[go: up one dir, main page]

CN107145772A - Terminal equipment security control method, device and terminal equipment - Google Patents

Terminal equipment security control method, device and terminal equipment Download PDF

Info

Publication number
CN107145772A
CN107145772A CN201710237663.9A CN201710237663A CN107145772A CN 107145772 A CN107145772 A CN 107145772A CN 201710237663 A CN201710237663 A CN 201710237663A CN 107145772 A CN107145772 A CN 107145772A
Authority
CN
China
Prior art keywords
terminal device
identity verification
biometric feature
security control
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710237663.9A
Other languages
Chinese (zh)
Other versions
CN107145772B (en
Inventor
周意保
张海平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangdong Oppo Mobile Telecommunications Corp Ltd
Original Assignee
Guangdong Oppo Mobile Telecommunications Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangdong Oppo Mobile Telecommunications Corp Ltd filed Critical Guangdong Oppo Mobile Telecommunications Corp Ltd
Priority to CN201710237663.9A priority Critical patent/CN107145772B/en
Publication of CN107145772A publication Critical patent/CN107145772A/en
Application granted granted Critical
Publication of CN107145772B publication Critical patent/CN107145772B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Telephone Function (AREA)

Abstract

The invention discloses a kind of terminal device security control method, device and terminal device, wherein, method includes:During by unlocking terminal equipment success, control terminal equipment enters after released state from lock-out state, in the unlocked state, gathers the biological characteristic of user.And then according to biological characteristic, authentication is carried out, if authentication passes through, control terminal equipment keeps released state, if authentication does not pass through, control the terminal device to enter lock-out state.By the way that during the use of terminal device, authentication is carried out again, so as to strengthen security, simultaneously because the mode for employing biological characteristic carries out authentication, it is to avoid authentication process itself is interfered to the use process of user.

Description

终端设备安全性控制方法、装置和终端设备Terminal equipment security control method, device and terminal equipment

技术领域technical field

本发明涉及移动终端技术领域,尤其涉及一种终端设备安全性控制方法、装置和终端设备。The present invention relates to the technical field of mobile terminals, in particular to a terminal equipment security control method, device and terminal equipment.

背景技术Background technique

出于对移动终端等终端设备安全性的考虑,目前,大多数终端设备已经具备了在终端设备从休眠模式唤醒时,采用数字密码、图案密码、指纹等方式对当前正在使用终端设备的用户进行身份验证。当用户提供的密码或指纹与预存信息匹配时,才允许用户使用终端设备。并当指纹匹配出现错误时,还可以采用数字密码或图案密码进行身份验证。In consideration of the security of terminal equipment such as mobile terminals, at present, most terminal equipment have been equipped with digital passwords, pattern passwords, fingerprints, etc. Authentication. When the password or fingerprint provided by the user matches the pre-stored information, the user is allowed to use the terminal device. And when there is an error in fingerprint matching, digital password or pattern password can also be used for identity verification.

但是,这种安全控制方法,存在一定的局限性。当非法用户盗取数字密码或者图案密码时,便可以解锁终端设备,导致隐私泄露。However, this security control method has certain limitations. When an illegal user steals a digital password or a pattern password, the terminal device can be unlocked, resulting in a privacy leak.

发明内容Contents of the invention

本发明的目的旨在至少在一定程度上解决上述的技术问题之一。The object of the present invention is to solve one of the above-mentioned technical problems at least to a certain extent.

为此,本发明的第一个目的在于提出一种终端设备安全性控制方法,该方法,用于在现有技术中的安全性控制方法存在一定局限性,具有安全漏洞的情况下,在一定程度上弥补安全漏洞。For this reason, the first purpose of the present invention is to propose a security control method for terminal equipment. This method has certain limitations in the security control methods in the prior art, and in the case of security loopholes, Make up for security gaps to a certain extent.

本发明的第二个目的在于提出一种终端设备安全性控制装置。The second object of the present invention is to provide a terminal device security control device.

本发明的第三个目的在于提出一种终端设备。The third object of the present invention is to provide a terminal device.

本发明的第四个目的在于提出另一种终端设备。A fourth object of the present invention is to propose another terminal device.

本发明的第五个目的在于提出一种非临时性计算机可读存储介质。A fifth object of the present invention is to provide a non-transitory computer-readable storage medium.

本发明的第六个目的在于提出一种计算机程序产品。The sixth object of the present invention is to provide a computer program product.

为了实现上述目的,本发明第一方面实施例提出了一种终端设备安全性控制方法,包括以下步骤:In order to achieve the above object, the embodiment of the first aspect of the present invention proposes a terminal device security control method, including the following steps:

终端设备解锁成功时,控制所述终端设备从锁定状态进入解锁状态;When the terminal device is successfully unlocked, controlling the terminal device to enter the unlocked state from the locked state;

在解锁状态下,采集用户的生物特征;In the unlocked state, collect the user's biometrics;

根据所述生物特征,进行身份验证;Perform identity verification based on said biometric feature;

若身份验证通过,控制所述终端设备继续处于解锁状态;If the identity verification is passed, controlling the terminal device to continue to be in an unlocked state;

若身份验证未通过,控制所述终端设备进入锁定状态。If the identity verification fails, control the terminal device to enter a locked state.

本发明实施例的终端设备安全性控制方法,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the terminal device security control method in the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the biological characteristics of the user are collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述目的,本发明第二方面实施例提出了一种终端设备安全性控制装置,包括:In order to achieve the above purpose, the embodiment of the second aspect of the present invention proposes a terminal device security control device, including:

控制模块,用于终端设备解锁成功,控制所述终端设备从锁定状态进入解锁状态;The control module is used for successfully unlocking the terminal device, and controlling the terminal device to enter the unlocked state from the locked state;

采集模块,用于在解锁状态下,采集用户的生物特征;The collection module is used to collect the biometrics of the user in the unlocked state;

身份验证模块,用于根据所述生物特征,进行身份验证;An identity verification module, configured to perform identity verification according to the biometric feature;

所述控制模块,还用于若身份验证通过,控制所述终端设备继续处于解锁状态;若身份验证未通过,控制所述终端设备进入锁定状态。The control module is further configured to control the terminal device to continue to be in the unlocked state if the identity verification is passed; and control the terminal device to enter the locked state if the identity verification is not passed.

本发明实施例的终端设备安全性控制装置,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。The terminal device security control device according to the embodiment of the present invention, when the terminal device is successfully unlocked, controls the terminal device to enter the unlocked state from the locked state, and collects the user's biological characteristics in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述目的,本发明第三方面实施例提出了一种终端设备,包括:本发明第二方面实施例所述的终端设备安全性控制装置。In order to achieve the above object, the embodiment of the third aspect of the present invention provides a terminal device, including: the device for controlling security of the terminal device described in the embodiment of the second aspect of the present invention.

本发明实施例的终端设备,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the terminal device of the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the biometric feature of the user is collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述目的,本发明第四方面实施例提出了另一种终端设备,壳体和位于所述壳体内的处理器、存储器,其中,所述存储器存储有可执行程序代码,所述处理器通过读取所述存储器中存储的可执行程序代码来运行与所述可执行程序代码对应的程序,以用于执行本发明第一方面实施例所述的终端设备安全性控制装置。In order to achieve the above object, the embodiment of the fourth aspect of the present invention proposes another terminal device, a housing, a processor and a memory located in the housing, wherein the memory stores executable program codes, and the processor The program corresponding to the executable program code is run by reading the executable program code stored in the memory, so as to execute the device for controlling security of the terminal device described in the embodiment of the first aspect of the present invention.

本发明实施例的终端设备,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the terminal device of the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the biometric feature of the user is collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述目的,本发明第五方面实施例提出了一种非临时性计算机可读存储介质,其上存储有计算机程序,该程序被处理器执行时实现第一方面所述的终端设备安全性控制方法。In order to achieve the above purpose, the embodiment of the fifth aspect of the present invention proposes a non-transitory computer-readable storage medium, on which a computer program is stored, and when the program is executed by a processor, the security of the terminal device described in the first aspect is realized. Control Method.

为了实现上述目的,本发明第六方面实施例提出了一种计算机程序产品,当所述计算机程序产品中的指令由处理器执行时,执行第一方面所述的终端设备安全性控制方法。In order to achieve the above object, the embodiment of the sixth aspect of the present invention provides a computer program product, and when instructions in the computer program product are executed by a processor, the terminal device security control method described in the first aspect is executed.

本发明附加的方面和优点将在下面的描述中部分给出,部分将从下面的描述中变得明显,或通过本发明的实践了解到。Additional aspects and advantages of the invention will be set forth in part in the description which follows, and in part will be obvious from the description, or may be learned by practice of the invention.

附图说明Description of drawings

本发明上述的和/或附加的方面和优点从下面结合附图对实施例的描述中将变得明显和容易理解,其中:The above and/or additional aspects and advantages of the present invention will become apparent and easy to understand from the following description of the embodiments in conjunction with the accompanying drawings, wherein:

图1是根据本发明实施例提供的一种终端设备安全性控制方法的流程图;FIG. 1 is a flow chart of a terminal device security control method provided according to an embodiment of the present invention;

图2是根据本发明实施例提供的另一种终端设备安全性控制方法的流程图;FIG. 2 is a flow chart of another terminal device security control method provided according to an embodiment of the present invention;

图3是根据本发明一个实施例的终端设备安全性控制装置的结构示意图;FIG. 3 is a schematic structural diagram of a terminal device security control device according to an embodiment of the present invention;

图4是根据本发明另一个实施例的终端设备安全性控制装置的结构示意图;FIG. 4 is a schematic structural diagram of an apparatus for controlling terminal device security according to another embodiment of the present invention;

图5是根据本发明一个实施例的终端设备的结构示意图;以及FIG. 5 is a schematic structural diagram of a terminal device according to an embodiment of the present invention; and

图6是根据本发明另一个实施例的终端设备的结构示意图。Fig. 6 is a schematic structural diagram of a terminal device according to another embodiment of the present invention.

具体实施方式detailed description

下面详细描述本发明的实施例,所述实施例的示例在附图中示出,其中自始至终相同或类似的标号表示相同或类似的元件或具有相同或类似功能的元件。下面通过参考附图描述的实施例是示例性的,旨在用于解释本发明,而不能理解为对本发明的限制。Embodiments of the present invention are described in detail below, examples of which are shown in the drawings, wherein the same or similar reference numerals designate the same or similar elements or elements having the same or similar functions throughout. The embodiments described below by referring to the figures are exemplary and are intended to explain the present invention and should not be construed as limiting the present invention.

下面参考附图描述本发明实施例的终端设备安全性控制方法、装置和终端设备。The terminal equipment security control method, device and terminal equipment according to the embodiments of the present invention are described below with reference to the accompanying drawings.

图1是根据本发明实施例提供的一种终端设备安全性控制方法的流程图,如图1所示,该方法包括:Fig. 1 is a flowchart of a terminal device security control method provided according to an embodiment of the present invention. As shown in Fig. 1, the method includes:

步骤101,终端设备解锁成功时,控制所述终端设备从锁定状态进入解锁状态。Step 101, when the terminal device is successfully unlocked, control the terminal device from a locked state to an unlocked state.

具体地,为了保证使用安全性,需要在对终端设备进行解锁之前,通过图案或者密码解锁方式,对终端设备进行解锁。当用户输入了正确的图案或者密码时,可以对终端设备进行解锁。当然,本领域技术人员还可以想到其他解锁方式,例如指纹、人脸或虹膜等基于生物特征的解锁方法。本实施例中,对于终端设备的解锁方式不作限定。Specifically, in order to ensure the security of use, it is necessary to unlock the terminal device by means of pattern or password unlocking before unlocking the terminal device. When the user inputs a correct pattern or password, the terminal device can be unlocked. Of course, those skilled in the art can also think of other unlocking methods, such as fingerprint, face or iris based unlocking methods based on biometric features. In this embodiment, no limitation is imposed on the unlocking manner of the terminal device.

当终端设备解锁成功时,终端设备显示桌面,从而从锁定状态进入了解锁状态。在解锁状态下,允许用户对终端设备进行操作。具体来说,用户可以通过点击桌面的图标,运行图标对应的应用程序。或者,执行拨打电话、查阅推送消息等操作。When the terminal device is successfully unlocked, the terminal device displays the desktop, thereby entering the unlocked state from the locked state. In the unlocked state, the user is allowed to operate the terminal device. Specifically, the user may click an icon on the desktop to run an application program corresponding to the icon. Or, perform operations such as making a phone call and viewing push messages.

步骤102,在解锁状态下,采集用户的生物特征。Step 102, in the unlocked state, collect the biological characteristics of the user.

具体地,在解锁状态下,终端设备的使用状态满足预设安全控制条件时,开始采集生物特征。若未采集到生物特征,显示生物特征采集的提示信息,并重新采集至少一种生物特征。当重新采集的次数满足预设次数时,控制所述终端设备进入锁定状态。Specifically, in the unlocked state, when the use state of the terminal device satisfies the preset security control condition, biometric feature collection starts. If the biometric feature is not collected, the prompt information of biometric feature collection is displayed, and at least one biometric feature is re-collected. When the number of times of re-collection satisfies the preset number of times, the terminal device is controlled to enter a locked state.

作为一种可能的实现方式,预设安全控制条件,包括距离上一次采集的生物特征达到预设时长。也就是说,周期性采集用户的生物特征。例如,用户在使用终端设备的过程中,终端设备通过前置摄像头,周期性获取用户的脸部特征,进行脸部识别。As a possible implementation manner, the preset security control condition includes a preset time period since the last collected biometric feature. That is to say, the biological characteristics of the user are collected periodically. For example, when a user is using a terminal device, the terminal device periodically obtains the user's facial features through a front-facing camera to perform facial recognition.

作为另一种可能的实现方式,预设安全控制条件,包括探测到目标应用程序处于运行状态。这里的目标应用程序可以是安全敏感性应用程序,例如:可以包括银行客户端、第三方支付应用程序等。As another possible implementation manner, the preset security control condition includes detecting that the target application program is running. The target application here may be a security-sensitive application, for example, it may include a bank client, a third-party payment application, and the like.

作为又一种可能的实现方式,预设安全控制条件,包括在探测范围内捕捉到探测对象。其中,这里所提及的探测对象至少包括虹膜、人脸和/或指纹。As yet another possible implementation manner, the preset safety control condition includes capturing the detection object within the detection range. Wherein, the detection objects mentioned here at least include iris, human face and/or fingerprint.

步骤103,根据生物特征,进行身份验证。Step 103, perform identity verification according to biometric features.

可选地,查询所述终端设备解锁成功时所采用的用户身份;根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配;所述生物特征包括虹膜特征、人脸特征和/或指纹特征;若至少存在一种生物特征与所述标准模板库中所述生物特征的模板不匹配,确定身份验证未通过。Optionally, query the user identity used when the terminal device is successfully unlocked; match each of the at least one biometric feature collected according to the standard template library of the user identity; the biometric features include Iris features, face features and/or fingerprint features; if there is at least one biometric feature that does not match the template of the biometric feature in the standard template library, it is determined that the identity verification has failed.

其中,在标准模板库中,存储有对应同一用户身份的不同生物特征的模板。标准模板库中所存储的各生物特征的模板,需要该用户以对应的用户身份进行预先设定。Wherein, in the standard template library, templates corresponding to different biometric features of the same user identity are stored. The templates of each biometric feature stored in the standard template library need to be pre-set by the user as a corresponding user.

需要说明的是,同一用户身份下同一生物特征的模板可以为多个,而不仅仅局限于一个模板。例如:用户A在本实施例所提及的终端设备中对应用户身份A,可以在用户身份A的标准模板库中,存储多个指纹的模板,不同指纹的模板对应不同的手指。It should be noted that there may be multiple templates for the same biometric feature under the same user identity, instead of being limited to one template. For example: user A corresponds to user identity A in the terminal device mentioned in this embodiment, multiple fingerprint templates can be stored in the standard template library of user identity A, and different fingerprint templates correspond to different fingers.

步骤104,若身份验证通过,控制终端设备继续处于解锁状态。Step 104, if the identity verification passes, the control terminal device continues to be in an unlocked state.

作为一种可能的实现方式,若在步骤103中是通过查询所述终端设备解锁成功时所采用的用户身份;根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配,从而确定出身份验证通过,说明终端设备当前是由终端设备最初解锁时的用户使用。在这种情况下安全性较高,可以控制终端设备继续处于解锁状态。As a possible implementation, if in step 103, the user identity used when the terminal device is successfully unlocked is inquired; according to the standard template library of the user identity, the collected at least one biometric feature Each type is matched, so that it is determined that the identity verification is passed, indicating that the terminal device is currently being used by the user who initially unlocked the terminal device. In this case, the security is relatively high, and the terminal device can be controlled to continue to be in an unlocked state.

步骤105,若身份验证未通过,控制所述终端设备进入锁定状态。Step 105, if the identity verification fails, control the terminal device to enter a locked state.

若在步骤103中是通过查询所述终端设备解锁成功时所采用的用户身份;根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配,从而确定出身份验证未通过,说明终端设备当前不是由终端设备最初解锁时的用户使用。在这种情况下存在一定的安全隐患,需要控制终端设备进入锁定状态。If in step 103, the user identity used when the terminal device is successfully unlocked is checked; according to the standard template library of the user identity, each of the collected at least one biometric feature is matched to determine If the authentication fails, it means that the terminal device is not currently being used by the user who initially unlocked the terminal device. In this case, there are certain potential safety hazards, and it is necessary to control the terminal device to enter the locked state.

本发明实施例,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the user's biological characteristics are collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

在上一实施例的基础上,为了清楚说明前述实施例,图2是根据本发明实施例提供的另一种终端设备安全性控制方法的流程图,如图2所示,该方法包括:On the basis of the previous embodiment, in order to clearly illustrate the foregoing embodiment, FIG. 2 is a flow chart of another terminal device security control method provided according to an embodiment of the present invention. As shown in FIG. 2 , the method includes:

步骤201,终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态。Step 201, when the terminal device is successfully unlocked, control the terminal device from the locked state to the unlocked state.

具体地,本步骤的实现可参见前述实施例中步骤101的相关描述,本实施例中对此不再赘述。Specifically, for the implementation of this step, reference may be made to the relevant description of step 101 in the foregoing embodiments, and details will not be repeated in this embodiment.

步骤202,查询终端设备解锁成功时所采用的用户身份,并开启生物特征采集的相关设备。Step 202, inquire about the user identity used when the terminal device is successfully unlocked, and turn on the relevant device for biometric feature collection.

可选地,终端设备可能同时注册有多个用户身份,不同用户身份可能具有不同的使用权限。具体来说,一个终端设备可能具有包括管理员和/或访客在内的用户身份。为了便于管理,为具有不同用户身份的用户预先采集了生物特征,并形成了对应用户身份的标准模板库。Optionally, the terminal device may be registered with multiple user identities at the same time, and different user identities may have different usage rights. Specifically, an end device may have user identities including administrator and/or guest. In order to facilitate management, biometric features are pre-collected for users with different user identities, and a standard template library corresponding to user identities is formed.

在同一个用户身份对应的标准模板库中,可以是通过对该用户身份的用户预先采集了多种生物特征得到的。从而,在该用户身份对应的标准模板库中,包括有对应的多种生物特征的模板。In the standard template library corresponding to the same user identity, it may be obtained by pre-collecting multiple biometric features of the user of the user identity. Therefore, the standard template library corresponding to the user identity includes templates corresponding to multiple biometric features.

例如:采集了访客的指纹特征和人脸特征,对应该访客的标准模板库中,包括有该访客的指纹特征的模板,以及该访客的人脸特征的模板。For example: the fingerprint feature and face feature of the visitor are collected, and the standard template library corresponding to the visitor includes the template of the fingerprint feature of the visitor and the template of the face feature of the visitor.

步骤203,开始采集生物特征。Step 203, start to collect biometrics.

可选地,开始周期性采集生物特征,或者是,当探测对象进入到探测范围时,开始采集对应的生物特征。这里的探测对象包括虹膜、人脸和/或指纹。相应地,生物特征包括虹膜特征、人脸特征和/或指纹特征。Optionally, start to collect biometrics periodically, or start to collect corresponding biometrics when the detection object enters the detection range. The detection objects here include irises, faces and/or fingerprints. Correspondingly, biological features include iris features, face features and/or fingerprint features.

步骤204,判断是否采集到生物特征,若是,执行步骤206,否则执行步骤205。In step 204, it is judged whether biometric features are collected, if yes, execute step 206, otherwise execute step 205.

步骤205,显示生物特征采集的提示信息,判断重复采集生物特征的次数是否大于预设次数,若是执行步骤206,否则,返回执行步骤203。Step 205 , displaying the prompt information of biometric feature collection, and judging whether the number of repeated biometric feature collection is greater than the preset number of times, if so, go to step 206 , otherwise, go back to step 203 .

具体地,若本次未采集到生物特征,则显示本次生物特征采集未成功的提示信息,以提醒当前正在使用终端设备的用户配合完成后续生物特征的采集。若在反复执行多次采集后,导致重复采集生物特征的次数已大于预设次数,但仍未采集到所需生物特征时,则可以确定存在较高的安全风险。Specifically, if the biometric feature is not collected this time, a prompt message that the biometric feature collection is unsuccessful this time is displayed, so as to remind the user who is currently using the terminal device to cooperate to complete the subsequent biometric feature collection. If the number of repeated collections of biometrics is greater than the preset number of times after repeated collections, but the required biometrics are still not collected, it can be determined that there is a high security risk.

步骤206,控制终端设备进入锁定状态。Step 206, controlling the terminal device to enter the locked state.

在一种可能的应用场景下,若在反复执行多次采集后,导致重复采集生物特征的次数已大于预设次数,但仍未采集到所需生物特征时,则可以确定存在较高的安全风险。In a possible application scenario, if the number of repeated collections of biometrics is greater than the preset number of times after repeated collections, but the required biometrics are still not collected, it can be determined that there is a high level of security. risk.

在另一种可能的应用场景下,尽管已采集到生物特征,但至少存在一种生物特征与所述标准模板库中所述生物特征的模板不匹配,确定身份验证未通过。在这种情况下,可以确定存在较高的安全风险。In another possible application scenario, although the biometrics have been collected, at least one biometric does not match the template of the biometric in the standard template library, and it is determined that the identity verification fails. In this case, it can be determined that there is a high security risk.

进而为了控制这种安全性风险,需要控制终端设备进入锁定状态,以避免继续允许该用户操作终端设备,停止由于其使用所带来的进一步损失。Furthermore, in order to control this security risk, it is necessary to control the terminal device into a locked state, so as to avoid allowing the user to continue to operate the terminal device and stop further losses caused by its use.

步骤207,根据用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配。Step 207, matching each of the at least one biometric feature collected according to the standard template library of the user identity.

具体地,在同一个用户身份对应的标准模板库中,可以是通过对该用户身份的用户预先采集了多种生物特征得到的。从而,在该用户身份对应的标准模板库中,包括有对应的多种生物特征的模板。Specifically, in the standard template library corresponding to the same user identity, it may be obtained by pre-collecting multiple biometric features of the user of the user identity. Therefore, the standard template library corresponding to the user identity includes templates corresponding to multiple biometric features.

相应地,在进行匹配时,可以在该用户身份的标准模板库中,将各个生物特征的模板,与采集到的对应生物特征匹配,以确定采集到的生物特征是否与标准模板库中的模板匹配。仅在确定采集到的生物特征与标准模板库中的模板匹配时,能够确定出当前正在使用终端设备的用户,具有标准模板库对应的用户身份。Correspondingly, when matching, in the standard template library of the user identity, the templates of each biological feature can be matched with the corresponding collected biological features to determine whether the collected biological features match the templates in the standard template library. match. Only when it is determined that the collected biometric features match the templates in the standard template library, can it be determined that the user who is currently using the terminal device has the user identity corresponding to the standard template library.

步骤208,根据匹配结果,判断身份验证是否通过,若通过执行步骤209,否则执行步骤206。Step 208, according to the matching result, judge whether the identity verification is passed, if passed, execute step 209, otherwise, execute step 206.

可选地,若至少存在一种生物特征与标准模板库中生物特征的模板不匹配,确定身份验证未通过。若采集到的各生物特征均与标准模板库中对应生物特征的模板匹配,确定身份验证通过。Optionally, if at least one biological feature does not match the template of the biological feature in the standard template library, it is determined that the identity verification fails. If each of the collected biometric features matches the template of the corresponding biometric feature in the standard template library, it is determined that the identity verification is passed.

步骤209,控制所述终端设备继续处于解锁状态。Step 209, controlling the terminal device to continue to be in an unlocked state.

在确定出当前正在使用终端设备的用户,具有标准模板库对应的用户身份的情况下,安全风险较低,从而无需进行安全防控。允许终端设备继续处于解锁状态。In the case where it is determined that the user who is currently using the terminal device has the user identity corresponding to the standard template library, the security risk is low, so security prevention and control is not required. Allows the end device to remain unlocked.

本发明实施例,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the user's biological characteristics are collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述实施例,本发明还提出了一种终端设备安全性控制装置,图3是根据本发明一个实施例的终端设备安全性控制装置的结构示意图,如图3所示,终端设备安全性控制装置包括:控制模块31、采集模块32和身份验证模块33。In order to realize the above-mentioned embodiment, the present invention also proposes a terminal device security control device. FIG. 3 is a schematic structural diagram of a terminal device security control device according to an embodiment of the present invention. As shown in FIG. 3 , the terminal device security The control device includes: a control module 31 , a collection module 32 and an identity verification module 33 .

控制模块31,用于终端设备解锁成功,控制所述终端设备从锁定状态进入解锁状态。The control module 31 is used for successfully unlocking the terminal device, and controlling the terminal device to enter the unlocked state from the locked state.

采集模块32,用于在解锁状态下,采集用户的生物特征。The collection module 32 is configured to collect the biological characteristics of the user in the unlocked state.

身份验证模块33,用于根据所述生物特征,进行身份验证。The identity verification module 33 is configured to perform identity verification according to the biometric feature.

所述控制模块31,还用于若身份验证通过,控制所述终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。The control module 31 is further configured to control the terminal device to remain in the unlocked state if the identity verification is passed, and control the terminal device to enter the locked state if the identity verification fails.

需要说明的是,前述对终端设备安全性控制方法实施例的描述,也适用于本发明实施例的终端设备安全性控制装置,其实现原理类似,在此不再赘述。It should be noted that the foregoing description of the embodiment of the terminal device security control method is also applicable to the terminal device security control device in the embodiment of the present invention, and its implementation principle is similar, so details are not repeated here.

本发明实施例,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the user's biological characteristics are collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

进而,图4是根据本发明另一个实施例的终端设备安全性控制装置的结构示意图,如图4所示,在如图3所示的基础上,作为一种可能的实现方式,身份验证模块33,还包括:查询单元331、匹配单元332和验证单元333。Furthermore, FIG. 4 is a schematic structural diagram of a terminal device security control device according to another embodiment of the present invention. As shown in FIG. 4 , on the basis of FIG. 3 , as a possible implementation, the identity verification module 33, further comprising: a query unit 331, a matching unit 332, and a verification unit 333.

查询单元331,用于查询所述终端设备解锁成功时所采用的用户身份。The query unit 331 is configured to query the user identity used when the terminal device is successfully unlocked.

匹配单元332,用于根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配;所述生物特征包括虹膜特征、人脸特征和/或指纹特征。The matching unit 332 is configured to match each of at least one collected biometric feature according to the standard template library of the user identity; the biometric feature includes iris feature, face feature and/or fingerprint feature.

验证单元333,用于若至少存在一种生物特征与所述标准模板库中所述生物特征的模板不匹配,确定身份验证未通过。The verification unit 333 is configured to determine that the identity verification fails if at least one biological feature does not match the template of the biological feature in the standard template library.

进一步,采集模块32,包括:采集单元321和控制单元322。Further, the collection module 32 includes: a collection unit 321 and a control unit 322 .

采集单元321,用于所述终端设备的使用状态满足预设安全控制条件时,采集至少一种生物特征;若未采集到生物特征,显示生物特征采集的提示信息,并重新采集至少一种生物特征。The collection unit 321 is configured to collect at least one biometric feature when the use status of the terminal device meets the preset security control conditions; if no biometric feature is collected, display a prompt message for biometric feature collection, and re-collect at least one biometric feature feature.

控制单元322,用于当重新采集的次数满足预设次数时,控制所述终端设备进入锁定状态。The control unit 322 is configured to control the terminal device to enter a locked state when the number of times of re-collection satisfies a preset number of times.

本发明实施例,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。In the embodiment of the present invention, when the terminal device is successfully unlocked, after the terminal device is controlled to enter the unlocked state from the locked state, the user's biological characteristics are collected in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

需要说明的是,前述对终端设备安全性控制方法实施例的描述,也适用于本发明实施例的终端设备安全性控制装置,其实现原理类似,在此不再赘述。It should be noted that the foregoing description of the embodiment of the terminal device security control method is also applicable to the terminal device security control device in the embodiment of the present invention, and its implementation principle is similar, so details are not repeated here.

为了实现上述实施例,本发明还提出了一种终端设备,图5是根据本发明一个实施例的终端设备的结构示意图,如图5所示,该终端设备包括终端设备安全性控制装置100。In order to implement the above embodiments, the present invention also proposes a terminal device. FIG. 5 is a schematic structural diagram of a terminal device according to an embodiment of the present invention. As shown in FIG. 5 , the terminal device includes a terminal device security control apparatus 100 .

需要说明的是,终端设备安全性控制装置100的结构图具体可参照图3和图4,前述对终端设备安全性控制装置实施例的描述,也适用于本发明实施例的终端设备安全性控制装置100,其实现原理类似,在此不再赘述。It should be noted that, for the structural diagram of the terminal equipment security control device 100, reference may be made to FIG. 3 and FIG. 4. The foregoing description of the embodiment of the terminal equipment security control device is also applicable to the terminal equipment security control in the embodiment of the present invention. The implementation principle of the device 100 is similar, and will not be repeated here.

综上所述,本发明实施例的终端设备,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。To sum up, the terminal device according to the embodiment of the present invention, when the terminal device is successfully unlocked, controls the terminal device to enter the unlocked state from the locked state, and collects the user's biological characteristics in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述实施例,本发明还提出了另一种终端设备,图6是根据本发明另一个实施例的终端设备的结构示意图,如图6所示,该终端设备1000包括:壳体1100和位于壳体1100内的存储器1111和处理器1112。In order to realize the above embodiments, the present invention also proposes another terminal device. FIG. 6 is a schematic structural diagram of a terminal device according to another embodiment of the present invention. As shown in FIG. 6 , the terminal device 1000 includes: a housing 1100 and A memory 1111 and a processor 1112 are located within the housing 1100 .

其中,存储器1111存储有可执行程序代码;处理器1112通过读取存储器1111中存储的可执行程序代码来运行与可执行程序代码对应的程序,以用于执行以下步骤:Wherein, the memory 1111 stores executable program codes; the processor 1112 runs the program corresponding to the executable program codes by reading the executable program codes stored in the memory 1111, so as to perform the following steps:

终端设备解锁成功时,控制所述终端设备从锁定状态进入解锁状态;When the terminal device is successfully unlocked, controlling the terminal device to enter the unlocked state from the locked state;

在解锁状态下,采集用户的生物特征;In the unlocked state, collect the user's biometrics;

根据所述生物特征,进行身份验证;Perform identity verification based on said biometric feature;

若身份验证通过,控制所述终端设备继续处于解锁状态;If the identity verification is passed, controlling the terminal device to continue to be in an unlocked state;

若身份验证未通过,控制所述终端设备进入锁定状态。If the identity verification fails, control the terminal device to enter a locked state.

进一步,终端设备还可以包括生物识别采集模块1114。Further, the terminal device may also include a biometric identification collection module 1114 .

其中,生物识别采集模块1114,用于进行生物特征的采集,包括指纹采集单元、摄像头等。其中,指纹采集单元,用于采集指纹特征,摄像头可以用于采集人脸特征和/或虹膜特征。Wherein, the biometric identification collection module 1114 is used to collect biometric features, including a fingerprint collection unit, a camera, and the like. Wherein, the fingerprint collection unit is used to collect fingerprint features, and the camera can be used to collect face features and/or iris features.

需要说明的是,前述对终端设备安全性控制方法实施例的描述,也适用于本发明实施例的终端设备1000,其实现原理类似,在此不再赘述。It should be noted that the foregoing description of the embodiment of the terminal device security control method is also applicable to the terminal device 1000 in the embodiment of the present invention, and its implementation principles are similar, so details are not repeated here.

综上所述,本发明实施例的终端设备,通过终端设备解锁成功时,控制终端设备从锁定状态进入解锁状态之后,在解锁状态下,采集用户的生物特征。进而根据生物特征,进行身份验证,若身份验证通过,控制终端设备继续处于解锁状态,若身份验证未通过,控制所述终端设备进入锁定状态。通过在终端设备的使用过程中,再次进行身份验证,从而增强安全性,同时由于采用了生物特征的方式进行身份验证,避免了身份验证过程对用户的使用过程造成干扰。To sum up, the terminal device according to the embodiment of the present invention, when the terminal device is successfully unlocked, controls the terminal device to enter the unlocked state from the locked state, and collects the user's biological characteristics in the unlocked state. Further, identity verification is performed according to the biometric feature. If the identity verification is passed, the terminal device is controlled to remain in the unlocked state, and if the identity verification is not passed, the terminal device is controlled to enter the locked state. During the use of the terminal device, identity verification is performed again, so as to enhance security, and at the same time, due to the use of biometrics for identity verification, the identity verification process is prevented from interfering with the user's use process.

为了实现上述实施例,本发明还提出了一种非临时性计算机可读存储介质,其上存储有计算机程序,该程序被处理器执行时实现前述实施例所提供的终端设备安全性控制方法。In order to implement the above embodiments, the present invention also proposes a non-transitory computer-readable storage medium on which a computer program is stored, and when the program is executed by a processor, the terminal device security control method provided in the above embodiments is implemented.

为了实现上述实施例,本发明还提出了一种计算机程序产品,当所述计算机程序产品中的指令由处理器执行时,执行前述实施例所提供的终端设备安全性控制方法。In order to implement the above embodiments, the present invention further proposes a computer program product. When the instructions in the computer program product are executed by a processor, the terminal device security control method provided in the above embodiments is executed.

在本说明书的描述中,参考术语“一个实施例”、“一些实施例”、“示例”、“具体示例”、或“一些示例”等的描述意指结合该实施例或示例描述的具体特征、结构、材料或者特点包含于本发明的至少一个实施例或示例中。在本说明书中,对上述术语的示意性表述不必须针对的是相同的实施例或示例。而且,描述的具体特征、结构、材料或者特点可以在任一个或多个实施例或示例中以合适的方式结合。此外,在不相互矛盾的情况下,本领域的技术人员可以将本说明书中描述的不同实施例或示例以及不同实施例或示例的特征进行结合和组合。In the description of this specification, descriptions referring to the terms "one embodiment", "some embodiments", "example", "specific examples", or "some examples" mean that specific features described in connection with the embodiment or example , structure, material or characteristic is included in at least one embodiment or example of the present invention. In this specification, the schematic representations of the above terms are not necessarily directed to the same embodiment or example. Furthermore, the described specific features, structures, materials or characteristics may be combined in any suitable manner in any one or more embodiments or examples. In addition, those skilled in the art can combine and combine different embodiments or examples and features of different embodiments or examples described in this specification without conflicting with each other.

尽管上面已经示出和描述了本发明的实施例,可以理解的是,上述实施例是示例性的,不能理解为对本发明的限制,本领域的普通技术人员在本发明的范围内可以对上述实施例进行变化、修改、替换和变型。Although the embodiments of the present invention have been shown and described above, it can be understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and those skilled in the art can make the above-mentioned The embodiments are subject to changes, modifications, substitutions and variations.

Claims (12)

1.一种终端设备安全性控制方法,其特征在于,包括以下步骤:1. A terminal device security control method, characterized in that, comprising the following steps: 终端设备解锁成功时,控制所述终端设备从锁定状态进入解锁状态;When the terminal device is successfully unlocked, controlling the terminal device to enter the unlocked state from the locked state; 在解锁状态下,采集用户的生物特征;In the unlocked state, collect the user's biometrics; 根据所述生物特征,进行身份验证;Perform identity verification based on said biometric feature; 若身份验证通过,控制所述终端设备继续处于解锁状态;If the identity verification is passed, controlling the terminal device to continue to be in an unlocked state; 若身份验证未通过,控制所述终端设备进入锁定状态。If the identity verification fails, control the terminal device to enter a locked state. 2.根据权利要求1所述的终端设备安全性控制方法,其特征在于,所述根据所述生物特征,进行身份验证,包括:2. The terminal device security control method according to claim 1, wherein said performing identity verification according to said biometric feature comprises: 查询所述终端设备解锁成功时所采用的用户身份;Querying the user identity used when the terminal device is successfully unlocked; 根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配;所述生物特征包括虹膜特征、人脸特征和/或指纹特征;Match each of the at least one biometric feature collected according to the standard template library of the user identity; the biometric feature includes iris features, face features and/or fingerprint features; 若至少存在一种生物特征与所述标准模板库中所述生物特征的模板不匹配,确定身份验证未通过。If there is at least one biological feature that does not match the template of the biological feature in the standard template library, it is determined that the identity verification fails. 3.根据权利要求1所述的终端设备安全性控制方法,其特征在于,所述采集用户的生物特征,包括:3. The terminal device security control method according to claim 1, wherein said collecting the biometrics of the user comprises: 所述终端设备的使用状态满足预设安全控制条件时,采集至少一种生物特征;Collecting at least one biometric feature when the usage status of the terminal device meets the preset security control conditions; 若未采集到生物特征,显示生物特征采集的提示信息,并重新采集至少一种生物特征;If the biometric feature is not collected, display the prompt information of biometric feature collection, and re-collect at least one biometric feature; 当重新采集的次数满足预设次数时,控制所述终端设备进入锁定状态。When the number of times of re-collection satisfies the preset number of times, the terminal device is controlled to enter a locked state. 4.根据权利要求3所述的终端设备安全性控制方法,其特征在于,所述预设安全控制条件,包括:4. The terminal device security control method according to claim 3, wherein the preset security control conditions include: 距离上一次采集的生物特征达到预设时长;The preset period of time has passed since the last collected biometric feature; 和/或,探测到目标应用程序处于运行状态;and/or, detecting that the target application is running; 和/或,在探测范围内捕捉到探测对象;所述探测对象,用于采集生物特征,所述探测对象包括虹膜、人脸和/或指纹。And/or, a detection object is captured within the detection range; the detection object is used to collect biometric features, and the detection object includes iris, human face and/or fingerprint. 5.一种终端设备安全性控制装置,其特征在于,包括:5. A terminal equipment security control device, characterized in that it comprises: 控制模块,用于终端设备解锁成功,控制所述终端设备从锁定状态进入解锁状态;The control module is used for successfully unlocking the terminal device, and controlling the terminal device to enter the unlocked state from the locked state; 采集模块,用于在解锁状态下,采集用户的生物特征;The collection module is used to collect the biometrics of the user in the unlocked state; 身份验证模块,用于根据所述生物特征,进行身份验证;An identity verification module, configured to perform identity verification according to the biometric feature; 所述控制模块,还用于若身份验证通过,控制所述终端设备继续处于解锁状态;若身份验证未通过,控制所述终端设备进入锁定状态。The control module is further configured to control the terminal device to continue to be in the unlocked state if the identity verification is passed; and control the terminal device to enter the locked state if the identity verification is not passed. 6.根据权利要求5所述的终端设备安全性控制装置,其特征在于,所述身份验证模块,包括:6. The terminal device security control device according to claim 5, wherein the identity verification module includes: 查询单元,用于查询所述终端设备解锁成功时所采用的用户身份;a query unit, configured to query the user identity used when the terminal device is successfully unlocked; 匹配单元,用于根据所述用户身份的标准模板库,对采集到的至少一种生物特征中的每一种进行匹配;所述生物特征包括虹膜特征、人脸特征和/或指纹特征;A matching unit, configured to match each of the collected at least one biometric feature according to the standard template library of the user identity; the biometric feature includes iris features, face features and/or fingerprint features; 验证单元,用于若至少存在一种生物特征与所述标准模板库中所述生物特征的模板不匹配,确定身份验证未通过。The verification unit is configured to determine that the identity verification fails if at least one biological feature does not match the template of the biological feature in the standard template library. 7.根据权利要求5所述的终端设备安全性控制装置,其特征在于,所述采集模块,包括:7. The terminal device security control device according to claim 5, wherein the collection module includes: 采集单元,用于所述终端设备的使用状态满足预设安全控制条件时,采集至少一种生物特征;若未采集到生物特征,显示生物特征采集的提示信息,并重新采集至少一种生物特征;The collection unit is used to collect at least one biometric feature when the use status of the terminal device meets the preset security control conditions; if the biometric feature is not collected, display the prompt information of biometric feature collection, and re-collect at least one biometric feature ; 控制单元,用于当重新采集的次数满足预设次数时,控制所述终端设备进入锁定状态。The control unit is configured to control the terminal device to enter a locked state when the number of times of re-collection satisfies a preset number of times. 8.根据权利要求7所述的终端设备安全性控制装置,其特征在于,所述预设安全控制条件,包括:8. The terminal device security control device according to claim 7, wherein the preset security control conditions include: 距离上一次采集的生物特征达到预设时长;The preset period of time has passed since the last collected biometric feature; 和/或,探测到目标应用程序处于运行状态;and/or, detecting that the target application is running; 和/或,在探测范围内捕捉到探测对象;所述探测对象,用于采集生物特征,所述探测对象包括虹膜、人脸和/或指纹。And/or, a detection object is captured within the detection range; the detection object is used to collect biometric features, and the detection object includes iris, human face and/or fingerprint. 9.一种终端设备,其特征在于,包括如权利要求5-8任一所述的终端设备安全性控制装置。9. A terminal device, characterized by comprising the terminal device security control device according to any one of claims 5-8. 10.一种终端设备,其特征在于,包括以下一个或多个组件:壳体和位于所述壳体内的处理器和存储器,其中,所述存储器存储有可执行程序代码,所述处理器通过读取所述存储器中存储的可执行程序代码来运行与所述可执行程序代码对应的程序,以用于执行如权利要求1-4任一项所述的终端设备安全性控制方法。10. A terminal device, characterized in that it comprises one or more of the following components: a housing, a processor and a memory located in the housing, wherein the memory stores executable program codes, and the processor passes The executable program code stored in the memory is read to run a program corresponding to the executable program code, so as to execute the terminal device security control method according to any one of claims 1-4. 11.一种非临时性计算机可读存储介质,其上存储有计算机程序,其特征在于,该程序被处理器执行时实现如权利要求1-4任一项所述的终端设备安全性控制方法。11. A non-transitory computer-readable storage medium, on which a computer program is stored, characterized in that, when the program is executed by a processor, the terminal device security control method according to any one of claims 1-4 is implemented . 12.一种计算机程序产品,其特征在于,当所述计算机程序产品中的指令由处理器执行时,执行如权利要求1-4任一项所述的终端设备安全性控制方法。12. A computer program product, characterized in that, when the instructions in the computer program product are executed by a processor, the terminal device security control method according to any one of claims 1-4 is executed.
CN201710237663.9A 2017-04-12 2017-04-12 Terminal equipment security control method and device and terminal equipment Expired - Fee Related CN107145772B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710237663.9A CN107145772B (en) 2017-04-12 2017-04-12 Terminal equipment security control method and device and terminal equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710237663.9A CN107145772B (en) 2017-04-12 2017-04-12 Terminal equipment security control method and device and terminal equipment

Publications (2)

Publication Number Publication Date
CN107145772A true CN107145772A (en) 2017-09-08
CN107145772B CN107145772B (en) 2020-01-10

Family

ID=59774309

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710237663.9A Expired - Fee Related CN107145772B (en) 2017-04-12 2017-04-12 Terminal equipment security control method and device and terminal equipment

Country Status (1)

Country Link
CN (1) CN107145772B (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107609382A (en) * 2017-10-12 2018-01-19 广东小天才科技有限公司 Terminal device locking method, terminal device and storage medium
CN107644160A (en) * 2017-09-15 2018-01-30 努比亚技术有限公司 A kind of method of rights management, terminal and computer-readable recording medium
CN109547622A (en) * 2018-09-20 2019-03-29 维沃移动通信有限公司 A kind of verification method and terminal device
CN110119604A (en) * 2019-05-22 2019-08-13 湖南暄程科技有限公司 Improve the method, apparatus, terminal and storage equipment of information system security
CN112307452A (en) * 2019-08-01 2021-02-02 银河水滴科技(北京)有限公司 Application program operation control method and device and computer readable storage medium
WO2021227530A1 (en) * 2020-05-14 2021-11-18 华为技术有限公司 Device enabling method and apparatus, and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103902861A (en) * 2012-12-28 2014-07-02 联想(北京)有限公司 Status switching method and electronic device
CN105678137A (en) * 2014-11-19 2016-06-15 中兴通讯股份有限公司 Method and device for identity recognition
CN106326708A (en) * 2016-08-26 2017-01-11 广东欧珀移动通信有限公司 Mobile terminal control method and device
CN106529243A (en) * 2015-09-09 2017-03-22 中兴通讯股份有限公司 Identity authentication method, device and terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103902861A (en) * 2012-12-28 2014-07-02 联想(北京)有限公司 Status switching method and electronic device
CN105678137A (en) * 2014-11-19 2016-06-15 中兴通讯股份有限公司 Method and device for identity recognition
CN106529243A (en) * 2015-09-09 2017-03-22 中兴通讯股份有限公司 Identity authentication method, device and terminal
CN106326708A (en) * 2016-08-26 2017-01-11 广东欧珀移动通信有限公司 Mobile terminal control method and device

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107644160A (en) * 2017-09-15 2018-01-30 努比亚技术有限公司 A kind of method of rights management, terminal and computer-readable recording medium
CN107609382A (en) * 2017-10-12 2018-01-19 广东小天才科技有限公司 Terminal device locking method, terminal device and storage medium
CN107609382B (en) * 2017-10-12 2020-03-20 广东小天才科技有限公司 Terminal device locking method, terminal device and storage medium
CN109547622A (en) * 2018-09-20 2019-03-29 维沃移动通信有限公司 A kind of verification method and terminal device
CN109547622B (en) * 2018-09-20 2021-06-29 维沃移动通信有限公司 A verification method and terminal device
CN110119604A (en) * 2019-05-22 2019-08-13 湖南暄程科技有限公司 Improve the method, apparatus, terminal and storage equipment of information system security
CN110119604B (en) * 2019-05-22 2022-01-28 湖南暄程科技有限公司 Method, device, terminal and storage equipment for improving security of information system
CN112307452A (en) * 2019-08-01 2021-02-02 银河水滴科技(北京)有限公司 Application program operation control method and device and computer readable storage medium
WO2021227530A1 (en) * 2020-05-14 2021-11-18 华为技术有限公司 Device enabling method and apparatus, and storage medium

Also Published As

Publication number Publication date
CN107145772B (en) 2020-01-10

Similar Documents

Publication Publication Date Title
US11093731B2 (en) Analysis of reflections of projected light in varying colors, brightness, patterns, and sequences for liveness detection in biometric systems
CN107145772B (en) Terminal equipment security control method and device and terminal equipment
US8955069B1 (en) Event-based biometric authentication using mobile device
CN108804006B (en) Unlocking method, device, device and storage medium for wearable device
CN104008321A (en) Judging method and judging system for identifying user right based on fingerprint for mobile terminal
EP3163851A1 (en) User mode control method and system based on iris recognition technology for mobile terminal
US11997087B2 (en) Mobile enrollment using a known biometric
EP3516569A1 (en) Passive availability testing
CN105678147B (en) Touch operation method and device
CN107577930B (en) Unlocking detection method of touch screen terminal and touch screen terminal
US9792421B1 (en) Secure storage of fingerprint related elements
CN104933341A (en) Method and terminal for rights management
CN107872560A (en) Management method and device for terminal authority
WO2018040045A1 (en) Monitoring method, apparatus and electronic device
WO2016188230A1 (en) Unlocking method and device
CN105447365A (en) Control based privacy protection method and user terminal
CN111222172A (en) A kind of electronic signature method and system for mobile terminal based on real-name authentication and protection of face
CN105611036A (en) Method, system and terminal for unlocking verification
WO2016180234A1 (en) Method and apparatus for building secure environment
WO2017041358A1 (en) User identity recognition method and apparatus, and mobile terminal
CN107786349B (en) Security management method and device for user account
CN107992733B (en) A kind of intelligent terminal and its safe unlocking method
WO2018000234A1 (en) Method and system for controlling smart door access on basis of dual fingerprints
CN110163014A (en) Terminal device theft preventing method and device
WO2018006325A1 (en) Method and system for verifying user entrance

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information

Address after: Changan town in Guangdong province Dongguan 523860 usha Beach Road No. 18

Applicant after: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS Corp.,Ltd.

Address before: Changan town in Guangdong province Dongguan 523860 usha Beach Road No. 18

Applicant before: GUANGDONG OPPO MOBILE TELECOMMUNICATIONS Corp.,Ltd.

CB02 Change of applicant information
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20200110

CF01 Termination of patent right due to non-payment of annual fee