CN107786340A - A kind of method and device of authentication - Google Patents
A kind of method and device of authentication Download PDFInfo
- Publication number
- CN107786340A CN107786340A CN201610798122.9A CN201610798122A CN107786340A CN 107786340 A CN107786340 A CN 107786340A CN 201610798122 A CN201610798122 A CN 201610798122A CN 107786340 A CN107786340 A CN 107786340A
- Authority
- CN
- China
- Prior art keywords
- terminal
- vibration
- server
- metadata
- test
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 100
- 238000012795 verification Methods 0.000 claims abstract description 241
- 238000012360 testing method Methods 0.000 claims description 222
- 230000001133 acceleration Effects 0.000 claims description 79
- 230000002159 abnormal effect Effects 0.000 claims description 11
- 230000004069 differentiation Effects 0.000 claims description 5
- 230000008569 process Effects 0.000 description 36
- 238000010586 diagram Methods 0.000 description 19
- 230000036544 posture Effects 0.000 description 14
- 238000003860 storage Methods 0.000 description 12
- 238000004590 computer program Methods 0.000 description 9
- 238000005516 engineering process Methods 0.000 description 9
- 230000008859 change Effects 0.000 description 7
- 238000012545 processing Methods 0.000 description 6
- 230000006870 function Effects 0.000 description 5
- 238000004422 calculation algorithm Methods 0.000 description 4
- 238000003672 processing method Methods 0.000 description 4
- 230000003287 optical effect Effects 0.000 description 3
- 238000004458 analytical method Methods 0.000 description 2
- 230000006399 behavior Effects 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 238000000137 annealing Methods 0.000 description 1
- QVGXLLKOCUKJST-UHFFFAOYSA-N atomic oxygen Chemical compound [O] QVGXLLKOCUKJST-UHFFFAOYSA-N 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 239000008280 blood Substances 0.000 description 1
- 210000004369 blood Anatomy 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013480 data collection Methods 0.000 description 1
- 238000000354 decomposition reaction Methods 0.000 description 1
- 230000007613 environmental effect Effects 0.000 description 1
- 230000002068 genetic effect Effects 0.000 description 1
- 230000005484 gravity Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 239000003999 initiator Substances 0.000 description 1
- 238000005259 measurement Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 229910052760 oxygen Inorganic materials 0.000 description 1
- 239000001301 oxygen Substances 0.000 description 1
- 239000002245 particle Substances 0.000 description 1
- 238000003825 pressing Methods 0.000 description 1
- 238000012954 risk control Methods 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
- 238000010998 test method Methods 0.000 description 1
- XLYOFNOQVPJJNP-UHFFFAOYSA-N water Substances O XLYOFNOQVPJJNP-UHFFFAOYSA-N 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Power Engineering (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Telephonic Communication Services (AREA)
- Telephone Function (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
本申请公开了一种身份验证的方法,终端可以根据服务器发送验证触发指令执行振动操作,并将执行振动操作时采集的该振动操作对应的元数据返回该服务器,使得该服务器可根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的该终端的设备标识对应的参考振动参数,并根据该参考振动参数以及该元数据,对使用该终端的用户进行身份验证。可见通过本申请实施例提供的方法,用户无需任何操作该终端即可完成元数据的采集以及返回,并且,该用户也无需采集自己的生物信息,避免了现有技术中涉及个人隐私的问题,并且简化了用户操作,提高了身份验证的效率。
The present application discloses a method for identity verification. The terminal can perform a vibration operation according to a verification trigger instruction sent by a server, and return the metadata corresponding to the vibration operation collected during the vibration operation to the server, so that the server can perform the vibration operation according to the preset The corresponding relationship between the device identification and the reference vibration parameter determines the reference vibration parameter corresponding to the received device identification of the terminal, and performs identity verification on the user using the terminal according to the reference vibration parameter and the metadata. It can be seen that through the method provided by the embodiment of the present application, the user can complete the collection and return of metadata without any operation on the terminal, and the user does not need to collect his own biological information, which avoids the problems related to personal privacy in the prior art. In addition, user operations are simplified and the efficiency of identity verification is improved.
Description
技术领域technical field
本申请涉及信息技术领域,尤其涉及一种身份验证的方法及装置。The present application relates to the field of information technology, in particular to an identity verification method and device.
背景技术Background technique
随着信息化社会的发展,人们越来越依赖于网络执行各种业务,而随着移动终端的功能越来越强大,人们开始更多的使用移动终端通过网络执行各种业务。于是,如何更好的在移动终端上提供各种业务也就成了近年来关注的热点,其中,如何保证用户在使用移动终端执行业务时的安全性(以下简称安全性)更是其重中之重。With the development of the information society, people rely more and more on the network to perform various services, and as the functions of mobile terminals become more and more powerful, people begin to use mobile terminals more to perform various services through the network. Therefore, how to better provide various services on mobile terminals has become a focus of attention in recent years. Among them, how to ensure the security of users when using mobile terminals to perform services (hereinafter referred to as security) is the most important heavy.
具体的,用户可先在终端上登录持有的账号,再通过网络与提供服务的服务器建立数据连接,并执行各种业务。如图1所示,为现有技术中终端通过网络连接服务器的示意图。其中,该终端为登录了账号的终端,所以可以视为是该终端通过账号与该服务器建立了数据连接,从图1中可见一个服务器可为多个账号提供服务,不论该账号在哪一个终端上登录,均可以通过该账号向该服务器验证自己的身份。于是,在现有技术中,可对该终端上登录的账号的身份进行验证,并使只有通过身份验证的账号才能执行业务,从而保证安全性。Specifically, the user can first log in the account held on the terminal, and then establish a data connection with the server providing the service through the network, and perform various services. As shown in FIG. 1 , it is a schematic diagram of a terminal connecting to a server through a network in the prior art. Among them, the terminal is a terminal that has logged in an account, so it can be regarded as that the terminal has established a data connection with the server through the account. It can be seen from Figure 1 that one server can provide services for multiple accounts, no matter which terminal the account is in If you log in on the account, you can verify your identity to the server through this account. Therefore, in the prior art, the identity of the account logged in on the terminal can be verified, and only the verified account can perform services, thereby ensuring security.
进一步地,人们一般采用身份验证的方法,防止非账号持有人通过该账号执行业务,从而保证业务执行的安全性。随着生物识别技术的发展以及传感器技术的进步,由于对每一个人来说,个人的生物信息是唯一的,所以使用用户的生物信息进行身份验证的准确性更高,并且由于无需进行传统的密码输入过程,使得身份验证的效率也得到了提高。Furthermore, people usually use identity verification methods to prevent non-account holders from performing business through the account, thereby ensuring the security of business execution. With the development of biometric technology and the advancement of sensor technology, since personal biometric information is unique to each person, the accuracy of identity verification using user biometric information is higher, and since there is no need for traditional The password input process improves the efficiency of identity verification.
于是,现有技术开始根据生物信息进行身份验证。Therefore, the existing technology begins to perform identity verification based on biometric information.
具体的,服务器将预先采集并存储账号持有人的生物信息(如,指纹信息、声纹信息、虹膜信息、相貌信息等)作为该账号对应的标准生物信息,其中,该生物信息可由移动终端的传感器采集,而在每一次进行身份验证时,使移动终端重新采集该生物信息并作为该账号的待验证生物信息并发送至该服务器,则该服务器可以根据已存储的标准生物信息,判断该待验证生物信息与该标准生物信息是否一致,并依据判断结果确定身份验证是否通过。Specifically, the server will pre-collect and store the account holder's biological information (such as fingerprint information, voiceprint information, iris information, appearance information, etc.) The sensor collects, and every time identity verification is performed, the mobile terminal re-collects the biometric information and sends it to the server as the biometric information to be verified for the account, then the server can judge the biometric information based on the stored standard biometric information. Whether the biological information to be verified is consistent with the standard biological information, and determine whether the identity verification is passed based on the judgment result.
但是,由于终端在采集用户的生物信息时,往往需要用户主动的操作该终端,以使得该终端采集用户的生物信息(如,使用手指按压传感器、使眼部正对摄像头、对麦克风说话等等),所以采用生物信息进行身份验证时增加了用户操作,使得身份验证过程变得繁琐。However, when the terminal collects the user's biological information, the user often needs to actively operate the terminal so that the terminal collects the user's biological information (such as pressing the sensor with a finger, directing the eyes to the camera, speaking into the microphone, etc.) ), so user operations are increased when biometric information is used for identity verification, making the identity verification process cumbersome.
进一步地,生物信息的采集通常对采集环境有一定的要求,例如,手指沾水则可能导致指纹采集失败、环境太吵闹则可能导致声纹采集失败、环境光线太暗则可能导致虹膜信息采集失败,进而导致身份验证失败的可能性增加,降低了身份验证的效率。Furthermore, the collection of biological information usually has certain requirements on the collection environment. For example, if the finger is wet with water, the fingerprint collection may fail; if the environment is too noisy, the voiceprint collection may fail; if the ambient light is too dark, the iris information collection may fail. , which in turn leads to an increase in the possibility of authentication failure, reducing the efficiency of authentication.
综上,可见现有的身份验证技术存在身份验证效率低的问题。In summary, it can be seen that the existing authentication technology has the problem of low authentication efficiency.
发明内容Contents of the invention
本申请实施例提供一种身份验证的方法,用于解决在采用现有技术进行身份验证时,存在用户操作繁琐、用户使用意愿不高、对采集环境要求较高、身份验证效率低等问题。The embodiment of the present application provides an identity verification method, which is used to solve problems such as cumbersome user operations, low user willingness to use, high requirements for the collection environment, and low identity verification efficiency when using the existing technology for identity verification.
本申请实施例提供一种身份验证的装置,用于解决在采用现有技术进行身份验证时,存在用户操作繁琐、用户使用意愿不高、对采集环境要求较高、身份验证效率低等问题。The embodiment of the present application provides an identity verification device, which is used to solve problems such as cumbersome user operations, low user willingness to use, high requirements for the collection environment, and low identity verification efficiency when using the existing technology for identity verification.
本申请实施例采用下述技术方案:The embodiment of the application adopts the following technical solutions:
一种身份验证的方法,包括:A method of authentication comprising:
终端接收服务器发送的验证触发指令,所述验证触发指令用于指示所述终端执行振动操作;The terminal receives a verification trigger instruction sent by the server, and the verification trigger instruction is used to instruct the terminal to perform a vibration operation;
所述终端在根据所述验证触发指令执行振动操作时,采集在执行所述振动操作时产生的元数据;When the terminal performs the vibration operation according to the verification trigger instruction, collect metadata generated when the vibration operation is performed;
所述终端将携带所述元数据和所述终端的设备标识的验证请求发送至服务器,所述验证请求用于请求所述服务器根据所述元数据和所述终端的设备标识对使用所述终端的用户进行身份验证。The terminal sends a verification request carrying the metadata and the device identifier of the terminal to the server, and the verification request is used to request the server to use the terminal according to the metadata and the device identifier of the terminal. authenticated users.
一种身份验证的方法,包括:A method of authentication comprising:
服务器向终端发送验证触发指令,所述验证触发指令用于指示所述终端在根据所述验证触发指令执行振动操作时采集在执行所述振动操作时产生的元数据;The server sends a verification trigger instruction to the terminal, where the verification trigger instruction is used to instruct the terminal to collect metadata generated when performing the vibration operation according to the verification trigger instruction;
所述服务器接收所述终端发送的所述元数据以及所述终端的设备标识;The server receives the metadata sent by the terminal and the device identifier of the terminal;
所述服务器根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的所述终端的设备标识对应的参考振动参数;The server determines the reference vibration parameter corresponding to the received device ID of the terminal according to the preset correspondence between the device ID and the reference vibration parameter;
根据所述参考振动参数以及所述元数据,对使用所述终端的用户进行身份验证。Perform identity verification on the user using the terminal according to the reference vibration parameter and the metadata.
一种身份验证的装置,包括:An authentication device, comprising:
接收模块,接收服务器发送的验证触发指令;The receiving module receives the verification trigger instruction sent by the server;
振动模块,根据所述验证触发指令执行振动操作;A vibration module, performing a vibration operation according to the verification trigger instruction;
采集模块,在所述振动模块根据所述验证触发指令执行振动操作时,采集在执行所述振动操作时产生的元数据;A collection module, when the vibration module performs a vibration operation according to the verification trigger instruction, collect metadata generated when performing the vibration operation;
发送模块,将携带所述元数据和所述装置的设备标识的验证请求发送至服务器,所述验证请求用于请求所述服务器根据所述元数据和所述装置的设备标识对使用所述装置的用户进行身份验证。A sending module, sending a verification request carrying the metadata and the device identifier of the device to a server, where the verification request is used to request the server to use the device according to the metadata and the device identifier of the device authenticated users.
一种身份验证的装置,所述装置包含振动马达以及传感器,包括:A device for identity verification, the device includes a vibration motor and a sensor, including:
发送模块,向终端发送验证触发指令,所述验证触发指令用于指示所述终端在根据所述验证触发指令执行振动操作时采集在执行所述振动操作时产生的元数据;A sending module that sends a verification trigger instruction to the terminal, where the verification trigger instruction is used to instruct the terminal to collect metadata generated when performing the vibration operation when performing the vibration operation according to the verification trigger instruction;
接收模块,接收所述终端发送的所述元数据以及所述终端的设备标识;a receiving module, configured to receive the metadata sent by the terminal and the device identifier of the terminal;
确定模块,根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的所述终端的设备标识对应的参考振动参数;The determination module determines the reference vibration parameter corresponding to the received device identification of the terminal according to the preset correspondence between the equipment identification and the reference vibration parameter;
验证模块,根据所述参考振动参数以及所述元数据,对使用所述终端的用户进行身份验证。The authentication module is configured to authenticate the user using the terminal according to the reference vibration parameter and the metadata.
本申请实施例采用的上述至少一个技术方案能够达到以下有益效果:The above at least one technical solution adopted in the embodiment of the present application can achieve the following beneficial effects:
终端可以根据服务器发送验证触发指令执行振动操作,并将执行振动操作时采集的该振动操作对应的元数据返回该服务器,使得该服务器可根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的该终端的设备标识对应的参考振动参数,并根据该参考振动参数以及该元数据,对使用该终端的用户进行身份验证。可见通过本申请实施例提供的方法,用户无需任何操作该终端即可完成元数据的采集以及返回,并且,该用户也无需采集自己的生物信息,避免了现有技术中涉及个人隐私的问题,并且简化了用户操作,提高了身份验证的效率。The terminal can perform the vibration operation according to the verification trigger instruction sent by the server, and return the metadata corresponding to the vibration operation collected when performing the vibration operation to the server, so that the server can , determining a reference vibration parameter corresponding to the received device identifier of the terminal, and performing identity verification on the user using the terminal according to the reference vibration parameter and the metadata. It can be seen that through the method provided by the embodiment of the present application, the user can complete the collection and return of metadata without any operation on the terminal, and the user does not need to collect his own biological information, which avoids the problems related to personal privacy in the prior art. In addition, user operations are simplified and the efficiency of identity verification is improved.
附图说明Description of drawings
此处所说明的附图用来提供对本申请的进一步理解,构成本申请的一部分,本申请的示意性实施例及其说明用于解释本申请,并不构成对本申请的不当限定。在附图中:The drawings described here are used to provide a further understanding of the application and constitute a part of the application. The schematic embodiments and descriptions of the application are used to explain the application and do not constitute an improper limitation to the application. In the attached picture:
图1为现有技术中终端通过网络连接服务器的示意图;FIG. 1 is a schematic diagram of a terminal connecting to a server through a network in the prior art;
图2为本申请实施例提供的身份验证的过程;Fig. 2 is the process of identity verification provided by the embodiment of the present application;
图3为本申请实施例提供的另一种身份验证的过程;FIG. 3 is another authentication process provided by the embodiment of the present application;
图4a~图4c为本申请实施例提供的服务器向终端发送验证触发指令并使该终端返回元数据的过程示意图;Figures 4a to 4c are schematic diagrams of the process in which the server sends a verification trigger command to the terminal and makes the terminal return metadata provided by the embodiment of the present application;
图5为本申请实施例提供的终端的加速度传感器采集加速度变化量的示意图;FIG. 5 is a schematic diagram of acceleration changes collected by an acceleration sensor of a terminal provided in an embodiment of the present application;
图6为本申请实施例提供的振动操作对应的波形示意图;FIG. 6 is a schematic diagram of a waveform corresponding to the vibration operation provided by the embodiment of the present application;
图7为本申请实施例提供的一种身份验证的装置的结构示意图;FIG. 7 is a schematic structural diagram of an identity verification device provided by an embodiment of the present application;
图8为本申请实施例提供的另一种身份验证的装置的结构示意图。FIG. 8 is a schematic structural diagram of another identity verification device provided by an embodiment of the present application.
具体实施方式Detailed ways
为使本申请的目的、技术方案和优点更加清楚,下面将结合本申请具体实施例及相应的附图对本申请技术方案进行清楚、完整地描述。显然,所描述的实施例仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本申请保护的范围。In order to make the purpose, technical solution and advantages of the present application clearer, the technical solution of the present application will be clearly and completely described below in conjunction with specific embodiments of the present application and corresponding drawings. Apparently, the described embodiments are only some of the embodiments of the present application, rather than all the embodiments. Based on the embodiments in this application, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the scope of protection of this application.
以下结合附图,详细说明本申请各实施例提供的技术方案。The technical solutions provided by various embodiments of the present application will be described in detail below in conjunction with the accompanying drawings.
图2为本申请实施例提供的身份验证的过程,具体包括以下步骤:Figure 2 is the process of identity verification provided by the embodiment of the present application, which specifically includes the following steps:
S101:终端接收服务器发送的验证触发指令,所述验证触发指令用于指示所述终端执行振动操作。S101: The terminal receives a verification trigger instruction sent by a server, where the verification trigger instruction is used to instruct the terminal to perform a vibration operation.
由于通常身份验证过程的发起方通常是服务器,所以在本申请实施例中,该终端可以接收服务器发送的验证触发指令,并且该终端接收到的验证触发指令可以是当该服务器确定该终端发送的状态信息出现异常时发送的。Since the initiator of the identity verification process is usually the server, in this embodiment of the application, the terminal can receive the verification trigger instruction sent by the server, and the verification trigger instruction received by the terminal can be when the server determines that the terminal sent Sent when status information is abnormal.
具体的,该终端向该服务器发送自身的状态信息,其中,该状态信息可以包含:该终端的mac地址信息、ip地址信息、地理位置信息、业务信息等等,也就是说该状态信息是可以反映该终端所处状况的各类信息(该终端所处状况通常可归类为:该终端所处环境状况,如,地理位置信息、时间信息等,以及该终端运行状况,如,系统版本号、ip地址信息、业务信息等,当然,本申请也不限定仅有上两类状况可作为该终端的状态信息),具体该状态信息包含何种信息可根据实际需求设置,本申请并不做具体限定,另外,需要说明的是,该业务信息可以是业务执行请求等与业务相关的信息,具体可以是该终端正在执行的业务的相关信息。于是,该终端可以在该服务器根据该终端的历史状态信息判断该终端发送的状态信息出现异常时,接收到该服务器发送的验证触发指令。Specifically, the terminal sends its own status information to the server, wherein the status information may include: the terminal's mac address information, ip address information, geographic location information, business information, etc., that is to say, the status information may be Various information reflecting the status of the terminal (the status of the terminal can usually be classified into: the environmental status of the terminal, such as geographical location information, time information, etc., and the operating status of the terminal, such as the system version number , ip address information, business information, etc. Of course, this application does not limit that only the above two types of situations can be used as the status information of the terminal), the specific information contained in the status information can be set according to actual needs, and this application does not Specifically defined, in addition, it should be noted that the service information may be service-related information such as a service execution request, and specifically may be information related to a service being executed by the terminal. Therefore, the terminal may receive the verification trigger instruction sent by the server when the server judges that the status information sent by the terminal is abnormal according to the historical status information of the terminal.
进一步地,该验证触发指令用于指示该终端执行振动操作。Further, the verification trigger instruction is used to instruct the terminal to perform a vibration operation.
具体的,该验证触发指令中可以是脚本语言(JavaScript,JS)代码,则当该终端接收到该验证触发指令后,通过运行该JS代码,可确定该验证触发指令中包含的振动频率信息、振动时间间隔信息以及振动强度信息中的至少一种,之后该终端可再根据该振动频率信息、该振动时间间隔信息以及该振动强度信息中的至少一种,执行振动操作。Specifically, the verification trigger instruction may be a script language (JavaScript, JS) code, then after the terminal receives the verification trigger instruction, by running the JS code, it can determine the vibration frequency information contained in the verification trigger instruction, At least one of vibration time interval information and vibration intensity information, and then the terminal can perform a vibration operation according to at least one of the vibration frequency information, the vibration time interval information, and the vibration intensity information.
该振动方操作可以由该终端中的振动马达执行。由于该振动触发指令可以包含振动频率信息、振动时间间隔信息以及振动强度信息中的至少一种,所以该振动马达在执行该振动操作时,可仅根据振动频率信息、振动时间间隔信息或者振动强度信息执行振动操作。当然,当该振动触发指令中包含准确的振动频率信息、振动时间间隔信息以及振动强度信息时,该振动马达执行的振动操作更加精准,更有利于后续的步骤的操作以及最终身份验证的结果准确性。The vibrating operation may be performed by a vibrating motor in the terminal. Since the vibration trigger instruction may include at least one of vibration frequency information, vibration time interval information, and vibration intensity information, the vibration motor may perform the vibration operation only according to the vibration frequency information, vibration time interval information, or vibration intensity information. The message performs a vibration action. Of course, when the vibration trigger instruction contains accurate vibration frequency information, vibration time interval information and vibration intensity information, the vibration operation performed by the vibration motor is more accurate, which is more conducive to the operation of subsequent steps and the accuracy of the final identity verification result sex.
需要说明的是,该终端可以是手机、平板电脑等包含振动马达的且可由用户手持的终端。It should be noted that the terminal may be a mobile phone, a tablet computer, or other terminal that includes a vibration motor and can be held by a user.
S102:所述终端在根据所述验证触发指令执行振动操作时,采集在执行所述振动操作时产生的元数据。S102: When performing a vibration operation according to the verification trigger instruction, the terminal collects metadata generated when performing the vibration operation.
在本申请实施例中,该终端在接收到该验证触发指令后,便可根据该验证触发指令确定振动操作,并使该终端的振动马达执行该振动操作,同时该终端的传感器还可以采集该振动马达在执行该振动操作时产生的该振动操作的元数据。In the embodiment of the present application, after the terminal receives the verification trigger instruction, it can determine the vibration operation according to the verification trigger instruction, and make the vibration motor of the terminal perform the vibration operation. At the same time, the terminal sensor can also collect the vibration operation. Metadata of the vibration operation generated by the vibration motor when performing the vibration operation.
具体的,由于该振动马达是该终端的一部分,所以以该终端为一个整体来看,该振动马达在执行振动操作时使该终端整体产生了振动,该振动体现在该终端整体的加速度变化以及角速度变化,则该终端的传感器可采集到的由于该振动马达执行该振动操作所产生的振动加速度和/或振动角速度,或者由于该振动操作所产生的振动加速度和/或振动角速度变化,并将该振动加速度和/或该振动角速度作为该终端在执行该振动操作时产生的元数据。Specifically, since the vibration motor is a part of the terminal, when viewed from the terminal as a whole, the vibration motor causes the entire terminal to vibrate when performing vibration operations, and the vibration is reflected in the acceleration changes of the entire terminal and If the angular velocity changes, the sensor of the terminal can collect the vibration acceleration and/or vibration angular velocity generated by the vibration motor performing the vibration operation, or the vibration acceleration and/or vibration angular velocity change due to the vibration operation, and The vibration acceleration and/or the vibration angular velocity are used as metadata generated by the terminal when performing the vibration operation.
并且,由于每一个用户握持终端的姿势(如,手掌的姿势、手臂的姿势等)、握持不同终端的姿势以及终端的重量等等因素,均可以影响到该终端的传感器采集到的该振动马达执行该振动操作所产生的振动加速度和/或振动角速度,而每一个用户握持终端的姿势具有唯一性(即,出现两个用户握持同一终端的姿势完全相同的几率极低),所以该终端采集到的该振动操作的元数据可以是唯一对应于每一个用户和终端的元数据,即,该元数据具有全局唯一性。于是,该元数据可以作为对使用该终端的用户进行身份验的数据。Moreover, due to factors such as the posture of each user holding the terminal (such as the posture of the palm, the posture of the arm, etc.), the postures of holding different terminals, the weight of the terminal, etc., all may affect the information collected by the sensor of the terminal. The vibration acceleration and/or vibration angular velocity generated by the vibration motor performing the vibration operation, and the posture of each user holding the terminal is unique (that is, the probability of two users holding the same terminal with exactly the same posture is extremely low), Therefore, the metadata of the vibration operation collected by the terminal may be uniquely corresponding to each user and terminal, that is, the metadata has global uniqueness. Therefore, the metadata can be used as data for authenticating the user using the terminal.
另外,由于该验证触发指令可以是JS代码,所以该终端的传感器也可以是通过运行该JS代码,采集该终端的振动加速度和/或振动角速度,并将该振动加速度和/或该振动角速度作为该终端在执行该振动操作时产生的元数据。In addition, since the verification trigger instruction can be a JS code, the sensor of the terminal can also collect the vibration acceleration and/or vibration angular velocity of the terminal by running the JS code, and use the vibration acceleration and/or the vibration angular velocity as Metadata generated when the terminal performs the vibration operation.
需要说明的是,该传感器可包括:加速度传感器、重力传感器、磁力传感器、方向传感器、陀螺仪传感器、光线传感器、压力传感器、温度传感器、接近传感器、线性加速度传感器、旋转矢量传感器、全球定位系统(Global Positioning System,GPS)传感器、心率传感器、血氧传感器、紫外线传感器等。该终端的振动马达可有至少一个,即,在该终端中可有多个振动马达,并且当该终端中的振动马达有多个时,各振动马达可根据该验证触发指令执行不同的振动操作。It should be noted that the sensor may include: acceleration sensor, gravity sensor, magnetic sensor, direction sensor, gyroscope sensor, light sensor, pressure sensor, temperature sensor, proximity sensor, linear acceleration sensor, rotation vector sensor, global positioning system ( Global Positioning System, GPS) sensor, heart rate sensor, blood oxygen sensor, ultraviolet sensor, etc. There can be at least one vibration motor in the terminal, that is, there can be multiple vibration motors in the terminal, and when there are multiple vibration motors in the terminal, each vibration motor can perform different vibration operations according to the verification trigger instruction .
于是,该终端采集的可以不仅仅是该振动加速度和/或该振动角速度,还可以是其他由振动产生的数据,具体可根据需要对该振动触发指令进行设置,本申请对此不作具体限定。Therefore, what the terminal collects is not only the vibration acceleration and/or the vibration angular velocity, but also other data generated by vibration. Specifically, the vibration trigger instruction can be set according to needs, which is not specifically limited in the present application.
需要说明的是,本申请并不限定以该验证触发指令中携带JS代码,只要该验证触发指令可以实现使该终端的振动马达执行对应操作,以及使该终端的传感器采集数据即可。It should be noted that this application does not limit the verification trigger instruction to carry JS code, as long as the verification trigger instruction can enable the vibration motor of the terminal to perform corresponding operations and the sensor of the terminal to collect data.
S103:所述终端将携带所述元数据和所述终端的设备标识的验证请求发送至服务器。S103: The terminal sends a verification request carrying the metadata and the device identifier of the terminal to the server.
在本申请实施例中,当该终端确定了元数据之后,便可将携带该元数据和该终端的设备标识的验证请求发送至该服务器,并使该服务器根据该元数据和该终端的设备标识对使用该终端的用户进行身份验证。In this embodiment of the application, after the terminal determines the metadata, it can send a verification request carrying the metadata and the terminal's device identification to the server, and make the server The identity authenticates the user using the terminal.
另外,由于现有技术中还存在其它多种的身份验证方法(如根据地理位置信息、用户行为习惯信息等进行身份验证的方法),所以本申请所述的身份验证过程所确定的结果也可与其他的身份验证方法确定的结果结合使用,即,该服务器可以利用多种身份验证方法得出的身份验证结果,对该终端进行身份验证,如,通过3种方法,均判断该终端的身份验证不通过,则该终端的安全性非常低,很有可能已经被不法分子盗用。In addition, since there are many other identity verification methods in the prior art (such as methods for identity verification based on geographical location information, user behavior habit information, etc.), the results determined in the identity verification process described in this application can also be Combined with the results determined by other authentication methods, that is, the server can use the authentication results obtained by multiple authentication methods to authenticate the terminal. For example, through the three methods, the identity of the terminal can be judged If the verification fails, the security of the terminal is very low, and it is very likely that it has been stolen by criminals.
当然,具体的如何利用本申请确定的身份验证结果,本申请并不做限定。Of course, this application does not limit how to use the identity verification result determined in this application.
通过如图2所示的身份验证的方法,可见该终端在接收服务器发送的验证触发指令后,用户无需对该终端执行任何操作,该终端便可向该服务器返回元数据以及该终端的设备标识,从而使该服务器根据该元数据和该终端的设备标识对使用该终端的用户进行身份验证。其中,由于对于每一个用户来说,该用户握持终端的姿势与其他用户握持该终端的姿势完全相同的几率极低,而该用户握持该终端的姿势对于该终端的传感器采集的该振动马达执行振动操作产生的元数据必定产生一定的影响,所以通过该元数据可以对是否是该用户在握持该终端进行区分,进而对使用该终端的用户进行身份验证。可见,本申请实施例提供的方法,可以无需用户操作便完成身份验证的过程,并且由于采集的虽然是该对应于该用户唯一的信息,但是不是该用户的生物信息不涉及该用户的个人隐私,所以更加容易使用户接受,运行成本更低,且对采集环境几乎无要求,身份验证效率更高。Through the identity verification method shown in Figure 2, it can be seen that after the terminal receives the verification trigger instruction sent by the server, the user does not need to perform any operations on the terminal, and the terminal can return metadata and the device identification of the terminal to the server , so that the server authenticates the user using the terminal according to the metadata and the device identifier of the terminal. Among them, because for each user, the probability that the posture of the user holding the terminal is exactly the same as that of other users holding the terminal is extremely low, and the posture of the user holding the terminal has a significant impact on the information collected by the sensor of the terminal. The metadata generated by the vibration operation performed by the vibration motor must have a certain impact, so the metadata can be used to distinguish whether the user is holding the terminal, and then authenticate the user using the terminal. It can be seen that the method provided by the embodiment of the present application can complete the identity verification process without user operation, and because the collected information is unique to the user, but not the user's biological information does not involve the user's personal privacy , so it is easier for users to accept, the operating cost is lower, and there is almost no requirement for the collection environment, and the authentication efficiency is higher.
另外,由于针对同一终端,该终端上可以登陆多个账号,则在步骤S101中该终端接收到的该验证触发指令中可携带账号标识,则当该终端在步骤S102中确定了元数据之后,该终端在将携带该元数据、该终端的设备标识发送给服务器时,还可将该终端的账号标识携带者所述验证请求中发送至该服务器,该验证请求用于请求该服务器根据该元数据、该终端的设备标识以及该账号标识,对使用该终端的用户进行身份验证。In addition, since multiple accounts can be logged in on the terminal for the same terminal, the verification trigger instruction received by the terminal in step S101 can carry the account identifier, then after the terminal determines the metadata in step S102, When the terminal sends the metadata and the device identifier of the terminal to the server, it may also send the verification request of the account identifier of the terminal to the server, and the verification request is used to request the server to The data, the device ID of the terminal and the account ID are used to authenticate the user using the terminal.
基于图2所示的身份验证过程,本申请实施例还对应提供一种服务器执行的身份验证的方法,如图3所示。Based on the identity verification process shown in FIG. 2 , the embodiment of the present application also provides a corresponding identity verification method performed by a server, as shown in FIG. 3 .
图3是本申请实施例提供的一种身份验证的过程,具体包括以下步骤:Figure 3 is a process of identity verification provided by the embodiment of this application, which specifically includes the following steps:
S201:服务器向终端发送验证触发指令。S201: The server sends a verification trigger instruction to the terminal.
在现有技术中,服务器通常在根据终端发送的业务请求执行对应的业务之前,需要先进行身份验证过程,以便证明该业务请求是由该终端的持有人发送的,所以在本申请中的身份验证过程,实际上就是验证该终端是否是由该终端的持有人在使用,即,对使用所述终端的用户进行身份验证。In the prior art, before executing the corresponding service according to the service request sent by the terminal, the server usually needs to perform an identity verification process to prove that the service request is sent by the holder of the terminal, so in this application The authentication process is actually to verify whether the terminal is being used by the holder of the terminal, that is, to authenticate the user using the terminal.
于是,在本申请实施例中,该服务器首先可确定向该终端发送验证触发指令的时机。Therefore, in the embodiment of the present application, the server may first determine the timing of sending the verification trigger instruction to the terminal.
具体的,由于实际应用环境中如图1所示,该服务器可与多个终端建立通讯连接,并接收各终端发送的状态信息,所以,该服务器可接收各终端的状态信息,并针对每一个状态信息异常的终端,根据已存储的各设备标识、各验证触发指令以及各参考振动参数的对应关系,确定该终端的设备标识对应的验证触发指令,并向该终端发送该验证触发指令。Specifically, as shown in Figure 1 in the actual application environment, the server can establish communication connections with multiple terminals and receive the status information sent by each terminal, so the server can receive the status information of each terminal, and for each The terminal with abnormal status information determines the verification trigger instruction corresponding to the device identifier of the terminal according to the stored correspondence between each device identifier, each verification trigger instruction, and each reference vibration parameter, and sends the verification trigger instruction to the terminal.
其中,针对每一个终端,该服务器可接收该终端发送的状态信息,当确定该终端发送的状态信息出现异常时,该服务器便可向该终端发送验证触发指令,另外,该状态信息在步骤S101中已经进行相应说明,不再赘述。需要说明的是,确定各终端的状态信息是否异常的方法,可与现有技术一致,如,根据该终端的历史地理位置信息、历史业务信息等等确定各终端的状态信息是否异常,本申请对此并不做具体限定。Wherein, for each terminal, the server can receive the status information sent by the terminal. When it is determined that the status information sent by the terminal is abnormal, the server can send a verification trigger instruction to the terminal. In addition, the status information is sent in step S101. Corresponding explanations have already been made in , and will not be repeated here. It should be noted that the method for determining whether the status information of each terminal is abnormal may be consistent with the prior art, for example, determining whether the status information of each terminal is abnormal according to the historical geographic location information and historical business information of the terminal, etc., the present application This is not specifically limited.
进一步地,由于身份验证的最终目的是保证执行业务时的安全性,所以在该终端发起业务请求以及当该账号登录终端时,该服务器也可以向该终端发送验证触发指令,而无需确定该终端发送的状态信息出现异常,当然,具体发送该验证触发指令的时机也可根据需求进行设置,本申请对该验证触发指令的发送时机并不做具体限定。Further, since the ultimate purpose of identity verification is to ensure the security of executing services, when the terminal initiates a service request and when the account logs into the terminal, the server can also send a verification trigger instruction to the terminal without confirming that the terminal The sent status information is abnormal. Of course, the specific timing of sending the verification trigger instruction can also be set according to requirements. This application does not specifically limit the timing of sending the verification trigger instruction.
更进一步地,该服务器可以是单独的一台设备,也可是由多台设备组成的系统(如,分布式系统)。Furthermore, the server may be a single device, or a system (such as a distributed system) composed of multiple devices.
例如,假设服务器X监测如表1所示的各设别标识分别对应的各终端的状态信息。For example, assume that server X monitors the status information of each terminal corresponding to each device identifier shown in Table 1.
表1Table 1
其中,该设备标识可以是用于标识该终端的唯一性的(相当于该终端的身份标识),例如,mac地址、国际移动设备标识(International Mobile Equipment Identity,IMEI)、主板的身份标识号等等,并且该设备标识也可是生产该终端的厂家为该终端添加的唯一识别码,例如,生产编号、产品序列号等等。并且通常该终端的该设备标识都可以被读取,以便通过该设备标识确定该终端的身份,所以在本申请中,并不限定该设备标识的具体形式,只要通过该设备标识可以唯一的确定该终端即可。Wherein, the device identifier may be used to identify the uniqueness of the terminal (equivalent to the identity of the terminal), for example, mac address, International Mobile Equipment Identity (International Mobile Equipment Identity, IMEI), the identity number of the motherboard, etc. etc., and the device identifier may also be a unique identification code added to the terminal by the manufacturer of the terminal, for example, a production number, a product serial number, and the like. And usually the device identification of the terminal can be read, so as to determine the identity of the terminal through the device identification, so in this application, the specific form of the device identification is not limited, as long as the device identification can be uniquely determined The terminal will do.
并且,该服务器X接收到了设备标识为A001的终端发送的业务执行请求,则该服务器X可确定需要向该设备标识为A001的终端发送验证触发指令,进一步地,该服务器X可根据该设备标识:A001通过表1确定向该设备标识为A001的终端发送的验证触发指令为:Prov001。And, the server X receives the service execution request sent by the terminal whose device ID is A001, then the server X can determine that it needs to send a verification trigger instruction to the terminal whose device ID is A001, and further, the server X can according to the device ID : A001 It is determined from Table 1 that the verification trigger command sent to the terminal identified by the device as A001 is: Prov001.
更进一步地,该验证触发指令可使该设备标识为A001的终端的振动马达执行该验证触发指令Prov001对应的振动操作,而该终端的传感器则可将采集的该振动操作的元数据返回该服务器X,上述过程示意图可如图4a~图4c所示。Furthermore, the verification trigger instruction can cause the vibration motor of the terminal whose device is identified as A001 to perform the vibration operation corresponding to the verification trigger instruction Prov001, and the sensor of the terminal can return the collected metadata of the vibration operation to the server X, the schematic diagram of the above process can be shown in Figure 4a to Figure 4c.
图4a~图4c为本申请实施例提供的服务器向终端发送验证触发指令并使该终端返回元数据的过程示意图,其中可见图4a为该服务器向该终端发送验证触发指令,图4b为该验证触发指令使得该终端的振动马达执行与该验证触发指令对应的振动操作,图4c为使该终端向该服务器返回元数据。Figures 4a to 4c are schematic diagrams of the process in which the server sends a verification trigger command to the terminal and makes the terminal return metadata provided by the embodiment of the present application, where it can be seen that Figure 4a shows that the server sends a verification trigger command to the terminal, and Figure 4b shows the verification The trigger instruction causes the vibration motor of the terminal to perform a vibration operation corresponding to the verification trigger instruction, and Fig. 4c shows that the terminal returns metadata to the server.
S202:所述服务器接收所述终端发送的所述元数据以及所述终端的设备标识。S202: The server receives the metadata and the device identifier of the terminal sent by the terminal.
S203:所述服务器根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的所述终端的设备标识对应的参考振动参数。S203: The server determines a reference vibration parameter corresponding to the received device ID of the terminal according to a preset correspondence between the device ID and the reference vibration parameter.
在本申请实施例中,当该服务器在向任一终端发送了验证触发指令之后,该服务器还可接收到该终端返回的元数据以及该终端的设备标识,于是,后续该服务器可以进一步通过该元数据来对该终端进行身份验证。In this embodiment of the application, after the server sends a verification trigger instruction to any terminal, the server can also receive the metadata returned by the terminal and the device identification of the terminal, so the server can further pass the Metadata to authenticate the endpoint.
具体的,该服务器在接收到该元数据以及该设备标识后,便可通过如表1所示的已存储的各设备标识、各验证触发指令以及各参考振动参数的对应关系,确定与该设备标识对应的参考振动参数。其中,需要说明的是,该已存储的各设备标识、各验证触发指令以及各参考振动参数的对应关系可以是该服务器预先设置并存储的,即,针对每一个设备标识,先确定该设备标识对应的验证触发指令以及参考振动参数,之后再将该设备标识、该验证触发指令以及该参考振动参数以及该对应关系存储在该服务器中。Specifically, after the server receives the metadata and the device identifier, it can determine the corresponding relationship with the device through the stored correspondence between each device identifier, each verification trigger instruction, and each reference vibration parameter as shown in Table 1. Identify the corresponding reference vibration parameters. Wherein, it should be noted that the stored correspondence between each device ID, each verification trigger instruction, and each reference vibration parameter may be preset and stored by the server, that is, for each device ID, first determine the device ID The corresponding verification trigger instruction and reference vibration parameter, and then store the device identifier, the verification trigger instruction, the reference vibration parameter and the corresponding relationship in the server.
进一步地,由于该服务器需要预先确定该终端的设备标识对应的参考振动参数,所以为了确定该设备标识与该参考振动参数之间的关系,该服务器还可以向该终端发送测试指令,并接收该终端返回的该测试指令产生的元数据,并将该元数据作为针对该终端的参考振动参数,最终建立并存储该设备标识、参考振动参数以及验证触发指令的对应关系。Furthermore, since the server needs to pre-determine the reference vibration parameter corresponding to the device identifier of the terminal, in order to determine the relationship between the device identifier and the reference vibration parameter, the server can also send a test instruction to the terminal, and receive the The terminal returns the metadata generated by the test command, and uses the metadata as the reference vibration parameter for the terminal, and finally establishes and stores the corresponding relationship between the device identification, the reference vibration parameter and the verification trigger command.
更进一步的,由于任何数据采集过程都可能出现误差,所以为了减少参考振动参数的误差,提高该参考振动参数的准确性,针对同一测试指令,该服务器还可以通过重复向该终端发送该测试指令,并接收每一个测试指令产生的元数据,来减少确定的针对该终端的参考振动参数的误差,也就是说,该参考振动参数可以是由多个元数据确定的。Further, since errors may occur in any data collection process, in order to reduce the error of the reference vibration parameter and improve the accuracy of the reference vibration parameter, for the same test command, the server can also repeatedly send the test command to the terminal , and receive the metadata generated by each test instruction, so as to reduce the error of the determined reference vibration parameter for the terminal, that is, the reference vibration parameter may be determined by a plurality of metadata.
具体的,该服务器可以向该终端发送至少一个测试指令,并接收该终端返回的针对每一个测试指令产生的元数据以及该终端的设备标识,再根据各测试指令产生的元数据确定针对该终端的参考振动参数,并确定产生该的参数的测试触发指令为验证触发指令,最后建立并存储该设备标识、验证触发指令以及该参考振动参数的对应关系。Specifically, the server may send at least one test instruction to the terminal, and receive the metadata generated for each test instruction returned by the terminal and the device identifier of the terminal, and then determine the test method for the terminal according to the metadata generated by each test instruction. The reference vibration parameter, and determine the test trigger instruction that generates the parameter as the verification trigger instruction, and finally establish and store the corresponding relationship between the device identification, verification trigger instruction and the reference vibration parameter.
其中,在确定针对该终端的参考震动参数时,该服务器可以判断根据接收到的该终端返回的针对每一个测试指令产生的元数据的数量是否达到阈值,若是,则根据各元数据的平均值,确定针对该终端的参考振动参数,若否,则继续向该终端发送测试指令,直到接收到的该终端返回的针对每一个测试指令产生的元数据的数量达到阈值为止,即,接收预设数量的该测试指令产生的元数据,并对各元数据取平均值作为针对该终端的参考振动参数。Wherein, when determining the reference vibration parameter for the terminal, the server can determine whether the quantity of metadata generated for each test instruction returned by the terminal reaches a threshold, and if so, then according to the average value of each metadata , determine the reference vibration parameter for the terminal, if not, continue to send test instructions to the terminal until the received metadata returned by the terminal reaches the threshold, that is, receive the preset The amount of metadata generated by the test command, and taking an average value of each piece of metadata as a reference vibration parameter for the terminal.
或者,该服务器针对每一个测试指令产生的元数据,确定各元数据之间的差值的平均值,并判断该差值的平均值是否小于设定门限值,若是,则确定各元数据的平均值为针对该终端的参考振动参数,若否,则继续向该终端发送测试指令,直到确定各元数据之间的差值平均值小于该设定门限值为止。当然,现有技术中还存在更多的确定误差更小,更加准确的参考振动参数的方法,本申请对采用何种方法并不做具体限定,上述仅为本申请提供的两种实施方式。Or, the server determines the average value of the difference between each metadata for the metadata generated by each test command, and judges whether the average value of the difference is smaller than the set threshold value, and if so, determines the average value of each metadata The average value of is the reference vibration parameter for the terminal, if not, continue to send test instructions to the terminal until it is determined that the average value of the difference between metadata is less than the set threshold value. Certainly, in the prior art, there are more methods for determining reference vibration parameters with smaller errors and more accurate ones. This application does not specifically limit which method is used, and the above are only two implementation modes provided by this application.
其中,该测试指令的发送时机可随机确定或者由人工根据经验确定(例如,在接收到该终端发送的任意信息时,向该终端发送测试指令),其中,由于该测试指令可以重复发送多次,所以即使随机确定该测试指令的发送时机也不会影响到最终确定的针对该终端的参考振动参数,当然,由于该参考振动参数的准确与否可影响到身份验证的准确性,所以处于替考该参考振动参数准确性的考虑,该服务器可在发送该测试指令之前采用与现有技术一致的方法确定该终端的身份验证结果,并且当该身份验证结果为通过时,发送该测试指令,即,本申请并不限制何时发送该测试指令。Wherein, the sending timing of the test instruction can be randomly determined or manually determined based on experience (for example, when receiving any information sent by the terminal, send a test instruction to the terminal), wherein, since the test instruction can be sent repeatedly , so even if the timing of sending the test command is randomly determined, it will not affect the final reference vibration parameter for the terminal. Of course, since the accuracy of the reference vibration parameter can affect the accuracy of identity verification, it is an alternative Considering the accuracy of the reference vibration parameter, the server can determine the identity verification result of the terminal by a method consistent with the prior art before sending the test instruction, and when the identity verification result is passed, send the test instruction, That is, the present application does not limit when to send the test instruction.
另外,如本申请在步骤S102中所述该终端可将振动加速度、振动角速度等作为元数据,并且还可通过多种传感器采集其他数据作为元数据,所以在本申请中,该服务器在确定针对该终端的参考振动参数时,该参考振动参数也可包含振动加速度和/或振动角速度,以及其他数据,本申请对此不再赘述。In addition, as described in step S102 of this application, the terminal can use vibration acceleration, vibration angular velocity, etc. as metadata, and can also collect other data as metadata through various sensors. Therefore, in this application, the server determines When referring to the vibration parameter of the terminal, the reference vibration parameter may also include vibration acceleration and/or vibration angular velocity, and other data, which will not be described in detail in this application.
继续沿用上例,假设该设备标识为A001的终端返回的元数据为Z,该服务器根据该设备标识A001通过表1所示的对应关系确定该设备标识对应的参考振动参数为Stand001。Continuing with the above example, assuming that the metadata returned by the terminal whose device ID is A001 is Z, the server determines that the reference vibration parameter corresponding to the device ID is Stand001 through the correspondence shown in Table 1 according to the device ID A001.
S204:根据所述参考振动参数以及所述元数据,对使用所述终端的用户进行身份验证。S204: Perform identity verification on a user using the terminal according to the reference vibration parameter and the metadata.
在本申请实施例中,当该服务器确定与接收到的该终端的设备标识对应的参考振动参数之后,便可根据该参考振动参数以及该元数据,对使用该终端的用户经行身份验证。In the embodiment of the present application, after the server determines the reference vibration parameter corresponding to the received device identification of the terminal, the user using the terminal can be authenticated according to the reference vibration parameter and the metadata.
具体的,该服务器可以对比该参考振动参数以及该元数据的相似度,若相似度在规定的范围内,则可确定使用该终端的用户的身份可信度较高,若相似度不在规定的范围内,则可确定使用该终端的用户的身份可信度较低的。当确定该用户的身份可信度较高时,当该终端发送的执行业务请求时,该终端可以执行对应的业务。Specifically, the server can compare the similarity between the reference vibration parameter and the metadata. If the similarity is within the specified range, it can determine that the identity of the user using the terminal has high credibility. If the similarity is not within the specified Within the range, it can be determined that the identity of the user using the terminal has low credibility. When it is determined that the user's identity is highly credible, when the terminal sends a service execution request, the terminal may execute the corresponding service.
而当确定该用户的身份可信度较低时,说明该终端存在较高风险,对于该终端发送的业务执行请求等信息需要谨慎处理(例如,当该服务器接收到该终端发送的执行业务请求时,该服务器还可通过与现有技术相同的其他身份验证方法进一步对使用该终端的用户进行身份验证,并最终确定是否执行该业务请求对应的业务),或者该服务器也可将该身份验证结果用于风险控制中等等,即,该服务器可以灵活的利用本申请确定的身份验证结果,当然具体后续如何操作本申请并不做具体限定。And when it is determined that the user's identity credibility is low, it means that the terminal has a high risk, and information such as the service execution request sent by the terminal needs to be handled carefully (for example, when the server receives the service execution request sent by the terminal , the server can also further authenticate the user using the terminal through other authentication methods the same as in the prior art, and finally determine whether to execute the service corresponding to the service request), or the server can also use the authentication The result is used in risk control, etc., that is, the server can flexibly use the identity verification result determined in this application. Of course, the specific subsequent operation is not specifically limited in this application.
进一步的,该服务器在对比该参考振动参数以及该元数据的相似度时,由于该参考振动参数和该元数据均是由该终端的传感器采集的数据,并且该终端的传感器可以由有多个,所以该参考振动参数和该元数据仅可包含多种数据,为了方便描述,以下仅以该终端的加速度传感器采集的数据为例进行说明。Further, when the server compares the similarity between the reference vibration parameter and the metadata, since both the reference vibration parameter and the metadata are collected by the sensor of the terminal, and the sensor of the terminal can be composed of multiple , so the reference vibration parameter and the metadata can only contain a variety of data. For the convenience of description, the following only uses the data collected by the acceleration sensor of the terminal as an example for illustration.
由于在步骤S201中该验证触发指令使得该终端的振动马达根据该服务器发送的验证触发指令执行了振动操作,所以根据该终端的振动马达的振动方式,该终端的加速度传感器可以在如图5中所示的该终端的x轴、y轴以及z轴方向上测得该终端的加速度的变化量,其中该加速度的变化量可以包含加速度的最大值、最小值、最大值出现时间、最小值出现时间、每一次加速的变化之间的时间间隔等等数据,并将该加速度的变化量,与该参考振动参数中包含的加速度变化量进行对比。Since the verification trigger instruction in step S201 makes the vibration motor of the terminal perform a vibration operation according to the verification trigger instruction sent by the server, according to the vibration mode of the vibration motor of the terminal, the acceleration sensor of the terminal can be as shown in Figure 5 The change in acceleration of the terminal is measured in the x-axis, y-axis and z-axis directions of the terminal as shown, where the change in acceleration may include the maximum value, minimum value, time when the maximum value appears, and the time when the minimum value occurs Time, the time interval between each acceleration change and other data, and compare the acceleration change amount with the acceleration change amount included in the reference vibration parameter.
图5为本申请实施例提供的终端的加速度传感器采集加速度变化量的示意图。FIG. 5 is a schematic diagram of acquisition of acceleration variation by an acceleration sensor of a terminal provided in an embodiment of the present application.
进一步地,由于用户在每一次握持终端时使用的力量,姿势不可能完全一致,所以该元数据与该参考振动参数之间可能存在细微差别,所以在本申请中判断该元数据与该参考振动参数是否相似时,该服务器可以判断在该元数据与该参考振动参数的相似度是否在规定的范围内,其中,该规定的范围可以由工作人员根据经验设定。Furthermore, since the force and posture used by the user each time holding the terminal cannot be completely consistent, there may be slight differences between the metadata and the reference vibration parameter, so in this application, it is judged that the metadata and the reference When the vibration parameters are similar, the server can determine whether the similarity between the metadata and the reference vibration parameter is within a specified range, wherein the specified range can be set by staff based on experience.
具体的,该元数据与该参考振动参数的相似度是否在规定的范围内,具体可以是该元数据与该参考振动参数之间的差值是否超出了该规定的范围(如2%),则判断该元数据的数值是否落入该参考振动参数数值的±2%范围之内。并且,由于该加速度传感器可以采集多种数据,如仅以该加速度传感器来说,便可采集到加速度的最大值、最小值、最大值出现时间、最小值出现时间等多种数据,所以判断相似度是否在规定的范围内,还可以是确定该元数据与该参考振动参数相似度在规定的范围内的数据种类所占的比例是否达到预设的阈值(例如,确定75%的数据的相似度在规定的范围内,则只要该加速度的最大值、最小值、最大值出现时间、最小值出现时间中有3种数据的相似度在规定的范围内即可确定该元数据与该参考振动参数的相似度在规定的范围内)。Specifically, whether the similarity between the metadata and the reference vibration parameter is within the specified range, specifically, whether the difference between the metadata and the reference vibration parameter exceeds the specified range (such as 2%), Then it is judged whether the value of the metadata falls within the range of ±2% of the value of the reference vibration parameter. Moreover, since the acceleration sensor can collect a variety of data, such as the acceleration sensor alone, it can collect various data such as the maximum value, the minimum value, the time of occurrence of the maximum value, and the time of occurrence of the minimum value, so the judgment is similar Whether the degree of similarity between the metadata and the reference vibration parameter is within the specified range, or whether the proportion of the data types whose similarity between the metadata and the reference vibration parameter is within the specified range reaches a preset threshold (for example, determining the similarity of 75% of the data If the degree of acceleration is within the specified range, as long as the similarity of the three types of data among the maximum value, minimum value, maximum value appearance time, and minimum value appearance time of the acceleration is within the specified range, the metadata and the reference vibration can be determined. The similarity of the parameters is within the specified range).
继续沿用上例,假设该服务器X确定该参考振动参数Stand001与该元数据Z如表2所示。Continuing to use the above example, assume that the server X determines the reference vibration parameter Stand001 and the metadata Z as shown in Table 2.
表2Table 2
并且假设该服务器X需要判断该元数据与该参考振动参数的相似度是否在0.2%的范围内,则该参考振动参数的加速度的最大值范围可以是:0.1002~0.0998G/s;最大值出现时间点范围可以是:0.1002~0.0998s;加速度的最小值范围可以是:0.0001002~0.0000998G/s;最小值出现时间点的范围可以是:0.501~0.499s。则该服务器X可以确定该元数据落入了该参考振动参数的范围内,即,该元数据与该参考振动参数的相似度在规定的范围内,确定使用该终端的用户的身份可信度较高,其中,该最大加速度出现时间点为该终端根据对应的测试指令执行振动的时间点至采集到该的最大加速度的时间点之间的时长,同理,该最小加速度出现时间点是该终端根据对应的测试指令执行振动的时间点至采集到该的最小加速度的时间点之间的时长。And assuming that the server X needs to judge whether the similarity between the metadata and the reference vibration parameter is within the range of 0.2%, then the maximum value range of the acceleration of the reference vibration parameter can be: 0.1002~0.0998G/s; the maximum value appears The range of the time point can be: 0.1002~0.0998s; the range of the minimum value of the acceleration can be: 0.0001002~0.0000998G/s; the range of the time point when the minimum value appears can be: 0.501~0.499s. Then the server X can determine that the metadata falls within the scope of the reference vibration parameter, that is, the similarity between the metadata and the reference vibration parameter is within the specified range, and determine the identity credibility of the user using the terminal Higher, wherein, the maximum acceleration occurrence time point is the duration between the time point when the terminal performs vibration according to the corresponding test instruction and the time point when the maximum acceleration is collected. Similarly, the minimum acceleration occurrence time point is the The duration between the time point when the terminal performs vibration according to the corresponding test instruction and the time point when the minimum acceleration is collected.
进一步地,由于现有技术中还存在其它多种的身份验证方法(如根据地理位置信息、用户行为习惯信息等进行身份验证的方法),所以本申请所述的身份验证过程也可与其他的身份验证过程结合使用,即,该服务器可以利用多种身份验证方法得出的身份验证结果,对该终端进行身份验证,如,通过3种方法,均判断该终端的身份验证不通过,则该终端的安全性非常低,很有可能已经被不法分子盗用。Further, since there are various other identity verification methods in the prior art (such as methods of identity verification based on geographic location information, user behavior habit information, etc.), the identity verification process described in this application can also be combined with other The identity verification process is used in combination, that is, the server can use the identity verification results obtained by multiple identity verification methods to verify the identity of the terminal. The security of the terminal is very low, and it is very likely that it has been stolen by criminals.
当然,具体的如何利用本申请确定的身份验证结果,本申请并不做限定。Of course, this application does not limit how to use the identity verification result determined in this application.
需要说明的是,如表2所示的元数据Z的类型(即,最大加速度、最大加速度出现时间点、最小加速度、最小加速度出现时间点这四类),仅为本申请提供的实施例,在实际应用过程中,该元数据的类型还可以有多种(如,高于设定阈值的加速度出现的次数、高于设定阈值的加速度出现的时长等等),本申请并不限定该元数据的类型,只要该终端的传感器可以采集到的该振动的元数据均可以作为本申请中所述的元数据。It should be noted that the types of metadata Z shown in Table 2 (that is, the four categories of maximum acceleration, maximum acceleration occurrence time point, minimum acceleration, and minimum acceleration occurrence time point) are only examples provided by this application. In the actual application process, there may be various types of metadata (for example, the number of occurrences of acceleration higher than the set threshold, the duration of acceleration higher than the set threshold, etc.), and this application does not limit the Types of metadata, as long as the vibration metadata that can be collected by the sensor of the terminal can be used as the metadata described in this application.
通过如图3所示的身份验证的方法,可见该终端在接收服务器发送的验证触发指令后,用户无需对该终端执行任何操作,该终端便可向该服务器返回元数据以及该终端的设备标识,从而使该服务器根据该元数据和该终端的设备标识对使用该终端的用户进行身份验证。其中,由于对于每一个用户来说,该用户握持终端的姿势与其他用户握持该终端的姿势完全相同的几率极低,而该用户握持该终端的姿势对于该终端的传感器采集的该振动马达执行振动操作产生的元数据必定产生一定的影响,所以通过该元数据可以对是否是该用户在握持该终端进行区分,进而对使用该终端的用户进行身份验证。可见,本申请实施例提供的方法,可以无需用户操作便完成身份验证的过程,并且由于采集的虽然是该对应于该用户唯一的信息,但是不是该用户的生物信息不涉及该用户的个人隐私,所以更加容易使用户接受,运行成本更低,且对采集环境几乎无要求,身份验证效率更高。Through the identity verification method shown in Figure 3, it can be seen that after the terminal receives the verification trigger instruction sent by the server, the user does not need to perform any operations on the terminal, and the terminal can return metadata and the device identification of the terminal to the server , so that the server authenticates the user using the terminal according to the metadata and the device identifier of the terminal. Among them, because for each user, the probability that the posture of the user holding the terminal is exactly the same as that of other users holding the terminal is extremely low, and the posture of the user holding the terminal has a significant impact on the information collected by the sensor of the terminal. The metadata generated by the vibration operation performed by the vibration motor must have a certain impact, so the metadata can be used to distinguish whether the user is holding the terminal, and then authenticate the user using the terminal. It can be seen that the method provided by the embodiment of the present application can complete the identity verification process without user operation, and because the collected information is unique to the user, but not the user's biological information does not involve the user's personal privacy , so it is easier for users to accept, the operating cost is lower, and there is almost no requirement for the collection environment, and the authentication efficiency is higher.
另外,在本申请步骤S201中,由于该服务器向终端发送验证触发指令时,需要该服务器接收该终端发送的状态信息,所以为了减轻该服务器的运行压力,本申请所述的身份验证过程也可由该终端主动发起,即,该终端向服务器发送身份验证请求,该身份验证请求使得该服务器向该终端发送验证触发指令。In addition, in step S201 of this application, since the server needs to receive the status information sent by the terminal when the server sends a verification trigger instruction to the terminal, in order to reduce the operating pressure on the server, the identity verification process described in this application can also be implemented by The terminal actively initiates, that is, the terminal sends an identity verification request to the server, and the identity verification request causes the server to send a verification trigger instruction to the terminal.
当然,不论是由该终端还是该服务器发起身份验证的过程,对身份验证的过程并无本质区别,该服务器具体通过何种方法确定向该终端发送验证触发指令,可采用与现有技术中进行身份验证时一致的方法,本申请对此并不做具体限定。Of course, no matter whether the process of identity verification is initiated by the terminal or the server, there is no essential difference in the process of identity verification. The specific method used by the server to determine to send a verification trigger command to the terminal can be implemented in the same way as in the prior art. The consistent method for identity verification is not specifically limited in this application.
进一步地,本申请实施例中,由于该服务器对终端进行身份验证时,是通过判断该参考振动参数与该元数据相似度是否在规定的范围内,来对使用所述终端的用户进行身份验证,所以该参考振动参数的准确与否,就密切关系到本申请所述的身份验证过程的准确性。Further, in the embodiment of the present application, when the server authenticates the terminal, it verifies the identity of the user using the terminal by judging whether the similarity between the reference vibration parameter and the metadata is within the specified range. , so the accuracy of the reference vibration parameter is closely related to the accuracy of the identity verification process described in this application.
而对于一个设备标识、验证触发指令和参考振动参数的对应关系来说,该参考振动参数是该终端根据该测试指令执行振动操作时采集在执行所述振动操作时产生的元数据而确定的,但是,如果该测试指令使得该终端在根据该验证触发指令执行振动操作时采集在执行该振动操作时产生的元数据的稳定性低、区分度低,则可造成身份验证的准确性低。As for the correspondence between a device identifier, a verification trigger instruction, and a reference vibration parameter, the reference vibration parameter is determined by collecting metadata generated when the terminal performs the vibration operation according to the test instruction, However, if the test instruction causes the terminal to collect metadata generated during the vibration operation according to the verification trigger instruction with low stability and low discrimination, it may result in low identity verification accuracy.
其中,当该参考振动参数的稳定性低时,针对该验证触发指令,即使使用该终端的用户为同一人,该终端返回的元数据与该参考振动参数的相似度也可能不在规定的范围内。而当该参考振动参数的区分度低,针对该验证触发指令,即使使用该终端的用户不是同一人,该终端返回的元数据与该参考振动参数的相似度也可能在规定的范围内,可见当确定的该参考振动参数的稳定性低、区分度低时,本申请所述的身份验证过程容易出现误判和漏判的情况。Wherein, when the stability of the reference vibration parameter is low, for the verification trigger instruction, even if the user using the terminal is the same person, the similarity between the metadata returned by the terminal and the reference vibration parameter may not be within the specified range . However, when the discrimination of the reference vibration parameter is low, for the verification trigger command, even if the user using the terminal is not the same person, the similarity between the metadata returned by the terminal and the reference vibration parameter may be within the specified range. It can be seen that When the determined reference vibration parameter has low stability and low discrimination, the identity verification process described in this application is prone to misjudgment and missed judgment.
于是,所以为了使该参考振动参数更加准确,以使得身份验证的准确度更高,在本申请中,针对每一个终端,该服务器在测试确定针对该终端的参考振动参数时,可以通过向该终端重复发送多种测试指令,即针对每一种测试指令,该服务器向该终端重复发送,则该服务器可接收该终端返回的多种测试指令产生的元数据,并确定稳定性达到第一条件且区分度达到第二条件的测试指令产生的元数据确定为针对所述终端的参考振动参数,建立并存储将该设备标识、该验证触发指令以及该参考振动参数的对应关系,以便后续进行身份验证过程时,可以以该参考振动参数对该终端进行身份验证。其中,该第一条件和该第二条件可以是分别根据人工经验进行设置的数值。Therefore, in order to make the reference vibration parameter more accurate and to make the identity verification more accurate, in this application, for each terminal, when the server tests and determines the reference vibration parameter for the terminal, it can send the The terminal repeatedly sends a variety of test instructions, that is, for each test instruction, the server repeatedly sends to the terminal, then the server can receive the metadata generated by the various test instructions returned by the terminal, and determine that the stability meets the first condition And the metadata generated by the test instruction whose discrimination degree reaches the second condition is determined as the reference vibration parameter for the terminal, and the corresponding relationship between the device identification, the verification trigger instruction and the reference vibration parameter is established and stored, so that the identification can be carried out later. During the verification process, the terminal can be authenticated with the reference vibration parameter. Wherein, the first condition and the second condition may be numerical values respectively set according to human experience.
具体的,对于测试指令产生的元数据的稳定性来说,该服务器可在得到针对同一个测试指令该终端产生的至少一个元数据时,通过计算得到的不同所述元数据之间的差值之和,并根据所述差值之和确定所述测试指令产生元数据的稳定性。对于测试指令产生的元数据的区分度来说,该服务器在得到不同的所述测试指令对应的元数据时,可先确定不同的测试指令产生的元数据的平均值,并且针对每一个测试指令,确定该测试指令产生的元数据的平均值与其他测试指令产生的元数据的平均值之间的差值,再将确定的差值之和作为该测试指令产生的元数据的区分度,则可确定不同的测试指令的区分度。Specifically, for the stability of the metadata generated by the test instruction, the server may calculate the difference between different metadata when obtaining at least one metadata generated by the terminal for the same test instruction and determining the stability of the metadata generated by the test instruction according to the sum of the differences. Regarding the degree of differentiation of metadata generated by test instructions, when the server obtains metadata corresponding to different test instructions, it can first determine the average value of metadata generated by different test instructions, and for each test instruction , determine the difference between the average value of the metadata generated by the test command and the average value of the metadata generated by other test commands, and then use the sum of the determined differences as the discrimination degree of the metadata generated by the test command, then The degree of discrimination of different test instructions can be determined.
另外,由在本申请中该身份验证过程的目的是,确定该终端的使用人是否是发送测试指令时该终端的持有人,所以对本申请所述的方法来说,仅需验证该用户是否为发送测试指令时该终端的持有人即可,而无需验证该终端的使用人是什么人。In addition, since the purpose of the identity verification process in this application is to determine whether the user of the terminal is the owner of the terminal when sending the test command, so for the method described in this application, it is only necessary to verify whether the user is It is only necessary to be the holder of the terminal when sending the test command, and it is not necessary to verify who the user of the terminal is.
在本申请中,对于发送同一终端的各种测试指令来说,只要有一种测试指令所对应的测数数据能够区别于其他测试指令对应的测试指令产生的元数据即可,而无需考虑该测试指令对应的测试指令产生的元数据是否与发送至其他终端的测试指令所对应的测试指令产生的元数据相似,即,仅需对同一个终端返回的测试指令产生的元数据进行对比。In this application, for various test commands sent to the same terminal, as long as the measurement data corresponding to one test command can be distinguished from the metadata generated by the test commands corresponding to other test commands, it is not necessary to consider the Whether the metadata generated by the test command corresponding to the command is similar to the metadata generated by the test command corresponding to the test command sent to other terminals, that is, it is only necessary to compare the metadata generated by the test command returned by the same terminal.
具体的,针对每一个终端(如,在表1中所示设备标识为A001的终端),首先,当该服务器可向该终端发送不同的测试指令,其中,不同的测试指令可使该终端的振动马达执行不同的振动操作,具体可以是振动频率信息、振动时间间隔信息以及振动强度信息中至少一种不同,则该终端可对于每一种不同的测试指令向该服务器返回该测试指令产生的元数据。并且,针对同一种测试指令,该服务器可向该终端重复该测试指令,以减少该测试指令产生的元数据的误差。其中,该服务器也可在确定使用该终端的用户的身份可信时,向该终端发送每一个测试指令。Specifically, for each terminal (such as the terminal whose device identifier is A001 shown in Table 1), first, when the server can send different test instructions to the terminal, wherein the different test instructions can make the terminal's The vibration motor performs different vibration operations. Specifically, at least one of the vibration frequency information, vibration time interval information and vibration intensity information may be different. Then the terminal may return the test command to the server for each different test command. metadata. Moreover, for the same test command, the server may repeat the test command to the terminal, so as to reduce errors in metadata generated by the test command. Wherein, the server may also send each test instruction to the terminal when determining that the identity of the user using the terminal is credible.
其次,该服务器针对同一个终端返回的不同的测试指令产生的元数据,判断各种测试指令产生的元数据之间的区分度以及每一种测试指令产生的元数据的稳定性。如,对于表3所示的3种测试指令产生的元数据。Secondly, the server judges the degree of differentiation between the metadata generated by various test instructions and the stability of the metadata generated by each test instruction for the metadata generated by different test instructions returned by the same terminal. For example, metadata generated for the three test commands shown in Table 3.
表3table 3
需要说明的是,其中最大加速度、最大加速度出现时间点、最小加速度、最小加速度出现时间点均是平均值,即,同一测试指令产生的各元数据的平均值。It should be noted that the maximum acceleration, the time point at which the maximum acceleration occurs, the minimum acceleration, and the time point at which the minimum acceleration occurs are all average values, that is, the average values of metadata generated by the same test command.
可见,对于测试指令II产生的元数据和测试指令III产生的元数据来说,各种数值均很接近难以区分,而对于测试指令I产生的元数据来说,该测试指令产I生的元数据对应的各数值与测试指令II产生的元数据和测试指令III产生的元数据的数值差别很大,所以可以确定该测试指令产生的元数据I的区分度较高。It can be seen that for the metadata generated by test instruction II and the metadata generated by test instruction III, the various values are very close and indistinguishable, and for the metadata generated by test instruction I, the metadata generated by the test instruction I The numerical values corresponding to the data are very different from the metadata generated by the test instruction II and the metadata generated by the test instruction III, so it can be determined that the metadata I generated by the test instruction has a high degree of discrimination.
其中,该最大加速度以及该最小加速度可根据用户握持终端的姿势的不同而产生变化(如,用户的握力不同可能导致采集的加速度不同,用户的握姿不同也可能导致采集的加速度不同),该最大加速度以及该最小加速度也可根据该终端对应的设备不同产生变化(如,该终端对应的设备重量不同、体积不同,都可能导致采集的加速度不同)。并且,上述的用户握持终端的姿势以及该终端对应的设备,也可影响到该最大加速度出现时间点以及该最小加速出现的时间点(如,用户握力较大则可能使最大加速度出现时间点和最小加速度出现时间点更接近,用户握力较小则可能使最大加速度出现时间点和最小加速度出现时间点更疏远),当然,影响该加速度数值以及时间点的因素还有很多本申请不再一一列举。Wherein, the maximum acceleration and the minimum acceleration may vary according to the posture of the user holding the terminal (for example, different grip strengths of the user may result in different accelerations collected, and different grip postures of the user may also result in different accelerations collected), The maximum acceleration and the minimum acceleration may also vary according to different devices corresponding to the terminal (for example, different weights and volumes of devices corresponding to the terminal may result in different accelerations collected). Moreover, the above-mentioned posture of the user holding the terminal and the device corresponding to the terminal may also affect the time point at which the maximum acceleration occurs and the time point at which the minimum acceleration occurs (for example, if the user's grip is strong, the time point at which the maximum acceleration occurs may be affected. It is closer to the time point of the minimum acceleration, and the smaller the user's grip strength may make the time point of the maximum acceleration and the time point of the minimum acceleration more distant), of course, there are many factors that affect the acceleration value and time point. This application will not repeat List them all.
具体的,仅以测试指令I产生的元数据为例,区分度为:最大加速度(0.1000G/s-0.0600G/s)+(0.1000G/s-0.0580G/s)、最大加速度出现时间点(0.100s-0.050s)+(0.100s-0.040s)、最小加速度0、最小加速度出现时间点(0.900s-0.550s)+(0.900s-0.530s),同理可以确定测试指令II产生的元数据和测试指令III产生的元数据的区分度。Specifically, taking the metadata generated by test command I as an example, the degree of discrimination is: maximum acceleration (0.1000G/s-0.0600G/s)+(0.1000G/s-0.0580G/s), time point of maximum acceleration (0.100s-0.050s)+(0.100s-0.040s), the minimum acceleration is 0, and the minimum acceleration occurs at the time point (0.900s-0.550s)+(0.900s-0.530s). Similarly, the test command II can be determined. Distinction between metadata and metadata generated by Test Instruction III.
而由于对于同一种测试指令,该服务器可以向该终端发送多次,所以上述的稳定性则是指该终端对于同一个测试指令,每一次返回的测试指令产生的元数据的稳定性(即,针对同一个种测试指令,该终端返回的各测试指令产生的元数据之间的差别大小),若对于同一个测试指令,该终端每一次返回的测试指令产生的元数据的差别都很大,则通过该测试指令产生的元数据难以确定该差别是由于该数据本身还是由于该终端的使用人造成的,所以难以以该测试指令作为验证触发指令来进行身份验证。例如,表4所示的2种测试指令产生的元数据。And because for the same test command, the server can send multiple times to the terminal, so the above stability refers to the terminal for the same test command, the stability of the metadata generated by the test command returned each time (that is, For the same test command, the difference between the metadata generated by each test command returned by the terminal), if for the same test command, the difference in the metadata produced by the test command returned by the terminal every time is very large, Then it is difficult to determine whether the difference is caused by the data itself or the user of the terminal through the metadata generated by the test command, so it is difficult to use the test command as a verification trigger command to perform identity verification. For example, the metadata generated by the two test commands shown in Table 4.
表4Table 4
可见,该服务器重复向同一终端发送了4次测试指令I和4次测试指令II,并接收到了该终端返回的如表4所示的测试指令I产生的元数据和测试指令II产生的元数据,其中,测试指令I产生的元数据的稳定性更好,每个测试指令I产生的元数据之间的差别都很小,而每一个测试指令II产生的元数据之间的差别均很大,难以用于身份验证。It can be seen that the server repeatedly sent 4 test commands I and 4 test commands II to the same terminal, and received the metadata generated by test command I and test command II returned by the terminal as shown in Table 4 , where the metadata generated by test instruction I has better stability, the difference between the metadata generated by each test instruction I is very small, and the difference between the metadata generated by each test instruction II is very large , which is difficult to use for authentication.
具体的,仅以测试指令I产生的元数据为例,最大加速度的稳定性为:(0.1000G/s-0.1020G/s)+(0.1020G/s-0.1050G/s)+(0.1050G/s-0.1001G/s)。Specifically, taking the metadata generated by test command I as an example, the stability of the maximum acceleration is: (0.1000G/s-0.1020G/s)+(0.1020G/s-0.1050G/s)+(0.1050G/ s-0.1001G/s).
进一步地,由于在步骤S204中的描述,本申请并不限定该元数据的类型,所以本申请并不限定该终端执行上述测试指令后仅可采集到如表3所示的各元数据,表3中所示的各元数据仅为举例示意,并不形成对本申请的限定,在本申请中,上述各测试指令还可分别对应多种元数据。Further, due to the description in step S204, the present application does not limit the type of metadata, so the present application does not limit that the terminal can only collect metadata as shown in Table 3 after executing the above test instructions, as shown in Table 3. The metadata shown in 3 are only examples and do not limit the present application. In the present application, the above-mentioned test instructions may also correspond to various metadata.
更进一步地,针对每个测试指令,由于该测试指令产生的各元数据中可能存在区分度较低的元数据,而区分度较低的元数据对该测试指令来说存在意义不大,所以当确定该元数据的区分度较低时,后续再发送该测试指令时,可以不再采集该元数据。Furthermore, for each test instruction, since there may be metadata with a low degree of discrimination in the metadata generated by the test instruction, and the metadata with a low degree of discrimination is of little significance to the test instruction, so When it is determined that the degree of discrimination of the metadata is low, the metadata may not be collected when the test instruction is sent later.
以该测试指令I为例,假设该测试指令I产生的全部元数据如表3所示,由于该测试指令I产生的最小加速度的区分度为0,所以最小加速度对于该测试指令I的意义不大,则对于该测试指令I,该终端的传感器可不再采集最小加速度,使得执行该测试指令I产生的各元数据仅为最大加速度、最大加速度出现的时间点、最小加速度出现的时间点。Taking the test instruction I as an example, assuming that all the metadata generated by the test instruction I are shown in Table 3, since the minimum acceleration generated by the test instruction I has a discrimination degree of 0, the meaning of the minimum acceleration for the test instruction I is not significant. is large, then for the test instruction I, the sensor of the terminal can no longer collect the minimum acceleration, so that the metadata generated by executing the test instruction I are only the maximum acceleration, the time point at which the maximum acceleration occurs, and the time point at which the minimum acceleration occurs.
另外,该服务器对于发送给同一终端的每一种测试指令产生的各元数据,均可采用与现有技术相同的信号处理方法,将同一测试指令产生的各元数据确定出一个测试数据,作为该测试指令所产生的元数据,其中,最简单的方法是,针对每一种测试指令,将该测试指令所产生的各元数据的取平均值作为该测试指令产生的元数据,则每当服务器再次接收到该测试指令对应的元数据时,对该测试指令产生的元数据可以进行一次信号处理,以便确定出的测试指令产生的元数据更加准确。In addition, the server can use the same signal processing method as the prior art for each metadata generated by each test command sent to the same terminal to determine a test data from each metadata generated by the same test command as The metadata generated by the test instruction, wherein, the simplest method is, for each test instruction, the average value of the metadata generated by the test instruction is used as the metadata generated by the test instruction, then each time When the server receives the metadata corresponding to the test instruction again, it may perform a signal processing on the metadata generated by the test instruction, so that the determined metadata generated by the test instruction is more accurate.
最后,该服务器可一直重复发送各种测试指令(即,针对每一种测试指令,重复发送该测试指令),直到各种测试指令对应的测试指令产生的元数据中,出现稳定性达到第一条件且区分度达到第二条件的测试指令产生的元数据为止,并且将该稳定性达到第一条件且区分度达到第二条件的测试指令产生的元数据作为参考振动参数,将与该参考振动参数对应的测试指令作为验证触发指令,并将该参考振动参数、验证触发指令、设备标识建立对应关系并存储在本地。Finally, the server can repeatedly send various test instructions (that is, repeatedly send the test instruction for each test instruction) until the metadata generated by the test instructions corresponding to the various test instructions shows that the stability reaches the first level. condition and the degree of differentiation reaches the metadata of the test instruction that meets the second condition, and the metadata generated by the test instruction that meets the stability of the first condition and the degree of discrimination reaches the second condition is used as a reference vibration parameter, which will be compared with the reference vibration The test instruction corresponding to the parameter is used as a verification trigger instruction, and the reference vibration parameter, verification trigger instruction, and device identification are associated and stored locally.
当然,在本申请所述的该测试过程中,该测试指令也可以只有一种,则该服务器可重复发送该测试指令,直至该测试指令产生的各元数据中出现的稳定性达到第一条件的元数据为止。并且,由于该服务器仅发送一种测试指令,所以无需考虑区分度的问题,仅需确定该测试指令产生的元数据的稳定性达到第一条件即可,其中,确定稳定性的方法可如前述方法一致。Of course, in the test process described in this application, there may be only one test command, and the server can repeatedly send the test command until the stability of each metadata generated by the test command reaches the first condition of metadata. Moreover, since the server only sends one test command, there is no need to consider the issue of discrimination, it is only necessary to determine that the stability of the metadata generated by the test command meets the first condition, wherein the method for determining the stability can be as described above The method is the same.
本申请实施例中所记载的第一条件可以是指稳定性对应的数据达到设定第一数值,第二条件可以是指区分度达到第二数值,还可以是其他条件,这里不做具体限定。The first condition recorded in the embodiment of the present application may mean that the data corresponding to the stability reaches the set first value, and the second condition may mean that the degree of discrimination reaches the second value, or other conditions, which are not specifically limited here. .
需要说明的是,在该服务器确定任一测试指令产生的元数据的稳定性和区分度时,由于稳定性仅针对同一测试指令产生的元数据,所以只要当该服务器接收到同一测试指令产生的一个以上的元数据时,该服务器即可确定该测试指令产生的元数据的稳定性,并且在再次接收到该测试指令产生的元数据时,更新该测试指令产生的元数的稳定值。而由于区分度只有在出现一个以上不同的测试指令产生的元数据时才存在,所以只有当该服务器接收到一个以上不同测试指令产生的元数据时,该服务器才可以确定不同测试指令产生的元数据的区分度。It should be noted that when the server determines the stability and differentiation of metadata generated by any test instruction, since the stability is only for metadata generated by the same test instruction, as long as the server receives metadata generated by the same test instruction When there is more than one metadata, the server can determine the stability of the metadata generated by the test command, and when receiving the metadata generated by the test command again, update the stable value of the metadata generated by the test command. Since the degree of discrimination exists only when there are more than one metadata generated by different test instructions, the server can determine the metadata generated by different test instructions only when the server receives metadata generated by more than one different test instructions. Data Distinction.
进一步地,上述仅为本申请的一种实施方式,该参考振动参数也可以是由多个元数据通过现有技术的信号处理方法来确定的,其中,该信号处理方法还包括:离散傅里叶变换的快速方法、短时傅里叶变换、小波分析、阶比分析、倒频谱、希尔伯特变换、经验模态分解、本征模函数、希尔伯特黄变换等传统的信号处理方法,当然,工作人员可根据需求确定具体的信号处理方法,本申请对此并不做具体限定。Further, the above is only an implementation manner of the present application, and the reference vibration parameter may also be determined from a plurality of metadata through a signal processing method in the prior art, wherein the signal processing method further includes: discrete Fourier Fast method of leaf transform, short-time Fourier transform, wavelet analysis, order ratio analysis, cepstrum, Hilbert transform, empirical mode decomposition, eigenmode function, Hilbert-Huang transform and other traditional signal processing The method, of course, the staff can determine the specific signal processing method according to the requirement, which is not specifically limited in this application.
更进一步地,各种测试指令可以使该终端执行不同的振动操作,则其中,该振动操作的区别可以包括:振动马达的振动的频率、每一次振动之间的时间间隔以及振动的强度。如图6所示。Furthermore, various test instructions may cause the terminal to perform different vibration operations, wherein the differences in the vibration operations may include: the frequency of the vibration of the vibration motor, the time interval between each vibration, and the intensity of the vibration. As shown in Figure 6.
图6为本申请实施例提供的振动操作对应的波形示意图。其中,横坐标表示时间,纵坐标表示该终端某一轴方向上的振动幅度,并且01代表振动的频率、02代表振动时间间隔、03表示振动强度,其中,01中该传感器采集到单位时间内加速度变化12次,也就是该振动的频率。FIG. 6 is a schematic diagram of a waveform corresponding to a vibration operation provided by an embodiment of the present application. Among them, the abscissa represents time, and the ordinate represents the vibration amplitude of a certain axis of the terminal, and 01 represents the frequency of vibration, 02 represents the vibration time interval, and 03 represents the vibration intensity. The acceleration changes 12 times, which is the frequency of this vibration.
更进一步地,在本申请中所述的各种测试指令,可由工作人员预先设置,但是由于人工设置的测试指令的种类终究有限,且各种测试指令中,并不一定存在能使测试指令产生的元数稳定性达到第一条件且区分度达到第二条件的测试指令,所以在本身实施例中,该服务器还可以对测试指令进行训练,以获得更优的测试指令。Furthermore, the various test instructions described in this application can be pre-set by the staff, but the types of test instructions manually set are limited after all, and among the various test instructions, there may not necessarily be a test instruction that can generate a test instruction. The arity stability of the test instruction meets the first condition and the discrimination meets the second condition, so in the embodiment itself, the server can also train the test instruction to obtain a better test instruction.
例如,采用遗传算法、退火算法、蚁群算法、粒子群算法等,训练各测试指令,以获得稳定性以及区分度达到阈值的测试指令。For example, genetic algorithm, annealing algorithm, ant colony algorithm, particle swarm algorithm, etc. are used to train each test instruction to obtain test instructions whose stability and discrimination reach a threshold.
或者,该服务器还可以随机设置该测试指令的振动频率信息、振动时间间隔信息以及振动强度信息。Alternatively, the server may also randomly set the vibration frequency information, vibration time interval information, and vibration intensity information of the test instruction.
另外,由于各账号只有通过在终端上登录,才可以基于该终端的硬件与该服务器进行通讯,并执行业务,所以在本申请中,该终端上还可以登录多个账号,于是该服务器可仅监测各已经处于登录状态的账号的账号状态,而无需对所有账号进行监测,从而减轻该服务器的运行压力。In addition, since each account can communicate with the server based on the hardware of the terminal and perform business only by logging in on the terminal, so in this application, multiple accounts can be logged in on the terminal, so the server can only The account status of each account that is already in the login state is monitored, without monitoring all accounts, thereby reducing the operating pressure of the server.
于是,在本申请中,该服务器向该终端发送的验证触发指令中可携带账号标识。Therefore, in this application, the verification trigger instruction sent by the server to the terminal may carry the account identifier.
具体的,针对每一个状态异常的账号,首先,由于该账号可以在不同的终端上登录,而在本申请中,在进行身份验证时该账号登录的终端与身份验证过程存在较为密切的联系,所以该服务器在该账号建立数据连接后,还可以进一步确定该账号登录的终端的设备标识,以确定该账号登录的终端。Specifically, for each account with an abnormal status, firstly, since the account can be logged in on different terminals, in this application, the terminal where the account is logged in is closely related to the identity verification process during identity verification. Therefore, after the data connection is established with the account, the server may further determine the device identifier of the terminal logged in with the account, so as to determine the terminal logged in with the account.
其次,该服务器可根据预先存储的各账号标识、各设备标识、各验证触发指令以及各参考振动参数的对应关系,如表5所示,确定该账号的账号标识所对应的验证触发指令。Secondly, the server can determine the verification trigger instruction corresponding to the account identifier of the account according to the pre-stored correspondence between each account identifier, each device identifier, each verification trigger instruction, and each reference vibration parameter, as shown in Table 5.
表5table 5
可见对于同一个账号(如,账号标识A)来说,该账号标识A可以对应多个设备标识,并且,每一个设备标识均分别对应于不同的验证触发指令以及标准信息。It can be seen that for the same account (eg, account ID A), the account ID A may correspond to multiple device IDs, and each device ID corresponds to different verification trigger instructions and standard information.
最后,该服务器可将确定的该账号的账号标识所对应的验证触发指令发送至该账号,以使得该账号登录的终端可以进行后续的身份验证过程。Finally, the server may send a verification trigger instruction corresponding to the determined account ID of the account to the account, so that the terminal logged in with the account can perform a subsequent identity verification process.
进一步地,该服务器在向该账号发送该验证触发指令后,由于该验证触发指令的目的是使该账号登陆的终端向该服务器返回可以证明身份的信息(即,元数据,以供该服务器进行后续的身份验证步骤),所以该验证触发指令可以使该账号登陆的终端,根据该验证触发指令执行对应的操作,并向该服务器返回元数据、该终端的设备标识以及该验证才能触发指令携带的账号标识。Further, after the server sends the verification trigger instruction to the account, since the purpose of the verification trigger instruction is to make the terminal logged in by the account return information (that is, metadata) that can prove identity to the server for the server to perform Subsequent identity verification steps), so the verification trigger command can cause the terminal logged in by the account to perform the corresponding operation according to the verification trigger command, and return metadata, the terminal’s device identifier, and the verification capability trigger command to the server. account ID.
进一步的,由于同一终端可登录有多个账号,且该服务器可接收携带有元数据、账号标识以及设别标识的验证请求,所以该服务器在确定该参考振动参数时,可以根据设备标识以及账号标识共同确定。Further, since the same terminal can log in with multiple accounts, and the server can receive verification requests carrying metadata, account identifiers, and device identifiers, the server can determine the reference vibration parameters according to the device identifier and account number. The identification is jointly determined.
具体的,该服务器在接收到该元数据以及该设备标识后,便可通过如表1所示的已存储的各账号标识、各设备标识、各验证触发指令以及各参考振动参数的对应关系,确定在步骤S201中发送的该验证触发指令对应的参考振动参数,并且,由于对于不同的账号标识以及设备标识,该服务器可能发送的验证触发指令相同,但是对于同一个验证触发指令,该验证触发指令对应于不同的账号标识以及设备标识的参考振动参数可能不同,如表6所示,所以在本申请中该参考振动参数与该账号标识以及该设备标识也可以是一一对应的。Specifically, after the server receives the metadata and the device identifier, it can use the stored correspondence between each account identifier, each device identifier, each verification trigger instruction, and each reference vibration parameter as shown in Table 1, Determine the reference vibration parameter corresponding to the verification trigger instruction sent in step S201, and, because the server may send the same verification trigger instruction for different account IDs and device IDs, but for the same verification trigger instruction, the verification trigger instruction The reference vibration parameters corresponding to different account IDs and device IDs of the instruction may be different, as shown in Table 6, so in this application, the reference vibration parameters may also have a one-to-one correspondence with the account ID and the device ID.
表6Table 6
可见对于验证触发指令Prov001来说,在对应于不同的账号标识A、B和C时,其对应的参考振动参数也不同,并且对应账号标识B来说,该验证触发指令Prov001对应于不同的设备标识A003和A004,该验证触发指令分别对应于不同的参考振动参数Stand003和Stand004。It can be seen that for the verification trigger command Prov001, when corresponding to different account IDs A, B and C, the corresponding reference vibration parameters are also different, and corresponding to the account ID B, the verification trigger command Prov001 corresponds to different devices Marked A003 and A004, the verification trigger instructions correspond to different reference vibration parameters Stand003 and Stand004 respectively.
所以该服务器需要确定与账号标识、设备标识以及验证触发指令均应的标准信息,当然,为了方便区分,该服务器也可以为不同的账号标识以及设备标识确定不同的验证触发指令,例如,对于表6中的验证触发指令Porv001俩说,Therefore, the server needs to determine the standard information corresponding to the account ID, the device ID, and the verification trigger command. Of course, in order to facilitate the distinction, the server can also determine different verification trigger commands for different account IDs and device IDs. For example, for the table The verification trigger instruction Porv001 in 6 says,
该服务器也可存储成图表7所示的对应的关系。The server may also store the corresponding relationship shown in Figure 7.
表7Table 7
则,由于对于每一个验证触发指令来说,该验证触发指令均可与其他验证触发指令不同,所以该服务器也可仅根据各验证触发指令与各参考振动参数的对应的关系,确定与该验证触发指令唯一对应的参考振动参数。Then, since for each verification trigger command, the verification trigger command can be different from other verification trigger commands, so the server can also determine the corresponding relationship between each verification trigger command and each reference vibration parameter. The only reference vibration parameter corresponding to the trigger command.
当然,上述仅列举了两种实施方式,本申请并不具体限定通过该验证触发指令如何确定对应的参考振动参数,只要该验证触发指令可以确定对应于该账号标识以及该设备标识的参考振动参数即可。Of course, the above only lists two implementations, and the present application does not specifically limit how to determine the corresponding reference vibration parameter through the verification trigger instruction, as long as the verification trigger instruction can determine the reference vibration parameter corresponding to the account ID and the device ID That's it.
更进一步的,由于该元数据实际上与该账号标识、设备标识以及该验证触发指令是一一对应的,而该参考振动参数也是与该账号标识、设备标识以及该验证触发指令是一一对应的,所以该参考振动参数可以认为是与该元数据对应的,所以当该服务器接收到该元数据并确定了对应的参考振动参数之后,该服务器便可以判断该参考振动参数与该元数据是否一致,以便确定该账号的身份验证是否通过。Furthermore, since the metadata is actually in one-to-one correspondence with the account ID, device ID, and the verification trigger instruction, and the reference vibration parameter is also in one-to-one correspondence with the account ID, device ID, and the verification trigger instruction Therefore, the reference vibration parameter can be considered as corresponding to the metadata, so when the server receives the metadata and determines the corresponding reference vibration parameter, the server can judge whether the reference vibration parameter and the metadata Consistent, in order to determine whether the identity verification of the account is passed.
需要说明的是,本申请实施例所提供方法的各步骤的执行主体均可以是同一设备,或者,该方法也由不同设备作为执行主体。比如,步骤S201和步骤S202的执行主体可以为设备1,步骤S203的执行主体可以为设备2;又比如,步骤S201的执行主体可以为设备1,步骤S202和步骤S203的执行主体可以为设备2;等等,即,该服务器可以是由多台设备组成的分布式服务器。It should be noted that the subject of execution of each step of the method provided in the embodiment of the present application may be the same device, or the method may also be executed by different devices. For example, the execution subject of step S201 and step S202 may be device 1, and the execution subject of step S203 may be device 2; for another example, the execution subject of step S201 may be device 1, and the execution subject of step S202 and step S203 may be device 2 ; etc., that is, the server may be a distributed server composed of multiple devices.
基于图2所示的数据存储过程,本申请实施例还对应提供一种身份验证的装置,如图7所示。Based on the data storage process shown in FIG. 2 , the embodiment of the present application also provides an identity verification device, as shown in FIG. 7 .
图7为本申请实施例提供的一种身份验证的装置的结构示意图,包括:FIG. 7 is a schematic structural diagram of an identity verification device provided in an embodiment of the present application, including:
接收模块301,接收服务器发送的验证触发指令;The receiving module 301 receives the verification trigger instruction sent by the server;
振动模块302,根据所述验证触发指令执行振动操作;A vibration module 302, performing a vibration operation according to the verification trigger instruction;
采集模块,在所述振动模块302根据所述验证触发指令执行振动操作时,采集在执行所述振动操作时产生的元数据;A collection module, when the vibration module 302 performs a vibration operation according to the verification trigger instruction, collect metadata generated when performing the vibration operation;
发送模块303,将携带所述元数据和所述装置的设备标识的验证请求发送至服务器,所述验证请求用于请求所述服务器根据所述元数据和所述装置的设备标识对使用所述装置的用户进行身份验证。A sending module 303, sending a verification request carrying the metadata and the device identifier of the device to the server, where the verification request is used to request the server to use the The user of the device is authenticated.
所述振动模块302,确定所述验证触发指令中包含的振动频率信息、振动时间间隔信息以及振动强度信息中的至少一种,根据所述振动频率信息、所述振动时间间隔信息以及所述振动强度信息中的至少一种,执行振动操作。The vibration module 302 determines at least one of vibration frequency information, vibration time interval information, and vibration intensity information included in the verification trigger instruction, and according to the vibration frequency information, the vibration time interval information, and the vibration At least one of the intensity information, perform a vibration operation.
所述振动模块302在执行所述振动操作时,所述采集模块,采集所述终端的振动加速度和/或振动角速度,并将所述振动加速度和/或所述振动角速度作为所述终端在执行所述振动操作时产生的元数据。When the vibration module 302 performs the vibration operation, the collection module collects the vibration acceleration and/or the vibration angular velocity of the terminal, and uses the vibration acceleration and/or the vibration angular velocity as the Metadata generated when the vibration operates.
所述接收模块301,终端向服务器发送状态信息,所述终端接收所述服务器发送的验证触发指令,所述验证触发指令为所述服务器在确定状态信息为异常状态时发送的。In the receiving module 301, the terminal sends status information to the server, and the terminal receives a verification trigger instruction sent by the server, and the verification trigger instruction is sent by the server when the status information is determined to be abnormal.
在本申请的另一个实施例中,所述验证触发指令中携带账号标识;所述发送模块303,在将携带所述元数据、所述装置的设备标识发送给所述服务器时,还将所述终端的账号标识携带者所述验证请求中发送至服务器,所述验证请求用于请求所述服务器根据所述元数据、所述装置的设备标识以及所述账号标识,对使用所述装置的用户进行身份验证。In another embodiment of the present application, the verification trigger instruction carries an account identifier; when the sending module 303 sends the metadata and the device identifier of the device to the server, it also includes the The verification request of the account identifier carrier of the terminal is sent to the server, and the verification request is used to request the server to verify the identity of the device using the device according to the metadata, the device identifier of the device, and the account identifier. The user is authenticated.
具体的,上述如图7所示的身份验证的装置可以位于终端中,所述终端可以是手机、平板电脑等设备。Specifically, the above-mentioned identity verification device as shown in FIG. 7 may be located in a terminal, and the terminal may be a mobile phone, a tablet computer, or other equipment.
基于图3所示的数据存储过程,本申请实施例还对应提供一种终端执行的身份验证的装置,如图8所示。Based on the data storage process shown in FIG. 3 , the embodiment of the present application also provides an apparatus for identity verification performed by a terminal, as shown in FIG. 8 .
图8为本申请实施例提供的另一种身份验证的装置的结构示意图,包括:Fig. 8 is a schematic structural diagram of another identity verification device provided by the embodiment of the present application, including:
发送模块401,向终端发送验证触发指令,所述验证触发指令用于指示所述终端在根据所述验证触发指令执行振动操作;The sending module 401 is configured to send a verification trigger instruction to the terminal, where the verification trigger instruction is used to instruct the terminal to perform a vibration operation according to the verification trigger instruction;
接收模块402,接收所述终端发送的元数据以及所述终端的设备标识,所述元数据为所述终端在执行所述振动操作时采集的;The receiving module 402 is configured to receive metadata sent by the terminal and the device identifier of the terminal, where the metadata is collected when the terminal performs the vibration operation;
确定模块403,根据预设的设备标识与参考振动参数之间的对应关系,确定与接收到的所述终端的设备标识对应的参考振动参数;The determination module 403 determines the reference vibration parameter corresponding to the received device identification of the terminal according to the preset correspondence between the equipment identification and the reference vibration parameter;
验证模块404,根据所述参考振动参数以及所述元数据,对使用所述终端的用户进行身份验证。The verification module 404 performs identity verification on the user using the terminal according to the reference vibration parameter and the metadata.
所述装置还包括:The device also includes:
测试模块405,预设设备标识与参考振动数据之间的对应关系;Test module 405, preset the corresponding relationship between the equipment identification and the reference vibration data;
所述测试模块405,向所述终端发送至少一个测试指令,所述测试指令用于指示所述终端在根据所述测试指令执行振动操作时采集执行所述振动操作时产生的元数据,所述测试指令包括振动频率信息、振动时间间隔信息以及振动强度信息中的至少一种,接收所述终端发送的针对每一个所述测试指令产生的所述元数据以及所述终端的设备标识,根据所述测试指令产生的所述元数据,确定所述终端的参考振动参数,所述参考振动参数中包括振动加速度和/或振动角速度,建立所述终端的设备标识与确定的所述参考振动参数之间的对应关系。The test module 405 sends at least one test instruction to the terminal, the test instruction is used to instruct the terminal to collect metadata generated when the vibration operation is performed according to the test instruction, the The test instruction includes at least one of vibration frequency information, vibration time interval information, and vibration intensity information, and receiving the metadata and the device identification of the terminal sent by the terminal for each of the test instructions, according to the The metadata generated by the test command is used to determine the reference vibration parameters of the terminal, the reference vibration parameters include vibration acceleration and/or vibration angular velocity, and the relationship between the device identification of the terminal and the determined reference vibration parameters is established. Correspondence between.
所述测试模块405,在确定所述测试指令产生的所述元数据的数量达到阈值时,根据产生的所述元数据的平均值确定针对所述终端的参考振动参数,或者,确定所述测试指令产生的不同元数据之间的差值的平均值,当所述差值的平均值小于设定门限值时,确定所述元数据的平均值为针对所述终端的参考振动参数。The testing module 405, when determining that the amount of the metadata generated by the test instruction reaches a threshold, determines a reference vibration parameter for the terminal according to an average value of the generated metadata, or determines that the test Instructing the average value of the difference between different metadata generated, and when the average value of the difference is smaller than the set threshold value, determine the average value of the metadata as the reference vibration parameter for the terminal.
当所述发送模块401向所述终端发送的多个测试指令中包含的执行振动操作的参数不同时,所述测试模块405,针对同一个测试指令,执行以下操作:确定针对所述测试指令所述终端产生的至少一个所述元数据的平均值,将所述平均值作为在满足所述测试指令时所述终端的参考振动参数,所述服务器在得到不同的所述测试指令对应的参考振动参数时,建立所述终端的设备标识与得到的所述参考振动参数之间的对应关系。When the vibration operation parameters contained in the multiple test instructions sent by the sending module 401 to the terminal are different, the test module 405 performs the following operation for the same test instruction: The average value of at least one of the metadata generated by the terminal, using the average value as the reference vibration parameter of the terminal when the test instruction is satisfied, the server obtains the reference vibration corresponding to different test instructions parameters, establishing a correspondence between the device identifier of the terminal and the obtained reference vibration parameters.
所述发送模块401,向所述终端发送的测试指令中包含的所述振动频率信息、所述振动时间间隔信息以及所述振动强度信息为预设的,或者,所述振动频率信息、所述振动时间间隔信息以及所述振动强度信息为随机生成的。The sending module 401, the vibration frequency information, the vibration time interval information and the vibration intensity information contained in the test instruction sent to the terminal are preset, or the vibration frequency information, the The vibration time interval information and the vibration intensity information are randomly generated.
所述测试模块405,在建立所述终端的设备标识与得到的所述参考振动参数之间的对应关系之前,在得到针对同一个测试指令所述终端产生的至少一个元数据时,计算得到的不同所述元数据之间的差值之和,并根据所述差值之和确定所述测试指令产生元数据的稳定性,在得到不同的所述测试指令对应的参考振动参数时,根据不同的所述测试指令产生的元数据的平均值,确定不同的所述测试指令的区分度,从得到不同的所述测试指令对应的参考振动参数中,选择稳定性大于第一条件且所述区分度大于第二条件的测试指令对应的参考振动参数,并建立所述终端设备的终端标识与选择的所述参考振动参数之间的对应关系。The test module 405, before establishing the corresponding relationship between the device identifier of the terminal and the obtained reference vibration parameter, when obtaining at least one metadata generated by the terminal for the same test instruction, calculate the obtained The sum of the differences between the different metadata, and according to the sum of the differences to determine the stability of the metadata generated by the test instruction, when obtaining the reference vibration parameters corresponding to the different test instructions, according to the different The average value of the metadata generated by the test instructions to determine the degree of discrimination of different test instructions, from the reference vibration parameters corresponding to the different test instructions, the stability is greater than the first condition and the discrimination is selected. The degree is greater than the reference vibration parameter corresponding to the test instruction of the second condition, and the corresponding relationship between the terminal identifier of the terminal device and the selected reference vibration parameter is established.
当所述装置确定所述终端的设备标识对应多个的账号标识时,所述发送模块401所述服务器向终端发送对应账号标识的验证触发指令,所述接收模块402,接收所述终端发送的所述元数据、所述账号标识以及所述终端的设备标识,所述确定模块403,根据预设的设备标识、账号标识与参考振动参数之间的对应关系,确定与接收到的所述终端的设备标识对应的参考振动参数。When the device determines that the device identifier of the terminal corresponds to multiple account identifiers, the sending module 401 and the server send a verification trigger instruction corresponding to the account identifier to the terminal, and the receiving module 402 receives the instruction sent by the terminal. The metadata, the account ID, and the device ID of the terminal, the determining module 403, according to the preset corresponding relationship between the device ID, the account ID, and the reference vibration parameters, determine the received terminal The reference vibration parameters corresponding to the equipment identification.
具体的,上述如图7所示的身份验证的装置可以位于服务器中,该服务器具体可是一台设备,也可以是由多台设备组成的系统,即,分布式服务器。Specifically, the authentication device as shown in FIG. 7 may be located in a server, and the server may specifically be a device, or may be a system composed of multiple devices, that is, a distributed server.
本领域内的技术人员应明白,本发明的实施例可提供为方法、系统、或计算机程序产品。因此,本发明可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本发明可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art should understand that the embodiments of the present invention may be provided as methods, systems, or computer program products. Accordingly, the present invention can take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.
本发明是参照根据本发明实施例的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It should be understood that each procedure and/or block in the flowchart and/or block diagram, and a combination of procedures and/or blocks in the flowchart and/or block diagram can be realized by computer program instructions. These computer program instructions may be provided to a general purpose computer, special purpose computer, embedded processor, or processor of other programmable data processing equipment to produce a machine such that the instructions executed by the processor of the computer or other programmable data processing equipment produce a An apparatus for realizing the functions specified in one or more procedures of the flowchart and/or one or more blocks of the block diagram.
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。These computer program instructions may also be stored in a computer-readable memory capable of directing a computer or other programmable data processing apparatus to operate in a specific manner, such that the instructions stored in the computer-readable memory produce an article of manufacture comprising instruction means, the instructions The device realizes the function specified in one or more procedures of the flowchart and/or one or more blocks of the block diagram.
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded onto a computer or other programmable data processing device, causing a series of operational steps to be performed on the computer or other programmable device to produce a computer-implemented process, thereby The instructions provide steps for implementing the functions specified in the flow chart or blocks of the flowchart and/or the block or blocks of the block diagrams.
在一个典型的配置中,计算设备包括一个或多个处理器(CPU)、输入/输出接口、网络接口和内存。In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
内存可能包括计算机可读介质中的非永久性存储器,随机存取存储器(RAM)和/或非易失性内存等形式,如只读存储器(ROM)或闪存(flash RAM)。内存是计算机可读介质的示例。Memory may include non-permanent storage in computer readable media, in the form of random access memory (RAM) and/or nonvolatile memory such as read only memory (ROM) or flash RAM. Memory is an example of computer readable media.
计算机可读介质包括永久性和非永久性、可移动和非可移动媒体可以由任何方法或技术来实现信息存储。信息可以是计算机可读指令、数据结构、程序的模块或其他数据。计算机的存储介质的例子包括,但不限于相变内存(PRAM)、静态随机存取存储器(SRAM)、动态随机存取存储器(DRAM)、其他类型的随机存取存储器(RAM)、只读存储器(ROM)、电可擦除可编程只读存储器(EEPROM)、快闪记忆体或其他内存技术、只读光盘只读存储器(CD-ROM)、数字多功能光盘(DVD)或其他光学存储、磁盒式磁带,磁带磁磁盘存储或其他磁性存储设备或任何其他非传输介质,可用于存储可以被计算设备访问的信息。按照本文中的界定,计算机可读介质不包括暂存电脑可读媒体(transitory media),如调制的数据信号和载波。Computer-readable media, including both permanent and non-permanent, removable and non-removable media, can be implemented by any method or technology for storage of information. Information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read only memory (ROM), Electrically Erasable Programmable Read-Only Memory (EEPROM), Flash memory or other memory technology, Compact Disc Read-Only Memory (CD-ROM), Digital Versatile Disc (DVD) or other optical storage, Magnetic tape cartridge, tape magnetic disk storage or other magnetic storage device or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, computer-readable media excludes transitory computer-readable media, such as modulated data signals and carrier waves.
还需要说明的是,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、商品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、商品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括所述要素的过程、方法、商品或者设备中还存在另外的相同要素。It should also be noted that the term "comprises", "comprises" or any other variation thereof is intended to cover a non-exclusive inclusion such that a process, method, article, or apparatus comprising a set of elements includes not only those elements, but also includes Other elements not expressly listed, or elements inherent in the process, method, commodity, or apparatus are also included. Without further limitations, an element defined by the phrase "comprising a ..." does not exclude the presence of additional identical elements in the process, method, article or apparatus comprising said element.
本领域技术人员应明白,本申请的实施例可提供为方法、系统或计算机程序产品。因此,本申请可采用完全硬件实施例、完全软件实施例或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art should understand that the embodiments of the present application may be provided as methods, systems or computer program products. Accordingly, the present application can take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) having computer-usable program code embodied therein.
以上所述仅为本申请的实施例而已,并不用于限制本申请。对于本领域技术人员来说,本申请可以有各种更改和变化。凡在本申请的精神和原理之内所作的任何修改、等同替换、改进等,均应包含在本申请的权利要求范围之内。The above descriptions are only examples of the present application, and are not intended to limit the present application. For those skilled in the art, various modifications and changes may occur in this application. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application shall be included within the scope of the claims of the present application.
Claims (24)
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610798122.9A CN107786340A (en) | 2016-08-31 | 2016-08-31 | A kind of method and device of authentication |
| TW106120047A TWI670619B (en) | 2016-08-31 | 2017-06-15 | Method and device for authentication |
| PCT/CN2017/097955 WO2018040946A1 (en) | 2016-08-31 | 2017-08-18 | Identity authentication method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610798122.9A CN107786340A (en) | 2016-08-31 | 2016-08-31 | A kind of method and device of authentication |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107786340A true CN107786340A (en) | 2018-03-09 |
Family
ID=61300037
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610798122.9A Pending CN107786340A (en) | 2016-08-31 | 2016-08-31 | A kind of method and device of authentication |
Country Status (3)
| Country | Link |
|---|---|
| CN (1) | CN107786340A (en) |
| TW (1) | TWI670619B (en) |
| WO (1) | WO2018040946A1 (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108449348A (en) * | 2018-03-22 | 2018-08-24 | 西安电子科技大学 | A kind of on-line authentication system and method for supporting user identity secret protection |
| CN108632089A (en) * | 2018-05-07 | 2018-10-09 | 平安普惠企业管理有限公司 | Test management method, device, equipment and the computer storage media of terminal |
| CN111695100A (en) * | 2019-03-14 | 2020-09-22 | 阿里巴巴集团控股有限公司 | Method for verifying an access attempt |
| CN113112665A (en) * | 2021-03-22 | 2021-07-13 | 深兰盛视科技(苏州)有限公司 | Access management method, device, electronic equipment and storage medium |
| CN113408678A (en) * | 2021-06-15 | 2021-09-17 | 广州极飞科技股份有限公司 | Correlation method, correlation device, electronic equipment and storage medium |
| WO2025010892A1 (en) * | 2023-07-12 | 2025-01-16 | 瑞声开泰声学科技(上海)有限公司 | Method and apparatus for determining motor individual parameter, and device and storage medium |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113468007B (en) * | 2021-06-30 | 2024-07-12 | 完美世界(北京)软件科技发展有限公司 | Device identification information verification method, device and storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090249475A1 (en) * | 2008-03-31 | 2009-10-01 | Fujitsu Limited | Authentication system, electronic apparatus, electronic apparatus authentication method, and computer-readable recording medium having authentication program recorded thereon |
| CN102027487A (en) * | 2009-04-24 | 2011-04-20 | 三美电机株式会社 | personal authentication device |
| US20150089593A1 (en) * | 2013-09-24 | 2015-03-26 | International Business Machines Corporation | Method and system for using a vibration signature as an authentication key |
| CN104935431A (en) * | 2014-03-17 | 2015-09-23 | 株式会社理光 | Authentication device, authentication system, authentication method |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWM527570U (en) * | 2016-04-29 | 2016-08-21 | 華美電子股份有限公司 | Wearable device with authentication function and authentication system thereof |
-
2016
- 2016-08-31 CN CN201610798122.9A patent/CN107786340A/en active Pending
-
2017
- 2017-06-15 TW TW106120047A patent/TWI670619B/en active
- 2017-08-18 WO PCT/CN2017/097955 patent/WO2018040946A1/en not_active Ceased
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20090249475A1 (en) * | 2008-03-31 | 2009-10-01 | Fujitsu Limited | Authentication system, electronic apparatus, electronic apparatus authentication method, and computer-readable recording medium having authentication program recorded thereon |
| CN102027487A (en) * | 2009-04-24 | 2011-04-20 | 三美电机株式会社 | personal authentication device |
| US20150089593A1 (en) * | 2013-09-24 | 2015-03-26 | International Business Machines Corporation | Method and system for using a vibration signature as an authentication key |
| CN104935431A (en) * | 2014-03-17 | 2015-09-23 | 株式会社理光 | Authentication device, authentication system, authentication method |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108449348A (en) * | 2018-03-22 | 2018-08-24 | 西安电子科技大学 | A kind of on-line authentication system and method for supporting user identity secret protection |
| CN108449348B (en) * | 2018-03-22 | 2021-03-26 | 西安电子科技大学 | Online authentication system and method supporting user identity privacy protection |
| CN108632089A (en) * | 2018-05-07 | 2018-10-09 | 平安普惠企业管理有限公司 | Test management method, device, equipment and the computer storage media of terminal |
| CN111695100A (en) * | 2019-03-14 | 2020-09-22 | 阿里巴巴集团控股有限公司 | Method for verifying an access attempt |
| CN113112665A (en) * | 2021-03-22 | 2021-07-13 | 深兰盛视科技(苏州)有限公司 | Access management method, device, electronic equipment and storage medium |
| CN113408678A (en) * | 2021-06-15 | 2021-09-17 | 广州极飞科技股份有限公司 | Correlation method, correlation device, electronic equipment and storage medium |
| CN113408678B (en) * | 2021-06-15 | 2023-08-15 | 广州极飞科技股份有限公司 | Correlation method, correlation device, electronic equipment and storage medium |
| WO2025010892A1 (en) * | 2023-07-12 | 2025-01-16 | 瑞声开泰声学科技(上海)有限公司 | Method and apparatus for determining motor individual parameter, and device and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| TWI670619B (en) | 2019-09-01 |
| WO2018040946A1 (en) | 2018-03-08 |
| TW201812628A (en) | 2018-04-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI670619B (en) | Method and device for authentication | |
| US12132726B2 (en) | Authenticating a user device via a monitoring device | |
| US10839811B2 (en) | System, device and method for enforcing privacy during a communication session with a voice assistant | |
| US11651100B2 (en) | System, device and method for enforcing privacy during a communication session with a voice assistant | |
| EP3719678B1 (en) | Identity verification method and apparatus | |
| US9667613B1 (en) | Detecting mobile device emulation | |
| US9355234B1 (en) | Authentication involving selection among different biometric methods dynamically | |
| US8312157B2 (en) | Implicit authentication | |
| CN105100108B (en) | A kind of login authentication method based on recognition of face, apparatus and system | |
| WO2016049898A1 (en) | Method and apparatus for identity authentication and user equipment | |
| WO2016165536A1 (en) | Identity verification method and device | |
| JP2017516167A (en) | Perform actions related to an individual's presence | |
| US9721087B1 (en) | User authentication | |
| US11381576B2 (en) | Multi-factor authentication | |
| US12183339B1 (en) | Systems and methods for detecting fake voice commands to smart devices | |
| CN110084011A (en) | A kind of method and device of the verifying of user's operation | |
| CN107786976A (en) | Method and apparatus without screen smart machine and its automatic connection wireless network | |
| CA3007707C (en) | System, device and method for enforcing privacy during a communication session with a voice assistant | |
| CN104836777B (en) | Identity verification method and system | |
| CN111181957B (en) | IoT device security verification method, system and central control device | |
| EP4345663A1 (en) | User device authentication | |
| HK1249677A1 (en) | Identity verification method and device | |
| CN113542393B (en) | Data transmission method and device | |
| GB2622817A (en) | User device authentication | |
| CA3018853C (en) | System, device and method for enforcing privacy during a communication session with a voice assistant |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1249677 Country of ref document: HK |
|
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20200921 Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands Applicant after: Innovative advanced technology Co.,Ltd. Address before: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands Applicant before: Advanced innovation technology Co.,Ltd. Effective date of registration: 20200921 Address after: Cayman Enterprise Centre, 27 Hospital Road, George Town, Grand Cayman, British Islands Applicant after: Advanced innovation technology Co.,Ltd. Address before: A four-storey 847 mailbox in Grand Cayman Capital Building, British Cayman Islands Applicant before: Alibaba Group Holding Ltd. |
|
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180309 |
|
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: WD Ref document number: 1249677 Country of ref document: HK |