CN101515932A - Method and system for accessing Web service safely - Google Patents
Method and system for accessing Web service safely Download PDFInfo
- Publication number
- CN101515932A CN101515932A CN 200910106165 CN200910106165A CN101515932A CN 101515932 A CN101515932 A CN 101515932A CN 200910106165 CN200910106165 CN 200910106165 CN 200910106165 A CN200910106165 A CN 200910106165A CN 101515932 A CN101515932 A CN 101515932A
- Authority
- CN
- China
- Prior art keywords
- service end
- client
- management system
- rights management
- interface
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 27
- 238000012795 verification Methods 0.000 claims description 27
- 238000007689 inspection Methods 0.000 claims description 9
- 230000000977 initiatory effect Effects 0.000 abstract 1
- 238000005516 engineering process Methods 0.000 description 5
- 230000006870 function Effects 0.000 description 5
- 238000013475 authorization Methods 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 2
- 230000009545 invasion Effects 0.000 description 1
- 239000000344 soap Substances 0.000 description 1
- 239000004575 stone Substances 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/102—Entity profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Storage Device Security (AREA)
Abstract
The present invention discloses a method and a system for accessing Web service safely, wherein the method comprises the following main steps: initiating an access request by the client end to the server end, obtaining the safety checking parameter which is provided by the client end by an interface module of service end, authenticating the safety checking parameter, refusing the accessing if the authentication is failed, and transmitting the safety checking parameter and interface ID to an authority management system of server end if the authentication is passed; authenticating the safety checking parameter and the accessed interface ID by the authority management system of server end, refusing the accessing if the authentication is failed, and obtaining the required service through accessing the service processing system of server end if the authentication is passed. The method and system provided by the invention execute duplex authentications through the interface module of server end and authority management system of server end for adding the safety of Web Service server.
Description
Technical field
The invention belongs to Web Service technical field, be specifically related to a kind of safe Web service access method and system.
Background technology
Web Service is one of current hot spot technology, and it has defined application program and how to have realized interoperability on Web, is the new platform of setting up the distributed application program of interoperable.People can write Web Service with the language of being liked in different platforms, come these services are inquired about and visited by the standard of Web Service then.Utilize Web Service to create out and can greatly expand the function of application program, dynamically providing of software has been provided for different people from different local application programs that use, powerful.
Web Service is the object on a kind of Web of being deployed in, and therefore has all advantages that object technology is promised to undertake; Simultaneously, the foundation stone of Web Service has than existing object technology better opening based on the Web specification technique of XML (Extensible Markup Language), opening.
Yet Web Service is as serving easily when being used by vast field, and its safety issue also receives publicity day by day,
Its safe realization at present mainly is divided into the following aspects: one, safety of transmission: with SSL and HTTPS agreement, can obtain the safety in the connection procedure; Two, message encryption: the data to the XML transmission are carried out data encryption, increase digital signature function.
Above-mentioned safety measure can increase the fail safe of Web Service visit, yet it can not be resisted all invasions from different aspects.
The method that this paper proposed, it is the access service itself that provides from Web Service, importance for business is carried out differentiated control, rank difference according to the client, the Operational Visit of authorizing, simultaneously carry out the check of IP address, further increase Web Service server security for visiting client.
Summary of the invention
The problem to be solved in the present invention is the safety problem that exists in the present Web service visit, experiences so that the user obtains better safety in Web service visit.
To achieve these goals, the invention provides a kind of safe Web service access method and system, this method may further comprise the steps:
Client is initiated access request to service end;
The interface module of described service end is obtained the safety verification parameter that described client provides, and this safety verification parameter authenticated, if authentification failure, then denied access, if, then described safety verification parameter and interface ID are sent to the service end Rights Management System by authentication;
The Rights Management System of described service end authenticates described safety verification parameter and accessed interface ID, if authentification failure, denied access then, if by authentication, then client can be obtained required business by access services end transaction processing system.
The safety verification parameter that described method, service end interface module are obtained described client to be provided comprises version number, device code, user name, the user cipher of client.
Described method, service end interface module authenticate the version number of client and are specially: the version number that checks client whether with version number's compatibility of service end, if incompatible, denied access then, if compatible, then by visit; Described service end interface module is specially the authentication of client device code: the device code that inspection will the be visited device code whether this service end disposes, if not, then refusing user's visit, if, then by visit.
Described method, the service end Rights Management System is specially the authentication of described user's user name and user cipher: Rights Management System checks whether the username and password of client is correct, if the user does not exist or password bad, denied access then, if user name exists and password is correct, then by visit; Described service end Rights Management System authenticates accessed service end interface ID and is specially: Rights Management System checks by described interface ID whether this user has the authority of this interface of visit, if do not have, then denied access if having, is then passed through visit.
Described method, when the service end interface module sends to the service end Rights Management System with described safety verification parameter, also the IP address with client sends to described service end Rights Management System, by described Rights Management System described IP address is authenticated.
Described method, the service end Rights Management System authenticates described IP address and is specially: check whether client has disposed the binding IP address inspection, if be configured, then check described IP address whether in the binding IP address scope of service end configuration, if, then by visit, if client does not dispose binding IP address inspection or described IP address not in the binding IP address scope of service end configuration, denied access then.
Described method, the data that the service end Rights Management System need be transferred in the service end database when authenticating authenticate.
This system comprises client and service end, and client is obtained service by the interface module of access services end; Service end comprises interface module and Rights Management System, and this interface module is used to client that access services is provided and obtains the access request parameters that client provides; This Rights Management System is used for receiving safety verification parameter and interface ID by the authentication back from described interface module in described interface module, and this safety verification parameter and interface ID are authenticated.
Described system also comprises database, is used to service end Rights Management System and transaction processing system that visit data is provided.
Described system also comprises transaction processing system, and being used for provides corresponding business by when authentication for client in client.
The method and system that this paper proposed carries out double authentication by service end interface module and service end Rights Management System, has increased the fail safe of Web Service server.
Description of drawings
Fig. 1 is the module map that the present invention includes;
Fig. 2 is a process chart of the present invention.
Embodiment
The present invention is described in detail below in conjunction with accompanying drawing.
As can be seen from Figure 1, this system comprises client, service end interface accessing module, Rights Management System, transaction processing system and is used for authority and the Database Systems of service management.Wherein service end interface accessing module is used for obtaining the safety verification parameter block from the access request of client, finish the safety verification work of client together with Rights Management System, and, be given to transaction processing system and carry out professional visit client-access request by safety verification; Rights Management System is responsible for finishing client-access user's rights management; Transaction processing system is responsible for finishing the service processing function that is authorized to access client.
Rights Management System is finished the authority configuration of calling party, different according to service end interface function and importance, calling party is carried out differentiated control, as 0 grade--super supervisor level, 1 grade--system administrator level, 2 grades-authorized user A level, 3 grades-authorized user B level, 4 grades-authorized user C level etc., the interface function difference that the user of different stage can visit.Simultaneously can carry out the binding of IP address or IP subnet address to calling party, if visiting user's IP address not within the IP address range of binding, denied access then.For access interface, each interface provides unique interface ID in Rights Management System, this ID value unique identification an access interface.Submit the interface accessing request of service end to when client after, when carrying out the Authority Verification of client, by accessed interface the safety verification parameter of this ID value and client submission is imported into Rights Management System together, with the checking of the authority that conducts interviews.
Accompanying drawing 2 is key steps that the present invention comprises.
Step S100, client is initiated access request.
Client is by soap message, initiates access request with the interface mode that the WSDL of service end describes.
Among the present invention, this required parameter is divided into two parameter blocks: safety verification parameter block and service parameter piece.Wherein the safety verification parameter block comprises system is carried out the granted access parameters needed, is used for the validity and the legitimacy of authentication-access request.The service parameter piece comprises the professional required parameter of access authorization, is used for business is carried out correct visit.
The safety verification parameter block partly comprises following parameter:
(1) version number of visiting user's Web Service client, whether the version that is used for checking client is the desired version of service end;
(2) device code refers to the code of accessed equipment;
(3) Lai Fang user name refers to the access username of Web Service service end mandate;
(4) user's password refers to that Web Service service end distributes to granted access user's password, transmits with cipher mode in the access request of client; The cipher mode of this password is specified cipher mode or is provided encrypted packet to finish the encrypted work of password by service end.
Step S105 after the service end interface module receives the interface accessing request of client, obtains the safety verification parameter that client provides, and comprises the version number of visiting user client, accessed device code, visiting user name, user's password.
Step S110, the version number that the service end interface module is checked client whether with version number's compatibility of service end; If incompatible, denied access then.
Step S115: whether the device code that the inspection of service end interface module will be visited this device code.If not the device code of this service end configuration, then refusing user's visit.
Step S120, service end is called Rights Management System, carries out the checking of authority.
Service end obtains the IP address of visiting client.The service end interface module is imported the ID value of the interface of visiting user's user name, password, IP address, this visit into checking that authority management module carries out authority.
Step S125: the service end Rights Management System reads user's Authorization Attributes according to the user name of client from database, checks whether dispose visiting user binding IP address check; If this user disposed the binding IP address inspection, then whether the visiting user's IP address of check is in the binding IP address scope of server end configuration; If not in this scope, then refusing user's visit.
Step S130: whether the visiting client's of service end authority management module inspection username and password is correct; If the user does not exist or password bad, then refusing user's visit.
Step S135: the service end authority management module is according to the user name of client, search the user right group at user place, and reading the authority that this user right group has, these access rights have comprised the user right group at user place can visit for which service end interface.
Step S140: if in the access rights of this user right group, do not comprise the interface ID of accessed interface, then Authority Verification failure is refused this user and is carried out professional visit.
Step S145: visiting user is by Authority Verification, and the service end interface module is called business module according to the service parameter piece content of client, carries out professional visit, and the visit result is returned to client modules.
The above; it only is better embodiment of the present invention; should not be considered to be limitation of the scope of the invention; and the claim scope that the present invention advocated is not limited thereto; all personages who is familiar with this field skill; according to the disclosed technology contents of the present invention, can think easily and equivalence change, all should fall into protection scope of the present invention.
Claims (10)
1, a kind of safe Web service access method is characterized in that this method is made up of following steps:
Client is initiated access request to service end;
The interface module of described service end is obtained the safety verification parameter that described client provides, and this safety verification parameter authenticated, if authentification failure, then denied access, if, then described safety verification parameter and interface ID are sent to the service end Rights Management System by authentication;
The Rights Management System of described service end authenticates described safety verification parameter and interface ID, if authentification failure, denied access then, if by authentication, then client can be obtained required business by access services end transaction processing system.
2, the method for claim 1 is characterized in that, the safety verification parameter that described service end interface module is obtained described client to be provided comprises version number, device code, user name, the user cipher of client.
3, method as claimed in claim 2 is characterized in that, described service end interface module authenticates the version number of client and is specially: the version number that checks client whether with version number's compatibility of service end, if it is incompatible, then if denied access compatible, is then passed through visit; Described service end interface module is specially the authentication of client device code: the device code that inspection will the be visited device code whether this service end disposes, if not, then refusing user's visit, if, then by visit.
4, method as claimed in claim 2, it is characterized in that, described service end Rights Management System is specially the authentication of described user's user name and user cipher: Rights Management System checks whether the username and password of client is correct, if the user does not exist or password bad, denied access then, if user name exists and password is correct, then by visit; Described service end Rights Management System authenticates accessed service end interface ID and is specially: Rights Management System checks by described interface ID whether this user has the authority of this interface of visit, if do not have, then denied access if having, is then passed through visit.
5, the method for claim 1, it is characterized in that, when described service end interface module sends to the service end Rights Management System with described safety verification parameter, also the IP address with client sends to described service end Rights Management System, by described Rights Management System described IP address is authenticated.
6, method as claimed in claim 5, it is characterized in that, described service end Rights Management System authenticates described IP address and is specially: check whether client has disposed the binding IP address inspection, if be configured, then check described IP address whether in the binding IP address scope of service end configuration, if, then by visit, if client does not dispose binding IP address inspection or described IP address not in the binding IP address scope of service end configuration, then denied access.
7, the method for claim 1 is characterized in that, the data that described service end Rights Management System need be transferred in the service end database when authenticating authenticate.
8, a kind of safe Web service access system is characterized in that this system comprises client and service end, and client is obtained service by the interface module of access services end; Service end comprises interface module and Rights Management System, and this interface module is used to client that access services is provided and obtains the access request parameters that client provides; This Rights Management System is used for receiving safety verification parameter and interface ID by the authentication back from described interface module in described interface module, and this safety verification parameter and interface ID are authenticated.
9, system as claimed in claim 8 is characterized in that, this system also comprises database, is used to service end Rights Management System and service end transaction processing system that visit data is provided.
10, system as claimed in claim 8 is characterized in that, this system also comprises transaction processing system, and being used for provides corresponding business by when authentication for client in client.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910106165 CN101515932B (en) | 2009-03-23 | 2009-03-23 | Method and system for accessing Web service safely |
| BRPI0924521A BRPI0924521A2 (en) | 2009-03-23 | 2009-09-03 | Method and System for Securely Accessing Web Services |
| PCT/CN2009/073725 WO2010108354A1 (en) | 2009-03-23 | 2009-09-03 | Method and system for accessing web service safely |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200910106165 CN101515932B (en) | 2009-03-23 | 2009-03-23 | Method and system for accessing Web service safely |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101515932A true CN101515932A (en) | 2009-08-26 |
| CN101515932B CN101515932B (en) | 2013-06-05 |
Family
ID=41040225
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200910106165 Expired - Fee Related CN101515932B (en) | 2009-03-23 | 2009-03-23 | Method and system for accessing Web service safely |
Country Status (3)
| Country | Link |
|---|---|
| CN (1) | CN101515932B (en) |
| BR (1) | BRPI0924521A2 (en) |
| WO (1) | WO2010108354A1 (en) |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010108354A1 (en) * | 2009-03-23 | 2010-09-30 | 中兴通讯股份有限公司 | Method and system for accessing web service safely |
| CN102404326A (en) * | 2011-11-23 | 2012-04-04 | 北京星网锐捷网络技术有限公司 | Method, system and device for validating safety of messages |
| CN102571380A (en) * | 2010-12-16 | 2012-07-11 | 北京博阳世通信息技术有限公司 | Multi-instance GIS platform unified user management method and system |
| CN103049691A (en) * | 2011-10-11 | 2013-04-17 | 镇江精英软件科技有限公司 | Method for accessing data interface through authorization |
| CN103049438A (en) * | 2011-10-11 | 2013-04-17 | 镇江精英软件科技有限公司 | Method for managing data access port |
| CN103812843A (en) * | 2012-11-14 | 2014-05-21 | 中兴通讯股份有限公司 | Authentication method and system based on Web Service |
| CN104023024A (en) * | 2014-06-13 | 2014-09-03 | 中国民航信息网络股份有限公司 | Network defense method and device |
| CN104243532A (en) * | 2013-06-21 | 2014-12-24 | 鸿富锦精密工业(深圳)有限公司 | Data access method and system |
| CN104462887A (en) * | 2013-09-25 | 2015-03-25 | 江苏智软信息科技有限公司 | Method for having access to data interfaces through authorization |
| CN105227315A (en) * | 2015-08-31 | 2016-01-06 | 青岛海尔智能家电科技有限公司 | A kind of Web application authentication method, server and system thereof |
| CN105262821A (en) * | 2015-10-29 | 2016-01-20 | 努比亚技术有限公司 | Interface management apparatus and method |
| CN105808985A (en) * | 2014-12-29 | 2016-07-27 | 北京神州泰岳信息安全技术有限公司 | Method and device for accessing resource |
| CN107172057A (en) * | 2017-06-01 | 2017-09-15 | 浙江数链科技有限公司 | Authentication implementing method and device |
| CN107204977A (en) * | 2017-05-23 | 2017-09-26 | 努比亚技术有限公司 | Interface security method of calibration and device, computer-readable recording medium |
| CN107342992A (en) * | 2017-06-27 | 2017-11-10 | 努比亚技术有限公司 | A kind of System right management method, apparatus and computer-readable recording medium |
| CN108073801A (en) * | 2016-11-10 | 2018-05-25 | 北京国双科技有限公司 | Right management method and device |
| CN109308408A (en) * | 2018-08-17 | 2019-02-05 | 东莞数汇大数据有限公司 | A kind of dynamically configurable authorization check method, system, device and storage medium |
| CN109492358A (en) * | 2018-09-25 | 2019-03-19 | 国网浙江省电力有限公司信息通信分公司 | A kind of open interface uniform authentication method |
| CN109981552A (en) * | 2017-12-28 | 2019-07-05 | 中移(杭州)信息技术有限公司 | A kind of authority distributing method and device |
| CN111800426A (en) * | 2020-07-07 | 2020-10-20 | 腾讯科技(深圳)有限公司 | Method, device, equipment and medium for accessing native code interface in application program |
| CN113992532A (en) * | 2021-12-27 | 2022-01-28 | 广州敏行区块链科技有限公司 | Method and system for testing block chain bottom system |
| CN114422570A (en) * | 2021-12-31 | 2022-04-29 | 深圳市联软科技股份有限公司 | Cross-platform multi-module communication method and system |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110149356A (en) * | 2019-02-28 | 2019-08-20 | 深圳点猫科技有限公司 | Method and device is uniformly processed in a kind of network request abnormality |
| CN110855624A (en) * | 2019-10-18 | 2020-02-28 | 平安科技(深圳)有限公司 | Safety verification method based on web interface and related equipment |
| CN111932127B (en) * | 2020-08-11 | 2021-09-14 | 宁波威源软件有限公司 | Intelligent manufacturing production management system |
| CN112434339A (en) * | 2020-12-01 | 2021-03-02 | 北京五八信息技术有限公司 | Information processing method and device |
| CN113051540B (en) * | 2021-03-26 | 2022-12-02 | 中原银行股份有限公司 | Application program interface safety grading treatment method |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7519812B2 (en) * | 2004-02-19 | 2009-04-14 | International Business Machines Corporation | Architecture and design for central authentication and authorization in an on-demand utility environment |
| KR100645512B1 (en) * | 2004-09-30 | 2006-11-15 | 삼성전자주식회사 | Apparatus and method for authenticating user for network access in communication |
| US7461400B2 (en) * | 2004-12-22 | 2008-12-02 | At&T Intellectual Property, I,L.P. | Methods, systems, and computer program products for providing authentication in a computer environment |
| US8656472B2 (en) * | 2007-04-20 | 2014-02-18 | Microsoft Corporation | Request-specific authentication for accessing web service resources |
| JP2008287359A (en) * | 2007-05-15 | 2008-11-27 | Fuji Xerox Co Ltd | Authentication apparatus and program |
| KR100944724B1 (en) * | 2007-08-21 | 2010-03-03 | 엔에이치엔비즈니스플랫폼 주식회사 | User authentication system using IP address and method thereof |
| CN101246564A (en) * | 2007-12-21 | 2008-08-20 | 浪潮电子信息产业股份有限公司 | Assets management system based on web service for defining assets with XML |
| CN101299753B (en) * | 2008-06-17 | 2012-12-05 | 浙江大学 | Web service security control mechanism based on proxy server |
| CN101515932B (en) * | 2009-03-23 | 2013-06-05 | 中兴通讯股份有限公司 | Method and system for accessing Web service safely |
-
2009
- 2009-03-23 CN CN 200910106165 patent/CN101515932B/en not_active Expired - Fee Related
- 2009-09-03 WO PCT/CN2009/073725 patent/WO2010108354A1/en active Application Filing
- 2009-09-03 BR BRPI0924521A patent/BRPI0924521A2/en not_active Application Discontinuation
Cited By (27)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2010108354A1 (en) * | 2009-03-23 | 2010-09-30 | 中兴通讯股份有限公司 | Method and system for accessing web service safely |
| CN102571380A (en) * | 2010-12-16 | 2012-07-11 | 北京博阳世通信息技术有限公司 | Multi-instance GIS platform unified user management method and system |
| CN103049691A (en) * | 2011-10-11 | 2013-04-17 | 镇江精英软件科技有限公司 | Method for accessing data interface through authorization |
| CN103049438A (en) * | 2011-10-11 | 2013-04-17 | 镇江精英软件科技有限公司 | Method for managing data access port |
| CN102404326A (en) * | 2011-11-23 | 2012-04-04 | 北京星网锐捷网络技术有限公司 | Method, system and device for validating safety of messages |
| CN102404326B (en) * | 2011-11-23 | 2014-04-23 | 北京星网锐捷网络技术有限公司 | Method, system and device for validating safety of messages |
| CN103812843A (en) * | 2012-11-14 | 2014-05-21 | 中兴通讯股份有限公司 | Authentication method and system based on Web Service |
| CN103812843B (en) * | 2012-11-14 | 2018-03-30 | 中兴通讯股份有限公司 | Method for authenticating and system based on WebService applications |
| CN104243532A (en) * | 2013-06-21 | 2014-12-24 | 鸿富锦精密工业(深圳)有限公司 | Data access method and system |
| CN104462887A (en) * | 2013-09-25 | 2015-03-25 | 江苏智软信息科技有限公司 | Method for having access to data interfaces through authorization |
| CN104023024A (en) * | 2014-06-13 | 2014-09-03 | 中国民航信息网络股份有限公司 | Network defense method and device |
| CN105808985A (en) * | 2014-12-29 | 2016-07-27 | 北京神州泰岳信息安全技术有限公司 | Method and device for accessing resource |
| CN105227315A (en) * | 2015-08-31 | 2016-01-06 | 青岛海尔智能家电科技有限公司 | A kind of Web application authentication method, server and system thereof |
| CN105262821A (en) * | 2015-10-29 | 2016-01-20 | 努比亚技术有限公司 | Interface management apparatus and method |
| CN108073801A (en) * | 2016-11-10 | 2018-05-25 | 北京国双科技有限公司 | Right management method and device |
| CN107204977A (en) * | 2017-05-23 | 2017-09-26 | 努比亚技术有限公司 | Interface security method of calibration and device, computer-readable recording medium |
| CN107204977B (en) * | 2017-05-23 | 2020-11-06 | 努比亚技术有限公司 | Interface security verification method and device and computer readable storage medium |
| CN107172057A (en) * | 2017-06-01 | 2017-09-15 | 浙江数链科技有限公司 | Authentication implementing method and device |
| CN107342992A (en) * | 2017-06-27 | 2017-11-10 | 努比亚技术有限公司 | A kind of System right management method, apparatus and computer-readable recording medium |
| CN109981552A (en) * | 2017-12-28 | 2019-07-05 | 中移(杭州)信息技术有限公司 | A kind of authority distributing method and device |
| CN109308408A (en) * | 2018-08-17 | 2019-02-05 | 东莞数汇大数据有限公司 | A kind of dynamically configurable authorization check method, system, device and storage medium |
| CN109492358A (en) * | 2018-09-25 | 2019-03-19 | 国网浙江省电力有限公司信息通信分公司 | A kind of open interface uniform authentication method |
| CN111800426A (en) * | 2020-07-07 | 2020-10-20 | 腾讯科技(深圳)有限公司 | Method, device, equipment and medium for accessing native code interface in application program |
| CN113992532A (en) * | 2021-12-27 | 2022-01-28 | 广州敏行区块链科技有限公司 | Method and system for testing block chain bottom system |
| CN113992532B (en) * | 2021-12-27 | 2022-03-25 | 广州敏行区块链科技有限公司 | Method and system for testing block chain bottom system |
| CN114422570A (en) * | 2021-12-31 | 2022-04-29 | 深圳市联软科技股份有限公司 | Cross-platform multi-module communication method and system |
| CN114422570B (en) * | 2021-12-31 | 2024-05-14 | 深圳市联软科技股份有限公司 | Cross-platform multi-module communication method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101515932B (en) | 2013-06-05 |
| BRPI0924521A2 (en) | 2016-03-01 |
| WO2010108354A1 (en) | 2010-09-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101515932B (en) | Method and system for accessing Web service safely | |
| CN102265255B (en) | Method and system for providing a federated authentication service with gradual expiration of credentials | |
| EP2689372B1 (en) | User to user delegation service in a federated identity management environment | |
| US20160337351A1 (en) | Authentication system | |
| TW201741922A (en) | Biological feature based safety certification method and device | |
| US20150119019A1 (en) | Method and Device for Control of a Lock Mechanism Using a Mobile Terminal | |
| CN106394486A (en) | Authorization method and system of virtual key and server | |
| CN108650212A (en) | A kind of Internet of Things certification and access control method and Internet of Things security gateway system | |
| JP6141041B2 (en) | Information processing apparatus, program, and control method | |
| KR101451359B1 (en) | User account recovery | |
| CN106161348B (en) | Single sign-on method, system and terminal | |
| JP7318108B2 (en) | Method and system for authenticating secure credential transfer to a device | |
| CN101262342A (en) | Distributed authorization and validation method, device and system | |
| CN108881218B (en) | Data security enhancement method and system based on cloud storage management platform | |
| CN112330855A (en) | Electronic lock safety management method, equipment and system | |
| US11263558B2 (en) | Method for monitoring access to electronically controllable devices | |
| CN103685204A (en) | Resource authentication method based on internet of things resource sharing platform | |
| CN104580184A (en) | Identity authentication method for mutual-trust application systems | |
| CN103986734B (en) | Authentication management method and authentication management system applicable to high-security service system | |
| KR20060032888A (en) | Apparatus for managing identification information via internet and method of providing service using the same | |
| KR20240023589A (en) | Cross authentication method and system between online service server and client | |
| EP2061179A1 (en) | Method, system and password management server for managing user password of network device | |
| JP2009003501A (en) | Onetime password authentication system | |
| CN103428191A (en) | Single sign on method based on combination of CAS framework and fingerprint | |
| CN103428698A (en) | Identity strong authentication method of mobile interconnection participants |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C41 | Transfer of patent application or patent right or utility model | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20161130 Address after: 350600 Luoyuan, Fuzhou Province, nine central building, floor, floor, No. 2, Patentee after: LUOYUAN COUNTY PRODUCTIVITY PROMOTION CENTER Address before: 518057 Nanshan District Guangdong high tech Industrial Park, South Road, science and technology, ZTE building, Ministry of Justice Patentee before: ZTE Corp. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20201014 Address after: 6 / F, No.1, Dongwai Road, Fengshan Town, Luoyuan County, Fuzhou City, Fujian Province Patentee after: Luoyuan product quality inspection institute Address before: 350600 Luoyuan, Fuzhou Province, nine central building, floor, floor, No. 2, Patentee before: LUOYUAN COUNTY PRODUCTIVITY PROMOTION CENTER |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20130605 |