CN103200179A - Website certification, deployment and identification method - Google Patents
Website certification, deployment and identification method Download PDFInfo
- Publication number
- CN103200179A CN103200179A CN2013100678848A CN201310067884A CN103200179A CN 103200179 A CN103200179 A CN 103200179A CN 2013100678848 A CN2013100678848 A CN 2013100678848A CN 201310067884 A CN201310067884 A CN 201310067884A CN 103200179 A CN103200179 A CN 103200179A
- Authority
- CN
- China
- Prior art keywords
- website
- digital signature
- browser
- network address
- identification module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a website certification, deployment and identification method and relates to the technical field of computer software, network and information security. A certification authority carries out registration and filing to a website and gives a web address digital signature to an address of the website through a signature module, the web address digital signature is used as a certification criterion of real effectiveness of the website, an identification module or service which is embedded in a browser can further be provided, and based on verification of the web address digital signature, the real effectiveness of the website is identified. A website owner (manager) embeds the web address digital signature which is given by the certification authority and comprises guidance verification processing parameters into a webpage source code of the website to testify the real effectiveness of the website. The identification module can be realized by serving as a built-in function or an additional plug-in of the browser, a character string of the address of the website is extracted from an address bar of the browser, the webpage source code is obtained from a content bar of the browser, the web address digital signature is extracted from the content bar of the browser, effectiveness of the web address digital signature is verified, and an identification conclusion is obtained. A negative identification conclusion immediately induces a follow-up report process, and a positive identification conclusion immediately enumerates a credit record of the website.
Description
Technical field
The present invention relates to computer software, network and field of information security technology.
Background technology
Popularize along with the Internet is increasingly extensive, bringing masses simultaneously greatly easily, the fraud of fake site (pseudo-website) brings no small puzzlement and loss also for many netizens.Such as, the fishing website of personation Web bank, by stealing registrant's ignorant of the fact account number cipher, burglary victim's money then.This type of case takes place again and again, depends merely on netizen individual's IQ and experience, can't tackle the problem at its root.For fear of having dust thrown into the eyes, will differentiate the true and false of website effectively, also just reliable method and effective tool need be arranged." recognition methods of pseudo-website and system " (Chinese invention patent number 200910084761.9), the user authentication information of importing is obtained and sends in proposition when the user logins, Website server is inquired about according to this and is returned the anti-counterfeiting information (such as photo) that the user reserves, show for user's vision and debate knowledge, thereby differentiate website true and false prevention login pseudo-website.The defective of this patented method is, a fishing website of implementing to swindle imitates interface and the mechanism of targeted website easily, it receives the authentication information that the user logins input on one side, another side is submitted to target website server to obtain the anti-counterfeiting information of feedback, being shown to the user again sees, make it take it seriously, thus the deception of successful implementation " man-in-the-middle attack " formula.Method and the device of website " differentiate " (Chinese invention patent number 200910129168.1), propose by resolving the corresponding dom tree type of the page code structure of website to be identified, carry out degree of depth coupling with the corresponding dom tree type of the page code structure of the security website that stores in advance, come website to be identified is differentiated." a kind of web portal security guard method and system based on digital signature " (Chinese invention patent application number 200910244251.3); proposition is with the dynamic web page staticize in the website; simultaneously length, timestamp and the digital digest of webpage are hidden embedding as digital signature afterwards with encrypted private key in webpage; identify webpage by monitoring detection digital signature again and whether distorted or delete, and then implement safety operation (record is reported to the police and recovered webpage).These two inventive methods in fact all are to be the preservation measures of web page code about web site contents, are intended to the coupling monitoring and find to recover it when inconsistent, belong to the self check behavior.Obviously, they all can not independently differentiate the true and false of a website objectively.In fact, a fake site can be implemented same method (in fact not needing) fully, and only just can swindle with its content in the same old way.
Summary of the invention
The present invention at first proposes a kind of site certificate method, supervises the discriminating problem of starting with and solving number of website real validity from the website.According to relevant laws and regulations, business website need be put on record in the registration of industrial and commercial authorities, being engaged in the operation website of pharmaceuticals industry will put on record in the registration of health authorities, relating to cultural advertisement operation website will put on record in the registration of cultural authorities, responsible departments of the government like that, the present invention is referred to as certification authority.Described certification authority comprises that also other are engaged in that website registration is put on record or the organization of authenticating transactions, as industry organization and even specialized company.The purpose that the website registration is put on record, be essential information (as web site name, domain name, business address etc.), owner information (as number of registration, title, residence, registered capital, the type of business, business scope, operating period etc.), License Info (as the administrative examination and approval file), the credit information (as credit rating) etc. to the website, the netizen examines and registers and disclosed, so that can check discriminating.Yet put on record in so conventional website, and still it is difficult to distinguish the true from the false for the netizen.
Solution of the present invention is, certification authority to the website except routinely the registration put on record, especially, (mainly be domain name to station address, also comprise webpage directory path, characteristic parameter alternatively, so subsidiary other text messages) character string, implement digital signature, the digital signature data about station address that draws, the present invention is referred to as the network address digital signature.The principle of digital signature, be that (length is any to target data, be station address among the present invention), calculate earlier the hashed value (summary) of fixed length (as 16 bytes, 20 bytes) with the hash function of standard (hash algorithm, as MD5, SHA-1 etc.), use the private key of signer (certification authority) then, by asymmetric cryptographic algorithm (as RSA, DSA etc.) keyed hash value, gained encrypt data byte sequence is digital signature.For the ease of showing, again the byte sequence data of digital signature are done visual coding (as binary-coded decimal, BASE-64 coding etc.), namely draw the text-string of digital signature.The validation verification of digital signature also adopts same algorithm, but uses the PKI (digital certificate, certification authority holds and can disclose) of signer to verify.Obviously, there is different network address different websites, and different network address digital signature is also just arranged.In view of the false proof effect of characteristic, especially its uniqueness of anti-tamper, the resisting denying of digital signature, the network address digital signature that provides with certification authority just is as the authentication criterion of differentiating number of website real validity.Certification authority uses software management system usually, the website is registered put on record.The present invention does the function expansion to existing management software, only needs to increase a signature blocks, just can complete realization network address data signature mechanism.So certification authority just can use signature blocks that the website is provided the network address digital signature.
Differentiate the website true and false for ease of the netizen, preferably embed discrimination function at browser, or such discriminating service is provided.According to the application interface of browser and the authentication mechanism of digital signature, can realize such identification module.So certification authority can its name, the identification module (such as being placed on the website for downloading) or the service that embed browser are provided, be used for differentiating based on checking network address digital signature the real effectiveness of website.Perhaps, certification authority can oneself not provide identification module or service yet, and approves that just the third party provides identification module or the service of equal effect.So-called approval comprises trust, authorizes even silent approvement.
The said website of the present invention, be not limited to have the website of independent domain name, also comprise various virtual sites, for example a large amount of mailbox, on-line shop, blog etc., they all are to be based upon on the specific domain name, and distinguish webpage with prefix name or trailing parameter (the present invention is referred to as characteristic parameter).In order to authenticate and to differentiate various websites (comprising virtual site), network address digital signature of the present invention, its coverage also relate to and are used for sign and the characteristic parameter of distinguishing webpage in the station address character string.Concrete way is, characteristic parameter is connected with the website domain name, as the data object of digital signature, generates the network address digital signature.
The present invention reintroduces a kind of website dispositions method, supplies the website owner or manager to be used for proving the real effectiveness of its website.Way is in the webpage source code of website, embeds the authentication criterion of affiliated web site, especially, allows described authentication criterion comprise the network address digital signature that certification authority is given.Obviously, the network address digital signature can't be forged in the fake site, thereby is unable to undergo diagnostic test.In the webpage source code, embed the mode of network address digital signature, also can variation.Hide for the part of the endogenous code annotation of webpage such as establishment and not show, work out the attribute into certain control on the webpage, even establishment is the two-dimension code figure on the webpage etc.Prerequisite is to want and can extract from the webpage source code, namely extracts through searching or changing.
Be used for sign and the characteristic parameter of distinguishing webpage in the station address character string in view of the network address digital signature may relate to, for when verifying, can correctly handling, just allow the network address digital signature comprise the parameter that the guiding checking is handled.
A website may be authenticated respectively by two above certification authorities (as industry and commerce, the tax, medicine, cultural authorities), and the network address digital signature that a plurality of certification authorities provide separately can and be necessary to be embedded in the webpage source code of website.In other words, the network address digital signature that embeds in the webpage source code can be the set of the network address digital signature that independently provided respectively by a plurality of certification authorities.
The present invention also proposes a kind of website discrimination method, is used for differentiating the real effectiveness of website.Way is, embeds identification module at browser, and the implementation of this identification module comprises: one, extract the station address character string from browser's address bar; Its two, obtain the webpage source code from the content bar of browser, and the network address digital signature of therefrom extracting: its three, according to station address character string and the network address digital signature of first two steps gained, the validity of certifying digital signature, thereby draw the discriminating conclusion.Wherein, the order of two steps in front can be arbitrarily.
Embed described identification module at browser, can take dual mode: if browser is from newly-designed, then identification module can be realized as the build-in function of new browser; If browser is existing, then the additional plug-ins of identification module as browser can be realized.Embed described identification module at browser, typical software interface design is to arrange a special button, by viewer's clicking operation, is used for triggering the function execution of identification module.
Identification module is when extracting the network address digital signature, if the network address digital signature that discovery has a plurality of certification authorities to provide, then can also select maybe can be set to the network address digital signature that provides separately at each certification authority, the validity of certifying digital signature respectively, thus draw the discriminating conclusion respectively.
Identification module shows usually and informs the viewer after drawing the discriminating conclusion.To differentiating the processing of conclusion after drawing, can do two kinds of arrangements: one, when differentiating that conclusion is the negativity conclusion, then bring out follow-up report process immediately, automatically or prompting alternatively, send report message to relevant authentication mechanism; Its two, when differentiating that conclusion is the certainty conclusion, alternatively, also enumerate the credit record that shows the website immediately, especially bad credit record (if any).
Good effect of the present invention is to be certification authority, the website owner (manager), netizen three parts, all provides a kind of the website is effectively authenticated and reliable, the practical method of differentiating.It puts into practice, will be conducive to perfect the Internet order, prevents the fake site swindle, safeguard each side's rights and interests.
Description of drawings
Fig. 1 is formation schematic diagram of the present invention, has reflected site certificate, the method key element of disposing and differentiating.The website put on record (1) be angle from certification authority, station address (11) comes from the possessory station address in website (21) registration, signature blocks (12) is introduced station address (11), implements to provide network address digital signature (221) after the digital signature.From browser (2), visible website is disposed and the realization of differentiating.Station address (21) has been registered in the website to be put on record and becomes station address (11) in (1), and the website owner is embedded into the network address digital signature (221) that certification authority provides in the web page contents (22); The netizen uses the identification module (23) on the browser (2), extracts station address (21) from address field automatically, and the network address digital signature (221) of extracting from web page contents (22) again draws discriminating conclusion (24) by certifying digital signature.
Fig. 2 is website of the present invention discrimination method schematic flow sheet.Begin to differentiate, extract station address character string (1) earlier, the network address of extracting again digital signature (2), certifying digital signature (3) finally draws and differentiates conclusion (4), so finish then.Wherein, (1) step is commutative with the order in (2) step.
Embodiment
The embodiment of site certificate method of the present invention is referring to Fig. 1.In management software system was put in the registration of existing website on record, put on record the database of (1) of website still kept, and the station address (11) that station address (21) is registered remains unchanged; The newly-increased signature blocks (12) of expansion is designed to a functional procedure, and it is input as station address (11), is output as network address digital signature (221).The operation interface of signature blocks (12) is arranged three text boxes, is prefix, domain name, suffix according to this, and other arranges [signature] button.Wherein, prefix frame content is defaulted as the user name of putting on record in the website, can revise, and can be sky; Domain name frame content is defaulted as the domain name of putting on record in the website, can not revise; Suffix frame content is determined by input as required, is defaulted as sky.The feature operation of [signature] button, at first extract three sections content of text of prefix, domain name, suffix, be spliced into a complete text-string, as the object data source that generates the network address digital signature, in other words, the digital signature coverage has related to this three sections content of text.For example, to the address, Sohu.com, sliceablely go out:
The www.sohu.com of sohu.com
Justice such as, to the station address of certain on-line shop, sliceablely go out:
The shop www of Jin Lan Taobao, taobao.com/spm=23564366id=456450964
Wherein, digital signature has related to the characteristic parameter spm of station address and the value of id.Signature blocks (12) adopts SHA-1 hashing algorithm and rsa cryptosystem algorithm, realizes digital signature function.Adopt a kind of safety information product of close armour information security terminal by name, specifically use a cover software and hardware (wherein including unique a pair of public and private key) of this product, the network address digital signature that above-mentioned two websites are provided is respectively:
{TodBrPUblg23ZlaSzy50QOnAWrYRMbAxpeBaQEMvq_vSEmUXn1MKpInbhuBO7xCenYsLbXehJS76eYkyUqHL9yHFtqQXAAW7o31W4pXReOLgtAHNYOoOLszfnXbk84Aw1KByHtBQKTJFZNQa6nIRCldJ+wj7RQGCIRFSgi_r63k},
With
{LtZR57YfIR5CvVUM6YJt3wus4bjCcGF7YVY94CHo491vM6I9ffXYci40JgLrVS7YDT+57IwjYZKdeavj7Yi+bbiPuIDu4eD5SNN5QVr12iBm39Ra7cT4edalokbfgeOhSTRcUNvIucmikonnjHxbhT5jxJo3efcpzANvTGB7hDQ}。
The network address digital signature that certification authority provides can be presented to the website owner in company with the website certificate of registry.
The embodiment of website of the present invention dispositions method is referring to Fig. 1.The website owner puts (1) on record afterwards in that its station address (21) is registered to the website, with the network address digital signature (221) that certification authority provides, is embedded in the web page contents (22) of its website, to prove the real effectiveness of its website to the netizen.The comment line that specifically can be used as in the webpage source code embeds, and for example, the webpage of sohu.com can embed:
<!--
<industrial and commercial CA 〉
(sohu.com ,~)
TodBrPUblg23ZlaSzy50QOnAWrYRMbAxpeBaQEMvq_vSEmUXn1MKpInbhuB07xCenYsLbXehJS76eYkyUqHL9yHFtqQXAAW7o3lW4pXReOLgtAHNYOoOLszfnXbk84AwlKByHtBQKTJFZNQa6nIRCldJ+wj7RQGCIRFSgi_r63k
</industrial and commercial CA 〉
-->
Again for example, the webpage in Jin Lan Taobao shop can embed:
<!--
<industrial and commercial CA 〉
(Jin Lan Taobao shop ,~, spm=, id=)
LtZR57YfIR5CvVUM6YJt3wus4bjCcGF7YVY94CHo49lvM6I9ffXYci40JgLrVS7YDT+57IwjYZKdeavj7Yi+bbiPuIDu4eD5SNN5QVrl2iBm39Ra7cT4edalokbfgeOhSTRcUNvIucmikonnjHxbhT5jxJo3efcpzANvTGB7hDQ
</industrial and commercial CA 〉
-->
In above two examples, the network address digital signature of embedding also includes the parameter that the guiding checking is handled, and sees the round parentheses part, is more than one yuan of group, shows the formation template of digital signature object data.Wherein, symbol "~" represents domain name, and the element before this symbol is prefix, and element afterwards is suffix, and equal sign "=" expression has corresponding parameter value.As the network address digital signature that comment line embeds, will hide and can not show at browser, therefore to the webpage outward appearance without any influence.
The website may then correspondingly, can embed in the webpage source code side by side through the authentication of a plurality of certification authorities.For example, the webpage of sohu.com can embed:
<!--
<industrial and commercial CA 〉
(sohu.com ,~)
TodBrPUblg23ZlaSzy50QOnAWrYRMbAxpeBaQEMvq_vSEmUXnlMKpInbhuB07xCenYsLbXehJS76eYkyUqHL9yHFtqQXAAW7o3lW4pXReOLgtAHNYOoOLszfnXbk84AwlKByHtBQKTJFZNQa6nIRCldJ+wj7RQGCIRFSgi_r63k
</industrial and commercial CA 〉
<tax CA 〉
(sohu.com ,~)
…
</tax CA 〉
<cultural CA 〉
(sohu.com ,~)
...
</cultural CA 〉
-->
Wherein, ellipsis " ... " represent the concrete digital signature character string that corresponding certification authority provides.
The embodiment one of website of the present invention discrimination method is referring to Fig. 1.Design a dialog box program, customize a new browser (2).The IE browser control part that adopts and arrange a Microsoft is as content bar, in addition also as IE browser outward appearance, arrange that a text box is as address field, arrange [retreating], [advancing], [stopping], [refreshing] button respectively, these buttons are worked out response function respectively, carry out the respective function function of IE browser control part.Especially, arrange [discriminating] button, the establishment response function is realized the function of identification module (23).When clicking [discriminating] button, with IE browser control part object, network address attribute field internally, extract the text-string of station address (21); Internally content attribute field of justice reads the source code text of web page contents (22), by in comment line, searching the network address digital signature sign keyword that corresponding certification authority provides, as<industrial and commercial CA 〉, the network address digital signature (221) of locating and extract; According to parameterized template wherein, according to polynary group guiding, the object data source of splicing reconstruct network address digital signature (when the trailing parameter value is indicated, also needing from the text-string of station address (21), to extract the corresponding parameters value, accurately reconstruct of ability); Then, according to the same algorithm of digital signature, carry out certifying digital signature with the PKI (digital certificate) of certification authority, draw and differentiate conclusion (24).During certifying digital signature unanimity (effectively), judge that then the website is authentic and valid, otherwise judge that the website is invalid for personation.When differentiating that conclusion (24) is the negativity conclusion, then the official website from trend certification authority sends a report information; When differentiating conclusion (24) for the certainty conclusion, then retrieve the credit record of this targeted website from the official website of certification authority, especially bad credit record if having, then shows.
The embodiment two of website of the present invention discrimination method is referring to Fig. 1.Be popular IE browser (2), design a plug-in unit and realize the function of identification module (23).The IE browser supports BHO (Browser Helper0bjects, browser auxiliary object) to expand its function since 4.0 versions.By means of BHO, work out an in-process com object, when each the startup, all to load.This object can move in the context identical with browser, can carry out any action to available window and module, can also detect typical event, as GoBack, GoForward, DocumentComplete etc.BHO can the access browser menu and toolbar and can make modification, can also produce some extraneous informations that new window shows current web page, and hook is installed be monitored some message and action.Set up an Ole object engineering, develop a com component as plug-in unit, set up standard BHO assembly by realizing the IObjectWithSite interface method, then assembly is registered, the IE browser will call this Ole assembly.During the invocation component method, the IE browser can be delivered to itself in the event of registration of BHO assembly as parameter, can obtain the Document object according to this parameter, and then just can extract the text-string of station address (21) by this object, and obtain the source code text of web page contents (22) and the network address digital signature (221) of extracting thus.Utilize BHO to revise at the toolbar of browser and insert [discriminating] button, its discrimination process, similar with above-described embodiment one.The issue of this assembly (processes such as download, registration) is carried out automatically by the mode of IE control, and the user only need specify network address with the IE browser access, can finish the assembly issuing process automatically, and component upgrade is also undertaken by this method.
Claims (10)
1. a site certificate method is that certification authority puts on record to the website, and the relevant information of examination enrollment website is characterized in that described method comprises:
Certification authority uses signature blocks that the website is provided the network address digital signature, as the authentication criterion of differentiating number of website real validity;
Certification authority provides identification module or the service that embeds browser, differentiates the real effectiveness of website based on checking network address digital signature, and perhaps, the approval third party of certification authority provides identification module or the service of equal effect.
2. method according to claim 1 is characterized in that, described network address digital signature, coverage also relate to and be used for sign and the characteristic parameter of distinguishing webpage in the station address character string.
3. a website dispositions method is the authentication criterion that embeds affiliated web site in the webpage source code, is used for the real effectiveness of proof website, it is characterized in that described authentication criterion comprises the network address digital signature that certification authority is given.
4. method according to claim 3 is characterized in that, described network address digital signature also comprises the parameter that the guiding checking is handled.
5. according to claim 3 and 4 described methods, it is characterized in that described network address digital signature is the set of the network address digital signature that independently provided respectively by a plurality of certification authorities.
6. a website discrimination method is to embed identification module at browser, is used for differentiating the real effectiveness of website, it is characterized in that the implementation of described identification module comprises:
Extract the station address character string from browser's address bar;
Obtain the webpage source code and the network address digital signature of therefrom extracting from the content bar of browser;
According to gained station address character string and network address digital signature, the validity of certifying digital signature and draw the discriminating conclusion.
7. method according to claim 6 is characterized in that, described identification module is realized as the build-in function of browser.
8. method according to claim 6 is characterized in that, described identification module is realized as the additional plug-ins of browser.
9. according to claim 6,7 and 8 described methods, it is characterized in that described identification module also can select maybe can be set to the network address digital signature that provides separately at a plurality of certification authorities, the validity of certifying digital signature respectively.
10. according to claim 6,7 and 8 described methods, it is characterized in that, when described discriminating conclusion is the negativity conclusion, also bring out follow-up report process immediately; And alternatively, when described discriminating conclusion is the certainty conclusion, also enumerate the credit record of website immediately.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013100678848A CN103200179A (en) | 2013-02-23 | 2013-02-23 | Website certification, deployment and identification method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013100678848A CN103200179A (en) | 2013-02-23 | 2013-02-23 | Website certification, deployment and identification method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103200179A true CN103200179A (en) | 2013-07-10 |
Family
ID=48722537
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013100678848A Pending CN103200179A (en) | 2013-02-23 | 2013-02-23 | Website certification, deployment and identification method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103200179A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103685277A (en) * | 2013-12-17 | 2014-03-26 | 南京大学 | Safety protection system and method for webpage access through browser |
| CN104317938A (en) * | 2014-10-31 | 2015-01-28 | 北京国双科技有限公司 | Webpage validation method and device |
| CN104394156A (en) * | 2014-11-27 | 2015-03-04 | 北京国双科技有限公司 | Domain name verification method, device and system |
| CN104735028A (en) * | 2013-12-19 | 2015-06-24 | 中国移动通信集团辽宁有限公司 | Website authenticity identification method, system, device and mobile equipment |
| CN110223051A (en) * | 2019-05-17 | 2019-09-10 | 中国银联股份有限公司 | Method of payment, device, equipment, system and storage medium |
| CN111597522A (en) * | 2020-05-21 | 2020-08-28 | 杭州安恒信息技术股份有限公司 | Website affiliate authentication method, system, equipment and readable storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1328103A2 (en) * | 2002-01-10 | 2003-07-16 | Dream Team S.r.l. | Method and system for identifying users and authenticating digital documents on data communications networks |
| CN1645821A (en) * | 2005-01-31 | 2005-07-27 | 深圳市沃通通信服务有限公司 | Web site identify identifying and realizing method for binding domain name and domain certificater identification |
| CN1960249A (en) * | 2005-10-31 | 2007-05-09 | 中国银联股份有限公司 | Authentication method and authentication system |
| CN102111267A (en) * | 2009-12-28 | 2011-06-29 | 北京安码科技有限公司 | Website safety protection method based on digital signature and system adopting same |
| CN102761529A (en) * | 2011-04-29 | 2012-10-31 | 上海格尔软件股份有限公司 | Website authentication method based on picture identification digital signatures |
-
2013
- 2013-02-23 CN CN2013100678848A patent/CN103200179A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1328103A2 (en) * | 2002-01-10 | 2003-07-16 | Dream Team S.r.l. | Method and system for identifying users and authenticating digital documents on data communications networks |
| CN1645821A (en) * | 2005-01-31 | 2005-07-27 | 深圳市沃通通信服务有限公司 | Web site identify identifying and realizing method for binding domain name and domain certificater identification |
| CN1960249A (en) * | 2005-10-31 | 2007-05-09 | 中国银联股份有限公司 | Authentication method and authentication system |
| CN102111267A (en) * | 2009-12-28 | 2011-06-29 | 北京安码科技有限公司 | Website safety protection method based on digital signature and system adopting same |
| CN102761529A (en) * | 2011-04-29 | 2012-10-31 | 上海格尔软件股份有限公司 | Website authentication method based on picture identification digital signatures |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103685277A (en) * | 2013-12-17 | 2014-03-26 | 南京大学 | Safety protection system and method for webpage access through browser |
| CN103685277B (en) * | 2013-12-17 | 2016-08-17 | 南京大学 | A kind of browser access safe web page guard method |
| CN104735028A (en) * | 2013-12-19 | 2015-06-24 | 中国移动通信集团辽宁有限公司 | Website authenticity identification method, system, device and mobile equipment |
| CN104317938A (en) * | 2014-10-31 | 2015-01-28 | 北京国双科技有限公司 | Webpage validation method and device |
| CN104317938B (en) * | 2014-10-31 | 2018-02-02 | 北京国双科技有限公司 | Web page interlinkage validation verification method and device |
| CN104394156A (en) * | 2014-11-27 | 2015-03-04 | 北京国双科技有限公司 | Domain name verification method, device and system |
| CN104394156B (en) * | 2014-11-27 | 2018-06-22 | 北京国双科技有限公司 | Domain name verification method, apparatus and system |
| CN110223051A (en) * | 2019-05-17 | 2019-09-10 | 中国银联股份有限公司 | Method of payment, device, equipment, system and storage medium |
| CN110223051B (en) * | 2019-05-17 | 2021-07-16 | 中国银联股份有限公司 | Payment method, device, equipment, system and storage medium |
| CN111597522A (en) * | 2020-05-21 | 2020-08-28 | 杭州安恒信息技术股份有限公司 | Website affiliate authentication method, system, equipment and readable storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110493202B (en) | Login token generation and verification method and device and server | |
| US7757088B2 (en) | Methods of accessing and using web-pages | |
| EP3709567B1 (en) | Electronic signature authentication system on the basis of biometric information and electronic signature authentication method thereof | |
| CN102110198B (en) | Anti-counterfeiting method for web page | |
| JP5008851B2 (en) | Internet safety | |
| CN101272237B (en) | Method and system for automatically generating and filling login information | |
| EP1863240B1 (en) | Method and system for phishing detection | |
| CN102035654B (en) | Identity authentication method, identity authentication equipment, server and identity authentication-based encryption method | |
| CN103200179A (en) | Website certification, deployment and identification method | |
| CN106911684B (en) | Authentication method and system | |
| CN106533658A (en) | URL tamper-proofing signature and signature verification method based on MD5 algorithm | |
| CN111628871B (en) | Block chain transaction processing method and device, electronic equipment and storage medium | |
| CN110209691B (en) | Data processing method and device | |
| JP4781922B2 (en) | Link information verification method, system, apparatus, and program | |
| CN104618307B (en) | Network bank business Verification System based on credible calculating platform | |
| CN110443039A (en) | Detection method, device and the electronic equipment of plug-in security | |
| JP6488613B2 (en) | Trading system and program | |
| CN109246062A (en) | A kind of authentication method and system based on browser plug-in | |
| JP2000078128A (en) | Communication system, ic card and recording medium | |
| CN104518880A (en) | Big data reliability validation method and system based on random sampling detection | |
| US11399020B2 (en) | System and method for authenticating server identity during connection establishment with client machine | |
| WO2017145273A1 (en) | User authentication device | |
| CN112669033A (en) | Transaction authentication method based on FIDO equipment and FIDO equipment | |
| JPH1188323A (en) | Electronic signature device and signature recognition device | |
| Price | The benefits and drawbacks of using electronic identities |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130710 |