[go: up one dir, main page]

WO2019165976A1 - Password input method and apparatus - Google Patents

Password input method and apparatus Download PDF

Info

Publication number
WO2019165976A1
WO2019165976A1 PCT/CN2019/076336 CN2019076336W WO2019165976A1 WO 2019165976 A1 WO2019165976 A1 WO 2019165976A1 CN 2019076336 W CN2019076336 W CN 2019076336W WO 2019165976 A1 WO2019165976 A1 WO 2019165976A1
Authority
WO
WIPO (PCT)
Prior art keywords
icon
password
input
character segment
icons
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2019/076336
Other languages
French (fr)
Chinese (zh)
Inventor
于君
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Publication of WO2019165976A1 publication Critical patent/WO2019165976A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/83Protecting input, output or interconnection devices input devices, e.g. keyboards, mice or controllers thereof
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/36User authentication by graphic or iconic representation
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F3/00Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
    • G06F3/01Input arrangements or combined input and output arrangements for interaction between user and computer
    • G06F3/048Interaction techniques based on graphical user interfaces [GUI]
    • G06F3/0487Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser
    • G06F3/0488Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser using a touch-screen or digitiser, e.g. input of commands through traced gestures
    • G06F3/04883Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser using a touch-screen or digitiser, e.g. input of commands through traced gestures for inputting data by handwriting, e.g. gesture or text

Definitions

  • the present invention relates to an interaction technique between a user and a computer, and more particularly to a password input method and an apparatus using the same.
  • the system when users input passwords on various types of computer devices, in order to prevent the input content from being seen by others, the system generally adopts a non-meaningful special character instead of the input password in the password input box on the screen.
  • users in order to increase the confidentiality intensity, users often set the password to a meaningless long string that is not easy to be accurately and quickly blinded.
  • the special character of the substitute password is displayed in the password input box on the screen, It is difficult for users to find errors in the input in time.
  • what is hidden is only the password on the screen, but it cannot cover the action when the user inputs the password with the finger on the keyboard at the same time, and the password is still obtained by the others by observing and analyzing the finger action when the user operates the button.
  • the present invention provides a password input method and apparatus, which are convenient for the user to memorize and have high password security.
  • the present invention has made the following improvements:
  • an embodiment provides a password input method, including:
  • the currently received input character segment is compared with the random character segment mark of the password icon, and the password input is finally determined according to the comparison result.
  • an embodiment provides a password input device, including:
  • a display unit for displaying graphic and character information related to the password input operation
  • a data processing unit for analyzing and processing information related to the password input operation
  • Input unit for inputting password operation information to the data processing unit
  • the display unit is further configured to display the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon;
  • the input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit;
  • the data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one
  • the data processing unit is further configured to compare the currently received input character segment with the random character segment mark of the password icon, and finally determine whether the password input is correct according to the comparison result.
  • the password is set by the icon that is convenient for the user to remember and the random character segment mark corresponding to each icon, and the character corresponding to the password icon is input in the first icon group.
  • the segment is used for password matching, and the security of the password is enhanced by the method, and the memory burden of the user is alleviated.
  • FIG. 1 is a schematic diagram of a display unit and an input unit of an embodiment
  • FIG. 2 is a schematic diagram of a set password icon of an embodiment
  • FIG. 3 is a schematic diagram of a display unit and an input unit of another embodiment
  • FIG. 4 is a schematic diagram showing the position of the icon distribution in the first icon group being randomly changed compared with FIG. 3.
  • FIG. 4 is a schematic diagram showing the position of the icon distribution in the first icon group being randomly changed compared with FIG. 3.
  • the present application provides a password input method and apparatus, which set a password by an icon that is convenient for the user to memorize and a random character segment mark corresponding to each icon, by inputting a password icon in the first icon group.
  • the corresponding character segment is used for password matching, and the security of the password is enhanced by the method, which increases the difficulty for the password voyeur to crack the password by observing the random character segment input by the user.
  • interconnect may be static or dynamic characters, numbers, symbols, icons, logos, graphics, tiles, or a combination thereof, or may be included in dynamic or static images or drawings. Multiple local areas with exact boundaries and shapes but with exact approximate positional features.
  • icon group refers to a set of icons including a plurality of icons arranged in an ordered or unordered manner and displayed at the same time; or a static group containing a plurality of virtual regions serving as icons or Dynamic picture, this picture can even be a blank picture, in which each virtual area acting as an icon has a fixed specific position.
  • the virtual area in an icon group can display the same picture, or display different pictures, or display a blank picture, as long as the position of each virtual area serving as an icon is fixed, when the icon is a virtual area, In fact, the location information is used to distinguish different icons.
  • the "input” referred to in the present application may be input through a physical keyboard or a virtual keyboard, or may be input by a pen, a finger on a touch screen, a stroke drawing or a gesture drawing input, or may be input through a voice. It may be the movement and positioning input of the viewing focus of the human eye on the screen detected by the photoelectric recognition and sensing device.
  • the "character" referred to in the present application may be a letter, a number, a symbol typed on a physical keyboard or a virtual keyboard, a sliding track input by a pen or a finger on a touch screen, or a note input by voice.
  • the corresponding letters, numbers, and symbols may also be letters, numbers, and symbols corresponding to and triggered by the observation focus of the human eye input on the screen through the photoelectric recognition and sensing device.
  • character segment includes at least one character.
  • characters Of course, in order to increase the difficulty of voyeur recording, it is best to use multiple characters. The more characters the character segment contains, the higher the security level of the password, but the amount of calculation of the system will also increase. In actual operation, the number of characters contained in the character segment should be selected as needed.
  • random character segment refers to a character segment that is randomly assigned and has a corresponding relationship with a specific icon in only one display; when the specific icon is displayed again, it is randomly assigned another one and still only A random segment of a correspondence.
  • random character segment mark refers to a random character segment that follows the area of the position where the "icon" is located.
  • display unit includes an electronic display, or a combination of electronic displays, or a combination of an electronic display and a static graphic display.
  • a password input device in an embodiment of the present invention, includes a display unit, a data processing unit, and an input unit, wherein the data processing unit display unit and the input unit are signally connected.
  • the display unit further Connected to the input unit signal.
  • the input unit is configured to acquire an input character segment currently input by the user, and then send the received input character segment to the data processing unit.
  • the input unit may send the input character segments to the data processing unit in batches, or may send all the input character segments to the data processing unit after the user inputs.
  • a data processing unit configured to receive an input character segment sent by the input unit, assign different random segment segments to each icon currently displayed by the display unit, and input the segment and the password icon after receiving the input segment
  • the random character segment mark is compared, and according to the comparison result, it is determined whether the user's password input is correct.
  • the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or after inputting all the input character segments together with the password icon. Random character segment marks are used for comparison.
  • no matter which comparison method is used the judgment result can be given after all the input is completed, so that the password thief will have difficulty judging that there are several input character segments and that the input character segments have errors. Increased the difficulty of password cracking.
  • the display unit is configured to display a first icon group including an icon, and a random segment label assigned to each icon by the data processing unit, and the random segment mark corresponding to the icon can be displayed beside the icon , can also be displayed in other one-to-one correspondence.
  • the method further includes: a setting unit connected to the data processing unit, wherein the setting unit is configured to set the password icon, and send the set password icon to the data processing unit, that is, when the password is set,
  • the setting unit is configured to obtain a set of password icons, and the password icon is at least two icons selected by the user from the second icon group of the plurality of icons currently displayed by the display unit.
  • the setting unit is further configured to set the number of icons in the first icon group displayed by the display unit; or the setting unit is further configured to set the number of icons in the password icon; The unit can also be used to set the number of random segment markers assigned for each icon.
  • a display screen 1 as a display unit and a keyboard 2 as an input unit are included.
  • the display screen 1 and the keyboard 2 may be independent electronic components connected to each other by wired or wireless communication, or may be virtual keyboards displayed on the same screen in the same touch screen.
  • the display screen 1 displays a first icon group including a set number icon 3, wherein the set number may be a system setting, or may be manually set by the user according to requirements, in this embodiment, as shown in FIG.
  • the first icon group contains 30 icons 3.
  • a random character segment mark 4 composed of at least one character is displayed next to each icon 3.
  • the random character segment mark 4 includes three characters, and the characters are composed of numbers.
  • the number of characters in each random segment mark 4 may also be one, two or more.
  • the characters may not be limited to numbers, may be symbols, letters, etc., and are random in a specific embodiment.
  • the keyboard 2 includes a plurality of character buttons, wherein the character buttons include all the characters constituting the random character segment marks 4.
  • the keyboard further includes the function buttons shown in the figure, and the function buttons are used for the reversal when an input error occurs.
  • the character button is a ten-digit character button 5 including 0 to 9, and the function button is an enter key 6 and a backspace key 7.
  • the icon is preferably a variety of graphics, icons that have unique features that are easy to identify, distinguish, and remember, and may be static or dynamic.
  • the present application also provides a password input method.
  • the password is first set by the setting unit. First, at least two icons are obtained as a set of password icons in a displayed second set of icons containing multiple icons.
  • the figure shows a password icon set by the user in advance through the setting unit, which includes four optional icons.
  • the four icons are selected by the user from the second icon group in FIG. 1.
  • the password After the password is set, when the user needs to enter the password protection device or view related information, the user needs to input a password to open the device or information page.
  • the process of the password input method is as follows:
  • the display unit will display a set of the first icon group including the password icon, and display the different random segment marks assigned to each icon, and display the random character segments of each icon in the Each icon forms a position of a correspondence, and each random character segment contains at least one character.
  • the user observes and determines the random segment mark corresponding to the four password icons preset in the first icon group, and types four random segment marks of the four password icons on the input unit, and then presses Enter. .
  • the input unit After receiving the character segment input by the user, the input unit sends the corresponding character segment to the data processing unit.
  • the icon in the first icon group displayed by the display unit and the icon in the second icon group in the password setting step may be completely identical, and the icon in the first icon group may also be Only part of the icon in the second icon group, as long as all the password icons are included in the first icon group.
  • the icons in the first icon group may be different or partially repeated, and the same group of random segment marks are shared for the repeated icons.
  • the data processing unit After the data processing unit obtains the input character segment, the input character segment is compared with the random character segment mark of the password icon, and the current password input is determined according to the comparison result.
  • the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or mark all the input character segments together with the random character segment of the password icon after the input is completed. Compared.
  • the system will determine that the user password is entered correctly and enter the normal program afterwards. If the character segment input by the user does not completely match the password icon, the system will send a prompt message to the user that the password input is incorrect.
  • the prompt may be a prompt mode for indicating a voice, a text or a pattern.
  • the user may be allowed to select a sequence rule for typing a random character segment mark.
  • a sequence rule for typing a random character segment mark For this time, when the password is input, only the random character segment mark corresponding to the password icon is input according to the specified order rule, and the password matching succeeds, and the password is added.
  • the user can input the correct password input result to the data processing unit simply by inputting the random character segment mark of each password icon observed by the user.
  • each random character segment typed by the user during the password input operation is easily observed and recorded by the person next to it, since these random character segments are only valid once, it is useless to write down.
  • the next time the user performs a password input operation the other set of random character segment marks corresponding to each of the previous password icons that are observed by the user can be input in the public view, and there is no need to worry about the voyeur record of others.
  • the password peeper quickly observes and records the random segment mark of the icon on the current screen by means of a tool such as a camera, and simultaneously observes and records each random segment mark typed by the user, it is still possible to know the password.
  • the data processing unit may further assign at least 2 random character segment marks for each icon, the same first icon group. All random character segment marks of all icons are different, and each random character segment mark of each icon is randomly rotated. For example, 30 random character segment marks are assigned to each icon, and the display is randomly rotated at intervals of about 1 second. The user can input any random character segment mark of each password icon seen at any time.
  • each icon has a plurality of random character segment marks displayed by random rotation, only a small part of all the random character segment marks are displayed at the same time, and the user inputs the random character segments in the display unit.
  • the random segment markers for each icon are alternated in a non-stop rotation. Thus, even if this small portion is sneaked by the voyeur with the camera, it is difficult to determine which icons are randomly pointed to by each random character segment typed by the user.
  • a static image with a fixed position may be used to display each icon, and a small display screen is used to display a random character segment mark of the icon, such as a small
  • the digital tube realizes random rotation display of random character segment marks by replacing the display content of the small display screen.
  • the distribution position of the icon in the first icon group can be randomly changed during the process of receiving the character segment input by the user.
  • the user and the voyeur After adopting the measure of the distribution position of the random change icon, since the position of the icon in the first icon group is not fixed, the user and the voyeur will find the first icon group whenever the user performs the next password input operation. All of the icon positions have been reordered randomly. The user can search for the password icon in the public view, and enter the other set of random character segment marks of the previously observed password icon, and still do not have to worry about the guess of the password icon position according to the user's eyes.
  • the icon 3 constituting the first icon group is represented by 25 English letters.
  • the distribution position of the set of letter icons displayed by the display unit is randomly changed at intervals of, for example, about 2 seconds.
  • FIG. 4 is a diagram showing the state of the first icon group after a random change of the first icon group in FIG. 3. This further increases the technical difficulty of others to peep into the password, making it more difficult to implement the means of narrowing the location of the guessing password by recording the direction of the eye gaze when the user observes the search for the password icon.
  • the icons in the first icon group can be distinguished by a few background colors, and there are only a few icons having the same background color. In this way, when the user searches for the password icon, the password icon can be found only in the icon with a specific background color.
  • any tangible, non-transitory computer readable storage medium may be utilized, including magnetic storage devices (hard disks, floppy disks, etc.), optical storage devices (CD-ROM, DVD, Blu Ray disks, etc.), flash memory, and/or the like.
  • These computer program instructions can be loaded onto a general purpose computer, special purpose computer or other programmable data processing device to form a machine such that the instructions executed on the computer or other programmable data processing device can generate means for performing the specified function.
  • the computer program instructions can also be stored in a computer readable memory, which can instruct the computer or other programmable data processing device to operate in a particular manner such that the instructions stored in the computer readable memory can form a single piece Manufacturing, including implementations that implement specified functions.
  • Computer program instructions can also be loaded onto a computer or other programmable data processing device to perform a series of operational steps on a computer or other programmable device to produce a computer-implemented process for execution on a computer or other programmable device. Instructions can provide steps for implementing a given function.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Human Computer Interaction (AREA)
  • User Interface Of Digital Computer (AREA)
  • Input From Keyboards Or The Like (AREA)

Abstract

A password input method and apparatus, said method comprising: displaying a first icon group including password icons; assigning random character field marks, which are different from one another, to each icon in the first icon group, and displaying the random character field of each icon at a position corresponding to said icon, each random character field containing at least one character; acquiring the currently received character fields inputted by a user; and comparing the currently received input character fields with the random character field marks of the password icons, and determining whether the password input is correct according to a comparison result. In different password input operations, the random character fields corresponding to the password icons are different, and thus the password icons cannot be determined by surreptitiously observing the character fields inputted by the user, enhancing the password security, furthermore, the password icons are easy to memorize, relieving the memory burden of the user.

Description

一种密码输入方法和装置Password input method and device 技术领域Technical field

本发明涉及用户与计算机之间的交互技术,尤其涉及一种密码输入方法和应用该方法的装置。The present invention relates to an interaction technique between a user and a computer, and more particularly to a password input method and an apparatus using the same.

背景技术Background technique

随着信息化时代的到来,人们为了保护自己的身份、财产等安全,通常会对存有个人信息的各类计算机设备、手机以及各种账号等设置密码。又由于密码一旦被不法分子偷窥到往往会给用户带来不可挽回的损失,故如何有效防止用户输入密码时被不法分子偷窥到,已经成为急需解决的社会问题。With the advent of the information age, in order to protect their identity, property and other security, people usually set passwords for various types of computer equipment, mobile phones and various accounts with personal information. Moreover, once the password is sneaked by the criminals, it will bring irreparable damage to the user. Therefore, how to effectively prevent the user from being sneaked by the criminals when entering the password has become a social problem that needs to be solved urgently.

目前,用户在各类计算机设备输入密码时,为了防止输入内容被他人看到,系统一般采取在屏幕上的密码输入框内用无意义的特殊字符来代替输入的密码。同时,为了增加保密强度,用户往往将密码设置成不容易准确快速盲打的没有意义的长字符串,但是,采用这种方式,若屏幕上的密码输入框内只显示替代密码的特殊字符,用户会难以及时发现输入上的差错。并且,被隐藏的只是屏幕上的密码,却不能同时遮盖用户在键盘上用手指输入密码时的动作,仍然会被旁人通过观察分析用户操作按键时的手指动作来获取密码。At present, when users input passwords on various types of computer devices, in order to prevent the input content from being seen by others, the system generally adopts a non-meaningful special character instead of the input password in the password input box on the screen. At the same time, in order to increase the confidentiality intensity, users often set the password to a meaningless long string that is not easy to be accurately and quickly blinded. However, in this way, if only the special character of the substitute password is displayed in the password input box on the screen, It is difficult for users to find errors in the input in time. Moreover, what is hidden is only the password on the screen, but it cannot cover the action when the user inputs the password with the finger on the keyboard at the same time, and the password is still obtained by the others by observing and analyzing the finger action when the user operates the button.

对此,在银行环境中常用的措施,是在键盘上设置遮挡手指操作动作的遮罩。但遮罩的遮挡效果与用户操作难度之间存在矛盾。遮盖角度越大,隐秘效果越好,但操作难度也越高,影响用户体验。In this regard, a common measure in the banking environment is to set a mask on the keyboard that blocks the finger operation. However, there is a contradiction between the occlusion effect of the mask and the difficulty of the user's operation. The larger the occlusion angle, the better the hidden effect, but the higher the difficulty of operation, affecting the user experience.

同时,在家庭和办公环境中,普通台式电脑、笔记本电脑的键盘上显然不便于设置遮罩,但这类环境中仍然有经常性的密码输入操作。在手机屏幕上,也会由于更难以隐藏手指的动作,使得更容易泄露密码或者锁屏图案。At the same time, in the home and office environment, it is obviously not convenient to set the mask on the keyboard of ordinary desktop computers and notebook computers, but there are still frequent password input operations in such environments. On the screen of the mobile phone, it is also more difficult to hide the action of the finger, making it easier to leak the password or the lock screen pattern.

并且,在隐蔽摄像设备很容易得到的现代社会中,不法分子采用高技术手段偷窥密码已经让人防不胜防,一般性的措施已经难以招架。为了提高破解难度,设置各类密码一般都被要求采用长字符段,并且可能还要包括大小写、特殊字符的组合。但这样复杂抽象的密码如何记忆,一直是让人们头痛的难题。Moreover, in modern society where concealed camera equipment is easily available, it is hard to prevent sneak peeks at the use of high-tech means to peek into passwords. General measures have been difficult to parry. In order to improve the difficulty of cracking, setting various types of passwords is generally required to use long characters, and may also include a combination of uppercase and lowercase characters. But how to remember such complex and abstract passwords has always been a headache for people.

综上所述,在目前的各种密码输入环境中,不仅存在密码容易泄露的问题。而且,密码所有者还难以确定自己的密码在输入操作时是否曾经被不法分子偷窥盗取,只能采用经常更换密码的方式来补救和预防。可是,符合破解难度要求的密码本来就不容易记忆,频繁更换的结果会增加人们的记忆负担,使人更加苦恼。In summary, in the current various password input environments, there is not only a problem that the password is easily leaked. Moreover, it is difficult for the password owner to determine whether his or her password has been sneaked and stolen by criminals during the input operation, and can only be remedied and prevented by frequently changing the password. However, passwords that meet the difficulty of cracking are not easy to remember. The result of frequent replacement will increase people's memory burden and make people more distressed.

技术问题technical problem

针对现有技术的上述缺陷,本发明提供了一种密码输入方法和装置,该方法便于用户记忆,且密码安全性高。In view of the above drawbacks of the prior art, the present invention provides a password input method and apparatus, which are convenient for the user to memorize and have high password security.

技术解决方案Technical solution

为了加大密码被偷窥的难度,本发明作出了如下改进:In order to increase the difficulty of password voyeurism, the present invention has made the following improvements:

根据第一方面,一种实施例提供了密码输入方法,包括:According to a first aspect, an embodiment provides a password input method, including:

显示包含有密码图符在内的第一图符组;为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置,每一随机字符段包含至少一个字符;Displaying a first icon group including a password icon; assigning each of the icons in the first icon group different random character segment marks, and displaying random characters of each icon in each The icon forms a position of the correspondence, and each random character segment contains at least one character;

获取当前接收到的用户输入的字符段;Get the character segment of the currently received user input;

将当前接收到的输入字符段与密码图符的随机字符段标记作对比,根据对比结果最终确定密码输入是否正确。The currently received input character segment is compared with the random character segment mark of the password icon, and the password input is finally determined according to the comparison result.

根据第二方面,一种实施例提供了密码输入装置,包括:According to a second aspect, an embodiment provides a password input device, including:

显示单元,用于显示与密码输入操作相关的图形和字符信息;a display unit for displaying graphic and character information related to the password input operation;

数据处理单元,用于分析和处理与密码输入操作相关的信息;a data processing unit for analyzing and processing information related to the password input operation;

输入单元,用于向数据处理单元输入密码操作信息Input unit for inputting password operation information to the data processing unit

显示单元还用于显示包含有密码图符在内的第一图符组,并在与各图符形成对应关系的位置显示各图符的随机字符段;The display unit is further configured to display the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon;

输入单元用于获取当前接收到的用户输入的字符段,并将输入字符段发送给数据处理单元;The input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit;

数据处理单元还用于为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段发送至显示单元,每个随机字符段包含至少一个字符;数据处理单元还用于将当前接收到的输入字符段与密码图符的随机字符段标记作对比,根据对比结果最终确定密码输入是否正确。The data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one The data processing unit is further configured to compare the currently received input character segment with the random character segment mark of the password icon, and finally determine whether the password input is correct according to the comparison result.

有益效果Beneficial effect

依据上述实施例的密码输入方法和装置,通过便于用户记忆的图符和与各个图符对应的随机字符段标记对密码进行设置,通过在第一图符组中输入与密码图符对应的字符段以进行密码匹配,通过该方法增强了密码的安全性,减轻了用户的记忆负担。According to the password input method and apparatus of the above embodiment, the password is set by the icon that is convenient for the user to remember and the random character segment mark corresponding to each icon, and the character corresponding to the password icon is input in the first icon group. The segment is used for password matching, and the security of the password is enhanced by the method, and the memory burden of the user is alleviated.

附图说明DRAWINGS

图1是一种实施例的显示单元和输入单元的示意图;1 is a schematic diagram of a display unit and an input unit of an embodiment;

图2是一种实施例的设定的密码图符示意图;2 is a schematic diagram of a set password icon of an embodiment;

图3是另一种实施例的显示单元和输入单元的示意图;3 is a schematic diagram of a display unit and an input unit of another embodiment;

图4是与图3相比第一图符组中图符分布位置随机变化后的示意图。FIG. 4 is a schematic diagram showing the position of the icon distribution in the first icon group being randomly changed compared with FIG. 3. FIG.

本发明的实施方式Embodiments of the invention

具体实施方式Detailed ways

下面通过具体实施方式结合附图对本发明作进一步详细说明。其中不同实施方式中类似元件采用了相关联的类似的元件标号。在以下的实施方式中,很多细节描述是为了使得本申请能被更好的理解。然而,本领域技术人员可以毫不费力的认识到,其中部分特征在不同情况下是可以省略的,或者可以由其他元件、材料、方法所替代。在某些情况下,本申请相关的一些操作并没有在说明书中显示或者描述,这是为了避免本申请的核心部分被过多的描述所淹没,而对于本领域技术人员而言,详细描述这些相关操作并不是必要的,他们根据说明书中的描述以及本领域的一般技术知识即可完整了解相关操作。The present invention will be further described in detail below with reference to the accompanying drawings. Similar elements in different embodiments employ associated similar component numbers. In the following embodiments, many of the details are described in order to provide a better understanding of the application. However, those skilled in the art can easily realize that some of the features may be omitted in different situations, or may be replaced by other components, materials, and methods. In some cases, some operations related to the present application have not been shown or described in the specification, in order to avoid that the core portion of the present application is overwhelmed by excessive description, and those skilled in the art will describe these in detail. Related operations are not necessary, they can fully understand the relevant operations according to the description in the manual and the general technical knowledge in the field.

另外,说明书中所描述的特点、操作或者特征可以以任意适当的方式结合形成各种实施方式。同时,方法描述中的各步骤或者动作也可以按照本领域技术人员所能显而易见的方式进行顺序调换或调整。因此,说明书和附图中的各种顺序只是为了清楚描述某一个实施例,并不意味着是必须的顺序,除非另有说明其中某个顺序是必须遵循的。In addition, the features, operations, or characteristics described in the specification may be combined in any suitable manner to form various embodiments. At the same time, the steps or actions in the method description can also be sequentially changed or adjusted in a manner that can be apparent to those skilled in the art. Therefore, the various sequences in the specification and the drawings are only for the purpose of describing a particular embodiment, and are not intended to

本文中为部件所编序号本身,例如“第一”、“第二”等,仅用于区分所描述的对象,不具有任何顺序或技术含义。而本申请所说“连接”、“联接”,如无特别说明,均包括直接和间接连接。The serial numbers themselves for the components herein, such as "first", "second", etc., are only used to distinguish the described objects, and do not have any order or technical meaning. As used herein, "connected" or "coupled", unless otherwise specified, includes both direct and indirect connections.

本申请提供了一种密码输入方法和装置,该方法通过便于用户记忆的图符和与各个图符对应的随机字符段标记对密码进行设置,通过在第一图符组中输入与密码图符对应的字符段以进行密码匹配,通过该方法增强了密码的安全性,增加了密码偷窥者通过观察到的用户输入的随机字符段破解密码的难度。The present application provides a password input method and apparatus, which set a password by an icon that is convenient for the user to memorize and a random character segment mark corresponding to each icon, by inputting a password icon in the first icon group. The corresponding character segment is used for password matching, and the security of the password is enhanced by the method, which increases the difficulty for the password voyeur to crack the password by observing the random character segment input by the user.

本申请中用到的术语定义包括:The definitions of terms used in this application include:

本申请所称的“图符”,可以是静态的或者动态的字符、数字、符号、图标、标志、图形、图块或者它们的组合,也可以是包含在动态或者静态图片、图画中的没有确切边界和形状但有确切的大致位置特征的多个局部区域。The term "icon" as used in this application may be static or dynamic characters, numbers, symbols, icons, logos, graphics, tiles, or a combination thereof, or may be included in dynamic or static images or drawings. Multiple local areas with exact boundaries and shapes but with exact approximate positional features.

本申请所称的“图符组”,是指包含有多个以有序或者无序方式分布的并同时显示的图符集合;也可以是包含了多个充当图符的虚拟区域的静态或者动态图画,这个图画甚至可以是空白的画面,在这幅空白的画面中,充当图符的每个虚拟区域具有固定的特定位置。一个图符组中的虚拟区域可以显示相同的画面,也可以显示不同的画面,或者是显示空白画面,只要充当图符的每个虚拟区域的位置固定即可,当图符为虚拟区域是,实际上是通过位置信息来区分不同的图符的。The term “icon group” as used in the present application refers to a set of icons including a plurality of icons arranged in an ordered or unordered manner and displayed at the same time; or a static group containing a plurality of virtual regions serving as icons or Dynamic picture, this picture can even be a blank picture, in which each virtual area acting as an icon has a fixed specific position. The virtual area in an icon group can display the same picture, or display different pictures, or display a blank picture, as long as the position of each virtual area serving as an icon is fixed, when the icon is a virtual area, In fact, the location information is used to distinguish different icons.

本申请所称的“输入”,可以是通过实体键盘、虚拟键盘的输入,也可以是通过笔、手指在触摸屏幕上的点击、笔画绘制或者笔势绘制输入,也可以是通过语音的输入,还可以是通过光电识别和传感装置检测到的人眼在屏幕上的观察焦点的移动和定位输入。The "input" referred to in the present application may be input through a physical keyboard or a virtual keyboard, or may be input by a pen, a finger on a touch screen, a stroke drawing or a gesture drawing input, or may be input through a voice. It may be the movement and positioning input of the viewing focus of the human eye on the screen detected by the photoelectric recognition and sensing device.

本申请所称的“字符”,可以是通过实体键盘、虚拟键盘上键入的字母、数字、符号,也可以是笔、手指在触摸屏幕上输入的滑动轨迹,也可以是通过语音输入的音符所对应的字母、数字、符号,也可以是通过光电识别和传感装置输入的人眼在屏幕上的观察焦点所对应和触发的字母、数字、符号。The "character" referred to in the present application may be a letter, a number, a symbol typed on a physical keyboard or a virtual keyboard, a sliding track input by a pen or a finger on a touch screen, or a note input by voice. The corresponding letters, numbers, and symbols may also be letters, numbers, and symbols corresponding to and triggered by the observation focus of the human eye input on the screen through the photoelectric recognition and sensing device.

本申请所称的“字符段”,至少包含一个字符。当然,为了增加偷窥记录难度,最好采用多个字符。字符段包含的字符越多,密码的安全级别越高,但是系统的计算量也会随之增加,在实际操作中应根据需要选择字符段中包含的字符数量。The "character segment" referred to in the present application includes at least one character. Of course, in order to increase the difficulty of voyeur recording, it is best to use multiple characters. The more characters the character segment contains, the higher the security level of the password, but the amount of calculation of the system will also increase. In actual operation, the number of characters contained in the character segment should be selected as needed.

本申请所称的“随机字符段”,是指随机分配并且仅在一次显示中与特定图符具有对应关系的字符段;该特定图符被再次显示时,会被随机分配另一个与其仍然仅有一次对应关系的随机字符段。The term "random character segment" as used in the present application refers to a character segment that is randomly assigned and has a corresponding relationship with a specific icon in only one display; when the specific icon is displayed again, it is randomly assigned another one and still only A random segment of a correspondence.

本申请所称的“随机字符段标记”,是指跟随显示在“图符”所在位置区域的随机字符段。The term "random character segment mark" as used in the present application refers to a random character segment that follows the area of the position where the "icon" is located.

本申请所称的“显示单元”,包括电子显示屏,或者电子显示屏的组合,或者电子显示屏与静态图文板的组合。The term "display unit" as used in this application includes an electronic display, or a combination of electronic displays, or a combination of an electronic display and a static graphic display.

在本发明实施例中,提供了一种密码输入装置,该装置包括显示单元、数据处理单元和输入单元,其中数据处理单元显示单元和输入单元信号连接,在有的实施例中,显示单元还与输入单元信号连接。In an embodiment of the present invention, a password input device is provided. The device includes a display unit, a data processing unit, and an input unit, wherein the data processing unit display unit and the input unit are signally connected. In some embodiments, the display unit further Connected to the input unit signal.

输入单元用于获取用户当前输入的输入字符段,然后将接收到的输入字符段发送至数据处理单元。在具体实施例中,输入单元可以分批次将输入字符段发送至数据处理单元,也可以待用户输入完毕后,集中将所有的输入字符段发送至数据处理单元。The input unit is configured to acquire an input character segment currently input by the user, and then send the received input character segment to the data processing unit. In a specific embodiment, the input unit may send the input character segments to the data processing unit in batches, or may send all the input character segments to the data processing unit after the user inputs.

数据处理单元,用于接收输入单元发送的输入字符段,为显示单元当前显示的每个图符分配各不相同的随机字符段标记,在接收到输入字符段后将输入字符段与密码图符的随机字符段标记作对比,并根据对比结果确定该用户的密码输入是否正确。需要说明的是,数据处理单元既可以分批次将每个输入字符段与密码图符的随机字符段标记作对比,也可以在输入完毕后,将所有的输入字符段一起与密码图符的随机字符段标记作对比。在优选的实施例中,无论哪种对比方式,可以等到所有输入完毕后才给出判断结果,这样密码盗窃者将很难判断有几个输入字符段出现了错误以及哪些输入字符段出现了错误,增加了密码被破解的难度。a data processing unit, configured to receive an input character segment sent by the input unit, assign different random segment segments to each icon currently displayed by the display unit, and input the segment and the password icon after receiving the input segment The random character segment mark is compared, and according to the comparison result, it is determined whether the user's password input is correct. It should be noted that the data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or after inputting all the input character segments together with the password icon. Random character segment marks are used for comparison. In the preferred embodiment, no matter which comparison method is used, the judgment result can be given after all the input is completed, so that the password thief will have difficulty judging that there are several input character segments and that the input character segments have errors. Increased the difficulty of password cracking.

显示单元,显示单元用于显示包含图符的第一图符组,以及数据处理单元分配给每个图符的随机字符段标记,与图符对应的随机字符段标记可以显示在图符的旁边,也可以以其他一一对应的方式显示。a display unit, the display unit is configured to display a first icon group including an icon, and a random segment label assigned to each icon by the data processing unit, and the random segment mark corresponding to the icon can be displayed beside the icon , can also be displayed in other one-to-one correspondence.

在有的实施例中,还包括与数据处理单元信号连接的设置单元,设置单元用于对密码图符进行设置,并将设置的密码图符发送给数据处理单元,即在进行密码设置时,设置单元用于获取一组密码图符,密码图符为用户从显示单元当前显示的包含多个图符的第二图符组中选取的至少两个图符。在有的实施例中,设置单元还用于对显示单元显示的第一图符组中图符的数量进行设置;或者设置单元还用于对密码图符中图符的数量进行设置;另外设置单元还可以用于对为每个图符分配的随机字符段标记的数量进行设置。In some embodiments, the method further includes: a setting unit connected to the data processing unit, wherein the setting unit is configured to set the password icon, and send the set password icon to the data processing unit, that is, when the password is set, The setting unit is configured to obtain a set of password icons, and the password icon is at least two icons selected by the user from the second icon group of the plurality of icons currently displayed by the display unit. In some embodiments, the setting unit is further configured to set the number of icons in the first icon group displayed by the display unit; or the setting unit is further configured to set the number of icons in the password icon; The unit can also be used to set the number of random segment markers assigned for each icon.

在一种实施例中,如图1所示,包括作为显示单元的显示屏1和作为输入单元的键盘2。显示屏1和键盘2,可以是相互以有线或者无线通讯方式连接的独立的电子部件,也可以是在同一个触摸屏中同屏显示的虚拟键盘。In one embodiment, as shown in FIG. 1, a display screen 1 as a display unit and a keyboard 2 as an input unit are included. The display screen 1 and the keyboard 2 may be independent electronic components connected to each other by wired or wireless communication, or may be virtual keyboards displayed on the same screen in the same touch screen.

显示屏1显示了一个包含设定数量图符3的第一图符组,其中,设定数量可以是系统设定,也可以是用户根据需要人工设定,在本实施例中,如图1所示,第一图符组中包含30个图符3。在第一图符组中,每个图符3的旁边都显示了一个由至少一个字符构成的随机字符段标记4。在本实施例中,为了提高密码盗窃者的观察和记录难度,随机字符段标记4包括三个字符,字符由数字构成。在其他的实施例中,每个随机字符段标记4中字符的数量也可以为一个、两个或多个,字符可以不局限于数字,可以为符号、字母等,且在具体实施例中随机字符段标记4中字符的数量越多,密码的安全性越高。键盘2包括多个字符按键,其中字符按键包括组成随机字符段标记4的所有字符,在有的实施例中,键盘还包括图中所示的功能按键,功能按键用于出现输入错误时的退格操作和/或输入完成后的确认操作,在本实施例中,字符按键为包括0至9的10个数字的字符按键5,功能按键为回车键6、退格键7。The display screen 1 displays a first icon group including a set number icon 3, wherein the set number may be a system setting, or may be manually set by the user according to requirements, in this embodiment, as shown in FIG. As shown, the first icon group contains 30 icons 3. In the first icon group, a random character segment mark 4 composed of at least one character is displayed next to each icon 3. In the present embodiment, in order to improve the difficulty of observation and recording of the password thief, the random character segment mark 4 includes three characters, and the characters are composed of numbers. In other embodiments, the number of characters in each random segment mark 4 may also be one, two or more. The characters may not be limited to numbers, may be symbols, letters, etc., and are random in a specific embodiment. The more characters in the character segment mark 4, the higher the security of the password. The keyboard 2 includes a plurality of character buttons, wherein the character buttons include all the characters constituting the random character segment marks 4. In some embodiments, the keyboard further includes the function buttons shown in the figure, and the function buttons are used for the reversal when an input error occurs. In the present embodiment, the character button is a ten-digit character button 5 including 0 to 9, and the function button is an enter key 6 and a backspace key 7.

在具体实施例中,图符优选各种有独特特征的、便于识别、区分和记忆的图形、图标,可以是静态的,也可以是动态。In a specific embodiment, the icon is preferably a variety of graphics, icons that have unique features that are easy to identify, distinguish, and remember, and may be static or dynamic.

基于上述密码输入装置,本申请还提供了一种密码输入方法。Based on the above password input device, the present application also provides a password input method.

在输入密码之前首先通过设置单元对密码进行设置,首先需在显示的一组包含多个图符的第二图符组中获取至少两个图符作为一组密码图符。Before the password is entered, the password is first set by the setting unit. First, at least two icons are obtained as a set of password icons in a displayed second set of icons containing multiple icons.

请参见图2,图中所示为用户预先通过设置单元设置好的密码图符,其包括四个自选的图符。这四个图符是用户从图1中的第二图符组中选中的,待密码设置完成后,当用户需要进入密码保护设备或查看相关信息时,需要通过输入密码以打开设备或信息页面,密码输入方法的过程如下:Referring to FIG. 2, the figure shows a password icon set by the user in advance through the setting unit, which includes four optional icons. The four icons are selected by the user from the second icon group in FIG. 1. After the password is set, when the user needs to enter the password protection device or view related information, the user needs to input a password to open the device or information page. The process of the password input method is as follows:

显示单元将显示一组包含密码图符在内的第一图符组,并同时显示分配给每个图符的各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置,每一随机字符段包含至少一个字符。The display unit will display a set of the first icon group including the password icon, and display the different random segment marks assigned to each icon, and display the random character segments of each icon in the Each icon forms a position of a correspondence, and each random character segment contains at least one character.

用户观察并确定第一图符组中与他预先设置的四个密码图符对应的随机字符段标记,并在输入单元上键入这四个密码图符的四个随机字符段标记后按回车。输入单元接收到用户输入的字符段后将相应的字符段发送至数据处理单元。The user observes and determines the random segment mark corresponding to the four password icons preset in the first icon group, and types four random segment marks of the four password icons on the input unit, and then presses Enter. . After receiving the character segment input by the user, the input unit sends the corresponding character segment to the data processing unit.

在具有实施例中,在显示单元显示的第一图符组中的图符与密码设置步骤中的第二图符组中的图符可以完全一致,第一图符组中的图符也可以只为第二图符组中图符的一部分,只要在第一图符组中包含所有的密码图符即可。另外,第一图符组中的图符可以各不相同,也可以有部分重复,对于重复的图符其共用同一组随机字符段标记。In an embodiment, the icon in the first icon group displayed by the display unit and the icon in the second icon group in the password setting step may be completely identical, and the icon in the first icon group may also be Only part of the icon in the second icon group, as long as all the password icons are included in the first icon group. In addition, the icons in the first icon group may be different or partially repeated, and the same group of random segment marks are shared for the repeated icons.

数据处理单元获取输入字符段后,将输入字符段与密码图符的随机字符段标记作对比,并根据对比结果确定当前的密码输入是否正确。数据处理单元既可以分批次将每个输入字符段与密码图符的随机字符段标记作对比,也可以在输入完毕后,将所有的输入字符段一起与密码图符的随机字符段标记作对比。在优选的实施例中,针对两种对比方式,最好等到所有输入完毕后给出判断结果,这样密码盗窃者将很难判断有几个输入字符段出现了错误以及哪些输入字符段出现了错误,增加了密码的安全性。After the data processing unit obtains the input character segment, the input character segment is compared with the random character segment mark of the password icon, and the current password input is determined according to the comparison result. The data processing unit can compare each input character segment with the random character segment mark of the password icon in batches, or mark all the input character segments together with the random character segment of the password icon after the input is completed. Compared. In a preferred embodiment, for the two comparison methods, it is preferable to wait until all the inputs are completed to give a judgment result, so that the password thief will have difficulty judging that there are errors in several input segments and which input segments have errors. , increased the security of the password.

若用户输入的字符段与密码图符全部匹配成功,则系统会判定用户密码输入正确,进入之后的正常程序。若用户输入的字符段与密码图符没有完全匹配成功,则系统会向用户发出密码输入不正确的提示信息,该提示可以是用于表示密码错误的语音、文字或图案等提示方式。If the character segment entered by the user and the password icon all match successfully, the system will determine that the user password is entered correctly and enter the normal program afterwards. If the character segment input by the user does not completely match the password icon, the system will send a prompt message to the user that the password input is incorrect. The prompt may be a prompt mode for indicating a voice, a text or a pattern.

本实施例中,可以容许用户选择键入随机字符段标记的顺序规则,此时在输入密码时,只有按照指定的顺序规则输入与密码图符对应的随机字符段标记才算密码匹配成功,增加了盗窃者通过偷窥或其他手段破解密码的难度。若应用环境对加密级别要求不很高,可以不对键入随机字符段标记的顺序进行限定,此时按任意顺序键入与密码图符对应的随机字符段标记即为密码匹配成功。这样的操作,虽然会降低加密级别,但更便于用户对密码的记忆和密码输入操作,因为用户只要记住四个密码图符即可,无需记住顺序。In this embodiment, the user may be allowed to select a sequence rule for typing a random character segment mark. At this time, when the password is input, only the random character segment mark corresponding to the password icon is input according to the specified order rule, and the password matching succeeds, and the password is added. The difficulty of the thief to crack the password by voyeurism or other means. If the application environment does not require a high level of encryption, you can not limit the order in which random character segments are typed. In this case, the random segment identifier corresponding to the password icon is entered in any order. Such an operation, although lowering the encryption level, is more convenient for the user to remember the password and password input operations, because the user only needs to remember the four password icons, without having to remember the order.

采用上述方法,用户只需输入其观察到的每个密码图符的随机字符段标记,就能向数据处理单元传送正确的密码输入结果。在整个过程中,虽然用户在密码输入操作过程键入的每条随机字符段很容易被旁边的人观察到并记录下来,但因这些随机字符段只一次性有效,记下也没用。用户下次进行密码输入操作时,同样可以在众目睽睽下从容输入其观察到的对应于每个密码图符的不同于前次的另一组随机字符段标记,并且仍然不用担心别人的偷窥记录。With the above method, the user can input the correct password input result to the data processing unit simply by inputting the random character segment mark of each password icon observed by the user. Throughout the process, although each random character segment typed by the user during the password input operation is easily observed and recorded by the person next to it, since these random character segments are only valid once, it is useless to write down. The next time the user performs a password input operation, the other set of random character segment marks corresponding to each of the previous password icons that are observed by the user can be input in the public view, and there is no need to worry about the voyeur record of others.

但是,若密码偷窥者借助相机等工具迅速观察并记录当前屏幕上图符的随机字符段标记,并同时观察和记录了用户键入的各随机字符段标记,将仍然有可能获知密码。However, if the password peeper quickly observes and records the random segment mark of the icon on the current screen by means of a tool such as a camera, and simultaneously observes and records each random segment mark typed by the user, it is still possible to know the password.

为了进一步增加偷窥者窥视密码的技术难度,在本发明的另一实施例中,数据处理单元还可以将为每个图符都被分配至少2个随机字符段标记,同一第一图符组的所有图符的所有随机字符段标记各不相同,且每个图符的各个随机字符段标记随机轮换显示。比如为每个图符分配30个随机字符段标记,并以大约1秒间隔随机轮换显示,用户可键入其任意时刻看到的每个密码图符的任意一个随机字符段标记。In order to further increase the technical difficulty of the voyeur peeping the password, in another embodiment of the present invention, the data processing unit may further assign at least 2 random character segment marks for each icon, the same first icon group. All random character segment marks of all icons are different, and each random character segment mark of each icon is randomly rotated. For example, 30 random character segment marks are assigned to each icon, and the display is randomly rotated at intervals of about 1 second. The user can input any random character segment mark of each password icon seen at any time.

这样由于每个图符都有多个随机轮换显示的随机字符段标记,同一时刻显示出来的仅仅是所有随机字符段标记中的一小部分,用户键入随机字符段的过程中,显示单元中的每个图符的随机字符段标记都在不停的轮换交替变化中。这样,即便这一小部分被偷窥者用相机瞬间偷拍,也难以确定该用户键入的每段随机字符段分别指向哪些图符。In this way, since each icon has a plurality of random character segment marks displayed by random rotation, only a small part of all the random character segment marks are displayed at the same time, and the user inputs the random character segments in the display unit. The random segment markers for each icon are alternated in a non-stop rotation. Thus, even if this small portion is sneaked by the voyeur with the camera, it is difficult to determine which icons are randomly pointed to by each random character segment typed by the user.

本实施例中的第一图符组和第二图符组,可以采用位置固定的静态图形来显示各个图符,并采用分散的小型显示屏来显示图符的随机字符段标记,比如小型的数码管,以通过更换小型显示屏的显示内容实现随机字符段标记的随机轮换显示。In the first icon group and the second icon group in this embodiment, a static image with a fixed position may be used to display each icon, and a small display screen is used to display a random character segment mark of the icon, such as a small The digital tube realizes random rotation display of random character segment marks by replacing the display content of the small display screen.

用户键入随机字符段标记时,需要观察显示单元上的他所找到的密码图符对应的随机字符段标记,在其眼球转动观察和定位过程有可能被别人窥视并猜测到大致的屏幕位置。并且,偷窥者多次留意、记录并尝试后,有可能获取密码内容。 When the user types a random character segment mark, it is necessary to observe the random character segment mark corresponding to the password icon that he finds on the display unit, and it is possible that the eyeball rotation observation and positioning process may be peeped by others and guess the approximate screen position. Moreover, after the voyeur has noticed, recorded and tried it many times, it is possible to obtain the password content.

为了克服这一弊端并进一步增加他人偷窥密码的技术难度,增强密码的安全性,可以设置第一图符组中的图符的分布位置在先后接收用户输入的字符段过程中随机变化。 In order to overcome this drawback and further increase the technical difficulty of others to peek into the password, and to enhance the security of the password, the distribution position of the icon in the first icon group can be randomly changed during the process of receiving the character segment input by the user.

采用了随机变化图符的分布位置的措施后,因第一图符组中的图符位置不固定,每当用户进行下一次密码输入操作时,用户和偷窥者都会发现第一图符组中的所有图符位置已经重新进行了随机排序。用户可以在众目睽睽下搜寻密码图符,并从容输入其观察到的密码图符的不同于前次的另一组随机字符段标记,仍然不用担心别人根据用户目光来猜测密码图符位置。After adopting the measure of the distribution position of the random change icon, since the position of the icon in the first icon group is not fixed, the user and the voyeur will find the first icon group whenever the user performs the next password input operation. All of the icon positions have been reordered randomly. The user can search for the password icon in the public view, and enter the other set of random character segment marks of the previously observed password icon, and still do not have to worry about the guess of the password icon position according to the user's eyes.

请参考图3和图4所示,构成第一图符组的图符3采用25个英文字母表示。在用户输入密码过程中,显示单元显示的这组字母图符的分布位置会以例如大约2秒的间隔随机变化。图4所示为图3中的第一图符组经过一次随机变化后的第一图符组状态。这样进一步增加他人窥视密码的技术难度,使得通过记录用户观察寻找密码图符时的目光注视方向来缩小猜测密码图符位置的手段更加难以实施。Referring to FIG. 3 and FIG. 4, the icon 3 constituting the first icon group is represented by 25 English letters. During the user input of the password, the distribution position of the set of letter icons displayed by the display unit is randomly changed at intervals of, for example, about 2 seconds. FIG. 4 is a diagram showing the state of the first icon group after a random change of the first icon group in FIG. 3. This further increases the technical difficulty of others to peep into the password, making it more difficult to implement the means of narrowing the location of the guessing password by recording the direction of the eye gaze when the user observes the search for the password icon.

在有的实施例中,为了降低用户搜寻密码图符的难度,可以将第一图符组内的图符用很少的几种背景颜色来区分,具有相同背景颜色的图符只有数个。这样在用户搜寻密码图符时,可以只在具有特定背景颜色的图符中寻找密码图符。In some embodiments, in order to reduce the difficulty of the user searching for the password icon, the icons in the first icon group can be distinguished by a few background colors, and there are only a few icons having the same background color. In this way, when the user searches for the password icon, the password icon can be found only in the icon with a specific background color.

同理,也可以用特殊轮廓之类的其他容易区分的形状特征来区分图符,比如用方形、菱形、圆形、星型轮廓来区分多组图符。因人眼的生理能力限制,同一个人无法同时观察和记录用户输入密码时的手指动作和屏幕上的每个第一图符组的所有随机字符段标记,也就无法确切观察和记录下用户每次输入的随机字符段究竟对应屏幕上的哪一个图符。尤其是当每个图符都有轮换交替显示的多个随机字符段标记、和/或图符的分布位置随机变化时,即便被人偷拍屏幕也难以破解密码。Similarly, other easily distinguishable shape features such as special contours can be used to distinguish between icons, such as square, diamond, circle, and star outlines to distinguish multiple sets of icons. Due to the limitation of the physiological ability of the human eye, the same person cannot simultaneously observe and record the finger movements when the user inputs the password and all the random character segment marks of each first icon group on the screen, so that the user cannot be accurately observed and recorded. Which of the icons on the screen corresponds to the random character segment input twice. In particular, when each of the icons has a plurality of random character segment marks alternately displayed, and/or the distribution position of the icons randomly changes, it is difficult to crack the password even if the screen is sneaked.

本文参照了各种示范实施例进行说明。然而,本领域的技术人员将认识到,在不脱离本文范围的情况下,可以对示范性实施例做出改变和修正。例如,各种操作步骤以及用于执行操作步骤的组件,可以根据特定的应用或考虑与系统的操作相关联的任何数量的成本函数以不同的方式实现。Descriptions are made herein with reference to various exemplary embodiments. However, it will be appreciated by those skilled in the art that changes and modifications may be made to the exemplary embodiments without departing from the scope of the invention. For example, various operational steps and components for performing the operational steps can be implemented in different ways depending on the particular application or any number of cost functions associated with the operation of the system.

另外,如本领域技术人员所理解的,本文的原理可以反映在计算机可读存储介质上的计算机程序产品中,该可读存储介质预装有计算机可读程序代码。任何有形的、非暂时性的计算机可读存储介质皆可被使用,包括磁存储设备(硬盘、软盘等)、光学存储设备(CD-ROM、DVD、Blu Ray盘等)、闪存和/或诸如此类。这些计算机程序指令可被加载到通用计算机、专用计算机或其他可编程数据处理设备上以形成机器,使得这些在计算机上或其他可编程数据处理装置上执行的指令可以生成实现指定的功能的装置。这些计算机程序指令也可以存储在计算机可读存储器中,该计算机可读存储器可以指示计算机或其他可编程数据处理设备以特定的方式运行,这样存储在计算机可读存储器中的指令就可以形成一件制造品,包括实现指定功能的实现装置。计算机程序指令也可以加载到计算机或其他可编程数据处理设备上,从而在计算机或其他可编程设备上执行一系列操作步骤以产生一个计算机实现的进程,使得在计算机或其他可编程设备上执行的指令可以提供用于实现指定功能的步骤。In addition, as will be appreciated by those skilled in the art, the principles herein may be embodied in a computer program product on a computer readable storage medium preloaded with computer readable program code. Any tangible, non-transitory computer readable storage medium may be utilized, including magnetic storage devices (hard disks, floppy disks, etc.), optical storage devices (CD-ROM, DVD, Blu Ray disks, etc.), flash memory, and/or the like. . These computer program instructions can be loaded onto a general purpose computer, special purpose computer or other programmable data processing device to form a machine such that the instructions executed on the computer or other programmable data processing device can generate means for performing the specified function. The computer program instructions can also be stored in a computer readable memory, which can instruct the computer or other programmable data processing device to operate in a particular manner such that the instructions stored in the computer readable memory can form a single piece Manufacturing, including implementations that implement specified functions. Computer program instructions can also be loaded onto a computer or other programmable data processing device to perform a series of operational steps on a computer or other programmable device to produce a computer-implemented process for execution on a computer or other programmable device. Instructions can provide steps for implementing a given function.

虽然在各种实施例中已经示出了本文的原理,但是许多特别适用于特定环境和操作要求的结构、布置、比例、元件、材料和部件的修改可以在不脱离本披露的原则和范围内使用。以上修改和其他改变或修正将被包含在本文的范围之内。Although the principles of the present invention have been shown in the various embodiments, various modifications of the structures, arrangements, ratios, components, materials and components that are particularly suitable for the specific environment and operational requirements may be made without departing from the principles and scope of the disclosure. use. The above modifications and other changes or modifications are intended to be included within the scope of the disclosure.

前述具体说明已参照各种实施例进行了描述。然而,本领域技术人员将认识到,可以在不脱离本披露的范围的情况下进行各种修正和改变。因此,对于本披露的考虑将是说明性的而非限制性的意义上的,并且所有这些修改都将被包含在其范围内。同样,有关于各种实施例的优点、其他优点和问题的解决方案已如上所述。然而,益处、优点、问题的解决方案以及任何能产生这些的要素,或使其变得更明确的解决方案都不应被解释为关键的、必需的或必要的。本文中所用的术语“包括”和其任何其他变体,皆属于非排他性包含,这样包括要素列表的过程、方法、文章或设备不仅包括这些要素,还包括未明确列出的或不属于该过程、方法、系统、文章或设备的其他要素。此外,本文中所使用的术语“耦合”和其任何其他变体都是指物理连接、电连接、磁连接、光连接、通信连接、功能连接和/或任何其他连接。The foregoing detailed description has been described with reference to various embodiments. However, those skilled in the art will recognize that various modifications and changes can be made without departing from the scope of the disclosure. Therefore, the present disclosure is intended to be illustrative, and not restrictive, and all such modifications are included. Also, solutions to the advantages, other advantages, and problems of the various embodiments have been described above. However, benefits, advantages, solutions to problems, and any solution that produces these elements, or makes them more explicit, should not be construed as critical, necessary, or necessary. The term "comprise" and any other variants thereof, as used herein, are meant to be non-exclusive, such that a process, method, article, or device that includes a list of elements includes not only those elements but also those not explicitly listed or not , methods, systems, articles, or other elements of the device. Furthermore, the term "coupled" and any other variants thereof, as used herein, refers to physical, electrical, magnetic, optical, communication, functional, and/or any other connection.

具有本领域技术的人将认识到,在不脱离本发明的基本原理的情况下,可以对上述实施例的细节进行许多改变。因此,本发明的范围应根据以下权利要求确定。It will be appreciated by those skilled in the art that many changes may be made in the details of the embodiments described above without departing from the basic principles of the invention. Therefore, the scope of the invention should be determined according to the following claims.

Claims (8)

一种密码输入方法,其特征在于,包括:A password input method, comprising: 显示包含有密码图符在内的第一图符组;为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段显示在与各图符形成对应关系的位置,每一随机字符段包含至少一个字符;Displaying a first icon group including a password icon; assigning each of the icons in the first icon group different random character segment marks, and displaying random characters of each icon in each The icon forms a position of the correspondence, and each random character segment contains at least one character; 获取当前接收到的用户输入的字符段;Get the character segment of the currently received user input; 将当前接收到的输入字符段与密码图符的随机字符段标记作对比,根据对比结果确定密码输入是否正确。The currently received input character segment is compared with the random character segment mark of the password icon, and the password input is determined to be correct according to the comparison result. 如权利要求1所述的方法,其特征在于:The method of claim 1 wherein: 为每个图符分配至少2个随机字符段标记,每个图符的各个随机字符段标记随机轮换显示。Each icon is assigned at least 2 random character segment marks, and each random character segment mark of each icon is randomly rotated and displayed. 如权利要求1或2所述的方法,其特征在于:所述第一图符组中各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。The method according to claim 1 or 2, wherein the distribution position of each of the icons in the first icon group randomly changes during the process of receiving the character segments input by the user. 如权利要求1所述的方法,其特征在于,还包括密码设置步骤,具体包括:显示包含多个图符的第二图符组,将用户在第二图符组中选择的至少两个图符作为一组密码图符。The method according to claim 1, further comprising a password setting step, comprising: displaying a second icon group including a plurality of icons, and selecting at least two pictures selected by the user in the second icon group. As a set of password icons. 一种密码输入装置,包括:A password input device comprising: 显示单元,用于显示与密码输入操作相关的图形和字符信息;a display unit for displaying graphic and character information related to the password input operation; 数据处理单元,用于分析和处理与密码输入操作相关的信息;a data processing unit for analyzing and processing information related to the password input operation; 输入单元,用于向数据处理单元输入密码操作信息;An input unit, configured to input password operation information to the data processing unit; 其特征在于:It is characterized by: 显示单元还用于显示包含有密码图符在内的第一图符组,并在与各图符形成对应关系的位置显示各图符的随机字符段;The display unit is further configured to display the first icon group including the password icon, and display a random character segment of each icon at a position corresponding to each icon; 输入单元用于获取当前接收到的用户输入的字符段,并将输入字符段发送给数据处理单元;The input unit is configured to obtain a currently received character segment of the user input, and send the input character segment to the data processing unit; 数据处理单元还用于为第一图符组中的每个图符分配各不相同的随机字符段标记,并将各图符的随机字符段发送至显示单元,每个随机字符段包含至少一个字符;数据处理单元还用于将当前接收到的输入字符段与密码图符的随机字符段标记作对比,根据对比结果确定密码输入是否正确。The data processing unit is further configured to allocate each random character segment mark for each icon in the first icon group, and send the random character segment of each icon to the display unit, each random character segment includes at least one The data processing unit is further configured to compare the currently received input character segment with the random character segment mark of the password icon, and determine whether the password input is correct according to the comparison result. 如权利要求5所述的装置,其特征在于:The device of claim 5 wherein: 数据处理单元还用于为每个图符分配至少2个随机字符段标记,每个图符的各个随机字符段标记随机轮换显示。The data processing unit is further configured to allocate at least 2 random character segment marks for each icon, and each random character segment mark of each icon is randomly rotated and displayed. 如权利要求5或者6所述的装置,其特征在于:所述第一图符组中的各个图符的分布位置在先后接收用户输入的字符段过程中随机变化。The apparatus according to claim 5 or 6, wherein the distribution position of each of the icons in the first icon group is randomly changed during the process of receiving the character segments input by the user. 如权利要求5所述的装置,其特征在于,所述数据处理单元还用于将包含多个图符的第二图符组发送至显示单元显示,并将用户在第二图符组中选择的至少两个图符作为一组密码图符。The apparatus according to claim 5, wherein said data processing unit is further configured to send a second icon group including a plurality of icons to the display unit display, and select the user in the second icon group At least two icons are used as a set of password icons.
PCT/CN2019/076336 2018-02-28 2019-02-27 Password input method and apparatus Ceased WO2019165976A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201810165149.3A CN108319874A (en) 2018-02-28 2018-02-28 A kind of cipher-code input method and device
CN201810165149.3 2018-02-28

Publications (1)

Publication Number Publication Date
WO2019165976A1 true WO2019165976A1 (en) 2019-09-06

Family

ID=62900541

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2019/076336 Ceased WO2019165976A1 (en) 2018-02-28 2019-02-27 Password input method and apparatus

Country Status (2)

Country Link
CN (1) CN108319874A (en)
WO (1) WO2019165976A1 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108319874A (en) * 2018-02-28 2018-07-24 于君 A kind of cipher-code input method and device
US11736472B2 (en) 2019-06-10 2023-08-22 Microsoft Technology Licensing, Llc Authentication with well-distributed random noise symbols
US12155646B2 (en) 2019-06-10 2024-11-26 Microsoft Technology Licensing, Llc Authentication with random noise symbols and pattern recognition
US11258783B2 (en) * 2019-06-10 2022-02-22 Microsoft Technology Licensing, Llc Authentication with random noise symbols and pattern recognition

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183941B (en) * 2007-08-03 2011-03-09 廖睿 Random concealed inquiry type cipher authentication technique
CN103413103A (en) * 2013-08-30 2013-11-27 任建军 System and method for inputting graphical passwords
CN103916515A (en) * 2012-12-31 2014-07-09 比亚迪股份有限公司 Dynamic decryption method used for mobile terminal, and mobile terminal
CN108319874A (en) * 2018-02-28 2018-07-24 于君 A kind of cipher-code input method and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101183941B (en) * 2007-08-03 2011-03-09 廖睿 Random concealed inquiry type cipher authentication technique
CN103916515A (en) * 2012-12-31 2014-07-09 比亚迪股份有限公司 Dynamic decryption method used for mobile terminal, and mobile terminal
CN103413103A (en) * 2013-08-30 2013-11-27 任建军 System and method for inputting graphical passwords
CN108319874A (en) * 2018-02-28 2018-07-24 于君 A kind of cipher-code input method and device

Also Published As

Publication number Publication date
CN108319874A (en) 2018-07-24

Similar Documents

Publication Publication Date Title
US10176315B2 (en) Graphical authentication
US20200065469A1 (en) Password pattern recognition authentication method
RU2589397C2 (en) Authentication graphic gestures
KR101885836B1 (en) Method of Providing User Certification and Additional Service Using Image Password System
US20060174339A1 (en) An arrangement and method of graphical password authentication
WO2019165976A1 (en) Password input method and apparatus
CN101587398A (en) Password protection method
US9589125B2 (en) 3D pass-go
Kwon et al. SteganoPIN: Two-faced human–machine interface for practical enforcement of PIN entry security
Ritter et al. Miba: Multitouch image-based authentication on smartphones
JP2015133116A (en) How to enter sensitive data on your device
WO2019137489A1 (en) Password input method, device, and computer-readable storage medium
KR102014408B1 (en) Method and computer program for user authentication using image touch password
WO2019165979A1 (en) Method and equipment for inputting password having symbol and random character segment tag
WO2019165978A1 (en) Password input method and device using indirect input of random character field mark
JP6430011B6 (en) Kanji input method and apparatus
WO2019210819A1 (en) Method and apparatus for authenticating icon password having random character field mark
JP2017536630A6 (en) Kanji input method and apparatus
Gao et al. Usability and security of the recall-based graphical password schemes
KR20180067082A (en) Method and apparatus for authenication using dial virtual keypad
KR102325833B1 (en) User authentification method and system using graphic otp
JP6493973B2 (en) Character string input method and program
KR20170114955A (en) Graphical user authentication using Character and Additional service providing method and System performing the same
KR20190133818A (en) Method and computer program for user authentication using Picture Password
Kim et al. Shoulder-surfing resistant smartphone authentication scheme using virtual joystick

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19761238

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 19761238

Country of ref document: EP

Kind code of ref document: A1