CN104168261B - Dynamic password login method and device - Google Patents
Dynamic password login method and device Download PDFInfo
- Publication number
- CN104168261B CN104168261B CN201410313130.0A CN201410313130A CN104168261B CN 104168261 B CN104168261 B CN 104168261B CN 201410313130 A CN201410313130 A CN 201410313130A CN 104168261 B CN104168261 B CN 104168261B
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- application
- account name
- login
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
- Telephone Function (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present invention proposes a kind of login method and device based on dynamic password, the login method based on dynamic password includes the request message for receiving the first application and sending, include account name in the request message, first application is the application that current guiding user carries out register;Judge whether long interface channel corresponding with the account name, and when there are the long interface channel, generate dynamic password, the long interface channel is the interface channel between server-side and the second application, and second application is mounted in the application for receiving dynamic password in mobile device;The dynamic password is sent to second application according to the long interface channel;The first login authentication request that first application is sent is received, includes the account name and the dynamic password in the first login authentication request, and login authentication processing is carried out to user according to the account name and the dynamic password.This method can improve the scope of application of dynamic password login.
Description
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a dynamic password login method and apparatus.
Background
Traditional login approaches based on account name and set static password have become increasingly insecure. To improve security, a dynamic password may be used for login. In the related art, the mobile phone number may be registered as an account name, or the registered account name and the mobile phone number are bound, and then the dynamic password is sent to the mobile phone by a short message, and the user inputs the dynamic password.
However, in this way, because the dynamic password needs to be sent to the mobile phone, when the user does not bind the account name with the mobile phone number or the mobile phone number cannot be used, the user cannot obtain the dynamic password, so that the use of the dynamic password login way is limited.
Disclosure of Invention
The present invention is directed to solving, at least to some extent, one of the technical problems in the related art.
Therefore, an object of the present invention is to provide a login method based on a dynamic password, which can improve the application range of dynamic password login.
Another object of the present invention is to provide a login device based on a dynamic password.
In order to achieve the above object, an embodiment of the first aspect of the present invention provides a login method based on a dynamic password, including: receiving a request message sent by a first application, wherein the request message contains an account name, and the first application is an application for guiding a user to perform login operation currently; judging whether a long connecting channel corresponding to the account name exists or not, and generating a dynamic password when the long connecting channel exists, wherein the long connecting channel is a connecting channel between a server side and a second application, and the second application is an application installed on the mobile equipment and used for receiving the dynamic password; sending the dynamic password to the second application according to the long connecting channel; and receiving a first login authentication request sent by the first application, wherein the first login authentication request comprises the account name and the dynamic password, and performing login authentication processing on a user according to the account name and the dynamic password.
According to the login method based on the dynamic password, which is provided by the embodiment of the first aspect of the invention, the dynamic password is sent to the mobile equipment through the connecting channel, and the login method is not limited to be sent according to the mobile phone number, so that the application range of the login of the dynamic password is effectively expanded.
In order to achieve the above object, an embodiment of a second aspect of the present invention provides a login method based on a dynamic password, including: establishing a long connecting channel corresponding to the account name with the server; and receiving a dynamic password sent by the server according to the long connection channel, wherein the dynamic password is generated after the server receives a request message containing the account name sent by a first application, and the first application is an application for guiding a user to perform login operation currently.
According to the login method based on the dynamic password, which is provided by the embodiment of the second aspect of the invention, the dynamic password is sent to the mobile equipment through the connecting channel, the server side is not limited to be sent according to the mobile phone number, and the application range of the login of the dynamic password is effectively improved.
In order to achieve the above object, a login device based on a dynamic password according to an embodiment of a third aspect of the present invention includes: the system comprises a first receiving module, a second receiving module and a third receiving module, wherein the first receiving module is used for receiving a request message sent by a first application, the request message comprises an account name, and the first application is an application for guiding a user to perform login operation currently; the processing module is used for judging whether a long connecting channel corresponding to the account name exists or not, and generating a dynamic password when the long connecting channel exists, wherein the long connecting channel is a connecting channel between a server and a second application, and the second application is an application installed on the mobile equipment and used for receiving the dynamic password; the sending module is used for sending the dynamic password to the second application according to the long connecting channel; and the login module is used for receiving a first login authentication request sent by the first application, wherein the first login authentication request comprises the account name and the dynamic password, and login authentication processing is carried out on a user according to the account name and the dynamic password.
The login device based on the dynamic password provided by the embodiment of the third aspect of the invention transmits the dynamic password to the mobile equipment by adopting the connecting channel, is not limited to be transmitted according to the mobile phone number, and effectively improves the application range of the login of the dynamic password.
In order to achieve the above object, a login device based on a dynamic password according to a fourth aspect of the present invention includes: the establishing module is used for establishing a long connecting channel corresponding to the account name with the server; and the receiving module is used for receiving a dynamic password sent by the server according to the long connecting channel, wherein the dynamic password is generated after the server receives a request message containing the account name sent by a first application, and the first application is an application for guiding a user to perform login operation currently.
According to the login device based on the dynamic password, the dynamic password is sent to the mobile equipment through the connecting channel, the server side is not limited to be sent according to the mobile phone number, and the application range of the login of the dynamic password is effectively widened.
Additional aspects and advantages of the invention will be set forth in part in the description which follows and, in part, will be obvious from the description, or may be learned by practice of the invention.
Drawings
The foregoing and/or additional aspects and advantages of the present invention will become apparent and readily appreciated from the following description of the embodiments, taken in conjunction with the accompanying drawings of which:
fig. 1 is a flowchart illustrating a login method based on a dynamic password according to an embodiment of the present invention;
FIG. 2 is a flowchart illustrating a login method based on a dynamic password according to another embodiment of the present invention;
FIG. 3 is a flowchart illustrating a login method based on a dynamic password according to another embodiment of the present invention;
FIG. 4 is a schematic structural diagram of a login device based on a dynamic password according to another embodiment of the present invention;
FIG. 5 is a schematic structural diagram of a login device based on a dynamic password according to another embodiment of the present invention;
FIG. 6 is a schematic structural diagram of a login device based on a dynamic password according to another embodiment of the present invention;
fig. 7 is a schematic structural diagram of a login device based on a dynamic password according to another embodiment of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the accompanying drawings are illustrative only for the purpose of explaining the present invention, and are not to be construed as limiting the present invention. On the contrary, the embodiments of the invention include all changes, modifications and equivalents coming within the spirit and terms of the claims appended hereto.
Fig. 1 is a schematic flowchart of a login method based on a dynamic password according to an embodiment of the present invention, where the method includes:
s11: the server receives a request message sent by a first application, wherein the request message contains an account name, and the first application is an application for guiding a user to perform login operation currently.
The server may be specifically an account system server.
The first application may be on a PC device or an intelligent terminal device such as an intelligent television.
Alternatively, the account name may be a mailbox name, a cell phone number, or a user name, such as any combination of numbers, letters, and characters.
The request message may be sent when the dynamic password needs to be obtained, for example, when the user logs in a website, the dynamic password needs to be obtained, and when the user clicks to obtain the dynamic password, the first application sends the request message to the server to request the dynamic password.
S12: and judging whether a long connecting channel corresponding to the account name exists or not, and generating a dynamic password when the long connecting channel exists, wherein the long connecting channel is a connecting channel between a server side and a second application, and the second application is an application installed on the mobile equipment and used for receiving the dynamic password.
The dynamic password is generated according to a preset algorithm, and the preset algorithm may be a random algorithm, for example, a combination of numbers and/or letters is randomly generated as the dynamic password.
Further, after the dynamic password is generated, the expiration time of the dynamic password may be set.
Specifically, the account system server may pre-establish a correspondence between the account name and the long connection channel, so as to determine whether the long connection channel corresponding to the account name included in the request message exists.
The long connection channel is a connection channel between the server and a second application, which is an application that the user has previously installed and launched on the mobile device, and which may be referred to as a secure app.
The link connection is divided into long connection and short connection, the short connection means that the connection is established once when both communication parties have data interaction each time, the connection is disconnected after the data transmission is completed, and the connection and the data interaction are reestablished when the data interaction exists next time; the long connection means that the two communication parties keep connection after the data transmission is finished, and the data can be directly transmitted by using the connection next time without reestablishing the connection.
S13: and sending the dynamic password to the second application according to the long connecting channel.
The account system server side can send the dynamic password to the application on the mobile device through the long connection channel, the application can be called as a security app, and the security app can be displayed to the user after receiving the dynamic password.
S14: and receiving a first login authentication request sent by the first application, wherein the first login authentication request comprises the account name and the dynamic password, and performing login authentication processing on a user according to the account name and the dynamic password.
The user can acquire the dynamic password according to the display of the second application, and then input the dynamic password in a dynamic password input box of a login interface of a first application, wherein the first application is an application for guiding the user to perform login operation currently, in addition, the user can also input an account name in the login interface, and then the first application sends the dynamic password and the account name to an account system server for authentication.
And the account system server finds the corresponding dynamic password and the expiration time from the pre-stored information according to the account name, if the expiration time is not exceeded when the first login authentication request is received and the received dynamic password is consistent with the dynamic password acquired from the stored information, the authentication of the dynamic password is passed, otherwise, the authentication is not passed.
Further, after passing the authentication, the user may be logged in, a login session (session) is returned to the client, and the corresponding relationship between the account name and the dynamic password is deleted to invalidate the dynamic password. When not authenticated, an error message may be returned to the first application.
In the embodiment, the dynamic password is sent to the mobile device through the long connection channel, and the dynamic password is not limited to be sent according to the mobile phone number, so that the application range of the dynamic password login is effectively widened.
Fig. 2 is a schematic flowchart of a login method based on a dynamic password according to another embodiment of the present invention, where the method includes:
s21: and establishing a long connecting channel corresponding to the account name with the server.
The server may be specifically an account system server.
Specifically, the user starts a pre-installed application on the mobile device, which may be a secure app, and inputs an account name and a static password, and triggers the secure app to send a second login authentication request to the account system server, where the second login authentication request includes the account name and the static password set by the user.
The user can register with the account system server in advance, and the account system server stores registration information which comprises an account name and a static password.
And after receiving the second login authentication request, the account system server compares the account name and the password in the second login authentication request with the stored account name and password pre-registered by the user for authentication.
If the account name and the password received by the account system server are consistent with the account name and the static password obtained from the registration information, the login authentication is passed, and if any one or both of the account name and the static password are inconsistent, the login authentication is not passed.
Further, if the account name and static password fail login authentication, the security app prompts the user for corresponding error information, e.g., the account name you enter does not exist! Or for example, you enter a static password with an error!
Further, the security app prompts the user to again enter an account name and/or static password.
The long connection may be established after login authentication, or the long connection may be established after other account names are established after login authentication.
Specifically, after the login authentication is passed, the server keeps the connection of the app when the account name and the static password are sent, so as to obtain a long connection, and stores the corresponding relation between the long connection and the account name. Or, the app sends another account name and a static password to the server before, the server establishes a long connection corresponding to the other account name after the other account name passes authentication, and when the current account name passes authentication, the current account name can also be corresponding to the established long connection. That is, one long connection may correspond to each account name, or one long connection may correspond to multiple account names.
S22: and receiving a dynamic password sent by the server according to the long connection channel, wherein the dynamic password is generated after the server receives a request message containing the account name sent by a first application, and the first application is an application for guiding a user to perform login operation currently.
The dynamic password is generated according to a preset algorithm, and the preset algorithm may be a random algorithm, for example, a combination of numbers and/or letters is randomly generated as the dynamic password.
Specifically, the account system server receives a request message sent by a first application, and can determine whether a long connection channel corresponding to an account name in the request message exists, and generate a dynamic password according to a preset algorithm when the long connection channel corresponding to the account name exists.
The long connection channel is a connection channel between the account system server and an application, which is pre-installed and started by the user on the mobile device, and may be referred to as a secure app.
The link connection is divided into long connection and short connection, the short connection means that the connection is established once when both communication parties have data interaction each time, the connection is disconnected after the data transmission is completed, and the connection and the data interaction are reestablished when the data interaction exists next time; the long connection means that the two communication parties keep connection after the data transmission is finished, and the data can be directly transmitted by using the connection next time without reestablishing the connection.
The mobile device receives the dynamic password sent by the account system server through the long connecting channel, and the application can show the dynamic password to the user after receiving the dynamic password.
In the embodiment, the dynamic password is sent to the mobile device through the connection channel, the server is not limited to sending the dynamic password according to the mobile phone number, and the application range of the dynamic password login is effectively widened.
Fig. 3 is a schematic flowchart of a login method based on a dynamic password according to another embodiment of the present invention, where the method includes:
s301: after the user starts the second application and adds the account name in the second application, the mobile device is triggered to send a second login authentication request to the account system server, the second login authentication request comprises the account name and the static password, and the second application is an application pre-installed on the mobile device.
The mobile device is, for example, a mobile phone or a tablet computer. This pre-installed application may be referred to as a secure app.
Specifically, a user starts a secure app on a mobile device of the user, inputs an account name and a static password, and triggers the secure app to send a second login authentication request to an account system server, wherein the second login authentication request includes the account name and the static password set by the user.
S302: and after receiving the second login authentication request, the account system server performs login authentication and judges whether the login authentication is passed, if so, S304 is executed, and if not, S303 is executed.
The user can register with the account system server in advance, and the account system server stores registration information which comprises an account name and a static password.
And after receiving the second login authentication request, the account system server compares the account name and the password in the second login authentication request with the stored account name and password pre-registered by the user for authentication.
If the account name and the password received by the account system server are consistent with the account name and the static password obtained from the registration information, the login authentication is passed, and if any one or both of the account name and the static password are inconsistent, the login authentication is not passed.
S303: and the account system server returns error information to the mobile equipment.
Specifically, if the account name and static password fail login authentication, the security app prompts the user for corresponding error information, e.g., the account name you enter does not exist! Or for example, you enter a static password with an error!
Further, the security app prompts the user to again enter an account name and/or static password.
S304: and the account system server establishes long connection with the second application, and correspondingly saves the account name and the long connection.
The long connection may be established after login authentication, or the long connection may be established after other account names are established after login authentication.
Specifically, after the login authentication is passed, the account system server maintains the connection of the app when the app sends the account name and the static password, obtains a long connection, and stores the corresponding relationship between the long connection and the account name. Or, the app sends another account name and a static password to the account system server before, after the account system server authenticates the other account name, a long connection corresponding to the other account name is established, and after the current account name passes the verification, the current account name can also be corresponding to the established long connection. That is, one long connection may correspond to each account name, or one long connection may correspond to multiple account names.
S305: the user inputs an account name on a login interface of a first application, and triggers the first application to send a request message to an account system server, wherein the request message is used for requesting a dynamic password, the request message contains the account name, and the first application is an application for guiding the user to perform login operation at present, for example, the first application is on a PC or a smart television.
The request message may be sent when the dynamic password needs to be obtained, for example, when the user logs in a website, the dynamic password needs to be obtained, and when the user clicks to obtain the dynamic password, the first application sends the request message to the server to request the dynamic password.
S306: and the account system server judges whether the corresponding long connecting channel exists according to the account name contained in the request message, if not, S307 is executed, and if so, S308 is executed.
Because the account system server can store the corresponding relation between the account name and the long connection, whether the long connection corresponding to the current account name exists can be determined according to the pre-stored information.
S307: and the account system server returns error information to the first application, and the first application prompts the user.
The first application prompts the user that the following specific actions are taken: and prompting a user to install and start the security app, registering a user account, and adding an account capable of supporting dynamic password login to an account management module of the security app in advance.
S308: and the account system server generates a dynamic password according to the request message, sets expiration time, and establishes a corresponding relation between the account name and the dynamic password as well as the expiration time.
The dynamic password is generated according to a preset algorithm, and the preset algorithm may be a random algorithm, for example, a combination of numbers and/or letters is randomly generated as the dynamic password.
Further, after the dynamic password is generated, the expiration time of the dynamic password may be set, and the corresponding relationship between the account name and the dynamic password and the expiration time may be established and stored in the cache.
S309: and the account system server sends the dynamic password to a second application on the mobile equipment by adopting a long connecting channel corresponding to the account name.
The dynamic password can be sent to the application on the mobile equipment by the account system server through the long connecting channel.
S310: the second application presents the dynamic password to the user.
And the second application receives the dynamic password sent by the server and can present the dynamic password to the user for viewing.
The second application may present the dynamic password to the user by sending a system message or on an interface of the secure app.
S311: and the user inputs the seen dynamic password into a dynamic password input box of a login interface of the first application, and triggers the first application to send a first login request, wherein the first login request comprises an account name and the dynamic password which are input by the user.
S312: and the account system server judges whether to perform login processing according to the first login authentication request, if so, executes S314, and otherwise, executes S313.
Specifically, the first login authentication request includes a dynamic password and an account name, the account system server finds a corresponding dynamic password and expiration time from pre-stored information according to the account name, if the expiration time is not exceeded when the first login authentication request is received, and the received dynamic password is consistent with the dynamic password acquired from the stored information, login processing is performed, otherwise, login processing is not performed.
S313: and the account system server returns error information to the first application.
E.g. return a message that the login was unsuccessful, etc.
S314: the account system server-side logs in the user to obtain a login session (session), and returns login session information to the first application.
Optionally, after the login processing of the user is completed, the corresponding relationship between the account name and the dynamic password may be deleted to invalidate the dynamic password.
S315: and the first application finishes the user login processing according to the login session information.
Specifically, after the login interface of the first application receives the login session information returned by the account system server, corresponding logic processing after the user logs in may be completed, for example, the interface after logging in is displayed to the user.
In this embodiment, a connection channel is established with the server through an application on the mobile device, and the dynamic password is transmitted through the connection channel, so that the mobile device is not limited to transmitting the dynamic password through a mobile phone number, and the application range can be widened. According to the embodiment, the dynamic password can be sent to the mobile equipment in time by establishing the long connection, and the validity of the dynamic password is ensured. In the embodiment, the corresponding connection channel is established after the user is authenticated, so that the safety can be improved.
Fig. 4 is a schematic structural diagram of a login apparatus based on a dynamic password according to another embodiment of the present invention, where the apparatus 40 includes a first receiving module 41, a processing module 42, a sending module 43, and a login module 44.
The first receiving module 41 is configured to receive a request message sent by a first application, where the request message includes an account name, and the first application is an application that currently guides a user to perform a login operation.
The first application may be on a PC device or an intelligent terminal device such as an intelligent television.
Alternatively, the account name may be a mailbox name, a cell phone number, or a user name, such as any combination of numbers, letters, and characters.
The request message may be sent when the dynamic password needs to be obtained, for example, when the user logs in a website, the dynamic password needs to be obtained, and when the user clicks to obtain the dynamic password, the first application sends the request message to the server to request the dynamic password.
The processing module 42 is configured to determine whether a long connection channel corresponding to the account name exists, and generate a dynamic password when the long connection channel exists, where the long connection channel is a connection channel between a server and a second application, and the second application is an application installed on a mobile device and used for receiving the dynamic password.
The dynamic password is generated according to a preset algorithm, and the preset algorithm may be a random algorithm, for example, a combination of numbers and/or letters is randomly generated as the dynamic password.
Further, after the dynamic password is generated, the expiration time of the dynamic password may be set.
Specifically, the account system server may pre-establish a correspondence between the account name and the long connection channel, so as to determine whether the long connection channel corresponding to the account name included in the request message exists.
The long connection channel is a connection channel between the server and a second application, which is an application that the user has previously installed and launched on the mobile device, and which may be referred to as a secure app.
The link connection is divided into long connection and short connection, the short connection means that the connection is established once when both communication parties have data interaction each time, the connection is disconnected after the data transmission is completed, and the connection and the data interaction are reestablished when the data interaction exists next time; the long connection means that the two communication parties keep connection after the data transmission is finished, and the data can be directly transmitted by using the connection next time without reestablishing the connection. The sending module 43 is configured to send the dynamic password to the second application according to the long connection channel.
The account system server side can send the dynamic password to the application on the mobile device through the long connection channel, the application can be called as a security app, and the security app can be displayed to the user after receiving the dynamic password.
The login module 44 is configured to receive a first login authentication request sent by the first application, where the first login authentication request includes the account name and the dynamic password, and perform login authentication processing on a user according to the account name and the dynamic password.
In one embodiment, after the dynamic password is generated, the apparatus 40 further includes a setting module 45, as shown in fig. 5, where the setting module 45 is configured to correspondingly store the account name and the dynamic password, and set an expiration time of the dynamic password, and the login module 44 is specifically configured to obtain the dynamic password and the expiration time corresponding to the received account name from pre-stored information; and when the stored dynamic password is not expired and is consistent with the received dynamic password, allowing the user corresponding to the account name to log in.
The user can acquire the dynamic password according to the display of the second application, and then input the dynamic password in a dynamic password input box of a login interface of a first application, wherein the first application is an application for guiding the user to perform login operation currently, in addition, the user can also input an account name in the login interface, and then the first application sends the dynamic password and the account name to an account system server for authentication.
And the account system server finds the corresponding dynamic password and the expiration time from the pre-stored information according to the account name, if the expiration time is not exceeded when the first login authentication request is received and the received dynamic password is consistent with the dynamic password acquired from the stored information, the authentication of the dynamic password is passed, otherwise, the authentication is not passed.
Further, after passing the authentication, the user may be logged in, a login session (session) is returned to the client, and the corresponding relationship between the account name and the dynamic password is deleted to invalidate the dynamic password. When not authenticated, an error message may be returned to the first application.
In another embodiment, after the user corresponding to the account name is allowed to log in, the apparatus 40 further includes a deleting module 46, as shown in fig. 5, where the deleting module 46 is configured to delete the stored dynamic password.
In another embodiment, the apparatus 40 further comprises a second receiving module 47, a creating module 48, and a saving module 49.
The second receiving module 47 is configured to receive a second login authentication request sent by the second application after the second application is started, where the second login authentication request includes the account name and the static password;
the establishing module 48 is configured to establish a long connection channel with the second application after the account name and the static password are verified;
the saving module 49 is configured to correspondingly save the account name and the long connection channel.
In the embodiment, the dynamic password is sent to the mobile device through the connection channel, and the dynamic password is not limited to be sent according to the mobile phone number, so that the application range of the dynamic password login is effectively widened.
Fig. 6 is a schematic structural diagram of a login device based on a dynamic password according to another embodiment of the present invention, where the device 60 includes an establishing module 61 and a receiving module 62.
The establishing module 61 is used for establishing a long connection channel corresponding to the account name with the server.
In one embodiment, the establishing module 61 comprises a first unit 611 and a second unit 612, as shown in fig. 7.
The first unit 611, after a second application is started, is configured to send a login authentication request to the server, where the login authentication request includes the account name and the static password, and the second application is an application installed in advance on the mobile device and configured to receive the dynamic password;
the second unit 612, after the account name and the static password are verified by the server, is configured to establish the long connection channel, and enable the server to correspondingly store the account name and the long connection channel.
In another embodiment, after the long connection channel is interrupted, the establishing module 61 is specifically configured to automatically try to establish the connection channel with the server through the application until the long connection channel is established.
The receiving module 62 is configured to receive, according to the long connection channel, a dynamic password sent by the server, where the dynamic password is generated by the server after receiving a request message containing the account name sent by a first application, and the first application is an application that currently guides a user to perform a login operation.
In one embodiment, the apparatus 60 further includes a presentation module 63, as shown in fig. 7, the presentation module 63 is configured to present the dynamic password to the user by way of system notification; or, presenting the dynamic password on an interface of the application.
In the embodiment, the dynamic password is sent to the mobile device through the connection channel, the server is not limited to sending the dynamic password according to the mobile phone number, and the application range of the dynamic password login is effectively widened.
It should be noted that the terms "first," "second," and the like in the description of the present invention are used for descriptive purposes only and are not to be construed as indicating or implying relative importance. In addition, in the description of the present invention, "a plurality" means two or more unless otherwise specified.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and alternate implementations are included within the scope of the preferred embodiment of the present invention in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the present invention.
It should be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
It will be understood by those skilled in the art that all or part of the steps carried by the method for implementing the above embodiments may be implemented by hardware related to instructions of a program, which may be stored in a computer readable storage medium, and when the program is executed, the program includes one or a combination of the steps of the method embodiments.
In addition, functional units in the embodiments of the present invention may be integrated into one processing module, or each unit may exist alone physically, or two or more units are integrated into one module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. The integrated module, if implemented in the form of a software functional module and sold or used as a stand-alone product, may also be stored in a computer readable storage medium.
The storage medium mentioned above may be a read-only memory, a magnetic or optical disk, etc.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made to the above embodiments by those of ordinary skill in the art within the scope of the present invention.
Claims (16)
1. A login method based on a dynamic password is characterized by comprising the following steps:
receiving a request message sent by a first application, wherein the request message contains an account name, and the first application is an application installed on a mobile device and used for guiding a user to perform login operation currently;
judging whether a long connecting channel corresponding to the account name exists or not, and generating a dynamic password when the long connecting channel exists, wherein the long connecting channel is a connecting channel between a server side and a second application, and the second application is an application installed on the mobile equipment and used for receiving the dynamic password;
sending the dynamic password to the second application according to the long connecting channel;
and receiving a first login authentication request sent by the first application, wherein the first login authentication request comprises the account name and the dynamic password, and performing login authentication processing on a user according to the account name and the dynamic password.
2. The method of claim 1, further comprising:
receiving a second login authentication request sent by the second application after the second application is started, wherein the second login authentication request comprises the account name and a static password;
after the account name and the static password pass verification, a long connection channel between the account name and the second application is established;
and correspondingly storing the account name and the long connecting channel.
3. The method of claim 1, wherein after the generating the dynamic password, the method further comprises: correspondingly storing the account name and the dynamic password, setting the expiration time of the dynamic password, and performing login authentication processing on a user according to the account name and the dynamic password, wherein the login authentication processing comprises the following steps:
acquiring a dynamic password and expiration time corresponding to the received account name from pre-stored information;
and when the stored dynamic password is not expired and is consistent with the received dynamic password, allowing the user corresponding to the account name to log in.
4. The method of claim 3, wherein after allowing the user corresponding to the account name to log in, the method further comprises:
and deleting the stored dynamic password.
5. A login method based on a dynamic password is characterized by comprising the following steps:
establishing a long connecting channel corresponding to the account name with the server; the long connection channel is a connection channel between the server and a second application, and the second application is an application installed on the mobile device and used for receiving the dynamic password;
and receiving a dynamic password sent by the server according to the long connection channel, wherein the dynamic password is generated after the server receives a request message containing the account name sent by a first application, and the first application is an application installed on the mobile equipment and used for currently guiding a user to perform login operation.
6. The method of claim 5, wherein the establishing a long connection channel corresponding to an account name with the server comprises:
after a second application is started, sending a login authentication request to the server, wherein the login authentication request comprises the account name and a static password, and the second application is an application which is pre-installed on the mobile equipment and is used for receiving a dynamic password;
and after the account name and the static password are verified at the server side, establishing the long connecting channel, and correspondingly storing the account name and the long connecting channel by the server side.
7. The method of claim 5, wherein after receiving the dynamic password sent by the server, the method further comprises:
presenting the dynamic password to a user in a system notification mode; or,
presenting the dynamic password on an interface of the application.
8. The method of any one of claims 5 to 7, wherein after the interruption of the long connecting channel, the method further comprises:
and automatically trying to establish a connection channel with the server through the application until the long connection channel is established.
9. A login apparatus based on a dynamic password, comprising:
the system comprises a first receiving module, a second receiving module and a third receiving module, wherein the first receiving module is used for receiving a request message sent by a first application, the request message comprises an account name, and the first application is an application which is installed on mobile equipment and currently guides a user to perform login operation;
the processing module is used for judging whether a long connecting channel corresponding to the account name exists or not, and generating a dynamic password when the long connecting channel exists, wherein the long connecting channel is a connecting channel between a server and a second application, and the second application is an application installed on the mobile equipment and used for receiving the dynamic password;
the sending module is used for sending the dynamic password to the second application according to the long connecting channel;
and the login module is used for receiving a first login authentication request sent by the first application, wherein the first login authentication request comprises the account name and the dynamic password, and login authentication processing is carried out on a user according to the account name and the dynamic password.
10. The apparatus of claim 9, further comprising:
the second receiving module is used for receiving a second login authentication request sent by the second application after the second application is started, wherein the second login authentication request comprises the account name and the static password;
the establishing module is used for establishing a long connecting channel between the account name and the second application after the account name and the static password pass verification;
and the storage module is used for correspondingly storing the account name and the long connecting channel.
11. The apparatus according to claim 9, wherein after the dynamic password is generated, the apparatus further includes a setting module, the setting module is configured to correspondingly store the account name and the dynamic password, and set an expiration time of the dynamic password, and the login module is specifically configured to:
acquiring a dynamic password and expiration time corresponding to the received account name from pre-stored information;
and when the stored dynamic password is not expired and is consistent with the received dynamic password, allowing the user corresponding to the account name to log in.
12. The apparatus of claim 11, wherein after the allowing the user corresponding to the account name to log in, the apparatus further comprises:
and the deleting module is used for deleting the stored dynamic password.
13. A login apparatus based on a dynamic password, comprising:
the establishing module is used for establishing a long connecting channel corresponding to the account name with the server; the long connection channel is a connection channel between the server and a second application, and the second application is an application installed on the mobile device and used for receiving the dynamic password;
a receiving module, configured to receive, according to the long connection channel, a dynamic password sent by the server, where the dynamic password is generated by the server after receiving a request message containing the account name sent by a first application, and the first application is an application installed on the mobile device and currently guiding a user to perform a login operation.
14. The apparatus of claim 13, wherein the setup module comprises a first unit and a second unit, comprising:
the first unit is used for sending a login authentication request to the server after a second application is started, wherein the login authentication request comprises the account name and a static password, and the second application is an application which is pre-installed on the mobile equipment and is used for receiving a dynamic password;
and the second unit is used for establishing the long connecting channel after the account name and the static password are verified at the server side, and enabling the server side to correspondingly store the account name and the long connecting channel.
15. The apparatus of claim 13, further comprising a presentation module to:
presenting the dynamic password to a user in a system notification mode; or,
presenting the dynamic password on an interface of the application.
16. The apparatus according to any one of claims 13 to 15, wherein, when the long connection channel is interrupted, the establishing module is specifically configured to:
and automatically trying to establish a connection channel with the server through the application until the long connection channel is established.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410313130.0A CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410313130.0A CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104168261A CN104168261A (en) | 2014-11-26 |
| CN104168261B true CN104168261B (en) | 2018-09-07 |
Family
ID=51911885
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410313130.0A Active CN104168261B (en) | 2014-07-02 | 2014-07-02 | Dynamic password login method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104168261B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107682316B (en) * | 2017-09-05 | 2020-02-14 | 平安科技(深圳)有限公司 | Method for generating dynamic password sending strategy and method for sending dynamic password |
| CN107919964B (en) * | 2017-12-29 | 2021-02-23 | 北京奇虎科技有限公司 | A method and system for data synchronization based on dynamic authentication information |
| CN112688979B (en) * | 2019-10-17 | 2022-08-16 | 阿波罗智能技术(北京)有限公司 | Unmanned vehicle remote login processing method, device, equipment and storage medium |
| CN116108474B (en) * | 2023-04-13 | 2023-06-30 | 深圳奥联信息安全技术有限公司 | Big data system password service method and system |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179382A (en) * | 2006-12-20 | 2008-05-14 | 腾讯科技(深圳)有限公司 | Login method and system |
| CN102546914A (en) * | 2010-12-27 | 2012-07-04 | 梁志龙 | Automatic login system based on smart phone and control method |
| CN103124267A (en) * | 2013-02-07 | 2013-05-29 | 百度在线网络技术(北京)有限公司 | Method, system and cloud server for login/registration through mobile terminal |
| CN103152399A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Login method, login system and cloud server |
| CN103401686A (en) * | 2013-07-31 | 2013-11-20 | 陕西海基业高科技实业有限公司 | User Internet identity authentication system and application method thereof |
| CN103888451A (en) * | 2014-03-10 | 2014-06-25 | 百度在线网络技术(北京)有限公司 | Method, device and system for certification authorization |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2498472A1 (en) * | 2011-03-10 | 2012-09-12 | France Telecom | Method and system for granting access to a secured website |
| US8474014B2 (en) * | 2011-08-16 | 2013-06-25 | Veritrix, Inc. | Methods for the secure use of one-time passwords |
-
2014
- 2014-07-02 CN CN201410313130.0A patent/CN104168261B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101179382A (en) * | 2006-12-20 | 2008-05-14 | 腾讯科技(深圳)有限公司 | Login method and system |
| CN102546914A (en) * | 2010-12-27 | 2012-07-04 | 梁志龙 | Automatic login system based on smart phone and control method |
| CN103124267A (en) * | 2013-02-07 | 2013-05-29 | 百度在线网络技术(北京)有限公司 | Method, system and cloud server for login/registration through mobile terminal |
| CN103152399A (en) * | 2013-02-07 | 2013-06-12 | 百度在线网络技术(北京)有限公司 | Login method, login system and cloud server |
| CN103401686A (en) * | 2013-07-31 | 2013-11-20 | 陕西海基业高科技实业有限公司 | User Internet identity authentication system and application method thereof |
| CN103888451A (en) * | 2014-03-10 | 2014-06-25 | 百度在线网络技术(北京)有限公司 | Method, device and system for certification authorization |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104168261A (en) | 2014-11-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110351269B (en) | Method for logging in open platform through third-party server | |
| JP6386069B2 (en) | Connection management method, apparatus, electronic equipment, program, and recording medium | |
| CN106096343B (en) | Message access control method and equipment | |
| CN109471865B (en) | Offline data management method, system, server and storage medium | |
| AU2009307827B2 (en) | User authentication management | |
| CN103152400B (en) | The method, system and the cloud server that log in is carried out by mobile terminal | |
| CN104113533B (en) | Log in authorization method and device | |
| CN109905312B (en) | Message pushing method, device and system | |
| CN105392136A (en) | Method and device for access to router based on two-dimensional code | |
| WO2017107732A1 (en) | Login status synchronization method and system | |
| CN104079409A (en) | Account login method and device | |
| CN108811179B (en) | Wireless network connection method, device and storage medium | |
| CN108965331B (en) | Login verification method, device and system | |
| CN106331003B (en) | A method and device for accessing an application portal system on a cloud desktop | |
| CN104869568B (en) | A kind of monitoring system collocation method and system based on audio | |
| CN103414740B (en) | A kind of private cloud account configuration method and device | |
| CN103036902A (en) | Login control method and login control system based on two-dimension code | |
| CN105162802B (en) | Portal authentication method and certificate server | |
| US9661495B2 (en) | Device activation method and system | |
| CN104168261B (en) | Dynamic password login method and device | |
| WO2017206524A1 (en) | Electronic device control method, terminal and control system | |
| KR20230110613A (en) | Virtual key sharing system and method | |
| CN104717224A (en) | Login method and device | |
| CN107592314A (en) | A kind of order line authority control method and device | |
| CN114760112A (en) | Wireless local area network-oriented intelligent household equipment network access method, system, equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |