Detailed Description
The invention is described in further detail below with reference to the figures and examples.
The set C represents a standard character set customized by the authentication system, the set A represents a registered standard character set, the set A1 represents a registered standard character set randomly selected by the authentication system from the set A, the set A2 represents a set obtained by subtracting the unregistered standard character set randomly selected from the set A from the set C, the set B represents a set of user registered handwriting groups, the set W represents a set of user display handwriting, the set V represents a set of authenticators, and JS is a set of selected registered standard character serial numbers.
The authentication system of the present invention comprises (fig. 1):
displaying a handwriting registration interface 1000: the authentication system presents a handwriting registration interface for the user.
Handwriting registration 2000; at this stage, a user writes and submits a registered handwriting group corresponding to the standard characters one by means of a handwriting input device according to a plurality of standard characters sequentially presented by the authentication system, the authentication system randomly designates a registered handwriting sample from each submitted registered handwriting, two-dimensional static font information of the registered handwriting sample is extracted to serve as display handwriting of the registered handwriting, and the authenticator of the handwriting group is obtained by training through a traditional handwriting registration method based on each registered handwriting. Allocating a unique identity number for the user according to the authentication system; and storing a standard character set presented to a user by the authentication system, a registered handwriting set corresponding to the standard character set, which is written and submitted by the user in sequence, a display handwriting set which is specified by each registered handwriting set and contains two-dimensional static font position information, and an authenticator set obtained based on training of each registered handwriting set into a database together. The authentication system initializes the first leakage time of each group of registered handwriting groups to be null, the initial values of the registered and unregistered standard character sets A1 and A2 are null, and the update times of the registered standard character sequence number sets JS and JS are null.
In consideration of the security of the authentication system and the convenience of the user, the minimum value of the group number of the registered handwriting submitted by the user in the registration stage needs to be preset; specifically, each submitted set of registered handwriting is a registered handwriting sample set composed of registered handwriting samples with consistent contents, and further, different registered handwriting sets submitted by the user are required to have different contents. The handwriting sample refers to a handwriting written by a user, taking a Chinese character as an example, the handwriting is composed of a group of ordered strokes, and the strokes refer to basic constitutional units of the Chinese character, such as horizontal, vertical, left-falling, right-falling, turning, pointing, hooking, lifting and the like; the content consistency means that the strokes forming the handwriting and the front and back sequence of the occurrence of the strokes are consistent, and the content difference means that the condition of content consistency definition is not met;
the standard characters are characters with standard writing styles and expression forms, which are widely used at present, the widely used characters include but are not limited to chinese characters, english words, and the like, the expression forms of chinese characters include but are not limited to sons, sons imitation, and the like, and the expression forms of english words include but are not limited to Times New Roman, Calibri, and the like. In order to make the handwriting not too simple, the standard character selected by the authentication system should at least contain a certain stroke number.
The standard characters are used for presenting the user to be logged in as a writing reference in the authentication stage. At each authentication, the registered and unregistered standard characters in the sets a1 and a2 are presented to the user to be logged in an arbitrary order. The registered standard characters and the unregistered standard characters are randomly selected, and the number of the registered standard characters selected each time can be different and is at least larger than a certain threshold value.
The registration process of the traditional online handwriting authentication method comprises data acquisition, preprocessing, feature extraction, classifier training and data storage in a database, specifically, on each group of registered handwriting, an optimal feature subset which represents the writing style of a user and is composed of features with high discriminative power is obtained through a feature extraction and feature selection algorithm, and a classifier is obtained through training based on the optimal feature subset feature value data of each group of registered handwriting samples.
The user to be logged in refers to a user who proposes an authentication application and has an identity which is not verified by the authentication system.
Display authentication system login interface 3000: the authentication system presents a display interface for authenticating the identity of a user to be logged in.
Handwriting authentication 4000: the handwriting authentication process based on the standard characters comprises the following steps: first, the authentication system presents the registered standard characters in set a1 and the unregistered standard characters in set a2 to the user in an arbitrary order. And the user to be logged in writes and submits the corresponding test handwriting in sequence according to the sequence presented by the standard characters, and whether the user to be logged in is a real user is judged according to the authentication result of the corresponding authenticator on the test handwriting corresponding to the registered standard characters. If all the authenticators judge that the corresponding test handwriting is the real handwriting, the authentication system judges that the user to be logged in is the real user, meanwhile, the authentication system automatically completes handwriting registration on the test handwriting corresponding to the unregistered standard character according to a handwriting registration flow, otherwise, the authentication system judges that the user to be logged in is a fake user, and meanwhile, abandons a test handwriting sample submitted by the user to be logged in. And ending the handwriting authentication flow.
The display in any order means that a user to be logged in cannot deduce that a certain standard character is registered or unregistered according to the display order of the standard characters.
The registered standard characters refer to standard characters of the authenticator obtained by training based on a registered handwriting sample set which is submitted by a user and corresponds to the standard characters. The unregistered standard character refers to a standard character of which an authenticator is not obtained in a standard character set customized by the authentication system;
before handwriting authentication, the invention firstly needs to perform handwriting registration, and the handwriting registration flow (figure 2) of the invention specifically comprises the following steps:
step 2100: starting; specifically, the flow of the handwriting registration operation is started.
Step 2200: initializing; specifically, a set C is set to represent a standard character set customized by the authentication system, a set A is set to represent a standard character set presented to a user by the authentication system in a user registration stage, and the set A is setRepresenting a set of a plurality of registered handwriting groups which are sequentially written and submitted by a user in a registration stage, a set W representing a display handwriting set which is extracted from a registered handwriting sample of the user and contains two-dimensional font information, a set V representing a set of authenticators obtained based on the training of the registered handwriting groups, A, B, W, V initial values being all null,indicating the sequence number of the handwriting set, the initial value is1。
Step 2300: selecting and presenting standard characters; in particular, the authentication system is from the setRandomly selecting a standard character set asThe identification number is presented to the user through the display equipment of the authentication systemTo the user.
The display device of the authentication system may be a display of a desktop computer or a display screen of a mobile device.
Step 2400: acquiring a corresponding handwriting group; specifically, the user identification number isIn turn, write and submitCorresponding registered handwriting sample set,WhereinStandard characters representing the user's presentation according to the authentication systemThe ith set of registered scripts written and submitted,represents the sameA kth registration handwriting sample of the ith set of registration handwriting submitted by the user,,representing the number of handwriting samples in the set of registered handwriting, and requiringThat is, the number of the registered handwriting samples submitted by the user for each set of registered handwriting in the registration stage may be different but at least one is submitted.
Step 2500: registering handwriting groups; specifically, the authentication system is used for registering handwriting sets according to the submitted userCompleting the registered handwriting group according to the conventional registration process of on-line handwriting authenticationObtaining a registered handwriting set by handwriting registrationAuthentication deviceFrom registered script setsRandomly selecting a registered handwriting sample, and extracting the position information of the two-dimensional static font as a registered handwriting groupThe display handwriting is set asThe display handwriting is used for the recognition in the handwriting authentication stageThe certificate system presents the user to be logged in as written reference information.
Step 2600: updating the registration data; specifically, the authentication system performs the following update operations:,,,serial number of。
Step 2700: whether the user requires termination; in particular, a user may require termination of the registration process through a system interface presented by the authentication system. If the user requests termination, step 2800 is entered, and the authentication system identifies the user with the user identification number ofChecking the number of the registered handwriting submitted by the user; otherwise, go to step 2300, and continue the handwriting registration process.
Step 2800: judging whether the number of the registered handwriting sets meets the minimum requirement or not; specifically, the authentication system will determine that the user identification number isIf the number of the groups of the registered handwriting written and submitted by the user exceeds the minimum value, entering the step 2900, and if so, stopping the handwriting registration process by the authentication system, wherein the handwriting registration is successful; otherwise, step 2300 is entered, where the authentication system will ask the user to continue the handwriting registration process.
Is provided withRepresents the minimum value of the number of the registered handwriting submitted by the user in the registration stage,,the specific value of (a) needs to be preset by comprehensively considering the security of the authentication system and the convenience of the user.
Step 2900: the handwriting registration is successful; let N denote the user identification number asThe number of sets of registered handwriting submitted by the user in the registration stage,after the handwriting registration is successful, the authentication system obtains the user identification asIncluding the N standard character sets presented by the authentication system during the registration phase(ii) a The user writes and submits in sequence and the collection in the registration stageSet of corresponding N sets of registered scripts(ii) a Authentication system from registered handwriting setsDisplay handwriting randomly selected from Chinese characters and containing two-dimensional static font informationComposed display script set(ii) a By registering handwriting-based setsTrained authenticatorFormed set of authenticatorsThe authentication system initializes the first leakage time of each group of registered handwriting groups to be null, the initial values of the registered and unregistered standard character sets A1 and A2 are null, and the update times of the registered standard character sequence number sets JS and JS are null.
In particular, the user can perform the authentication process of the authentication system only after the handwriting registration is successful.
Step 2a 00: and (6) ending. Specifically, the handwriting registration operation flow is shown to be finished.
The invention relates to a standard character-based handwriting authentication and template expansion flow (figure 3), which comprises the following specific steps:
step 4100: starting the standard character-based handwriting authentication and template expansion process, and submitting a user identity identification number which indicates the identity of the user to the authentication system by the user to be logged in。
Step 4200: update based on the set of time periods a1 and a 2: the authentication system judges whether the unregistered standard character set A2 is empty, and if yes, the authentication system executes updating operation on the set JS and the set A2; otherwise, the authentication system judges whether the standard character sequence number set JS needs to be updated, specifically, the authentication system judges whether the standard character sequence number set JS needs to be updated or notThe authentication system reads the current time of the system and calculates the time interval t until the latest updated standard character sequence number set JSIndicating a time interval threshold, a time interval thresholdIs preset according to the security of the authentication system. Further, the authentication system determines whether the time interval t exceeds a thresholdIf the threshold is exceededThe authentication system performs an update operation on the set JS and the set a 2; otherwise, the authentication system does not update the sets JS and a 2. Finally, the corresponding registered standard character is read from the set a as an update to a1 by the sequence number in the updated set JS.
The step of executing the update operation on the set JS and the set a2 by the authentication system specifically includes: the authentication system randomly selects M1 registered standard character sequence numbers from the set A to update the registered standard character sequence number set JS, takes the system time for executing the updating operation as the updating time of the set JS, and then randomly selects M-M1 standard characters from the set C-A to store the standard characters in the unregistered standard character set A2;
wherein M represents the sum of the number of the registered and unregistered standard characters presented to the user to be logged by the authentication system, and M1 represents the number of the registered standard characters presented to the user to be logged by the authentication system. The values of M and M1 depend on the number of unused registered handwriting groups belonging to the user, and the values of M and M1 can be different each time handwriting authentication is performed, but the following relations must be satisfied:threshold valueThe T1 is set to meet the minimum requirement of the one-time handwriting authentication system on safety, and the threshold T2 is preset by combining the convenience of use of a user and the safety of the system.
The unused registered handwriting group means that in the handwriting authentication stage, the standard characters corresponding to the registered handwriting group are not selected by the authentication system and presented to the user to be logged in.
Step 4300: presenting registered and unregistered standard characters; and presenting the selected registered standard characters in the set A1 and the unregistered standard characters in the set A2 to the user to be logged in any order. And recording the system time presented to the user to be logged as the starting time of standard character authentication, and initializing the number of times of standard character authentication to be 0.
The display in any order means that a user to be logged in cannot deduce that a certain standard character is registered or unregistered according to the display order of the standard characters.
Step 4400: and writing and submitting corresponding test handwriting by the user to be logged according to the sequence presented by the standard characters: the user writes and submits a test handwriting set corresponding to the standard characters in sequence according to the standard character information presented on the display equipment and the presentation sequence of the standard characters. Is provided withIs a standard character registered withThe corresponding M1 test handwriting samples,representing test handwriting samplesIn testing a sample set of handwritingThe serial number in (1) is (d),indicating registered standard charactersThe sequence number in the standard character set a,is related to the registered standard characterThe corresponding test writing is carried out by the user,。is a standard character not registeredThe corresponding M-M1 test handwriting samples,representing test handwriting samplesIn testing a sample set of handwritingThe serial number in (1) is (d),。
step 4500: judging that the writing time is not overtime and the authentication times are not over a threshold value; specifically, the time interval from the system time when the step is executed to the standard character-based handwriting authentication start time is taken as the time consumption of standard character handwriting authentication, the variable of the standard character handwriting authentication frequency is added by 1, if the time consumption of the standard character handwriting authentication does not exceed the threshold 1 and the standard character handwriting authentication frequency is less than the threshold 2, the step 4600 is entered, otherwise, the step 4B00 is entered.
The values of the threshold 1 and the threshold 2 are preset according to the safety of the authentication system and the convenience of the user.
Step 4600: and performing handwriting authentication on the test handwriting of the registered standard character. Specifically, it is providedIs a set of test scripts that correspond to the registered standard characters. Wherein,is shown withA registered standard characterThe corresponding test writing is carried out by the user,indicating registered standard charactersThe sequence number in the standard character set a,representing test handwriting samplesThe sequence numbers in the test script sample set H,n represents an identification number ofThe group number of the registered handwriting groups submitted by the user in the registration stage. By means of conventional authentication method, authenticatorReturn pair test handwritingIf the authenticator is in the authentication stateDiscriminating test handwritingIf the handwriting is true, the true is returned, otherwise, the false is returned. Note the bookThe number of authenticators indicating that the discrimination result return value is true.
Step 4700: and (3) handwriting authentication: if and only if all M1 authenticatorsAll return true, i.e.Then, go to step 4800, the authentication system accepts the asserted ID asIf not, the user is not accepted as the real user, and the step 4400 is returned to, and the test handwriting is submitted again.
Step 4800: registering the unregistered test handwriting: for unregistered standard character setAnd the setOne-to-one correspondence test handwriting setSequentially registering according to the handwriting registration process, and comparing with standard charactersCorresponding test handwriting sampleObtaining the authenticator by adopting the traditional handwriting training methodExtractingThe two-dimensional font information is used as the display handwriting of the handwriting setAnd finally, the standard character is writtenSet of registered template scripts consisting of test script samplesTo display handwritingAuthentication deviceAdded to the user identifier ofIn the registered handwriting data of (1),,,,,(ii) a The above registration process is repeated until all the standard characters in the A2 set and the test scripts corresponding to the standard characters in the H2 set are added to the user identification asIn the registered handwriting data of (1).
Step 4900: the unregistered standard character set a2 is cleared.
Step 4a 00: indicating the identity of the user to be logged in and the user identification number it claims toThe represented user identities are consistent. Go to step 4C 00.
Step 4B 00: indicating the identity of the test user and its asserted user identification numberThe represented user identities are not consistent. Go to step 4C 00.
Step 4C 00: and finishing the handwriting authentication and template expansion process based on the standard characters.
The invention updates the flow (fig. 4) based on the sets A1 and A2 of the time periods, and the steps specifically comprise:
step 4210: starting; specifically, it is indicated that the time period-based sets a1 and a2 update operation flow starts to be executed.
Step 4220: and judging whether the set A2 is empty, if so, entering a step 4260, and otherwise, entering a step 4230.
Step 4230: reading the current time; specifically, the system time when the authentication system performs the update operation is read.
Step 4240: calculating a time interval; specifically, the time interval from the system time when this step was executed to the last update of the set JS is calculated. And if the last update time of the set JS is empty, the user performs identity authentication for the first time, the step 4260 is skipped to directly enter the update flow, and otherwise, the time interval from the system time when the step is executed to the last update of the set JS is used as the time interval.
Step 4250: whether a threshold value is exceeded; specifically, it is determined whether the time interval exceeds a threshold, and if so, step 4260 is entered; otherwise, go to step 4290.
Step 4260: updating the sequence number set JS; specifically, the authentication system randomly picks M1 registered standard character sequence number update sequence number sets JS from the set a. And if the updated sequence number set JS is completely the same as the original set JS, repeating the random selection process. Finally, the corresponding registered standard character is read from the set a as an update to a1 by the sequence number in the updated set JS.
Wherein M represents the sum of the number of the registered and unregistered standard characters presented to the user to be logged by the authentication system, and M1 represents the number of the registered standard characters presented to the user to be logged by the authentication system. The values of M and M1 depend on the number of unused registered handwriting groups belonging to the user, and the values of M and M1 can be different each time handwriting authentication is performed, but the following relations must be satisfied:the threshold T1 should be set on the premise that the minimum security requirement of the system is met during one-time handwriting authentication, and the threshold T2 is set on the premise that the convenience of use of the user and the security of the system are combinedAnd presetting.
The unused registered handwriting group means that in the handwriting authentication stage, the standard characters corresponding to the registered handwriting group are not selected by the authentication system and presented to the user to be logged in.
Step 4270: recording the updating time; specifically; the authentication system takes the time at which step 4260 is executed as the update time of the sequence number set JS.
Step 4280: updating the unregistered standard character set A2; specifically; the authentication system randomly selects M-M1 standard characters from the set C-A to update the unregistered standard character set A2.
Step 4290: the update flow ends based on the sets of time periods a1 and a 2.
Portions of the invention not disclosed in detail are well within the skill of the art. Although illustrative embodiments of the present invention have been described above to facilitate the understanding of the present invention by those skilled in the art, it should be understood that the present invention is not limited to the scope of the embodiments, and various changes may be made apparent to those skilled in the art as long as they are within the spirit and scope of the present invention as defined and defined by the appended claims, and all matters of the invention which utilize the inventive concepts are protected.