Summary of the invention
The object of the invention is to overcome the deficiencies in the prior art, a kind of account number binding system of carrying out network login authentication is provided, it adopts user account number to bind together with mobile device with terminating machine, namely be in the pattern of original second class protection, at least increase one deck protection again, thus the fail safe of user account number improves greatly, simultaneously, user cancels terminating machine binding or increases the mode of the terminating machine bound, also there is very high fail safe, increase steal-number person's also sharp difficulty revising the relevant information in usersaccount information storehouse in this way, in addition, mobile device can adopt general USB flash disk (but being not limited to USB flash disk), avoid the increase of extra cost, carry with convenient and be beneficial to storage file.
For achieving the above object, a kind of account number binding system of carrying out network login authentication provided by the present invention, comprise terminating machine, server and mobile device, wherein, user registration body is provided with in described terminating machine, user profile collecting mechanism, user information storage mechanism is provided with in described server, wherein, user account getter and password getter is had in described user profile collecting mechanism, and user profile collecting mechanism obtains account in user account getter and password getter and password, the hardware characteristics information of automatic acquisition terminating machine and the hardware characteristics information of mobile device, account registration device and password register is provided with in described user registration body, user registers account number and password by the account registration device in user registration body and password register, while registration account number and password, described user registration body can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine and the hardware characteristics information of mobile device, and by the user information storage mechanism in described server, the account number registered, password, the hardware characteristics information of terminating machine and the hardware characteristics information of mobile device are stored.
Another kind of the present invention carries out the account number binding system of network login authentication, comprise terminating machine 2, server 3 and mobile device 1, user registration body 2a is provided with in described terminating machine 2, user profile collecting mechanism 2c, user information storage mechanism 3a is provided with in described server 3, dynamic password output device 4 is had in server 3 or terminating machine 2, wherein, account registration device is provided with in described user registration body 2a, password register and mobile phone or E-mail address Register, user registers account number respectively by the account registration device in user registration body 2a and password register and mobile phone or E-mail address Register, password and mobile phone or E-mail address, in registration account number, while password and mobile phone or E-mail address, described user registration body 2a can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, and by the account number of the user information storage mechanism 3a in described server 3 to registration, password, mobile phone or E-mail address, the hardware characteristics information of terminating machine 2 and the hardware characteristics information of mobile device 1 store, dynamic password output device 4 dynamic password be sent to user binding mobile phone or E-mail address in, user account getter, password getter and dynamic password getter is had in described user profile collecting mechanism 2c, and user profile collecting mechanism 2c obtains account, password and dynamic password in user account getter, password getter and dynamic password getter respectively, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1.
Remarkable result of the present invention is: it adopts user account number to bind together with mobile device with terminating machine, namely be in the pattern of original second class protection, at least increase one deck protection again, thus the fail safe of user account number improves greatly, simultaneously, user cancels terminating machine binding or increases the mode of the terminating machine bound, also there is very high fail safe, increase steal-number person's also sharp difficulty revising the relevant information in usersaccount information storehouse in this way, in addition, mobile device can adopt general USB flash disk (but being not limited to USB flash disk), avoid the increase of extra cost, carry with convenient and be beneficial to storage file.
Embodiment
Below in conjunction with the drawings and specific embodiments, the present invention is further illustrated.
Embodiment 1, as shown in Figure 1: a kind of account number binding system of carrying out network login authentication, comprise terminating machine 2, server 3 and mobile device 1, wherein, user registration body 2a is provided with in described terminating machine 2, user profile collecting mechanism 2c, user information storage mechanism 3a is provided with in described server 3, wherein, user account getter and password getter is had in described user profile collecting mechanism 2c, and user profile collecting mechanism 2c obtains account in user account getter and password getter and password, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, account registration device and password register is provided with in described user registration body 2a, user registers account number and password by the account registration device in user registration body 2a and password register, while registration account number and password, described user registration body 2a can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, and by the user information storage mechanism 3a in described server 3, the account number registered, password, the hardware characteristics information of terminating machine 2 and the hardware characteristics information of mobile device 1 are stored.
In the above-described embodiments, user profile identification mechanism 2b is provided with in terminating machine 2, the information of described user profile identification mechanism 2b to user registration body 2a and user profile collecting mechanism 2c identifies, and mates with the information that the user information storage mechanism 3a in server 3 stores.
Embodiment 2, as shown in Figure 2: a kind of account number binding system of carrying out network login authentication, comprise terminating machine 2, server 3 and mobile device 1, wherein, user registration body 2a is provided with in described terminating machine 2, user profile collecting mechanism 2c, user information storage mechanism 3a is provided with in described server 3, wherein, user account getter and password getter is had in described user profile collecting mechanism 2c, and user profile collecting mechanism 2c obtains account in user account getter and password getter and password, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, account registration device and password register is provided with in described user registration body 2a, user registers account number and password by the account registration device in user registration body 2a and password register, while registration account number and password, described user registration body 2a can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, and by the user information storage mechanism 3a in described server 3, the account number registered, password, the hardware characteristics information of terminating machine 2 and the hardware characteristics information of mobile device 1 are stored.
In the above-described embodiments, user profile identification mechanism 3b is provided with in server 3, the information of described user profile identification mechanism 3b to the user profile collecting mechanism 2c in terminating machine 2 identifies, and mates with the information that the user information storage mechanism 3a in server 3 stores.
In above-described embodiment 1 and 2, when user logs in, whether the username and password that system not only audits input is correct, but also the terminating machine of the current login of this user to be audited and whether mobile device used is the terminating machine of this user binding and the mobile device of binding respectively, if one of information of above-mentioned needs examination & verification is not by checking, then login failed for user.
If whether the information of above-mentioned needs examination & verification all by checking, is then permitted to log in, also will be analyzed following several situation:
(1) whether if do not need examination & verification user online, then permitted user logs in, and namely logins successfully;
(2) if whether online to need examination & verification user, then allow online user's compulsory withdrawal system, allow current this user preparing to log in log in, or disapprove current this user login preparing to log in, allow this online user continue online.
Embodiment 3, as shown in Figure 3: a kind of account number binding system of carrying out network login authentication, comprise terminating machine 2, server 3 and mobile device 1, user registration body 2a is provided with in described terminating machine 2, user profile collecting mechanism 2c, user information storage mechanism 3a is provided with in described server 3, dynamic password output device 4 is had in server 3 or terminating machine 2, wherein, account registration device is provided with in described user registration body 2a, password register and mobile phone or E-mail address Register, user registers account number respectively by the account registration device in user registration body 2a and password register and mobile phone or E-mail address Register, password and mobile phone or E-mail address, in registration account number, while password and mobile phone or E-mail address, described user registration body 2a can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, and by the account number of the user information storage mechanism 3a in described server 3 to registration, password, mobile phone or E-mail address, the hardware characteristics information of terminating machine 2 and the hardware characteristics information of mobile device 1 store, dynamic password output device 4 dynamic password be sent to user binding mobile phone or E-mail address in, user account getter, password getter and dynamic password getter is had in described user profile collecting mechanism 2c, and user profile collecting mechanism 2c obtains account, password and dynamic password in user account getter, password getter and dynamic password getter respectively, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1.
In the above-described embodiments, dynamic password output device 4 is provided with in server 3 or terminating machine 2, the mobile phone that server 3 or terminating machine 2 are bound to user by dynamic password output device 4 dynamic password output or mailbox, when user logs in, by the dynamic password getter input dynamic password of user profile collecting mechanism 2c, then mated with the dynamic password that server 3 or terminating machine 2 export by the user profile identification mechanism be arranged in terminating machine 2 or in server 3; Be provided with user profile identification mechanism 2b in terminating machine 2, the information of described user profile identification mechanism 2b to user registration body 2a and user profile collecting mechanism 2c identifies, and mates with the information that the user information storage mechanism 3a in server 3 stores.
Embodiment 4, as shown in Figure 4: a kind of account number binding system of carrying out network login authentication, comprise terminating machine 2, server 3 and mobile device 1, user registration body 2a is provided with in described terminating machine 2, user profile collecting mechanism 2c, user information storage mechanism 3a is provided with in described server 3, dynamic password output device 4 is had in server 3 or terminating machine 2, wherein, account registration device is provided with in described user registration body 2a, password register and mobile phone or E-mail address Register, user registers account number respectively by the account registration device in user registration body 2a and password register and mobile phone or E-mail address Register, password and mobile phone or E-mail address, in registration account number, while password and mobile phone or E-mail address, described user registration body 2a can according to the needs of user, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1, and by the account number of the user information storage mechanism 3a in described server 3 to registration, password, mobile phone or E-mail address, the hardware characteristics information of terminating machine 2 and the hardware characteristics information of mobile device 1 store, dynamic password output device 4 dynamic password be sent to user binding mobile phone or E-mail address in, user account getter, password getter and dynamic password getter is had in described user profile collecting mechanism 2c, and user profile collecting mechanism 2c obtains account, password and dynamic password in user account getter, password getter and dynamic password getter respectively, the hardware characteristics information of automatic acquisition terminating machine 2 and the hardware characteristics information of mobile device 1.
In the above-described embodiments, dynamic password output device is provided with in server 3 or terminating machine 2, the mobile phone that server 3 or terminating machine 2 are bound to user by dynamic password output device dynamic password output or mailbox, when user logs in, by the dynamic password getter input dynamic password of user profile collecting mechanism 2c, then mated with the dynamic password that server 3 or terminating machine 2 export by the user profile identification mechanism be arranged in terminating machine 2 or in server 3; Be provided with user profile identification mechanism 3b in server 3, the information of described user profile identification mechanism 3b to the user profile collecting mechanism 2c in terminating machine 2 identifies, and mates with the information that the user information storage mechanism 3a in server 3 stores.
In above-described embodiment 3 and 4, when user logs in, whether system not only audits the user name of input, password, the terminating machine of the current login of user and mobile device used is outside the terminating machine of this user binding and the mobile device of binding respectively, but also whether the dynamic password will auditing user's input is correct, if one of information of above-mentioned needs examination & verification is not by checking, then login failed for user.
If whether the information of above-mentioned needs examination & verification all by checking, is then permitted to log in, also will be analyzed following several situation:
(1) whether if do not need examination & verification user online, then permitted user logs in, and namely logins successfully;
(2) if whether online to need examination & verification user, then allow online user's compulsory withdrawal system, allow current this user preparing to log in log in, or disapprove current this user login preparing to log in, allow this online user continue online.
According to embodiment 1,2,3 and 4, after user's successful log, according to the needs of user self, new login password can be set, namely in user information database, store new login password, the password arranged before replacing.The binding of present terminal machine can also be cancelled in addition, in user information database, namely delete the hardware characteristics information of terminating machine; According to embodiment 1,2, after user's successful log, can user bound mobile phone or E-mail address.Namely in user information database, store phone number or the E-mail address of this user; According to embodiment 3 and 4, in conjunction with the discussion of claim 6,8 and 10, when not logging in, system is after demonstrating four kinds of key messages that user provides, the mobile device of original binding can be replaced, namely in user information database, store new mobile device information, the binding of terminating machine can be increased, also can change phone number or the E-mail address of binding.
Certainly; the present invention also can have other various embodiments; when not deviating from the present invention's spirit and essence thereof; those of ordinary skill in the art can make various corresponding change and distortion according to the present invention, but these change accordingly and are out of shape the protection range that all should belong to the claim appended by the present invention.