CN102932152B - A kind of identity identifying technology adopting sound mixed cipher - Google Patents
A kind of identity identifying technology adopting sound mixed cipher Download PDFInfo
- Publication number
- CN102932152B CN102932152B CN201210432808.8A CN201210432808A CN102932152B CN 102932152 B CN102932152 B CN 102932152B CN 201210432808 A CN201210432808 A CN 201210432808A CN 102932152 B CN102932152 B CN 102932152B
- Authority
- CN
- China
- Prior art keywords
- password
- user
- sequence number
- time
- dynamic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
Abstract
The present invention relates to a kind of method for generating cipher code based on time password table, it is the anti-theft cipher of a kind of sound mixing, and this password has M position, also has extra order for identifying its password generating mode except M position.Have N position to be dynamic password position in its M position password, a sequence number in each corresponding time password table, all the other are static password, the authentication of a kind of economic security it is for adopting magnetic card type to conclude the business between enterprise and client time.
Description
(1) technical field:
The present invention relates to a kind of dynamic cipher generating method based on public time password table, particularly adopt the method between enterprise and client, the method for generating cipher code of a kind of economic security when adopting magnetic card and cipher to conclude the business.
(2) background technology:
Current, mostly the cash and the account trading mode that adopt bank card encrypted code between enterprise and client, because customer information in password and bank card is all changeless, easily be stolen and falsely use, therefore the trend password burglary-preventing method in the face of the surge of bank card clone robber brush case is a lot, magnetic stripe card is inserted IC chip and is made it to avoid being copied by lawless person, but its " bottleneck " to be the cost of IC chip card higher.Some places adopt except input password, and also need sign on sales slip, whether cashier can check sales slip and sign consistent with card back, but this most occasion can not avoid bank's card to be replicated.In addition, bank is in bank's card number coding rule that it uses and strip data format, add the identifying code of Custom Encryption algorithm and be stored in the magnetic track of magnetic stripe bank card, be encrypted by the self-defining special cryptographic algorithm of each bank, because each row cryptographic algorithm is different, therefore, the part vacation card utilizing the bank card information obtained illegally to make, can be identified when credit card issuer is deciphered and cannot use.
Dynamic password is current focus in enterprise's application; increasing enterprise adopts dynamic password protection; the method producing dynamic password is varied; to be banking system set up a fixing time password table for each client for one of them; client holds scratch card and concludes the business at every turn and strictly scrape the dynamic password positional information of time password table in card taking in order; obtain effective dynamic password, but scratch card can not be lost together with bank card, must take precautions against during transaction and be robbed.Have plenty of and generate a uncertain random digit combination according to special algorithm, each password can only use once, and it is widely used in the applications such as Net silver, network game, telecom operators, E-Government, enterprise.Dynamic password is a kind of account anti-theft technology of safe and convenient, can available protecting transaction and log in authentication security.Main flow produces form SMS, hardware token, handset token.Current most main flow be hardware password board based on time synchronized, its conversion in every 60 seconds dynamic password.Mobile phone dynamic password utilizes mobile phone to generate or receiving terminal as random cipher, user is when logging in application system, generation on input handset or the password received do not stop the random cipher changed, and greatly improve the safety of authenticating user identification or transaction.
(3) summary of the invention:
The password of current magnetic bank card uses all SCs, inputs password and another hand or health often must be adopted to block operating gesture, prevent other people or pinhole camera from peeping.The lawless person also had installs magnetic card data reader on ATM (automatic teller machine) side, steals remittee's bank card number information and makes pseudo-card, then blocks by puppet and steals gained password on other automatic teller machines, extract deposit in card.
Because user identity card often will use, user profile is easily revealed, and bank card can be imitated again, and therefore crux to hold this pass of password.A kind of identity identifying technology adopting sound mixed cipher of the present invention, for bank or adopt bank card and password to carry out the authenticating user identification of cash account process of exchange between enterprise and its client, its implementation method cost is low, can the identity authorization system of compatible current employing static password password.This password has M position, and each is formed by digital 0 – 9, and it is characterized in that having static password position and dynamic password position in the password of M position, the more generative processes of dynamic password figure place are more complicated, and dynamic password is exposed and also has both static password protections to coordinate increase fail safe.After user holds bank card insertion ATM, system just shows a time password table on ATM screen, this time password table independently can be generated separately by each ATM of bank, also can generate by the control centre of ATM (automatic teller machine) net is unified, the password of the time password table generated is not bound with user account, lost efficacy after the password authentification generated, time password table is made up of sequence number 0 to 99, wherein sequence number 0 to 9 has 2 groups or array, the all corresponding random digit of each sequence number in table, therefore this table password is a time password table be made up of random digit 0 to 9.N position is had to be dynamic password position in the password of user M position, all the other are static password position, the size of N is by user preset, N is less than or equal to M, N position, foremost or the backmost N position of M position password is positioned at for ease of operation dynamic password, also select one of them by user, a sequence number in each all corresponding time password table of this N position dynamic password, therefore N number of sequence number has N to 2N position.Each sequence number is preset and be tied in account corresponding to user by user.Each sequence number all occupies fixing position in overall password, effective dynamic password is found by the time password table that ATM screen shows by sequence number when it is just for concluding the business, thus the sequence number of relevant position in password is converted to dynamic password, dynamic password is time synchronized formula, user must complete the input of dynamic password at official hour, time password table is by random digit in predetermined time interval updating form, generally get 30 seconds to 90 seconds, near time password table, also establish a timer to input password as early as possible for reminding user, timing time to time password table by random digit in updating form, because valid password in time password table is random digit, therefore namely password becomes useless code after completing transaction, even if password is stolen or peeped, also be difficult to crack.For the ease of memory sequence number, only can select 0 to 9 sequence number in time password table, these sequence numbers only have one, therefore these sequence numbers establish 2 groups or array, peep and crack difficulty, remember because color is easier than numeral to increase transaction scene, can utilize each group of word and form different colours identification it, such as 2 groups is black and redness, and select the sequence number being greater than 9 to be also peep crack difficulty for strengthening transaction scene, making it can not from the password figure peeped and time password table determination sequence number.Random digit in time password table can as dynamic password, also can as the identifier of password generating mode, N number of sequence number random digit that wherein N-1 sequence number is corresponding can be placed in N-1 position, foremost or the backmost N-1 position of password as dynamic password, at this moment static password figure place is M – (N-1) position, random digit corresponding to another 1 sequence number is as the figure place of M position password ring shift left or ring shift right, ring shift left 1 is exactly that all positions are moved to the left 1, highest order moves on to lowest order place, ring shift right 1 all position 1 lowest order that moves right moves on to highest order, password after displacement is used for authentication.Due to this circulative shift operation can directly block by shift amount after once moved, therefore shifting function is also very simple.If the random digit being used as cyclic shift is greater than M, be equal to the figure place of the numeral after being subtracted M as displacement, in addition in the password of above-mentioned M position user according to can the preset dynamic password position from 0 to M position to the different requirements of password use safety, namely from being entirely predisposed to static password to being entirely predisposed to dynamic password.Be exactly dynamic password figure place by the figure place of static password figure place remainder preset in the password of M position.Be represent by its sequence number during preset dynamic password, as the difference with the preset number of static password, sequence number insertion of brackets or underline can be distinguished with it.When user is predisposed to 0 dynamic password position, namely this password is static password entirely.Above-mentioned password generating mode has multiple, by user's choice for use, greatly strengthens the fail safe of password.In order to distinguish, described password is except M position, and it is the identifier of above-mentioned password generating mode to also have extra order, is hidden not directly as the input of password position, and when it only operates for Password Input, the identification decision of computer and password holder preserve memory.
A kind of identity identifying technology adopting sound mixed cipher of the present invention, have user cipher input operation simple, password is easily remembered, and does not substantially increase the feature of cost.During each authentication, system and user utilize sequence number to determine the position of effective dynamic password in cipher table, the dynamic password verification success when the dynamic password of user's input is consistent with dynamic password effective in system, otherwise dynamic password verification failure.Cipher authentication is once rear just to lose efficacy.Dynamic password generating mode of the present invention is safe and reliable, and expense is low, easily realizes easy care, can be used for ATM carries out cash transaction, also can be used for the various cipher authentication systems such as E-Payment and system login.
(4) accompanying drawing illustrates:
Fig. 1 is a kind of System's composition schematic diagram adopting the identity identifying technology of sound mixed cipher.
(5) embodiment:
The present embodiment as shown in Figure 1, also hold in bank card insertion ATM, and ATM generates time password table by user's static password, user's method for generating cipher code according to a preconcerted arrangement, input sound mixed cipher, after ATM checking, realizes cash transaction.If described password is 6 and 2 extra orders, this password has 3 static password positions and is set to 938, dynamic password is positioned at after static password, totally 3 its sequence numbers are set to 5, 7, 18 these passwords are used for the monetary accounts access transaction between certain bank and client, client arrange fundamental cryptographic (for generating valid password) be: 938 (5) (7) (18) sequence number insertion of brackets identifications it, extra order is that in A0 extra order, the 2nd identification code A represents that dynamic password is placed in after static password in password, before then putting for B, in extra order, the 1st identification code is that 0 expression does not do shifting function, if be make ring shift right for representing during B when shifting function, as then made ring shift left for A, sequence number position 5, 7, sequence number in its expression time password table of 18 numerals, time password table must be looked into when concluding the business, dynamic password is obtained by sequence number, such as check in sequence number 5, 7, 18 corresponding dynamic passwords are 6, 3, 5 by fundamental cryptographic: in 938 (5) (7) (18), (5) (7) (18) are converted to dynamic password 6, 3, 5 generate sound mixed cipher: 938635 carry out authentication for input.
If above-mentioned extra order is AB, its digital B indicates that ring shift right operates, at this moment fundamental cryptographic increases a sequence number, if sequence number is still 3, dynamic password only has 2, static password is 4, another 1 sequence number is used for displacement, if fundamental cryptographic is: 9382 (5) (7) (18) wherein sequence number 18 look into time password table gained numeral, represent shift amount, as checked in sequence number 5, 7, 18 corresponding random digits are 6, 3, 8 by fundamental cryptographic: in 9382 (5) (7) (18), (5) (7) are converted to dynamic password 6, 3 generate sound mixed cipher: 938263 also must will generate sound mixed cipher: 938263 make ring shift right 8, at this moment cyclic shift 8 etc. are all: 8 – 6=2 cyclic shifts 2, by minimum 2 63 move on to the highest 2: 639382 it be for input carry out authentication sound mixed cipher.
Claims (1)
1. one kind adopts the identity identifying method of sound mixed cipher, for bank or adopt bank card and password to carry out the authenticating user identification of cash account process of exchange between enterprise and its client, fundamental cryptographic has M position, each is formed by numeral 0 to 9, it is characterized in that having static password position and dynamic password position in the fundamental cryptographic of M position, after user holds bank card insertion ATM, system just shows a time password table on ATM screen, this time password table is independently generated separately by each ATM of bank, or generate by the control centre of ATM (automatic teller machine) net is unified, password in the time password table generated is not bound with user account, lost efficacy after the password authentification generated, time password table is made up of sequence number 0 to 99, the all corresponding random digit of each sequence number in table, N position is had to be dynamic password position in the fundamental cryptographic of user M position, all the other are static password position, the size of N is by user preset, N is less than or equal to M, N position, foremost or the backmost N position of M position fundamental cryptographic is positioned at for ease of operation dynamic password, also one of them is selected by user, a sequence number in each all corresponding time password table of this N position dynamic password, each sequence number is preset and be tied in account corresponding to user by user, dynamic password is time synchronized formula, user must complete the input of dynamic password at official hour, during each authentication, system and user utilize sequence number to determine the position of effective dynamic password in time password table, the dynamic password verification success when the dynamic password of user's input is consistent with dynamic password effective in system, otherwise dynamic password verification failure, time password table is by random digit in predetermined time interval updating form, near time password table, also establish a timer to input password as early as possible for reminding user, timing time to time password table by random digit in updating form, for the ease of memory sequence number, only select 0 to 9 sequence number in time password table, these sequence numbers only have one, therefore these sequence numbers establish 2 groups or array, peep crack difficulty to increase transaction scene, remember because color is easier than numeral, utilize each group of word and form different colours identification it, the sequence number being greater than 9 is selected also to be peep crack difficulty for strengthening transaction scene, random digit in time password table is as dynamic password, or as the identifier of password generating mode, using N number of sequence number random digit that wherein N-1 sequence number is corresponding as dynamic password, random digit corresponding to another 1 sequence number is as the figure place of M position fundamental cryptographic ring shift left or ring shift right, if the random digit being used as cyclic shift is greater than M, be equal to the figure place of the numeral after being subtracted M as displacement, in addition in the fundamental cryptographic of above-mentioned M position user according to the difference of password use safety being required to the preset dynamic password position being less than or equal to M position, namely from being predisposed to sound mixed cipher to being entirely predisposed to dynamic password, when fundamental cryptographic is set, as the difference with the preset number of static password, sequence number insertion of brackets or underline is distinguished with it, above-mentioned password generating mode has multiple, by user's choice for use, greatly strengthen the fail safe of password, in order to distinguish generating mode, described fundamental cryptographic also has extra order except M position, it is the identifier of above-mentioned password generating mode, hidden directly not inputting as password position, when it only operates for Password Input, the identification decision of computer and password holder preserve memory.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210432808.8A CN102932152B (en) | 2012-11-03 | 2012-11-03 | A kind of identity identifying technology adopting sound mixed cipher |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210432808.8A CN102932152B (en) | 2012-11-03 | 2012-11-03 | A kind of identity identifying technology adopting sound mixed cipher |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102932152A CN102932152A (en) | 2013-02-13 |
| CN102932152B true CN102932152B (en) | 2016-02-17 |
Family
ID=47646859
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210432808.8A Expired - Fee Related CN102932152B (en) | 2012-11-03 | 2012-11-03 | A kind of identity identifying technology adopting sound mixed cipher |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102932152B (en) |
Families Citing this family (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103136829A (en) * | 2013-02-17 | 2013-06-05 | 李凯 | Method and system used for identifying both side identities |
| CN104008312A (en) * | 2014-03-18 | 2014-08-27 | 深圳怡化电脑股份有限公司 | Cardholder identity verification method of ATM (Automatic Teller Machine) |
| CN103973435B (en) * | 2014-05-09 | 2017-06-23 | 褚万青 | One kind contraposition cryptographic system and a kind of direct communication method and a kind of indirect communication method |
| CN103996246B (en) * | 2014-06-13 | 2016-06-08 | 张金木 | A kind of open transaction small electronic wallet |
| CN105306209B (en) * | 2014-07-30 | 2019-08-09 | 阿里巴巴集团控股有限公司 | Cipher set-up method, login method and equipment |
| CN105871889B (en) * | 2016-05-16 | 2019-03-29 | 广州视睿电子科技有限公司 | A kind of login method and system |
| CN107292161A (en) * | 2017-06-27 | 2017-10-24 | 姚新波 | A kind of composing method of variable fingerprint digital dynamic password |
| CN107895105B (en) * | 2017-11-03 | 2020-06-09 | Oppo广东移动通信有限公司 | Password processing method, terminal equipment and computer readable storage medium |
| CN113096273A (en) * | 2019-12-20 | 2021-07-09 | 佛山市云米电器科技有限公司 | Door lock control method, intelligent door lock and computer readable storage medium |
| CN113096274A (en) * | 2019-12-20 | 2021-07-09 | 佛山市云米电器科技有限公司 | Door lock control method, intelligent door lock and computer readable storage medium |
| CN115830749B (en) * | 2022-11-24 | 2024-05-17 | 惠州市则成技术有限公司 | Household access control management method and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1893353A (en) * | 2006-03-17 | 2007-01-10 | 卢海龙 | Random character-table cipher identifying technology |
| CN1956375A (en) * | 2005-10-24 | 2007-05-02 | 潘静 | Dynamic password identity authentication method and system based on network |
| CN101197095A (en) * | 2006-12-10 | 2008-06-11 | 王建 | Variable password |
| CN101294463A (en) * | 2008-06-18 | 2008-10-29 | 大连交通大学 | Dynamically encrypting and unlock method based on electronic trick lock |
| CN102624678A (en) * | 2011-01-27 | 2012-08-01 | 中国联合网络通信集团有限公司 | System verification method and system verification server |
-
2012
- 2012-11-03 CN CN201210432808.8A patent/CN102932152B/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1956375A (en) * | 2005-10-24 | 2007-05-02 | 潘静 | Dynamic password identity authentication method and system based on network |
| CN1893353A (en) * | 2006-03-17 | 2007-01-10 | 卢海龙 | Random character-table cipher identifying technology |
| CN101197095A (en) * | 2006-12-10 | 2008-06-11 | 王建 | Variable password |
| CN101294463A (en) * | 2008-06-18 | 2008-10-29 | 大连交通大学 | Dynamically encrypting and unlock method based on electronic trick lock |
| CN102624678A (en) * | 2011-01-27 | 2012-08-01 | 中国联合网络通信集团有限公司 | System verification method and system verification server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102932152A (en) | 2013-02-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102932152B (en) | A kind of identity identifying technology adopting sound mixed cipher | |
| US10607211B2 (en) | Method for authenticating a user to a machine | |
| US5193114A (en) | Consumer oriented smart card system and authentication techniques | |
| CN1344396B (en) | Portable electronic charge and authorization devices and methods therefor | |
| US8947197B2 (en) | Method and apparatus for verifying a person's identity or entitlement using one-time transaction codes | |
| CN103544599B (en) | Embedded-type security element for authenticating, storing and trading in mobile terminal | |
| US20110142234A1 (en) | Multi-Factor Authentication Using a Mobile Phone | |
| CN110249586B (en) | Method for securely storing sensitive data on a smart card and smart card | |
| KR100914905B1 (en) | Smart Card Having Function of One Time Password Generation and Electronic Banking System Using That | |
| KR20120116902A (en) | A personalized multifunctional access device possessing an individualized form of authenticating and controlling data exchange | |
| WO2012030341A1 (en) | Otp generation using a camouflaged key | |
| US20090164373A1 (en) | System and Method of Preventing Password Theft | |
| JP2016511864A (en) | Authentication device and related method | |
| JP2015511336A (en) | ID authentication | |
| GB2433147A (en) | A method for verifying a person's identity or entitlement using one-time transaction codes | |
| CN101599192B (en) | Method for achieving security guard of bank card | |
| CN104376465A (en) | Safe mobile payment method | |
| CN102714592B (en) | Produce the method and system of visual key | |
| US10503936B2 (en) | Systems and methods for utilizing magnetic fingerprints obtained using magnetic stripe card readers to derive transaction tokens | |
| CN101179373A (en) | Visible intelligent cipher key | |
| Rumman et al. | ATM Shield: Analysis of Multitier Security Issues of ATM in the Context of Bangladesh | |
| CN102930646B (en) | Authentication technology based on stock market quotation | |
| KR101277198B1 (en) | Secret key of password generating system and method using 2 dimensional barcode | |
| Mohanty et al. | Nfc featured triple tier atm protection | |
| CN101304316B (en) | Method for improving identification authentication security based on password card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C41 | Transfer of patent application or patent right or utility model | ||
| CB03 | Change of inventor or designer information |
Inventor after: Wang Genfang Inventor before: Zhang Jinmu |
|
| COR | Change of bibliographic data | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20160622 Address after: 100032 A1711, building 2, No. 1, Wai Men Avenue, Xicheng District, Beijing Patentee after: Beijing Hanbang Xinzhou Mdt InfoTech Ltd Address before: 350004 Fuzhou City, Taijiang province Yi Chau longevity Park, block 401, 8, Patentee before: Zhang Jinmu |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20160217 Termination date: 20181103 |