CN102404122A - Password authentication method - Google Patents
Password authentication method Download PDFInfo
- Publication number
- CN102404122A CN102404122A CN2011104421576A CN201110442157A CN102404122A CN 102404122 A CN102404122 A CN 102404122A CN 2011104421576 A CN2011104421576 A CN 2011104421576A CN 201110442157 A CN201110442157 A CN 201110442157A CN 102404122 A CN102404122 A CN 102404122A
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- system server
- authentication method
- user
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a password authentication method, comprising a system sever and a dynamic password card. The authentication method comprises the following steps: a user inserts the dynamic password card according to the information prompted by the terminal of the system server; the dynamic password card generates a dynamic password according to the input information and puts the dynamic password into the terminal of the system server; the terminal of the system server transmits the dynamic password to the system server; the dynamic password card is bound with a user account before the dynamic password is used; the system server identifies the dynamic password and confirms whether the user can login. Because of the way, the password authentication method of the invention has a simple operation process and more convenient use, prevents the password from leaking outside, removes the safety hidden troubles of the operation, ensures the safety performance of the system, and has more reliable safe performances.
Description
Technical field
The present invention relates to the network authentication field, particularly relate to a kind of cipher authentication method.
Background technology
Along with Development of E-business, increasing business activity is carried out on network, and client's Account Security becomes an important problem.In traditional network commercial activity, the client is from client Connection Service device, and server sends identity validation information, and the user is in the client confirmation.
Present cipher authentication method complicated operating process, password leaks easily, and the fail safe and the reliability of system are lower.
Summary of the invention
The technical problem that the present invention mainly solves provides a kind of cipher authentication method, and is more safe and reliable, uses convenient.
For solving the problems of the technologies described above, the technical scheme that the present invention adopts is: a kind of cipher authentication method is provided, comprises: system server and dynamic password card, and said cipher authentication step comprises:
(a) user is according to the information input dynamic password card of the terminal notifying of system server, and the dynamic password card can calculate a dynamic password according to input information, dynamic password input system server terminal;
(b) terminal of system server is sent to system server with dynamic password;
(c) dynamic password is bound with user account before being stuck in the dynamic password startup;
(d) system server is verified dynamic password, confirms whether the user can login.
In preferred embodiment of the present invention, the authentication of said dynamic password is accomplished through the inner certificate server of system server, and certificate server is with authentication result retrieval system server.
In preferred embodiment of the present invention, said certificate server verifies that to the dynamic password in the certain hour window said time window is dynamically adjustment.
In preferred embodiment of the present invention, said system server verifies binding application, and sets one and bind the time limit, and the user binds binding to accomplish in the time limit.
The invention has the beneficial effects as follows: cipher authentication method operating process of the present invention is simple, uses conveniently, prevents that password from leaking, and has removed the potential safety hazard of operation, has guaranteed the security performance of system, and is more safe and reliable.
Embodiment
Set forth in detail in the face of preferred embodiment of the present invention down, thereby protection scope of the present invention is made more explicit defining so that advantage of the present invention and characteristic can be easier to it will be appreciated by those skilled in the art that.
The embodiment of the invention comprises:
A kind of cipher authentication method comprises: system server and dynamic password card, and said cipher authentication step comprises:
(a) user is according to the information input dynamic password card of the terminal notifying of system server, and the dynamic password card can calculate a dynamic password according to input information, dynamic password input system server terminal;
(b) terminal of system server is sent to system server with dynamic password;
(c) dynamic password is bound with user account before being stuck in the dynamic password startup;
(d) system server is verified dynamic password, confirms whether the user can login.
Preferably, the authentication of said dynamic password is accomplished through the inner certificate server of system server, and certificate server is with authentication result retrieval system server.Said certificate server verifies that to the dynamic password in the certain hour window said time window is dynamically adjustment.
Said dynamic password is bound with user account before being stuck in the dynamic password startup.Further, said system server verifies binding application, and sets one and bind the time limit, and the user binds binding to accomplish in the time limit.
When launching the dynamic password card, the user imports number of the account, and user account and dynamic password are bound in application, and system is provided with a binding authentication time limit, and the length of time can be set arbitrarily, and operated by rotary motion becomes the cycle of user login services device.If the user gives password for change in the checking time limit, binding relationship just automatically terminates.Can prevent the malice binding like this, prevent that password from leaking, remove the potential safety hazard of operation, guarantee the security performance of system.
Cipher authentication method of the present invention is used for recreation, finance, business administration, a plurality of fields of ecommerce.
The beneficial effect of cipher authentication method of the present invention is:
Operating process is simple, uses conveniently, prevents that password from leaking, and has removed the potential safety hazard of operation, has guaranteed the security performance of system, and is more safe and reliable.
The above is merely embodiments of the invention; Be not so limit claim of the present invention; Every equivalent structure or equivalent flow process conversion that utilizes description of the present invention to do; Or directly or indirectly be used in other relevant technical fields, all in like manner be included in the scope of patent protection of the present invention.
Claims (4)
1. a cipher authentication method is characterized in that, comprising: system server and dynamic password card, and said authenticating step comprises:
(a) user is according to the information input dynamic password card of the terminal notifying of system server, and the dynamic password card can calculate a dynamic password according to input information, dynamic password input system server terminal;
(b) terminal of system server is sent to system server with dynamic password;
(c) dynamic password is bound with user account before being stuck in the dynamic password startup;
(d) system server is verified dynamic password, confirms whether the user can login.
2. cipher authentication method according to claim 1 is characterized in that, the authentication of said dynamic password is accomplished through the inner certificate server of system server, and certificate server is with authentication result retrieval system server.
3. cipher authentication method according to claim 2 is characterized in that, said certificate server verifies that to the dynamic password in the certain hour window said time window is dynamically adjustment.
4. cipher authentication method according to claim 1 is characterized in that, said system server verifies binding application, and sets one and bind the time limit, and the user binds binding to accomplish in the time limit.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104421576A CN102404122A (en) | 2011-12-27 | 2011-12-27 | Password authentication method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011104421576A CN102404122A (en) | 2011-12-27 | 2011-12-27 | Password authentication method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102404122A true CN102404122A (en) | 2012-04-04 |
Family
ID=45885943
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011104421576A Pending CN102404122A (en) | 2011-12-27 | 2011-12-27 | Password authentication method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102404122A (en) |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1855810A (en) * | 2005-04-26 | 2006-11-01 | 上海盛大网络发展有限公司 | Dynamic code verificating system, method and use |
-
2011
- 2011-12-27 CN CN2011104421576A patent/CN102404122A/en active Pending
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1855810A (en) * | 2005-04-26 | 2006-11-01 | 上海盛大网络发展有限公司 | Dynamic code verificating system, method and use |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI587672B (en) | Login authentication method, client, server and system | |
| CN103167491B (en) | A kind of mobile terminal uniqueness authentication method based on software digital certificate | |
| CN102300182B (en) | Short-message-based authentication method, system and device | |
| CN103475666B (en) | A kind of digital signature authentication method of Internet of Things resource | |
| WO2017063523A1 (en) | Service authentication method, apparatus and system | |
| CN102231729B (en) | Method for supporting various CA (Certification Authority) identity authentications | |
| CN102510378B (en) | Method for logging in online game through mobile equipment | |
| CN101635714B (en) | Method and system for improving network application safety | |
| CN103188344A (en) | Method for safely invoking REST API (representational state transfer, application programming interface) | |
| CN101257489A (en) | Method for protecting account number safety | |
| CN103473489B (en) | A kind of the Authority Verification system and method for verifying authority of comprehensive supervision of keeping the safety in production | |
| CN103503038A (en) | Method and system for verifying transactor identity on ATM | |
| CN103326859B (en) | System and method for safety certification based on catalog | |
| CN105681281B (en) | Encryption device based on embedded OS | |
| WO2010083243A3 (en) | Secure remote authentication through an untrusted network | |
| CN109067785A (en) | Cluster authentication method, device | |
| CN102281142A (en) | User identity identification system | |
| CN102624687A (en) | Networking program user authentication method based on mobile terminal | |
| WO2015188439A1 (en) | Virtual desktop authentication method, terminal, and server | |
| CN103685151A (en) | Account number single sign on protecting method and device | |
| CN102413146B (en) | Client authorized logon method based on dynamic codes | |
| CN103902880A (en) | Windows system two-factor authentication method based on challenge responding type dynamic passwords | |
| CN105631667A (en) | Authentication method, device and system | |
| CN103179564B (en) | Based on the network application login method of mobile terminal authentication | |
| CN101854357B (en) | Method and system for monitoring network authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120404 |