[go: up one dir, main page]

CN112966238B - Identity Authentication Method Based on Chinese Characters - Google Patents

Identity Authentication Method Based on Chinese Characters Download PDF

Info

Publication number
CN112966238B
CN112966238B CN202110256527.0A CN202110256527A CN112966238B CN 112966238 B CN112966238 B CN 112966238B CN 202110256527 A CN202110256527 A CN 202110256527A CN 112966238 B CN112966238 B CN 112966238B
Authority
CN
China
Prior art keywords
user
information
chinese character
password
client
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202110256527.0A
Other languages
Chinese (zh)
Other versions
CN112966238A (en
Inventor
韩刚
郑东
杨腾飞
罗维
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xian University of Posts and Telecommunications
Original Assignee
Xian University of Posts and Telecommunications
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xian University of Posts and Telecommunications filed Critical Xian University of Posts and Telecommunications
Priority to CN202110256527.0A priority Critical patent/CN112966238B/en
Publication of CN112966238A publication Critical patent/CN112966238A/en
Application granted granted Critical
Publication of CN112966238B publication Critical patent/CN112966238B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y04INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
    • Y04SSYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
    • Y04S40/00Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
    • Y04S40/20Information technology specific aspects, e.g. CAD, simulation, modelling, system security

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Document Processing Apparatus (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The embodiment of the invention relates to an identity authentication method based on Chinese characters. Comprising the following steps: acquiring user request information uploaded by a client; when the user request information is login request information, first instruction information is issued to the client, and the client displays a user information confirmation window according to the first instruction information; receiving user information uploaded by a client, and judging whether the user information is registered user information or not; when the user information is registered, determining password information associated with the user information according to the user information; the password information is sent to the client, and the client generates a password unlocking window according to the password information; and acquiring and judging whether the user unlocking information uploaded by the client meets a first preset condition, and determining that the user identity authentication is successful when the user unlocking information meets the first preset condition. According to the authentication method, the graphic password based on Chinese characters is adopted, so that the vulnerability of the user password is reduced to a certain extent, and the identity security authentication is realized by providing higher randomness of the password.

Description

基于中文字符的身份认证方法Identity Authentication Method Based on Chinese Characters

技术领域technical field

本发明实施例涉及信息安全技术领域,尤其涉及一种基于中文字符的身份认证方法。The embodiment of the present invention relates to the technical field of information security, in particular to an identity authentication method based on Chinese characters.

背景技术Background technique

随着移动设备的普及和移动应用的迅速发展,移动终端用户的密码安全就显得尤为重要。一旦用户重要应用的密码泄露,将会给用户造成难以估计的损失。因此,密码安全的重点在于身份认证方式。With the popularity of mobile devices and the rapid development of mobile applications, the password security of mobile terminal users is particularly important. Once the password of the user's important application is leaked, it will cause inestimable losses to the user. Therefore, the focus of password security lies in the identity authentication method.

在身份认证系统的密码设定过程中,用户设置的密码能够反映出用户的惯性选择和使用规律,当从四个维度进行分析时,能够发现密码设定的位数、字母书写的规律(是否区分大小写等)、密码中数字字符的比重和用户惯用的密码组合、密码设定的对比度等因素,这些因素会在一定程度上呈现出重复性和规律性特点,此类密码往往很容易受到敌手攻击,存在较低的安全性、存在攻击难度低、容易遭受黑客攻击等安全隐患。In the password setting process of the identity authentication system, the password set by the user can reflect the user's inertial choice and usage rules. When analyzing from four dimensions, it can be found that the number of digits set in the password and the rule of letter writing (whether Case sensitive, etc.), the proportion of numeric characters in the password, the combination of passwords used by users, the contrast of password settings, etc., these factors will appear repetitive and regular to a certain extent, such passwords are often vulnerable There are security risks such as low security, low attack difficulty, and vulnerability to hacker attacks.

相关技术中,传统密码口令的脆弱性,体现在用户密码设计行为具有惯性、用户的联想型记忆模式倾向于选择常用的有语义的密码、用户的输入惰性以及密码本身的易泄漏性等。因此,其安全性、机密性和灵活性较低。In related technologies, the vulnerability of traditional passwords is reflected in the inertia of user password design behavior, the user's associative memory mode tends to choose commonly used semantic passwords, the user's input inertia, and the easy leakage of passwords themselves. Therefore, its security, confidentiality and flexibility are low.

因此,有必要改善上述相关技术方案中存在的一个或者多个问题。Therefore, it is necessary to improve one or more problems existing in the above related technical solutions.

需要注意的是,本部分旨在为权利要求书中陈述的本发明的实施方式提供背景或上下文。此处的描述不因为包括在本部分中就承认是现有技术。It should be noted that this section is intended to provide a background or context for implementations of the invention that are recited in the claims. The descriptions herein are not admitted to be prior art by inclusion in this section.

发明内容Contents of the invention

本发明实施例的目的在于提供一种基于中文字符的身份认证方法,进而至少在一定程度上克服由于相关技术的限制和缺陷而导致的一个或者多个问题。The purpose of the embodiment of the present invention is to provide an identity authentication method based on Chinese characters, and then at least to a certain extent overcome one or more problems caused by limitations and defects of related technologies.

根据本发明实施例的第一方面,提供一种基于中文字符的身份认证方法,应用于服务器,包括:According to the first aspect of the embodiments of the present invention, there is provided an identity authentication method based on Chinese characters, which is applied to a server, including:

获取客户端上传的用户请求信息;Obtain the user request information uploaded by the client;

当所述用户请求信息为请求登陆信息时,向所述客户端下发第一指令信息,所述客户端根据所述第一指令信息显示用户信息确认窗口;When the user request information is request login information, send first instruction information to the client, and the client displays a user information confirmation window according to the first instruction information;

接收所述客户端上传的用户信息,判断所述用户信息是否为已注册用户信息;receiving the user information uploaded by the client, and judging whether the user information is registered user information;

当所述用户信息为已注册用户信息时,根据所述用户信息确定与所述用户信息相关联的密码信息;When the user information is registered user information, determine password information associated with the user information according to the user information;

将所述密码信息发送至所述客户端,所述客户端根据所述密码信息生成密码解锁窗口;sending the password information to the client, and the client generates a password unlock window according to the password information;

获取并判断所述客户端上传的用户解锁信息是否满足第一预设条件,当所述用户解锁信息满足第一预设条件时,确定所述用户身份认证成功;Obtaining and judging whether the user unlocking information uploaded by the client satisfies a first preset condition, and when the user unlocking information satisfies the first preset condition, determining that the user identity authentication is successful;

其中,所述密码解锁窗口显示包括n=k×i个中文字符图像,所述i为所述密码解锁窗口每一轮显示的中文字符图像的个数,所述每一轮显示的i个中文字符图像中,至少包含一个目标中文字符图像和至少2个与所述目标中文字符图像相对应的干扰中文字符图像;所述k为所述密码解锁窗口显示中文字符图像的轮数,所述k为1以上的整数。Wherein, the password unlocking window display includes n=k×i Chinese character images, the i is the number of Chinese character images displayed in each round of the password unlocking window, and the i Chinese character images displayed in each round are In the character image, at least one target Chinese character image and at least 2 interference Chinese character images corresponding to the target Chinese character image are included; the k is the number of rounds for the password unlocking window to display the Chinese character image, and the k is an integer of 1 or more.

本发明的一实施例中,还包括:当所述用户信息为未注册用户信息时,向所述客户端发送用户未注册消息,所述客户端根据所述用户未注册消息显示提示信息和引导窗口,提示并引导所述用户进行信息注册和密码设置。In an embodiment of the present invention, it further includes: when the user information is unregistered user information, sending a user unregistered message to the client, and the client displays prompt information and guidance according to the user unregistered message window, prompting and guiding the user to perform information registration and password setting.

本发明的一实施例中,还包括:当所述用户的请求信息为请求注册信息时,向所述客户端下发第二指令信息,所述客户端根据所述第二指令信息显示提示信息和引导窗口,提示并引导所述用户进行信息注册和密码设置。In an embodiment of the present invention, it further includes: when the user's request information is a request for registration information, sending second instruction information to the client, and the client displays prompt information according to the second instruction information and a guide window, prompting and guiding the user to perform information registration and password setting.

本发明的一实施例中,所述引导窗口包括信息注册引导窗口和密码设置引导窗口;所述客户端接收所述用户在注册引导窗口输入的注册信息和在密码设置引导窗口输入的中文字符信息并发送至所述服务器,所述服务器根据所述中文字符生成目标中文字符图像和与所述目标中文字符图像相对应的多个干扰字符图像后,将所述目标中文字符图像和所述多个干扰字符图像与所述用户的注册信息进行关联。In an embodiment of the present invention, the guide window includes an information registration guide window and a password setting guide window; the client receives the registration information input by the user in the registration guide window and the Chinese character information input in the password setting guide window And sent to the server, after the server generates the target Chinese character image and a plurality of interference character images corresponding to the target Chinese character image according to the Chinese characters, the target Chinese character image and the multiple The interfering character image is associated with the registration information of the user.

本发明的一实施例中,所述用户请求信息中包含第一数字签名和第一时间戳,所述服务器通过所述第一数字签名和所述第一时间戳对所述用户请求信息进行认证,认证成功后根据所述用户请求信息向所述客户端下发第一指令信息或第二指令信息。In an embodiment of the present invention, the user request information includes a first digital signature and a first timestamp, and the server authenticates the user request information through the first digital signature and the first timestamp After the authentication is successful, send the first instruction information or the second instruction information to the client according to the user request information.

本发明的一实施例中,所述第一指令信息中包含第二数字签名和第二时间戳,所述客户端通过所述第二数字签名和所述第二时间戳对所述第一指令信息进行认证,认证成功后根据所述第一指令信息显示用户信息确认窗口;In an embodiment of the present invention, the first instruction information includes a second digital signature and a second timestamp, and the client confirms the first instruction through the second digital signature and the second timestamp Information for authentication, after the authentication is successful, a user information confirmation window is displayed according to the first instruction information;

所述第二指令信息中包含第三数字签名和第三时间戳,所述客户端通过所述第三数字签名和所述第三时间戳对所述第二指令信息进行认证,认证成功后根据所述第二指令信息显示提示信息,提示所述用户进行用户信息注册及密码设置。The second instruction information includes a third digital signature and a third time stamp, and the client authenticates the second instruction information through the third digital signature and the third time stamp. After the authentication is successful, according to The second instruction information displays prompt information, prompting the user to register user information and set a password.

本发明的一实施例中,所述密码设置还包括数字密码设置、生物特征密码设置、字母密码设置、智能卡密码设置中的一种或多种。In an embodiment of the present invention, the password settings further include one or more of digital password settings, biometric password settings, letter password settings, and smart card password settings.

本发明的一实施例中,所述获取并判断所述客户端上传的用户解锁信息,当所述用户解锁信息满足第一预设条件时,确定所述用户身份认证成功的步骤,包括:In an embodiment of the present invention, the step of acquiring and judging the user unlock information uploaded by the client, and determining that the user identity authentication is successful when the user unlock information satisfies a first preset condition, includes:

获取所述客户端上传的用户选择的全部中文字符图像信息;Obtaining all the Chinese character image information uploaded by the user selected by the client;

将所述全部中文字符图像和与其对应的标准中文字符图像进行直方图数据采集,得到所述全部中文字符图像和与其对应的标准中文字符图像的相似度值;Collecting the histogram data of all the Chinese character images and the corresponding standard Chinese character images to obtain the similarity values of the all Chinese character images and the corresponding standard Chinese character images;

当所述全部中文字符图像和与其对应的标准中文字符图像的所述相似度值至大于预设阈值时,确定所述用户身份认证成功。When the similarity values between all the Chinese character images and the corresponding standard Chinese character images are greater than a preset threshold, it is determined that the user identity authentication is successful.

本发明的一实施例中,还包括:当所述用户解锁信息不满足第一预设条件时,确定所述用户身份认证失败,将所述密码信息再次发送至客户端,所述客户端根据所述密码信息再次生成密码解锁窗口。In an embodiment of the present invention, it further includes: when the user unlock information does not meet the first preset condition, determining that the user identity authentication fails, and sending the password information to the client again, and the client according to The password information generates a password unlock window again.

本发明的一实施例中,所述用户信息包括用户姓名、用户邮箱、用户手机号码、用户证件号码;In an embodiment of the present invention, the user information includes user name, user mailbox, user mobile phone number, and user certificate number;

当确定所述用户身份认证失败的次数超过预设次数时,向所述用户手机或用户邮箱发送警告信息。When it is determined that the number of failed user identity authentication exceeds a preset number of times, a warning message is sent to the user's mobile phone or user mailbox.

本发明的实施例提供的技术方案可以包括以下有益效果:The technical solutions provided by the embodiments of the present invention may include the following beneficial effects:

本发明的实施例中,上述基于中文字符的身份认证方法,采用基于中文字符的图形口令,一方面,在一定程度上降低了传统基于中文字符的身份认证方法中由于用户密码设置行为具有惯性、用户的输入惰性、系统平台对用户的限制以及用户的联想型记忆模式倾向于选择语义密码等原因造成的用户密码的脆弱性;另一方面,本方法提供密码口令随机性较高而用户的干预度较低,对用户的登录身份实现了进一步的身份安全认证。In the embodiment of the present invention, the above-mentioned identity authentication method based on Chinese characters adopts a graphic password based on Chinese characters. The user's input inertia, the system platform's restrictions on the user, and the user's associative memory mode tend to choose the semantic password. The vulnerability of the user's password is caused by reasons such as; The degree is low, and further identity security authentication is realized for the user's login identity.

附图说明Description of drawings

此处的附图被并入说明书中并构成本说明书的一部分,示出了符合本公开的实施例,并与说明书一起用于解释本公开的原理。显而易见地,下面描述中的附图仅仅是本公开的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the disclosure and together with the description serve to explain the principles of the disclosure. Apparently, the drawings in the following description are only some embodiments of the present disclosure, and those skilled in the art can obtain other drawings according to these drawings without creative efforts.

图1示出本发明示例性实施例中基于中文字符的身份认证方法流程图。Fig. 1 shows a flowchart of an identity authentication method based on Chinese characters in an exemplary embodiment of the present invention.

具体实施方式Detailed ways

现在将参考附图更全面地描述示例实施方式。然而,示例实施方式能够以多种形式实施,且不应被理解为限于在此阐述的范例;相反,提供这些实施方式使得本发明将更加全面和完整,并将示例实施方式的构思全面地传达给本领域的技术人员。所描述的特征、结构或特性可以以任何合适的方式结合在一个或更多实施方式中。Example embodiments will now be described more fully with reference to the accompanying drawings. Example embodiments may, however, be embodied in many forms and should not be construed as limited to the examples set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete and fully convey the concept of example embodiments to those skilled in the art. The described features, structures, or characteristics may be combined in any suitable manner in one or more embodiments.

此外,附图仅为本发明实施例的示意性图解,并非一定是按比例绘制。图中相同的附图标记表示相同或类似的部分,因而将省略对它们的重复描述。附图中所示的一些方框图是功能实体,不一定必须与物理或逻辑上独立的实体相对应。In addition, the drawings are merely schematic illustrations of embodiments of the present invention and are not necessarily drawn to scale. The same reference numerals in the drawings denote the same or similar parts, and thus repeated descriptions thereof will be omitted. Some of the block diagrams shown in the drawings are functional entities and do not necessarily correspond to physically or logically separate entities.

本示例实施方式中首先提供了一种基于中文字符的身份认证方法,应用于服务器。参考图1中所示,该基于中文字符的身份认证方法可以包括:In this exemplary embodiment, firstly, an identity authentication method based on Chinese characters is provided, which is applied to a server. With reference to shown in Fig. 1, this identity authentication method based on Chinese character can comprise:

步骤S101:获取客户端上传的用户请求信息;Step S101: Obtain the user request information uploaded by the client;

步骤S102:当所述用户请求信息为请求登陆信息时,向所述客户端下发第一指令信息,所述客户端根据所述第一指令信息显示用户信息确认窗口;Step S102: when the user request information is a request for login information, send first instruction information to the client, and the client displays a user information confirmation window according to the first instruction information;

步骤S103:接收所述客户端上传的用户信息,判断所述用户信息是否为已注册用户信息;Step S103: receiving the user information uploaded by the client, and judging whether the user information is registered user information;

步骤S104:当所述用户信息为已注册用户信息时,根据所述用户信息确定与所述用户信息相关联的密码信息;Step S104: When the user information is registered user information, determine password information associated with the user information according to the user information;

步骤S105:将所述密码信息发送至所述客户端,所述客户端根据所述密码信息生成密码解锁窗口;Step S105: Send the password information to the client, and the client generates a password unlock window according to the password information;

步骤S106:获取并判断所述客户端上传的用户解锁信息是否满足第一预设条件,当所述用户解锁信息满足第一预设条件时,确定所述用户身份认证成功;Step S106: Obtain and determine whether the user unlock information uploaded by the client satisfies a first preset condition, and when the user unlock information satisfies the first preset condition, determine that the user identity authentication is successful;

其中,所述密码解锁窗口可以显示包括n=k×i个中文字符图像,所述i为所述密码解锁窗口每一轮显示的中文字符图像的个数,所述每一轮显示的i个中文字符图像中,至少包含一个目标中文字符图像和至少2个与所述目标中文字符图像相对应的干扰中文字符图像;所述k为所述密码解锁窗口显示中文字符图像的轮数,所述k为1以上的整数。Wherein, the password unlocking window can display n=k×i Chinese character images, the i is the number of Chinese character images displayed in each round of the password unlocking window, and the i displayed in each round In the Chinese character image, at least one target Chinese character image and at least 2 interference Chinese character images corresponding to the target Chinese character image are included; the k is the number of rounds of the Chinese character image displayed in the password unlocking window, and the k is an integer of 1 or more.

具体的,在步骤S101中,客户端识别用户操作,获取所述用户的请求信息,并将所述用户的请求信息发送至所述服务器,服务器获取所述客户端上传的用户请求信息。Specifically, in step S101, the client identifies user operations, obtains the user's request information, and sends the user's request information to the server, and the server obtains the user request information uploaded by the client.

在步骤S102中,当所述用户请求信息为请求登陆信息时,向所述客户端下发第一指令信息,客户端接收到第一指令信息后根据所述第一指令信息来显示用户信息确认窗口。In step S102, when the user request information is requesting login information, send first instruction information to the client, and after receiving the first instruction information, the client displays user information confirmation according to the first instruction information window.

在步骤S103中,用户在用户确认窗口输入用户信息,例如用户姓名,所述客户端接收所述用户输入的用户信息然后上传至服务器,所述服务器接收到所述客户端上传的用户信息后,可以将用户信息与存储在用户信息库中的用户信息进行比对,当所述用户信息并未出现在所述用户信息库中时,判断所述用户为未注册用户,当所述用户信息出现在所述用户信息库中时,判断所述用户信息为已注册用户信息。In step S103, the user inputs user information in the user confirmation window, such as user name, and the client receives the user information input by the user and then uploads it to the server. After the server receives the user information uploaded by the client, The user information can be compared with the user information stored in the user information database. When the user information does not appear in the user information database, it is judged that the user is an unregistered user. When the user information appears When it is in the user information database, it is determined that the user information is registered user information.

在步骤S104中,当服务器判断所述用户信息为已注册用户时,根据所述用户信息来确定与用户信息进行关联的密码信息,具体的所述密码信息可以是存储在服务器密码信息库中。In step S104, when the server determines that the user information is a registered user, it determines password information associated with the user information according to the user information, and specifically the password information may be stored in a server password information database.

在步骤S105中,服务器将所述密码信息发送至所述客户端,所述客户端根据所述密码信息生成密码解锁窗口提供给用户,用户在密码解锁窗口上进行密码解锁操作。In step S105, the server sends the password information to the client, the client generates a password unlock window according to the password information and provides it to the user, and the user performs a password unlock operation on the password unlock window.

在步骤S106中,所述客户端识别所述用户的解锁操作,并将用户的解锁信息发送至所述服务器,所述服务器判断所述用户的解锁信息是否满足第一预设条件,当满足时确认用户身份认证成功,并将用户登陆成功的信息发送至所述客户端,客户端显示用户登录成功,所述满足第一预设条件即为用户可从k轮中选出所有的目标中文字符图像。In step S106, the client identifies the user's unlocking operation, and sends the user's unlocking information to the server, and the server judges whether the user's unlocking information satisfies the first preset condition. Confirm that the user identity authentication is successful, and send the information that the user has successfully logged in to the client, and the client shows that the user has successfully logged in, and the first preset condition is met, that is, the user can select all target Chinese characters from k rounds image.

其中,所述密码解锁窗口可以显示n=k×i个中文字符图像,所述i为所述密码解锁窗口每一轮显示的中文字符图像的个数,所述k为所述密码解锁窗口显示中文字符图像的轮数,所述k为1以上的整数,所述i个中文字符图像中,至少包含一个目标中文字符图像和至少2个与所述目标中文字符图像相对应的干扰中文字符图像;例如,所述用户的设置的密码为中文字符“一、二、三”,密码解锁窗口每一轮可以显示3×3=9个中文字符图像,可以是这9个中文字符图像中包含“一、二、三”这三个中文字符的目标中文字符图像和分别与这三个目标中文字符图像相对应的两个干扰中文字符图像;也可以是第一轮这个9个中文字符图像中仅包含“一”这一个中文字符的目标中文字符图像,其余8个为与“一”的目标中文字符图像相对应的干扰中文字符图像,然后第二轮9个中文字符图像中仅包含“二”这一个中文字符的目标中文字符图像,其余8个为与“二”的目标中文字符图像相对应的干扰中文字符图像,然后第三轮9个中文字符图像中仅包含“三”这一个中文字符的目标中文字符图像,其余8个为与“三”的目标中文字符图像相对应的干扰中文字符图像。当然密码解锁窗口每一轮可显示的中文字符图像个数还可以是12个、8个等,并不限定于9个。为保证密码解锁窗口每一轮中,同一个目标中文字符图像只能出现一次,需要进行哈希处理,并且哈希处理的结果保存在所述服务器中。Wherein, the password unlocking window can display n=k×i Chinese character images, the i is the number of Chinese character images displayed in each round of the password unlocking window, and the k is the number of Chinese character images displayed in the password unlocking window The number of rounds of Chinese character images, the k is an integer greater than 1, and the i Chinese character images include at least one target Chinese character image and at least two interfering Chinese character images corresponding to the target Chinese character image ; For example, the password set by the user is Chinese characters "one, two, three", and each round of the password unlocking window can display 3*3=9 Chinese character images, which can be that these 9 Chinese character images contain " The target Chinese character image of the three Chinese characters "one, two, three" and two interference Chinese character images corresponding to the three target Chinese character images respectively; The target Chinese character image containing the Chinese character "one", and the remaining 8 are interference Chinese character images corresponding to the target Chinese character image of "one", and then only "two" is contained in the second round of 9 Chinese character images The target Chinese character image of this one Chinese character, the other 8 are the interference Chinese character images corresponding to the target Chinese character image of "two", and then only the Chinese character "three" is included in the third round of 9 Chinese character images The target Chinese character image of , and the remaining 8 are interference Chinese character images corresponding to the target Chinese character image of "three". Of course, the number of Chinese character images that can be displayed in each round of the password unlocking window can be 12, 8, etc., and is not limited to 9. In order to ensure that the same target Chinese character image can only appear once in each round of the password unlocking window, hash processing is required, and the result of hash processing is stored in the server.

并且,在向客户端下发密码信息前,服务器需要对用户注册时输入的中文字符密码进行初始化操作,经过初始化操作,用户才能够在密码解锁窗口对目标中文字符图像进行选择来进行解码,具体的初始化过程可以如下:Moreover, before sending the password information to the client, the server needs to initialize the Chinese character password entered by the user during registration. After the initialization operation, the user can select the target Chinese character image in the password unlock window to decode. The initialization process can be as follows:

(1)服务器从中文字符集中选取用户设置的中文字符,生成密码解锁窗口显示中文字符图像的迭代轮数及每一轮需要显示的中文字符图像,各轮的中文字符图像组合生成中文字符图像集;(1) The server selects the Chinese characters set by the user from the Chinese character set, and generates a password to unlock the window to display the number of iterations of Chinese character images and the Chinese character images that need to be displayed in each round. The Chinese character images of each round are combined to generate a Chinese character image set ;

(2)生成初始向量,中文字符图像上的字符上的每个有像素的点用1表示,没有像素的点用0表示,其中,将表示每个中文字符图像的像素点转换成一个二值矩阵;(2) Generate an initial vector, each pixel point on the character on the Chinese character image is represented by 1, and the point without pixels is represented by 0, wherein, the pixel point representing each Chinese character image is converted into a binary value matrix;

(3)生成干扰素R(x,y),通过干扰素对目标中文字符图像进行处理,使得目标中文字符图像不容易被机器识别或列举。所述干扰素的作用是通过将目标中文字符图像某一行或者列中的某一个点(作用点)平移纵移若干个位置,具体为:(3) Interferon R(x, y) is generated, and the target Chinese character image is processed through the interferon, so that the target Chinese character image is not easy to be recognized or enumerated by the machine. The effect of described interferon is by a certain point (action point) in a row or column of the target Chinese character image being translated and longitudinally shifted several positions, specifically:

假设目标中文字符图像矩阵为一个三行三列的矩阵,其秩为3,干扰素R(1,2),作用点为(1,1),如下所示:Assume that the target Chinese character image matrix is a matrix of three rows and three columns, its rank is 3, the interferon R (1, 2), and the action point is (1, 1), as shown below:

1 0 01 0 0

0 1 00 1 0

0 0 10 0 1

加入干扰素作用后,(1,1)点为1,向右移动1位,下移两位,则产生以下矩阵:After adding the effect of interferon, the point (1, 1) is 1, moving one bit to the right and two bits down, the following matrix is generated:

0 0 00 0 0

0 1 00 1 0

0 1 10 1 1

(4)针对点在移动的过程中产生覆盖的情况,将所覆盖的像素值,向移动的方向进行一位的变动。假设中文字符矩阵是一个三行三列的矩阵,其秩为3,干扰素R(1,1),作用点为(1,1),如下所示:(4) For the situation where the point is covered during the movement, the covered pixel value is changed by one bit in the moving direction. Assuming that the Chinese character matrix is a matrix of three rows and three columns, its rank is 3, interferon R (1, 1), and the action point is (1, 1), as shown below:

1 0 01 0 0

0 1 00 1 0

0 0 10 0 1

作用后,(1,1)点的位置将与(2,2)点的位置重合,即1+1=2。此时,(2,2)点像素值的大小会影响颜色深浅,而颜色均衡有利于最后用户的识别以及方便校验,正常情况下,需要根据目标中文字符图像的像素点的值的大小进行计算,可向右移一位,或者向下移动一位,一般移动至值小的位置。After the action, the position of point (1,1) will coincide with the position of point (2,2), that is, 1+1=2. At this time, the pixel value of point (2, 2) will affect the color depth, and the color balance is conducive to the final user's identification and convenient verification. Under normal circumstances, it needs to be determined according to the pixel value of the target Chinese character image. For calculation, it can be moved one bit to the right, or one bit down, generally to a position with a smaller value.

(5)针对于某一张图片,系统可根据实际需求选择较为合适的干扰素数量,分别作用于不同像素点的位置,干扰素越多,其产生的图片与原图差别越大,记一张图片的干扰素集合为V1={R1(1,1),R2(1,2),...,R1(m,m)},其中m为矩阵的秩。(5) For a certain picture, the system can select a more appropriate amount of interferon according to actual needs, and act on different pixel positions respectively. The more interferon, the greater the difference between the resulting picture and the original picture. The interferon set of a picture is V 1 ={R 1 (1,1), R 2 (1,2),...,R 1 (m,m)}, where m is the rank of the matrix.

(6)针对多个中文字符,需要涉及多张图像,对于每个图像均生成多个干扰素,多张图像的干扰素集合为VS={V1,V2,...,Vn},其中n=k×i。(6) For multiple Chinese characters, multiple images need to be involved, and multiple interferons are generated for each image, and the interferon set of multiple images is VS={V 1 ,V 2 ,...,V n } , where n=k×i.

上述基于中文字符的身份认证方法,采用基于中文字符的图形口令,一方面,在一定程度上降低了传统基于中文字符的身份认证方法中由于用户密码设置行为具有惯性、用户的输入惰性、系统平台对用户的限制以及用户的联想型记忆模式倾向于选择语义密码等原因造成的用户密码的脆弱性;另一方面,本方法提供密码口令随机性较高而用户的干预度较低,对用户的登录身份实现了进一步的身份安全认证。The above-mentioned identity authentication method based on Chinese characters adopts a graphic password based on Chinese characters. On the one hand, it reduces the inertia of user password setting behavior, user input inertia, and system platform to a certain extent in the traditional identity authentication method based on Chinese characters. Restrictions on the user and the user's associative memory mode tend to choose the vulnerability of the user's password due to reasons such as semantic passwords; The login identity realizes further identity security authentication.

下面,将参考图1对本示例实施方式中的上述基于中文字符的身份认证方法中的各个部分进行更详细的说明。Next, each part of the above-mentioned Chinese character-based identity authentication method in this exemplary embodiment will be described in more detail with reference to FIG. 1 .

在一个实施例中,所述基于中文字符的身份认证方法还可以包括:当所述用户信息为未注册用户信息时,向所述客户端发送用户未注册消息,所述客户端根据所述用户未注册消息显示提示信息和引导窗口,提示并引导所述用户进行信息注册和密码设置。具体的,当所述服务器对用户信息进行判断后确定所述用户信息未注册,则向所述客户端发送用户未注册消息,此时客户端会显示提示信息和引导窗口,向用户提示其为未注册用户并逐步引导用户进行信息注册及密码设置。In one embodiment, the Chinese character-based identity authentication method may further include: when the user information is unregistered user information, sending a user unregistered message to the client, and the client sends a user unregistered message according to the user information The unregistered message displays prompt information and a guide window, prompting and guiding the user to perform information registration and password setting. Specifically, when the server determines that the user information is not registered after judging the user information, it sends a user unregistered message to the client, and the client will display a prompt message and a guide window at this time, prompting the user that it is For unregistered users, guide users step by step to register information and set passwords.

在一个实施例中,所述基于中文字符的身份认证方法还可以包括:当所述用户的请求信息为请求注册信息时,向所述客户端下发第二指令信息,所述客户端根据所述第二指令信息显示提示信息和引导窗口,提示并引导所述用户进行信息注册和密码设置。具体的,当所述用户为新用户并需要注册时,用户进行请求注册操作,客户端识别所述用户的操作,并获取用户的请求信息发送至服务器,所述服务器向所述客户端下发第二指令信息,客户端根据第二指令信息向所述用户显示提示信息和引导窗口,向用户提示其为未注册用户并逐步引导用户进行信息注册及密码设置。In one embodiment, the Chinese character-based identity authentication method may further include: when the user's request information is a request for registration information, sending second instruction information to the client, and the client according to the The second instruction information displays prompt information and a guide window, prompting and guiding the user to perform information registration and password setting. Specifically, when the user is a new user and needs to register, the user performs a registration request operation, the client recognizes the user's operation, obtains the user's request information and sends it to the server, and the server sends the For the second instruction information, the client terminal displays prompt information and a guide window to the user according to the second instruction information, reminds the user that he is an unregistered user, and guides the user to register information and set a password step by step.

在一个实施例中,所述引导窗口可以包括信息注册引导窗口和密码设置引导窗口;所述客户端接收所述用户在注册引导窗口输入的注册信息和在密码设置引导窗口输入的中文字符信息并发送至所述服务器,所述服务器根据所述中文字符生成目标中文字符图像和与所述目标中文字符图像相对应的多个干扰字符图像后,将所述目标中文字符图像和所述多个干扰字符图像与所述用户的注册信息进行关联。具体的,所述引导窗口可以包括信息注册引导窗口和密码设置引导窗口,用来引导所述用户进行信息注册和密码设置;当用户在所述引导窗口上输入注册信息并可以采用手写输入中文字符密码后,客户端接收上述信息并发送至服务器,所述服务器根据用户手写输入的中文字符生成目标中文字符图像和与所述目标中文字符图像相对应的多个干扰字符图像,并将上述图像信息与用户的注册信息进行关联,在后续用户进行登陆时,可通过用户信息来匹配登陆密码。In one embodiment, the guide window may include an information registration guide window and a password setting guide window; the client receives the registration information input by the user in the registration guide window and the Chinese character information input in the password setting guide window and After the server generates the target Chinese character image and a plurality of interference character images corresponding to the target Chinese character image according to the Chinese characters, the target Chinese character image and the plurality of interference character images are sent to the server. The character image is associated with the registration information of the user. Specifically, the guide window may include an information registration guide window and a password setting guide window, which are used to guide the user to perform information registration and password setting; when the user inputs registration information on the guide window and can use handwriting to input Chinese characters After the password, the client receives the above information and sends it to the server, the server generates the target Chinese character image and a plurality of interference character images corresponding to the target Chinese character image according to the Chinese characters input by the user, and sends the above image information It is associated with the user's registration information, and when subsequent users log in, the user information can be used to match the login password.

在一个实施例中,所述用户请求信息中可以包含第一数字签名和第一时间戳,所述服务器通过所述第一数字签名和所述第一时间戳对所述用户请求信息进行认证,认证成功后根据所述用户请求信息向所述客户端下发第一指令信息或第二指令信息。具体的,所述用户请求信息中包含有第一数字签名和第一时间戳,所述服务器通过所述第一数字签名和第一时间戳来对用户请求信息进行认证,识别并确定所述发送用户请求信息的客户端为正确且安全的客户端,当认证成功后根据所述用户请求信息向所述客户端下发第一指令信息或第二指令信息,当认证失败时,则断开与所述客户端之间的链接,使得信息获取更加的安全可靠。In an embodiment, the user request information may include a first digital signature and a first time stamp, and the server authenticates the user request information through the first digital signature and the first time stamp, After the authentication is successful, the first instruction information or the second instruction information is sent to the client according to the user request information. Specifically, the user request information includes a first digital signature and a first time stamp, and the server authenticates the user request information through the first digital signature and the first time stamp, and identifies and determines that the sending The client of the user requesting information is a correct and safe client. When the authentication is successful, the first instruction information or the second instruction information is sent to the client according to the user request information. When the authentication fails, the connection with the client is disconnected. The link between the clients makes information acquisition more secure and reliable.

在一个实施例中,所述第一指令信息中可以包含第二数字签名和第二时间戳,所述客户端通过所述第二数字签名和所述第二时间戳对所述第一指令信息进行认证,认证成功后根据所述第一指令信息显示用户信息确认窗口;所述第二指令信息中可以包含第三数字签名和第三时间戳,所述客户端通过所述第三数字签名和所述第三时间戳对所述第二指令信息进行认证,认证成功后根据所述第二指令信息显示提示信息,提示所述用户进行用户信息注册及密码设置。具体的,所述第一指令信息和第二指令信息中分别包含有数字签名和时间戳,所述客户端通过所述数字签名和时间戳来对所述第一指令信息和第二指令信息进行认证,识别并确定发送第一指令信息和第二指令信息的服务器为正确且安全的服务器。In one embodiment, the first instruction information may include a second digital signature and a second time stamp, and the client confirms the first instruction information through the second digital signature and the second time stamp After the authentication is successful, the user information confirmation window is displayed according to the first instruction information; the second instruction information may include a third digital signature and a third time stamp, and the client passes the third digital signature and the third timestamp. The third time stamp authenticates the second instruction information, and after the authentication is successful, a prompt message is displayed according to the second instruction information, prompting the user to register user information and set a password. Specifically, the first instruction information and the second instruction information respectively include a digital signature and a time stamp, and the client uses the digital signature and the time stamp to carry out the first instruction information and the second instruction information Authenticate, identify and determine that the server sending the first instruction information and the second instruction information is a correct and safe server.

在一个实施例中,所述密码设置还可以包括数字密码设置、生物特征密码设置、字母密码设置、智能卡密码设置中的一种或多种。具体的,当所述中文字符密码出现错误或其他可能状况时,可通过包括数字密码设置、生物特征密码设置、字母密码设置、智能卡密码设置中的一种或多种进行密码验证登陆,增加了密码验证的多样性,一定程度上降低了中文字符密码程序出现错误时无法登陆的情况出现。In an embodiment, the password setting may also include one or more of digital password setting, biometric password setting, letter password setting, and smart card password setting. Specifically, when there is an error in the Chinese character password or other possible situations, password verification and login can be performed by one or more of digital password settings, biometric password settings, letter password settings, and smart card password settings, which increases The diversity of password verification reduces the failure to log in when the Chinese character password program is wrong to a certain extent.

在一个实施例中,所述获取并判断所述客户端上传的用户解锁信息,当所述用户解锁信息满足第一预设条件时,确定所述用户身份认证成功的步骤,还可以包括:In one embodiment, the step of acquiring and judging the user unlocking information uploaded by the client, and determining that the user identity authentication is successful when the user unlocking information satisfies a first preset condition, may further include:

获取所述客户端上传的用户选择的全部中文字符图像信息;Obtaining all the Chinese character image information uploaded by the user selected by the client;

将所述全部中文字符图像和与其对应的标准中文字符图像进行直方图数据采集,得到所述全部中文字符图像和与其对应的标准中文字符图像的相似度值;Collecting the histogram data of all the Chinese character images and the corresponding standard Chinese character images to obtain the similarity values of the all Chinese character images and the corresponding standard Chinese character images;

当所述全部中文字符图像和与其对应的标准中文字符图像的所述相似度值至大于预设阈值时,确定所述用户身份认证成功。When the similarity values between all the Chinese character images and the corresponding standard Chinese character images are greater than a preset threshold, it is determined that the user identity authentication is successful.

示例性的,上述过程具体可以为:Exemplarily, the above process may specifically be:

(1)对用户选择的中文字符图像和与其对应的标准中文字符图像进行直方图采样,生成直方图数据,形成灰度矩阵。(1) Perform histogram sampling on the Chinese character image selected by the user and the corresponding standard Chinese character image to generate histogram data and form a grayscale matrix.

(2)初始化一个大小为256的直方图数组M,根据像素值对频率分布进行统计,例如像素值为124,则M[124]+=1。(2) Initialize a histogram array M with a size of 256, and perform statistics on the frequency distribution according to the pixel value, for example, if the pixel value is 124, then M[124]+=1.

(3)对用户选择的中文字符图像和与其对应的标准中文字符图像数据进行归一化处理,计算其图像相似度值,所述相似度值均在[0,1]数值范围之间,当相似度值大于0.8时,则认为用户选择的中文字符图像为目标中文字符图像,当用户选择的全部中文字符图像均为目标中文字符时,则密码正确,具体的所述标准中文字符图像可以是目标中文字符图像。(3) Normalize the Chinese character image selected by the user and the corresponding standard Chinese character image data, and calculate the image similarity value, and the similarity value is between [0,1] value range, when When the similarity value is greater than 0.8, it is considered that the Chinese character image selected by the user is the target Chinese character image. When all the Chinese character images selected by the user are target Chinese characters, the password is correct. The specific standard Chinese character image can be Target Chinese character image.

(4)服务器存储干扰素数据,以便恢复出干扰前的图像,在降低存储开销的同时也降低了所述客户端与所述服务器之间的认证时间。(4) The server stores the interferon data so as to restore the image before the interference, which reduces the authentication time between the client and the server while reducing the storage overhead.

在一个实施例中,还可以包括:当所述用户解锁信息不满足第一预设条件时,确定所述用户身份认证失败,将所述密码信息再次发送至客户端,所述客户端根据所述密码信息再次生成密码解锁窗口。具体的,当用户身份认证失败时,即用户的解锁信息不满足第一预设条件时,则判断用户身份认证失败,为避免用户误操作造成的身份认证失败,因此可向用户提供多次机会,在首次认证失败后将所述密码信息再次发送至客户端,所述客户端根据所述密码信息再次生成密码解锁窗口。In one embodiment, it may further include: when the user unlock information does not meet the first preset condition, determining that the user identity authentication fails, and sending the password information to the client again, and the client The above password information generates a password to unlock the window again. Specifically, when the user's identity authentication fails, that is, when the user's unlock information does not meet the first preset condition, it is judged that the user's identity authentication has failed. , after the first authentication fails, the password information is sent to the client again, and the client generates a password unlock window again according to the password information.

在一个实施例中,所述用户信息可以包括用户姓名、用户邮箱、用户手机号码、用户证件号码;当确定所述用户身份认证失败的次数超过预设次数时,向所述用户手机或用户邮箱发送警告信息。具体的,所述用户信息中可以包括用户姓名、用户邮箱、用户手机号码、用户证件号码等信息,当用户多次身份认证失败后,怀疑有非法用户恶意登陆,因此可向户手机或用户邮箱发送警告信息,告知合法用户该情况,使得合法用户知晓该情况后提高警惕或重新设置密码,当然并不限于次。In one embodiment, the user information may include user name, user mailbox, user mobile phone number, and user certificate number; Send a warning message. Specifically, the user information may include user name, user mailbox, user mobile phone number, user ID number and other information. When the user fails to authenticate for many times, it is suspected that an illegal user has maliciously logged in. Therefore, the user's mobile phone or user mailbox Send a warning message to inform the legitimate user of the situation, so that the legitimate user will be more vigilant or reset the password after knowing the situation, of course, it is not limited to times.

上述基于中文字符的身份认证方法,采用基于中文字符的图形口令,一方面,在一定程度上降低了传统基于中文字符的身份认证方法中由于用户密码设置行为具有惯性、用户的输入惰性、系统平台对用户的限制以及用户的联想型记忆模式倾向于选择语义密码等原因造成的用户密码的脆弱性;另一方面,本方法提供密码口令随机性较高而用户的干预度较低,对用户的登录身份实现了进一步的身份安全认证。The above-mentioned identity authentication method based on Chinese characters adopts a graphic password based on Chinese characters. On the one hand, it reduces the inertia of user password setting behavior, user input inertia, and system platform to a certain extent in the traditional identity authentication method based on Chinese characters. Restrictions on the user and the user's associative memory mode tend to choose the vulnerability of the user's password due to reasons such as semantic passwords; The login identity realizes further identity security authentication.

需要理解的是,上述描述中的术语“中心”、“纵向”、“横向”、“长度”、“宽度”、“厚度”、“上”、“下”、“前”、“后”、“左”、“右”、“竖直”、“水平”、“顶”、“底”“内”、“外”、“顺时针”、“逆时针”等指示的方位或位置关系为基于附图所示的方位或位置关系,仅是为了便于描述本发明实施例和简化描述,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本发明实施例的限制。It should be understood that the terms "center", "longitudinal", "transverse", "length", "width", "thickness", "upper", "lower", "front", "rear", The orientation or positional relationship indicated by "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outer", "clockwise", "counterclockwise" etc. is based on The orientations or positional relationships shown in the drawings are only for the convenience of describing the embodiments of the present invention and simplifying the description, and do not indicate or imply that the referred device or element must have a specific orientation, be constructed and operated in a specific orientation, and therefore cannot It should be understood as a limitation to the embodiments of the present invention.

此外,术语“第一”、“第二”仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”的特征可以明示或者隐含地包括一个或者更多个该特征。在本发明实施例的描述中,“多个”的含义是两个或两个以上,除非另有明确具体的限定。In addition, the terms "first" and "second" are used for descriptive purposes only, and cannot be interpreted as indicating or implying relative importance or implicitly specifying the quantity of indicated technical features. Thus, a feature defined as "first" and "second" may explicitly or implicitly include one or more of these features. In the description of the embodiments of the present invention, "plurality" means two or more, unless otherwise specifically defined.

在本发明实施例中,除非另有明确的规定和限定,术语“安装”、“相连”、“连接”、“固定”等术语应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或成一体;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,可以是两个元件内部的连通或两个元件的相互作用关系。对于本领域的普通技术人员而言,可以根据具体情况理解上述术语在本发明中的具体含义。In the embodiments of the present invention, terms such as "installation", "connection", "connection" and "fixation" should be interpreted in a broad sense unless otherwise clearly specified and limited. Disassembled connection, or integration; it can be mechanical connection or electrical connection; it can be direct connection or indirect connection through an intermediary, and it can be the internal communication of two components or the interaction relationship between two components. Those of ordinary skill in the art can understand the specific meanings of the above terms in the present invention according to specific situations.

在本发明实施例中,除非另有明确的规定和限定,第一特征在第二特征之“上”或之“下”可以包括第一和第二特征直接接触,也可以包括第一和第二特征不是直接接触而是通过它们之间的另外的特征接触。而且,第一特征在第二特征“之上”、“上方”和“上面”包括第一特征在第二特征正上方和斜上方,或仅仅表示第一特征水平高度高于第二特征。第一特征在第二特征“之下”、“下方”和“下面”包括第一特征在第二特征正下方和斜下方,或仅仅表示第一特征水平高度小于第二特征。In the embodiments of the present invention, unless otherwise clearly specified and limited, the first feature being "on" or "under" the second feature may include direct contact between the first and second features, and may also include the first and second features being in direct contact with each other. Two features are not in direct contact but through another feature between them. Moreover, "above", "above" and "above" the first feature on the second feature include that the first feature is directly above and obliquely above the second feature, or simply means that the first feature is horizontally higher than the second feature. "Below", "beneath" and "under" the first feature to the second feature include that the first feature is directly below and obliquely below the second feature, or simply means that the first feature has a lower level than the second feature.

在本说明书的描述中,参考术语“一个实施例”、“一些实施例”、“示例”、“具体示例”、或“一些示例”等的描述意指结合该实施例或示例描述的具体特征、结构、材料或者特点包含于本发明的至少一个实施例或示例中。在本说明书中,对上述术语的示意性表述不必须针对的是相同的实施例或示例。而且,描述的具体特征、结构、材料或者特点可以在任何的一个或多个实施例或示例中以合适的方式结合。此外,本领域的技术人员可以将本说明书中描述的不同实施例或示例进行接合和组合。In the description of this specification, descriptions referring to the terms "one embodiment", "some embodiments", "example", "specific examples", or "some examples" mean that specific features described in connection with the embodiment or example , structure, material or characteristic is included in at least one embodiment or example of the present invention. In this specification, the schematic representations of the above terms are not necessarily directed to the same embodiment or example. Furthermore, the specific features, structures, materials or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. In addition, those skilled in the art can combine and combine different embodiments or examples described in this specification.

本领域技术人员在考虑说明书及实践这里公开的发明后,将容易想到本发明的其它实施方案。本申请旨在涵盖本发明的任何变型、用途或者适应性变化,这些变型、用途或者适应性变化遵循本发明的一般性原理并包括本发明未公开的本技术领域中的公知常识或惯用技术手段。说明书和实施例仅被视为示例性的,本发明的真正范围和精神由所附的权利要求指出。Other embodiments of the invention will be readily apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any modification, use or adaptation of the present invention, these modifications, uses or adaptations follow the general principles of the present invention and include common knowledge or conventional technical means in the technical field not disclosed in the present invention . The specification and examples are to be considered exemplary only, with the true scope and spirit of the invention indicated by the appended claims.

Claims (10)

1. An identity authentication method based on Chinese characters, which is applied to a server, is characterized by comprising the following steps:
acquiring user request information uploaded by a client;
when the user request information is login request information, first instruction information is issued to the client, and the client displays a user information confirmation window according to the first instruction information;
receiving user information uploaded by the client, and judging whether the user information is registered user information or not;
when the user information is registered user information, determining password information associated with the user information according to the user information;
the password information is sent to the client, and the client generates a password unlocking window according to the password information;
acquiring and judging whether user unlocking information uploaded by the client meets a first preset condition, and determining that the user identity authentication is successful when the user unlocking information meets the first preset condition;
the password unlocking window display comprises n=k×i Chinese character images, i is the number of Chinese character images displayed in each round of the password unlocking window, and the i Chinese character images displayed in each round at least comprise 1 target Chinese character image and at least 2 interference Chinese character images corresponding to the target Chinese character images; and k is the number of rounds of displaying Chinese character images in the password unlocking window, and k is an integer more than 1.
2. The method for authenticating an identity based on chinese characters of claim 1, further comprising: when the user information is unregistered user information, a user unregistered message is sent to the client, the client displays prompt information and a guide window according to the user unregistered message, prompts and guides the user to register information and set passwords, and the password setting comprises Chinese character password setting.
3. The method for authenticating an identity based on chinese characters of claim 1, further comprising:
and when the request information of the user is the request registration information, issuing second instruction information to the client, and displaying prompt information and a guide window by the client according to the second instruction information to prompt and guide the user to register information and set passwords, wherein the password setting comprises Chinese character password setting.
4. A chinese character-based authentication method according to any one of claims 2 or 3, wherein the guidance window comprises an information registration guidance window and a password setting guidance window; the client receives the registration information input by the user in the registration guide window and the Chinese character information input in the password setting guide window and sends the registration information to the server, and the server generates a target Chinese character image and a plurality of interference character images corresponding to the target Chinese character image according to the Chinese characters and then associates the target Chinese character image and the interference character images with the registration information of the user.
5. The method for authenticating an identity based on chinese characters of claim 4, wherein said user request message comprises a first digital signature and a first timestamp, said server authenticates said user request message by said first digital signature and said first timestamp, and after authentication is successful, issues a first instruction message or a second instruction message to said client according to said user request message.
6. The method for authenticating an identity based on chinese characters of claim 5, wherein said first instruction information comprises a second digital signature and a second timestamp, said client authenticates said first instruction information by said second digital signature and said second timestamp, and after authentication is successful, a user information confirmation window is displayed according to said first instruction information;
the second instruction information comprises a third digital signature and a third timestamp, the client authenticates the second instruction information through the third digital signature and the third timestamp, and after the authentication is successful, prompt information is displayed according to the second instruction information to prompt the user to register the user information and set the password.
7. The method of claim 6, wherein the password settings further comprise one or more of a numeric password setting, a biometric password setting, an alphabetic password setting, and a smart card password setting.
8. The method for authenticating an identity based on chinese characters of claim 1, wherein the step of obtaining and determining the user unlock information uploaded by the client, and determining that the user authentication is successful when the user unlock information satisfies a first preset condition comprises:
acquiring all Chinese character image information selected by a user and uploaded by the client;
histogram data acquisition is carried out on all Chinese character images and standard Chinese character images corresponding to all Chinese character images, so that similarity values of all Chinese character images and standard Chinese character images corresponding to all Chinese character images are obtained;
and when the similarity value of all Chinese character images and the standard Chinese character images corresponding to the Chinese character images is larger than a preset threshold value, determining that the user identity authentication is successful.
9. The method for authenticating an identity based on chinese characters of claim 1, further comprising:
when the user unlocking information does not meet a first preset condition, determining that the user identity authentication fails, and sending the password information to a client again, wherein the client generates a password unlocking window again according to the password information.
10. The method for authenticating Chinese character-based identity according to claim 9, wherein the user information includes a user name, a user mailbox, a user mobile phone number, a user certificate number;
and when the number of times of the user identity authentication failure exceeds the preset number of times, sending warning information to the user mobile phone or the user mailbox.
CN202110256527.0A 2021-03-09 2021-03-09 Identity Authentication Method Based on Chinese Characters Active CN112966238B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110256527.0A CN112966238B (en) 2021-03-09 2021-03-09 Identity Authentication Method Based on Chinese Characters

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110256527.0A CN112966238B (en) 2021-03-09 2021-03-09 Identity Authentication Method Based on Chinese Characters

Publications (2)

Publication Number Publication Date
CN112966238A CN112966238A (en) 2021-06-15
CN112966238B true CN112966238B (en) 2023-06-06

Family

ID=76277018

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110256527.0A Active CN112966238B (en) 2021-03-09 2021-03-09 Identity Authentication Method Based on Chinese Characters

Country Status (1)

Country Link
CN (1) CN112966238B (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104680130A (en) * 2015-01-09 2015-06-03 安徽清新互联信息科技有限公司 Chinese character recognition method for identification cards
CN104751041A (en) * 2015-03-03 2015-07-01 北京卓识数云科技有限公司 Authentication method, system and mobile terminal
CN107038445A (en) * 2017-02-13 2017-08-11 上海大学 A kind of binaryzation and dividing method for Chinese character identifying code
CN107171788A (en) * 2017-04-08 2017-09-15 西安邮电大学 A kind of identity-based and the constant online offline aggregate signature method of signature length
CN109740327A (en) * 2019-01-03 2019-05-10 杭州云英网络科技有限公司 Identity identifying method, apparatus and system

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1281025C (en) * 2003-09-08 2006-10-18 赵忠华 Password variable identification verification technique
US20070277224A1 (en) * 2006-05-24 2007-11-29 Osborn Steven L Methods and Systems for Graphical Image Authentication
US9117065B2 (en) * 2011-05-26 2015-08-25 Yingjie Liu Dynamic interactive identity authentication method and system
CN102377573A (en) * 2011-12-08 2012-03-14 华东师范大学 Double-factor authentication method capable of securely updating password
CN105099998A (en) * 2014-04-30 2015-11-25 杭州同盾科技有限公司 Identity information authentication method, device and system
CN105323073A (en) * 2015-11-16 2016-02-10 腾讯科技(深圳)有限公司 Identity authentication method, identity authentication device and identity authentication system
CN107026831B (en) * 2016-09-26 2020-03-10 阿里巴巴集团控股有限公司 Identity recognition method and device
CN111882719A (en) * 2020-07-31 2020-11-03 孙忠飞 Password anti-theft method and device based on dynamic password and intelligent lockset

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104680130A (en) * 2015-01-09 2015-06-03 安徽清新互联信息科技有限公司 Chinese character recognition method for identification cards
CN104751041A (en) * 2015-03-03 2015-07-01 北京卓识数云科技有限公司 Authentication method, system and mobile terminal
CN107038445A (en) * 2017-02-13 2017-08-11 上海大学 A kind of binaryzation and dividing method for Chinese character identifying code
CN107171788A (en) * 2017-04-08 2017-09-15 西安邮电大学 A kind of identity-based and the constant online offline aggregate signature method of signature length
CN109740327A (en) * 2019-01-03 2019-05-10 杭州云英网络科技有限公司 Identity identifying method, apparatus and system

Also Published As

Publication number Publication date
CN112966238A (en) 2021-06-15

Similar Documents

Publication Publication Date Title
US20210399895A1 (en) Systems and Methods for Single-Step Out-of-Band Authentication
US10218506B1 (en) Cross-device authentication
US8776213B2 (en) Mobile application security system and method
KR100992573B1 (en) Authentication method and system using mobile terminal
JP4547447B2 (en) Password authentication apparatus and password authentication method
US8931060B2 (en) System for two way authentication
WO2015074496A1 (en) Identity authentication method and device and storage medium
US11477190B2 (en) Dynamic user ID
US20130047237A1 (en) Password security input system using shift value of password key and password security input method thereof
US11665157B2 (en) Systems and methods for authenticating users within a computing or access control environment
EP3834108B1 (en) Securing sensitive data using distance-preserving transformations
KR20120037330A (en) Log-in method and system using image objects
CN107222477A (en) A kind of equipment access identification Verification System and method
JP2015088080A (en) Authentication system, authentication method, and program
WO2018043951A1 (en) Pos device and system for performing payment authentication using biometric information, and control method therefor
US20070028105A1 (en) Apparatus and method for providing security in computing and communication environments
CN111581661A (en) Terminal management method and device based on biological feature recognition and computer equipment
CN115396139A (en) System and method for password anti-theft authentication and encryption
US20230084042A1 (en) A method, a system and a biometric server for controlling access of users to desktops in an organization
CN112966238B (en) Identity Authentication Method Based on Chinese Characters
JP6690686B2 (en) Account opening system, account opening method, and program
US20240106823A1 (en) Sharing a biometric token across platforms and devices for authentication
US12273724B1 (en) Authentication based on user interaction with images or objects
CN118101335A (en) A zero-trust edge-cloud collaborative security management and control system and method
CN116055129B (en) Internet of things equipment identity authentication method and system based on dynamic graphic password picture

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant