[go: up one dir, main page]

CN102811228A - Network service login method, device and system - Google Patents

Network service login method, device and system Download PDF

Info

Publication number
CN102811228A
CN102811228A CN2012103206628A CN201210320662A CN102811228A CN 102811228 A CN102811228 A CN 102811228A CN 2012103206628 A CN2012103206628 A CN 2012103206628A CN 201210320662 A CN201210320662 A CN 201210320662A CN 102811228 A CN102811228 A CN 102811228A
Authority
CN
China
Prior art keywords
user
verification
code
random sequence
application server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2012103206628A
Other languages
Chinese (zh)
Other versions
CN102811228B (en
Inventor
田新雪
马书惠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN201210320662.8A priority Critical patent/CN102811228B/en
Publication of CN102811228A publication Critical patent/CN102811228A/en
Application granted granted Critical
Publication of CN102811228B publication Critical patent/CN102811228B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a network business login method, equipment and a system, wherein the method comprises the steps as follows: calculating a random sequence code and a verification code to generate a first verification information based on authentication algorithm after receiving a network business login request through a server; then, sending the random sequence code and the verification code to a user terminal through an IP router respectively; sending the random sequence code and the verification code to a mobile terminal corresponding to a user name through a mobile switching network; and when receiving a second verification information generated by calculating the random sequence code and the verification code based on local authentication algorithm through the user terminal, determining whether the first verification information and the second verification are the same to verify whether users can login legally, thereby verifying the legality of the users by transmitting the verification information through two channels which are the mobile switching network and the IP router, and further simplifying the login process of the users, avoiding the hidden danger that a user password is intercepted during transmission in single channel information, and improving the security and the usability of user network business.

Description

网络业务登录方法、设备和系统Network service login method, device and system

技术领域 technical field

本发明实施例涉及通信技术领域,尤其涉及一种网络业务登录方法、设备和系统。The embodiments of the present invention relate to the technical field of communications, and in particular, to a network service login method, device and system.

背景技术 Background technique

随着互联网技术的快速发展,为了满足人们的实际应用需要,网络业务越来越多样化。With the rapid development of Internet technology, in order to meet people's actual application needs, network services are becoming more and more diversified.

现有技术中,用户进行网络业务时首先需要在用户终端输入预先注册的用户名和用户密码登录与该网络业务对应的应用服务器才能进行相关的网络业务。在实际应用中,为了安全起见,用户登录不同网站时一般习惯设置不同的用户密码进行登录。In the prior art, when a user performs network services, he first needs to enter a pre-registered user name and user password at a user terminal to log in to an application server corresponding to the network service to perform related network services. In practical applications, for the sake of security, it is generally customary for users to set different user passwords to log in to different websites.

由此可见,基于目前的网络访问方式,用户需要记忆大量的用户密码登录不同网络业务的服务器进行访问,并且不法分子容易在用户登录时截获用户的登录信息,不利于用户进行网络访问。It can be seen that based on the current network access method, users need to memorize a large number of user passwords to log in to servers of different network services for access, and criminals can easily intercept the user's login information when the user logs in, which is not conducive to the user's network access.

发明内容 Contents of the invention

针对现有技术的上述缺陷,本发明实施例提供一种网络业务登录方法、设备和系统。In view of the above-mentioned defects in the prior art, embodiments of the present invention provide a network service login method, device and system.

本发明一方面提供一种网络业务登录方法,包括:One aspect of the present invention provides a network service login method, including:

接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息;receiving a network service login request including a user name sent by a user through a user terminal, and calculating a random sequence code and a verification code according to a preset authentication algorithm to generate first verification information corresponding to the user;

将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述用户名对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述用户名对应的移动终端;Send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or send the verification code to the user terminal through IP routing The user terminal, and sending the random sequence code to a mobile terminal corresponding to the user name through a mobile switching network;

接收所述用户终端发送的、包含第二验证信息的网络业务验证请求,并确定所述第一验证信息和第二验证信息是否相同以验证所述用户是否合法,其中,所述第二验证信息是所述用户终端根据当地存储的鉴权算法对所述随机序列码和所述验证码进行计算所生成的,若验证合法,则允许所述用户登录。receiving a network service verification request sent by the user terminal and including second verification information, and determining whether the first verification information and second verification information are the same to verify whether the user is legal, wherein the second verification information It is generated by the user terminal calculating the random sequence code and the verification code according to the locally stored authentication algorithm, and if the verification is valid, the user is allowed to log in.

本发明另一方面提供一种网络业务登录方法,包括:Another aspect of the present invention provides a network service login method, including:

接收用户输入的待进行登录的网站的用户名,并向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求;receiving the user name of the website to be logged in input by the user, and sending a network service login request including the user name to the application server corresponding to the website;

接收所述应用服务器通过IP路由发送的随机序列码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的验证码,或者,接收所述应用服务器通过IP路由发送的验证码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的随机序列码,其中,所述随机序列码和所述验证码是所述应用服务器在接收所述网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息时所用的随机序列码和验证码;receiving the random sequence code sent by the application server through the IP route, and the verification code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, or receiving the The verification code sent by the application server through IP routing, and the random sequence code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, wherein the random sequence The code and the verification code are the first verification information corresponding to the user generated by the application server calculating a random sequence code and a verification code according to a preset authentication algorithm after receiving the network service login request The random sequence code and verification code used at the time;

根据本地预存的鉴权算法对所述随机序列码和所述验证码进行计算生成与所述用户对应的第二验证信息,并向所述应用服务器发送包含所述第二验证信息的网络业务验证请求,以供所述应用服务器根据所述第一验证信息和第二验证信息验证所述用户是否合法以确定是否允许所述用户登录。Calculate the random sequence code and the verification code according to the local pre-stored authentication algorithm to generate second verification information corresponding to the user, and send the network service verification including the second verification information to the application server A request is used for the application server to verify whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in.

本发明又一方面提供一种应用服务器,包括:Another aspect of the present invention provides an application server, including:

第一处理模块,用于接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息;The first processing module is configured to receive a network service login request including a user name sent by a user through a user terminal, and calculate a random sequence code and a verification code according to a preset authentication algorithm to generate a corresponding to the user first verification information;

第二处理模块,用于将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述用户名对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述用户名对应的移动终端;The second processing module is configured to send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or send the The verification code is sent to the user terminal through IP routing, and the random sequence code is sent to the mobile terminal corresponding to the user name through the mobile switching network;

验证模块,用于接收所述用户终端发送的、包含第二验证信息的网络业务验证请求,并确定所述第一验证信息和第二验证信息是否相同以验证所述用户是否合法,其中,所述第二验证信息是所述用户终端根据当地存储的鉴权算法对所述随机序列码和所述验证码进行计算所生成的,若验证合法,则允许所述用户登录。A verification module, configured to receive a network service verification request sent by the user terminal and including second verification information, and determine whether the first verification information and the second verification information are the same to verify whether the user is legal, wherein the The second verification information is generated by the user terminal by calculating the random sequence code and the verification code according to a locally stored authentication algorithm, and if the verification is valid, the user is allowed to log in.

本发明再一方面提供一种用户终端,包括:Another aspect of the present invention provides a user terminal, including:

登录请求模块,用于接收用户输入的待进行登录的网站的用户名,并向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求;The login request module is configured to receive the user name of the website to be logged in input by the user, and send a network service login request including the user name to the application server corresponding to the website;

获取模块,用于接收所述应用服务器通过IP路由发送的随机序列码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的验证码,或者,接收所述应用服务器通过IP路由发送的验证码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的随机序列码,其中,所述随机序列码和所述验证码是所述应用服务器在接收所述网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息时所用的随机序列码和验证码;An acquisition module, configured to receive the random sequence code sent by the application server through IP routing, and the verification code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network , or, receiving the verification code sent by the application server through the IP route, and the random sequence code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, wherein The random sequence code and the verification code are calculated by the application server according to a preset authentication algorithm after receiving the network service login request to generate a random sequence code and a verification code corresponding to the user. The random sequence code and verification code used for the first verification information;

验证请求模块,用于根据本地预存的鉴权算法对所述随机序列码和所述验证码进行计算生成与所述用户对应的第二验证信息,并向所述应用服务器发送包含所述第二验证信息的网络业务验证请求,以供所述应用服务器根据所述第一验证信息和第二验证信息验证所述用户是否合法以确定是否允许所述用户登录。A verification request module, configured to calculate the random sequence code and the verification code according to a locally prestored authentication algorithm to generate second verification information corresponding to the user, and send the second verification information containing the second verification information to the application server. A network service verification request for verification information, for the application server to verify whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in.

本发明另一方面提供一种网络业务登录系统,包括:移动终端、上述的应用服务器和用户终端。Another aspect of the present invention provides a network service login system, including: a mobile terminal, the above-mentioned application server and a user terminal.

本发明实施例提供的网络业务登录方法、设备和系统,通过应用服务器接收网络业务登录请求后,根据鉴权算法对一随机序列码和一验证码进行计算生成第一验证信息,然后将该随机序列码和该验证码分别通过IP路由发送给用户终端,通过移动交换网发送给与用户名对应的移动终端,当接收用户终端根据当地的鉴权算法对该随机序列码和该验证码进行计算生成的第二验证信息,确定第一验证信息和第二验证信息是否相同以验证用户是否能够合法登录,从而实现了通过移动交换网和IP路由两个通道传输验证信息以对用户合法性进行验证,简化了用户的登录流程,避免了用户密码在单一通道信息中传输被截获的隐患,提高了用户网络业务的安全性和易用性。In the network service login method, device and system provided by the embodiments of the present invention, after receiving the network service login request through the application server, a random sequence code and a verification code are calculated according to the authentication algorithm to generate the first verification information, and then the random The sequence code and the verification code are sent to the user terminal through the IP route, and sent to the mobile terminal corresponding to the user name through the mobile switching network. When receiving the user terminal, the random sequence code and the verification code are calculated according to the local authentication algorithm. The generated second verification information determines whether the first verification information and the second verification information are the same to verify whether the user can log in legally, thereby realizing the transmission of verification information through two channels of the mobile switching network and IP routing to verify the legitimacy of the user , which simplifies the user's login process, avoids the hidden danger of the user's password being intercepted when transmitted in a single channel of information, and improves the security and ease of use of the user's network business.

附图说明 Description of drawings

图1为本发明网络业务登录方法一个实施例的流程图;Fig. 1 is a flowchart of an embodiment of the network service login method of the present invention;

图2为本发明网络业务登录方法另一实施例的流程图;Fig. 2 is a flow chart of another embodiment of the network service login method of the present invention;

图3为本发明应用服务器一个实施例的结构示意图;FIG. 3 is a schematic structural diagram of an embodiment of the application server of the present invention;

图4为本发明用户终端一个实施例的结构示意图;FIG. 4 is a schematic structural diagram of an embodiment of a user terminal according to the present invention;

图5为本发明网络业务登录系统一个实施例的结构示意图。Fig. 5 is a schematic structural diagram of an embodiment of the network service login system of the present invention.

具体实施方式 Detailed ways

图1为本发明网络业务登录方法一个实施例的流程图,如图1所示,该方法包括:Fig. 1 is a flowchart of an embodiment of the network service login method of the present invention, as shown in Fig. 1, the method includes:

步骤100,接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息;Step 100: Receive a network service login request including a user name sent by a user through a user terminal, and calculate a random sequence code and a verification code according to a preset authentication algorithm to generate first verification information corresponding to the user ;

用户通过用户终端打开待进行访问的网络业务的登录界面,输入预先注册的与该网络业务对应的用户名并进行登录,从而与该网络业务对应的应用服务器接收到用户通过用户终端发送的网络业务登录请求并进行解析,从而获取用户的用户名。然后该应用服务器根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与该用户对应的第一验证信息。The user opens the login interface of the network service to be accessed through the user terminal, enters the pre-registered user name corresponding to the network service and logs in, so that the application server corresponding to the network service receives the network service sent by the user through the user terminal The login request is parsed to obtain the user's username. Then the application server calculates a random sequence code and a verification code according to a preset authentication algorithm to generate first verification information corresponding to the user.

步骤101,将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述用户名对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述用户名对应的移动终端;Step 101, sending the random sequence code to the user terminal through IP routing, and sending the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or sending the verification code through the IP sending the route to the user terminal, and sending the random sequence code to the mobile terminal corresponding to the user name through the mobile switching network;

应用服务器通过鉴权算法对一随机序列码和一验证码进行计算生成与该用户对应的第一验证信息后,将该随机序列码和该验证码分别通过IP路由和移动交换网双通道传输给该用户,具体为:应用服务器通过用户终端发送网络业务登录请求所用的IP路由通道将该随机序列码返回给用户终端,以及通过移动交换网中的可信任通道,比如语音通道或者短信通道将该验证码发送给与该用户名对应的移动终端;或者,应用服务器通过用户终端发送网络业务登录请求所用的IP路由通道将该验证码返回给用户终端,以及通过移动交换网中的可信任通道,比如语音通道或者短信通道将该随机序列码发送给与该用户名对应的移动终端。After the application server calculates a random sequence code and a verification code through an authentication algorithm to generate the first verification information corresponding to the user, the random sequence code and the verification code are respectively transmitted to The user, specifically: the application server returns the random sequence code to the user terminal through the IP routing channel used by the user terminal to send the network service login request, and sends the random sequence code to the user terminal through a trusted channel in the mobile switching network, such as a voice channel or an SMS channel The verification code is sent to the mobile terminal corresponding to the user name; or, the application server returns the verification code to the user terminal through the IP routing channel used by the user terminal to send the network service login request, and through the trusted channel in the mobile switching network, For example, the voice channel or the short message channel sends the random sequence code to the mobile terminal corresponding to the user name.

需要说明是,本实施例提供的与用户名对应的移动终端具体包括以下情况:情况一:若用户发送的网络业务登录请求中的用户名为手机号码,则应用服务器能够从用户发送的网络业务登录请求中获取该手机号码,进而在应用鉴权算法对一随机序列码和一验证码进行计算生成与该用户对应的第一验证信息后,可以通过移动交换网中的可信任通道,比如语音通道或者短信通道将该随机序列码或者验证码发送给与该手机号码对应的移动终端。情况二:若用户发送的网络业务登录请求中的用户名不是手机号码,则应用服务器从用户发送的网络业务登录请求中获取该用户名后,查询本地预先存储的用户信息,该用户信息存储有用户申请该网络业务的注册信息,包括用户名以及与其绑定的手机号码,从而应用服务器根据该用户信息判断是否包含与该用户名对应的手机号码。若应用服务器能够从该用户信息中获取与该用户名对应的手机号码,进而在应用鉴权算法对一随机序列码和一验证码进行计算生成与该用户对应的第一验证信息后,可以通过移动交换网中的可信任通道,比如语音通道或者短信通道将该随机序列码或者验证码发送给与该手机号码对应的移动终端。若应用服务器不能够从该用户信息中获取与该用户名对应的手机号码,则说明该用户并没有在注册时提供绑定的手机号码,因此,应用服务器向该用户终端发送手机号码验证请求,提示该用户将手机号码作为用户名重新发送网络业务登录请求,从而当用户通过用户终端接收到应用服务器发送的手机号码验证请求后,重新输入一手机号码作为用户名向该应用服务器重新发送网络业务登录请求。It should be noted that the mobile terminal corresponding to the user name provided in this embodiment specifically includes the following situations: Situation 1: If the user name in the network service login request sent by the user is a mobile phone number, the application server can receive The mobile phone number is obtained in the login request, and after applying the authentication algorithm to calculate a random sequence code and a verification code to generate the first verification information corresponding to the user, the mobile phone number can be passed through the trusted channel in the mobile switching network, such as voice The channel or short message channel sends the random sequence code or verification code to the mobile terminal corresponding to the mobile phone number. Case 2: If the user name in the network service login request sent by the user is not a mobile phone number, the application server obtains the user name from the network service login request sent by the user, and queries the user information stored locally. The registration information of the user applying for the network service includes the user name and the mobile phone number bound to it, so that the application server judges whether the mobile phone number corresponding to the user name is included according to the user information. If the application server can obtain the mobile phone number corresponding to the user name from the user information, and then apply the authentication algorithm to calculate a random sequence code and a verification code to generate the first verification information corresponding to the user, it can pass A trusted channel in the mobile switching network, such as a voice channel or a short message channel, sends the random sequence code or verification code to the mobile terminal corresponding to the mobile phone number. If the application server cannot obtain the mobile phone number corresponding to the user name from the user information, it means that the user did not provide a bound mobile phone number during registration, so the application server sends a mobile phone number verification request to the user terminal, Prompt the user to resend the network service login request with the mobile phone number as the user name, so that when the user receives the mobile phone number verification request sent by the application server through the user terminal, re-enter a mobile phone number as the user name to resend the network service to the application server Login request.

值得注意的是,本实施例中的移动终端为手机、智能手机等终端设备,用户终端包括个人电脑、笔记本电脑、智能手机等,因此,本实施例中的移动终端和用户终端可以相同也可以不同,举例说明,当用户采用智能手机进行网络访问,并且将该智能手机的手机号码作为用户名或者作为与用户名绑定的手机号码,那么用户终端和移动终端为同一个终端设备;当用户采用笔记本电脑进行网络访问,将手机的手机号码作为用户名或者作为与用户名绑定的手机号码,那么用户终端和移动终端不为同一个终端设备。It is worth noting that the mobile terminal in this embodiment is a terminal device such as a mobile phone or a smart phone, and the user terminal includes a personal computer, a notebook computer, a smart phone, etc. Therefore, the mobile terminal and the user terminal in this embodiment can be the same or can be Different, for example, when the user uses a smart phone to access the network, and the mobile phone number of the smart phone is used as the user name or as the mobile phone number bound to the user name, then the user terminal and the mobile terminal are the same terminal device; when the user If a laptop is used for network access, and the mobile phone number of the mobile phone is used as the user name or as the mobile phone number bound to the user name, then the user terminal and the mobile terminal are not the same terminal device.

步骤102,接收所述用户终端发送的、包含第二验证信息的网络业务验证请求,并确定所述第一验证信息和第二验证信息是否相同以验证所述用户是否合法,其中,所述第二验证信息是所述用户终端根据当地存储的鉴权算法对所述随机序列码和所述验证码进行计算所生成的,若验证合法,则允许所述用户登录。Step 102, receiving a network service verification request sent by the user terminal and including second verification information, and determining whether the first verification information and the second verification information are the same to verify whether the user is legal, wherein the first The second verification information is generated by the user terminal by calculating the random sequence code and the verification code according to a locally stored authentication algorithm. If the verification is valid, the user is allowed to log in.

当用户通过移动终端接收应用服务器通过移动交换网中的可信任通道,比如语音通道或者短信通道返回的随机序列码,将该随机序列码输入到用户终端,从而用户终端根据当地存储的鉴权算法对用户输入的随机序列码,以及应用服务器通过IP路由返回的验证码进行计算生成与该用户对应的第二验证信息;或者,当用户通过移动终端接收应用服务器通过移动交换网中的可信任通道,比如语音通道或者短信通道返回的验证码,将该验证码输入到用户终端,从而用户终端根据当地存储的鉴权算法对用户输入的验证码,以及应用服务器通过IP路由返回的随机序列码进行计算生成与该用户对应的第二验证信息。然后用户通过用户终端向该应用服务器发送包含该第二验证信息的网络业务验证请求,从而应用服务器对接收到的网络业务验证请求进行解析获取第二验证信息,并将自身之前生成的第一验证信息与该第二验证信息进行比较确定是否相同以验证该用户是否合法,若第一验证信息与第二验证信息相同,则说明该用户合法,允许该用户登录进行相关的网络业务,若第一验证信息与第二验证信息不相同,则说明该用户不合法,不允许该用户登录提示该用户重新登录。When the user receives the random sequence code returned by the application server through a trusted channel in the mobile switching network, such as a voice channel or a short message channel, through the mobile terminal, the random sequence code is input into the user terminal, so that the user terminal uses the authentication algorithm stored locally Calculate the random sequence code input by the user and the verification code returned by the application server through IP routing to generate the second verification information corresponding to the user; or, when the user receives the application server through the mobile terminal through the trusted channel in the mobile switching network , such as the verification code returned by the voice channel or SMS channel, input the verification code into the user terminal, so that the user terminal performs verification on the verification code entered by the user and the random sequence code returned by the application server through the IP route according to the authentication algorithm stored locally. Calculate and generate second verification information corresponding to the user. Then the user sends a network service verification request containing the second verification information to the application server through the user terminal, so that the application server parses the received network service verification request to obtain the second verification information, and uses the first verification information generated by itself to obtain the second verification information. The information is compared with the second verification information to determine whether they are the same to verify whether the user is legal. If the first verification information is the same as the second verification information, it means that the user is legal, and the user is allowed to log in to perform related network services. If the first If the verification information is different from the second verification information, it means that the user is not legal, and the user is not allowed to log in and the user is prompted to log in again.

本实施例提供的网络业务登录方法,通过应用服务器接收网络业务登录请求后,根据鉴权算法对一随机序列码和一验证码进行计算生成第一验证信息,然后将该随机序列码和该验证码分别通过IP路由发送给用户终端,通过移动交换网发送给与用户名对应的移动终端,当接收用户终端根据当地的鉴权算法对该随机序列码和该验证码进行计算生成的第二验证信息,确定第一验证信息和第二验证信息是否相同以验证用户是否能够合法登录,从而实现了通过移动交换网和IP路由两个通道传输验证信息以对用户合法性进行验证,简化了用户的登录流程,避免了用户密码在单一通道信息中传输被截获的隐患,提高了用户网络业务的安全性和易用性。In the network service login method provided in this embodiment, after the application server receives the network service login request, it calculates a random sequence code and a verification code according to an authentication algorithm to generate first verification information, and then combines the random sequence code with the verification code The codes are sent to the user terminal through the IP route, and sent to the mobile terminal corresponding to the user name through the mobile switching network. When receiving the second verification generated by the user terminal according to the local authentication algorithm, the random sequence code and the verification code are calculated. Information, determine whether the first verification information and the second verification information are the same to verify whether the user can log in legally, thereby realizing the transmission of verification information through the two channels of the mobile switching network and IP routing to verify the legitimacy of the user, simplifying the user's The login process avoids the hidden danger of user passwords being intercepted when transmitted in a single channel of information, and improves the security and ease of use of user network services.

图2为本发明网络业务登录方法另一实施例的流程图,如图2所示,该方法包括:Fig. 2 is a flow chart of another embodiment of the network service login method of the present invention. As shown in Fig. 2, the method includes:

步骤200,接收用户输入的待进行登录的网站的用户名,并向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求;Step 200, receiving the user name of the website to be logged in input by the user, and sending a network service login request including the user name to the application server corresponding to the website;

步骤201,接收所述应用服务器通过IP路由发送的随机序列码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的验证码,或者,接收所述应用服务器通过IP路由发送的验证码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的随机序列码,其中,所述随机序列码和所述验证码是所述应用服务器在接收所述网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息时所用的随机序列码和验证码;Step 201, receiving the random sequence code sent by the application server through IP routing, and the verification code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, or , receiving the verification code sent by the application server through IP routing, and the random sequence code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, wherein the The random sequence code and the verification code are calculated by the application server according to the preset authentication algorithm after receiving the network service login request to generate the first corresponding to the user. - Random sequence code and verification code used when verifying information;

步骤202,根据本地预存的鉴权算法对所述随机序列码和所述验证码进行计算生成与所述用户对应的第二验证信息,并向所述应用服务器发送包含所述第二验证信息的网络业务验证请求,以供所述应用服务器根据所述第一验证信息和第二验证信息验证所述用户是否合法以确定是否允许所述用户登录。Step 202: Calculate the random sequence code and the verification code according to the local pre-stored authentication algorithm to generate second verification information corresponding to the user, and send a message containing the second verification information to the application server A network service verification request, used by the application server to verify whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in.

需要注意的是,在向与网站对应的应用服务器发送包含所述用户名的网络业务登录请求之后,所述方法还包括:若接收该应用服务器发送的、用于提示用户将手机号码作为用户名的手机号码验证请求,则向该应用服务器发送包括手机号码的网络业务登录请求。It should be noted that, after sending the network service login request including the user name to the application server corresponding to the website, the method further includes: if receiving the request from the application server for prompting the user to use the mobile phone number as the user name mobile phone number verification request, send a network service login request including the mobile phone number to the application server.

本实施例提供的网络业务登录方法中各模块的功能和处理流程,可以参见上述图1所示的方法实施例,其实现原理和技术效果类似,此处不再赘述。For the functions and processing flow of each module in the network service login method provided in this embodiment, refer to the method embodiment shown in FIG. 1 above. The implementation principles and technical effects are similar, and will not be repeated here.

本领域普通技术人员可以理解:实现上述方法实施例的全部或部分步骤可以通过程序指令相关的硬件来完成,前述的程序可以存储于一计算机可读取存储介质中,该程序在执行时,执行包括上述方法实施例的步骤;而前述的存储介质包括:ROM、RAM、磁碟或者光盘等各种可以存储程序代码的介质。Those of ordinary skill in the art can understand that all or part of the steps for realizing the above-mentioned method embodiments can be completed by hardware related to program instructions, and the aforementioned program can be stored in a computer-readable storage medium. When the program is executed, the It includes the steps of the above method embodiments; and the aforementioned storage medium includes: ROM, RAM, magnetic disk or optical disk and other various media that can store program codes.

图3为本发明应用服务器一个实施例的结构示意图,如图3所示,该应用服务器包括:第一处理模块11、第二处理模块12和验证模块13,其中,第一处理模块11用于接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与用户对应的第一验证信息;第二处理模块12用于将随机序列码通过IP路由发送给用户终端,以及将验证码通过移动交换网发送给与用户名对应的移动终端,或者,将验证码通过IP路由发送给用户终端,以及将随机序列码通过移动交换网发送给与用户名对应的移动终端;验证模块13用于接收用户终端发送的、包含第二验证信息的网络业务验证请求,并确定第一验证信息和第二验证信息是否相同以验证用户是否合法,其中,第二验证信息是用户终端根据当地存储的鉴权算法对随机序列码和验证码进行计算所生成的,若验证合法,则允许用户登录。Figure 3 is a schematic structural diagram of an embodiment of the application server of the present invention, as shown in Figure 3, the application server includes: a first processing module 11, a second processing module 12 and a verification module 13, wherein the first processing module 11 is used for Receive a network service login request including a user name sent by a user through a user terminal, and calculate a random sequence code and a verification code according to a preset authentication algorithm to generate first verification information corresponding to the user; the second processing module 12 is used to send the random sequence code to the user terminal through the IP route, and send the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or send the verification code to the user terminal through the IP route, and send the random sequence code The code is sent to the mobile terminal corresponding to the user name through the mobile switching network; the verification module 13 is used to receive the network service verification request sent by the user terminal and including the second verification information, and determine whether the first verification information and the second verification information are the same To verify whether the user is legal, wherein the second verification information is generated by the user terminal by calculating the random sequence code and the verification code according to the locally stored authentication algorithm, and if the verification is legal, the user is allowed to log in.

其中,若所述用户名为手机号码,第二处理模块12具体用于:将随机序列码通过IP路由发送给所述用户终端,以及将验证码通过移动交换网发送给与手机号码对应的移动终端,或者,将验证码通过IP路由发送给用户终端,以及将随机序列码通过移动交换网发送给与手机号码对应的移动终端;若所述用户名为非手机号码,第二处理模块12具体用于:若根据预存的用户信息获取与用户名对应的手机号码,则将随机序列码通过IP路由发送给用户终端,以及将验证码通过移动交换网发送给与手机号码对应的移动终端,或者,将验证码通过IP路由发送给用户终端,以及将随机序列码通过移动交换网发送给与手机号码对应的移动终端;若根据用户信息没有获取与用户名对应的手机号码,则向用户终端发送手机号码验证请求,提示用户将手机号码作为用户名重新发送网络业务登录请求。Wherein, if the user name is a mobile phone number, the second processing module 12 is specifically configured to: send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile phone number corresponding to the mobile phone number through the mobile switching network. terminal, or send the verification code to the user terminal through IP routing, and send the random sequence code to the mobile terminal corresponding to the mobile phone number through the mobile switching network; if the user name is not a mobile phone number, the second processing module 12 specifically It is used for: if the mobile phone number corresponding to the user name is obtained according to the pre-stored user information, the random sequence code is sent to the user terminal through IP routing, and the verification code is sent to the mobile terminal corresponding to the mobile phone number through the mobile switching network, or , send the verification code to the user terminal through IP routing, and send the random sequence code to the mobile terminal corresponding to the mobile phone number through the mobile switching network; if the mobile phone number corresponding to the user name is not obtained according to the user information, then send it to the user terminal Mobile phone number verification request, prompting the user to resend the network service login request with the mobile phone number as the user name.

本实施例提供的应用服务器中各模块的功能和处理流程,可以参见上述图1所示的方法实施例,其实现原理和技术效果类似,此处不再赘述。For the functions and processing flow of each module in the application server provided by this embodiment, refer to the method embodiment shown in FIG. 1 above. The implementation principles and technical effects are similar and will not be repeated here.

图4为本发明用户终端一个实施例的结构示意图,如图4所示,该用户终端包括:登录请求模块21、获取模块22和验证请求模块23,其中,登录请求模块21用于接收用户输入的待进行登录的网站的用户名,并向与网站对应的应用服务器发送包含用户名的网络业务登录请求;获取模块22用于接收应用服务器通过IP路由发送的随机序列码,以及用户输入的、通过与用户名对应的移动终端接收的应用服务器通过移动交换网发送的验证码,或者,接收应用服务器通过IP路由发送的验证码,以及用户输入的、通过与用户名对应的移动终端接收的应用服务器通过移动交换网发送的随机序列码,其中,随机序列码和验证码是应用服务器在接收网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与用户对应的第一验证信息时所用的随机序列码和验证码;验证请求模块23用于根据本地预存的鉴权算法对随机序列码和验证码进行计算生成与用户对应的第二验证信息,并向应用服务器发送包含第二验证信息的网络业务验证请求,以供应用服务器根据第一验证信息和第二验证信息验证用户是否合法以确定是否允许用户登录。Fig. 4 is a schematic structural diagram of an embodiment of the user terminal of the present invention. As shown in Fig. 4, the user terminal includes: a login request module 21, an acquisition module 22 and a verification request module 23, wherein the login request module 21 is used to receive user input The user name of the website to be logged in, and send a network service login request including the user name to the application server corresponding to the website; the acquisition module 22 is used to receive the random sequence code sent by the application server through IP routing, and the user input, The verification code sent by the application server through the mobile switching network received by the mobile terminal corresponding to the user name, or the verification code sent by the application server through the IP route, and the application input by the user and received by the mobile terminal corresponding to the user name The random sequence code sent by the server through the mobile switching network, wherein the random sequence code and verification code are calculated and generated by the application server according to a preset authentication algorithm after receiving the network service login request. The random sequence code and verification code used for the first verification information corresponding to the user; the verification request module 23 is used to calculate the random sequence code and verification code according to the local pre-stored authentication algorithm to generate the second verification information corresponding to the user, and Sending a network service verification request including the second verification information to the application server, so that the application server verifies whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in.

进一步地,获取模块22,还用于在向与网站对应的应用服务器发送包含用户名的网络业务登录请求之后,接收应用服务器发送的、用于提示用户将手机号码作为用户名的手机号码验证请求;登录请求模块21,还用于向应用服务器发送包括手机号码的网络业务登录请求。Further, the obtaining module 22 is also configured to receive a mobile phone number verification request sent by the application server for prompting the user to use the mobile phone number as the user name after sending the network service login request including the user name to the application server corresponding to the website The login request module 21 is also used to send a network service login request including a mobile phone number to the application server.

本实施例提供的用户终端中各模块的功能和处理流程,可以参见上述图2所示的方法实施例,其实现原理和技术效果类似,此处不再赘述。For the functions and processing flow of each module in the user terminal provided in this embodiment, refer to the method embodiment shown in FIG. 2 above. The implementation principles and technical effects are similar, and will not be repeated here.

图5为本发明网络业务登录系统一个实施例的结构示意图,如图5所示,该系统包括:移动终端1、应用服务器2和用户终端3,其中,应用服务器2和用户终端3可以采用本发明实施例中提供的应用服务器和用户终端,移动终端1为本发明所示实施例中涉及的移动终端。Fig. 5 is a schematic structural diagram of an embodiment of the network service login system of the present invention. As shown in Fig. 5, the system includes: a mobile terminal 1, an application server 2 and a user terminal 3, wherein the application server 2 and the user terminal 3 can use this The application server and the user terminal provided in the embodiment of the invention, the mobile terminal 1 is the mobile terminal involved in the shown embodiment of the invention.

本实施例提供的网络业务登录系统中各模块的功能和处理流程,可以参见上述所示的方法实施例,其实现原理和技术效果类似,此处不再赘述。For the functions and processing flow of each module in the network service login system provided by this embodiment, refer to the method embodiment shown above, and its implementation principle and technical effect are similar, and will not be repeated here.

最后应说明的是:以上实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的精神和范围。Finally, it should be noted that: the above embodiments are only used to illustrate the technical solutions of the present invention, rather than to limit them; although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that: it can still be Modifications are made to the technical solutions described in the foregoing embodiments, or equivalent replacements are made to some of the technical features; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions of the various embodiments of the present invention.

Claims (10)

1.一种网络业务登录方法,其特征在于,包括:1. A network service login method, characterized in that, comprising: 接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息;receiving a network service login request including a user name sent by a user through a user terminal, and calculating a random sequence code and a verification code according to a preset authentication algorithm to generate first verification information corresponding to the user; 将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述用户名对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述用户名对应的移动终端;Send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or send the verification code to the user terminal through IP routing The user terminal, and sending the random sequence code to a mobile terminal corresponding to the user name through a mobile switching network; 接收所述用户终端发送的、包含第二验证信息的网络业务验证请求,并确定所述第一验证信息和第二验证信息是否相同以验证所述用户是否合法,其中,所述第二验证信息是所述用户终端根据当地存储的鉴权算法对所述随机序列码和所述验证码进行计算所生成的,若验证合法,则允许所述用户登录。receiving a network service verification request sent by the user terminal and including second verification information, and determining whether the first verification information and second verification information are the same to verify whether the user is legal, wherein the second verification information It is generated by the user terminal calculating the random sequence code and the verification code according to the locally stored authentication algorithm, and if the verification is valid, the user is allowed to log in. 2.根据权利要求1所述的网络业务登录方法,其特征在于,2. The network service login method according to claim 1, characterized in that, 若所述用户名为手机号码,If the user name is a mobile phone number, 所述发送给与所述用户名对应的移动终端具体为:The sending to the mobile terminal corresponding to the user name is specifically: 发送给与所述手机号码对应的移动终端;Send to the mobile terminal corresponding to the mobile phone number; 若所述用户名为非手机号码,If the user name is not a mobile phone number, 所述发送给与所述用户名对应的移动终端具体为:The sending to the mobile terminal corresponding to the user name is specifically: 若根据预存的用户信息获取与所述用户名对应的手机号码,则发送给与所述手机号码对应的移动终端;If the mobile phone number corresponding to the user name is obtained according to the prestored user information, then it is sent to the mobile terminal corresponding to the mobile phone number; 若根据所述用户信息没有获取与所述用户名对应的手机号码,则向所述用户终端发送手机号码验证请求,提示所述用户将手机号码作为用户名重新发送网络业务登录请求。If the mobile phone number corresponding to the user name is not obtained according to the user information, a mobile phone number verification request is sent to the user terminal, prompting the user to resend the network service login request using the mobile phone number as the user name. 3.根据权利要求1或2所述的网络业务登录方法,其特征在于,所述移动终端为所述用户终端。3. The network service login method according to claim 1 or 2, wherein the mobile terminal is the user terminal. 4.一种网络业务登录方法,其特征在于,包括:4. A network service login method, characterized in that, comprising: 接收用户输入的待进行登录的网站的用户名,并向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求;receiving the user name of the website to be logged in input by the user, and sending a network service login request including the user name to the application server corresponding to the website; 接收所述应用服务器通过IP路由发送的随机序列码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的验证码,或者,接收所述应用服务器通过IP路由发送的验证码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的随机序列码,其中,所述随机序列码和所述验证码是所述应用服务器在接收所述网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息时所用的随机序列码和验证码;receiving the random sequence code sent by the application server through the IP route, and the verification code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, or receiving the The verification code sent by the application server through IP routing, and the random sequence code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, wherein the random sequence The code and the verification code are the first verification information corresponding to the user generated by the application server calculating a random sequence code and a verification code according to a preset authentication algorithm after receiving the network service login request The random sequence code and verification code used at the time; 根据本地预存的鉴权算法对所述随机序列码和所述验证码进行计算生成与所述用户对应的第二验证信息,并向所述应用服务器发送包含所述第二验证信息的网络业务验证请求,以供所述应用服务器根据所述第一验证信息和第二验证信息验证所述用户是否合法以确定是否允许所述用户登录。Calculate the random sequence code and the verification code according to the local pre-stored authentication algorithm to generate second verification information corresponding to the user, and send the network service verification including the second verification information to the application server A request is used for the application server to verify whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in. 5.根据权利要求4所述的网络业务登录方法,其特征在于,在所述向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求之后,所述方法还包括:5. The network service login method according to claim 4, characterized in that, after sending the network service login request including the user name to the application server corresponding to the website, the method further comprises: 接收所述应用服务器发送的、用于提示所述用户将手机号码作为用户名的手机号码验证请求;receiving a mobile phone number verification request sent by the application server for prompting the user to use the mobile phone number as the user name; 向所述应用服务器发送包括手机号码的网络业务登录请求。Sending a network service login request including a mobile phone number to the application server. 6.一种应用服务器,其特征在于,包括:6. An application server, characterized in that, comprising: 第一处理模块,用于接收用户通过用户终端发送的、包含用户名的网络业务登录请求,并根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息;The first processing module is configured to receive a network service login request including a user name sent by a user through a user terminal, and calculate a random sequence code and a verification code according to a preset authentication algorithm to generate a corresponding to the user first verification information; 第二处理模块,用于将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述用户名对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述用户名对应的移动终端;The second processing module is configured to send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile terminal corresponding to the user name through the mobile switching network, or send the The verification code is sent to the user terminal through IP routing, and the random sequence code is sent to the mobile terminal corresponding to the user name through the mobile switching network; 验证模块,用于接收所述用户终端发送的、包含第二验证信息的网络业务验证请求,并确定所述第一验证信息和第二验证信息是否相同以验证所述用户是否合法,其中,所述第二验证信息是所述用户终端根据当地存储的鉴权算法对所述随机序列码和所述验证码进行计算所生成的,若验证合法,则允许所述用户登录。A verification module, configured to receive a network service verification request sent by the user terminal and including second verification information, and determine whether the first verification information and the second verification information are the same to verify whether the user is legal, wherein the The second verification information is generated by the user terminal by calculating the random sequence code and the verification code according to a locally stored authentication algorithm, and if the verification is valid, the user is allowed to log in. 7.根据权利要求6所述的应用服务器,其特征在于,7. The application server according to claim 6, characterized in that, 若所述用户名为手机号码,If the user name is a mobile phone number, 所述第二处理模块具体用于:将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述手机号码对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述手机号码对应的移动终端;The second processing module is specifically configured to: send the random sequence code to the user terminal through IP routing, and send the verification code to the mobile terminal corresponding to the mobile phone number through a mobile switching network, or, sending the verification code to the user terminal through IP routing, and sending the random sequence code to the mobile terminal corresponding to the mobile phone number through a mobile switching network; 若所述用户名为非手机号码,If the user name is not a mobile phone number, 所述第二处理模块具体用于:若根据预存的用户信息获取与所述用户名对应的手机号码,则将所述随机序列码通过IP路由发送给所述用户终端,以及将所述验证码通过移动交换网发送给与所述手机号码对应的移动终端,或者,将所述验证码通过IP路由发送给所述用户终端,以及将所述随机序列码通过移动交换网发送给与所述手机号码对应的移动终端;若根据所述用户信息没有获取与所述用户名对应的手机号码,则向所述用户终端发送手机号码验证请求,提示所述用户将手机号码作为用户名重新发送网络业务登录请求。The second processing module is specifically configured to: if the mobile phone number corresponding to the user name is obtained according to the pre-stored user information, then send the random sequence code to the user terminal through IP routing, and send the verification code Send the mobile terminal corresponding to the mobile phone number through the mobile switching network, or send the verification code to the user terminal through IP routing, and send the random sequence code to the mobile phone through the mobile switching network The mobile terminal corresponding to the number; if the mobile phone number corresponding to the user name is not obtained according to the user information, a mobile phone number verification request is sent to the user terminal, prompting the user to use the mobile phone number as the user name to resend the network service Login request. 8.一种用户终端,其特征在于,包括:8. A user terminal, characterized in that, comprising: 登录请求模块,用于接收用户输入的待进行登录的网站的用户名,并向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求;The login request module is configured to receive the user name of the website to be logged in input by the user, and send a network service login request including the user name to the application server corresponding to the website; 获取模块,用于接收所述应用服务器通过IP路由发送的随机序列码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的验证码,或者,接收所述应用服务器通过IP路由发送的验证码,以及所述用户输入的、通过与所述用户名对应的移动终端接收的所述应用服务器通过移动交换网发送的随机序列码,其中,所述随机序列码和所述验证码是所述应用服务器在接收所述网络业务登录请求后,根据预设的鉴权算法对一随机序列码和一验证码进行计算生成与所述用户对应的第一验证信息时所用的随机序列码和验证码;An acquisition module, configured to receive the random sequence code sent by the application server through IP routing, and the verification code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network , or, receiving the verification code sent by the application server through the IP route, and the random sequence code input by the user and received by the mobile terminal corresponding to the user name and sent by the application server through the mobile switching network, wherein The random sequence code and the verification code are calculated by the application server according to a preset authentication algorithm after receiving the network service login request to generate a random sequence code and a verification code corresponding to the user. The random sequence code and verification code used for the first verification information; 验证请求模块,用于根据本地预存的鉴权算法对所述随机序列码和所述验证码进行计算生成与所述用户对应的第二验证信息,并向所述应用服务器发送包含所述第二验证信息的网络业务验证请求,以供所述应用服务器根据所述第一验证信息和第二验证信息验证所述用户是否合法以确定是否允许所述用户登录。A verification request module, configured to calculate the random sequence code and the verification code according to a locally prestored authentication algorithm to generate second verification information corresponding to the user, and send the second verification information containing the second verification information to the application server. A network service verification request for verification information, for the application server to verify whether the user is legal according to the first verification information and the second verification information to determine whether to allow the user to log in. 9.根据权利要求8所述的用户终端,其特征在于,9. The user terminal according to claim 8, characterized in that, 所述获取模块,还用于在所述向与所述网站对应的应用服务器发送包含所述用户名的网络业务登录请求之后,接收所述应用服务器发送的、用于提示所述用户将手机号码作为用户名的手机号码验证请求;The acquisition module is further configured to receive the request sent by the application server for prompting the user to provide the mobile phone number after sending the network service login request including the user name to the application server corresponding to the website. Mobile phone number verification request as username; 所述登录请求模块,还用于向所述应用服务器发送包括手机号码的网络业务登录请求。The login request module is further configured to send a network service login request including a mobile phone number to the application server. 10.一种网络业务登录系统,其特征在于,包括:移动终端、如权利要求6或7所述的应用服务器,以及如权利要求8或9所述的用户终端。10. A network service login system, comprising: a mobile terminal, the application server according to claim 6 or 7, and the user terminal according to claim 8 or 9.
CN201210320662.8A 2012-08-31 2012-08-31 Network login method, equipment and system Active CN102811228B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210320662.8A CN102811228B (en) 2012-08-31 2012-08-31 Network login method, equipment and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210320662.8A CN102811228B (en) 2012-08-31 2012-08-31 Network login method, equipment and system

Publications (2)

Publication Number Publication Date
CN102811228A true CN102811228A (en) 2012-12-05
CN102811228B CN102811228B (en) 2016-07-06

Family

ID=47234803

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210320662.8A Active CN102811228B (en) 2012-08-31 2012-08-31 Network login method, equipment and system

Country Status (1)

Country Link
CN (1) CN102811228B (en)

Cited By (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014161259A1 (en) * 2013-07-26 2014-10-09 中兴通讯股份有限公司 Verification code processing method, device, terminal and server
CN104113556A (en) * 2014-07-31 2014-10-22 国家超级计算深圳中心(深圳云计算中心) Network logon authentication method and system, mobile terminal and application server
CN104426904A (en) * 2013-09-08 2015-03-18 王正伟 Automatic login method
CN105187368A (en) * 2015-06-05 2015-12-23 惠州Tcl移动通信有限公司 Method and system for accessing to applications of mobile terminal
CN105208014A (en) * 2015-08-31 2015-12-30 腾讯科技(深圳)有限公司 Voice communication processing method, electronic device and system
CN105323207A (en) * 2014-06-06 2016-02-10 南京理工大学常熟研究院有限公司 Web portal security login method preventing AP intercepting
CN105515781A (en) * 2016-01-19 2016-04-20 上海众人网络安全技术有限公司 Login system of application platform and login method thereof
CN105828329A (en) * 2015-11-16 2016-08-03 广东亿迅科技有限公司 Authentication management method for mobile terminals
CN106453263A (en) * 2016-09-19 2017-02-22 惠州Tcl移动通信有限公司 Method and system of binding cellphone number with APP
CN106611117A (en) * 2015-10-22 2017-05-03 北大方正集团有限公司 Recommendation connection verification method and recommendation connection verification device
CN107733838A (en) * 2016-08-11 2018-02-23 中国移动通信集团安徽有限公司 A kind of mobile terminal client terminal identity identifying method, device and system
CN108154020A (en) * 2017-12-20 2018-06-12 珠海市魅族科技有限公司 A kind of identifying code input and display methods and equipment
CN109688109A (en) * 2018-11-21 2019-04-26 武汉极意网络科技有限公司 The verification method and device of identifying code based on client-side information identification
CN112632520A (en) * 2020-11-23 2021-04-09 北京思特奇信息技术股份有限公司 Method and system for real-name registration of group telephone service
WO2021159669A1 (en) * 2020-02-14 2021-08-19 深圳壹账通智能科技有限公司 Secure system login method and apparatus, computer device, and storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1697379A (en) * 2005-06-22 2005-11-16 王李琰 A method for authenticating user identity of public network security communication service based on identification cryptographic technology
CN1811813A (en) * 2006-03-02 2006-08-02 韩林 Two-factor dynamic cipher verification method and system
US20090119754A1 (en) * 2006-02-03 2009-05-07 Mideye Ab System, an Arrangement and a Method for End User Authentication
CN101834834A (en) * 2009-03-09 2010-09-15 华为软件技术有限公司 An authentication method, device and authentication system
CN102111275A (en) * 2011-04-01 2011-06-29 王冬梅 User authentication and authorization method and system for implementing user authentication and authorization method
CN102271035A (en) * 2011-09-02 2011-12-07 华为技术有限公司 Method and device for transmitting password
CN102651739A (en) * 2011-02-28 2012-08-29 阿里巴巴集团控股有限公司 Login verification method, system and instant messaging (IM) server

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1697379A (en) * 2005-06-22 2005-11-16 王李琰 A method for authenticating user identity of public network security communication service based on identification cryptographic technology
US20090119754A1 (en) * 2006-02-03 2009-05-07 Mideye Ab System, an Arrangement and a Method for End User Authentication
CN1811813A (en) * 2006-03-02 2006-08-02 韩林 Two-factor dynamic cipher verification method and system
CN101834834A (en) * 2009-03-09 2010-09-15 华为软件技术有限公司 An authentication method, device and authentication system
CN102651739A (en) * 2011-02-28 2012-08-29 阿里巴巴集团控股有限公司 Login verification method, system and instant messaging (IM) server
CN102111275A (en) * 2011-04-01 2011-06-29 王冬梅 User authentication and authorization method and system for implementing user authentication and authorization method
CN102271035A (en) * 2011-09-02 2011-12-07 华为技术有限公司 Method and device for transmitting password

Cited By (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014161259A1 (en) * 2013-07-26 2014-10-09 中兴通讯股份有限公司 Verification code processing method, device, terminal and server
CN104426904A (en) * 2013-09-08 2015-03-18 王正伟 Automatic login method
CN105323207A (en) * 2014-06-06 2016-02-10 南京理工大学常熟研究院有限公司 Web portal security login method preventing AP intercepting
CN104113556A (en) * 2014-07-31 2014-10-22 国家超级计算深圳中心(深圳云计算中心) Network logon authentication method and system, mobile terminal and application server
CN105187368A (en) * 2015-06-05 2015-12-23 惠州Tcl移动通信有限公司 Method and system for accessing to applications of mobile terminal
CN105187368B (en) * 2015-06-05 2019-09-20 惠州Tcl移动通信有限公司 A kind of access method and access system of mobile terminal application
CN105208014A (en) * 2015-08-31 2015-12-30 腾讯科技(深圳)有限公司 Voice communication processing method, electronic device and system
CN105208014B (en) * 2015-08-31 2018-09-25 腾讯科技(深圳)有限公司 A kind of voice communication processing method, electronic equipment and system
WO2017036365A1 (en) * 2015-08-31 2017-03-09 腾讯科技(深圳)有限公司 Voice communication processing method, electronic device, system and storage medium
US10412227B2 (en) 2015-08-31 2019-09-10 Tencent Technology (Shenzhen) Company Limited Voice communication processing method and system, electronic device, and storage medium
CN106611117A (en) * 2015-10-22 2017-05-03 北大方正集团有限公司 Recommendation connection verification method and recommendation connection verification device
CN106611117B (en) * 2015-10-22 2019-08-06 北大方正集团有限公司 Recommended connection verification method and recommended connection verification device
CN105828329A (en) * 2015-11-16 2016-08-03 广东亿迅科技有限公司 Authentication management method for mobile terminals
CN105828329B (en) * 2015-11-16 2019-07-30 广东亿迅科技有限公司 Mobile terminal authentication management method
CN105515781A (en) * 2016-01-19 2016-04-20 上海众人网络安全技术有限公司 Login system of application platform and login method thereof
CN105515781B (en) * 2016-01-19 2018-09-14 上海众人网络安全技术有限公司 A kind of application platform login system and its login method
CN107733838A (en) * 2016-08-11 2018-02-23 中国移动通信集团安徽有限公司 A kind of mobile terminal client terminal identity identifying method, device and system
CN106453263A (en) * 2016-09-19 2017-02-22 惠州Tcl移动通信有限公司 Method and system of binding cellphone number with APP
CN108154020A (en) * 2017-12-20 2018-06-12 珠海市魅族科技有限公司 A kind of identifying code input and display methods and equipment
CN109688109A (en) * 2018-11-21 2019-04-26 武汉极意网络科技有限公司 The verification method and device of identifying code based on client-side information identification
CN109688109B (en) * 2018-11-21 2021-05-25 武汉极意网络科技有限公司 Verification method and device of verification code based on client information identification
WO2021159669A1 (en) * 2020-02-14 2021-08-19 深圳壹账通智能科技有限公司 Secure system login method and apparatus, computer device, and storage medium
CN112632520A (en) * 2020-11-23 2021-04-09 北京思特奇信息技术股份有限公司 Method and system for real-name registration of group telephone service
CN112632520B (en) * 2020-11-23 2024-03-19 北京思特奇信息技术股份有限公司 Method and system for registering real names of group telephone services

Also Published As

Publication number Publication date
CN102811228B (en) 2016-07-06

Similar Documents

Publication Publication Date Title
CN102811228B (en) Network login method, equipment and system
US20240333701A1 (en) Secure authentication for accessing remote resources
US9722984B2 (en) Proximity-based authentication
US8819800B2 (en) Protecting user information
JP5231433B2 (en) System and method for authenticating remote server access
CN103636162B (en) Via the Verification System of two communication equipments
CN103428696B (en) Virtual SIM card achieving method and system and relevant device
CN104917727B (en) A kind of method, system and device of account's authentication
CN103685139B (en) Certificate Authority processing method and processing device
US8893244B2 (en) Application-based credential management for multifactor authentication
US20120240211A1 (en) Policy-based authentication
US20160380999A1 (en) User Identifier Based Device, Identity and Activity Management System
CN102217280B (en) Method, system, and server for user service authentication
CN105681259A (en) Open authorization method and apparatus and open platform
CN102801713A (en) Website logging-in method and system as well as accessing management platform
CN102802150B (en) phone number verification method, system and terminal
WO2017076216A1 (en) Server, mobile terminal, and internet real name authentication system and method
CN103944861A (en) Voice verification system
CN102984261B (en) Network service login method, equipment and system based on mobile telephone terminal
Laka et al. User perspective and security of a new mobile authentication method
US20150180851A1 (en) Method, device, and system for registering terminal application
CN103124252B (en) Client application access authentication treating method and apparatus
US9553863B2 (en) Computer implemented method and system for an anonymous communication and computer program thereof
CN103428161A (en) Phone authentication service system
US10454929B2 (en) Authenticating for an enterprise service

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant