WO2016095375A1 - Mobile terminal and dtmf-based session authentication method therefor - Google Patents

Mobile terminal and dtmf-based session authentication method therefor Download PDF

Info

Publication number
WO2016095375A1
WO2016095375A1 PCT/CN2015/076458 CN2015076458W WO2016095375A1 WO 2016095375 A1 WO2016095375 A1 WO 2016095375A1 CN 2015076458 W CN2015076458 W CN 2015076458W WO 2016095375 A1 WO2016095375 A1 WO 2016095375A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
session
mobile terminal
authentication mode
comparison
Prior art date
Application number
PCT/CN2015/076458
Other languages
French (fr)
Chinese (zh)
Inventor
谢芳
Original Assignee
捷开通讯(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 捷开通讯(深圳)有限公司 filed Critical 捷开通讯(深圳)有限公司
Publication of WO2016095375A1 publication Critical patent/WO2016095375A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M1/00Substation equipment, e.g. for use by subscribers
    • H04M1/66Substation equipment, e.g. for use by subscribers with means for preventing unauthorised or fraudulent calling

Definitions

  • the invention belongs to the field of session authentication technology, and particularly relates to a DTMF based (dual-tone multi) A session authentication method for frequency, dual tone multi-frequency, and a primary caller and a called party mobile terminal using the authentication method.
  • DTMF dual-tone multi
  • CN200710015787.9 discloses a telephone encryption anti-harassment device, specifically, a circuit structure is arranged at the terminal of the telephone, and the circuit structure includes a detection circuit, an audio decoding circuit, a single-chip microcomputer, etc.
  • the circuit structure first starts to work, and prompts the caller to input the password.
  • the phone can be connected to the phone. After the access, the phone will start the ringing and other prompt signal devices. Then, it is not difficult to see that the telephone encryption anti-harassment device requires the caller to manually input the password, and the access process is complicated, and also interferes with the user's use to a certain extent, and the use experience is poor.
  • the embodiments of the present invention provide a mobile terminal and a DTMF-based session authentication method, which can effectively improve the user experience, intelligently and flexibly implement automatic management of the session, and avoid excessive conversations to interfere with the daily life of the user. .
  • the embodiment of the present invention provides a DTMF-based session authentication method, where the session authentication method includes: when the mobile terminal receives a session incoming call, it detects whether the authentication mode is enabled; When the authentication mode is enabled, the comparison request information stored locally is automatically acquired; the mobile terminal sends the comparison request information to the primary calling party through DTMF dual tone multi-frequency, and receives the primary calling party according to the comparison.
  • the request information is searched for and passed the comparison key information fed back by the DTMF; the mobile terminal performs the comparison authentication with the stored key information; when the comparison authentication passes, the movement
  • the terminal accesses the session incoming call, and rejects or ignores the session incoming call when the comparison authentication fails.
  • the mobile terminal Before the step of detecting, by the mobile terminal, that the authentication mode has been enabled, the mobile terminal includes: setting, by the user according to the time interval of the user, setting according to the location of the space, or setting the time of the week according to the manner of the user.
  • the authentication mode is turned on.
  • setting the authentication mode according to the daily time period includes: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22 to 7 hours;
  • setting the authentication mode according to the spatial location setting includes: closing at the workplace In the authentication mode, the authentication mode is enabled at the residence, or the authentication mode is turned on when driving.
  • the authentication mode is set by the weekly time: the authentication mode is turned off from Monday to Friday and the authentication mode is turned on from Saturday to Sunday.
  • the session authentication method further includes: when the mobile terminal performs the session call, detecting and receiving whether the called party has the comparison request information sent by using the DTMF; and when detecting the comparison request information, the mobile terminal Searching for the comparison key information locally according to the comparison request information; the mobile terminal feeds the comparison key information to the called party through DTMF, wherein the comparison key information is used by the The called party performs a comparative authentication with its local key to implement the session outgoing call when the authentication is passed, or the session call fails when the authentication fails.
  • the step of the mobile terminal feeding back the comparison key information to the called party by using DTMF comprising: the mobile terminal encrypting the comparison key information, and transmitting DTMF feedback after encryption Give the called party.
  • the embodiment of the present invention further provides a mobile terminal, where the mobile terminal includes: a detecting module, configured to detect whether an authentication mode is enabled when a session incoming call is received; and an acquiring module, configured to: When detecting that the authentication mode is enabled, the comparison request information stored locally is automatically obtained; the transceiver module is configured to send the comparison request information to the main calling party by using DTMF dual tone multi-frequency, and receive the main call.
  • a detecting module configured to detect whether an authentication mode is enabled when a session incoming call is received
  • an acquiring module configured to: When detecting that the authentication mode is enabled, the comparison request information stored locally is automatically obtained; the transceiver module is configured to send the comparison request information to the main calling party by using DTMF dual tone multi-frequency, and receive the main call.
  • the party searches for and passes the comparison key information fed back by the DTMF according to the comparison request information; the authentication module is configured to perform the comparison authentication on the comparison key information and the key stored in the local; the session module uses When the authentication is passed, the session incoming call is accessed, and when the authentication fails, the session incoming call is rejected or ignored.
  • the mobile terminal further includes: a setting module, configured to enable the authentication mode according to a user setting according to a daily time period, setting according to a spatial location, or setting a weekly time.
  • a setting module configured to enable the authentication mode according to a user setting according to a daily time period, setting according to a spatial location, or setting a weekly time.
  • the setting module is specifically configured to: set the open authentication mode according to the daily time period, including: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00;
  • the authentication mode is enabled: the authentication mode is turned off in the workplace and the authentication mode is turned on in the residence, or the authentication mode is turned on in the driving position;
  • the authentication mode is set according to the weekly time: the authentication mode is turned off from Monday to Friday and is in the Saturday to the week.
  • the authentication mode is enabled on the day.
  • an embodiment of the present invention further provides a mobile terminal, where the mobile terminal includes: a transceiver module, configured to detect and receive, when a session is called out, whether the called party has a comparison sent by DTMF. a requesting module, configured to search for the comparison key information locally according to the comparison request information when the comparison request information is detected; the transceiver module is further configured to: use the comparison key The information is fed back to the called party by DTMF, wherein the comparison key information is used for the called party to perform a comparative authentication with its local key to implement session exhalation when the authentication is passed, or The session call fails when the authentication fails.
  • the transceiver module is specifically configured to: encrypt the comparison key information, and feed back to the called party through DTMF after encryption.
  • the beneficial effect of the embodiment of the present invention is that, when the authentication mode is enabled, the mobile terminal can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, on the primary calling party. After the authentication is enabled, the session can be accessed. When the authentication mode is enabled, some unnecessary session calls affect normal work and life, thus effectively improving the user experience.
  • the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.
  • FIG. 1 is a flowchart of an embodiment of a DTMF-based session authentication method according to the present invention
  • FIG. 2 is a structural block diagram of an embodiment of a mobile terminal employing the session authentication method shown in FIG. 1;
  • FIG. 3 is a flow chart of another embodiment of a DTMF-based session authentication method according to the present invention.
  • FIG. 4 is a structural block diagram of another embodiment of a mobile terminal employing the session authentication method shown in FIG.
  • FIG. 1 is a flowchart of an embodiment of a DTMF-based session authentication method according to the present invention.
  • the session authentication method includes but is not limited to the following steps.
  • Step S100 When receiving the session incoming call, the mobile terminal detects whether the authentication mode is enabled.
  • step S100 for example, most users prefer not to turn off the mobile phone at night, fixed mobile phone and other mobile terminals to rest, if a phone call is suddenly entered in the middle of the night, the result is that the harassing call will seriously affect the user's rest and sleep; If the mobile phone is turned off, many users will miss important calls due to work requirements. Therefore, this embodiment adopts the set authentication mode to implement incoming call management for the session.
  • the mobile terminal in this embodiment may be set according to the daily time period of the user, according to the spatial location setting or the weekly time setting. The way to open the authentication mode.
  • setting the authentication mode to be set according to the daily time period includes: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00.
  • the specific time period and time point can be set by the user, for example, the authentication mode can be automatically turned on at 7 pm.
  • Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the location.
  • the mobile terminal intelligently judges the spatial location of the current user through the GPS or the mobile network. For example, if the user is in the working area, the user is considered to be in the working mode, and the user is not required to start the authentication mode. In the residential area and other areas, the authentication mode is automatically enabled.
  • the determination of the spatial location may be based on the overall assessment of the partial area in the cloud or the network, and will not be described in detail herein.
  • the authentication mode can be automatically turned on to ensure driving safety.
  • the mobile terminal in this embodiment can also determine whether the user is in a publicly recognized vacation place, such as the Great Wall, etc., and intelligently turns on.
  • Setting the authentication mode by weekly time includes turning off the authentication mode from Monday to Friday and enabling the authentication mode from Saturday to Sunday.
  • the specific date can be set by the user. For example, if the user's working day is Tuesday-Saturday, the authentication mode can be started outside the non-working day, and will not be described in detail herein.
  • step S101 when it is detected that the authentication mode is enabled, the comparison request information stored locally is automatically acquired.
  • the embodiment may adopt TEE (Trusted execution) Environment, security zone), for example, TEE can be used
  • TEE Trusted execution
  • the API (interface) mode implements security monitoring of session information and the like.
  • the comparison request information may be a specific character string or the like, and is not described in detail herein.
  • Step S102 The mobile terminal sends the comparison request information to the primary calling party through the DTMF dual tone multi-frequency, and receives the comparison key information that the primary calling party searches for and passes the DTMF according to the comparison request information.
  • Step S103 the mobile terminal performs the comparison authentication with the comparison key information and the key stored in the local. Wherein, step S104 is performed when the comparison authentication passes, and step S105 is performed when the comparison authentication fails.
  • Step S104 the mobile terminal accesses the session incoming call.
  • step S105 the session incoming call is rejected or ignored.
  • an encrypted form may be adopted to ensure the security performance of the operation.
  • FIG. 2 is a structural block diagram of an embodiment of a mobile terminal using the session authentication method shown in FIG. 1.
  • the mobile terminal in this embodiment includes but is not limited to the detection module 21, the acquisition module 22, and the transceiver module 23. , the authentication module 24, the session module 25, the storage module 26, and the like.
  • the detecting module 21 is configured to detect whether the authentication mode is enabled when the session incoming call is received.
  • the session incoming call may detect the incoming call of the session for the session module 25.
  • the obtaining module 22 is configured to automatically obtain the comparison request information stored locally when detecting that the authentication mode is enabled.
  • the comparison request information may be stored in the storage module 26, and may be present in the network, which is not limited herein.
  • the transceiver module 23 is configured to send the comparison request information to the primary calling party by using DTMF dual tone multi-frequency, and receive the comparison key information that the primary calling party searches for and passes through the DTMF according to the comparison request information.
  • the transceiver module 23 of this embodiment may be a DTMF module in the prior art.
  • the authentication module 24 is configured to perform the authentication verification on the comparison key information and the key stored in the local.
  • the session module 25 is configured to access the session incoming call when the authentication is passed, and reject or ignore the session incoming when the authentication fails.
  • the session module 25 can be a prior art telephone module or the like, which is not limited herein.
  • the mobile terminal in this embodiment may further include: a setting module, configured to enable the authentication mode according to the user setting according to the daily time period, setting according to the spatial location, or setting the weekly time.
  • a setting module configured to enable the authentication mode according to the user setting according to the daily time period, setting according to the spatial location, or setting the weekly time.
  • the setting module of the embodiment may be specifically configured to: set the open authentication mode according to the daily time period, including: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00;
  • Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the position;
  • setting the authentication mode according to the weekly time includes: turning off the authentication mode from Monday to Friday The authentication mode is turned on from Saturday to Sunday.
  • the session incoming call in this embodiment may be a phone, a short message, or a third-party application phone, and is not limited herein.
  • the mobile terminal when the authentication mode is enabled, can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, the primary calling party can pass the authentication before accessing the session, thereby avoiding the authentication mode being enabled.
  • the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.
  • FIG. 3 is a flowchart of another embodiment of the DTMF-based session authentication method according to the present invention.
  • the session authentication method in this embodiment includes but is not limited to the following steps.
  • Step S300 When the session call is made, the mobile terminal detects and receives whether the called party has the comparison request information sent by the DTMF.
  • Step S301 when detecting the comparison request information, the mobile terminal searches for the comparison key information locally according to the comparison request information.
  • Step S302 the mobile terminal feeds the comparison key information to the called party through DTMF, wherein the comparison key information is used for the called party to perform the comparison authentication with the local key, so as to be implemented when the authentication is passed.
  • the session is called out, or the session call fails when the authentication fails.
  • step S302 when the mobile terminal feeds the comparison key information to the called party through DTMF, the mobile terminal may encrypt the comparison key information and feed back to the called party through DTMF after encryption.
  • FIG. 4 is a structural block diagram of another embodiment of a mobile terminal using the session authentication method shown in FIG. 3.
  • the mobile terminal in this embodiment includes a session module 41, a transceiver module 42, a lookup module 43, and a storage module. 44 and encryption module 45.
  • the session module 41 is configured to perform a session incoming or outgoing call.
  • the transceiver module 42 is configured to detect and receive, when the session module 41 performs a session call, whether the called party has the comparison request information sent by the DTMF.
  • the searching module 43 is configured to locally search for the comparison key information according to the comparison request information when the comparison request information is detected.
  • the transceiver module 42 is configured to feed the comparison key information to the called party through the DTMF.
  • the comparison key information is used for the called party to perform the authentication with the local key to implement the session call out when the authentication is passed, or the session call fails when the authentication fails.
  • the transceiver module 42 of this embodiment may be specifically configured to encrypt the comparison key information and feed back to the called party through DTMF after encryption.
  • the specific encryption process can be performed by the encryption module 45.
  • the storage module 44 can be used to store the comparison key information.
  • the session callout in this embodiment may be a phone, an information, or a third-party application phone (such as QQ voice, SKYPE voice, etc.), which is not limited herein.
  • the TEE in this embodiment may include two modes: one is a normal mode (Normal) World), you can execute rich instructions for the REE environment (Rich Execution Environment); the other is safe mode (secure Only the trusted command, that is, the TEE environment (Trusted Execution Environment), is correspondingly the authentication mode of the embodiment.
  • a TEE APP (TEE application) and a TEE OS (TEE operating system) can be installed in advance, where TEE
  • the OS specifically includes secure storage and secure cryptograph, and sets information that can be authenticated and securely recorded on the TEE OS secure.
  • the storage, or encryption of the key, can be limited to the TEE OS.
  • secure cryptograph and secure The operation call of storage takes place in the Trusted APP.
  • the interface that the two interact with is the API of the Trusted app.
  • the main function of the APP is to decrypt the key information sent by the main caller (which can be encrypted) to the Trusted APP through the TEE API for decryption, and store the original in the original to Secure.
  • the local keys in the storage are compared.
  • the TEE API can be configured with two APIs to implement incoming and outgoing calls.
  • the specific definitions are as follows:
  • Bool QualifyKey (CryptographKey) is used to check whether the encrypted comparison key information passes the authentication.
  • the parameter CryptographKey is the encrypted key, and the return value can be set to bool. If True is returned for the authentication, False is The verification failed.
  • GetKey() is used to obtain the encrypted key stored locally. It can be obtained directly by the return value or by parameters.
  • the decryption function can be decrypted in the TEE, and the specific definition is as follows:
  • the local setting is read to confirm whether the authentication mode function has been enabled.
  • the markup about the authentication mode can be stored in the local file system and the timed auto-on function can be enabled. Whenever a number is called in, it is read whether this flag has been set to 1 (here 1 is true, that is, it is determined to be enabled), and its specific settings are defined as follows:
  • Bool CheckBeforeCallConnection() determines whether to access the call according to the return value of 1 and 0, that is, whether to enable the authentication mode, wherein if it is already enabled, a specific DTMF signal is sent to the primary caller to indicate that the call needs to be performed first. Comparative certification;
  • Bool SendDTMF (QualifyFirstDTMF), where QualifyFirstDTMF is a defined DTMF, which is used to determine whether the transmission is successful according to the return value flag.
  • the GetKey() function is used to obtain the encrypted comparison key information. Then, the returned encrypted authentication key information is sent back to the called party through DTMF in a non-secure environment;
  • the called party acquires the received DTMF signal by using GetDTMF(), and then transmits the encrypted comparison key information obtained from the DTMF signal to the security environment for parsing, and calls TEE.
  • the mobile terminal when the authentication mode is enabled, can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, the primary calling party can pass the authentication before accessing the session, thereby avoiding the authentication mode being enabled.
  • the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.

Abstract

Provided are a mobile terminal and a DTMF-based session authentication method therefor. The session authentication method comprises: detecting whether an authentication mode is started up or not; automatically acquiring verification request information stored locally; transmitting the verification request information to a calling party via the DTMF, and receiving verification key information looked up by the calling party according to the verification request information and fed back via the DTMF; performing verification authentication on the key information and a key stored locally; and when the verification authentication is passed, accessing an inbound session. By means of the method of setting the authentication mode and by automatically transmitting verification via a DTMF, the method is convenient for a user to operate and use.

Description

移动终端及其基于DTMF的会话认证方法 Mobile terminal and DTMF-based session authentication method thereof
【技术领域】[Technical Field]
本发明属于会话认证技术领域,具体涉及一种基于DTMF(dual-tone multi frequency,双音多频)的会话认证方法,还涉及一种采用该认证方法的主呼叫方和被呼叫方移动终端。The invention belongs to the field of session authentication technology, and particularly relates to a DTMF based (dual-tone multi) A session authentication method for frequency, dual tone multi-frequency, and a primary caller and a called party mobile terminal using the authentication method.
【背景技术】 【Background technique】
现有技术中,随着移动终端的逐渐普及,用户使用和接触移动终端的时间越来越长,频率越来越高,部分已经严重影响用户的日常生活。In the prior art, with the gradual popularization of mobile terminals, users use and contact mobile terminals for longer and longer, and the frequency is getting higher and higher, and some of them have seriously affected the daily life of users.
举例而言,用户在非工作时间,不希望被过多的普通电话、信息或邮件等会话打扰,因此,被迫之下要在非工作时间采用新的移动终端或号码;也有部分用户会设置黑名单形式,但是此种方式并不灵活,而且需要反复设置,还可能在必要的时候把必要的名单屏蔽而漏掉,造成一定的麻烦和困扰。For example, during non-working hours, users do not want to be disturbed by excessive ordinary calls, messages, or emails. Therefore, they are forced to adopt new mobile terminals or numbers during non-working hours; some users will set them up. Blacklist form, but this method is not flexible, and it needs to be set up repeatedly. It may also mask the necessary list and miss it when necessary, causing certain troubles and troubles.
此外,在本技术领域中,CN200710015787.9揭示了一种电话加密防骚扰装置,具体为在电话机接线端设置一电路结构,电路结构包括检测电路、音频解码电路、单片机等,当有电话打入时,该电路结构首先开始工作,并提示来电方输入密码,当密码正确后方可接入电话机,接入后,电话机才会启动响铃等提示信号装置。然后,不难看出,电话加密防骚扰装置需要来电方手动输入密码,而且接入过程复杂,也在一定程度上干扰了用户的使用,使用体验较差。In addition, in the technical field, CN200710015787.9 discloses a telephone encryption anti-harassment device, specifically, a circuit structure is arranged at the terminal of the telephone, and the circuit structure includes a detection circuit, an audio decoding circuit, a single-chip microcomputer, etc. When entering, the circuit structure first starts to work, and prompts the caller to input the password. When the password is correct, the phone can be connected to the phone. After the access, the phone will start the ringing and other prompt signal devices. Then, it is not difficult to see that the telephone encryption anti-harassment device requires the caller to manually input the password, and the access process is complicated, and also interferes with the user's use to a certain extent, and the use experience is poor.
【发明内容】 [Summary of the Invention]
有鉴于此,本发明实施例提供一种移动终端及其基于DTMF的会话认证方法,能够有效地改善用户使用体验,智能灵活地实现对会话的自动管理,避免过多的会话干扰用户的日常生活。In view of this, the embodiments of the present invention provide a mobile terminal and a DTMF-based session authentication method, which can effectively improve the user experience, intelligently and flexibly implement automatic management of the session, and avoid excessive conversations to interfere with the daily life of the user. .
为解决上述技术问题,本发明实施例提供一种基于DTMF的会话认证方法,其中,所述会话认证方法包括:移动终端在收到会话呼入时,检测是否已开启认证模式;在检测到已开启认证模式时,自动获取存储于本地的较验请求信息;所述移动终端通过DTMF双音多频将所述较验请求信息发送给主呼叫方,并接收所述主呼叫方根据所述较验请求信息查找并通过DTMF所反馈的较验密钥信息;所述移动终端将所述较验密钥信息与存储于本地的密钥进行较验认证;在较验认证通过时,所述移动终端接入所述会话呼入,在较验认证失败时则拒接或忽略所述会话呼入。To solve the above technical problem, the embodiment of the present invention provides a DTMF-based session authentication method, where the session authentication method includes: when the mobile terminal receives a session incoming call, it detects whether the authentication mode is enabled; When the authentication mode is enabled, the comparison request information stored locally is automatically acquired; the mobile terminal sends the comparison request information to the primary calling party through DTMF dual tone multi-frequency, and receives the primary calling party according to the comparison. The request information is searched for and passed the comparison key information fed back by the DTMF; the mobile terminal performs the comparison authentication with the stored key information; when the comparison authentication passes, the movement The terminal accesses the session incoming call, and rejects or ignores the session incoming call when the comparison authentication fails.
其中,所述移动终端在收到会话呼入时,检测是否已开启认证模式的步骤之前,包括:移动终端根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启所述认证模式。Before the step of detecting, by the mobile terminal, that the authentication mode has been enabled, the mobile terminal includes: setting, by the user according to the time interval of the user, setting according to the location of the space, or setting the time of the week according to the manner of the user. The authentication mode is turned on.
其中:按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式;按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式;按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。Among them: setting the authentication mode according to the daily time period includes: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22 to 7 hours; setting the authentication mode according to the spatial location setting includes: closing at the workplace In the authentication mode, the authentication mode is enabled at the residence, or the authentication mode is turned on when driving. The authentication mode is set by the weekly time: the authentication mode is turned off from Monday to Friday and the authentication mode is turned on from Saturday to Sunday.
其中,所述会话认证方法还包括:移动终端在进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息;在检测到所述较验请求信息时,所述移动终端根据所述较验请求信息在本地查找较验密钥信息;所述移动终端将所述较验密钥信息通过DTMF反馈给所述被呼叫方,其中,所述较验密钥信息用于所述被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则所述会话呼出失败。The session authentication method further includes: when the mobile terminal performs the session call, detecting and receiving whether the called party has the comparison request information sent by using the DTMF; and when detecting the comparison request information, the mobile terminal Searching for the comparison key information locally according to the comparison request information; the mobile terminal feeds the comparison key information to the called party through DTMF, wherein the comparison key information is used by the The called party performs a comparative authentication with its local key to implement the session outgoing call when the authentication is passed, or the session call fails when the authentication fails.
其中,所述移动终端将所述较验密钥信息通过DTMF反馈给所述被呼叫方的步骤,包括:所述移动终端将所述较验密钥信息进行加密,并在加密后通过DTMF反馈给所述被呼叫方。The step of the mobile terminal feeding back the comparison key information to the called party by using DTMF, comprising: the mobile terminal encrypting the comparison key information, and transmitting DTMF feedback after encryption Give the called party.
为解决上述技术问题,本发明实施例还提供一种移动终端,其中,所述移动终端包括:检测模块,用于在收到会话呼入时,检测是否已开启认证模式;获取模块,用于在检测到已开启认证模式时,自动获取存储于本地的较验请求信息;收发模块,用于通过DTMF双音多频将所述较验请求信息发送给主呼叫方,并接收所述主呼叫方根据所述较验请求信息查找并通过DTMF所反馈的较验密钥信息;认证模块,用于将所述较验密钥信息与存储于本地的密钥进行较验认证;会话模块,用于在较验认证通过时,接入所述会话呼入,在较验认证失败时则拒接或忽略所述会话呼入。In order to solve the above technical problem, the embodiment of the present invention further provides a mobile terminal, where the mobile terminal includes: a detecting module, configured to detect whether an authentication mode is enabled when a session incoming call is received; and an acquiring module, configured to: When detecting that the authentication mode is enabled, the comparison request information stored locally is automatically obtained; the transceiver module is configured to send the comparison request information to the main calling party by using DTMF dual tone multi-frequency, and receive the main call. The party searches for and passes the comparison key information fed back by the DTMF according to the comparison request information; the authentication module is configured to perform the comparison authentication on the comparison key information and the key stored in the local; the session module uses When the authentication is passed, the session incoming call is accessed, and when the authentication fails, the session incoming call is rejected or ignored.
其中,所述移动终端还包括:设置模块,用于根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启所述认证模式。The mobile terminal further includes: a setting module, configured to enable the authentication mode according to a user setting according to a daily time period, setting according to a spatial location, or setting a weekly time.
其中,所述设置模块,具体用于:按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式;按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式;按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。The setting module is specifically configured to: set the open authentication mode according to the daily time period, including: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00; The authentication mode is enabled: the authentication mode is turned off in the workplace and the authentication mode is turned on in the residence, or the authentication mode is turned on in the driving position; the authentication mode is set according to the weekly time: the authentication mode is turned off from Monday to Friday and is in the Saturday to the week. The authentication mode is enabled on the day.
为解决上述技术问题,本发明实施例还提供一种移动终端,其中,所述移动终端包括:收发模块,用于在进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息;查找模块,用于在检测到所述较验请求信息时,根据所述较验请求信息在本地查找较验密钥信息;所述收发模块,还用于将所述较验密钥信息通过DTMF反馈给所述被呼叫方,其中,所述较验密钥信息用于所述被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则所述会话呼出失败。In order to solve the above technical problem, an embodiment of the present invention further provides a mobile terminal, where the mobile terminal includes: a transceiver module, configured to detect and receive, when a session is called out, whether the called party has a comparison sent by DTMF. a requesting module, configured to search for the comparison key information locally according to the comparison request information when the comparison request information is detected; the transceiver module is further configured to: use the comparison key The information is fed back to the called party by DTMF, wherein the comparison key information is used for the called party to perform a comparative authentication with its local key to implement session exhalation when the authentication is passed, or The session call fails when the authentication fails.
其中,所述收发模块,具体用于:将所述较验密钥信息进行加密,并在加密后通过DTMF反馈给所述被呼叫方。The transceiver module is specifically configured to: encrypt the comparison key information, and feed back to the called party through DTMF after encryption.
通过上述技术方案,本发明实施例的有益效果是:本发明实施例移动终端在开启了认证模式时,能够自动根据认证模式反馈较验请求,而无需用户手动输入操作,同时,在主呼叫方通过验证后才能接入会话,避免在开启了认证模式时,一些不必要的会话呼入影响正常工作、生活,从而有效地改善用户体验。本发明实施例通过设置认证模式的方式,同时通过DTMF自动发送验证,方便用户操作使用,给用户带来便利。With the above technical solution, the beneficial effect of the embodiment of the present invention is that, when the authentication mode is enabled, the mobile terminal can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, on the primary calling party. After the authentication is enabled, the session can be accessed. When the authentication mode is enabled, some unnecessary session calls affect normal work and life, thus effectively improving the user experience. In the embodiment of the present invention, the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.
【附图说明】 [Description of the Drawings]
为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings used in the description of the embodiments will be briefly described below. It is obvious that the drawings in the following description are only some embodiments of the present invention. Other drawings may also be obtained from those of ordinary skill in the art in light of the inventive work.
图1是本发明基于DTMF的会话认证方法一实施例的流程图;1 is a flowchart of an embodiment of a DTMF-based session authentication method according to the present invention;
图2是采用图1所示会话认证方法的移动终端一实施例结构框图;2 is a structural block diagram of an embodiment of a mobile terminal employing the session authentication method shown in FIG. 1;
图3是本发明基于DTMF的会话认证方法另一实施例的流程图;以及3 is a flow chart of another embodiment of a DTMF-based session authentication method according to the present invention;
图4是采用图3所示会话认证方法的移动终端另一实施例结构框图。4 is a structural block diagram of another embodiment of a mobile terminal employing the session authentication method shown in FIG.
【具体实施方式】【detailed description】
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅是本发明的一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其它实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention are clearly and completely described in the following with reference to the accompanying drawings in the embodiments of the present invention. It is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments obtained by a person of ordinary skill in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
请参阅图1,图1是本发明基于DTMF的会话认证方法一实施例的流程图,在本实施例中,会话认证方法包括但不限于以下步骤。Referring to FIG. 1, FIG. 1 is a flowchart of an embodiment of a DTMF-based session authentication method according to the present invention. In this embodiment, the session authentication method includes but is not limited to the following steps.
步骤S100,移动终端在收到会话呼入时,检测是否已开启认证模式。Step S100: When receiving the session incoming call, the mobile terminal detects whether the authentication mode is enabled.
在步骤S100中,举例而言,大部分用户喜欢夜间不关闭手机、固定座机电话等移动终端休息,如果半夜时分忽然一个电话拨进来,结果发现是骚扰电话,会严重影响用户的休息睡眠;但是如果关闭手机,很多用户由于工作需要抑或是担心会漏掉重要电话:因此,本实施例采用设置的认证模式来实现对会话的呼入管理。In step S100, for example, most users prefer not to turn off the mobile phone at night, fixed mobile phone and other mobile terminals to rest, if a phone call is suddenly entered in the middle of the night, the result is that the harassing call will seriously affect the user's rest and sleep; If the mobile phone is turned off, many users will miss important calls due to work requirements. Therefore, this embodiment adopts the set authentication mode to implement incoming call management for the session.
进一步而言,在移动终端在收到会话呼入时,检测是否已开启认证模式之前,本实施例的移动终端可以根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启认证模式。Further, before the mobile terminal receives the session incoming call, before detecting whether the authentication mode is enabled, the mobile terminal in this embodiment may be set according to the daily time period of the user, according to the spatial location setting or the weekly time setting. The way to open the authentication mode.
具体来说,按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式。当然,在其他实施例中,具体的时间段和时间点,用户可以自行设置,譬如晚上7时即可以自动开启认证模式。Specifically, setting the authentication mode to be set according to the daily time period includes: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00. Of course, in other embodiments, the specific time period and time point can be set by the user, for example, the authentication mode can be automatically turned on at 7 pm.
按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式。譬如,移动终端通过GPS或者移动网络而智能地判断目前用户所处的空间位置,譬如判断用户处于工作场所集合的区域,则认为用户处于上班工作模式,此时无需启动认证模式,而判断到用户处于住宅小区等区域,则自动开启认证模式,其中,对于空间位置的判断,可以根据云端或者网络端关于此部分区域的总体进行评估,在此不作细述。此外,为了提高驾驶安全,避免用户在驾驶时过多地接触移动终端,而可以判断用户是否处于驾驶的车辆中,具体来说是作为驾驶员时,也可以自动开启认证模式,从而保证驾驶安全。当然,本实施例移动终端也可以判断用户是否处于公众认知的休假场所,譬如长城等等而智能地开启。Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the location. For example, the mobile terminal intelligently judges the spatial location of the current user through the GPS or the mobile network. For example, if the user is in the working area, the user is considered to be in the working mode, and the user is not required to start the authentication mode. In the residential area and other areas, the authentication mode is automatically enabled. The determination of the spatial location may be based on the overall assessment of the partial area in the cloud or the network, and will not be described in detail herein. In addition, in order to improve driving safety and avoid excessive contact with the mobile terminal during driving, it is possible to determine whether the user is in a driving vehicle, specifically, as a driver, the authentication mode can be automatically turned on to ensure driving safety. . Of course, the mobile terminal in this embodiment can also determine whether the user is in a publicly recognized vacation place, such as the Great Wall, etc., and intelligently turns on.
按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。当然,在其他实施例中,具体的日期,用户可以自行设置,譬如用户的工作日为周二-周六,则可以在非工作日外启动认证模式,在此不作细述。Setting the authentication mode by weekly time includes turning off the authentication mode from Monday to Friday and enabling the authentication mode from Saturday to Sunday. Of course, in other embodiments, the specific date can be set by the user. For example, if the user's working day is Tuesday-Saturday, the authentication mode can be started outside the non-working day, and will not be described in detail herein.
步骤S101,在检测到已开启认证模式时,自动获取存储于本地的较验请求信息。In step S101, when it is detected that the authentication mode is enabled, the comparison request information stored locally is automatically acquired.
在步骤S101中,具体而言,本实施例可以采用TEE(Trusted execution environment,安全区域)的方式实现,譬如,可以采用TEE API(接口)的方式,实现对会话信息等的安全监控。其中,较验请求信息可以为特定的字符串等,在此不作细述。In step S101, specifically, the embodiment may adopt TEE (Trusted execution) Environment, security zone), for example, TEE can be used The API (interface) mode implements security monitoring of session information and the like. The comparison request information may be a specific character string or the like, and is not described in detail herein.
步骤S102,移动终端通过DTMF双音多频将较验请求信息发送给主呼叫方,并接收主呼叫方根据较验请求信息查找并通过DTMF所反馈的较验密钥信息。Step S102: The mobile terminal sends the comparison request information to the primary calling party through the DTMF dual tone multi-frequency, and receives the comparison key information that the primary calling party searches for and passes the DTMF according to the comparison request information.
步骤S103,移动终端将较验密钥信息与存储于本地的密钥进行较验认证。其中,在较验认证通过时执行步骤S104,在在较验认证失败时则执行步骤S105。Step S103, the mobile terminal performs the comparison authentication with the comparison key information and the key stored in the local. Wherein, step S104 is performed when the comparison authentication passes, and step S105 is performed when the comparison authentication fails.
步骤S104,移动终端接入会话呼入。Step S104, the mobile terminal accesses the session incoming call.
步骤S105,拒接或忽略会话呼入。In step S105, the session incoming call is rejected or ignored.
需要指出的是,本实施例发送和接收DTMF的过程中,均可以采用加密形式,以确保操作使用的安全性能。It should be noted that in the process of sending and receiving DTMF in this embodiment, an encrypted form may be adopted to ensure the security performance of the operation.
接着,请结合图1参阅图2,图2是采用图1所示会话认证方法的移动终端一实施例结构框图,本实施例移动终端包括但不限于检测模块21、获取模块22、收发模块23、认证模块24、会话模块25和存储模块26等。Referring to FIG. 2, FIG. 2 is a structural block diagram of an embodiment of a mobile terminal using the session authentication method shown in FIG. 1. The mobile terminal in this embodiment includes but is not limited to the detection module 21, the acquisition module 22, and the transceiver module 23. , the authentication module 24, the session module 25, the storage module 26, and the like.
具体而言,检测模块21用于在收到会话呼入时,检测是否已开启认证模式。其中,会话呼入可以为会话模块25检测到会话的呼入。Specifically, the detecting module 21 is configured to detect whether the authentication mode is enabled when the session incoming call is received. The session incoming call may detect the incoming call of the session for the session module 25.
获取模块22用于在检测到已开启认证模式时,自动获取存储于本地的较验请求信息。其中,较验请求信息可以存储于存储模块26中,当然,也可以存在于网络端,在此不作限定。The obtaining module 22 is configured to automatically obtain the comparison request information stored locally when detecting that the authentication mode is enabled. The comparison request information may be stored in the storage module 26, and may be present in the network, which is not limited herein.
收发模块23用于通过DTMF双音多频将较验请求信息发送给主呼叫方,并接收主呼叫方根据较验请求信息查找并通过DTMF所反馈的较验密钥信息。具体而言,本实施例的收发模块23可以为现有技术中的DTMF模块。The transceiver module 23 is configured to send the comparison request information to the primary calling party by using DTMF dual tone multi-frequency, and receive the comparison key information that the primary calling party searches for and passes through the DTMF according to the comparison request information. Specifically, the transceiver module 23 of this embodiment may be a DTMF module in the prior art.
认证模块24用于将较验密钥信息与存储于本地的密钥进行较验认证。The authentication module 24 is configured to perform the authentication verification on the comparison key information and the key stored in the local.
会话模块25用于在较验认证通过时,接入会话呼入,在较验认证失败时则拒接或忽略会话呼入。其中,会话模块25可以为现有技术电话模块等等,在此不作限定。The session module 25 is configured to access the session incoming call when the authentication is passed, and reject or ignore the session incoming when the authentication fails. The session module 25 can be a prior art telephone module or the like, which is not limited herein.
需要说明的是,为实现上述过程,本实施例移动终端还可以包括:设置模块,用于根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启认证模式。It should be noted that, in order to implement the foregoing process, the mobile terminal in this embodiment may further include: a setting module, configured to enable the authentication mode according to the user setting according to the daily time period, setting according to the spatial location, or setting the weekly time.
如前所述,本实施例的设置模块,具体可以用于:按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式;按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式;按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。As described above, the setting module of the embodiment may be specifically configured to: set the open authentication mode according to the daily time period, including: turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00; Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the position; setting the authentication mode according to the weekly time includes: turning off the authentication mode from Monday to Friday The authentication mode is turned on from Saturday to Sunday.
其中,本实施例的会话呼入可以为电话、短信或第三方应用电话等,在此不作限定。The session incoming call in this embodiment may be a phone, a short message, or a third-party application phone, and is not limited herein.
本发明实施例移动终端在开启了认证模式时,能够自动根据认证模式反馈较验请求,而无需用户手动输入操作,同时,在主呼叫方通过验证后才能接入会话,避免在开启了认证模式时,一些不必要的会话呼入影响正常工作、生活,从而有效地改善用户体验。本发明实施例通过设置认证模式的方式,同时通过DTMF自动发送验证,方便用户操作使用,给用户带来便利。In the embodiment of the present invention, when the authentication mode is enabled, the mobile terminal can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, the primary calling party can pass the authentication before accessing the session, thereby avoiding the authentication mode being enabled. When unnecessary session calls affect normal work and life, the user experience is effectively improved. In the embodiment of the present invention, the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.
上述实施例以被呼叫方进行说明,接着请参阅图3,图3是本发明基于DTMF的会话认证方法另一实施例的流程图,本实施例的会话认证方法包括但不限于以下步骤。The foregoing embodiment is described by the called party. Referring to FIG. 3, FIG. 3 is a flowchart of another embodiment of the DTMF-based session authentication method according to the present invention. The session authentication method in this embodiment includes but is not limited to the following steps.
步骤S300,移动终端在进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息。Step S300: When the session call is made, the mobile terminal detects and receives whether the called party has the comparison request information sent by the DTMF.
步骤S301,在检测到较验请求信息时,移动终端根据较验请求信息在本地查找较验密钥信息。Step S301, when detecting the comparison request information, the mobile terminal searches for the comparison key information locally according to the comparison request information.
步骤S302,移动终端将较验密钥信息通过DTMF反馈给被呼叫方,其中,较验密钥信息用于被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则会话呼出失败。Step S302, the mobile terminal feeds the comparison key information to the called party through DTMF, wherein the comparison key information is used for the called party to perform the comparison authentication with the local key, so as to be implemented when the authentication is passed. The session is called out, or the session call fails when the authentication fails.
在步骤S302中,移动终端将较验密钥信息通过DTMF反馈给被呼叫方时,移动终端可以将较验密钥信息进行加密,并在加密后通过DTMF反馈给被呼叫方。In step S302, when the mobile terminal feeds the comparison key information to the called party through DTMF, the mobile terminal may encrypt the comparison key information and feed back to the called party through DTMF after encryption.
请结合图3参阅图4,图4是采用图3所示会话认证方法的移动终端另一实施例结构框图,本实施例的移动终端包括会话模块41、收发模块42、查找模块43、存储模块44和加密模块45。Referring to FIG. 4, FIG. 4 is a structural block diagram of another embodiment of a mobile terminal using the session authentication method shown in FIG. 3. The mobile terminal in this embodiment includes a session module 41, a transceiver module 42, a lookup module 43, and a storage module. 44 and encryption module 45.
其中,会话模块41用于进行会话呼入或呼出。The session module 41 is configured to perform a session incoming or outgoing call.
收发模块42用于在会话模块41进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息。The transceiver module 42 is configured to detect and receive, when the session module 41 performs a session call, whether the called party has the comparison request information sent by the DTMF.
查找模块43用于在检测到较验请求信息时,根据较验请求信息在本地查找较验密钥信息。The searching module 43 is configured to locally search for the comparison key information according to the comparison request information when the comparison request information is detected.
接着,收发模块42用于将较验密钥信息通过DTMF反馈给被呼叫方。其中,较验密钥信息用于被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则会话呼出失败。Then, the transceiver module 42 is configured to feed the comparison key information to the called party through the DTMF. The comparison key information is used for the called party to perform the authentication with the local key to implement the session call out when the authentication is passed, or the session call fails when the authentication fails.
本实施例的收发模块42具体可以用于将较验密钥信息进行加密,并在加密后通过DTMF反馈给被呼叫方。其中,具体的加密过程可以通过加密模块45进行。存储模块44可以用于存储较验密钥信息。The transceiver module 42 of this embodiment may be specifically configured to encrypt the comparison key information and feed back to the called party through DTMF after encryption. The specific encryption process can be performed by the encryption module 45. The storage module 44 can be used to store the comparison key information.
其中,本实施例的会话呼出可以为电话、信息或者第三方应用电话(譬如QQ语音、SKYPE语音等),在此不作限定。The session callout in this embodiment may be a phone, an information, or a third-party application phone (such as QQ voice, SKYPE voice, etc.), which is not limited herein.
为更好地理解图1到图4所述的实施例,下面以手机为例进行描述。In order to better understand the embodiment described in FIG. 1 to FIG. 4, a mobile phone will be described below as an example.
其中,本实施例的TEE中可以包括两种模式:一种是正常模式(Normal World),可以执行富指令,为REE环境(Rich Execution Environment);另一种是安全模式(secure world),只能执行受信指令,即为TEE环境(Trusted Execution Environment),对应地,为本实施例的认证模式。The TEE in this embodiment may include two modes: one is a normal mode (Normal) World), you can execute rich instructions for the REE environment (Rich Execution Environment); the other is safe mode (secure Only the trusted command, that is, the TEE environment (Trusted Execution Environment), is correspondingly the authentication mode of the embodiment.
本实施例预先可以安装TEE APP(TEE应用)和TEE OS(TEE操作系统),其中,TEE OS具体可以包括secure storage和secure cryptograph,并设置可以将认证安全的信息记录在TEE OS的secure storage中,或者对密钥进行加密等行为都可以限定在TEE OS中。在TEE OS中,secure cryptograph和secure storage进行操作调用都发生在Trusted APP(被信任应用),两者交互的接口为Trusted app的API。In this embodiment, a TEE APP (TEE application) and a TEE OS (TEE operating system) can be installed in advance, where TEE The OS specifically includes secure storage and secure cryptograph, and sets information that can be authenticated and securely recorded on the TEE OS secure. The storage, or encryption of the key, can be limited to the TEE OS. In TEE OS, secure cryptograph and secure The operation call of storage takes place in the Trusted APP. The interface that the two interact with is the API of the Trusted app.
具体定义时,Trusted APP主要完成的功能是将主呼叫方发送来的较验密钥信息(可以为经过加密的)通过TEE API传到Trusted APP进行解密,并于原有的存储到Secure storage中本地的密钥进行比对。When specifically defined, Trusted The main function of the APP is to decrypt the key information sent by the main caller (which can be encrypted) to the Trusted APP through the TEE API for decryption, and store the original in the original to Secure. The local keys in the storage are compared.
其中,TEE API具体可以设置两个API,以实现呼入和呼出,具体定义如下:The TEE API can be configured with two APIs to implement incoming and outgoing calls. The specific definitions are as follows:
Bool QualifyKey(CryptographKey),用于检查加密过的较验密钥信息是否通过较验认证,其中参数CryptographKey为加密过的密钥,返回值可以设置为bool,若返回True为较验认证通过,False为较验认证失败;Bool QualifyKey (CryptographKey) is used to check whether the encrypted comparison key information passes the authentication. The parameter CryptographKey is the encrypted key, and the return value can be set to bool. If True is returned for the authentication, False is The verification failed.
GetKey(),用于获取本地存储的加密过的密钥,可以用返回值直接获取,也可以用参数获取。GetKey() is used to obtain the encrypted key stored locally. It can be obtained directly by the return value or by parameters.
需要说明的是,本实施例较验密钥功能调用解密函数在可以在TEE中解密,具体定义如下:It should be noted that, in this embodiment, the decryption function can be decrypted in the TEE, and the specific definition is as follows:
Decryptograph(CryptographKey),并将解密后的结果与secure storage中存储的进行比对;Decryptograph (CryptographKey), and the decrypted result and secure Alignment stored in storage;
check(Decryptograph(CryptographKey), getlocal(key)),其中,如果通过则返回为True,反之为False。Check(Decryptograph(CryptographKey), Getlocal(key)), where if it passes, it returns True, otherwise it is False.
其中,如果移动终端作为被呼叫方,在收到会话呼入时,读取本地设置,确认是否已经开启认证模式的功能。具体来说,关于认证模式的标记,可以存储在本地文件系统中并可以启用定时自动开启功能。每当有号码呼入就读取此标记位是否已经被置为1(在此以1为真,即判断为已开启),其具体设置定义如下:If the mobile terminal is the called party, when the session incoming call is received, the local setting is read to confirm whether the authentication mode function has been enabled. Specifically, the markup about the authentication mode can be stored in the local file system and the timed auto-on function can be enabled. Whenever a number is called in, it is read whether this flag has been set to 1 (here 1 is true, that is, it is determined to be enabled), and its specific settings are defined as follows:
Bool CheckBeforeCallConnection(),根据返回值为1和0来决定是否接入此次呼叫,即判断是否开启认证模式,其中,如果已经开启,则发送特定的DTMF信号给主呼叫方,用于表明需要先进行较验认证;Bool CheckBeforeCallConnection() determines whether to access the call according to the return value of 1 and 0, that is, whether to enable the authentication mode, wherein if it is already enabled, a specific DTMF signal is sent to the primary caller to indicate that the call needs to be performed first. Comparative certification;
Bool SendDTMF(QualifyFirstDTMF),其中,QualifyFirstDTMF为定义的DTMF,用于根据返回值标记确定发送是否成功。Bool SendDTMF (QualifyFirstDTMF), where QualifyFirstDTMF is a defined DTMF, which is used to determine whether the transmission is successful according to the return value flag.
而在主呼叫方:And on the main caller:
可以调用GetDTMF()获取被呼叫方发送来的DTMF并解析,若解析结果是需要先进行较验(即较验请求信息),则调用与安全环境进行交互的TEE API;You can call GetDTMF() to get the DTMF sent by the called party and parse it. If the parsing result needs to be compared first (that is, the comparison request information), the TEE that interacts with the security environment is called. API;
GetKey()函数用于获取加密的较验密钥信息。而后在非安全地环境中将返回的已经加密的较验密钥信息通过DTMF发送回被呼叫方;The GetKey() function is used to obtain the encrypted comparison key information. Then, the returned encrypted authentication key information is sent back to the called party through DTMF in a non-secure environment;
Bool SendDTMF(ChangetoDTMF(GetKey())),ChangetoDTMF可以将获取到的加密较验密钥信息转换成DTMF进行传输。Bool SendDTMF (ChangetoDTMF (GetKey())), ChangetoDTMF can convert the acquired encrypted comparison key information into DTMF for transmission.
对应地,被呼叫方利用GetDTMF()获取收到的DTMF信号,而后将从DTMF信号中获取的加密较验密钥信息传输到安全环境进行解析,调用TEE API:QualifyKey(GetDTMF()),如果较验成功则返回True,反之返回False。Correspondingly, the called party acquires the received DTMF signal by using GetDTMF(), and then transmits the encrypted comparison key information obtained from the DTMF signal to the security environment for parsing, and calls TEE. API: QualifyKey(GetDTMF()), return True if the comparison is successful, and return False if it is successful.
其中,在会话为电话时,如果是True则接通电话,如果是False则挂断电话等。Among them, when the session is a phone call, if it is True, the phone is connected, and if it is False, the phone is hung up.
本发明实施例移动终端在开启了认证模式时,能够自动根据认证模式反馈较验请求,而无需用户手动输入操作,同时,在主呼叫方通过验证后才能接入会话,避免在开启了认证模式时,一些不必要的会话呼入影响正常工作、生活,从而有效地改善用户体验。本发明实施例通过设置认证模式的方式,同时通过DTMF自动发送验证,方便用户操作使用,给用户带来便利。In the embodiment of the present invention, when the authentication mode is enabled, the mobile terminal can automatically feed back the comparison request according to the authentication mode without the user manually inputting the operation, and at the same time, the primary calling party can pass the authentication before accessing the session, thereby avoiding the authentication mode being enabled. When unnecessary session calls affect normal work and life, the user experience is effectively improved. In the embodiment of the present invention, the authentication mode is set, and the DTMF is automatically sent and verified at the same time, which is convenient for the user to operate and use, and brings convenience to the user.
以上所述仅为本发明的实施例,并非因此限制本发明的专利范围,凡是利用本发明说明书及附图内容所作的等效结构或等效流程变换,例如各实施例之间技术特征的相互结合,或直接或间接运用在其他相关的技术领域,均同理包括在本发明的专利保护范围内。The above is only the embodiment of the present invention, and is not intended to limit the scope of the invention, and the equivalent structure or equivalent flow transformation made by the description of the present invention and the contents of the drawings, for example, the mutual technical features between the embodiments. Combinations, or direct or indirect use in other related technical fields, are included within the scope of the patent protection of the present invention.

Claims (19)

  1. 一种基于DTMF的会话认证方法,其中,所述会话认证方法包括:A DTMF-based session authentication method, wherein the session authentication method includes:
    移动终端根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启所述认证模式,按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式;The mobile terminal starts the authentication mode according to the user setting according to the daily time period, setting according to the spatial location setting or setting the weekly time, and setting the authentication mode according to the daily time period includes: turning off the authentication mode during the day and turning on the authentication at night. Mode, or enable the authentication mode from 22:00 to 7:00;
    移动终端在收到会话呼入时,检测是否已开启认证模式;When receiving the session incoming call, the mobile terminal detects whether the authentication mode is enabled.
    在检测到已开启认证模式时,自动获取存储于本地的较验请求信息;When it is detected that the authentication mode is enabled, the comparison request information stored locally is automatically acquired;
    所述移动终端通过DTMF双音多频将所述较验请求信息发送给主呼叫方,并接收所述主呼叫方根据所述较验请求信息查找并通过DTMF所反馈的较验密钥信息;The mobile terminal sends the comparison request information to the primary calling party through DTMF dual tone multi-frequency, and receives the comparison key information that the primary calling party searches for and passes through the DTMF according to the comparison request information;
    所述移动终端将所述较验密钥信息与存储于本地的密钥进行较验认证;The mobile terminal performs the authentication verification on the comparison key information and the key stored in the locality;
    在较验认证通过时,所述移动终端接入所述会话呼入,在较验认证失败时则拒接或忽略所述会话呼入。When the authentication is passed, the mobile terminal accesses the session incoming call, and rejects or ignores the session incoming call when the compared authentication fails.
  2. 一种基于DTMF的会话认证方法,其中,所述会话认证方法包括:A DTMF-based session authentication method, wherein the session authentication method includes:
    移动终端在收到会话呼入时,检测是否已开启认证模式;When receiving the session incoming call, the mobile terminal detects whether the authentication mode is enabled.
    在检测到已开启认证模式时,自动获取存储于本地的较验请求信息;When it is detected that the authentication mode is enabled, the comparison request information stored locally is automatically acquired;
    所述移动终端通过DTMF双音多频将所述较验请求信息发送给主呼叫方,并接收所述主呼叫方根据所述较验请求信息查找并通过DTMF所反馈的较验密钥信息;The mobile terminal sends the comparison request information to the primary calling party through DTMF dual tone multi-frequency, and receives the comparison key information that the primary calling party searches for and passes through the DTMF according to the comparison request information;
    所述移动终端将所述较验密钥信息与存储于本地的密钥进行较验认证;The mobile terminal performs the authentication verification on the comparison key information and the key stored in the locality;
    在较验认证通过时,所述移动终端接入所述会话呼入,在较验认证失败时则拒接或忽略所述会话呼入。When the authentication is passed, the mobile terminal accesses the session incoming call, and rejects or ignores the session incoming call when the compared authentication fails.
  3. 根据权利要求2所述的会话认证方法,其中,所述移动终端在收到会话呼入时,检测是否已开启认证模式的步骤之前,包括:The session authentication method according to claim 2, wherein the step of detecting, by the mobile terminal, whether the authentication mode has been turned on when the mobile terminal receives the session incoming call comprises:
    移动终端根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启所述认证模式。The mobile terminal starts the authentication mode according to the user setting according to the daily time period, setting according to the location of the space, or setting by the weekly time.
  4. 根据权利要求3所述的会话认证方法,其中:The session authentication method according to claim 3, wherein:
    按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式。Turning on the authentication mode according to the daily time period includes turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00.
  5. 根据权利要求3所述的会话认证方法,其中:The session authentication method according to claim 3, wherein:
    按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式。Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the location.
  6. 根据权利要求3所述的会话认证方法,其中:The session authentication method according to claim 3, wherein:
    按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。Setting the authentication mode by weekly time includes turning off the authentication mode from Monday to Friday and enabling the authentication mode from Saturday to Sunday.
  7. 根据权利要求2所述的会话认证方法,其中,所述会话认证方法还包括步骤:移动终端在进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息。The session authentication method according to claim 2, wherein the session authentication method further comprises the step of: detecting, by the mobile terminal, whether the called party has the comparison request information transmitted by the DTMF when the session is called out.
  8. 根据权利要求7所述的会话认证方法,其中,所述会话认证方法还包括步骤:在检测到所述较验请求信息时,所述移动终端根据所述较验请求信息在本地查找较验密钥信息。The session authentication method according to claim 7, wherein the session authentication method further comprises the step of: when detecting the comparison request information, the mobile terminal searches for a local authentication according to the comparison request information. Key information.
  9. 根据权利要求8所述的会话认证方法,其中,所述会话认证方法还包括步骤:所述移动终端将所述较验密钥信息通过DTMF反馈给所述被呼叫方,其中,所述较验密钥信息用于所述被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则所述会话呼出失败。The session authentication method according to claim 8, wherein the session authentication method further comprises the step of: the mobile terminal feeding back the comparison key information to the called party by DTMF, wherein the comparison is performed The key information is used for the called party to perform a comparative authentication with its local key to implement the session call out when the authentication is passed, or the session call fails when the authentication fails.
  10. 根据权利要求9所述的会话认证方法,其中,所述移动终端将所述较验密钥信息通过DTMF反馈给所述被呼叫方的步骤,包括:The session authentication method according to claim 9, wherein the step of the mobile terminal feeding back the comparison key information to the called party through DTMF comprises:
    所述移动终端将所述较验密钥信息进行加密,并在加密后通过DTMF反馈给所述被呼叫方。The mobile terminal encrypts the comparison key information and feeds back to the called party through DTMF after encryption.
  11. 一种移动终端,其中,所述移动终端包括:A mobile terminal, wherein the mobile terminal comprises:
    检测模块,用于在收到会话呼入时,检测是否已开启认证模式;The detecting module is configured to detect whether the authentication mode is enabled when the session incoming call is received;
    获取模块,用于在检测到已开启认证模式时,自动获取存储于本地的较验请求信息;An obtaining module, configured to automatically obtain the comparison request information stored locally when detecting the enabled authentication mode;
    收发模块,用于通过DTMF双音多频将所述较验请求信息发送给主呼叫方,并接收所述主呼叫方根据所述较验请求信息查找并通过DTMF所反馈的较验密钥信息;a transceiver module, configured to send the comparison request information to the primary calling party by using DTMF dual tone multi-frequency, and receive the comparison key information that is searched by the primary calling party according to the comparison request information and fed back through DTMF ;
    认证模块,用于将所述较验密钥信息与存储于本地的密钥进行较验认证;An authentication module, configured to perform the authentication verification on the comparison key information and the key stored in the locality;
    会话模块,用于在较验认证通过时,接入所述会话呼入,在较验认证失败时则拒接或忽略所述会话呼入。The session module is configured to access the session incoming call when the authentication is passed, and reject or ignore the session incoming when the authentication fails.
  12. 根据权利要求11所述的移动终端,其中,所述移动终端还包括:The mobile terminal of claim 11, wherein the mobile terminal further comprises:
    设置模块,用于根据用户按每天时间段设置、按所处空间位置设置或按每周时间设置的方式开启所述认证模式。The setting module is configured to enable the authentication mode according to a user setting according to a daily time period, setting according to a spatial location, or setting by a weekly time.
  13. 根据权利要求12所述的移动终端,其中,所述设置模块,具体用于:The mobile terminal of claim 12, wherein the setting module is specifically configured to:
    按每天时间段设置开启认证模式包括:在白天关闭认证模式并在晚上开启认证模式,或在22时至7时开启认证模式。Turning on the authentication mode according to the daily time period includes turning off the authentication mode during the day and turning on the authentication mode at night, or turning on the authentication mode from 22:00 to 7:00.
  14. 根据权利要求12所述的移动终端,其中,所述设置模块,具体用于:The mobile terminal of claim 12, wherein the setting module is specifically configured to:
    按所处空间位置设置开启认证模式包括:在工作场所关闭认证模式并在住所开启认证模式,或在驾驶位置时开启认证模式。Turning on the authentication mode according to the location of the space includes: turning off the authentication mode in the workplace and turning on the authentication mode when the residence is turned on, or turning on the authentication mode when driving the location.
  15. 根据权利要求12所述的移动终端,其中,所述设置模块,具体用于:The mobile terminal of claim 12, wherein the setting module is specifically configured to:
    按每周时间设置认证模式包括:在周一到周五关闭认证模式并在周六到周日开启认证模式。Setting the authentication mode by weekly time includes turning off the authentication mode from Monday to Friday and enabling the authentication mode from Saturday to Sunday.
  16. 根据权利要求11所述的移动终端,其中,所述收发模块进一步用于在进行会话呼出时,检测并接收被呼叫方是否有通过DTMF发送的较验请求信息。The mobile terminal of claim 11, wherein the transceiver module is further configured to detect and receive, when the session is called out, whether the called party has the comparison request information sent by the DTMF.
  17. 根据权利要求11所述的移动终端,其中,所述移动终端还包括查找模块,所述查找模块用于在检测到所述较验请求信息时,根据所述较验请求信息在本地查找较验密钥信息。The mobile terminal of claim 11, wherein the mobile terminal further comprises a search module, wherein the search module is configured to locally search for a comparison according to the comparison request information when the comparison request information is detected. Key information.
  18. 根据权利要求16所述的移动终端,其中,所述收发模块,还用于将所述较验密钥信息通过DTMF反馈给所述被呼叫方,其中,所述较验密钥信息用于所述被呼叫方与其本地的密钥进行较验认证,以在较验认证通过时,实现会话呼出,或在较验认证失败时则所述会话呼出失败。The mobile terminal according to claim 16, wherein the transceiver module is further configured to feed back the comparison key information to the called party by using DTMF, wherein the comparison key information is used for The called party performs a comparative authentication with its local key to implement the session outgoing call when the authentication is passed, or the session call fails when the authentication fails.
  19. 根据权利要求18所述的移动终端,其中,所述收发模块,具体用于:将所述较验密钥信息进行加密,并在加密后通过DTMF反馈给所述被呼叫方。The mobile terminal according to claim 18, wherein the transceiver module is configured to: encrypt the comparison key information, and feed back to the called party through DTMF after encryption.
PCT/CN2015/076458 2014-12-17 2015-04-13 Mobile terminal and dtmf-based session authentication method therefor WO2016095375A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410802863.0A CN104580652B (en) 2014-12-17 2014-12-17 Mobile terminal and its session authentication method based on DTMF
CN201410802863.0 2014-12-17

Publications (1)

Publication Number Publication Date
WO2016095375A1 true WO2016095375A1 (en) 2016-06-23

Family

ID=53095796

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/076458 WO2016095375A1 (en) 2014-12-17 2015-04-13 Mobile terminal and dtmf-based session authentication method therefor

Country Status (2)

Country Link
CN (1) CN104580652B (en)
WO (1) WO2016095375A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106878231A (en) * 2015-12-10 2017-06-20 中国电信股份有限公司 Method, user terminal and system for realizing secure user data transmission
CN106101410A (en) * 2016-06-08 2016-11-09 北京奇虎科技有限公司 A kind of call handling method, device and equipment
CN108696487A (en) * 2017-04-10 2018-10-23 北京京东尚科信息技术有限公司 Method and system for carrying out client validation automatically based on dtmf signal
CN109257746A (en) * 2018-09-28 2019-01-22 努比亚技术有限公司 Communication establishing method, communication means, terminal and computer readable storage medium
CN111757176B (en) * 2020-06-11 2021-11-30 青岛海信传媒网络技术有限公司 Streaming media file safe playing method and display equipment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1913686A (en) * 2006-08-23 2007-02-14 中国移动通信集团公司 Calling method of mobile terminal
EP1871083A1 (en) * 2005-04-13 2007-12-26 Huawei Technologies Co., Ltd. A method for implementing the card number calling service
CN101800798A (en) * 2009-02-10 2010-08-11 阿尔卡特朗讯公司 Method and device for controlling access to personal mobile phones
CN103971042A (en) * 2014-05-04 2014-08-06 上海众人网络安全技术有限公司 Dynamic password booting method based on sound signals

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN2212289Y (en) * 1994-08-27 1995-11-08 张开良 Telephone controller
CN1209900C (en) * 2000-10-19 2005-07-06 国伟 Barassment preventing telephone technology
CN102905261B (en) * 2012-09-25 2015-05-20 东莞宇龙通信科技有限公司 Contact information authentication requesting and receiving method and clients

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1871083A1 (en) * 2005-04-13 2007-12-26 Huawei Technologies Co., Ltd. A method for implementing the card number calling service
CN1913686A (en) * 2006-08-23 2007-02-14 中国移动通信集团公司 Calling method of mobile terminal
CN101800798A (en) * 2009-02-10 2010-08-11 阿尔卡特朗讯公司 Method and device for controlling access to personal mobile phones
CN103971042A (en) * 2014-05-04 2014-08-06 上海众人网络安全技术有限公司 Dynamic password booting method based on sound signals

Also Published As

Publication number Publication date
CN104580652B (en) 2018-02-23
CN104580652A (en) 2015-04-29

Similar Documents

Publication Publication Date Title
WO2016095375A1 (en) Mobile terminal and dtmf-based session authentication method therefor
US7460521B2 (en) Communication system, call connection server, terminal apparatus and communication method
WO2012016473A1 (en) Wireless fidelity access method, access point and wireless fidelity access system
WO2017049984A1 (en) Wireless network access method and wireless access node
WO2014094300A1 (en) Server and method for remotely controlling working of communication terminal, and communication terminal
WO2014040439A1 (en) Wireless network system and portable electronic device
CN111629427B (en) Multimedia data processing method and device, electronic equipment and storage medium
WO2015101331A1 (en) Identity verification method and system
WO2016029659A1 (en) Method and system for synchronizing music player functions of intelligent device, and bluetooth headset
WO2018000978A1 (en) Data backup method and terminal
WO2014112754A1 (en) Web service push method and web service push server and web service providing server performing same
WO2013085217A1 (en) Security management system having multiple relay servers, and security management method
WO2018076434A1 (en) Sound signal outputting method and device, and earphone state detecting method and device
WO2015105289A1 (en) User security authentication system and method therefor in internet environment
CN101026636A (en) Dual-channel communication terminal and its system, communication method using said terminal and long distance control method
WO2017092387A1 (en) Wearable device communication method and system
WO2007104197A1 (en) A terminal monitoring method and system thereof
WO2016155283A1 (en) Method and system for electronic device privacy protection based on wifi hotspot
WO2017088529A1 (en) Mobile terminal-based encryption method for bluetooth watch and bluetooth watch
CN105025273B (en) Connection method, cipher set-up method and the system of storied building visible intercommunication system
WO2018058955A1 (en) Anti-lost method and system for wearable terminal, and wearable terminal
US8655334B2 (en) System and method for configuring a communication device
WO2014063575A1 (en) Password key, security authentication system and security authentication method
JP2015524633A (en) Authentication system that keeps secret data confidential
CN104683360B (en) Ip voice communication system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15868892

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 09.11.2017)

122 Ep: pct application non-entry in european phase

Ref document number: 15868892

Country of ref document: EP

Kind code of ref document: A1