Search

CN-122022813-A - Multi-terminal device biological identification method and system

CN122022813ACN 122022813 ACN122022813 ACN 122022813ACN-122022813-A

Abstract

The scheme discloses a multi-terminal equipment biological identification method and device, wherein the method comprises the steps that a first terminal equipment responds to first verification information input operation of a user to conduct equipment unlocking verification and target APP login verification, responds to transaction amount input and confirmation operation to send a first enhanced identity verification request to a second terminal equipment, the second terminal equipment displays an information acquisition page and is used for receiving first biological information input by the user, an encrypted biological information template is transmitted to the first terminal equipment through a near-field secure communication channel, the first terminal equipment is matched with standard biological information, a first authentication token is generated if the matching is successful, the first terminal equipment displays a payment verification interface, and after successful payment verification, money making operation is conducted. According to the scheme, the biological information of the user is stored on the first terminal equipment, risks of leakage and misuse of biological data in the cloud are eliminated, multiple verification factors are introduced outside a single biological feature, and multi-factor enhanced security is achieved.

Inventors

  • XIA KAI
  • ZOU WEIWEI

Assignees

  • 泰恩实业(深圳)有限公司

Dates

Publication Date
20260512
Application Date
20260105

Claims (10)

  1. 1. A multi-terminal device biometric method, the method comprising: the method comprises the steps that a first terminal device responds to first verification information input operation of a user to perform device unlocking verification and target APP login verification; after login verification is successful, the first terminal equipment responds to transaction amount input and payment mode selection operation of the user in a target APP, and a first enhanced identity verification request is sent to the second terminal equipment; Responding to the first enhanced identity authentication request, the second terminal equipment displays an information acquisition page, wherein the information acquisition page is used for receiving first biological information input by a user; The second terminal equipment extracts the feature vector of the first biological information through an embedded AI algorithm to obtain a biological information template, encrypts the biological information template, and transmits the obtained encrypted biological information template to the first terminal equipment through a near-field secure communication channel; the first terminal equipment decrypts the encrypted biological information template and matches the encrypted biological information template with pre-stored standard biological information; If the matching is successful, the first terminal equipment generates a first authentication token, wherein the first authentication token is used for authorizing a user to execute payment operation aiming at the target APP of the first terminal equipment; Responding to the payment operation of the user under the authorization of the first authentication token, and displaying a payment verification interface by the first terminal equipment; and the first terminal equipment receives payment verification information input operation of the user, and performs money drawing operation after successful payment verification.
  2. 2. The method of claim 1, further comprising, prior to the first terminal device performing device unlock authentication and target APP login authentication in response to a first authentication information input operation by the user: The first terminal equipment responds to the second verification information input operation of the user to perform equipment unlocking verification and target APP login verification; after login verification is successful, the first terminal equipment responds to the login confirmation operation of the user in the target APP and sends a second enhanced identity verification request to second terminal equipment; Responding to the second enhanced identity verification request, and displaying an information acquisition page by the second terminal equipment, wherein the information acquisition page is used for receiving third biological information input by a user; The second terminal device encrypts the third biological information and transmits the obtained encrypted third biological information to the first terminal device through a near field secure communication channel; The first terminal device decrypts the encrypted third biometric information and stores the obtained third biometric information as standard biometric information in a local secure storage area.
  3. 3. The method of claim 1, further comprising, after performing the device unlock authentication and the target APP login authentication: After login verification is successful, the first terminal equipment responds to transaction amount input and payment mode selection operation of the user at a target APP, and the standard biological information is sent to the second terminal equipment; in response to receiving the standard biological information, the second terminal device displays an information acquisition page, wherein the information acquisition page is used for receiving fourth biological information input by a user; the second terminal device matches the fourth biological information with the standard biological information in a local environment; If the matching is successful, the second terminal equipment generates a second authentication token and sends the second authentication token to the first terminal equipment, wherein the second authentication token is used for authorizing a user to execute payment operation aiming at the target APP of the first terminal equipment; In response to receiving the second authentication token, the first terminal device presents a payment verification interface; And the first terminal equipment receives payment verification information input operation of the user, and performs money drawing operation after successful payment verification.
  4. 4. The method of claim 1, wherein the first terminal device is one of a mobile phone, a hardware wallet, a computer, and an intelligent wearable device, and the second terminal device is one of a POS machine and an external identifier.
  5. 5. The method of claim 1, wherein the near field secure communication channel is one of bluetooth, NFC, local area network, wi-Fi direct, encrypted P2P, zigbee, UWB.
  6. 6. The method of claim 1, wherein said matching with pre-stored standard biometric information comprises: Calculating the similarity between the feature vector to be compared of the biological information template and the standard feature vector of the standard biological information; And determining whether the first biological information is matched with the standard biological information according to the magnitude relation between the similarity and a preset similarity threshold.
  7. 7. The method of claim 1, wherein the first biometric information comprises at least one of a fingerprint, a face, an iris, a palmprint, a palmar shape, a palmar vein, a digitorum vein, and a voiceprint.
  8. 8. The multi-terminal equipment biological recognition system is characterized by comprising a first terminal equipment and a second terminal equipment, wherein the first terminal equipment is user personal equipment, and the second terminal equipment is acquisition equipment positioned in a target place, and the system comprises the following components: The first terminal device is configured to: Responding to a first verification information input operation of a user, and performing equipment unlocking verification and target APP login verification; after login verification is successful, responding to transaction amount input and payment mode selection operation of the user in a target APP, and sending a first enhanced identity verification request to second terminal equipment; the second terminal device is configured to: Responding to the first enhanced identity verification request, displaying an information acquisition page, wherein the information acquisition page is used for receiving first biological information input by a user; encrypting the first biological information, and transmitting the obtained encrypted biological information template to the first terminal equipment through a near-field secure communication channel; The first terminal device is further configured to: decrypting the encrypted biological information template and matching the encrypted biological information template with pre-stored standard biological information; If the matching is successful, a first authentication token is generated, and the first authentication token is used for authorizing a user to execute payment operation aiming at the target APP of the first terminal equipment; Responding to the payment operation of the user under the authorization of the first authentication token, and displaying a payment verification interface; and receiving payment verification information input operation of the user, and performing a payment operation after successful payment verification.
  9. 9. An electronic device comprising a processor and a memory, wherein the memory stores at least one instruction, at least one program, a set of codes, or a set of instructions, the at least one instruction, the at least one program, the set of codes, or the set of instructions being loaded and executed by the processor to implement the multi-terminal device biometric method of any one of claims 1-7.
  10. 10. A computer readable storage medium having stored therein at least one instruction, at least one program, code set, or instruction set, the at least one instruction, the at least one program, the code set, or instruction set being loaded and executed by a processor to implement the multi-terminal device biometric method of any of claims 1-7.

Description

Multi-terminal device biological identification method and system Technical Field The scheme relates to the technical field of computers, in particular to a multi-terminal equipment biological identification method and device. Background The existing biometric authentication system has the following problems: 1. The centralization risk is that under the scenes of paying precious face payment, or face recognition access control and the like, a biological characteristic template of a user is usually stored in a cloud or a centralized server, and privacy leakage and abuse risks exist; 2. in the scenes of mobile phone face/fingerprint identification and the like, the biological identification of personal terminals such as mobile phones and the like is system management, an application program can only accept the result and cannot confirm whether the account owner is really the person, so that the security is not high; 3. single factor vulnerability, i.e. the single biological feature or password verification mode is only relied on, so that the single factor vulnerability is easy to attack or impersonate; 4. Inauthenticability-the authentication process lacks traceable multi-dimensional verification evidence, and is difficult to support business scenes with high security levels. Disclosure of Invention The present invention aims to at least solve the technical problems existing in the prior art, and therefore, a first aspect of the present invention provides a multi-terminal device biological identification method, which includes: the method comprises the steps that a first terminal device responds to first verification information input operation of a user to perform device unlocking verification and target APP login verification; after login verification is successful, the first terminal equipment responds to transaction amount input and payment mode selection operation of the user in a target APP, and a first enhanced identity verification request is sent to the second terminal equipment; Responding to the first enhanced identity authentication request, the second terminal equipment displays an information acquisition page, wherein the information acquisition page is used for receiving first biological information input by a user; The second terminal equipment extracts the feature vector of the first biological information through an embedded AI algorithm to obtain a biological information template, encrypts the biological information template, and transmits the obtained encrypted biological information template to the first terminal equipment through a near-field secure communication channel; the first terminal equipment decrypts the encrypted biological information template and matches the encrypted biological information template with pre-stored standard biological information; If the matching is successful, the first terminal equipment generates a first authentication token, wherein the first authentication token is used for authorizing a user to execute payment operation aiming at the target APP of the first terminal equipment; Responding to the payment operation of the user under the authorization of the first authentication token, and displaying a payment verification interface by the first terminal equipment; and the first terminal equipment receives payment verification information input operation of the user, and performs money drawing operation after successful payment verification. Optionally, before the first terminal device performs the device unlock verification and the target APP login verification in response to the first verification information input operation of the user, the method further includes: The first terminal equipment responds to the second verification information input operation of the user to perform equipment unlocking verification and target APP login verification; after login verification is successful, the first terminal equipment responds to the login confirmation operation of the user in the target APP and sends a second enhanced identity verification request to second terminal equipment; Responding to the second enhanced identity verification request, and displaying an information acquisition page by the second terminal equipment, wherein the information acquisition page is used for receiving third biological information input by a user; The second terminal device encrypts the third biological information and transmits the obtained encrypted third biological information to the first terminal device through a near field secure communication channel; The first terminal device decrypts the encrypted third biometric information and stores the obtained third biometric information as standard biometric information in a local secure storage area. Optionally, after performing the device unlock verification and the target APP login verification, the method further includes: After login verification is successful, the first terminal equipment responds to transaction amount input