Remote identity authentication method and system and remote account opening method and system

US 10,606,997 B2
Filed: 03/01/2018
Issued: 03/31/2020
Est. Priority Date: 09/07/2015
Status: Active Grant

First Claim

Patent Images

1. A remote authentication method, comprising:

obtaining, by an electronic cipher device, information to be validated, wherein the information to be validated comprises one-time authentication information;

generating and displaying, by the electronic cipher device, a graphic identification code based on the information to be validated;

obtaining, by a terminal, a picture comprising a facial image of a user and the graphic identification code displayed on the electronic cipher device;

transmitting, by the terminal, the picture to a background server, comprising;

carrying, by the terminal, the picture in an authentication request to transmit the authentication request to the background server, wherein the authentication request further carries user information; and

receiving, by the background server, the picture, and validating, by the background server, the graphic identification code and the facial image of the user recorded in the picture;

before transmitting, by the terminal, the authentication request to the background server, the method further comprising;

reading, by a resident identity card reading module, resident identity card information stored in a resident identity card of the user;

encrypting, by the electronic cipher device, the resident identity card information read through the resident identity card reading module; and

transmitting, by the electronic cipher device, a ciphertext of the resident identity card information obtained after encrypting the resident identity card information to the terminal;

the user information comprising;

the ciphertext of the resident identity card information; and

after transmitting, by the terminal, the authentication request to the background server, the method further comprising;

receiving, by the background server, the authentication request and validating, by the background server, an identity of the user based on the ciphertext of the resident identity card information.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Provided in the present application are a remote authentication method and system and a remote account opening method and system. The remote authentication method includes: by an electronic cipher device, acquiring information to be validated, generating and displaying a graphic identification code on the basis of the information to be validated; by a terminal, acquiring a picture including a facial image of a user and the graphic identification code displayed on the electronic cipher device and transmitting the picture to a background server; and by the background server, receiving the picture and validating the graphic identification code and the facial image of the user provided on the picture.

6 Citations

18 Claims

1. A remote authentication method, comprising:
- obtaining, by an electronic cipher device, information to be validated, wherein the information to be validated comprises one-time authentication information;
  
  generating and displaying, by the electronic cipher device, a graphic identification code based on the information to be validated;
  
  obtaining, by a terminal, a picture comprising a facial image of a user and the graphic identification code displayed on the electronic cipher device;
  
  transmitting, by the terminal, the picture to a background server, comprising;
  
  carrying, by the terminal, the picture in an authentication request to transmit the authentication request to the background server, wherein the authentication request further carries user information; and
  
  receiving, by the background server, the picture, and validating, by the background server, the graphic identification code and the facial image of the user recorded in the picture;
  
  before transmitting, by the terminal, the authentication request to the background server, the method further comprising;
  
  reading, by a resident identity card reading module, resident identity card information stored in a resident identity card of the user;
  
  encrypting, by the electronic cipher device, the resident identity card information read through the resident identity card reading module; and
  
  transmitting, by the electronic cipher device, a ciphertext of the resident identity card information obtained after encrypting the resident identity card information to the terminal;
  
  the user information comprising;
  
  the ciphertext of the resident identity card information; and
  
  after transmitting, by the terminal, the authentication request to the background server, the method further comprising;
  
  receiving, by the background server, the authentication request and validating, by the background server, an identity of the user based on the ciphertext of the resident identity card information.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method according to claim 1,before transmitting by the terminal the authentication request to the background server, the method further comprising:
    - obtaining, by the terminal, signature data of the ciphertext of the resident identity card information from the electronic cipher device;
      
      the user information further comprising;
      
      the signature data of the ciphertext of the resident identity card information; and
      
      before validating by the background server the identity of the user based on the ciphertext of the resident identity card information, the method further comprising;
      
      validating, by the background server, the signature data of the ciphertext of the resident identity card information.
  - 3. The method according to claim 1, wherein validating by the background server the identity of the user based on the ciphertext of the resident identity card information comprises:
    - decrypting, by the background server, the ciphertext of the resident identity card information to obtain the resident identity card information;
      
      obtaining, by the background server, pre-stored resident identity card information corresponding to the electronic cipher device; and
      
      comparing, by the background server, the obtained resident identity card information with the decrypted resident identity card information, confirming, by the background server, that identity validation of the user who currently requests opening an account passes when the obtained resident identity card information matches with the decrypted resident identity card information, or confirming, by the background server, that identity validation of the user who currently requests opening an account fails when the obtained resident identity card information does not match with the decrypted resident identity card information.
  - 4. The method according to claim 1, wherein obtaining, by the electronic cipher device, the information to be validated comprises:
    - generating, by the electronic cipher device, the information to be validated based on parameters synchronized with the background server.
  - 5. The method according to claim 1, wherein generating, by the electronic cipher device, the graphic identification code based on the information to be validated comprises:
    - converting, by the electronic cipher device, the information to be validated into the graphic identification code;
      
      orcalculating, by the electronic cipher device, the information to be validated according to a preset algorithm and generating, by the electronic cipher device, the graphic identification code corresponding to a calculation result.
  - 6. The method according to claim 5, wherein calculating, by the electronic cipher device, the information to be validated according to the preset algorithm comprises:
    - signing, by the electronic cipher device, the information to be validated using a private key stored in the electronic cipher device;
      
      orperforming, by the electronic cipher device, a message authentication code (MAC) calculation on the information to be validated.
  - 7. The method according to claim 1, wherein obtaining by the terminal the picture comprising the facial image of the user and the graphic identification code displayed on the electronic cipher device, comprises:
    - capturing, by a capturing device provided on the terminal, an image comprising the facial image of the user and the graphic identification code displayed on the electronic cipher device, to acquire the picture;
      
      orreceiving, by the terminal, the picture comprising the facial image of the user and the graphic identification code displayed on the electronic cipher device from an external device.
  - 8. The method according to claim 1, wherein validating by the background server the facial image of the user recorded in the picture comprises:
    - obtaining, by the background server, pre-stored identity information of the user corresponding to the electronic cipher device, wherein the identity information comprises a facial image of a user; and
      
      comparing, by the background server, the facial image of the user recorded in the picture with the facial image of the user comprised in the obtained identity information, confirming, by the background server, that validation passes when the facial image of the user recorded in the picture matches with the facial image of the user comprised in the obtained identity information, or confirming, by the background server, that validation fails when the facial image of the user recorded in the picture does not match with the facial image of the user comprised in the obtained identity information.
  - 9. The method according to claim 1, after the background server fails to validate the graphic identification code and the facial image of the user recorded in the picture, further comprising:
    - transmitting, by the background server, a retransmission instruction to the terminal for instructing the terminal to re-upload the picture until the validation passes or the validation reaches a preset number of times.
  - 10. The method according to claim 1, further comprising opening an account remotely after the validation passes.

11. A remote authentication system, comprising an electronic cipher device, a terminal and a background server, whereinthe electronic cipher device is configured to obtain information to be validated and to generate and display a graphic identification code based on the information to be validated, wherein the information to be validated comprises one-time authentication information;
- the terminal is configured to obtain a picture comprising a facial image of a user and the graphic identification code displayed on the electronic cipher device and to transmit the picture to the background server; and
  
  the background server is configured to receive the picture and to validate the graphic identification code and the facial image of the user recorded in the picture;
  
  wherein the terminal is configured to transmit the picture to the background server by;
  
  carrying the picture in an authentication request to transmit the authentication request to the background server, wherein the authentication request further carries user information; and
  
  wherein the system further comprises a resident identity card reading module;
  
  wherein the resident identity card reading module is configured to read resident identity card information stored in a resident identity card of the user and to transmit the resident identity card information to the electronic cipher device;
  
  wherein the electronic cipher device is further configured to encrypt the resident identity card information read through the resident identity card reading module and to transmit a ciphertext of the resident identity card information obtained after encrypting the resident identity card information to the terminal;
  
  wherein the user information comprises;
  
  the ciphertext of the resident identity card information of the user; and
  
  wherein the background server is further configured to receive the authentication request and to validate an identity of the user according to the ciphertext of the resident identity card information.
- View Dependent Claims (12, 13, 14, 15)
- - 12. The system according to claim 11, wherein the electronic cipher device is configured to generate the graphic identification code by:
    - converting the information to be validated into the graphic identification code;
      
      orcalculating the information to be validated according to a preset algorithm and generating the graphic identification code corresponding to a calculation result; and
      
      the electronic cipher device is configured to calculate the information to be validated by;
      
      signing the information to be validated using a private key stored in the electronic cipher device;
      
      orperforming a message authentication code MAC calculation on the information to be validated.
  - 13. The system according to claim 11, wherein the background server is further configured to open an account remotely after the validation passes.
  - 14. The system according to claim 11, wherein,the terminal is further configured to obtain signature data of the ciphertext of the resident identity card information from the electronic cipher device;
    - the user information further comprises;
      
      the signature data of the ciphertext of the resident identity card information; and
      
      the background server is further configured to validate the signature data of the ciphertext of the resident identity card information.
  - 15. The system according to claim 11, wherein the background server is configured to validate the identity of the user by:
    - decrypting the ciphertext of the resident identity card information to obtain the resident identity card information;
      
      obtaining pre-stored resident identity card information corresponding to the electronic cipher device; and
      
      comparing the obtained resident identity card information with the decrypted resident identity card information, confirming that identity validation of the user who currently requests opening an account passes when the obtained resident identity card information matches with the decrypted resident identity card information, or confirming that identity validation of the user who currently requests opening an account fails when the obtained resident identity card information does not match with the decrypted resident identity card information.

16. A remote authentication method, comprising:
- transmitting, by a terminal, an authentication request to a background server, wherein the authentication request carries user information;
  
  obtaining, by an electronic cipher device, information to be validated, wherein the information to be validated comprises one-time authentication information;
  
  generating and displaying, by the electronic cipher device, a graphic identification code based on the information to be validated;
  
  obtaining, by the terminal, a picture comprising a facial image of a user and the graphic identification code displayed on the electronic cipher device;
  
  transmitting, by the terminal, the picture to the background server;
  
  before transmitting by the terminal the authentication request to the background server, the method further comprising;
  
  reading, by a resident identity card reading module, resident identity card information stored in a resident identity card of the user;
  
  encrypting, by the electronic cipher device, the resident identity card information read through the resident identity card reading module; and
  
  transmitting, by the electronic cipher device, a ciphertext of the resident identity card information obtained after encrypting the resident identity card information to the terminal;
  
  the user information comprising;
  
  the ciphertext of the resident identity card information; and
  
  after transmitting by the terminal the authentication request to the background server, the method further comprising;
  
  receiving, by the background server, the authentication request and validating, by the background server, an identity of the user based on the ciphertext of the resident identity card information.
- View Dependent Claims (17, 18)
- - 17. The method according to claim 16,before transmitting by the terminal the authentication request to the background server, the method further comprising:
    - obtaining, by the terminal, signature data of the ciphertext of the resident identity card information from the electronic cipher device;
      
      the user information further comprising;
      
      the signature data of the ciphertext of the resident identity card information; and
      
      before validating by the background server the identity of the user based on the ciphertext of the resident identity card information, the method further comprising;
      
      validating, by the background server, the signature data of the ciphertext of the resident identity card information.
  - 18. The method according to claim 16, wherein validating by the background server the identity of the user based on the ciphertext of the resident identity card information comprises:
    - decrypting, by the background server, the ciphertext of the resident identity card information to obtain the resident identity card information;
      
      obtaining, by the background server, pre-stored resident identity card information corresponding to the electronic cipher device; and
      
      comparing, by the background server, the obtained resident identity card information with the decrypted resident identity card information, confirming, by the background server, that identity validation of the user who currently requests opening an account passes when the obtained resident identity card information matches with the decrypted resident identity card information, or confirming, by the background server, that identity validation of the user who currently requests opening an account fails when the obtained resident identity card information does not match with the decrypted resident identity card information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tendyron Corporation
Original Assignee
Tendyron Corporation
Inventors
Li, Dongsheng
Primary Examiner(s)
Song, Hosuk

Application Number

US15/909,017
Publication Number

US 20180189476A1
Time in Patent Office

761 Days
Field of Search
US Class Current
CPC Class Codes

G06F 21/32   using biometric data, e.g. ...

G06F 21/36   by graphic or iconic repres...

G09C 5/00   Ciphering apparatus or meth...

H04L 9/3226   using a predetermined code,...

H04L 9/3228   One-time or temporary data,...

H04L 9/3231   Biological data, e.g. finge...

Remote identity authentication method and system and remote account opening method and system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

6 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Remote identity authentication method and system and remote account opening method and system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

6 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links