Embodiment
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
Describe to realize the mobile terminal of each embodiment of the present invention referring now to accompanying drawing.In follow-up description, useFor represent element such as " module ", " part " or " unit " suffix only for be advantageous to the present invention explanation, itselfNot specific meaning.Therefore, " module " can be used mixedly with " part ".
Mobile terminal can be implemented in a variety of manners.For example, the terminal described in the present invention can include such as movingPhone, smart phone, notebook computer, digit broadcasting receiver, PDA (personal digital assistant), PAD (tablet personal computer), PMPThe mobile terminal of (portable media player), guider etc. and such as digital TV, desktop computer etc. are consolidatedDetermine terminal.Hereinafter it is assumed that terminal is mobile terminal.However, it will be understood by those skilled in the art that except being used in particular for movingOutside the element of purpose, construction according to the embodiment of the present invention can also apply to the terminal of fixed type.
Fig. 1 is the hardware configuration signal for the mobile terminal for realizing each embodiment of the present invention.
Mobile terminal 100 can include wireless communication unit 110, A/V (audio/video) input block 120, user's inputUnit 130, sensing unit 140, output unit 150, memory 160, interface unit 170, controller 180 and power subsystem 190Etc..Fig. 1 shows the mobile terminal with various assemblies, it should be understood that being not required for implementing all groups shownPart.More or less components can alternatively be implemented.The element of mobile terminal will be discussed in more detail below.
Wireless communication unit 110 generally includes one or more assemblies, and it allows mobile terminal 100 and radio communication deviceOr the radio communication between network.For example, wireless communication unit can include broadcasting reception module 111, mobile communication module112nd, it is at least one in wireless Internet module 113, short range communication module 114 and location information module 115.
Broadcasting reception module 111 receives broadcast singal and/or broadcast via broadcast channel from external broadcast management serverRelevant information.Broadcast channel can include satellite channel and/or terrestrial channel.Broadcast management server can be generated and sentThe broadcast singal and/or broadcast related information that the server or reception of broadcast singal and/or broadcast related information generate beforeAnd send it to the server of terminal.Broadcast singal can include TV broadcast singals, radio signals, data broadcastingSignal etc..Moreover, broadcast singal may further include the broadcast singal combined with TV or radio signals.Broadcast phaseClosing information can also provide via mobile communications network, and in this case, broadcast related information can be by mobile communication mouldBlock 112 receives.Broadcast singal can exist in a variety of manners, for example, it can be with DMB (DMB) electronicsProgram guide (EPG), digital video broadcast-handheld (DVB-H) electronic service guidebooks (ESG) etc. form and exist.BroadcastReceiving module 111 can be broadcasted by using various types of broadcaster reception signals.Especially, broadcasting reception module 111Can be wide by using such as multimedia broadcasting-ground (DMB-T), DMB-satellite (DMB-S), digital videoBroadcast-hold (DVB-H), forward link media (MediaFLO@) data broadcasting device, received terrestrial digital broadcasting integrated serviceEtc. (ISDB-T) digital broadcast apparatus receives digital broadcasting.Broadcasting reception module 111, which may be constructed such that, to be adapted to provide for extensivelyBroadcast the various broadcasters of signal and above-mentioned digital broadcast apparatus.Via broadcasting reception module 111 receive broadcast singal and/Or broadcast related information can be stored in memory 160 (or other types of storage medium).
Mobile communication module 112 sends radio signals to base station (for example, access point, node B etc.), exterior terminalAnd at least one in server and/or receive from it radio signal.Such radio signal can lead to including voiceTalk about signal, video calling signal or the various types of data for sending and/or receiving according to text and/or Multimedia Message.
Wireless Internet module 113 supports the Wi-Fi (Wireless Internet Access) of mobile terminal.The module can be internally or externallyIt is couple to terminal.Wi-Fi (Wireless Internet Access) technology involved by the module can include WLAN (WLAN) (Wi-Fi), Wibro(WiMAX), Wimax (worldwide interoperability for microwave accesses), HSDPA (high-speed downlink packet access) etc..
Short range communication module 114 is the module for supporting junction service.Some examples of short-range communication technology include indigo plantToothTM, radio frequency identification (RFID), Infrared Data Association (IrDA), ultra wide band (UWB), purple honeybeeTMEtc..
Location information module 115 is the module for checking or obtaining the positional information of mobile terminal.Location information moduleTypical case be GPS (global pick device).According to current technology, GPS module 115 calculates and comes from three or more satellitesRange information and correct time information and for the Information application triangulation of calculating, so as to according to longitude, latitudeHighly accurately calculate three-dimensional current location information.Currently, defended for the method for calculation position and temporal information using threeStar and the position calculated by using other satellite correction and the error of temporal information.In addition, GPS module 115Can be by Continuous plus current location information in real time come calculating speed information.
A/V input blocks 120 are used to receive audio or video signal.A/V input blocks 120 can include the He of camera 121Microphone 122, camera 121 in video acquisition mode or image capture mode by image capture apparatus obtain static imagesOr the view data of video is handled.Picture frame after processing may be displayed on display unit 151.Handled through camera 121Picture frame afterwards can be stored in memory 160 (or other storage mediums) or be sent out via wireless communication unit 110Send, two or more cameras 121 can be provided according to the construction of mobile terminal.Microphone 122 can be in telephone calling model, noteSound (voice data) is received via microphone in record pattern, speech recognition mode etc. operational mode, and can will soAcoustic processing be voice data.Audio (voice) data after processing can be converted in the case of telephone calling model canThe form that mobile communication base station is sent to via mobile communication module 112 exports.Microphone 122 can implement various types of make an uproarSound eliminates (or suppression) algorithm to eliminate (or suppression) caused noise or dry during receiving and sending audio signalDisturb.
User input unit 130 can control each of mobile terminal according to the order generation key input data that user inputsKind operation.User input unit 130 allows user to input various types of information, and can include keyboard, metal dome, touchPlate (for example, sensitive component of detection change of resistance, pressure, electric capacity etc. caused by being touched), roller, rocking bar etc.Deng.Especially, when touch pad is superimposed upon on display unit 151 in the form of layer, touch-screen can be formed.
Sensing unit 140 detects the current state of mobile terminal 100, (for example, mobile terminal 100 opens or closes shapeState), the presence or absence of the contact (that is, touch input) of the position of mobile terminal 100, user for mobile terminal 100, mobile terminal100 orientation, the acceleration of mobile terminal 100 or by fast movement and direction etc., and generate for controlling mobile terminal 100The order of operation or signal.For example, when mobile terminal 100 is embodied as sliding-type mobile phone, sensing unit 140 can senseThe sliding-type phone is opening or closing.In addition, sensing unit 140 can detect power subsystem 190 whether provide electric power orWhether person's interface unit 170 couples with external device (ED).Sensing unit 140, which can include proximity transducer 1410, to be combined belowThis is described touch-screen.
Interface unit 170 is connected the interface that can pass through as at least one external device (ED) with mobile terminal 100.For example,External device (ED) can include wired or wireless head-band earphone port, external power source (or battery charger) port, wired or nothingLine FPDP, memory card port, the port for connecting the device with identification module, audio input/output (I/O) endMouth, video i/o port, ear port etc..Identification module can be that storage is used to verify that user uses each of mobile terminal 100Plant information and subscriber identification module (UIM), client identification module (SIM), Universal Subscriber identification module (USIM) can be includedEtc..In addition, the device with identification module can (hereinafter referred to as " identification device ") take the form of smart card, therefore, knowOther device can be connected via port or other attachment means with mobile terminal 100.Interface unit 170 can be used for reception and come fromThe input (for example, data message, electric power etc.) of external device (ED) and the input received is transferred in mobile terminal 100One or more elements can be used for transmitting data between mobile terminal and external device (ED).
In addition, when mobile terminal 100 is connected with external base, interface unit 170 may be used as allowing by it by electricityPower provides to the path of mobile terminal 100 from base or may be used as allowing to pass through it from the various command signals that base inputsIt is transferred to the path of mobile terminal.It may be used as being used to identify that mobile terminal is from the various command signals or electric power of base inputThe no signal being accurately fitted within base.Output unit 150 is configured to defeated with the offer of vision, audio and/or tactile mannerGo out signal (for example, audio signal, vision signal, alarm signal, vibration signal etc.).Output unit 150 can include displayUnit 151, dio Output Modules 152, alarm unit 153 etc..
Display unit 151 may be displayed in mobile terminal 100 information handled.For example, when mobile terminal 100 is in electricityWhen talking about call mode, display unit 151 can be shown with conversing or other communicating (for example, text messaging, multimedia fileDownload etc.) related user interface (UI) or graphic user interface (GUI).When mobile terminal 100 is in video calling patternOr during image capture mode, display unit 151 can show the image of capture and/or the image of reception, show video or figureUI or GUI of picture and correlation function etc..
Meanwhile when display unit 151 and touch pad in the form of layer it is superposed on one another to form touch-screen when, display unit151 may be used as input unit and output device.Display unit 151 can include liquid crystal display (LCD), thin film transistor (TFT)In LCD (TFT-LCD), Organic Light Emitting Diode (OLED) display, flexible display, three-dimensional (3D) display etc. at leastIt is a kind of.Some in these displays may be constructed such that transparence to allow user to be watched from outside, and this is properly termed as transparentDisplay, typical transparent display can be, for example, TOLED (transparent organic light emitting diode) display etc..According to specificDesired embodiment, mobile terminal 100 can include two or more display units (or other display devices), for example, movingDynamic terminal can include outernal display unit (not shown) and inner display unit (not shown).Touch-screen can be used for detection to touchInput pressure and touch input position and touch input area.
Dio Output Modules 152 can mobile terminal be in call signal reception pattern, call mode, logging mode,It is receiving or in memory 160 by wireless communication unit 110 when under the isotypes such as speech recognition mode, broadcast reception modeThe voice data transducing audio signal of middle storage and to export be sound.Moreover, dio Output Modules 152 can provide and movementThe audio output (for example, call signal receives sound, message sink sound etc.) for the specific function correlation that terminal 100 performs.Dio Output Modules 152 can include sound pick-up, buzzer etc..
Alarm unit 153 can provide output so that event is notified to mobile terminal 100.Typical event can be withIncluding calling reception, message sink, key signals input, touch input etc..In addition to audio or video exports, alarm unit153 can provide output in a different manner with the generation of notification event.For example, alarm unit 153 can be in the form of vibrationThere is provided output, when receive calling, message or some it is other enter communication (incoming communication) when, alarm listMember 153 can provide tactile output (that is, vibrating) to notify to user.Exported by tactile as offer, even inWhen the mobile phone of user is in the pocket of user, user also can recognize that the generation of various events.Alarm unit 153The output of the generation of notification event can be provided via display unit 151 or dio Output Modules 152.
Memory 160 can store software program of the processing performed by controller 180 and control operation etc., Huo ZhekeTemporarily to store oneself data (for example, telephone directory, message, still image, video etc.) through exporting or will export.AndAnd memory 160 can store the vibration of various modes on being exported when touching and being applied to touch-screen and audio signalData.
Memory 160 can include the storage medium of at least one type, and the storage medium includes flash memory, hard disk, moreMedia card, card-type memory (for example, SD or DX memories etc.), random access storage device (RAM), static random-access storageDevice (SRAM), read-only storage (ROM), Electrically Erasable Read Only Memory (EEPROM), programmable read only memory(PROM), magnetic storage, disk, CD etc..Moreover, mobile terminal 100 can be with performing memory by network connectionThe network storage device cooperation of 160 store function.
Controller 180 generally controls the overall operation of mobile terminal.For example, controller 180 performs and voice call, dataCommunication, video calling etc. related control and processing.In addition, controller 180 can include being used to reproduce (or playback) more matchmakersThe multi-media module 181 of volume data, multi-media module 181 can be constructed in controller 180, or be can be structured as and controlledDevice 180 separates.Controller 180 can be with execution pattern identifying processing, by the handwriting input performed on the touchscreen or pictureDraw input and be identified as character or image.
Power subsystem 190 receives external power or internal power under the control of controller 180 and provides operation each memberAppropriate electric power needed for part and component.
Various embodiments described herein can be with use such as computer software, hardware or its any combination of calculatingMachine computer-readable recording medium is implemented.Implement for hardware, embodiment described herein can be by using application-specific IC(ASIC), digital signal processor (DSP), digital signal processing device (DSPD), programmable logic device (PLD), scene canProgramming gate array (FPGA), processor, controller, microcontroller, microprocessor, it is designed to perform function described hereinAt least one of electronic unit is implemented, and in some cases, such embodiment can be implemented in controller 180.For software implementation, the embodiment of such as process or function can be with allowing to perform the single of at least one function or operationSoftware module is implemented.Software code can by the software application (or program) write with any appropriate programming language LaiImplement, software code can be stored in memory 160 and be performed by controller 180.
So far, oneself according to its function through describing mobile terminal.Below, for the sake of brevity, will description such as folded form,Slide type mobile terminal in various types of mobile terminals of board-type, oscillating-type, slide type mobile terminal etc., which is used as, to be shownExample.Therefore, the present invention can be applied to any kind of mobile terminal, and be not limited to slide type mobile terminal.
Mobile terminal 100 as shown in Figure 1 may be constructed such that using via frame or packet transmission data it is all if anyLine and radio communication device and satellite-based communicator operate.
The communicator that can be wherein operated according to the mobile terminal of the present invention referring now to Fig. 2 descriptions.
Such communicator can use different air interface and/or physical layer.For example, used by communicatorAir interface includes such as frequency division multiple access (FDMA), time division multiple acess (TDMA), CDMA (CDMA) and universal mobile communications dressPut (UMTS) (especially, Long Term Evolution (LTE)), global mobile communication device (GSM) etc..As non-limiting example, underThe description in face is related to cdma communication device, but such teaching is equally applicable to other types of device.
With reference to figure 2, cdma wireless communication device can include multiple mobile terminals 100, multiple base stations (BS) 270, base stationController (BSC) 275 and mobile switching centre (MSC) 280.MSC280 is configured to and Public Switched Telephony Network (PSTN)290 form interface.MSC280 is also structured to form interface with the BSC275 that can be couple to base station 270 via back haul link.If back haul link can construct according to any of interface that Ganji knows, the interface includes such as E1/T1, ATM, IP,PPP, frame relay, HDSL, ADSL or xDSL.It will be appreciated that device can include multiple BSC2750 as shown in Figure 2.
Each BS270 can service one or more subregions (or region), by multidirectional antenna or the day of sensing specific directionEach subregion of line covering is radially away from BS270.Or each subregion can be by two or more for diversity receptionAntenna covers.Each BS270, which may be constructed such that, supports multiple frequency distribution, and each frequency distribution has specific frequency spectrum(for example, 1.25MHz, 5MHz etc.).
What subregion and frequency were distributed, which intersects, can be referred to as CDMA Channel.BS270 can also be referred to as base station transceiverDevice (BTS) or other equivalent terms.In this case, term " base station " can be used for broadly representing singleBSC275 and at least one BS270.Base station can also be referred to as " cellular station ".Or specific BS270 each subregion can be claimedFor multiple cellular stations.
As shown in Figure 2, broadcast singal is sent to the mobile terminal operated in device by broadcsting transmitter (BT) 295100.Broadcasting reception module 111 as shown in Figure 1 is arranged at mobile terminal 100 to receive the broadcast sent by BT295Signal.In fig. 2 it is shown that several global pick device (GPS) satellites 300.Satellite 300 helps to position multiple mobile terminalsIt is at least one in 100.
In fig. 2, multiple satellites 300 are depicted, but it is understood that, any number of satellite can be utilized to obtainUseful location information.GPS module 115 as shown in Figure 1 is generally configured to coordinate that to obtain wants to determine with satellite 300Position information.Substitute GPS tracking techniques or outside GPS tracking techniques, the position that can track mobile terminal can be usedOther technologies.In addition, at least one gps satellite 300 can optionally or additionally handle satellite dmb transmission.
As a typical operation of radio communication device, BS270 receives the reverse link from various mobile terminals 100Signal.Mobile terminal 100 generally participates in call, information receiving and transmitting and other types of communication.Certain base station 270 receives each anti-Handled to link signal in specific BS270.The data of acquisition are forwarded to the BSC275 of correlation.BSC provides callResource allocation and the mobile management function of coordination including the soft switching process between BS270.The number that BSC275 will also be receivedAccording to MSC280 is routed to, it provides the extra route service for forming interface with PSTN290.Similarly, PSTN290 withMSC280 forms interface, and MSC and BSC275 form interface, and BSC275 correspondingly controls BS270 with by forward link signalsIt is sent to mobile terminal 100.
Structure based on above-mentioned mobile terminal hardware configuration, communicator, propose each embodiment of the inventive method.
As shown in figure 3, first embodiment of the invention provides a kind of login method, including step:
S11, mobile terminal authentication local terminal built-in SIM card;
The built-in SIM card of this mobile terminal of mobile terminal authentication, described answer is logged in confirm whether the built-in SIM card hasWith the authority of program;The weight discriminating carried out by SIM card, realized by some parameters of SIM card and application software is connectEnter certification.When logging in a certain application software, authentication first is carried out to the built-in SIM card of the mobile terminal, it is built-in to read thisOne or more parameters of SIM card, and whether the one or more parameters for contrasting the reading with what is pre-set are used for the applicationWhether the SIM card identification information of software access authentication is consistent, judges whether the SIM card of the mobile terminal has by comparing resultThere is the authority for accessing the application program;
Such as:The SIM card identification information of application software A access authentication is ICCID:8986110926755183150Y;WhenWhen mobile terminal A will log in application software A, first read in this mobile terminal A built-in SIM card A No. ICCID, and contrastNo. ICCID of the reading whether and 8986110926755183150Y, if unanimously, illustrating this mobile terminal A instantly interiorPutting SIM card A has access application program A authority;It should be noted that due to this step be based on built-in SIM card A, whenWhen mobile terminal A changes other SIM cards, then it can not log in, when SIM card A is inserted into mobile terminal B slot, ifMobile terminal B is also provided with application program A, when mobile terminal B will log in application program A, can also pass through certification SIMBlock A, to obtain logon rights.
S12, according to authentication result, obtain the authority of login application program;
By certification, then illustrate that the SIM card has the authority for logging in the application program, therefore, obtain corresponding logon rights;
It is not authenticated, then illustrate the SIM card without the authority for logging in the application program, therefore, logon rights, which obtain, to be lostLose;
S13, the authority based on the login application program, log in the application program;
After login failure, user can be prompted, if need to apply for the authority that the SIM card logs in the application program,If applying for that this services, application program A accounts information and SIM card A ICCID are subjected to high in the clouds mapping, binding.
Pass through login method described in the first embodiment:User can be logged in by way of SIM card certification accordingly shouldWith program, the mode of traditional manual input password login is abandoned, has been logged in convenient and swift;Changing mobile terminal or mobile terminalIn the case of updating system, as long as SIM card is changed without, login still can be authenticated, therefore, it is close to account thoroughly to solve userThe problem of code memory;Due to needing by entity SIM card certification so that network hacker can not be by stealing log-on message and at itHe logs in equipment, and security is also protected.
On the basis of first embodiment, the present invention proposes second embodiment, as shown in figure 4, the mobile terminal is recognizedAlso include before the step of demonstrate,proving the built-in SIM card of local terminal:
S10, establish right discriminating system for built-in SIM card described in certification;
The right discriminating system includes first server and second server:
First server is used for the accounts information for preserving user's registration or the application program of upload, and the first server is preferredCloud server;
There is SIM card identification information storehouse in the second server, the SIM card identification information storehouse is used to include each SIM cardSIM card identification information, the SIM card identification information storehouse can also include the mapping of each SIM card identification information and phone number, shouldSIM card identification information storehouse can be provided by operator, can also be provided by the third party manufacturer of association operator database, secondServer also preferably cloud server;
Step S10 specific steps include:
S10a, the accounts information of the application program is preserved in the first server;
The accounts information of the application program is uploaded or is synchronized to first server;
S10b, the mandate relation established between the first server and the second server;
The first server and the second server have corresponding authorization message in licensing process is intersected, withFacilitate information exchange certification;
S10c, to establish the SIM card identification information in the SIM card identification information storehouse corresponding with the first serverMapping relations between the accounts information of the application program;
The SIM card identification information is used to verify whether the built-in SIM card has the legal of the login application programIdentity;When the relevant parameter in built-in SIM card and the SIM card identification information coincide, then illustrate that the built-in SIM card has and step onRecord the legal identity of corresponding application programs;
When the built-in SIM card passes through certification, the mobile terminal with the built-in SIM card according to matchingThe accounts information of the application program of SIM card identification information mapping, performs the login of proper account;
As will a wherein SIM card identification information ICCID:8986110926755183150Y and application program A, application programB, application program C establishes mapping relations, when the ICCID of the built-in SIM card of mobile terminal is consistent with the SIM card identification information, then,The mobile terminal can be with login application program A, application program B, application program C, without being manually entered password, also without noteRecall;
Pass through login method described in the second embodiment:By SIM card identification information and the accounts information of application program in cloudEnd binding or mapping, have preferable stability, meet all theories based on high in the clouds, provided for the certification of first embodimentA kind of preferable authentication platform;And after mobile terminal loss, in order to prevent other pick up the people of the mobile terminal from usingAnd cause to divulge a secret, can it is unbinding beyond the clouds or mapping, so as to worry the leakage of associated account information.Certainly, it is necessary to illustrate, other authentication platforms can also be used.
Based on first and second embodiment, the embodiments of the invention provide the built-in SIM card of certification local terminal as shown in Figure 5Schematic flow sheet, include the step of the built-in SIM card of the mobile terminal authentication local terminal:
S11a, the SIM card parameter for reading the built-in SIM card;
The SIM card parameter is used to be contrasted with the SIM card identification information in the SIM card identification information storehouse, with checkingWhether the identity of the built-in SIM card is legal;
S11b, the certification request information for carrying the SIM card parameter is sent to the second server;
After second server receives SIM card parameter, it can be identified with all SIM cards in SIM card identification information and believedBreath checked, execution find it is same untill, if the SIM card parameter is ICCID:8986110926755183150Y,Then the ICCID and all ICCID in SIM card identification information storehouse are contrasted, looked for until in the SIM card identification informationTo identical ICCID:8986110926755183150Y, if contrast terminates, identical ICCID is not found, then illustrates that this is built-inThe identity of SIM card is illegal;
S11c, receive built-in SIM card identity described in the second server certification it is legal when the token information fed back;
That is, it is judged that when identity is legal, then second server can generate token information, also known as token bags, the token informationCarry:Authentication passes through mark, identification code, and other relevant informations;
S11d, to the first server send the token information;
The authorization message generated during according to the first server and second server mandate, is detected in the token informationWhether parameter corresponds to therewith, and obtains the authentication result to the token information after the check;
S11e, authentication result of the first server to the token information is received, institute is logged in judge whether to haveState the authority of application program;
If certification is by logging in corresponding application program, and according to the SIM card parameter identical SIM card of built-in SIM cardThe accounts information of the application program of identification information mapping, performs the login of proper account.
By above-mentioned specific steps it is recognised that mobile terminal will obtain the authority of login application program, to pass through firstServer authentication and second server certification, there is higher security.
Optionally, the effect of the token information has the ageing of setting.
I.e. within the period of setting, without repeating certification to SIM card, token information ageing is so that mobile terminal can be withCorresponding application program is directly logged in, it is convenient and swift.
Optionally, the SIM card parameter is the IMSI number of the built-in SIM card or No. ICCID, and the SIM card mark is believedCease to prestore the IMSI number of SIM card beyond the clouds or No. ICCID;SIM card parameter and SIM card identification information are to IMSINumber or No. ICCID, use different titles to be for distinguish.
SIM card is the structure of a complete single-chip microcomputer, it comprises ROM, CPU, RAM, EEPROM and I/O, whereinMore important several parameters have:
(1) IMSI (International Mobile Subscriber Identity, international mobile subscriber identity);
(2) Ki (Subscrber authentication key, subscription authentication code);
(3) ICCID (Integrated Circuit Card Identifier, integrated circuit card identification code);
(4) PIN (Personal Identification Number, the personal recognition code of SIM card);
(5) PUK (PIN Unlocking Key, PUK);
SIM card identification information for SIM card authentication should have uniqueness and non-reproduction:Wherein KI codes are notIt can be directly read by mobile terminal;PUK PIN are the private code of chains unblock, and No. ICCID can be read simultaneously with IMSI numberUse, therefore, SIM card identification information can use IMSI number and No. ICCID, as more preferably selecting for this implementation, it is proposed that useNo. ICCID, it is the unique mark of SIM card, and it has entity printing in entity card, is conveniently used as SIM card identification information, alsoAuthentication code can be referred to as, but need to illustrate, the embodiment of the present invention is not intended to limit using other specification.
It is following to be illustrated using a concrete scene in order to clearly illustrate the present embodiment:
Preparatory stage:
First server is that APP applies high in the clouds, and it preserves each APP accounts information;
Second server is that SIM card authenticates high in the clouds, and it preserves SIM card identification information (including No. ICCDI);
User is sent by mobile terminal and instructed, and the mandate relation in high in the clouds is authenticated to establish APP using high in the clouds and SIM card;And it will need to provide and establish mapping relations between the APP of SIM authentication services and corresponding SIM card identification information;
And the SIM service options of authentication are provided in APP UI interfaces.
Entry stage:
When user logs in the APP for needing SIM card to authenticate on mobile terminals, the service choosing that APP SIM card logs in is clicked onThe related SIM card authentication component of Xiang Hou, APP calling goes No. ICCID of reading SIM card, while sends and carry to SIM authentications high in the cloudsThe ICCID certification request information;
After SIM card authentication high in the clouds receives the certification request information of mobile terminal transmission, by being taken in certification request informationWhether the identity of the SIM card of the ICCID certifications of the band mobile terminal is legal, if legal, can generate corresponding token letterBreath, carry in token information SIM authentications by mark, No. ICCID and other, token feedback of the information is arrived by downlinkThe mobile terminal;
After mobile terminal receives the token information, the token information is sent using high in the clouds to APP by the APP, APP shouldAuthenticate the authorization message or authorized agreement in high in the clouds with SIM card before with high in the clouds, token information is detected and certification, ifCertification passes through i.e. user's successful log.And the token information within a period of time effectively, during this period of time need not by the APPWhat is repeated initiates authentication request to SIM authentications high in the clouds, you can quick registration.
In the concrete scene, at least following advantage is obvious:
1st, the authentication of SIM card, login process are consistency operations, and user only needs to click on SIM card on APP UI interfacesAuthentication service option, you can complete to log in, it is convenient and swift;
2nd, because token information has necessarily ageing, after logining successfully, within the time of setting, without reflecting againPower, you can log in, log in speed faster;
3rd, after SIM card is lost, its mapping or binding relationship with APP can be released, that is, cancel SIM card and APP accounts itBetween mandate of reporting to the leadship after accomplishing a task it is safe so that other users can not log in;
4th, user is changing mobile phone, and in the case that SIM card is not changed, it is corresponding can to carry out quick registration using the SIM cardAPP;
5th, user need not remember cumbersome account number cipher, without manually input;
6th, SIM card can authorize arbitrary APP to log in mapping, incalculability limitation beyond the clouds.
On the basis of first embodiment, the present invention proposes 3rd embodiment, as shown in fig. 6, the mobile terminal is recognizedAlso include before the step of demonstrate,proving the built-in SIM card of local terminal:Establish the right discriminating system for built-in SIM card described in certification:
S20a, the accounts information of the application program is preserved in first server;
The accounts information of the application program is uploaded or is synchronized to first server, the preferred high in the clouds clothes of the first serverBusiness device;
S20b, it is authorized by first server to the SIM card information in second server it is used as the access applicationThe authentication information of program;The accounts information of the SIM card information and the application program in the first server hasThere is corresponding relation, the SIM card information is used to verify whether the built-in SIM card has the authority for logging in the application program;
It should be noted that the difference of S10b~S10c steps of the step and second embodiment is, second is realS10b~S10c the steps for applying example are, mandate relation is first established between first server and second server, then by theThe SIM card information in application program and second server in one server is mapped;And the step of S20b of the present embodimentIt is, it is not necessary to which the mandate relation between two servers, the SIM card information directly authorized in second server are applied as accessThe authentication information of program, i.e., directly establish corresponding relation between SIM card information and the accounts information of application program.
Other steps and beneficial effect are referred to the relevant portion of first and second embodiment, are not described in detail herein.
As shown in fig. 7, first embodiment of the invention provides a kind of mobile terminal, including:Authentication module 101 and login mouldBlock 102;
Authentication module 101, the built-in SIM card for this mobile terminal of certification;
The built-in SIM card of this mobile terminal of mobile terminal authentication, described answer is logged in confirm whether the built-in SIM card hasWith the authority of program;The weight discriminating carried out by SIM card, realized by some parameters of SIM card and application software is connectEnter certification.When logging in a certain application software, authentication first is carried out to the built-in SIM card of the mobile terminal, it is built-in to read thisOne or more parameters of SIM card, and the one or more parameters for contrasting the reading are to be used for this using soft with what is pre-setWhether the SIM card identification information of part access authentication is consistent, judges whether the SIM card of the mobile terminal has by comparing resultAccess the authority of the application program;
Such as:The SIM card identification information of application software A access authentication is ICCID:8986110926755183150Y;WhenWhen mobile terminal A will log in application software A, first read in this mobile terminal A built-in SIM card A No. ICCID, and contrastNo. ICCID of the reading whether and 8986110926755183150Y, if unanimously, illustrating this mobile terminal A instantly interiorPutting SIM card A has access application program A authority;It should be noted that due to this step be based on built-in SIM card A, whenWhen mobile terminal A changes other SIM cards, then it can not log in, when SIM card A is inserted into mobile terminal B slot, ifMobile terminal B is also provided with application program A, when mobile terminal B will log in application program A, can also pass through certification SIMBlock A, to obtain logon rights.
Authority acquiring module 102, for according to authentication result, obtaining the authority of login application program;
By certification, then illustrate that the SIM card has the authority for logging in the application program, therefore, obtain corresponding logon rights;
It is not authenticated, then illustrate the SIM card without the authority for logging in the application program, therefore, logon rights, which obtain, to be lostLose;
Login module 103, for based on the authority for logging in the application program, logging in the application program;
After login failure, user can be prompted, if need to apply for the authority that the SIM card logs in the application program,If applying for that this services, application program A accounts information and SIM card A ICCID are subjected to high in the clouds mapping, binding.
On the basis of mobile terminal described in first embodiment, the present invention proposes second embodiment, as shown in figure 8, instituteStating mobile terminal described in second embodiment also includes:
Module 104 is established, for establishing the right discriminating system for built-in SIM card described in certification;
The right discriminating system includes first server and second server:
First server is used for the accounts information for preserving user's registration or the application program of upload, and the first server is preferredCloud server;
There is SIM card identification information storehouse in the second server, the SIM card identification information storehouse is used to include each SIM cardSIM card identification information, the SIM card identification information storehouse can also include the mapping of each SIM card identification information and phone number, should be somebody's turn to doSIM card identification information storehouse can be provided by operator, can also be provided by the third party manufacturer of association operator database, secondServer also preferably cloud server;
The module 104 of establishing includes:
Preserving module 104A, for preserving the accounts information of the application program in first server;
The accounts information of the application program is uploaded or is synchronized to first server;
First establishes module 104B, is closed for establishing the mandate between the first server and the second serverSystem;
The first server and the second server have corresponding authorization message in licensing process is intersected, withFacilitate information exchange;
Second establishes module 104C, for establishing the SIM card identification information in the SIM card identification information storehouse and described theMapping relations in one server between the accounts information of the corresponding application program;
The SIM card identification information is used to verify whether the built-in SIM card has the legal of the login application programIdentity;When the relevant parameter in built-in SIM card and the SIM card identification information coincide, then illustrate that the built-in SIM card has and step onRecord the legal identity of corresponding application programs;
When the built-in SIM card passes through certification, the mobile terminal with the built-in SIM card according to matchingThe accounts information of the application program of SIM card identification information mapping, performs the login of proper account;
As will a wherein SIM card identification information ICCID:8986110926755183150Y and application program A, application programB, application program C establishes mapping relations, when the ICCID of the built-in SIM card of mobile terminal is consistent with the SIM card identification information, then,The mobile terminal can be with login application program A, application program B, application program C, without being manually entered password, also without noteRecall.
Based on mobile terminal described in first and second embodiment, the embodiments of the invention provide authentication module as shown in Figure 9101 high-level schematic functional block diagram, the authentication module 101 include:
Read module 101A, for reading the SIM card parameter of the built-in SIM card;
The SIM card parameter is used to be contrasted with the SIM card identification information in the SIM card identification information storehouse, with checkingWhether the identity of the built-in SIM card is legal;
First sending module 101B, for sending the certification request with the SIM card parameter to the second serverInformation;
After second server receives SIM card parameter, it can be identified with all SIM cards in SIM card identification information and believedBreath checked, execution find it is same untill, if the SIM card parameter is ICCID:8986110926755183150Y,Then the ICCID and all ICCID in SIM card identification information storehouse are contrasted, looked for until in the SIM card identification informationTo identical ICCID:8986110926755183150Y, if contrast terminates, identical fixed ICCID is not found, then illustrates that this is interiorThe identity for putting SIM card is illegal;
First receiving module 101C, for receive built-in SIM card identity described in the second server certification it is legal when it is anti-The token information of feedback;
That is, it is judged that when identity is legal, then second server can generate token information, also known as token bags, the token informationCarry:Authentication passes through mark, identification code, and other relevant informations;
Second sending module 101D, for sending the token information to the first server;
The first server is detected in the token information according to the authorization message with being generated during second server mandateWhether parameter corresponds to therewith, and obtains the authentication result to the token information after the check;
Second receiving module 101E, for receiving authentication result of the first server to the token information, to sentenceIt is disconnected whether to there is the authority for logging in the application program;
If certification is by logging in corresponding application program, and the SIM card according to corresponding to the SIM card parameter of built-in SIM cardThe accounts information of the application program of identification information mapping, performs the login of proper account.
Optionally, the effect of the token information has the ageing of setting.
I.e. within the period of setting, without repeating certification to SIM card, token information ageing is so that mobile terminal can be withCorresponding application program is directly logged in, it is convenient and swift.
Optionally, the SIM card parameter is the IMSI number of the built-in SIM card or No. ICCID, and the SIM card mark is believedCease to prestore the IMSI number of SIM card beyond the clouds or No. ICCID;SIM card parameter and SIM card identification information are to IMSINumber or No. ICCID, use different titles to be for distinguish.
SIM card is the structure of a complete single-chip microcomputer, it comprises ROM, CPU, RAM, EEPROM and I/O, whereinMore important several parameters have:
(1) IMSI (International Mobile Subscriber Identity, international mobile subscriber identity);
(2) Ki (Subscrber authentication key, subscription authentication code);
(3) ICCID (Integrated Circuit Card Identifier, integrated circuit card identification code);
(4) PIN (Personal Identification Number, the personal recognition code of SIM card);
(5) PUK (PIN Unlocking Key, PUK);
SIM card identification information for SIM card authentication should have uniqueness and non-reproduction:Wherein KI codes are notIt can be directly read by mobile terminal;PUK PIN are the private code of chains unblock, and No. ICCID can be read simultaneously with IMSI numberUse, therefore, SIM card identification information can use IMSI number and No. ICCID, as more preferably selecting for this implementation, it is proposed that useNo. ICCID, it is the unique mark of SIM card, and it has entity printing in entity card, is conveniently used as SIM card identification information, alsoAuthentication code can be referred to as, but need to illustrate, the embodiment of the present invention is not intended to limit using other specification.
It should be noted that herein, term " comprising ", "comprising" or its any other variant are intended to non-rowHis property includes, so that process, method, article or device including a series of elements not only include those key elements, andAnd also include the other element being not expressly set out, or also include for this process, method, article or device institute inherentlyKey element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that including thisOther identical element also be present in the process of key element, method, article or device.
The embodiments of the present invention are for illustration only, do not represent the quality of embodiment.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment sideMethod can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but in many casesThe former is more preferably embodiment.Based on such understanding, technical scheme is substantially done to prior art in other wordsGoing out the part of contribution can be embodied in the form of software product, and the computer software product is stored in a storage mediumIn (such as ROM/RAM, magnetic disc, CD), including some instructions to cause a station terminal equipment (can be mobile phone, computer, clothesBe engaged in device, air conditioner, or network equipment etc.) perform method described in each embodiment of the present invention.
The preferred embodiments of the present invention are these are only, are not intended to limit the scope of the invention, it is every to utilize this hairThe equivalent structure or equivalent flow conversion that bright specification and accompanying drawing content are made, or directly or indirectly it is used in other related skillsArt field, is included within the scope of the present invention.