The content of the invention
The embodiment of the present application provides a kind of auth method and mobile terminal of mobile payment, to realize according to current useThe characteristic information dynamic monitoring user identity of the operation behavior at family, moves payment process, especially exempts from close mobile paymentThe active defense of process, improves the security of mobile payment process, especially in the case where mobile terminal is lost, can pass throughThe form of Proactive authentication identity, it is ensured that mobile payment, especially exempts from the fund security of close payment process.
In order to reach above-mentioned technical purpose, this application provides a kind of auth method of mobile payment, applied to bagIn the mobile terminal for including sensor, methods described is specifically included:
The characteristic information of user's current operation behavior is obtained by sensor;
The characteristic information of the current operation behavior is matched with the behavior checking information of default validated user;
If current matching result is the match is successful, when receiving mobile payment instruction, then held by exempting from close modeThe row mobile payment is indicated.
It is preferred that, the characteristic information of the user's current operation behavior got by sensor, and default conjunctionIn the behavior checking information of method user, corresponding at least includes one or more in following information:
The dynamics information of pressing operation is carried out to physical button and/or virtual key;
The frequency information of pressing operation is carried out to physical button and/or virtual key;
The sliding trace information of slide is carried out on the touchscreen;
Content input is carried out by the combination of multiple operating procedures, or the order of each operating procedure during function triggering is believedBreath;
The information of strong hand and/or usual finger when operating the mobile terminal;
When user is in different conditions, the spatial positional information of the mobile terminal;
User's body temperature information as measured by contacting the mobile terminal;
User's heart rate and/or pulse information as measured by contacting the mobile terminal.
It is preferred that, the behavior checking information of the characteristic information by the current operation behavior and default validated userAfter being matched, in addition to:
If current matching result is it fails to match, when receiving mobile payment instruction, then user is pointed out to carry out closeCode checking, and after being verified, perform the mobile payment and indicate.
It is preferred that, the behavior checking information of the default validated user is specifically included:
The behavior checking information for the validated user being introduced directly into;And/or,
When it is validated user to confirm active user, by learning the behavioural information of active user, the legal use updatedThe behavior checking information at family;And/or,
When verifying active user by preset password for validated user, according to input information, the validated user updatedBehavior checking information.
It is preferred that, in same mobile terminal, the behavior checking information of a validated user is preset, or preset respectivelyThe behavior checking informations of multiple validated users.
On the other hand, present invention also provides a kind of mobile terminal, including sensor, specifically include:
Information management module, the behavior checking information for presetting validated user;
Acquisition module, the characteristic information for obtaining user's current operation behavior by the sensor;
Matching module, for by the characteristic information and described information of the current operation behavior accessed by the acquisition moduleThe behavior checking information of the default validated user of management module is matched;
Receiving module, is indicated for receiving mobile payment;
Processing module, the matching result for recognizing the matching module, if matching result is the match is successful, describedWhen receiving module receives mobile payment and indicated, then mobile payment received by the receiving module is performed by exempting from close modeIndicate.
It is preferred that, the characteristic information of the user's current operation behavior got by sensor, and default conjunctionIn the behavior checking information of method user, corresponding at least includes one or more in following information:
The dynamics information of pressing operation is carried out to physical button and/or virtual key;
The frequency information of pressing operation is carried out to physical button and/or virtual key;
The sliding trace information of slide is carried out on the touchscreen;
Content input is carried out by the combination of multiple operating procedures, or the order of each operating procedure during function triggering is believedBreath;
The information of strong hand and/or usual finger when operating the mobile terminal;
When user is in different conditions, the spatial positional information of the mobile terminal;
User's body temperature information as measured by contacting the mobile terminal;
User's heart rate and/or pulse information as measured by contacting the mobile terminal.
It is preferred that, the processing module is additionally operable to:
If matching result is it fails to match, when the receiving module receives mobile payment instruction, then user is pointed outPassword authentification is carried out, and after being verified, performs the mobile payment received by the receiving module and indicates.
It is preferred that, described information management module, specifically for:
The behavior checking information of default validated user is determined according to the behavior checking information for the validated user being introduced directly into;And/or,
When it is validated user to confirm active user, by learning the behavioural information of active user, it is default legal to updateThe behavior checking information of user;And/or,
When verifying active user by preset password for validated user, according to input information, default validated user is updatedBehavior checking information.
It is preferred that, described information management module, specifically for:
Preset the behavior checking information of a validated user;Or,
The behavior checking information of multiple validated users is preset respectively.
Compared with prior art, the advantageous effects for the technical scheme that the embodiment of the present application is proposed include:
The embodiment of the present application discloses the auth method and mobile terminal of a kind of mobile payment, and this method passes through sensingDevice obtains the characteristic information of user's current operation behavior, and is matched with the behavior checking information of default validated user, onlyHave when the match is successful, just can perform mobile payment instruction by exempting from close mode, pass through what is proposed using the embodiment of the present applicationTechnical scheme, it is possible to achieve according to the characteristic information dynamic monitoring user identity of the operation behavior of active user, move branchThe process of paying, especially exempts from the active defense of close mobile payment process, improves the security of mobile payment process, is especially moving, can be by the form of Proactive authentication identity, it is ensured that mobile payment in the case of dynamic lost terminal, especially exempt from close payment processFund security.
Embodiment
As the application background technology is stated, with the fast development of network payment, especially mobile payment, in order toFurther lifting user easily operating experience, authentication step increasingly becomes to subtracting, or even occurs in that and exempt from close payment, still, byRealize in exempting from substantial amounts of identity information verification operation in close payment and be all based on intelligent mobile terminal, once intelligent mobile terminalLose, the safety of user's fund just has greater risk.
Present inventor is wished by method provided herein, can be carried out actively with dynamic monitoring user identityProtection, it is to avoid user's monetary losses., can also be by the behavioural characteristic of active user in the case that mobile terminal is lostUser identity is recognized, the security of mobile payment is improved.
As shown in figure 1, a kind of flow signal of the auth method of the mobile payment proposed by the embodiment of the present applicationFigure, this method is applied in the mobile terminal for including sensor, and this method is specifically included:
Step S101, the characteristic information by sensor acquisition user's current operation behavior.
It should be noted that in specific application scenarios, the type of sensor can be according to hardware device and scene needWait and be adjusted, moreover, sensor obtains the difference of the information content according to it, can be divided into a variety of, accordingly, it is obtainedThe content of the characteristic information of the user's current operation behavior taken can also include one or more in herein below:
(1) the dynamics information of pressing operation is carried out to physical button and/or virtual key.
The acquisition of this type of information can be obtained by the sensor of pressure-sensitive class, such as pressure sensor.The information is anti-What is reflected is strength custom when user carries out button operation.The pressing dynamics of such as key or home keys.
(2) frequency information of pressing operation is carried out to physical button and/or virtual key.
The acquisition of this type of information can be obtained by the sensor of receiving record class or instruction triggers class.The informationWhat is reflected is speed custom when user carries out button operation.For example when being carried out continuously volume adjusting, volume control keyCompression frequency.
(3) the sliding trace information of slide is carried out on the touchscreen.
The acquisition of this type of information can be obtained by the sensor of receiving record class or touch-control class.The message reflectionBe user carry out touch control operation or track input when operating habit.Such as sliding trace during unlocking screen.
(4) order of the combination progress content input of multiple operating procedures, or each operating procedure during function triggering is passed throughInformation.
The acquisition of this type of information can be obtained by the sensor of receiving record class or touch-control class.The message reflectionBe user carry out touch control operation or track input when input habit.Such as stroke order during many stroke word inputsDeng.
(5) strong hand during the operation mobile terminal and/or the information of usual finger.
The acquisition of this type of information can be by receiving fingerprint class or balanced class (terminal when left hand-held set and right hand-held setSituations such as horizontal level is all different) sensor obtains, such as fingerprint sensor, gyroscope.The message reflection isUser carries out operating habit during terminal operation.
(6) when user is in different conditions, the spatial positional information of the mobile terminal.
The acquisition of this type of information can position the sensor of class to obtain by reception space, such as acceleration sensingDevice, level meter, gyroscope etc..The message reflection be user carry out handheld terminal when operating habit.Such as sitting and lying, shape of walkingDifference under state holds machine custom.
(7) user's body temperature information as measured by contacting the mobile terminal.
The acquisition of this type of information can be obtained by the sensor of temperature-sensitive class.The message reflection be user's body fromBand attribute.
(8) the user's heart rate and/or pulse information as measured by contacting the mobile terminal.
The acquisition of this type of information can be obtained by shaking class or corresponding sensor special.The message reflection isUser's body carries attribute.
By described above, it can be seen that in the technical scheme that the embodiment of the present application is proposed, adaptable sensorSpecies and corresponding parameter huge number, in the case of can be by the information representation user identity such as behavioural characteristic, specificallyThe change of sensor type and corresponding parameter type can't influence the protection domain of the application.
Step S102, the behavior checking information of the characteristic information of the current operation behavior and default validated user enteredRow matching.
Firstly, it is necessary to explanation, the behavior checking information of default validated user in step S101 with currently gettingThe characteristic information of user's current operation behavior need to be consistent in type, that is, preset the checking information of type-A, then led toCross step S101 needs acquisitions is also the characteristic information of type-A, and what is for example preset and obtain is all to physical button and/or voidIntend button and carry out the frequency information of pressing operation, so as to ensure the possibility of matching.
Specifically, the matching operation in this step, is realized especially by following steps:
The behavior of the characteristic information of the current operation behavior and the validated user of default identical information type is verifiedInformation is contrasted;
Judge whether the variance rate in comparing result is less than default verification threshold;
If it is less, determining that the match is successful, if it is not, then determining that it fails to match.
So the matching operation based on variance rate is mainly the situation in view of user itself operating error, it is to avoid because usingFamily in itself small deviation and cause that it fails to match.And the setting of variance rate size can then be adjusted according to precise requirementsIt is whole.
Above-mentioned matching process is persistently carried out on backstage, it is thus possible to make intelligent terminal know current use at any timeWhether family is validated user, so as to carry out the authentication of itself.
Carried out it should be noted that above-mentioned matching process is circulation, therefore, step S101 and step S102 are circulationsCarry out, so that, constantly matching result is updated, so as to which user identity is identified in real time.
In view of the embodiment of the present application it is of interest focus on mobile payment field, this is also most crucial in the prior artRisk point, so, above-mentioned matching result is most important for follow-up mobile payment verification process, it is determined that matching resultAfterwards, if receiving mobile payment instruction, just subsequent treatment can be carried out according to foregoing real-time matching result.
If current matching result is the match is successful, step S103 is performed;
If current matching result is it fails to match, step S104 is performed.
Step S103, mobile payment instruction is received, performing the mobile payment by exempting from close mode indicates.
Step S104, mobile payment instruction is received, point out user to carry out password authentification, and after being verified, performThe mobile payment is indicated.
Need to illustrate, the behavior checking information of the default validated user mentioned in abovementioned steps S102,According to the difference of acquiring way, the one or more in following several types are specifically included.
Type one, the behavior checking information for the validated user being introduced directly into.
This type is applied to Data Enter in advance, can shift to an earlier date typing by user or be imported in advance by system.
Type two, confirm active user be validated user when, by learning the behavioural information of active user, updatedThe behavior checking information of validated user.
This type is applied to carry out information updating by way of study, can in authentication by rear, according toThe operating habit change at family itself, is learnt, so as to be updated to checking information.
Type three, by preset password verify active user be validated user when, according to input information, what is updated is legalThe behavior checking information of user.
This type is applied to the initiative information renewal that validated user is initiated, can be in authentication by rear, by userThe change of checking information is directly carried out, user is especially changed, or checking information is deposited in the case of an error, by active moreThe mode changed, is updated to checking information.
It is further noted that above-mentioned polytype information can be applied in combination, it can also be used alone, soChange can't influence the protection domain of the application.
In most cases, the mobile terminal input personal effects, therefore, in same mobile terminal, preset oneThe behavior checking information of validated user, but simultaneously, the situation of multiple users share terminal, mobile whole at same for convenienceIn end, the behavior checking information of multiple validated users can also be preset respectively, and such change can't influence the guarantor of the applicationProtect scope.
Compared with prior art, the advantageous effects for the technical scheme that the embodiment of the present application is proposed include:
The embodiment of the present application discloses the auth method and mobile terminal of a kind of mobile payment, and this method passes through sensingDevice obtains the characteristic information of user's current operation behavior, and is matched with the behavior checking information of default validated user, onlyHave when the match is successful, just can perform mobile payment instruction by exempting from close mode, pass through what is proposed using the embodiment of the present applicationTechnical scheme, it is possible to achieve according to the characteristic information dynamic monitoring user identity of the operation behavior of active user, move branchThe process of paying, especially exempts from the active defense of close mobile payment process, improves the security of mobile payment process, is especially moving, can be by the form of Proactive authentication identity, it is ensured that mobile payment in the case of dynamic lost terminal, especially exempt from close payment processFund security.
Below in conjunction with the accompanying drawing in the application, clear, complete description is carried out to the technical scheme in the application, is shownSo, described embodiment is a part of embodiment of the application, rather than whole embodiments.Based on the implementation in the applicationExample, the every other embodiment that those of ordinary skill in the art are obtained on the premise of creative work is not made all belongs toThe scope protected in the application.
The technical scheme that the embodiment of the present application is proposed utilizes acceleration transducer set in intelligent terminal, topSpiral shell instrument, voltage sensitive sensor, heat-sensitive sensor etc., the shake of the pressing key current to user, heartbeat heart rate, right-hand man useThe characteristic information of the operation behaviors such as custom is obtained, and is matched with the checking information of preset in advance, so that, verify user's bodyPart, it is determined whether perform mobile payment.
In equipment initialization, or when for the first time using mobile payment function, set guide prompting to create personal use and practiseUsed model.
First, user cipher is set, then some common actions are done by prompting, including:It is hand-held static, hand-held editor's textWord, button screen locking/unblock is hand-held to walk, the operation such as right-hand man's used interchangeably, the sensor such as backstage record acceleration, gyroscopeShake, angle information, create vertical user model, be used as checking information.
Certainly, during subsequent use, backstage may proceed to carry out Machine self-learning, improve and accurate user model.
During user's use, the data of the sensor such as background acquisition acceleration, gyroscope, with the user having built upModel is matched, if inconsistent with the feature of user model, then it is assumed that detection user identity changes, it is impossible to exempted fromClose mobile payment operation.
In actual application, if legal change occurs for user identity, it can be deleted by the password that sets beforeExisting subscriber's model, sets up new user model, can also set up many set user models (many people share a mobile phone), such to becomeChange can't influence the protection domain of the application.
Compared with prior art, the advantageous effects for the technical scheme that the embodiment of the present application is proposed include:
The embodiment of the present application discloses the auth method and mobile terminal of a kind of mobile payment, and this method passes through sensingDevice obtains the characteristic information of user's current operation behavior, and is matched with the behavior checking information of default validated user, onlyHave when the match is successful, just can perform mobile payment instruction by exempting from close mode, pass through what is proposed using the embodiment of the present applicationTechnical scheme, it is possible to achieve according to the characteristic information dynamic monitoring user identity of the operation behavior of active user, move branchThe process of paying, especially exempts from the active defense of close mobile payment process, improves the security of mobile payment process, is especially moving, can be by the form of Proactive authentication identity, it is ensured that mobile payment in the case of dynamic lost terminal, especially exempt from close payment processFund security.
To be illustrated more clearly that scheme that the application previous embodiment is provided, based on the invention structure same with the above methodThink, the embodiment of the present application also proposed a kind of mobile terminal, including sensor, its structural representation as shown in Fig. 2 specific bagInclude:
Information management module 21, the behavior checking information for presetting validated user;
Acquisition module 22, the characteristic information for obtaining user's current operation behavior by the sensor;
Matching module 23, for by the characteristic information of the current operation behavior accessed by the acquisition module 22 with it is describedThe behavior checking information of the default validated user of information management module 21 is matched;
Receiving module 24, is indicated for receiving mobile payment;
Processing module 25, when the match is successful for recognizing the matching module 23, shifting is received in the receiving module 24When dynamic payment is indicated, the mobile payment performed by exempting from close mode received by the receiving module 24 is indicated.
It is preferred that, the characteristic information of the user's current operation behavior got by sensor, and default conjunctionIn the behavior checking information of method user, corresponding at least includes one or more in following information:
The dynamics information of pressing operation is carried out to physical button and/or virtual key;
The frequency information of pressing operation is carried out to physical button and/or virtual key;
The sliding trace information of slide is carried out on the touchscreen;
Content input is carried out by the combination of multiple operating procedures, or the order of each operating procedure during function triggering is believedBreath;
The information of strong hand and/or usual finger when operating the mobile terminal;
When user is in different conditions, the spatial positional information of the mobile terminal;
User's body temperature information as measured by contacting the mobile terminal;
User's heart rate and/or pulse information as measured by contacting the mobile terminal.
It is preferred that, the processing module 25 is additionally operable to:
If the matching result of the matching module 23 receives mobile payment for it fails to match in the receiving module 24During instruction, then point out user to carry out password authentification, and after being verified, perform the movement received by the receiving module 24Pay and indicate.
It is preferred that, described information management module 21, specifically for:
The behavior checking information of default validated user is determined according to the behavior checking information for the validated user being introduced directly into;And/or,
When it is validated user to confirm active user, by learning the behavioural information of active user, it is default legal to updateThe behavior checking information of user;And/or,
When verifying active user by preset password for validated user, according to input information, default validated user is updatedBehavior checking information.
It is preferred that, described information management module 21, specifically for:
Preset the behavior checking information of a validated user;Or,
The behavior checking information of multiple validated users is preset respectively.
Compared with prior art, the advantageous effects for the technical scheme that the embodiment of the present application is proposed include:
The embodiment of the present application discloses the auth method and mobile terminal of a kind of mobile payment, and this method passes through sensingDevice obtains the characteristic information of user's current operation behavior, and is matched with the behavior checking information of default validated user, onlyHave when the match is successful, just can perform mobile payment instruction by exempting from close mode, pass through what is proposed using the embodiment of the present applicationTechnical scheme, it is possible to achieve according to the characteristic information dynamic monitoring user identity of the operation behavior of active user, move branchThe process of paying, especially exempts from the active defense of close mobile payment process, improves the security of mobile payment process, is especially moving, can be by the form of Proactive authentication identity, it is ensured that mobile payment in the case of dynamic lost terminal, especially exempt from close payment processFund security.
Through the above description of the embodiments, those skilled in the art can be understood that the embodiment of the present inventionIt can be realized by hardware, the mode of necessary general hardware platform can also be added to realize by software.Based on such reasonSolution, the technical scheme of the embodiment of the present invention can be embodied in the form of software product, and the software product can be stored in oneIndividual non-volatile memory medium (can be CD-ROM, USB flash disk, mobile hard disk etc.) in, including some instructions are to cause a meterEach implement scene of calculation machine equipment (can be personal computer, server, or network side equipment etc.) the execution embodiment of the present inventionDescribed method.
It will be appreciated by those skilled in the art that accompanying drawing is a schematic diagram for being preferable to carry out scene, module in accompanying drawing orFlow is not necessarily implemented necessary to the embodiment of the present invention.
It will be appreciated by those skilled in the art that the module in device in implement scene can be described according to implement scene intoRow is distributed in the device of implement scene, can also carry out one or more dresses that respective change is disposed other than this implement sceneIn putting.The module of above-mentioned implement scene can be merged into a module, can also be further split into multiple submodule.
The embodiments of the present invention are for illustration only, and the quality of implement scene is not represented.
Disclosed above is only several specific implementation scenes of the embodiment of the present invention, still, not office of the embodiment of the present inventionIt is limited to this, the changes that any person skilled in the art can think of should all fall into the business limitation scope of the embodiment of the present invention.