Account management method, APP account system and APP management system

By coordinating the verification between the APP account system and the payment wallet system, the shortcomings of the APP account system's identity verification under the two-tier operation system are resolved, achieving higher security and convenience.

CN116415953BActive Publication Date: 2026-07-03THE PEOPLES BANK OF CHINA DIGITAL CURRENCY INST

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
THE PEOPLES BANK OF CHINA DIGITAL CURRENCY INST
Filing Date
2021-12-30
Publication Date
2026-07-03

AI Technical Summary

Technical Problem

Under the two-tier operating system, the APP account system lacks user payment data and real-name data, and cannot provide effective identity verification services, resulting in insufficient security and convenience of APP account management.

Method used

The APP account system performs verification when the identity verification elements include account information or auxiliary verification information, and initiates a verification request to the payment wallet system when the identity verification elements include wallet payment information or user real-name information, thereby achieving collaborative identity verification between the APP account system and the payment wallet system.

Benefits of technology

It improves the security and flexibility of APP account management, and enhances the consistency and convenience of user experience.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN116415953B_ABST
    Figure CN116415953B_ABST
Patent Text Reader

Abstract

The application discloses a method for account management, an APP account system and an APP management system, and relates to the technical field of computers. A specific embodiment of the method comprises the following steps: in response to an account management operation request of a user in an APP, obtaining wallet information of a target digital currency wallet associated with the account; determining an identity verification element according to the wallet information; in the case where the identity verification element comprises account information or auxiliary verification information, verifying the account information or the auxiliary verification information; and in the case where the identity verification element comprises wallet payment information or user real-name information, initiating a verification request to a payment wallet system corresponding to the target digital currency wallet to verify the wallet payment information or the user real-name information. The embodiment can provide an account identity verification service by the APP account system and the payment wallet system of the payment wallet belonging to an operating institution, improve the security and flexibility of APP account management, and increase the uniformity and convenience of APP user experience.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This invention relates to the field of computer technology, and in particular to an account management method, an APP account system, and an APP management system. Background Technology

[0002] Generally, an app account system uses data generated from user behavior to perform identity verification for app account management functions. This data includes user real-name information, user biometric information, user account information, and wallet payment information. Once the user is verified, they can manage and update their app account information, thus better ensuring the security of app account management. Typically, the app account verification process is handled by a unified app account management system.

[0003] However, in this two-tiered operating system, the app serves as the unified customer-facing channel for user account management, while user account data and user payment data are managed by different organizations. User account data is maintained and managed by the app's account system, while user payment data and real-name authentication data are maintained and managed by the system of the organization operating the payment wallet. The app's account system lacks user payment data and real-name authentication data, thus failing to provide corresponding identity verification services. In this context, effectively implementing app account identity verification becomes a pressing issue. Summary of the Invention

[0004] In view of this, embodiments of the present invention provide an account management method, an APP account system, and an APP management system. By having the APP account system perform verification when the identity verification elements include account information or auxiliary verification information, and by having the APP account system initiate a verification request to the corresponding payment wallet system when the identity verification elements include wallet payment information or user real-name information, the APP account system and the payment wallet system of the operating institution to which the payment wallet belongs can jointly provide account identity verification services, thereby improving the security and flexibility of APP account management and increasing the uniformity and convenience of the APP user experience.

[0005] To achieve the above objectives, according to one aspect of the present invention, an account management method is provided, applied to an APP account system, the method comprising:

[0006] In response to a user's account management request in the APP, obtain the wallet information of the target digital currency wallet associated with the account;

[0007] The authentication elements are determined based on the wallet information; the authentication elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0008] The user is authenticated based on the authentication elements; wherein, if the authentication elements include the account information or the auxiliary verification information, the account information or the auxiliary verification information is verified; if the authentication elements include the wallet payment information or the user's real-name information, a verification request is initiated to the payment wallet system corresponding to the target digital currency wallet, and a response result is received from the payment wallet system.

[0009] Optionally, the account management operation request carries the wallet identifier associated with the account;

[0010] Obtaining the wallet information of the target digital currency wallet associated with the account includes: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet; otherwise, using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0011] Optionally, the account management operation request carries the user's user identifier;

[0012] Obtaining the wallet information of the target digital currency wallet associated with the account includes: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0013] Optionally, obtaining the wallet information of the target digital currency wallet associated with the account includes: obtaining the wallet information of the digital currency wallet from the payment wallet system corresponding to the target digital currency wallet; or, obtaining the wallet information of the target digital currency wallet from a local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0014] Optionally, the account management operation request is a login password retrieval request; the authentication elements are determined based on the wallet information, including:

[0015] Determine whether the target digital wallet is a real-name wallet based on the wallet information;

[0016] If so, the user's real-name information will be used as the identity verification element to be verified.

[0017] Otherwise, the system determines whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, it determines a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, it determines a candidate element set based on the wallet payment information, and uses the element selected by the user from the candidate element set as the identity verification element to be verified.

[0018] Optionally, the candidate element set also includes a wallet upgrade request; when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set, the target digital wallet is upgraded to a real-name wallet and the user is authenticated during the upgrade process.

[0019] Optionally, the account management operation request is an account loss reporting request; the identity verification elements are determined based on the wallet information, including:

[0020] A set of candidate elements is determined based on the account information, the wallet payment information, and the user's real-name information, and the element selected by the user from the set of candidate elements is used as the identity verification element to be verified.

[0021] Based on the wallet information, determine whether the target digital wallet is a real-name wallet. If the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then the user's real-name information is used as the identity verification element to be verified.

[0022] Optionally, the account management operation request is an account unblocking request; the identity verification elements are determined based on the wallet information, including:

[0023] Based on the wallet information, determine whether the target digital wallet is a real-name wallet; if so, use the user's real-name information as the identity verification element to be verified; otherwise, determine a set of candidate elements based on the account information and the wallet payment information, and use the element selected by the user from the set of candidate elements as the identity verification element to be verified.

[0024] Optionally, before obtaining the wallet information of the target digital currency wallet associated with the account, the process further includes: verifying the account with a verification code and confirming that the verification is successful; if the verification code fails, the current process ends.

[0025] Optionally, after determining the authentication elements based on the wallet information, the method further includes: determining the authentication order of each of the authentication elements;

[0026] Authenticating the user based on the authentication elements includes: verifying each of the authentication elements in the verification order, and verifying the next authentication element to be verified when the verification is successful.

[0027] Optionally, after determining the authentication elements based on the wallet information, the method further includes: generating a process concatenation identifier corresponding to the account management operation request; and carrying the process concatenation identifier when verifying the authentication elements.

[0028] Optionally, before or after verifying the authentication elements, the method further includes:

[0029] A request is sent to the APP risk control system to enable the APP risk control system to determine the risk level of the account management operation and to intercept the account management operation request if the risk level is greater than the risk threshold.

[0030] According to a second aspect of the present invention, a user authentication APP account system is provided, comprising:

[0031] The request and response module responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account;

[0032] The element determination module determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: account information of the account, wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0033] The element verification module verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the module verifies the account information or the auxiliary verification information; and when the identity verification elements include the wallet payment information or the user's real-name information, the module initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives a response result returned by the payment wallet system.

[0034] Optionally, the account management operation request carries the wallet identifier associated with the account;

[0035] The request response module obtains the wallet information of the target digital currency wallet associated with the account, including: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet, otherwise using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0036] Optionally, the account management operation request carries the user's user identifier;

[0037] The request response module obtains the wallet information of the target digital currency wallet associated with the account, including: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0038] Optionally, the request response module obtains the wallet information of the target digital currency wallet associated with the account, including:

[0039] The wallet information of the target digital currency wallet is obtained from the payment wallet system corresponding to the target digital currency wallet; or, the wallet information of the target digital currency wallet is obtained from a local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0040] Optionally, the account management operation request is a login password retrieval request; the element determination module determines the identity verification elements based on the wallet information, including:

[0041] Determine whether the target digital wallet is a real-name wallet based on the wallet information;

[0042] If so, the user's real-name information will be used as the identity verification element to be verified.

[0043] Otherwise, the system determines whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, it determines a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, it determines a candidate element set based on the wallet payment information, and uses the element selected by the user from the candidate element set as the identity verification element to be verified.

[0044] Optionally, the candidate element set also includes a wallet upgrade request; the element determination module is further configured to: upgrade the target digital wallet to a real-name wallet and verify the user's identity during the upgrade process when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set.

[0045] Optionally, the account management operation request is an account loss reporting request; the element determination module determines identity verification elements based on the wallet information, including:

[0046] A set of candidate elements is determined based on the account information, the wallet payment information, and the user's real-name information, and the element selected by the user from the set of candidate elements is used as the identity verification element to be verified.

[0047] Based on the wallet information, determine whether the target digital wallet is a real-name wallet. If the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then the user's real-name information is used as the identity verification element to be verified.

[0048] Optionally, the account management operation request is an account unblocking request; the element determination module determines the identity verification elements based on the wallet information, including:

[0049] Based on the wallet information, determine whether the target digital wallet is a real-name wallet; if so, use the user's real-name information as the identity verification element to be verified; otherwise, determine a set of candidate elements based on the account information and the wallet payment information, and use the element selected by the user from the set of candidate elements as the identity verification element to be verified.

[0050] Optionally, the request response module is further configured to: verify the account with a verification code before obtaining the wallet information of the target digital currency wallet associated with the account, and confirm that the verification is successful; if the verification code fails, the current process ends.

[0051] Optionally, the element determination module is further configured to: determine the verification order of each of the identity verification elements after determining the identity verification elements based on the wallet information;

[0052] The element verification module verifies the user's identity based on the identity verification elements, including: verifying each of the identity verification elements in the verification order, and verifying the next identity verification element to be verified when the verification is successful.

[0053] Optionally, the element determination module is further configured to: after determining the identity verification element based on the wallet information, generate a process continuation identifier corresponding to the account management operation request; and carry the process continuation identifier when verifying the identity verification element.

[0054] Optionally, the device further includes a risk control interception module, configured to: send a request to the APP risk control system before or after verifying the identity verification elements so that the APP risk control system can determine the risk level of the account management operation and intercept the account management operation request if the risk level is greater than a risk threshold.

[0055] According to a third aspect of the present invention, an APP management system is provided, including an APP account system and an APP risk control system, wherein:

[0056] The APP account system responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account;

[0057] The APP account system determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0058] The APP account system verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the APP account system verifies the account information or the auxiliary verification information; when the identity verification elements include the wallet payment information or the user's real-name information, the APP account system initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives the response result returned by the payment wallet system.

[0059] Optionally, the account management operation request carries the wallet identifier associated with the account;

[0060] The APP account system obtains the wallet information of the target digital currency wallet associated with the account, including: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet, otherwise using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0061] Optionally, the account management operation request carries the user's user identifier;

[0062] The APP account system obtains the wallet information of the target digital currency wallet associated with the account, including: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0063] Optionally, the APP account system obtains the wallet information of the target digital currency wallet associated with the account, including:

[0064] The wallet information of the target digital currency wallet is obtained from the payment wallet system corresponding to the target digital currency wallet; or, the APP account system obtains the wallet information of the target digital currency wallet from the local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0065] Optionally, the account management operation request is a login password retrieval request; the APP account system determines the identity verification elements based on the wallet information, including:

[0066] Determine whether the target digital wallet is a real-name wallet based on the wallet information;

[0067] If so, the user's real-name information will be used as the identity verification element to be verified.

[0068] Otherwise, the system determines whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, it determines a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, it determines a candidate element set based on the wallet payment information, and uses the element selected by the user from the candidate element set as the identity verification element to be verified.

[0069] Optionally, the candidate element set also includes a wallet upgrade request; when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set, the APP account system upgrades the target digital wallet to a real-name wallet and verifies the user's identity during the upgrade process.

[0070] Optionally, the account management operation request is an account loss reporting request; the element determination module of the APP account system determines the identity verification elements based on the wallet information, including:

[0071] A set of candidate elements is determined based on the account information, the wallet payment information, and the user's real-name information, and the element selected by the user from the set of candidate elements is used as the identity verification element to be verified.

[0072] Based on the wallet information, determine whether the target digital wallet is a real-name wallet. If the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then the user's real-name information is used as the identity verification element to be verified.

[0073] Optionally, the account management operation request is an account unblocking request; the element determination module of the APP account system determines the identity verification elements based on the wallet information, including:

[0074] Based on the wallet information, determine whether the target digital wallet is a real-name wallet; if so, use the user's real-name information as the identity verification element to be verified; otherwise, determine a set of candidate elements based on the account information and the wallet payment information, and use the element selected by the user from the set of candidate elements as the identity verification element to be verified.

[0075] Optionally, the APP account system is further configured to: verify the account with a verification code before obtaining the wallet information of the target digital currency wallet associated with the account, and confirm that the verification is successful; if the verification code fails, the current process ends.

[0076] Optionally, after determining the identity verification elements based on the wallet information, the APP account system is further configured to: determine the verification order of each of the identity verification elements;

[0077] Authenticating the user based on the authentication elements includes: verifying each of the authentication elements in the verification order, and verifying the next authentication element to be verified when the verification is successful.

[0078] Optionally, the APP account system is further configured to: after determining the identity verification elements based on the wallet information, generate a process concatenation identifier corresponding to the account management operation request; and carry the process concatenation identifier when the APP account system verifies the identity verification elements.

[0079] Optionally, the APP account system is further configured to: send a request to the APP risk control system before or after verifying the identity verification elements so that the APP risk control system can determine the risk level of the account management operation and intercept the account management operation request if the risk level is greater than a risk threshold.

[0080] According to a fourth aspect of the present invention, an electronic device is provided, comprising:

[0081] One or more processors;

[0082] Storage device for storing one or more programs.

[0083] When the one or more programs are executed by the one or more processors, the one or more processors implement the method provided in the first aspect of the embodiments of the present invention.

[0084] According to a fifth aspect of the present invention, a computer-readable medium is provided having a computer program stored thereon, which, when executed by a processor, implements the method provided in the first aspect of the present invention.

[0085] One embodiment of the above invention has the following advantages or beneficial effects: by having the APP account system perform verification when the identity verification elements include account information or auxiliary verification information, and by having the APP account system initiate a request to the corresponding payment wallet system for verification when the identity verification elements include wallet payment information or user real-name information, the APP account system and the payment wallet system of the operating institution to which the payment wallet belongs can jointly provide account identity verification services, thereby improving the security and flexibility of APP account management and increasing the uniformity and convenience of APP user experience.

[0086] The further effects of the aforementioned unconventional alternative methods will be explained below in conjunction with specific implementation methods. Attached Figure Description

[0087] The accompanying drawings are provided to better understand the invention and are not intended to unduly limit the scope of the invention. Wherein:

[0088] Figure 1 This is a schematic diagram of the main flow of the account management method according to an embodiment of the present invention;

[0089] Figure 2 This is a schematic diagram illustrating an application scenario of the account management method according to an embodiment of the present invention;

[0090] Figure 3 This is a schematic diagram of the authentication elements in an optional embodiment of the present invention;

[0091] Figure 4 This is a schematic diagram of wallet information synchronization in an optional embodiment of the present invention;

[0092] Figure 5 This is a schematic diagram of the main process of account management in an optional embodiment of the present invention;

[0093] Figure 6 This is a schematic diagram of the main modules of the APP account system according to an embodiment of the present invention;

[0094] Figure 7 This is a schematic diagram of the main components of the APP management system according to an embodiment of the present invention;

[0095] Figure 8 This is an exemplary system architecture diagram in which embodiments of the present invention can be applied;

[0096] Figure 9 This is a schematic diagram of the structure of a computer system suitable for implementing terminal devices or servers of the present invention. Detailed Implementation

[0097] The following description, in conjunction with the accompanying drawings, illustrates exemplary embodiments of the present invention, including various details to aid understanding. These details should be considered merely exemplary. Therefore, those skilled in the art will recognize that various changes and modifications can be made to the embodiments described herein without departing from the scope and spirit of the invention. Similarly, for clarity and brevity, descriptions of well-known functions and structures are omitted in the following description.

[0098] According to one aspect of the present invention, a method for account management is provided.

[0099] Figure 1 This is a schematic diagram of the main flow of the account management method according to an embodiment of the present invention, as shown below. Figure 1 As shown, the account management method according to an embodiment of the present invention includes:

[0100] Step S101: In response to the user's account management operation request in the APP, obtain the wallet information of the target digital currency wallet associated with the account;

[0101] Step S102: Determine the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: account information of the account, wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0102] Step S103: Verify the user's identity based on the identity verification elements; wherein, if the identity verification elements include the account information or the auxiliary verification information, verify the account information or the auxiliary verification information; if the identity verification elements include the wallet payment information or the user's real-name information, initiate a verification request to the payment wallet system corresponding to the target digital currency wallet and receive the response result returned by the payment wallet system.

[0103] The account management method in this embodiment of the invention is applied to an APP account system. Figure 2 This is a schematic diagram illustrating an application scenario of the account management method according to an embodiment of the present invention. Figure 2 In the illustrated application scenario, the app provides the user interaction channel for account authentication and information management. The app account system is responsible for the overall authentication process, distributing authentication requests, and managing app account information. The app risk control system is responsible for risk control verification and blocking of app accounts. The payment wallet system is responsible for verifying user identity information related to the wallet. The app account system uses data generated by user behavior to implement the authentication process for app account management functions. This data includes user real-name information, auxiliary verification method settings, user account information, and wallet payment information. Figure 3This is a schematic diagram of authentication elements in an optional embodiment of the present invention. For example... Figure 3 As shown, the identity verification elements include: account information, wallet payment information of the target cryptocurrency wallet, user real-name information of the target cryptocurrency wallet, and auxiliary verification information. Account information refers to information related to the user's account in the app, such as username, login password, and biometric information (fingerprint, facial image, etc.) used for login. Users can set biometric settings in the app to restrict account login methods, such as logging in with username and password, logging in with SMS verification code, or logging in with biometric information. Wallet payment information refers to information related to wallet payments, such as payment password, payment password input method (e.g., manual password, fingerprint password), and payment limits. User real-name information refers to the real-name information used when registering the cryptocurrency wallet, such as the user's ID card number or passport information, biometric information such as facial or fingerprint features, and physiological characteristics that can be used for liveness detection, such as blinking or head tilting. Auxiliary verification information includes auxiliary verification methods and verification information content. Auxiliary verification methods include authentication methods when a user forgets their login password (such as answering pre-set questions, retrieving the password via email, verifying via mobile phone number, etc.). Verification information content includes pre-set security questions and their answers, auxiliary verification email address, auxiliary verification mobile phone number, etc.

[0104] Payment apps have stricter identity verification requirements for changes to app account information, as this not only relates to changes in app account information but also impacts user payment security. Typically, app account identity verification is handled by a unified system. However, in a two-tiered operating system, the app serves as the unified customer-facing channel for user account management, while user account data and user payment data are managed by different operating institutions. Specifically, user account data is maintained and managed by the app's account system, while user payment data and real-name data are maintained and managed by the system of the operating institution of the payment wallet. The app's account system lacks user payment data and real-name data, thus unable to provide corresponding identity verification services. In this embodiment of the invention, by having the app's account system perform verification when identity verification elements include account information or auxiliary verification information, and by having the app's account system initiate a verification request to the corresponding payment wallet system when identity verification elements include wallet payment information or user real-name information, the app's account system and the payment wallet system of the operating institution jointly provide account identity verification services. This improves the security and flexibility of app account management and enhances the uniformity and convenience of the app user experience.

[0105] In some optional embodiments, the account management operation request carries a wallet identifier associated with the account. The step of obtaining the wallet information of the target digital currency wallet associated with the account includes: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier as the target digital currency wallet from the multiple wallet identifiers; otherwise, using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0106] For example, the account management operation request carries three wallet identifiers associated with the account. One of these three identifiers is randomly selected, and the cryptocurrency wallet corresponding to the selected identifier is used as the target cryptocurrency wallet. Alternatively, the cryptocurrency wallets corresponding to each of the three identifiers can be used as the target cryptocurrency wallets. In practical applications, when a user intends to perform account management operations on a specific cryptocurrency wallet A associated with their account, the corresponding account management operation request can only carry the wallet identifier of cryptocurrency wallet A. Subsequent identity verification is performed based on the wallet information of cryptocurrency wallet A, and the user's account management operation on cryptocurrency wallet A is executed upon successful verification. Typically, when the account management operation request carries multiple wallet identifiers associated with the account, the cryptocurrency wallet opened under the user's real name can be prioritized as the target cryptocurrency wallet.

[0107] In some optional embodiments, the account management operation request carries the user's user identifier. The step of obtaining the wallet information of the target digital currency wallet associated with the account includes: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0108] For example, a user account is associated with 5 wallet identifiers. One wallet identifier is randomly selected from the 5 wallet identifiers, and the cryptocurrency wallet corresponding to the selected wallet identifier is used as the target cryptocurrency wallet; or, two or more of the corresponding cryptocurrency wallets from the 5 wallet identifiers are used as the target cryptocurrency wallets. Generally, when a user account is associated with multiple cryptocurrency wallets, the cryptocurrency wallet opened with the user's real name can be prioritized as the target cryptocurrency wallet.

[0109] Optionally, the step of obtaining the wallet information of the target digital currency wallet associated with the account includes: obtaining the wallet information of the digital currency wallet from the payment wallet system corresponding to the target digital currency wallet; or, obtaining the wallet information of the target digital currency wallet from a local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0110] Figure 4 This is a schematic diagram of wallet information synchronization in an optional embodiment of the present invention. Figure 4 As shown, when the conditions are triggered, the payment wallet system of the payment wallet operator can proactively synchronize the user's digital currency wallet information to the APP account system bound to that digital currency wallet. During the user authentication process in this embodiment of the invention, the APP account system can also proactively obtain the target digital currency wallet information from the payment wallet system corresponding to the target digital currency wallet. By proactively obtaining wallet information from the payment wallet system, the accuracy of the wallet information can be ensured; by obtaining wallet information from local storage devices, network resource consumption caused by frequent access to the payment wallet system can be avoided, thus improving authentication efficiency.

[0111] The types of identity elements required for verification each time can be selectively set according to the actual situation. After the user is verified, they can manage and update their APP account information, such as changing their account login password, wallet payment password, reporting a lost account, or unblocking an account. This can better ensure the security of APP account management.

[0112] In some optional embodiments, the account management operation request is a login password retrieval request; the step of determining the identity verification element based on the wallet information includes: determining whether the target digital wallet is a real-name wallet based on the wallet information; if so, then using the user's real-name information as the identity verification element to be verified; otherwise, determining whether to verify the auxiliary verification information based on the auxiliary verification settings information of the user in the APP; if so, then determining a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, determining a candidate element set based on the wallet payment information, and using the element selected by the user from the candidate element set as the identity verification element to be verified.

[0113] Based on the security level of the authentication information used when creating a digital currency wallet, digital currency wallets can be categorized into Class I, Class II, Class III, Class IV, and Class V, with Class IV and Class V wallets being anonymous wallets. In practical applications, the candidate element set can also include wallet upgrade requests. When a user selects a wallet upgrade request as the identity verification element to be verified from the candidate element set, the target digital wallet is upgraded to a real-name wallet, and user identity verification is performed during the upgrade process. For example, when a user of a Class IV wallet forgets their auxiliary verification information or payment information, they can choose the "Anonymous Wallet Class IV to Class II Upgrade" method for verification. The elements to be verified during the upgrade process include: user real-name information and bank card information. The APP account system can initiate a verification request to the payment wallet system of the institution to which the wallet belongs. After the payment wallet system completes the verification, it returns response information to the APP account system, indicating whether the verification passed or failed.

[0114] In some alternative embodiments, the account management operation request is an account loss reporting request; the step of determining the identity verification element based on the wallet information includes: determining a candidate element set based on the account information, wallet payment information and user real-name information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; determining whether the target digital wallet is a real-name wallet based on the wallet information, and if the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user real-name information, using the user real-name information as the identity verification element to be verified.

[0115] For example, in an account loss reporting scenario, the user selects one of three information—account information, wallet payment password, or user real-name information—for identity verification. After successful verification, the system further determines whether the target cryptocurrency wallet is a verified wallet. If so, it further determines whether user real-name information verification has been performed. If not, the system continues with user real-name information verification.

[0116] In some alternative embodiments, the account management operation request is an account unblocking request; the step of determining the identity verification element based on the wallet information includes: determining whether the target digital wallet is a real-name wallet based on the wallet information; if so, then using the user's real-name information as the identity verification element to be verified; otherwise, determining a candidate element set based on the account information and wallet payment information, and using the element selected by the user from the candidate element set as the identity verification element to be verified.

[0117] For example, in the account unblocking scenario, it is first determined whether the target digital currency wallet is a real-name wallet; if so, the user's real-name information is used as the identity verification element to be verified; otherwise, the user can choose either the account information or the wallet payment password for identity verification.

[0118] Typically, cryptocurrency wallets are linked to a user's mobile phone number. In scenarios involving password retrieval or account unblocking, the user's mobile phone number usually remains functional. Therefore, before obtaining the wallet information of the target cryptocurrency wallet associated with the account, further verification via CAPTCHA can be performed to enhance security. If the CAPTCHA verification fails, the current process ends.

[0119] For example, in the application scenario of retrieving login passwords, the main account management process includes three steps. First, the APP account is verified using a verification code. After successful verification, the wallet information bound to the user account is obtained, and the user's real-name authentication status is determined accordingly. Second, if the user account is already bound to a real-name wallet, the user's identity is verified using natural person information (ID information + liveness detection + facial recognition) verification (verification request is sent to the operating institution of the real-name wallet). If the user is only bound to an anonymous wallet, the system continues to determine the user's account auxiliary verification settings. The user can complete identity verification through one of the following feasible methods: account auxiliary verification, anonymous wallet payment password, or upgrading from Category 4 to Category 2 anonymous wallet. For example, based on the security level of the authentication information when creating a digital currency wallet, digital currency wallets can be divided into Category 1, Category 2, Category 3, Category 4, and Category 5, where Category 4 and Category 5 wallets are anonymous wallets. When a user of a Category 4 wallet forgets their auxiliary verification information or payment information, they can choose the "upgrading from Category 4 to Category 2 anonymous wallet" method for verification. The elements to be verified during the upgrade process include: user real-name information and bank card information. In practical applications, the APP system can initiate a verification request to the payment wallet system of the institution to which the wallet belongs. After the payment wallet system completes the verification, it returns a response message to the APP system, indicating whether the verification was successful or not.

[0120] After determining the authentication elements based on the wallet information, each authentication element can be verified asynchronously or sequentially. Optionally, after determining the authentication elements based on the wallet information, the verification order of each authentication element can be further determined, and then each authentication element is verified sequentially according to the determined verification order. The method for determining the verification order can be selectively set according to the actual situation, for example, according to the order in which the authentication elements to be verified are determined. When authenticating a user based on the authentication elements, each authentication element is verified according to this verification order, and the next authentication element to be verified is verified when the verification passes. For example, in the scenario of account loss reporting, assuming that the target digital currency wallet is a real-name wallet, the element selected by the user from the account information, wallet payment information, and user real-name information is verified first. If the verification passes, it is determined whether user real-name information verification has been performed. If so, the verification ends; otherwise, user real-name information verification continues. By performing authentication according to the verification order, the entire authentication process can be terminated in a timely manner if the verification of a certain authentication element fails.

[0121] Optionally, after determining the identity verification elements based on the risk level and the wallet information, the method further includes: generating a process concatenation identifier corresponding to the account management operation request. It should be noted that in the above embodiments of the present invention, each step in the identity verification process needs to sequentially transmit the process concatenation identifier. For example, the process concatenation identifier is carried when verifying account information or auxiliary verification information, and it is carried when initiating a request to the payment wallet system corresponding to the target digital currency wallet to verify wallet payment information or user real-name information.

[0122] It is understandable that multiple identical verification steps may occur during the identity verification process (such as identical verification objects or content, or identical verification step names, etc.), especially when there are multiple identity verification processes for multiple users. In this case, without a process concatenation identifier, it is unclear what specific operational steps are connected to a particular verification step, meaning a complete, sequentially connected operational process cannot be obtained. Therefore, by matching each step with a process concatenation identifier, ensuring that each step in the same operational chain has the same process concatenation identifier, a complete operational process can be obtained through the same identifier. Thus, linking the entire bank card binding process through process concatenation identifiers can effectively prevent forgery. In this invention, when verifying a user's identity, the user is considered successfully authenticated when all identity verification elements have passed verification. By setting process concatenation identifiers, the verification processes corresponding to each identity verification element can be linked together, facilitating rapid determination of the identity verification result.

[0123] In practical applications, before or after verifying identity verification elements, a request can be sent to the APP risk control system to determine the risk level of the account management operation and block the operation request if the risk level exceeds a risk threshold. The method for determining the risk level can be selectively set according to actual circumstances, such as based on the user's login account IP address, user credit information, and the information items the user intends to update. If the risk level exceeds the risk threshold, the current process can be terminated to block the account management operation request, ensuring account security. By performing risk blocking after verifying identity verification elements, the accuracy of the determined risk level can be improved, thereby improving the accuracy of risk blocking and preventing erroneous operations.

[0124] exist Figure 2 In the application scenarios shown, Figure 5This diagram illustrates the main process of user authentication in an optional embodiment of the present invention. When a user uses the APP to operate the user account management function, user authentication must be performed first. Only after successful authentication can changes be made to the account information. The APP operator's APP account system is responsible for the unified business process connection of account management authentication and the verification of account-related information. The APP risk control system is responsible for assessing the risk level of user account management operations and performing appropriate risk control interception to enhance APP authentication security. Each payment wallet operator synchronizes the wallet information of the digital currency wallet opened by the user to the APP account system associated with that digital currency wallet. When a user opens payment wallets with multiple payment wallet operators, each payment wallet operator synchronizes the payment wallet information to the APP account system. The APP account system determines the authentication elements to be verified and the verification order based on the obtained wallet information. The payment wallet system is responsible for verifying the wallet payment information and user real-name information corresponding to the wallet, and transmits the verification result of the specified authentication elements to the APP operator's APP account system through interface messages, where the APP account system performs business process connection processing. The specific description is as follows:

[0125] Step S501: The user enters the APP account authentication process for subsequent APP account information management.

[0126] In step S502, the APP account system initiates a risk control assessment request to the APP risk control system. Normally, if a user sends a request to the APP account system with a wallet identifier (only one wallet identifier is allowed), the APP account system will only initiate a verification process for the cryptocurrency wallet corresponding to that wallet identifier. If the user sends a request to the APP account system without a wallet identifier, the APP account system will automatically match a cryptocurrency wallet corresponding to the user's identifier (randomly selecting one if multiple exist) and initiate a verification process for the matched cryptocurrency wallet. Alternatively, if the user sends a request with multiple wallet identifiers, the APP account system can initiate a verification process for each cryptocurrency wallet corresponding to each wallet identifier separately.

[0127] Step S503: The APP risk control system determines the risk level of this APP account management operation and performs appropriate risk control interception.

[0128] Step S504: The APP account system queries the user's biometric settings and auxiliary verification method settings status;

[0129] Step S505: The APP account system sends a request to the payment wallet system to obtain the latest wallet information of the digital currency wallet associated with the APP account;

[0130] Step S506: The APP account system generates the identity verification elements and verification order to be verified during this account management operation based on the risk level and wallet information.

[0131] Step S507: The APP account system initiates a verification request;

[0132] In step S508, if user real-name verification and wallet payment password verification are required, the APP account system sends a request to the payment wallet system for verification. The payment wallet system returns the verification result to the APP account system, which then proceeds to the next verification step or completes the verification process based on the generated identity verification elements and verification order.

[0133] Step S509: If account information or auxiliary verification is required, verification is performed directly through the APP account system. The APP account system will then proceed to the next verification step or complete the verification based on the generated identity verification elements and verification order.

[0134] The account management method of this invention will be illustrated below with reference to specific application scenarios. The main processes of account management in each application scenario include:

[0135] 1. Password retrieval scenario:

[0136] The first step is to verify the APP account with a verification code, and after successful verification, obtain the wallet information linked to the user account, and determine the user's real-name authentication status based on this information.

[0137] The second step involves verifying the user's identity if their account is already linked to a verified wallet. This verification uses natural person information (ID information + liveness detection + facial recognition) to confirm the user's identity (the verification request is sent to the operating organization of the verified wallet). If the user has only linked an anonymous wallet, the system further assesses the user's auxiliary verification settings (auxiliary verification methods include security questions, auxiliary verification phone numbers, and auxiliary verification emails). The user can complete identity verification through one of the following feasible methods: account auxiliary verification, anonymous wallet payment password, or upgrade from the fourth category to the second category of anonymous wallet verification. Upon successful verification, the process proceeds to the third step.

[0138] The third step is to send a request to the APP's risk control system to determine whether risk control interception is required. If risk control interception is required, the user will be prompted to end the current process on the APP interface.

[0139] Fourth step: If risk control interception is not required, the identity verification is successful. The user can set a new login password on the APP, and the APP will send a login password retrieval request to the APP account system to reset the password.

[0140] 2. Account loss reporting scenarios (e.g., lost mobile phone):

[0141] The first step involves the user selecting one of three information: APP account information, APP account-linked wallet payment information, or user real-name information, to verify their identity. Once the verification is successful, the user proceeds to the second step.

[0142] The second step, if the user account is already linked to a verified wallet, is to determine whether user real-name information verification has been completed, based on the first step. If yes, proceed to the third step; otherwise, continue with user real-name information verification, and then proceed to the third step after successful verification.

[0143] The third step is to send a request to the APP's risk control system to determine whether risk control interception is required. If risk control interception is required, the user will be prompted to end the current process on the APP interface.

[0144] Fourth step: If risk control interception is not required, the identity verification is successful, and the APP sends an account loss reporting request to the APP account system to report the account loss.

[0145] 3. Account unblocking scenario:

[0146] The first step is to verify the APP account with a verification code, and after successful verification, obtain the wallet information linked to the user account, and determine the user's real-name authentication status based on this information.

[0147] The second step involves verifying the user's identity using their real-name information if the user account is already linked to a verified wallet. If the user account is only linked to an anonymous wallet, the user's identity is verified using the app account information or the payment information from the wallet linked to the app account. Once verification is successful, the process proceeds to the third step.

[0148] The third step is to send a request to the APP's risk control system to determine whether risk control interception is required. If risk control interception is required, the user will be prompted to end the current process on the APP interface.

[0149] Fourth step: If risk control interception is not required, the identity verification is successful, and the APP sends an account unblocking request to the APP account system to unblock the account.

[0150] This invention provides a method for verifying payment app account identity based on a two-tier operating system. The account identity verification service is jointly provided by the app account system and the operating system of the payment wallet provider. This identity verification process involves the collaboration of four modules: the app, the app account system, the app risk control system, and the payment wallet system. The app account system is responsible for generating app account identity verification elements and the verification sequence based on risk level and wallet information, and for connecting the overall identity verification process and distributing identity verification requests. This significantly improves the security and flexibility of app account management and enhances the consistency and convenience of the app user experience.

[0151] According to a second aspect of the present invention, an APP account system for implementing the above method is provided.

[0152] Figure 6 This is a schematic diagram of the main modules of the APP account system according to an embodiment of the present invention. Figure 6 As shown, the APP account system 600 for user authentication in this embodiment of the invention includes:

[0153] The request response module 601 responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account;

[0154] The element determination module 602 determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: account information of the account, wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0155] The element verification module 603 verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the module verifies the account information or the auxiliary verification information; and when the identity verification elements include the wallet payment information or the user's real-name information, the module initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives a response result returned by the payment wallet system.

[0156] Optionally, the account management operation request carries the wallet identifier associated with the account;

[0157] The request response module obtains the wallet information of the target digital currency wallet associated with the account, including: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet, otherwise using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0158] Optionally, the account management operation request carries the user's user identifier;

[0159] The request response module obtains the wallet information of the target digital currency wallet associated with the account, including: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0160] Optionally, the request response module obtains the wallet information of the target digital currency wallet associated with the account, including:

[0161] The wallet information of the target digital currency wallet is obtained from the payment wallet system corresponding to the target digital currency wallet; or, the wallet information of the target digital currency wallet is obtained from a local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0162] Optionally, the account management operation request is a login password retrieval request; the element determination module determines the identity verification elements based on the wallet information, including:

[0163] Determine whether the target digital wallet is a real-name wallet based on the wallet information;

[0164] If so, the user's real-name information will be used as the identity verification element to be verified.

[0165] Otherwise, the system determines whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, it determines a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, it determines a candidate element set based on the wallet payment information, and uses the element selected by the user from the candidate element set as the identity verification element to be verified.

[0166] Optionally, the candidate element set also includes a wallet upgrade request; the element determination module is further configured to: upgrade the target digital wallet to a real-name wallet and verify the user's identity during the upgrade process when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set.

[0167] Optionally, the account management operation request is an account loss reporting request; the element determination module determines identity verification elements based on the wallet information, including:

[0168] A set of candidate elements is determined based on the account information, the wallet payment information, and the user's real-name information, and the element selected by the user from the set of candidate elements is used as the identity verification element to be verified.

[0169] Based on the wallet information, determine whether the target digital wallet is a real-name wallet. If the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then the user's real-name information is used as the identity verification element to be verified.

[0170] Optionally, the account management operation request is an account unblocking request; the element determination module determines the identity verification elements based on the wallet information, including:

[0171] Based on the wallet information, determine whether the target digital wallet is a real-name wallet; if so, use the user's real-name information as the identity verification element to be verified; otherwise, determine a set of candidate elements based on the account information and the wallet payment information, and use the element selected by the user from the set of candidate elements as the identity verification element to be verified.

[0172] Optionally, the request response module is further configured to: verify the account with a verification code before obtaining the wallet information of the target digital currency wallet associated with the account, and confirm that the verification is successful; if the verification code fails, the current process ends.

[0173] Optionally, the element determination module is further configured to: determine the verification order of each of the identity verification elements after determining the identity verification elements based on the wallet information;

[0174] The element verification module verifies the user's identity based on the identity verification elements, including: verifying each of the identity verification elements in the verification order, and verifying the next identity verification element to be verified when the verification is successful.

[0175] Optionally, the element determination module is further configured to: after determining the identity verification element based on the wallet information, generate a process continuation identifier corresponding to the account management operation request; and carry the process continuation identifier when verifying the identity verification element.

[0176] Optionally, the device further includes a risk control interception module, configured to: send a request to the APP risk control system before or after verifying the identity verification elements so that the APP risk control system can determine the risk level of the account management operation and intercept the account management operation request if the risk level is greater than a risk threshold.

[0177] According to a third aspect of the present invention, a management system for implementing the above-described method is provided.

[0178] Figure 7 This is a schematic diagram of the main components of the APP management system according to an embodiment of the present invention. Figure 7 As shown, the APP management system 700 includes an APP account system 701 and an APP risk control system 702, wherein:

[0179] The APP account system 701 responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account;

[0180] The APP account system 701 determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0181] The APP account system verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the APP account system 701 verifies the account information or the auxiliary verification information; when the identity verification elements include the wallet payment information or the user's real-name information, the APP account system 701 initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives the response result returned by the payment wallet system.

[0182] Optionally, the account management operation request carries the wallet identifier associated with the account;

[0183] The APP account system obtains the wallet information of the target digital currency wallet associated with the account, including: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet, otherwise using the digital wallet corresponding to the wallet identifier as the target digital wallet; and obtaining the wallet information of the target digital wallet.

[0184] Optionally, the account management operation request carries the user's user identifier;

[0185] The APP account system obtains the wallet information of the target digital currency wallet associated with the account, including: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

[0186] Optionally, the APP account system obtains the wallet information of the target digital currency wallet associated with the account, including:

[0187] The wallet information of the target digital currency wallet is obtained from the payment wallet system corresponding to the target digital currency wallet; or, the APP account system obtains the wallet information of the target digital currency wallet from the local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

[0188] Optionally, the account management operation request is a login password retrieval request; the APP account system determines the identity verification elements based on the wallet information, including:

[0189] Determine whether the target digital wallet is a real-name wallet based on the wallet information;

[0190] If so, the user's real-name information will be used as the identity verification element to be verified.

[0191] Otherwise, the system determines whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, it determines a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, it determines a candidate element set based on the wallet payment information, and uses the element selected by the user from the candidate element set as the identity verification element to be verified.

[0192] Optionally, the candidate element set also includes a wallet upgrade request; when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set, the APP account system upgrades the target digital wallet to a real-name wallet and verifies the user's identity during the upgrade process.

[0193] Optionally, the account management operation request is an account loss reporting request; the element determination module of the APP account system determines the identity verification elements based on the wallet information, including:

[0194] A set of candidate elements is determined based on the account information, the wallet payment information, and the user's real-name information, and the element selected by the user from the set of candidate elements is used as the identity verification element to be verified.

[0195] Based on the wallet information, determine whether the target digital wallet is a real-name wallet. If the target digital wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then the user's real-name information is used as the identity verification element to be verified.

[0196] Optionally, the account management operation request is an account unblocking request; the element determination module of the APP account system determines the identity verification elements based on the wallet information, including:

[0197] Based on the wallet information, determine whether the target digital wallet is a real-name wallet; if so, use the user's real-name information as the identity verification element to be verified; otherwise, determine a set of candidate elements based on the account information and the wallet payment information, and use the element selected by the user from the set of candidate elements as the identity verification element to be verified.

[0198] Optionally, the APP account system is further configured to: verify the account with a verification code before obtaining the wallet information of the target digital currency wallet associated with the account, and confirm that the verification is successful; if the verification code fails, the current process ends.

[0199] Optionally, after determining the identity verification elements based on the wallet information, the APP account system is further configured to: determine the verification order of each of the identity verification elements;

[0200] Authenticating the user based on the authentication elements includes: verifying each of the authentication elements in the verification order, and verifying the next authentication element to be verified when the verification is successful.

[0201] Optionally, the APP account system is further configured to: after determining the identity verification elements based on the wallet information, generate a process concatenation identifier corresponding to the account management operation request; and carry the process concatenation identifier when the APP account system verifies the identity verification elements.

[0202] Optionally, the APP account system is further configured to: send a request to the APP risk control system before or after verifying the identity verification elements so that the APP risk control system can determine the risk level of the account management operation and intercept the account management operation request if the risk level is greater than a risk threshold.

[0203] According to a fourth aspect of the present invention, an electronic device is provided, comprising:

[0204] One or more processors;

[0205] Storage device for storing one or more programs.

[0206] When the one or more programs are executed by the one or more processors, the one or more processors implement the method provided in the first aspect of the embodiments of the present invention.

[0207] According to a fifth aspect of the present invention, a computer-readable medium is provided having a computer program stored thereon, which, when executed by a processor, implements the method provided in the first aspect of the present invention.

[0208] According to a fourth aspect of the present invention, a computer-readable medium is provided having a computer program stored thereon, which, when executed by a processor, implements the method provided in the first aspect of the present invention.

[0209] Figure 8 An exemplary system architecture 800 is shown for an APP account system device to which the account management method or user authentication embodiment of the present invention can be applied.

[0210] like Figure 8 As shown, system architecture 800 may include terminal devices 801, 802, and 803, a network 804, and a server 805. Network 804 serves as the medium for providing communication links between terminal devices 801, 802, and 803 and server 805. Network 804 may include various connection types, such as wired or wireless communication links or fiber optic cables, etc.

[0211] Users can use terminal devices 801, 802, and 803 to interact with server 805 via network 804 to receive or send messages, etc. Various communication client applications can be installed on terminal devices 801, 802, and 803, such as shopping applications, web browser applications, search applications, instant messaging tools, email clients, social media platform software, etc. (for example only).

[0212] Terminal devices 801, 802, and 803 can be various electronic devices with displays and web browsing capabilities, including but not limited to smartphones, tablets, laptops, and desktop computers.

[0213] Server 805 can be a server providing various services, such as a backend management server supporting shopping websites browsed by users using terminal devices 801, 802, and 803 (for example only). The backend management server can analyze and process data such as received product information query requests, and feed back the processing results (such as target push information and product information—for example only) to the terminal devices.

[0214] It should be noted that the account management method provided in this embodiment of the invention is generally executed by server 805, and correspondingly, the APP account system for user authentication is generally set in server 805.

[0215] It should be understood that Figure 8 The number of terminal devices, networks, and servers shown is merely illustrative. Depending on implementation needs, any number of terminal devices, networks, and servers can be included.

[0216] The following is for reference. Figure 9 It shows a schematic diagram of the structure of a computer system 900 suitable for implementing a terminal device of the present invention. Figure 9 The terminal device shown is merely an example and should not impose any limitations on the functionality and scope of use of the embodiments of the present invention.

[0217] like Figure 9As shown, the computer system 900 includes a central processing unit (CPU) 901, which can perform various appropriate actions and processes based on programs stored in read-only memory (ROM) 902 or programs loaded from storage section 908 into random access memory (RAM) 903. The RAM 903 also stores various programs and data required for the operation of the system 900. The CPU 901, ROM 902, and RAM 903 are interconnected via a bus 904. An input / output (I / O) interface 905 is also connected to the bus 904.

[0218] The following components are connected to I / O interface 905: an input section 906 including a keyboard, mouse, etc.; an output section 907 including a cathode ray tube (CRT), liquid crystal display (LCD), etc., and speakers, etc.; a storage section 908 including a hard disk, etc.; and a communication section 909 including a network interface card such as a LAN card, modem, etc. The communication section 909 performs communication processing via a network such as the Internet. A drive 910 is also connected to I / O interface 905 as needed. A removable medium 911, such as a disk, optical disk, magneto-optical disk, semiconductor memory, etc., is installed on drive 910 as needed so that computer programs read from it can be installed into storage section 908 as needed.

[0219] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments disclosed in this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or installed from removable medium 911. When the computer program is executed by central processing unit (CPU) 901, it performs the functions defined above in the system of this invention.

[0220] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments disclosed in this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or installed from removable medium 911. When the computer program is executed by central processing unit (CPU) 901, it performs the functions defined above in the system of this invention.

[0221] It should be noted that the computer-readable medium shown in this invention can be a computer-readable signal medium or a computer-readable storage medium, or any combination thereof. A computer-readable storage medium can be, for example,—but not limited to—an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination thereof. More specific examples of a computer-readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer disk, a hard disk, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM or flash memory), optical fiber, portable compact disk read-only memory (CD-ROM), optical storage device, magnetic storage device, or any suitable combination thereof. In this invention, a computer-readable storage medium can be any tangible medium containing or storing a program that can be used by or in conjunction with an instruction execution system, apparatus, or device. In this invention, a computer-readable signal medium can include a data signal propagated in baseband or as part of a carrier wave, carrying computer-readable program code. Such propagated data signals can take various forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination thereof. Computer-readable signal media can also be any computer-readable medium other than computer-readable storage media, which can send, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device. The program code contained on the computer-readable medium can be transmitted using any suitable medium, including but not limited to: wireless, wire, optical fiber, RF, etc., or any suitable combination thereof.

[0222] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments of this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or from removable medium 911. The readable medium can be a computer-readable signal medium or a computer-readable storage medium or any combination thereof. A computer-readable storage medium can be, for example,—but not limited to—an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination thereof. More specific examples of computer-readable storage media may include, but are not limited to: an electrical connection having one or more wires, a portable computer disk, a hard disk, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM or flash memory), optical fiber, portable compact disk read-only memory (CD-ROM), optical storage device, magnetic storage device, or any suitable combination thereof. In this invention, a computer-readable storage medium can be any tangible medium containing or storing a program that can be used by or in connection with an instruction execution system, apparatus, or device. In this invention, a computer-readable signal medium can include a data signal propagated in baseband or as part of a carrier wave, carrying computer-readable program code. Such propagated data signals can take various forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination thereof. A computer-readable signal medium can also be any computer-readable medium other than a computer-readable storage medium, which can send, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device. The program code contained on the computer-readable medium can be transmitted using any suitable medium, including but not limited to: wireless, wireline, optical fiber, RF, etc., or any suitable combination thereof.

[0223] The flowcharts and block diagrams in the accompanying drawings illustrate the architecture, functionality, and operation of possible implementations of systems, methods, and computer program products according to various embodiments of the present invention. In this regard, each block in a flowchart or block diagram may represent a module, segment, or portion of code containing one or more executable instructions for implementing a specified logical function. It should also be noted that in some alternative implementations, the functions indicated in the blocks may occur in a different order than those indicated in the drawings. For example, two consecutively indicated blocks may actually be executed substantially in parallel, and they may sometimes be executed in reverse order, depending on the functions involved. It should also be noted that each block in a block diagram or flowchart, and combinations of blocks in a block diagram or flowchart, may be implemented using a dedicated hardware-based system that performs the specified function or operation, or using a combination of dedicated hardware and computer instructions.

[0224] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments disclosed in this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or installed from removable medium 911. When the computer program is executed by central processing unit (CPU) 901, it performs the functions defined above in the system of this invention.

[0225] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments disclosed in this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or installed from removable medium 911. When the computer program is executed by central processing unit (CPU) 901, it performs the functions defined above in the system of this invention.

[0226] It should be noted that the computer-readable medium shown in this invention can be a computer-readable signal medium or a computer-readable storage medium, or any combination thereof. A computer-readable storage medium can be, for example,—but not limited to—an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination thereof. More specific examples of a computer-readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer disk, a hard disk, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM or flash memory), optical fiber, portable compact disk read-only memory (CD-ROM), optical storage device, magnetic storage device, or any suitable combination thereof. In this invention, a computer-readable storage medium can be any tangible medium containing or storing a program that can be used by or in conjunction with an instruction execution system, apparatus, or device. In this invention, a computer-readable signal medium can include a data signal propagated in baseband or as part of a carrier wave, carrying computer-readable program code. Such propagated data signals can take various forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination thereof. Computer-readable signal media can also be any computer-readable medium other than computer-readable storage media, which can send, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device. The program code contained on the computer-readable medium can be transmitted using any suitable medium, including but not limited to: wireless, wire, optical fiber, RF, etc., or any suitable combination thereof.

[0227] In particular, according to the embodiments disclosed in this invention, the processes described above with reference to the flowcharts can be implemented as computer software programs. For example, embodiments of this invention include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the methods shown in the flowcharts. In such embodiments, the computer program can be downloaded and installed from a network via communication section 909, and / or from removable medium 911. The readable medium can be a computer-readable signal medium or a computer-readable storage medium or any combination thereof. A computer-readable storage medium can be, for example, an electrical connection with one or more wires, a portable computer disk, a hard disk, random access memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM or flash memory), optical fiber, portable compact disk read-only memory (CD-ROM), optical storage device, magnetic storage device, or any suitable combination thereof. In this invention, a computer-readable storage medium can be any tangible medium containing or storing a program that can be used by or in conjunction with an instruction execution system, apparatus, or device. In this invention, the computer-readable signal medium may include a data signal propagated in baseband or as part of a carrier wave, carrying computer-readable program code. This propagated data signal may take various forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination thereof. The computer-readable signal medium may also be any computer-readable medium other than a computer-readable storage medium, which can send, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device. The program code contained on the computer-readable medium can be transmitted using any suitable medium, including but not limited to: wireless, wireline, optical fiber, RF, etc., or any suitable combination thereof.

[0228] The flowcharts and block diagrams in the accompanying drawings illustrate the architecture, functionality, and operation of possible implementations of systems, methods, and computer program products according to various embodiments of the present invention. In this regard, each block in a flowchart or block diagram may represent a module, segment, or portion of code containing one or more executable instructions for implementing a specified logical function. It should also be noted that in some alternative implementations, the functions indicated in the blocks may occur in a different order than those indicated in the drawings. For example, two consecutively indicated blocks may actually be executed substantially in parallel, and they may sometimes be executed in reverse order, depending on the functions involved. It should also be noted that each block in a block diagram or flowchart, and combinations of blocks in a block diagram or flowchart, may be implemented using a dedicated hardware-based system that performs the specified function or operation, or using a combination of dedicated hardware and computer instructions.

[0229] The modules described in the embodiments of the present invention can be implemented in software or hardware. The described modules can also be housed in a processor; for example, a processor can be described as including a request-response module, an element determination module, and an element verification module. The names of these modules do not necessarily limit the module itself; for example, the request-response module can also be described as "a module for determining authentication elements based on the wallet information."

[0230] In another aspect, the present invention also provides a computer-readable medium, which may be included in the device described in the above embodiments; or it may exist independently and not assembled into the device. The computer-readable medium carries one or more programs, which, when executed by the device, cause the device to include:

[0231] In response to a user's account management request in the APP, obtain the wallet information of the target digital currency wallet associated with the account;

[0232] The authentication elements are determined based on the wallet information; the authentication elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information;

[0233] The user is authenticated based on the authentication elements; wherein, if the authentication elements include the account information or the auxiliary verification information, the account information or the auxiliary verification information is verified; if the authentication elements include the wallet payment information or the user's real-name information, a verification request is initiated to the payment wallet system corresponding to the target digital currency wallet, and a response result is received from the payment wallet system.

[0234] According to the technical solution of the present invention, when the identity verification elements include account information or auxiliary verification information, the APP account system performs verification; when the identity verification elements include wallet payment information or user real-name information, the APP account system initiates a verification request to the corresponding payment wallet system for verification. This enables the APP account system and the payment wallet system of the operating institution to jointly provide account identity verification services, thereby improving the security and flexibility of APP account management and increasing the uniformity and convenience of APP user experience.

[0235] The specific embodiments described above do not constitute a limitation on the scope of protection of this invention. Those skilled in the art should understand that various modifications, combinations, sub-combinations, and substitutions can occur depending on design requirements and other factors. Any modifications, equivalent substitutions, and improvements made within the spirit and principles of this invention should be included within the scope of protection of this invention.

Claims

1. A method of account management, characterized by, Applied to an APP account system, the method includes: In response to a user's account management request in the APP, obtain the wallet information of the target digital currency wallet associated with the account; The authentication elements are determined based on the wallet information; the authentication elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information; The user is authenticated based on the authentication elements; wherein, if the authentication elements include the account information or the auxiliary verification information, the account information or the auxiliary verification information is verified; if the authentication elements include the wallet payment information or the user's real-name information, a verification request is initiated to the payment wallet system corresponding to the target digital currency wallet, and a response result is received from the payment wallet system. The account management operation request is a login password retrieval request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, then using the user's real-name information as the identity verification element to be verified; otherwise, determining whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, then determining a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, determining a candidate element set based on the wallet payment information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; or... The account management operation request is an account loss reporting request; determining identity verification elements based on the wallet information includes: determining a candidate element set based on the account information, wallet payment information, and user real-name information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; determining whether the target digital currency wallet is a real-name wallet based on the wallet information, and if the target digital currency wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then using the user's real-name information as the identity verification element to be verified; or, The account management operation request is an account unblocking request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, the user's real-name information is used as the identity verification element to be verified; otherwise, a candidate element set is determined based on the account information and the wallet payment information, and the element selected by the user from the candidate element set is used as the identity verification element to be verified.

2. The method of claim 1, wherein, The account management operation request carries the wallet identifier associated with the account; Obtaining the wallet information of the target digital currency wallet associated with the account includes: determining whether there are multiple wallet identifiers carried in the account management operation request; if so, selecting at least one wallet identifier from the multiple wallet identifiers as the target digital currency wallet; otherwise, using the digital wallet corresponding to the wallet identifier as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

3. The method of claim 1, wherein, The account management operation request carries the user's user identifier; Obtaining the wallet information of the target digital currency wallet associated with the account includes: obtaining the user's digital currency wallet based on the user identifier; determining whether the user has multiple digital currency wallets; if so, selecting at least one from the user's multiple digital currency wallets as the target digital currency wallet, otherwise using the user's digital currency wallet as the target digital currency wallet; and obtaining the wallet information of the target digital currency wallet.

4. The method of claim 1, wherein, Obtain the wallet information of the target digital currency wallet associated with the account, including: The wallet information of the target digital currency wallet is obtained from the payment wallet system corresponding to the target digital currency wallet; or, the wallet information of the target digital currency wallet is obtained from a local storage device, wherein the wallet information stored in the local storage device is synchronized from the payment wallet system corresponding to the target digital currency wallet.

5. The method of claim 1, wherein, The candidate element set also includes wallet upgrade requests; when the user selects the wallet upgrade request as the identity verification element to be verified from the candidate element set, the target digital currency wallet is upgraded to a real-name wallet and the user is verified during the upgrade process.

6. The method of claim 1 or 5, wherein, Before obtaining the wallet information of the target digital currency wallet associated with the account, the process also includes: verifying the account with a verification code and confirming that the verification is successful; if the verification code fails, the current process ends.

7. The method of claim 1, wherein, After determining the authentication elements based on the wallet information, the method further includes: determining the authentication order of each of the authentication elements; Authenticating the user based on the authentication elements includes: verifying each of the authentication elements in the verification order, and verifying the next authentication element to be verified when the verification is successful.

8. The method of claim 1, wherein, After determining the authentication elements based on the wallet information, the method further includes: generating a process sequence identifier corresponding to the account management operation request; The process sequence identifier is carried when verifying the authentication elements.

9. The method of claim 1, wherein, Before or after verifying the authentication elements, the method further includes: A request is sent to the APP risk control system to enable the APP risk control system to determine the risk level of the account management operation and to intercept the account management operation request if the risk level is greater than the risk threshold.

10. An APP account system, characterized in that, include: The request and response module responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account; The element determination module determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: account information of the account, wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information; The element verification module verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the module verifies the account information or the auxiliary verification information; when the identity verification elements include the wallet payment information or the user's real-name information, the module initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives the response result returned by the payment wallet system. The account management operation request is a login password retrieval request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, then using the user's real-name information as the identity verification element to be verified; otherwise, determining whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, then determining a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, determining a candidate element set based on the wallet payment information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; or... The account management operation request is an account loss reporting request; determining identity verification elements based on the wallet information includes: determining a candidate element set based on the account information, wallet payment information, and user real-name information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; determining whether the target digital currency wallet is a real-name wallet based on the wallet information, and if the target digital currency wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then using the user's real-name information as the identity verification element to be verified; or, The account management operation request is an account unblocking request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, the user's real-name information is used as the identity verification element to be verified; otherwise, a candidate element set is determined based on the account information and the wallet payment information, and the element selected by the user from the candidate element set is used as the identity verification element to be verified.

11. An APP management system, characterized by, This includes the APP account system and the APP risk control system, among which: The APP account system responds to the user's account management operation request in the APP and obtains the wallet information of the target digital currency wallet associated with the account; The APP account system determines the identity verification elements based on the wallet information; the identity verification elements include at least one of the following: the account information of the account, the wallet payment information or user real-name information of the target digital currency wallet, and auxiliary verification information; The APP account system verifies the user's identity based on the identity verification elements; wherein, when the identity verification elements include the account information or the auxiliary verification information, the APP account system verifies the account information or the auxiliary verification information; when the identity verification elements include the wallet payment information or the user's real-name information, the APP account system initiates a verification request to the payment wallet system corresponding to the target digital currency wallet and receives the response result returned by the payment wallet system. The account management operation request is a login password retrieval request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, then using the user's real-name information as the identity verification element to be verified; otherwise, determining whether to verify the auxiliary verification information based on the user's auxiliary verification settings in the APP; if so, then determining a candidate element set based on the auxiliary verification information and the wallet payment information; otherwise, determining a candidate element set based on the wallet payment information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; or... The account management operation request is an account loss reporting request; determining identity verification elements based on the wallet information includes: determining a candidate element set based on the account information, wallet payment information, and user real-name information, and using the element selected by the user from the candidate element set as the identity verification element to be verified; determining whether the target digital currency wallet is a real-name wallet based on the wallet information, and if the target digital currency wallet is a real-name wallet and the element selected by the user from the candidate element set is not the user's real-name information, then using the user's real-name information as the identity verification element to be verified; or, The account management operation request is an account unblocking request; determining identity verification elements based on the wallet information includes: determining whether the target digital currency wallet is a real-name wallet based on the wallet information; if so, the user's real-name information is used as the identity verification element to be verified; otherwise, a candidate element set is determined based on the account information and the wallet payment information, and the element selected by the user from the candidate element set is used as the identity verification element to be verified.

12. An electronic device, comprising: include: One or more processors; Storage device for storing one or more programs. When the one or more programs are executed by the one or more processors, the one or more processors implement the method as described in any one of claims 1-9.

13. A computer readable medium having stored thereon a computer program, characterized in that When the program is executed by the processor, it implements the method as described in any one of claims 1-9.