CN101741561A - Method and system for authenticating two-way hardware - Google Patents

Method and system for authenticating two-way hardware Download PDF

Info

Publication number
CN101741561A
CN101741561A CN200810226609A CN200810226609A CN101741561A CN 101741561 A CN101741561 A CN 101741561A CN 200810226609 A CN200810226609 A CN 200810226609A CN 200810226609 A CN200810226609 A CN 200810226609A CN 101741561 A CN101741561 A CN 101741561A
Authority
CN
China
Prior art keywords
content server
computer
output system
input
production
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN200810226609A
Other languages
Chinese (zh)
Other versions
CN101741561B (en
Inventor
李希喆
刘娜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Lenovo Beijing Ltd
Original Assignee
Lenovo Beijing Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Lenovo Beijing Ltd filed Critical Lenovo Beijing Ltd
Priority to CN2008102266095A priority Critical patent/CN101741561B/en
Publication of CN101741561A publication Critical patent/CN101741561A/en
Application granted granted Critical
Publication of CN101741561B publication Critical patent/CN101741561B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention relates a method for authenticating two-way hardware. The method comprises the following steps of: storing a computer mark number, a platform fingerprint, a platform fingerprint production certificate signature, and an address of a content server in a data block of a basic input/output system; extracting the address of the content server in the data block of the basic input/output system, and sending the address to a computer; building a connection between the computer and the content server according to the address of the content server; extracting a computer platform fingerprint, and verifying that the computer platform fingerprint is consistent with the platform fingerprint stored in the data block of the basic input/output system; and submitting the platform fingerprint production certificate signature to the content server to verify a production certificate; confirming that the data block of the basic input/output system is legal after passing the verification; sending a verification result of the content server to the computer through the service certificate signature; and confirming that the content server is legal after the computer passes the service certificate verification in the data block of the basic input/output system. The method and system for authenticating the two-way hardware realize two-way authentication between the content server and the computer.

Description

Two-way hardware authentication method and system
Technical field
The present invention relates to authentication method, refer to a kind of two-way hardware authentication method and system especially based on basic input output system.
Background technology
Active computer can be written into information specific in the production phase, as unique sign of this computer.Be written into information specific and have the difficult characteristics of being distorted, duplicating and attacking.
General computer manufacturer is provided with a server, and after the user's computer start was reached the standard grade, because computer has described unique sign, server can be discerned this computer immediately.Described calculating connects and can download concrete service content by server.
In fact, computer and produce relation between the server of this computer, the PC that is similar to " walk in the Divine Land " formula identification demand of reaching the standard grade.Promptly under the situation that does not need user intervention, the computer identification automatically of can reaching the standard grade so as to realize manually supplementing with money, automatic charging, deduct fees automatically, function such as automation services propelling movement.
In the production phase of computer, the existing server of producing is by injecting expressly one number service to computer, and computer injects described plaintext one number service in BIOS (basic input output system), promptly write a string clear data string in BIOS.Simultaneously, produce server with described plaintext one number service and described computer and between corresponding relation store in the database.
When described computers log-on content server, content server can read the plaintext one number service of described computer, and described plaintext one number service in the described database and described computer and between corresponding relation carry out matching ratio, determine whether described computer is legal computer.
But what inject among the BIOS of active computer is one number service expressly, or SN (SerialNumber, indicate number) expressly, is cracked by contrast easily, is easily distorted, easily is replicated, easily is forged.Will cause the hacker to usurp the consequence of validated user resource.
And content server judges to be that fail safe is lower according to plaintext one number service or SN to user's platform.Equally, computer does not have hardware based anti-fishing means, can't discern the content server of personation, has just realized simple unilateral authentication.
Summary of the invention
The purpose of this invention is to provide a kind of two-way hardware authentication method and system, be used for the two-way authentication between content server and the computer.
According to an aspect of the present invention, provide a kind of two-way hardware authentication method, said method comprising the steps of:
To produce user that server generates the production phase and indicate sending computer as a result after number encrypting, the result after the described encryption will be indicated number as computer, be stored in the data of input/output system piece;
The computer platform hardware information that to gather the production phase, is stored in the described data of input/output system piece the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint;
The address of content server is stored in the described data of input/output system piece;
The address of extracting the described content server in the described data of input/output system piece sends described computer;
Set up being connected between described computer and the described content server according to the address of described content server;
The platform fingerprint that described computer is extracted in verification is with after the platform fingerprint in being stored in described data of input/output system piece is consistent, submit described platform fingerprint production certificate signature to described content server, carry out the production certification authentication, checking is legal by determining described data of input/output system piece;
The checking result of content server is sent described computer behind the certificate of service signature, described computer is determined the legitimacy of described content server by the checking of the certificate of service in the described data of input/output system piece.
Preferably, described computer indicates number after described content server is encrypted, and is stored in the data of input/output system piece.
Preferably, described production certificate is built in the described production server, and described certificate of service is built in the described content server.
Preferably, the storage production phase is produced the built-in pipeline key of server in described data of input/output system piece, and described pipeline key is used to guarantee the safety of data passes between described content server and the described computer.
Preferably, described address with content server is stored in before the step in the described data of input/output system piece, also comprises:
Result with after the root key encryption of production phase content server is stored in the data of input/output system piece.
Preferably, the result after described root key with the production phase content server is encrypted is stored in the data of input/output system piece after the step, also comprises:
Result after described platform information, platform fingerprint production certificate signature and root key encrypted sends described content server in the lump, after described content server authenticating computer identity, returns to described computer after deciphering described root key.
According to a further aspect of the invention, also provide a kind of two-way hardware Verification System, described system comprises production server, computer, content server and data of input/output system piece, platform fingerprint collecting unit and extraction unit;
Platform fingerprint collecting unit,, is stored in the described data of input/output system piece the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint in production phase collecting computer platform hardware information;
Produce server, generate the result that the user indicates after number encrypting in the production phase and send described computer, the result after the described encryption is indicated number as computer, be stored in the described data of input/output system piece;
Described data of input/output system piece, the address of memory contents server;
Extraction unit, the address that is used for extracting the described content server of described data of input/output system piece sends described computer;
Described computer according to the address of described content server set up with described content server between be connected;
Self platform fingerprint that described computer extracts is with after the platform finger-mark check in being stored in described data of input/output system piece is consistent, submit described platform fingerprint production certificate signature to described content server, carry out the production certification authentication, checking is legal by determining described data of input/output system piece;
Described computer receives the described content server checking result through the certificate of service signature, by the checking of the certificate of service in the described data of input/output system piece, determines the legitimacy of described content server.
Preferably, described production server comprises ciphering unit, is used for described computer is indicated number after described content server is encrypted, and is stored in the described data of input/output system piece.
Preferably, described production certificate is built in the described production server, and described certificate of service is built in the described content server.
Preferably, described computer, result after described platform information, platform fingerprint production certificate signature and root key encrypted sends described content server in the lump, after described content server authenticating computer identity, returns to described computer after deciphering described root key.
The described two-way hardware authentication method of the embodiment of the invention; indicate number, produce the built-in platform fingerprint of server and the production certificate signature of described platform fingerprint owing to stored computer in the data of input/output system piece; and the address of content server; the platform information of computer is no longer according to SN expressly; but the hardware information of computer is the platform fingerprint; all right encrypted protection of platform fingerprint and production certificate signature have further strengthened the computer authenticating safety in addition.The checking result of content server sends to described computer behind the certificate of service signature, described computer can be determined the legitimacy of described content server by the checking of the certificate of service in the BIOS Token, has realized hardware based two-way authentication.
The described two-way hardware authentication method of the embodiment of the invention can also be by producing certificate and serving certificate table and levy production server and content server, producing certificate is the information security signature of BIOS Token, the content signature of certificate of service for sending guaranteed that content server sends the fail safe of content.
Description of drawings
Fig. 1 is the two-way hardware authentication method first embodiment flow chart of the present invention;
Fig. 2 is the two-way hardware authentication method second embodiment flow chart of the present invention;
Fig. 3 is the two-way hardware Verification System first example structure figure of the present invention;
Fig. 4 is the two-way hardware Verification System second example structure figure of the present invention.
Embodiment
The invention provides a kind of two-way hardware authentication method and system, be used to realize the two-way authentication between content server and the computer.
Referring to Fig. 1, this figure is the two-way hardware authentication method first embodiment flow chart of the present invention.
The described two-way hardware authentication method of first embodiment of the invention may further comprise the steps:
S100, will produce user that server generates the production phase and indicate sending computer as a result after number encrypting, the result after the described encryption will be indicated number as computer, be stored in the data of input/output system piece.
Described computer indicates and number can be stored in the data of input/output system piece after described content server is encrypted.
In the production phase, the production server at first can produce a USER (user) SN, and (for example: NA0608XXXXXX), this SN can print and be attached to the computer cabinet outside, is similar to the walk in the Divine Land number.The HASH result of USER SN (HASH number or HASH can be set to be formed: as the result of SN+UUIDHASH three times) is actual PC SN, and PC SN can be kept at BIOS Token inside by what content server was encrypted.
When the user prepayment stage, land content server by another PC, input USER SN, content server can calculate out PC SN by USER SN, and proper account is carried out operational administrative.
S200, the computer platform hardware information that will gather the production phase, are stored in the described data of input/output system piece the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint.
In the production phase, produce the server meeting or understand acquisition platform hardware information (UUID, MAC, CPUID) based on the application program of PC, as the platform fingerprint, be used to prevent to duplicate.Described platform fingerprint can by expressly or after producing server for encrypting, store, the HASH of storage platform fingerprint and production certificate signature thereof can prevent that the platform fingerprint is forged or is distorted in the lump.
S300, the address of content server is stored in the described data of input/output system piece.
In the production phase, produce WEB address or IP address that server can built-in content server, also the HASH of the WEB address of content server or the HASH of IP address can be stored in BIOSToken inside, be used for anti-fishing.
In the production phase, produce the certificate of service PKI that server can built-in content server, certificate of service PKI and HASH thereof that also can the built-in services device be stored in BIOS Token inside, guarantee bi-directional verification.
In the production phase, the RootKey and the HASH thereof that produce after server can built-inly be encrypted by content server are stored in BIOS Token inside; (as Secure Application RootKey)
In the production phase, produce server and the data of the above-mentioned BIOS of being stored in Token inside can be stored in BIOS Token inside after with the production certificate signature.
The address of the described content server in S400, the described data of input/output system piece of extraction sends described computer.
S500, set up being connected between described computer and the described content server according to the address of described content server.
In authentication phase, PC can extract WEB address or the IP address and the verification of the content server of BIOS Token the inside; PC can connect in content server according to the address.
The platform fingerprint that described computer is extracted in S600, verification is with after the platform fingerprint in being stored in described data of input/output system piece is consistent, submit described platform fingerprint production certificate signature to described content server, carry out the production certification authentication, checking is legal by determining described data of input/output system piece.
Producing certificate can be built in the production server.Produce server and can have a built-in production certificate, produce the responsible BIOS writing data blocks (Token) of server, and the legitimacy of Token is responsible for producing the certificate stamped signature computer.
S700, the checking result of content server is sent described computer through certificate of service signature back, described computer is verified by the certificate of service in the described data of input/output system piece, determines the legitimacy of described content server.
Certificate of service can be built in the content server.Content server can have a built-in services certificate, and content server is responsible for verifying the legitimacy of PC computer Token, and the content that sends of subtend computer is carried out the certificate of service stamped signature and is responsible for.
The BIOS of computer need have the storage that Token is carried out in enough spaces, also has enough algorithm abilities to carry out cryptographic computing.
In authentication phase, after connection was set up, PC can extract the platform information of oneself, if the platform fingerprint of BIOS Token storage is a cleartext information, PC can carry out preliminary verification according to current state.PC can submit platform information and the current existing information that reads that produces to content server; Content server can be learnt the finger print information legitimacy of BIOS Token, anti-counterfeiting, anti-tamper by producing the checking of certificate.Learn the consistency of current state, anti-duplicating.
Think as content server to be necessary, can enlarge authentication area, and total signature of checking total data is verified means as secondary.
In authentication phase, content server can give feedback of PC and this feedback through the certificate of service signature according to the result of checking, and PC verifies that by the built-in certificate of service PKI of BIOS Token the legitimacy of content server guarantees that two-way authentication realizes as can be known.
In the application stage, if PC need decipher RootKey, in encrypting pipeline, give content server the RootKet after above-mentioned platform information, signature and the encryption in the lump, after content server checking PC identity, return to PC after the deciphering.
The described two-way hardware authentication method of first embodiment of the invention; indicate number, produce the built-in platform fingerprint of server and the production certificate signature of described platform fingerprint owing to stored computer in the data of input/output system piece; and the address of content server; the platform information of computer is no longer according to SN expressly; but the hardware information of computer is the platform fingerprint; all right encrypted protection of platform fingerprint and production certificate signature have further strengthened the computer authenticating safety in addition.The checking result of content server sends to described computer behind the certificate of service signature, described computer can be determined the legitimacy of described content server by the checking of the certificate of service in the BIOS Token, has realized hardware based two-way authentication.
The described two-way hardware authentication method of the embodiment of the invention can also be by producing certificate and serving certificate table and levy production server and content server, producing certificate is the information security signature of BIOS Token, the content signature of certificate of service for sending guaranteed that content server sends the fail safe of content.
The described two-way hardware authentication method of the embodiment of the invention, can store the production phase and produce the built-in pipeline key of server in described data of input/output system piece, described pipeline key is used to guarantee the safety of data passes between described content server and the described computer.In authentication phase, PC at first can extract the pipeline key of BIOS Token the inside, and it is carried out verification; In authentication phase, PC can extract WEB address or the IP address and the verification of the content server of BIOS Token the inside; PC can connect and sets up and encrypt pipeline in content server according to the address, in case fishing.
In the production phase, produce server can a built-in pipeline key and the HASH result of pipeline key be stored in BIOS Token inside.
Referring to Fig. 2, this figure is the two-way hardware authentication method second embodiment flow chart of the present invention.
The difference of relative first embodiment of two-way hardware authentication method second embodiment of the present invention is, before the described step S300, can also comprise:
S210, the result after the root key of production phase content server encrypted are stored in the data of input/output system piece.
S220, the result after described platform information, platform fingerprint production certificate signature and root key encrypted send described content server in the lump, after described content server authenticating computer identity, return to described computer after deciphering described root key.
The present invention also provides a kind of two-way hardware Verification System, is used to realize the two-way authentication between content server and the computer.
Referring to Fig. 3, this figure position two-way hardware Verification System first example structure figure of the present invention.
The described two-way hardware Verification System of first embodiment of the invention comprises and produces server 1, computer 2, content server 3 and data of input/output system piece 4, platform fingerprint collecting unit 5 and extraction unit 6.
Platform fingerprint collecting unit 5,, is stored in the described data of input/output system piece 4 the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint in production phase collecting computer 2 platform hardware information.
Produce server 1, generate the result that the user indicates after number encrypting in the production phase and send described computer 2, the result after the described encryption is indicated number as computer, be stored in the described data of input/output system piece 4.
Described data of input/output system piece 4, the address of memory contents server 3.
Extraction unit 6, the address that is used for extracting the described content server 3 of described data of input/output system piece 4 sends described computer 2.
Described computer 2 according to the address of described content server 3 set up with described content server 3 between be connected.
Self platform fingerprint that described computer 2 extracts is with after the platform finger-mark check in being stored in described data of input/output system piece 4 is consistent, submit described platform fingerprint production certificate signature to described content server 3, carry out the production certification authentication, checking is legal by determining described data of input/output system piece 4.
Described computer 2 receives the described content server 3 checking results through the certificate of service signature, by the certificate of service checking in the described data of input/output system piece 4, determines the legitimacy of described content server 3.
The described two-way hardware Verification System of first embodiment of the invention; indicate number, produce the built-in platform fingerprint of server 1 and the production certificate signature of described platform fingerprint owing to stored computer in the data of input/output system piece 4; and the address of content server 3; the platform information of computer 2 is no longer according to SN expressly; but the hardware information of computer 2 is the platform fingerprint; all right encrypted protection of platform fingerprint and production certificate signature have further strengthened computer 2 authenticating safety in addition.The checking result of content server 3 sends to described computer 2 behind the certificate of service signature, described computer 2 can be determined the legitimacy of described content server 3 by the checking of the certificate of service in the BIOS Token, has realized hardware based two-way authentication.
The described two-way hardware Verification System of the embodiment of the invention can also be by producing certificate and serving certificate table and levy production server 1 and content server 3, producing certificate is the information security signature of BIOS Token4, the content signature of certificate of service for sending guaranteed that content server 3 sends the fail safe of content.
Described production server 1 can also comprise ciphering unit 11, is used for described computer is indicated number after described content server 3 is encrypted, and is stored in the described data of input/output system piece 4.
Described production certificate can be built in the described production server 1, and described certificate of service is built in the described content server 3.
Described computer 2, result after described platform information, platform fingerprint production certificate signature and the root key encryption is sent described content server 3 in the lump, after described content server 3 authenticating computers 2 identity, return to described computer 2 after deciphering described root key.
The platform information of the described two-way hardware Verification System of the embodiment of the invention is no longer according to expressly SN, but the hardware information of whole PC, and this information can encryptedly protect, can in case duplicate, anti-tamper, anti-counterfeiting.
The described two-way hardware Verification System of the embodiment of the invention has increased production certificate and certificate of service, characterizes to produce server, two server identities of content server, and two certificates can merge into one.
The production certificate is the Information Security stamped signature in the BIOS Token, and the content stamped signature of certificate of service for pushing produced the fail safe that certificate and certificate of service can guarantee institute's stamped signature content, makes that BIOS Token information prevents duplicating, anti-tamper, anti-counterfeiting.
BIOS Token can the built-in pipe key, realizes safety corridor, guarantees the safety of data passes between computer and the content server.BIOS Token can built-in RootKey, can realize Secure Application.
BIOS Token can built-in binding produce server, anti-fishing.
The above only is a preferred implementation of the present invention, does not constitute the qualification to protection range of the present invention.Any any modification of being done within the spirit and principles in the present invention, be equal to and replace and improvement etc., all should be included within the claim protection range of the present invention.

Claims (10)

1. a two-way hardware authentication method is characterized in that, said method comprising the steps of:
To produce user that server generates the production phase and indicate sending computer as a result after number encrypting, the result after the described encryption will be indicated number as computer, be stored in the data of input/output system piece;
The computer platform hardware information that to gather the production phase, is stored in the described data of input/output system piece the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint;
The address of content server is stored in the described data of input/output system piece;
The address of extracting the described content server in the described data of input/output system piece sends described computer;
Set up being connected between described computer and the described content server according to the address of described content server;
The platform fingerprint that described computer is extracted in verification is with after the platform fingerprint in being stored in described data of input/output system piece is consistent, submit described platform fingerprint production certificate signature to described content server, carry out the production certification authentication, checking is legal by determining described data of input/output system piece;
The checking result of content server is sent described computer behind the certificate of service signature, described computer is determined the legitimacy of described content server by the checking of the certificate of service in the described data of input/output system piece.
2. two-way hardware authentication method according to claim 1 is characterized in that, described computer indicates number after described content server is encrypted, and is stored in the data of input/output system piece.
3. two-way hardware authentication method according to claim 1 is characterized in that, described production certificate is built in the described production server, and described certificate of service is built in the described content server.
4. two-way hardware authentication method according to claim 1, it is characterized in that, the storage production phase is produced the built-in pipeline key of server in described data of input/output system piece, and described pipeline key is used to guarantee the safety of data passes between described content server and the described computer.
5. two-way hardware authentication method according to claim 1 is characterized in that, described address with content server is stored in before the step in the described data of input/output system piece, also comprises:
Result with after the root key encryption of production phase content server is stored in the data of input/output system piece.
6. two-way hardware authentication method according to claim 5 is characterized in that, the result after described root key with the production phase content server is encrypted is stored in the data of input/output system piece after the step, also comprises:
Result after described platform information, platform fingerprint production certificate signature and root key encrypted sends described content server in the lump, after described content server authenticating computer identity, returns to described computer after deciphering described root key.
7. a two-way hardware Verification System is characterized in that, described system comprises production server, computer, content server and data of input/output system piece, platform fingerprint collecting unit and extraction unit;
Platform fingerprint collecting unit,, is stored in the described data of input/output system piece the production certificate signature of described platform fingerprint and described platform fingerprint as the platform fingerprint in production phase collecting computer platform hardware information;
Produce server, generate the result that the user indicates after number encrypting in the production phase and send described computer, the result after the described encryption is indicated number as computer, be stored in the described data of input/output system piece;
Described data of input/output system piece, the address of memory contents server;
Extraction unit, the address that is used for extracting the described content server of described data of input/output system piece sends described computer;
Described computer according to the address of described content server set up with described content server between be connected;
Self platform fingerprint that described computer extracts is with after the platform finger-mark check in being stored in described data of input/output system piece is consistent, submit described platform fingerprint production certificate signature to described content server, carry out the production certification authentication, checking is legal by determining described data of input/output system piece;
Described computer receives the described content server checking result through the certificate of service signature, by the checking of the certificate of service in the described data of input/output system piece, determines the legitimacy of described content server.
8. two-way hardware Verification System according to claim 7 is characterized in that,
Described production server comprises ciphering unit, is used for described computer is indicated number after described content server is encrypted, and is stored in the described data of input/output system piece.
9. two-way hardware Verification System according to claim 7 is characterized in that,
Described production certificate is built in the described production server, and described certificate of service is built in the described content server.
10. two-way hardware Verification System according to claim 7 is characterized in that,
Described computer, the result after described platform information, platform fingerprint production certificate signature and root key encrypted sends described content server in the lump, after described content server authenticating computer identity, returns to described computer after deciphering described root key.
CN2008102266095A 2008-11-17 2008-11-17 Method and system for authenticating two-way hardware Active CN101741561B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2008102266095A CN101741561B (en) 2008-11-17 2008-11-17 Method and system for authenticating two-way hardware

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2008102266095A CN101741561B (en) 2008-11-17 2008-11-17 Method and system for authenticating two-way hardware

Publications (2)

Publication Number Publication Date
CN101741561A true CN101741561A (en) 2010-06-16
CN101741561B CN101741561B (en) 2012-06-06

Family

ID=42464501

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2008102266095A Active CN101741561B (en) 2008-11-17 2008-11-17 Method and system for authenticating two-way hardware

Country Status (1)

Country Link
CN (1) CN101741561B (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102223235A (en) * 2011-06-23 2011-10-19 甘肃农业大学 Fingerprint characteristic template protecting method and identity authentication method in open network environment
CN103024090A (en) * 2011-09-20 2013-04-03 阿里巴巴集团控股有限公司 Method and system for identifying user terminal
CN104270346A (en) * 2014-09-12 2015-01-07 北京天行网安信息技术有限责任公司 Bidirectional authentication method, device and system
CN106375326A (en) * 2016-09-12 2017-02-01 山西特信环宇信息技术有限公司 Mobile phone two-way verification terminal and method
CN107092819A (en) * 2017-03-08 2017-08-25 广东欧珀移动通信有限公司 A kind of fingerprint typing method of inspection and device
CN108616517A (en) * 2018-04-10 2018-10-02 肖恒念 highly reliable cloud platform service providing method
CN110213232A (en) * 2019-04-26 2019-09-06 特斯联(北京)科技有限公司 A kind of fingerprint characteristic and key double verification method and apparatus

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1808457B (en) * 2006-02-24 2010-05-26 上海方正信息安全技术有限公司 Portable trusted device for remote dynamic management
CN100576797C (en) * 2007-10-25 2009-12-30 王松 Network identity validation method based on fingerprint
CN100562098C (en) * 2008-01-03 2009-11-18 济南市泰信电子有限责任公司 Digital television conditional access system and handling process thereof

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102223235A (en) * 2011-06-23 2011-10-19 甘肃农业大学 Fingerprint characteristic template protecting method and identity authentication method in open network environment
CN103024090A (en) * 2011-09-20 2013-04-03 阿里巴巴集团控股有限公司 Method and system for identifying user terminal
CN103024090B (en) * 2011-09-20 2015-07-01 阿里巴巴集团控股有限公司 Method and system for identifying user terminal
CN104270346A (en) * 2014-09-12 2015-01-07 北京天行网安信息技术有限责任公司 Bidirectional authentication method, device and system
CN104270346B (en) * 2014-09-12 2017-10-13 北京天行网安信息技术有限责任公司 The methods, devices and systems of two-way authentication
CN106375326A (en) * 2016-09-12 2017-02-01 山西特信环宇信息技术有限公司 Mobile phone two-way verification terminal and method
CN106375326B (en) * 2016-09-12 2019-03-01 山西特信环宇信息技术有限公司 A kind of mobile phone bi-directional verification terminal and method
CN107092819A (en) * 2017-03-08 2017-08-25 广东欧珀移动通信有限公司 A kind of fingerprint typing method of inspection and device
CN107092819B (en) * 2017-03-08 2020-04-14 Oppo广东移动通信有限公司 Fingerprint input inspection method and device
CN108616517A (en) * 2018-04-10 2018-10-02 肖恒念 highly reliable cloud platform service providing method
CN108616517B (en) * 2018-04-10 2021-07-09 甘肃柏隆电子商务科技有限责任公司 High-reliability cloud platform service providing method
CN110213232A (en) * 2019-04-26 2019-09-06 特斯联(北京)科技有限公司 A kind of fingerprint characteristic and key double verification method and apparatus

Also Published As

Publication number Publication date
CN101741561B (en) 2012-06-06

Similar Documents

Publication Publication Date Title
US10885501B2 (en) Accredited certificate issuance system based on block chain and accredited certificate issuance method based on block chain using same, and accredited certificate authentication system based on block chain and accredited certificate authentication method based on block chain using same
CN100559321C (en) Content distribution site spoofing detects
CN103107996B (en) Digital certificate download online method and system, digital certificate are provided platform
WO2021008453A1 (en) Method and system for offline blockchain transaction based on identifier authentication
CN101741561B (en) Method and system for authenticating two-way hardware
CN110677376B (en) Authentication method, related device and system and computer readable storage medium
CN109962890B (en) Block chain authentication service device and node admission and user authentication method
EP3590223A1 (en) Integrated method and device for storing and sharing data
CN110990827A (en) Identity information verification method, server and storage medium
CN108881253A (en) Block chain real name participatory approaches and system
US20070226507A1 (en) Method and System for Depositing Digital Works, A Corresponding Computer Program, and a Corresponding Computer-Readable Storage Medium
CN112165382B (en) Software authorization method and device, authorization server side and terminal equipment
CN104270338A (en) A method and system of electronic identity registration and authentication login
CN105554018B (en) Genuine cyber identification verification method
CN111787116B (en) System and method for trusted authentication of container mirror image based on block chain technology
CN103020825A (en) Safety payment authentication method based on software client
KR100939725B1 (en) Certification method for a mobile phone
CN101546407A (en) Electronic commerce system and management method thereof based on digital certificate
KR20170005400A (en) System and method for encryption
CN112905979B (en) Electronic signature authorization method and device, storage medium and electronic device
CN101321063A (en) System user access management system and method based on digital certificate technique
CN109118377A (en) A kind of processing method, system and the electronic equipment of the Claims Resolution event based on block chain
CN113344222A (en) Safe and credible federal learning mechanism based on block chain
CN108876375B (en) Block chain real name participation method and system
CN104125230A (en) Short message authentication service system and authentication method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant