terminal may be posture information of the terminal when the user inputs the verification parameter, and the so-called posture information refers to whether the mobile phone is currently in a vertical screen or a horizontal screen, or is a mobile phone and The angle of the horizontal plane;
  • the application parameter of the terminal may be a certain system application software on the terminal, for example, a camera, and the application parameter refers to whether the camera is already on or in a running state.
  • the verification module 92 is configured to perform matching verification on the identity verification information according to the pre-stored legal verification information; when the identity verification information matches the legal verification information, the identity verification is passed.
  • the verification module 92 when the verification module 92 performs the matching verification on the identity verification information, specifically, the verification parameter input by the user is compared with the original verification parameter in the pre-stored legal verification information;
  • the running parameter of the terminal is compared with the original operating parameter of the terminal in the pre-stored legal verification information.
  • the verification module 92 may also first verify the running parameters of the terminal, and when the running parameters of the terminal match the original running parameters of the terminal, the verification parameters and the original verification parameters are used. Matching is performed, and only if both match, the verification is passed.
  • the verification module 92 performs the matching verification between the fingerprint information received by the obtaining module 91 and the pre-stored original fingerprint information.
  • the verification module 92 performs the verification.
  • the mobile phone posture information is compared with the pre-stored original posture information corresponding to the original fingerprint information. If the comparison result is the same or within a preset range threshold, the identity verification information is verified, and vice versa.
  • the verification module 92 determines whether the camera is in the running state, and if so, the verification module 92 performs matching verification on the fingerprint information.
  • the acquiring module 91 may include a fingerprint sensor, an iris sensor, and a password collecting unit;
  • the password verification device 9 receives the fingerprint information input by the user through the fingerprint sensor, and the verification module 92 detects whether the fingerprint information is identical to the pre-entered original fingerprint information.
  • the password verification device 9 receives the iris information input by the user through the iris sensor, and the verification module is configured to detect the iris information and the state information of the terminal and the pre-recorded original iris information and the original state of the terminal. Whether the information is the same;
  • the password verifying device 9 receives the character information input by the user through the password collecting unit, and the verifying module is configured to detect the character information and the state information of the terminal and the pre-entered original character information and the terminal. Whether the original status information is the same, for example, the password collection unit here may be a keyboard or a touch screen on the terminal.
  • the password verification apparatus 9 provided in this embodiment further includes a registration module 93 configured to input the original verification parameters on the terminal for registration, and collect the original operation parameters of the terminal, where the original operation parameters are used when the user inputs the original verification parameters.
  • the operating parameters of the terminal generate legal verification information according to the original verification parameters and the original running parameters, and are stored.
  • the registration module 93 is configured according to the user input parameter and the corresponding terminal operating parameter.
  • a set of passwords is generated, and the generated set of passwords is stored in an encrypted manner, the set of passwords includes the entered password information and the original password associated with the gesture information of the mobile phone when the password information is entered, and the set of passwords is encrypted and stored in the memory.
  • the password information may be characters, fingerprints or iris information.
  • the verification module 92 compares the input verification password set with the original password set generated at the time of registration, and if the matching is successful, the verification succeeds, and if not, the verification fails, wherein the verification password set is the verification time.
  • the password information is combined with the phone posture related information when the password is input.
  • the password information may be characters, fingerprints or iris information.
  • the device may collect data through the acceleration sensor, and perform calculation and judgment on the data, and detect the posture of the mobile phone when the password is registered and encrypt and save with the registered password.
  • the password eg, fingerprint
  • the gesture of the mobile phone is detected, and when the password (fingerprint) input information, the gesture of the mobile phone, and the registration are matched at the same time, the password (fingerprint) can be verified.
  • FIG. 10 is a structural block diagram of a mobile terminal according to an embodiment of the present invention.
  • the mobile terminal 10 provided by this embodiment includes: an acquisition unit 11, an acceleration sensor unit 12, a processor 13, and a storage unit 14;
  • the collecting unit 11 is configured to obtain the authentication parameter input by the user in the authentication information, and send it to the processor 13;
  • the acceleration sensor unit 12 is configured to obtain the operating parameters of the terminal when the user inputs the verification parameter in the authentication information, and sends it to the processor 13;
  • the processor 13 is configured to perform matching verification on the identity verification information acquired by the collection unit 11 and the acceleration sensor unit 12 according to the pre-stored legal verification information. When the identity verification information matches the legal verification information, the identity verification is passed;
  • the storage unit 14 is configured to store the verification parameters input by the user, the operating parameters of the terminal, and the Legal verification information.
  • the collecting unit 11 specifically includes a fingerprint sensor, an iris sensor, and a password collecting unit;
  • FIG. 11 a first structural block diagram of a mobile terminal provided by the embodiment, when the acquiring unit is the fingerprint sensor 111, the mobile terminal 10 is configured to receive fingerprint information input by the user by using the fingerprint sensor, and the processor 13 is configured to Detecting whether the fingerprint information and the state information of the terminal are the same as the original fingerprint information recorded in advance and the original state information of the terminal;
  • the mobile terminal 10 when the acquiring unit is the iris sensor 112, the mobile terminal 10 is configured to receive iris information input by the user through the iris sensor, and the processor 13 is configured to Detecting whether the iris information and the state information of the terminal are the same as the original iris information recorded in advance and the original state information of the terminal;
  • FIG. 13 a third structural block diagram of the mobile terminal provided by the embodiment, when the acquiring unit is the password collecting unit 113, the mobile terminal 10 is configured to receive character information input by the user through the password collecting unit, and the processor 13 It is configured to detect whether the character information and the status information of the terminal are the same as the original character information pre-recorded and the original status information of the terminal.
  • the mobile terminal 10 further includes a registration unit 15; the user inputs the original verification parameter through the registration unit 15 to register, and collects the original operation parameters of the terminal when the user inputs the original verification parameter for registration, and the original verification parameter and the original of the terminal.
  • the operating parameters are sent to the storage unit 14 for storage.
  • the password verification method and apparatus and the mobile terminal obtained by the embodiment of the present invention obtain the identity verification information obtained by combining the verification parameter input by the user and the operation parameter of the corresponding terminal when verifying the identity verification information, and The authentication information is verified and verified. Only when the two match, the verification is passed. That is, the user must make the verification parameter input by the terminal under a certain operating parameter to be successfully verified, and the security verification is performed by the verification method of the combined information. To improve the security of passwords and the security of password verification.
  • the segmentation determination is performed according to the collected fingerprint information or the detected posture information of the terminal. For example, whether the fingerprint information matches may be first determined. If not, the verification process is exited. If the matching is performed, the posture information of the terminal is determined. Matching; or first determine whether the mobile phone posture information matches, if not, exit the verification process, if it matches, determine whether the fingerprint information matches, thereby increasing the diversity of the fingerprint verification method and the security of the terminal, further ensuring the user terminal information The security has improved the user experience.
  • modules or steps of the above embodiments of the present invention can be implemented by a general computing device, which can be concentrated on a single computing device or distributed among multiple computing devices.
  • they may be implemented by program code executable by the computing device, such that they may be stored in a computer storage medium (ROM/RAM, disk, optical disk) by a computing device, and at some
  • the steps shown or described may be performed in an order different than that herein, or they may be separately fabricated into individual integrated circuit modules, or a plurality of modules or steps may be fabricated into a single integrated circuit module. . Therefore, the invention is not limited to any particular combination of hardware and software.
  • the embodiment of the invention provides a password verification method and device, a mobile terminal and a computer storage medium.
  • identity verification information is matched and verified according to the pre-stored legal verification information, and when the identity verification information matches the legal verification information, , the authentication information is verified.
  • the security of the user terminal information is ensured, the user experience is improved, and the user's use is facilitated.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Human Computer Interaction (AREA)
  • Telephone Function (AREA)

Abstract

A password authentication method and device, mobile terminal, and computer storage medium. The method comprises: acquiring identity authentication information (S100); performing, according to pre-stored valid authentication information, matching and authentication on the identity authentication information (S101); and if the identity authentication information matches the valid authentication information, then authenticating the identity authentication information (S102).

Description

密码验证方法及装置、移动终端、计算机存储介质Password verification method and device, mobile terminal, computer storage medium 技术领域Technical field

本发明涉及安全验证技术领域,尤其涉及一种密码验证方法及装置、移动终端、计算机存储介质。The present invention relates to the field of security verification technologies, and in particular, to a password verification method and apparatus, a mobile terminal, and a computer storage medium.

背景技术Background technique

目前,终端的指纹识别技术一般是预先录入的单一指纹信息,然后再将获取的指纹与单一指纹信息进行比对,如果比对相符则通过指纹验证,否则指纹验证失败。另外,也存在通过多个指纹信息进行指纹验证的方案,一般是通过判断输入的多个指纹信息与预设多个指纹信息是否相符,以及输入的多个指纹信息的序列与预设多个指纹信息的预设序列是否相符,如果相符则指纹验证成功,否则指纹验证失败。但是,通过单一指纹信息进行指纹验证时,识别率不高,当指纹存在破损或指纹模板丢失时将无法完成指纹验证,并且单一指纹信息容易被复制,可能造成用户资料的泄漏或带来利益上的损失。At present, the fingerprint identification technology of the terminal is generally a single fingerprint information that is pre-recorded, and then the obtained fingerprint is compared with the single fingerprint information. If the comparison is consistent, the fingerprint is verified, otherwise the fingerprint verification fails. In addition, there is also a solution for performing fingerprint verification by using multiple fingerprint information, generally by judging whether the input multiple fingerprint information matches the preset multiple fingerprint information, and the sequence of input multiple fingerprint information and preset multiple fingerprints. Whether the preset sequence of information matches, if the matching is successful, the fingerprint verification is successful, otherwise the fingerprint verification fails. However, when fingerprint verification is performed by a single fingerprint information, the recognition rate is not high. When the fingerprint is damaged or the fingerprint template is lost, the fingerprint verification cannot be completed, and the single fingerprint information is easily copied, which may cause leakage of user data or bring benefits. Loss.

发明内容Summary of the invention

本发明实施例提供的密码验证方法及装置、移动终端、计算机存储介质,以解决相关技术中通过单一的密码安全验证方式的安全性能较低,容易被偷窥或被破解,造成用户的密码和资料被泄漏的技术问题。The password verification method and device, the mobile terminal and the computer storage medium provided by the embodiments of the present invention solve the related art, and the security performance of the single password security verification method is low, and is easily sneaked or cracked, resulting in the user's password and data. The technical problem of being leaked.

为解决上述技术问题,本发明实施例提供一种密码验证方法,包括:To solve the above technical problem, an embodiment of the present invention provides a password verification method, including:

获取身份验证信息,所述身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数;Obtaining authentication information, where the authentication information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;

根据预存的合法验证信息对所述身份验证信息进行匹配验证; Performing matching verification on the authentication information according to pre-stored legal verification information;

当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过。When the authentication information matches the legal verification information, the identity verification passes.

本发明实施例还提供一种密码验证装置,包括:接收模块和验证模块;The embodiment of the invention further provides a password verification apparatus, comprising: a receiving module and a verification module;

所述获取模块配置为获取身份验证信,所述身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数;The obtaining module is configured to obtain an identity verification message, where the identity verification information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;

所述验证模块配置为根据预存的合法验证信息对所述身份验证信息进行匹配验证;当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过。The verification module is configured to perform matching verification on the identity verification information according to the pre-stored legal verification information; when the identity verification information matches the legal verification information, the identity verification is passed.

本发明实施例还提供一种移动终端,包括:采集单元、加速度传感器单元、处理器和存储单元;The embodiment of the invention further provides a mobile terminal, comprising: an acquisition unit, an acceleration sensor unit, a processor and a storage unit;

所述采集单元配置为获取身份验证信息中的用户输入的验证参数,并发送至所述处理器;The collecting unit is configured to obtain a verification parameter input by the user in the authentication information, and send the verification parameter to the processor;

所述加速度传感器单元配置为获取身份验证信息中的用户输入验证参数时终端的运行参数,并发送至所述处理器;The acceleration sensor unit is configured to obtain an operation parameter of the terminal when the user inputs the verification parameter in the identity verification information, and sends the operation parameter to the processor;

所述处理器配置为根据预存的合法验证信息对所述采集单元和加速度传感器单元获取到的身份验证信息进行匹配验证,当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过;The processor is configured to perform matching verification on the authentication information acquired by the collecting unit and the acceleration sensor unit according to the pre-stored legal verification information, and when the identity verification information matches the legal verification information, the identity verification by;

所述存储单元配置为存储所述用户输入的验证参数、终端的运行参数以及合法验证信息。The storage unit is configured to store the verification parameter input by the user, the operation parameter of the terminal, and legal verification information.

本发明实施例还提供一种计算机存储介质,所述计算机存储介质中存储有计算机可执行指令,所述计算机可执行指令用于执行前述的密码验证方法。The embodiment of the invention further provides a computer storage medium, wherein the computer storage medium stores computer executable instructions, and the computer executable instructions are used to execute the foregoing password verification method.

本发明实施例的有益效果是:The beneficial effects of the embodiments of the present invention are:

根据本发明实施例提供的密码验证方法、装置、移动终端以及计算机存储介质,通过获取身份验证信息,根据预存的合法验证信息对身份验证信息进行匹配验证,当身份验证信息与合法验证信息匹配时,则该身份验 证信息验证通过,并进行解锁或者支付处理。According to the password verification method and apparatus, the mobile terminal, and the computer storage medium provided by the embodiment of the present invention, the identity verification information is obtained, and the identity verification information is matched and verified according to the pre-stored legal verification information. When the identity verification information matches the legal verification information, , the identity test The certificate information is verified and unlocked or paid for.

通过本发明实施例提供的方法的实施,除了需要获取用户输入的验证参数进行验证之外,还需要获取用户在输入该验证参数时的中的运行参数,将验证参数和运行参数同时进行验证,当两者均与预存的合法验证信息相匹配时,身份验证信息才验证通过,通过该组合信息的验证方式进行安全验证,提高密码的安全性以及密码验证的安全性,进一步保证了用户终端信息的安全,提高了用户的体验,方便了用户的使用。The implementation of the method provided by the embodiment of the present invention needs to obtain the verification parameter input by the user for verification, and also needs to obtain the operation parameter of the user when inputting the verification parameter, and simultaneously verify the verification parameter and the operation parameter. When both of them match the pre-stored legal authentication information, the authentication information is verified, and the authentication information is verified by the combination information to improve the security of the password and the security of the password verification, thereby further ensuring the user terminal information. The security enhances the user experience and facilitates the user's use.

附图说明DRAWINGS

图1为本发明第一实施例提供的密码验证方法的流程图;1 is a flowchart of a password verification method according to a first embodiment of the present invention;

图2为本发明第一实施例提供的密码注册方法的流程图;2 is a flowchart of a password registration method according to a first embodiment of the present invention;

图3为本发明第一实施例提供的指纹验证方法的流程图;3 is a flowchart of a fingerprint verification method according to a first embodiment of the present invention;

图4为本发明第一实施例提供的指纹注册方法的流程图;4 is a flowchart of a fingerprint registration method according to a first embodiment of the present invention;

图5为本发明第一实施例提供的虹膜验证方法的流程图;FIG. 5 is a flowchart of an iris verification method according to a first embodiment of the present invention; FIG.

图6为本发明第一实施例提供的虹膜注册方法的流程图;FIG. 6 is a flowchart of a method for registering an iris according to a first embodiment of the present invention; FIG.

图7为本发明第一实施例提供的字符密码注册方法的流程图;FIG. 7 is a flowchart of a character password registration method according to a first embodiment of the present invention; FIG.

图8为本发明第一实施例提供的字符密码验证方法的流程图;FIG. 8 is a flowchart of a character password verification method according to a first embodiment of the present invention; FIG.

图9为本发明第二实施例提供的密码验证装置的结构框图;FIG. 9 is a structural block diagram of a password verification apparatus according to a second embodiment of the present invention; FIG.

图10为本发明第三实施例提供的移动终端的结构框图;FIG. 10 is a structural block diagram of a mobile terminal according to a third embodiment of the present invention;

图11为本发明第三实施例提供的移动终端的第一种结构框图;11 is a first structural block diagram of a mobile terminal according to a third embodiment of the present invention;

图12为本发明第三实施例提供的移动终端的第二种结构框图;FIG. 12 is a second structural block diagram of a mobile terminal according to a third embodiment of the present invention;

图13为本发明第三实施例提供的移动终端的第三种结构框图。FIG. 13 is a third structural block diagram of a mobile terminal according to a third embodiment of the present invention.

具体实施方式detailed description

下面通过具体实施方式结合附图对本发明实施例作进一步详细说明。The embodiments of the present invention are further described in detail below with reference to the accompanying drawings.

第一实施例: First embodiment:

请参见图1,图1为本发明实施例体提供的密码验证方法的流程图。在本实施例所提供的密码验证方法,主要是通过获取用户输入的验证参数和输入该验证参数时,终端当前的运行参数,将获取到的验证参数和运行参数与预存的合法验证参数进行匹配验证,只有在验证参数和运行参数与合法验证参数相匹配时,用户输入的身份验证信息才能验证成功,其验证处理步骤如下:Referring to FIG. 1, FIG. 1 is a flowchart of a password verification method provided by an embodiment of the present invention. The password verification method provided in this embodiment mainly matches the obtained verification parameter and the operation parameter with the pre-stored legal verification parameter by acquiring the verification parameter input by the user and inputting the verification parameter, the current operation parameter of the terminal. Verification, only when the verification parameters and the running parameters match the legal verification parameters, the authentication information input by the user can be verified successfully. The verification processing steps are as follows:

S100,获取身份验证信息,例如该步骤中获取的身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数。S100. Acquire authentication information. For example, the authentication information obtained in the step includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter.

在本实施例中,所述终端而到运行参数具体包括终端的放置参数和终端的应用参数中的至少一种,优选的,所述终端的放置参数可以是用户在输入验证参数时,终端所处的姿势信息,所谓的姿势信息指的是手机当前是处于竖屏还是横屏,或者是手机与水平面的夹角的多少;所述终端的应用参数可以是终端上的某一系统应用软件,例如,相机,这时应用参数指的是相机是否已经开启或者处于运行状态。In this embodiment, the terminal and the running parameter specifically include at least one of a placement parameter of the terminal and an application parameter of the terminal. Preferably, the placement parameter of the terminal may be when the user inputs the verification parameter, and the terminal The posture information of the position, the so-called posture information refers to whether the mobile phone is currently in a vertical screen or a horizontal screen, or the angle between the mobile phone and the horizontal plane; the application parameter of the terminal may be a system application software on the terminal, For example, the camera, at this time the application parameter refers to whether the camera is already on or in operation.

在本实施例中,所述验证参数具体是用户输入的数字密码或者是字符密码,还可以是用户的指纹信息、虹膜信息等等。In this embodiment, the verification parameter is specifically a digital password or a character password input by the user, and may also be fingerprint information of the user, iris information, and the like.

S101,根据预存的合法验证信息对身份验证信息进行匹配验证,例如,该步骤中的验证指的是,将身份验证信息与合法验证信息进行比较、比对处理。S101: Perform matching verification on the identity verification information according to the pre-stored legal verification information. For example, the verification in the step refers to comparing the identity verification information with the legal verification information and performing comparison processing.

在本实施例中,在验证过程中,分别将身份验证信息中的验证参数与合法验证信息中的原始验证参数进行比较,将身份验证信息中的终端运行参数与合法验证信息中的终端的原始运行参数进行比较。In this embodiment, in the verification process, the verification parameter in the identity verification information is compared with the original verification parameter in the legal verification information, and the terminal operation parameter in the identity verification information and the original terminal in the legal verification information are used. Run parameters for comparison.

在本实施例中,在验证过程中,还可以是首先将验证参数与原始验证参数进行比较,当验证参数与原始验证参数相同时,启动执行将终端的运行参数与原始运行参数进行比较,判断该比较结果是否也相同,若相同, 则执行步骤S102,反之,身份验证信息不通过。In this embodiment, in the verification process, the verification parameter may be first compared with the original verification parameter. When the verification parameter is the same as the original verification parameter, the execution of the terminal compares the operation parameter of the terminal with the original operation parameter, and determines Whether the comparison result is the same, if the same, Then, step S102 is performed; otherwise, the authentication information does not pass.

S102,当身份验证信息与合法验证信息匹配时,则身份验证通过。S102. When the identity verification information matches the legal verification information, the identity verification is passed.

在该匹配指的是,身份验证信息中的验证参数与原始验证参数相同,终端的运行参数与原始运行参数相同,则判断身份验证信息通过。The matching means that the verification parameter in the authentication information is the same as the original verification parameter, and the running parameter of the terminal is the same as the original running parameter, and then the identity verification information is passed.

在本实施例中,在进行身份验证信息验证之前,还包括:在终端上进行安全密码验证注册,该注册的步骤具体如图2所示。In this embodiment, before performing the verification of the identity verification information, the method further includes: performing security password verification registration on the terminal, and the step of registering is specifically as shown in FIG. 2 .

S201,用户预先在所述终端上输入原始验证参数进行注册;S201: The user inputs the original verification parameter on the terminal to register in advance;

S202,采集所述终端的原始运行参数,所述原始运行参数为用户输入所述原始验证参数进行注册时终端的运行参数;S202: Collect original operation parameters of the terminal, where the original operation parameter is an operation parameter of the terminal when the user inputs the original verification parameter to register;

S203,根据所述原始验证参数以及原始运行参数生成合法验证信息,并进行存储。S203. Generate legal verification information according to the original verification parameter and the original operation parameter, and store the information.

当用户在终端上注册完成后,若用户需要将处于关屏状态下的终端解锁时,获取用户输入的身份验证信息,并将身份验证信息与已经注册好的合法验证信息进行匹配验证。After the user completes the registration on the terminal, if the user needs to unlock the terminal in the off state, the user obtains the identity verification information input by the user, and matches the authentication information with the already registered legal verification information.

在本实施例中,其方法还包括根据获取到的身份验证信息进行相应的处理,优选的,当获取到的身份验证信息为解锁验证信息时,那么在信息验证通过之后,会对该终端进行解锁处理;当获取到的身份验证信息为支付验证信息时,在验证通过之后,会对终端中的支付应用进行支付处理。In this embodiment, the method further includes performing corresponding processing according to the obtained identity verification information. Preferably, when the obtained identity verification information is unlocking verification information, after the information verification is passed, the terminal is performed. Unlocking processing; when the obtained authentication information is payment verification information, after the verification is passed, payment processing is performed on the payment application in the terminal.

在本实施例中,当获取到的身份验证信息包括指纹信息、和所述检测指纹信息时的手机姿势信息时,判断指纹信息、和所述检测指纹信息时的手机姿势信息是否均满足预定条件,该预设条件为预存的原始指纹信息和对应的手机的原始姿势信息;当检测结果为是时,允许通过指纹验证,否则,禁止通过指纹验证。In this embodiment, when the acquired identity verification information includes the fingerprint information and the mobile phone posture information when the fingerprint information is detected, whether the fingerprint information and the mobile phone posture information when the fingerprint information is detected meet the predetermined condition. The preset condition is the pre-stored original fingerprint information and the original posture information of the corresponding mobile phone; when the detection result is yes, the fingerprint verification is allowed, otherwise, the fingerprint verification is prohibited.

当获取到的身份验证信包括虹膜信息、和所述检测虹膜信息时的手机姿势信息时,判断虹膜信息、和所述检测虹膜信息时的手机姿势信息是否 均满足预定条件,该预设条件为预存的原始虹膜信息和对应的手机的原始姿势信息;当检测结果为是时,允许通过虹膜验证,否则,禁止通过虹膜验证。When the acquired authentication letter includes the iris information and the mobile phone posture information when the iris information is detected, whether the iris information and the mobile phone posture information when detecting the iris information are determined The predetermined condition is the pre-stored original iris information and the original posture information of the corresponding mobile phone; when the detection result is YES, the iris verification is allowed, otherwise, the iris verification is prohibited.

当获取到的身份验证信包括密码信息、和所述检测密码信息时的手机姿势信息时,判断密码信息、和所述检测密码信息时的手机姿势信息是否均满足预定条件,该预设条件为预存的原始密码信息和对应的手机的原始姿势信息;当检测结果为是时,允许通过密码验证,否则,禁止通过密码验证。When the obtained authentication information includes the password information and the mobile phone posture information when the password information is detected, whether the password information and the mobile phone posture information when detecting the password information meet the predetermined condition, the preset condition is The pre-stored original password information and the original gesture information of the corresponding mobile phone; when the detection result is yes, the password verification is allowed; otherwise, the password verification is prohibited.

在本实施例中,当步骤S100获取到的身份验证信息为指纹信息和终端的姿势信息时,其验证处理步骤如图3所示。In this embodiment, when the identity verification information acquired in step S100 is fingerprint information and posture information of the terminal, the verification processing step is as shown in FIG. 3.

S301,等待指纹信息的录入。S301, waiting for the fingerprint information to be entered.

在该步骤中,首先要将终端的界面调整至验证界面,并在该验证界面下,等待用户输入指纹,验证界面检测到用户的指纹信息,并记录录入到验证系统中。In this step, the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input a fingerprint, and the verification interface detects the fingerprint information of the user, and records the entry into the verification system.

S302,采集用户按压指纹的图像,并生成指纹特征数据信息。S302. Acquire an image that the user presses the fingerprint, and generate fingerprint feature data information.

在该步骤中,采集指纹图像具体是通过指纹传感器进行采集,将采集到的指纹图像信息转换成指纹特征数据。In this step, the fingerprint image is collected by the fingerprint sensor, and the collected fingerprint image information is converted into fingerprint feature data.

S303,采集输入指纹信息时,终端当前的姿势信息,并生成终端姿势相关数据,例如该姿势信息可以是手机终端处于横屏或者是竖屏,还或者是其屏幕朝上与水平面平行,对应的姿势相关数据指的是姿势信息对应的空间三维坐标值(x,y,z)。S303, when the input fingerprint information is collected, the current posture information of the terminal, and the terminal posture related data is generated, for example, the posture information may be that the mobile phone terminal is in a horizontal screen or a vertical screen, or the screen is upwardly parallel to the horizontal plane, corresponding to The posture related data refers to a spatial three-dimensional coordinate value (x, y, z) corresponding to the posture information.

在该步骤中,对于采集终端的姿势信息,具体是通过加速度传感器的三轴值来计算确定终端的姿势,。例如,所述的手机姿势可以是手机屏幕朝上且与地面平行,其中加速度传感器的值为(x=0,y=0,z=9.8m/s^2),手机姿势可以是手机竖屏且与地面垂直屏,其中加速度传感器的值为(x=0, y=9.8m/s^2,z=0),手机姿势可以是手机横屏且与地面垂直屏,其中加速度传感器的值为(x=9.8m/s^2,y=0,z=0)等等各种姿势。In this step, for the posture information of the collection terminal, specifically, the posture of the terminal is determined by the three-axis value of the acceleration sensor. For example, the mobile phone gesture may be that the mobile phone screen is facing up and parallel to the ground, wherein the value of the acceleration sensor is (x=0, y=0, z=9.8m/s^2), and the mobile phone posture may be a mobile phone vertical screen. And the vertical screen with the ground, where the value of the acceleration sensor is (x=0, y=9.8m/s^2, z=0), the mobile phone posture can be the horizontal screen of the mobile phone and the vertical screen with the ground, wherein the value of the acceleration sensor is (x=9.8m/s^2, y=0, z=0 ) and so on.

另外,所述的手机姿势第一方面可以通过重力加速度三轴的实际值(x,y,z)进行确定,即通过重力加速度三轴的实际值生成手机姿势的原始密码集。In addition, the first aspect of the mobile phone gesture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original password set of the mobile phone gesture is generated by the actual value of the three axes of gravity acceleration.

S304,根据指纹信息和姿势信息生成密码集,该密码集包括转换后的指纹特征数据信息和终端姿势相关数据的原始密码。S304. Generate a cipher set according to the fingerprint information and the posture information, where the cipher set includes the converted fingerprint feature data information and the original password of the terminal posture related data.

S305,将密码集与注册时生成的密码集进行匹配比较,若同时匹配,则验证成功,反之,验证失败。S305: Perform a matching comparison between the cipher set and the cipher set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.

在本实施例中,对于验证身份验证信是否匹配,并不一定需要相同才能验证成功,由于传感器的采集并不能百分百地采集正确,只要采集得到信息在一定的范围之内即可认为完全相同,例如,对于身份验证信息包括字符密码信息和手机姿势信息时,其字符密码信息可以很轻松地获取到完全一样的信息,但是手机的姿势信并不能百分百地获取正确,其必定会存在一定的误差,这时我们可以通过设置取值范围来判断,优选的,取手机姿势采用角度来表示时,具体通过重力加速度三轴的实际值(x,y,z)计算得到与空间X/Y/Z轴的角度(θx,θy,θz),即通过重力加速度三轴的实际值生成手机姿势的原始密码集,其中θx,θy,θz的取值范围为[-90°,90°]。所述的与空间X/Y/Z的角度计算方法如下:In this embodiment, it is not necessary to verify that the authentication information is matched, and the verification is successful. Since the collection of the sensor is not 100% accurate, the information can be considered complete within a certain range as long as the information is collected. The same, for example, when the identity verification information includes character password information and mobile phone posture information, the character password information can easily obtain exactly the same information, but the gesture letter of the mobile phone cannot be obtained 100% correctly, and it must be There is a certain error. At this time, we can judge by setting the value range. Preferably, when the phone posture is expressed by the angle, the actual value (x, y, z) of the three axes of gravity acceleration is calculated and the space X is calculated. The angle of the /Y/Z axis (θ x , θ y , θ z ), that is, the original cipher set of the mobile phone pose is generated by the actual value of the three axes of gravity acceleration, where θ x , θ y , θ z have a value range of [ -90°, 90°]. The angle calculation method of the space X/Y/Z is as follows:

Figure PCTCN2016105746-appb-000001
Figure PCTCN2016105746-appb-000001

其中,x、y、z为重力加速度三轴上的加速度值,G为重力加速度值,为常量。g=9.8m/s^2。Among them, x, y, and z are the acceleration values on the three axes of gravity acceleration, and G is the acceleration value of gravity, which is a constant. g = 9.8 m / s ^ 2.

特别地,手机姿势判断可以重力加速度三轴传感器其他方式判断,比如仅计算手机与X/Y轴平面的夹角,通过手机与X/Y轴平面的夹角作为手 机姿势。In particular, the gesture of the mobile phone can be judged by other means of gravity acceleration triaxial sensor, for example, only the angle between the mobile phone and the X/Y axis plane is calculated, and the angle between the mobile phone and the X/Y axis plane is used as a hand. Machine posture.

特别地,可以通过地磁传感器来辅助加速度传感器计算手机的绝对坐标系,用计算的绝对坐标系作为手机姿势。In particular, the geomagnetic sensor can be used to assist the acceleration sensor in calculating the absolute coordinate system of the mobile phone, using the calculated absolute coordinate system as the mobile phone gesture.

特别地,提升用户体验,对于手机姿势的判断设置在一定阈值范围内,即认为手机姿势满足预设条件。In particular, the user experience is improved, and the judgment of the gesture of the mobile phone is set within a certain threshold range, that is, the posture of the mobile phone is considered to satisfy the preset condition.

在本实施例中,当采用加速度作为姿势的数据时,采用重力加速度三轴(x,y,z)作为手机姿势的原始密码时,假定注册密码时采集的手机姿势重力加速度三轴值为(x0,y0,z0),验证密码时采集的手机姿势重力加速度三轴值为(x1,y1,z1),当且仅当|x1-x0|<T,且|y1-y0|<T,且|z1-z0|<T满足条件时,才能得到验证密码时采集的手机姿势满足注册密码时的手机姿势条件。其中,T为设定的加速度阈值,比如可以1.7m/s^2,对应的角度为10°。In the present embodiment, when acceleration is used as the data of the posture, when the gravity acceleration triaxial (x, y, z) is used as the original password of the mobile phone posture, it is assumed that the three-axis value of the gravity acceleration of the mobile phone posture acquired when the password is registered is ( x 0 , y 0 , z 0 ), the three-axis value of the gravity acceleration of the phone gesture acquired when verifying the password is (x 1 , y 1 , z 1 ), if and only if |x 1 -x 0 |<T, and | y 1 -y 0 |<T, and |z 1 -z 0 |<T When the condition is satisfied, the mobile phone posture condition when the mobile phone gesture acquired when the password is verified satisfies the registration password can be obtained. Where T is the set acceleration threshold, for example, 1.7 m/s^2, and the corresponding angle is 10°.

在本实施例中,当采用角度作为姿势的数据时,采用重力加速度三轴的实际值(x,y,z)计算得到与空间X/Y/Z轴的角度(θx,θy,θz)作为手机姿势的原始密码时,假定注册密码时采集的手机姿势重力加速度三轴值为(θx0,θy0,θz0),验证密码时采集的手机姿势重力加速度三轴值为(θx1,θy1,θz1),当且仅当|θx1x0|<N,且|θy1y0|<N,且|θz1z0|<N满足条件时,才能得到验证密码时采集的手机姿势满足注册密码时的手机姿势条件。其中,N为设定的角度阈值,比如可以10°。In the present embodiment, when the angle is used as the data of the posture, the angle (θ x , θ y , θ with respect to the space X/Y/Z axis is calculated using the actual value (x, y, z) of the three axes of gravity acceleration. z ) As the original password of the mobile phone posture, it is assumed that the three-axis value of the gravity acceleration of the mobile phone posture acquired when the password is registered is (θ x0 , θ y0 , θ z0 ), and the triaxial value of the gravity acceleration of the mobile phone posture acquired when the password is verified (θ X1 , θ y1 , θ z1 ), if and only if |θ x1x0 |<N, and |θ y1y0 |<N, and |θ z1z0 |<N satisfy the condition, The gesture of the mobile phone collected when the password is verified satisfies the mobile phone posture condition when the password is registered. Where N is the set angle threshold, for example, 10°.

如图4所示,为本实施例提供的指纹注册方法的流程图,其具体处理步骤包括:As shown in FIG. 4, a flowchart of a fingerprint registration method provided in this embodiment includes specific steps:

S401,进入设置界面,等待指纹录入。S401, enter the setting interface and wait for the fingerprint to be entered.

S402,采集用户按压时的指纹的图像,并生成指纹特征数据信息,例 如通过指纹传感器采集转换。S402. Collect an image of a fingerprint when the user presses, and generate fingerprint feature data information, for example. Such as acquisition by a fingerprint sensor.

S403,采集终端的姿势信息,并生成终端的姿势相关数据,例如通过加速度传感器采集转换。S403. Collect posture information of the terminal, and generate posture related data of the terminal, for example, collecting and converting by an acceleration sensor.

S404,根据采集的指纹信息和姿势信息生成密码集并进行加密存储,该密码集中包括转换后的指纹特征数据信息和姿势相关数据的原始密码。S404: Generate a cipher set according to the collected fingerprint information and posture information, and perform encrypted storage, where the cipher set includes the converted fingerprint feature data information and the original password of the posture related data.

在本实施例中,当步骤S100获取到的身份验证信息为虹膜信息和终端的姿势信息时,其验证处理步骤如图5所示。In this embodiment, when the identity verification information acquired in step S100 is the iris information and the posture information of the terminal, the verification processing step is as shown in FIG. 5.

S501,等待虹膜信息的录入。S501, waiting for the input of iris information.

在该步骤中,首先要将终端的界面调整至验证界面,并在该验证界面下,等待用户输入虹膜,验证界面检测到用户的虹膜信息,并记录录入到验证系统中。In this step, the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input the iris, the verification interface detects the iris information of the user, and records the entry into the verification system.

S502,采集用户虹膜的图像,并生成虹膜特征数据信息。S502: Acquire an image of a user's iris and generate iris characteristic data information.

在该步骤中,采集虹膜的图像具体是通过虹膜传感器进行采集,将采集到的虹膜图像信息转换成虹膜特征数据。In this step, the image of the iris is collected by the iris sensor, and the collected iris image information is converted into iris feature data.

S503,采集输入虹膜信息时,终端当前的姿势信息,并生成终端姿势相关数据,例如当手机终端处于横屏时,其对应的姿势数据为(x=9.8m/s^2,y=0,z=0),采用空间三维坐标系来表示终端的姿势。S503. Collect the current posture information of the terminal when the input iris information is collected, and generate terminal posture related data. For example, when the mobile phone terminal is in the horizontal screen, the corresponding posture data is (x=9.8m/s^2, y=0, z=0), the spatial three-dimensional coordinate system is used to represent the posture of the terminal.

在该步骤中,对于采集终端的姿势信息,具体是通过加速度传感器的三轴值来计算确定终端的姿势,。例如,所述的手机姿势可以是手机屏幕朝上且与地面平行,其中加速度传感器的值为(x=0,y=0,z=9.8m/s^2),手机姿势可以是手机竖屏且与地面垂直屏,其中加速度传感器的值为(x=0,y=9.8m/s^2,z=0),手机姿势可以是手机横屏且与地面垂直屏,其中加速度传感器的值为(x=9.8m/s^2,y=0,z=0)等等各种姿势。In this step, for the posture information of the collection terminal, specifically, the posture of the terminal is determined by the three-axis value of the acceleration sensor. For example, the mobile phone gesture may be that the mobile phone screen is facing up and parallel to the ground, wherein the value of the acceleration sensor is (x=0, y=0, z=9.8m/s^2), and the mobile phone posture may be a mobile phone vertical screen. And the vertical screen with the ground, wherein the value of the acceleration sensor is (x=0, y=9.8m/s^2, z=0), the mobile phone posture can be a horizontal screen of the mobile phone and a vertical screen with the ground, wherein the value of the acceleration sensor is (x=9.8m/s^2, y=0, z=0) and other postures.

另外,所述的手机姿势第一方面可以通过重力加速度三轴的实际值(x,y,z)进行确定,即通过重力加速度三轴的实际值生成手机姿势的原始密 码集。In addition, the first aspect of the mobile phone posture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original value of the mobile phone posture is generated by the actual value of the three axes of gravity acceleration. Code set.

S504,根据虹膜信息和姿势信息生成密码集,该密码集包括转换后的虹膜特征数据信息和终端姿势相关数据的原始密码。S504. Generate a cipher set according to the iris information and the posture information, where the cipher set includes the converted iris feature data information and the original password of the terminal posture related data.

S505,将密码集与注册时生成的密码集进行匹配比较,若同时匹配,则验证成功,反之,验证失败。S505: Perform a matching comparison between the password set and the password set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.

如图6所示,为本实施例提供的虹膜注册方法的流程图,其具体处理步骤包括:As shown in FIG. 6 , it is a flowchart of the iris registration method provided in this embodiment, and the specific processing steps include:

S601,进入设置界面,等待虹膜录入。S601, enter the setting interface and wait for the iris to be entered.

S602,采集用户的虹膜的图像,并生成虹膜特征数据信息,例如通过虹膜传感器采集转换。S602. Acquire an image of the user's iris and generate iris characteristic data information, for example, by an iris sensor acquisition conversion.

S603,采集终端的姿势信息,并生成终端的姿势相关数据,例如通过加速度传感器采集转换。S603. Acquire posture information of the terminal, and generate posture related data of the terminal, for example, acquisition and conversion by an acceleration sensor.

S604,根据采集的虹膜信息和姿势信息生成密码集并进行加密存储,该密码集中包括转换后的虹膜特征数据信息和姿势相关数据的原始密码。S604. Generate a cipher set according to the collected iris information and posture information, and perform encrypted storage, where the cipher set includes the converted iris feature data information and the original password of the posture related data.

在本实施例中,当步骤S100获取到的身份验证信息为虹膜信息和终端的姿势信息时,其例如验证处理步骤如图7所示。In this embodiment, when the identity verification information acquired in step S100 is iris information and posture information of the terminal, for example, the verification processing step is as shown in FIG. 7.

S701,等待字符密码信息的录入,例如可以是数字密码信息。S701. Wait for the entry of the character password information, for example, digital password information.

在该步骤中,首先要将终端的界面调整至验证界面,并在该验证界面下,等待用户输入虹膜,验证界面检测到用户的数字密码信息,并记录录入到验证系统中。In this step, the interface of the terminal is first adjusted to the verification interface, and under the verification interface, the user is required to input the iris, and the verification interface detects the digital password information of the user, and records the entry into the verification system.

S702,采集用户输入的数字密码信息。S702. Collect digital password information input by the user.

S703,采集输入数字密码信息时,终端当前的姿势信息,并生成终端姿势相关数据,例如当手机终端处于横屏时,其对应的姿势数据为(x=9.8m/s^2,y=0,z=0),采用空间三维坐标系来表示终端的姿势。S703. When the input digital password information is input, the current posture information of the terminal is generated, and the terminal posture related data is generated. For example, when the mobile phone terminal is in the horizontal screen, the corresponding posture data is (x=9.8m/s^2, y=0). , z = 0), using a spatial three-dimensional coordinate system to represent the posture of the terminal.

在该步骤中,对于采集终端的姿势信息,具体是通过加速度传感器的 三轴值来计算确定终端的姿势,。例如,所述的手机姿势可以是手机屏幕朝上且与地面平行,其中加速度传感器的值为(x=0,y=0,z=9.8m/s^2),手机姿势可以是手机竖屏且与地面垂直屏,其中加速度传感器的值为(x=0,y=9.8m/s^2,z=0),手机姿势可以是手机横屏且与地面垂直屏,其中加速度传感器的值为(x=9.8m/s^2,y=0,z=0)等等各种姿势。In this step, the posture information of the collection terminal is specifically an acceleration sensor. The triaxial value is used to calculate the posture of the terminal. For example, the mobile phone gesture may be that the mobile phone screen is facing up and parallel to the ground, wherein the value of the acceleration sensor is (x=0, y=0, z=9.8m/s^2), and the mobile phone posture may be a mobile phone vertical screen. And the vertical screen with the ground, wherein the value of the acceleration sensor is (x=0, y=9.8m/s^2, z=0), the mobile phone posture can be a horizontal screen of the mobile phone and a vertical screen with the ground, wherein the value of the acceleration sensor is (x=9.8m/s^2, y=0, z=0) and other postures.

另外,所述的手机姿势第一方面可以通过重力加速度三轴的实际值(x,y,z)进行确定,即通过重力加速度三轴的实际值生成手机姿势的原始密码集。In addition, the first aspect of the mobile phone gesture can be determined by the actual value (x, y, z) of the three axes of gravity acceleration, that is, the original password set of the mobile phone gesture is generated by the actual value of the three axes of gravity acceleration.

S704,根据数字密码信息和姿势信息生成密码集,该密码集包括数字密码信息和终端姿势相关数据的原始密码。S704. Generate a cipher set according to the digital cipher information and the posture information, where the cipher set includes the digital cipher information and the original password of the terminal posture related data.

S705,将密码集与注册时生成的密码集进行匹配比较,若同时匹配,则验证成功,反之,验证失败。S705: Perform a matching comparison between the cipher set and the cipher set generated at the time of registration. If the matching is successful, the verification succeeds, and vice versa, the verification fails.

如图8所示,为本实施例提供的虹膜注册方法的流程图,其具体处理步骤包括:As shown in FIG. 8 , it is a flowchart of the iris registration method provided in this embodiment, and the specific processing steps include:

S801,进入设置界面,等待字符密码信息录入,例如是输入数字密码信息。S801, enter the setting interface and wait for the character password information to be entered, for example, input digital password information.

S802,采集用户输入的数字密码信息,例如通过数字键盘进行输入。S802. Collect digital password information input by a user, for example, input through a numeric keypad.

S803,采集终端的姿势信息,并生成终端的姿势相关数据,例如通过加速度传感器采集转换。S803. Acquire posture information of the terminal, and generate posture related data of the terminal, for example, acquisition and conversion by an acceleration sensor.

S804,根据采集数字密码信息和姿势信息生成密码集并进行加密存储,该密码集中包括输入的数字密码信息和姿势相关数据的原始密码。S804. Generate a cipher set according to the collected digital cipher information and the posture information, and perform encrypted storage, where the cipher set includes the input digital cipher information and the original password of the posture related data.

综上所述,通过本发明实施例提供的密码验证方法进行密码的验证,具体是通过获取用户输入的验证参数和终端输入验证参数时的运行参数,当获取到的验证参数且同时终端的运行参数与合法验证参数中的原始验证参数和原始运行参数相匹配时,才能通过身份验证,进而提高了密码验证 的安全性,进一步保证了用户信息的安全,方便了用户的使用,提升了用户体验。In summary, the password verification method provided by the embodiment of the present invention performs password verification, specifically, by obtaining the verification parameter input by the user and the operation parameter when the terminal inputs the verification parameter, when the obtained verification parameter is obtained and the terminal is running at the same time. When the parameter matches the original verification parameter and the original running parameter in the legal verification parameter, the authentication can be passed, thereby improving the password verification. The security further ensures the security of the user information, facilitates the use of the user, and improves the user experience.

第二实施例:Second embodiment:

请参考图9,图9为本发明实施例提供的密码验证装置的结构示意图。在本实施例提供的密码验证装置9包括:接收模块91和验证模块92,其中:Please refer to FIG. 9. FIG. 9 is a schematic structural diagram of a password verification apparatus according to an embodiment of the present invention. The password verification apparatus 9 provided in this embodiment includes: a receiving module 91 and a verification module 92, wherein:

获取模块91配置为获取身份验证信,该身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数;The obtaining module 91 is configured to obtain an authentication verification message, where the authentication verification information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter;

例如,该验证参数可以包括指纹信息、虹膜信息、字符密码信息等等,字符密码信息是指数字或者字母或者标点符号等等;终端的运行信息具体包括终端的放置参数和终端的应用参数中的至少一种,优选的,所述终端的放置参数可以是用户在输入验证参数时,终端所处的姿势信息,所谓的姿势信息指的是手机当前是处于竖屏还是横屏,或者是手机与水平面的夹角的多少;所述终端的应用参数可以是终端上的某一系统应用软件,例如,相机,这时应用参数指的是相机是否已经开启或者处于运行状态。For example, the verification parameter may include fingerprint information, iris information, character password information, and the like. The character password information refers to a number or a letter or a punctuation symbol, etc.; the operation information of the terminal specifically includes a placement parameter of the terminal and an application parameter of the terminal. At least one, preferably, the placement parameter of the terminal may be posture information of the terminal when the user inputs the verification parameter, and the so-called posture information refers to whether the mobile phone is currently in a vertical screen or a horizontal screen, or is a mobile phone and The angle of the horizontal plane; the application parameter of the terminal may be a certain system application software on the terminal, for example, a camera, and the application parameter refers to whether the camera is already on or in a running state.

验证模块92配置为根据预存的合法验证信息对身份验证信息进行匹配验证;当身份验证信息与所述合法验证信息匹配时,则身份验证通过。The verification module 92 is configured to perform matching verification on the identity verification information according to the pre-stored legal verification information; when the identity verification information matches the legal verification information, the identity verification is passed.

在本实施例中,验证模块92对身份验证信息进行匹配验证时,具体是将用户输入的验证参数与预存的合法验证信息中的原始验证参数进行比较;In this embodiment, when the verification module 92 performs the matching verification on the identity verification information, specifically, the verification parameter input by the user is compared with the original verification parameter in the pre-stored legal verification information;

在验证参数与所述原始验证参数相同时,将终端的运行参数与预存的合法验证信息中终端的原始运行参数进行比较。When the verification parameter is the same as the original verification parameter, the running parameter of the terminal is compared with the original operating parameter of the terminal in the pre-stored legal verification information.

在本实施例中,验证模块92在验证身份验证信息时,还可以是,先对终端的运行参数进行验证,当终端的运行参数与终端的原始运行参数匹配时,将验证参数与原始验证参数进行匹配,只有两者均匹配时,才验证通过。 In this embodiment, when verifying the authentication information, the verification module 92 may also first verify the running parameters of the terminal, and when the running parameters of the terminal match the original running parameters of the terminal, the verification parameters and the original verification parameters are used. Matching is performed, and only if both match, the verification is passed.

例如,当验证参数为指纹信息,运行参数为手机姿势信息时,验证模块92将获取模块91接收到的指纹信息与预存的原始指纹信息进行匹配验证,当指纹信息验证通过时,验证模块92再将手机姿势信息与预存的与原始指纹信息对应的原始姿势信息进行比较,若比较结果为相同或者在预设的范围阈值之内,则身份验证信息验证通过,反之,则不通过。For example, when the verification parameter is the fingerprint information and the running parameter is the mobile phone posture information, the verification module 92 performs the matching verification between the fingerprint information received by the obtaining module 91 and the pre-stored original fingerprint information. When the fingerprint information is verified, the verification module 92 performs the verification. The mobile phone posture information is compared with the pre-stored original posture information corresponding to the original fingerprint information. If the comparison result is the same or within a preset range threshold, the identity verification information is verified, and vice versa.

当验证参数为指纹信息,运行参数为应用参数时,例如,该应用为手机中的相机,验证模块92判断该相机是否处于运行状态,若是,则验证模块92再对指纹信息进行匹配验证。When the verification parameter is the fingerprint information and the running parameter is the application parameter, for example, the application is a camera in the mobile phone, the verification module 92 determines whether the camera is in the running state, and if so, the verification module 92 performs matching verification on the fingerprint information.

在本实施例中,所述获取模块91可以包括指纹传感器、虹膜传感器和密码采集单元;In this embodiment, the acquiring module 91 may include a fingerprint sensor, an iris sensor, and a password collecting unit;

当获取模块为指纹传感器时,密码验证装置9通过指纹传感器接收用户输入的指纹信息,验证模块92检测指纹信息与预先录入的原始指纹信息是否均相同。When the acquiring module is a fingerprint sensor, the password verification device 9 receives the fingerprint information input by the user through the fingerprint sensor, and the verification module 92 detects whether the fingerprint information is identical to the pre-entered original fingerprint information.

当获取模块为虹膜传感器时,密码验证装置9通过虹膜传感器接收用户输入的虹膜信息,所述验证模块配置为检测所述虹膜信息和终端的状态信息与预先录入的原始虹膜信息和终端的原始状态信息是否均相同;When the acquiring module is an iris sensor, the password verification device 9 receives the iris information input by the user through the iris sensor, and the verification module is configured to detect the iris information and the state information of the terminal and the pre-recorded original iris information and the original state of the terminal. Whether the information is the same;

当获取模块为密码采集单元时,密码验证装置9通过密码采集单元接收用户输入的字符信息,所述验证模块配置为检测所述字符信息和终端的状态信息与预先录入的原始字符信息和终端的原始状态信息是否均相同,例如这里的密码采集单元可以是终端上的键盘或者触摸屏。When the obtaining module is a password collecting unit, the password verifying device 9 receives the character information input by the user through the password collecting unit, and the verifying module is configured to detect the character information and the state information of the terminal and the pre-entered original character information and the terminal. Whether the original status information is the same, for example, the password collection unit here may be a keyboard or a touch screen on the terminal.

在本实施例提供的密码验证装置9还包括注册模块93,配置为用户预先在终端上输入原始验证参数进行注册,采集终端的原始运行参数,该原始运行参数为用户输入原始验证参数进行注册时终端的运行参数,根据原始验证参数以及原始运行参数生成合法验证信息,并进行存储。The password verification apparatus 9 provided in this embodiment further includes a registration module 93 configured to input the original verification parameters on the terminal for registration, and collect the original operation parameters of the terminal, where the original operation parameters are used when the user inputs the original verification parameters. The operating parameters of the terminal generate legal verification information according to the original verification parameters and the original running parameters, and are stored.

可选地,该注册模块93根据用户输入的验参数和对应的终端运行参数 生成密码集,并将生成的密码集予以加密存储,所述密码集中包括录入的密码信息与录入密码信息时手机姿势信息相关的原始密码,且所述密码集加密存储于存储器上。其中,所述的密码信息可以是字符、指纹或虹膜信息。Optionally, the registration module 93 is configured according to the user input parameter and the corresponding terminal operating parameter. A set of passwords is generated, and the generated set of passwords is stored in an encrypted manner, the set of passwords includes the entered password information and the original password associated with the gesture information of the mobile phone when the password information is entered, and the set of passwords is encrypted and stored in the memory. The password information may be characters, fingerprints or iris information.

这时,验证模块92将输入的验证密码集与注册时生成的原始密码集与进行比较验证,若一致,则验证成功,若不一致,则验证失败,其中,所述验证密码集为验证时的密码信息和输入密码时的手机姿势相关信息组合得到。其中,所述的密码信息可以是字符、指纹或虹膜信息。At this time, the verification module 92 compares the input verification password set with the original password set generated at the time of registration, and if the matching is successful, the verification succeeds, and if not, the verification fails, wherein the verification password set is the verification time. The password information is combined with the phone posture related information when the password is input. The password information may be characters, fingerprints or iris information.

在本实施例中,当运行参数为终端的姿势信息时,器具体可以通过加速度传感器采集数据,并对该数据进行计算判断即可,在密码注册的时候检测手机姿势并与注册密码一起加密保存,在认证的时候,检测密码(如,指纹)输入信息的同时检测手机姿势,当密码(指纹)输入信息、手机姿势与注册时同时匹配,才能通过密码(指纹)验证。In this embodiment, when the running parameter is the posture information of the terminal, the device may collect data through the acceleration sensor, and perform calculation and judgment on the data, and detect the posture of the mobile phone when the password is registered and encrypt and save with the registered password. At the time of authentication, when the password (eg, fingerprint) is input, the gesture of the mobile phone is detected, and when the password (fingerprint) input information, the gesture of the mobile phone, and the registration are matched at the same time, the password (fingerprint) can be verified.

第三实施例:Third embodiment:

请参见图10,图10为本发明实施例提供的移动终端的结构框图。Referring to FIG. 10, FIG. 10 is a structural block diagram of a mobile terminal according to an embodiment of the present invention.

本实施例提供的移动终端10包括:采集单元11、加速度传感器单元12、处理器13和存储单元14;The mobile terminal 10 provided by this embodiment includes: an acquisition unit 11, an acceleration sensor unit 12, a processor 13, and a storage unit 14;

采集单元11配置为获取身份验证信息中的用户输入的验证参数,并发送至所述处理器13;The collecting unit 11 is configured to obtain the authentication parameter input by the user in the authentication information, and send it to the processor 13;

加速度传感器单元12配置为获取身份验证信息中的用户输入验证参数时终端的运行参数,并发送至处理器13;The acceleration sensor unit 12 is configured to obtain the operating parameters of the terminal when the user inputs the verification parameter in the authentication information, and sends it to the processor 13;

处理器13配置为根据预存的合法验证信息对采集单元11和加速度传感器单元12获取到的身份验证信息进行匹配验证,当身份验证信息与合法验证信息匹配时,则身份验证通过;The processor 13 is configured to perform matching verification on the identity verification information acquired by the collection unit 11 and the acceleration sensor unit 12 according to the pre-stored legal verification information. When the identity verification information matches the legal verification information, the identity verification is passed;

存储单元14配置为存储用户输入的验证参数、终端的运行参数以及合 法验证信息。The storage unit 14 is configured to store the verification parameters input by the user, the operating parameters of the terminal, and the Legal verification information.

在本实施例中,所述采集单元11具体包括指纹传感器、虹膜传感器和密码采集单元;In this embodiment, the collecting unit 11 specifically includes a fingerprint sensor, an iris sensor, and a password collecting unit;

如图11所示,为本实施例提供的移动终端的第一种结构框图,当获取单元为指纹传感器111时,移动终端10通过指纹传感器配置为接收用户输入的指纹信息,处理器13配置为检测所述指纹信息和终端的状态信息与预先录入的原始指纹信息和终端的原始状态信息是否均相同;As shown in FIG. 11 , a first structural block diagram of a mobile terminal provided by the embodiment, when the acquiring unit is the fingerprint sensor 111, the mobile terminal 10 is configured to receive fingerprint information input by the user by using the fingerprint sensor, and the processor 13 is configured to Detecting whether the fingerprint information and the state information of the terminal are the same as the original fingerprint information recorded in advance and the original state information of the terminal;

如图12所示,为本实施例提供的移动终端的第二种结构框图,当获取单元为虹膜传感器112时,移动终端10通过虹膜传感器配置为接收用户输入的虹膜信息,处理器13配置为检测所述虹膜信息和终端的状态信息与预先录入的原始虹膜信息和终端的原始状态信息是否均相同;As shown in FIG. 12, in the second structural block diagram of the mobile terminal provided by the embodiment, when the acquiring unit is the iris sensor 112, the mobile terminal 10 is configured to receive iris information input by the user through the iris sensor, and the processor 13 is configured to Detecting whether the iris information and the state information of the terminal are the same as the original iris information recorded in advance and the original state information of the terminal;

如图13所示,为本实施例提供的移动终端的第三种结构框图,当获取单元为密码采集单元113时,移动终端10通过密码采集单元配置为接收用户输入的字符信息,处理器13配置为检测所述字符信息和终端的状态信息与预先录入的原始字符信息和终端的原始状态信息是否均相同。As shown in FIG. 13 , a third structural block diagram of the mobile terminal provided by the embodiment, when the acquiring unit is the password collecting unit 113, the mobile terminal 10 is configured to receive character information input by the user through the password collecting unit, and the processor 13 It is configured to detect whether the character information and the status information of the terminal are the same as the original character information pre-recorded and the original status information of the terminal.

可选地,该移动终端10还包括注册单元15;用户通过注册单元15输入原始验证参数进行注册,并采集用户输入原始验证参数进行注册时终端的原始运行参数,将原始验证参数和终端的原始运行参数发送至存储单元14上进行存储。Optionally, the mobile terminal 10 further includes a registration unit 15; the user inputs the original verification parameter through the registration unit 15 to register, and collects the original operation parameters of the terminal when the user inputs the original verification parameter for registration, and the original verification parameter and the original of the terminal. The operating parameters are sent to the storage unit 14 for storage.

综上可知,本发明实施例提供的密码验证方法及装置、移动终端,在进行身份验证信息的验证时,通过获取用户输入的验证参数和对应的终端的运行参数组合得到的身份验证信息,并对身份验证信息进行匹配验证,只有两者都匹配时,才验证通过,即是用户必须要使终端处于某一运行参数下输入的验证参数才能验证成功,通过该组合信息的验证方式进行安全验证,提高密码的安全性以及密码验证的安全性。 In summary, the password verification method and apparatus and the mobile terminal provided by the embodiment of the present invention obtain the identity verification information obtained by combining the verification parameter input by the user and the operation parameter of the corresponding terminal when verifying the identity verification information, and The authentication information is verified and verified. Only when the two match, the verification is passed. That is, the user must make the verification parameter input by the terminal under a certain operating parameter to be successfully verified, and the security verification is performed by the verification method of the combined information. To improve the security of passwords and the security of password verification.

可选地,根据采集到的指纹信息或者检测到的终端的姿势信息进行分段判断,比如可以先判断指纹信息是否匹配,如果不匹配,则退出验证流程,如果匹配则判断终端的姿势信息是否匹配;或者先判断手机姿势信息是否匹配,如果不匹配,则退出验证流程,如果匹配则判断指纹信息是否匹配,从而增加了指纹验证方式的多样性以及终端的安全性,进一步保证了用户终端信息的安全,提高了用户的体验。Optionally, the segmentation determination is performed according to the collected fingerprint information or the detected posture information of the terminal. For example, whether the fingerprint information matches may be first determined. If not, the verification process is exited. If the matching is performed, the posture information of the terminal is determined. Matching; or first determine whether the mobile phone posture information matches, if not, exit the verification process, if it matches, determine whether the fingerprint information matches, thereby increasing the diversity of the fingerprint verification method and the security of the terminal, further ensuring the user terminal information The security has improved the user experience.

显然,本领域的技术人员应该明白,上述本发明实施例的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在计算机存储介质(ROM/RAM、磁碟、光盘)中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。所以,本发明不限制于任何特定的硬件和软件结合。Obviously, those skilled in the art should understand that the modules or steps of the above embodiments of the present invention can be implemented by a general computing device, which can be concentrated on a single computing device or distributed among multiple computing devices. On the network, optionally, they may be implemented by program code executable by the computing device, such that they may be stored in a computer storage medium (ROM/RAM, disk, optical disk) by a computing device, and at some In some cases, the steps shown or described may be performed in an order different than that herein, or they may be separately fabricated into individual integrated circuit modules, or a plurality of modules or steps may be fabricated into a single integrated circuit module. . Therefore, the invention is not limited to any particular combination of hardware and software.

以上内容是结合具体的实施方式对本发明实施例所作的进一步详细说明,不能认定本发明的具体实施只局限于这些说明。对于本发明所属技术领域的普通技术人员来说,在不脱离本发明构思的前提下,还可以做出若干简单推演或替换,都应当视为属于本发明的保护范围。The above is a detailed description of the embodiments of the present invention in conjunction with the specific embodiments, and the specific embodiments of the present invention are not limited to the description. It will be apparent to those skilled in the art that the present invention may be made without departing from the spirit and scope of the invention.

工业实用性Industrial applicability

本发明实施例提供一种密码验证方法、装置、移动终端以及计算机存储介质,通过获取身份验证信息,根据预存的合法验证信息对身份验证信息进行匹配验证,当身份验证信息与合法验证信息匹配时,则该身份验证信息验证通过。保证了用户终端信息的安全,提高了用户的体验,方便了用户的使用。 The embodiment of the invention provides a password verification method and device, a mobile terminal and a computer storage medium. By obtaining identity verification information, the identity verification information is matched and verified according to the pre-stored legal verification information, and when the identity verification information matches the legal verification information, , the authentication information is verified. The security of the user terminal information is ensured, the user experience is improved, and the user's use is facilitated.

Claims (11)

一种密码验证方法,包括:A method of password verification, including: 获取身份验证信息,所述身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数;Obtaining authentication information, where the authentication information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter; 根据预存的合法验证信息对所述身份验证信息进行匹配验证;Performing matching verification on the authentication information according to pre-stored legal verification information; 当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过。When the authentication information matches the legal verification information, the identity verification passes. 根据权利要求1所述的密码验证方法,其中,所述终端的运行参数包括终端的放置参数和终端的应用参数中的至少一种。The password verification method according to claim 1, wherein the operating parameter of the terminal comprises at least one of a placement parameter of the terminal and an application parameter of the terminal. 根据权利要求2所述的密码验证方法,其中,在根据所述预存的合法验证信息对所述身份验证信息进行匹配验证之前,还包括:The password verification method according to claim 2, further comprising: before performing the matching verification on the identity verification information according to the pre-stored legal verification information, further comprising: 根据用户预先在所述终端上输入原始验证参数进行注册;Registering according to the user inputting the original verification parameter on the terminal in advance; 采集所述终端的原始运行参数,所述原始运行参数为用户输入所述原始验证参数进行注册时终端的运行参数;Collecting an original running parameter of the terminal, where the original running parameter is an operating parameter of the terminal when the user inputs the original verification parameter to register; 根据所述原始验证参数以及原始运行参数生成合法验证信息,并进行存储。The legal verification information is generated according to the original verification parameter and the original operation parameter, and is stored. 根据权利要求3所述的密码验证方法,其中,所述根据预存的合法验证信息对所述身份验证信息进行匹配验证包括:The password verification method according to claim 3, wherein the performing verification verification on the identity verification information according to the pre-stored legal verification information comprises: 将所述用户输入的验证参数与预存的合法验证信息中的原始验证参数进行比较;Comparing the verification parameter input by the user with the original verification parameter in the pre-stored legal verification information; 在所述验证参数与所述原始验证参数相同时,将所述终端的运行参数与预存的合法验证信息中终端的原始运行参数进行比较。And when the verification parameter is the same as the original verification parameter, comparing the operation parameter of the terminal with the original operation parameter of the terminal in the pre-stored legal verification information. 根据权利要求3所述的密码验证方法,其中,所述根据预存的合法验证信息对所述身份验证信息进行匹配验证包括:The password verification method according to claim 3, wherein the performing verification verification on the identity verification information according to the pre-stored legal verification information comprises: 将所述用户输入的验证参数和终端的运行参数与预存的合法验证信息中的原始验证参数进行比较; Comparing the verification parameter input by the user and the operation parameter of the terminal with the original verification parameter in the pre-stored legal verification information; 将所述终端的运行参数与预存的合法验证信息中终端的原始运行参数进行比较。Comparing the operating parameters of the terminal with the original operating parameters of the terminal in the pre-stored legal verification information. 根据权利要求1至5任一项所述的密码验证方法,其中,当所述身份验证信息为解锁验证信息时,在所述身份验证通过之后,还包括:对所述终端进行解锁处理;The password verification method according to any one of claims 1 to 5, wherein, when the identity verification information is the unlocking verification information, after the identity verification is passed, the method further includes: performing an unlocking process on the terminal; 或,当所述身份验证信息为支付验证信息时,在所述身份验证通过之后,还包括:对所述终端上的支付应用进行支付处理。Or, when the authentication information is the payment verification information, after the identity verification is passed, the method further includes: performing payment processing on the payment application on the terminal. 一种密码验证装置,包括:接收模块和验证模块;A password verification apparatus includes: a receiving module and a verification module; 所述获取模块配置为获取身份验证信,所述身份验证信息包括用户输入的验证参数以及用户输入验证参数时终端的运行参数;The obtaining module is configured to obtain an identity verification message, where the identity verification information includes a verification parameter input by the user and an operation parameter of the terminal when the user inputs the verification parameter; 所述验证模块配置为根据预存的合法验证信息对所述身份验证信息进行匹配验证;当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过。The verification module is configured to perform matching verification on the identity verification information according to the pre-stored legal verification information; when the identity verification information matches the legal verification information, the identity verification is passed. 根据权利要求7所述的密码验证装置,其中,还包括注册模块,配置为根据用户预先在所述终端上输入原始验证参数进行注册,采集所述终端的原始运行参数,所述原始运行参数为用户输入所述原始验证参数进行注册时终端的运行参数,根据所述原始验证参数以及原始运行参数生成合法验证信息,并进行存储。The password verification apparatus according to claim 7, further comprising a registration module configured to register according to a user inputting an original verification parameter on the terminal in advance, and collecting original operation parameters of the terminal, where the original operation parameter is The user inputs the running parameters of the terminal when the original verification parameter is registered, generates legal verification information according to the original verification parameter and the original running parameter, and stores the data. 一种移动终端,包括:采集单元、加速度传感器单元、处理器和存储单元;A mobile terminal includes: an acquisition unit, an acceleration sensor unit, a processor, and a storage unit; 所述采集单元配置为获取身份验证信息中的用户输入的验证参数,并发送至所述处理器;The collecting unit is configured to obtain a verification parameter input by the user in the authentication information, and send the verification parameter to the processor; 所述加速度传感器单元配置为获取身份验证信息中的用户输入验证参数时终端的运行参数,并发送至所述处理器;The acceleration sensor unit is configured to obtain an operation parameter of the terminal when the user inputs the verification parameter in the identity verification information, and sends the operation parameter to the processor; 所述处理器配置为根据预存的合法验证信息对所述采集单元和加速度 传感器单元获取到的身份验证信息进行匹配验证,当所述身份验证信息与所述合法验证信息匹配时,所述身份验证通过;The processor is configured to pair the acquisition unit and the acceleration according to pre-stored legal verification information The identity verification information obtained by the sensor unit performs matching verification, and when the identity verification information matches the legal verification information, the identity verification passes; 所述存储单元配置为存储所述用户输入的验证参数、终端的运行参数以及合法验证信息。The storage unit is configured to store the verification parameter input by the user, the operation parameter of the terminal, and legal verification information. 根据权利要求9所述的移动终端,其中,还包括注册单元,配置为通过所述注册单元输入原始验证参数进行注册,并采集用户输入所述原始验证参数进行注册时终端的原始运行参数,将所述原始验证参数和终端的原始运行参数发送至所述存储单元上进行存储。The mobile terminal according to claim 9, further comprising a registration unit configured to input the original verification parameter by the registration unit to register, and collect an original operation parameter of the terminal when the user inputs the original verification parameter to register, The original verification parameter and the original operational parameters of the terminal are sent to the storage unit for storage. 一种计算机存储介质,存储有可执行指令,用于执行权利要求1至6任一项所述的密码验证方法。 A computer storage medium storing executable instructions for performing the password verification method according to any one of claims 1 to 6.
PCT/CN2016/105746 2016-07-28 2016-11-14 Password authentication method and device, mobile terminal, and computer storage medium Ceased WO2018018787A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201610614578.5A CN107665294A (en) 2016-07-28 2016-07-28 A kind of method of password authentication and device, mobile terminal
CN201610614578.5 2016-07-28

Publications (1)

Publication Number Publication Date
WO2018018787A1 true WO2018018787A1 (en) 2018-02-01

Family

ID=61015636

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/105746 Ceased WO2018018787A1 (en) 2016-07-28 2016-11-14 Password authentication method and device, mobile terminal, and computer storage medium

Country Status (2)

Country Link
CN (1) CN107665294A (en)
WO (1) WO2018018787A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108718359A (en) * 2018-04-25 2018-10-30 维沃移动通信有限公司 A security verification method, device and mobile terminal
CN112380510B (en) * 2020-11-20 2024-08-02 北京百度网讯科技有限公司 Information verification method, device, electronic equipment and storage medium
CN119584125A (en) * 2024-11-22 2025-03-07 国网天津市电力公司 A terminal identity authentication method based on identity identification password

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1443382A2 (en) * 2003-01-21 2004-08-04 Samsung Electronics Co., Ltd. User authentication method and apparatus
CN101739527A (en) * 2008-11-14 2010-06-16 英业达股份有限公司 Password authentication method and password authentication device
CN101867650A (en) * 2010-05-21 2010-10-20 宇龙计算机通信科技(深圳)有限公司 Method and device for protecting user behavior at operating terminal
CN105007276A (en) * 2015-07-29 2015-10-28 广东欧珀移动通信有限公司 Safety Verification Method and System

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104156071B (en) * 2014-08-22 2017-07-21 小米科技有限责任公司 Screen password is set, the method and device of lock screen is solved

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1443382A2 (en) * 2003-01-21 2004-08-04 Samsung Electronics Co., Ltd. User authentication method and apparatus
CN101739527A (en) * 2008-11-14 2010-06-16 英业达股份有限公司 Password authentication method and password authentication device
CN101867650A (en) * 2010-05-21 2010-10-20 宇龙计算机通信科技(深圳)有限公司 Method and device for protecting user behavior at operating terminal
CN105007276A (en) * 2015-07-29 2015-10-28 广东欧珀移动通信有限公司 Safety Verification Method and System

Also Published As

Publication number Publication date
CN107665294A (en) 2018-02-06

Similar Documents

Publication Publication Date Title
AU2022202047B2 (en) Remote usage of locally stored biometric authentication data
US10579784B2 (en) System, device, and method of secure utilization of fingerprints for user authentication
KR102387568B1 (en) Method and apparatus for authentication based on fingerprint recognition
US20160085958A1 (en) Methods and apparatus for multi-factor user authentication with two dimensional cameras
US20090320123A1 (en) Method and apparatus for user recognition employing motion passwords
US9202035B1 (en) User authentication based on biometric handwriting aspects of a handwritten code
US20200366670A1 (en) A system and method for authenticating a user
EP3655874B1 (en) Method and electronic device for authenticating a user
US9619041B2 (en) Biometric authentication apparatus and biometric authentication method
TWI754964B (en) Authentication system, authentication device, authentication method, and program product
WO2018018787A1 (en) Password authentication method and device, mobile terminal, and computer storage medium
US12019719B2 (en) Method and electronic device for authenticating a user
US11586717B2 (en) Method and electronic device for authenticating a user
US11704401B2 (en) Multi-factor authentication via mixed reality
US10380331B2 (en) Device authentication
EP3593269B1 (en) Methods for enrolling a user and for authentication of a user of an electronic device
WO2018164630A1 (en) Methods for enrolling a user and for authentication of a user of an electronic device
KR20230018111A (en) Method and apparatus of managing access authority
CN107391996B (en) Identity verification method and device based on L1 norm neural network
CN111353139A (en) Continuous authentication method and device, electronic equipment and storage medium
JPWO2021131059A1 (en) Authentication system, authentication device, authentication method, and program
US9405891B1 (en) User authentication
KR20180051742A (en) Face recognition system and method
KR101823057B1 (en) Method and apparatus for authentication using layered pattern
WO2017143653A1 (en) User equipment and unlocking method therefor

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16910366

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16910366

Country of ref document: EP

Kind code of ref document: A1