CN103684795A - Dynamic password token device and identity authentication method thereof and dynamic password token system - Google Patents
Dynamic password token device and identity authentication method thereof and dynamic password token system Download PDFInfo
- Publication number
- CN103684795A CN103684795A CN201310738159.9A CN201310738159A CN103684795A CN 103684795 A CN103684795 A CN 103684795A CN 201310738159 A CN201310738159 A CN 201310738159A CN 103684795 A CN103684795 A CN 103684795A
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- unit
- token
- dynamic
- fingerprint
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention provides a dynamic password token device, which comprises a circuit board and a dynamic password token module arranged on the circuit board, wherein the dynamic password token module comprises a fingerprint unit, a digital token unit, a power supply device and a power supply management module; the fingerprint unit is used for scanning and identifying fingerprint information; the digital token unit is used for generating a dynamic password, and judging whether to output a dynamic password or not according to the identification result of the fingerprint unit; the power supply device is used for supplying power to the fingerprint unit and the digital token unit; the power supply management unit is used for charging and boosting the fingerprint unit and the digital token unit by using the power supply device; the fingerprint unit is connected with the digital token unit, the power supply device and the power supply management unit respectively. The invention further provides a dynamic password token system and a dynamic password token identity authentication method. By adopting the dynamic password token device, the dynamic password token system and the dynamic password token identity authentication method, the network security can be enhanced, and convenience is brought to use.
Description
Technical field
The present invention relates to a kind of identity and differentiate and transaction authentication technology, specifically, relate to a kind of dynamic cipher token apparatus and identity identifying method thereof, there is the dynamic password token system of this dynamic cipher token apparatus.
Background technology
Along with computer is applied more widely; more and more the operation of multiservice system all depends on network; thereby the fail safe of information is with regard to ever more important; the information of wishing to relate to business secret such as: people can access the protection of confidentiality, integrality and authenticity when transmission over networks; avoid the means such as other people utilize eavesdropping, pretend to be, distort, denial to obtain, thus protect individual interests and privacy not accessed, invade or destroy.
In order to guarantee the fail safe of personal information in Internet Transmission, in prior art, for the method for authentication, there are three kinds: static password, dynamic password and biological identification technology.
In use, what user often arranged is weak password to the first personal identification method---static password, and as date birthday, telephone number etc., these static passwords are easy to illegally stolen and monitor, fail safe that can not effective guarantee personal information.
Second method is the method that adopts dynamic password, dynamic password is also referred to as dynamic password, one-time password (OTP, be One-Time password), be mainly used in network ID authentication, be widely used in an occasion such as bank, security, network game, third party's payment, large enterprises inside.Dynamic password, before user's login, according to this user's private identity information, is introduced the random code of change at random, because random code in each landfall process is all different, with respect to static password, improves the fail safe of login process authentication.Yet dynamic password needs hardware terminal to generate, above-mentioned hardware terminal is called dynamic token.Because dynamic token can produce dynamic password, and be mainly used in network ID authentication, once dynamic token is illegally accessed, will certainly cause user's personal information to be stolen, thus the safety that threatens whole network.And dynamic token only generates different random codes when each authentication, user's true identity is not authenticated before authentication, can not guarantee user's self data security.
The third method is to adopt biological identification technology, and biological identification technology refers to a kind of technology by mankind's biological character for identity authentication, and biological characteristic comprises: fingerprint, people's face, iris, sound etc.Because fingerprint is the unique feature of human body, its complexity is enough to provide to carry out identity discriminating, and fingerprint recognition is than other biological feature identification technique, easy to use, is therefore current the most frequently used biometric discrimination method.Yet, because the identification of biological characteristic needs special equipment, therefore, adopt the device volume of biological identification technology larger, be unfavorable for carrying, and biometric apparatus all can not carry out Real-Time Monitoring to dynamic password.Especially now, along with mobile network's ground extensive use, all may need whenever and wherever possible to use dynamic password to carry out network ID authentication, therefore, use inconvenience, and then can not guarantee the safety of network.
Summary of the invention
Main purpose of the present invention is to provide a kind of have higher network fail safe, volume dynamic cipher token apparatus little and easy to use.
For achieving the above object, dynamic cipher token apparatus provided by the invention comprises: circuit board and be installed on the dynamic password token module on circuit board; Dynamic password token module comprises fingerprint unit, digital token unit, electric supply installation and Power Management Unit, fingerprint unit is for scanning and identification finger print information, digital token unit is used for generating dynamic password, and judge whether dynamic password output according to the recognition result of fingerprint unit, electric supply installation is used to fingerprint unit and the power supply of digital token unit, Power Management Unit is used for utilizing electric supply installation for fingerprint unit and digital token unit charging and boost, and fingerprint unit is connected with digital token unit, electric supply installation and Power Management Unit respectively.
Its further technical scheme is, digital token unit comprises MCU, display unit and clock apparatus, MCU is for controlling the work of dynamic password token and generating dynamic password, display unit is used for showing dynamic password, clock apparatus is used to dynamic password token that work clock is provided, and MCU and display unit and clock apparatus are connected.
Its further technical scheme be that Power Management Unit comprises charging circuit, booster circuit and interface arrangement.
Its further technical scheme be, Power Management Unit and fingerprint unit are integrated on chip piece, Power Management Unit is arranged on circuit board by interface arrangement.Power Management Unit and fingerprint unit can also lay respectively on two chip blocks, and one end of power management module is arranged on circuit board by interface arrangement, the other end of power management module and fingerprint element connection.
Its further technical scheme be, on circuit board, be also provided with sound circuit, public address set and input/output unit, public address set and input/output unit connect with phonetical circuit respectively.
From upper scheme, when dynamic cipher token apparatus generates dynamic password by digital token unit, first by fingerprint unit scan and identification finger print information, only have when the finger print information scanning passes through identification, digital token unit just can show the dynamic password of generation, has avoided unauthorized personnel's operation, guarantees dynamic password token holder's legal identity, be to using user and the identity thereof of equipment to realize dual identification, greatly improve the fail safe of network.And, owing to including fingerprint unit, electric supply installation and Power Management Unit in dynamic cipher token apparatus, user's finger print information only need to be stored in fingerprint unit, electric supply installation is powered to dynamic password token, the Power Management Unit processing that electric supply installation managed and boost, biological identification device, circuit arrangement and dynamic token equipment have been realized and integrated and optimize, and dynamic password token volume is little, easy to carry and use.
Another object of the present invention is to provide a kind of have higher network fail safe and dynamic password token system easy to use.
For achieving the above object, dynamic password token system comprises: dynamic cipher token apparatus and dynamic password token server, dynamic cipher token apparatus comprises circuit board and is installed on the dynamic password token module on circuit board, dynamic password token module comprises fingerprint unit, digital token unit, electric supply installation and Power Management Unit, fingerprint unit is for scanning and identification finger print information, digital token unit is used for generating dynamic password, and judge whether dynamic password output according to the recognition result of fingerprint unit, electric supply installation is used to fingerprint unit and the power supply of digital token unit, Power Management Unit is used for utilizing electric supply installation for fingerprint unit and digital token unit charging and boost, fingerprint unit respectively with digital token unit, electric supply installation and Power Management Unit are connected, dynamic password token server comprises receiving element and authentication unit, receiving element is inputted user name, input static password and input dynamic password for receiving, authentication unit is for obtaining according to inputting user name the dynamic password storehouse of inputting dynamic password association, then based on time verifying benchmark, input dynamic password is carried out to verification, and show check results.
From upper scheme, dynamic password token system is realized fingerprint recognition and is generated dynamic password by dynamic cipher token apparatus, dynamic password token server receives user and inputs dynamic password and verify, during the work of dynamic password token system, dynamic password is generated automatically by dynamic cipher token apparatus, now show to only have when finger print information passes through the fingerprint recognition in dynamic password token, on dynamic cipher token apparatus, just show dynamic password.
By dynamic password token server, received after user's the input dynamic password of inputting user name, input static password and showing before, by the authentication unit of dynamic password token server, whether verification input dynamic password is correct, then by verification result feedback.So, in dynamic cipher token apparatus, user's identity is verified, then in dynamic password token server, the input dynamic password to user is tested, realized dual identification, dynamic password produces at random, each all differences, and after once using, just cancel, the fail safe that has greatly improved network.By carrying out fingerprint recognition at dynamic cipher token apparatus, then carry out secondary checking by dynamic password token server, both improved coefficient of safety, and the dynamic cipher token apparatus use that is easy to carry.
Another object of the present invention is to provide a kind of have higher network fail safe and dynamic password token identity identifying method easy to use.
For achieving the above object, dynamic password token identity identifying method comprises that dynamic password generates step and dynamic cipher verification step, dynamic password generates step and comprises: password generates step, fingerprint authentication step and password step display, password generates step and is used for using cryptographic algorithm to generate dynamic password, fingerprint authentication step is for scanning and identification finger print information, password step display is for when fingerprint authentication step is identified successfully, show dynamic password, when fingerprint authentication step, identify when unsuccessful, do not show dynamic password; Dynamic cipher verification step comprises: password receiving step, cipher decoding step, cipher authentication step and result step display, password receiving step is for receiving inputting user name, input static password and inputting dynamic password of user's input, cipher decoding step is for obtaining according to inputting user name the dynamic password storehouse of inputting dynamic password association, cipher authentication step is for carrying out verification based on time verifying benchmark to input dynamic password, and result step display is used for showing check results.
From upper scheme, the present invention is based on time synchronized and fingerprint identification technology and carry out authentication, first generate dynamic password, then by fingerprint recognition, user's identity is authenticated, when by fingerprint recognition, show dynamic password, otherwise do not show.Then, the input dynamic password of user name, input static password and demonstration is inputted in user's typing, dynamic password token server finds according to inputting user name the cryptographic libraries being associated with this input dynamic password, based on time verifying mechanism, input dynamic password is carried out to verification, complete the time calibration to this user, when by verification, feedback result is to user simultaneously, can continue operation, otherwise terminating operation.So; when user carries out network operation; first in dynamic cipher token apparatus, carry out fingerprint recognition; show again dynamic password; realize double authentication, for various application systems provide the identity authentication function of high security, protection user's authentication safety; prevent that assailant from falsely using by identity theft, identity and the mode such as identity swindle is implemented illegal operation, thereby guarantee legal user's interests.And finger print information does not participate in generating dynamic password, simplify the hardware configuration of dynamic cipher token apparatus and server thereof, the volume of dynamic cipher token apparatus greatly reduces, and it is simple, convenient, with low cost to use.
Accompanying drawing explanation
Fig. 1 is the system configuration schematic diagram of dynamic cipher token apparatus embodiment of the present invention.
Fig. 2 is the concrete connection schematic diagram of dynamic cipher token apparatus embodiment of the present invention.
Fig. 3 is the structural representation of the digital token unit of dynamic cipher token apparatus embodiment of the present invention.
Fig. 4 is the example interface figure a of the newly-built Radius server of dynamic password token system embodiment of the present invention.
Fig. 5 is the example interface figure b of the newly-built Radius server of dynamic password token system embodiment of the present invention.
Fig. 6 is the example interface figure c of the newly-built Radius server of dynamic password token system embodiment of the present invention.
Fig. 7 is the authentication interface schematic diagram a of dynamic password token system embodiment of the present invention.
Fig. 8 is the authentication interface schematic diagram b of dynamic password token system embodiment of the present invention.
Fig. 9 is the authentication interface schematic diagram c of dynamic password token system embodiment of the present invention.
Figure 10 is the schematic diagram that dynamic password token system embodiment of the present invention authenticates.
Below in conjunction with drawings and Examples, the present invention is further described.
Embodiment
Dynamic cipher token apparatus embodiment;
Referring to Fig. 1, Fig. 2, dynamic cipher token apparatus comprises key-press and voice circuit board 10 and is installed on the dynamic password token module 11 on this key-press and voice circuit board 10, and key-press and voice circuit board 10 and dynamic password token module 11 connect by USB line.Dynamic password token module 11 comprises fingerprint unit 12, digital token unit 15, battery 13 and Power Management Unit 14.
Fingerprint unit 12 is for scanning and identification finger print information, and digital token unit 15 is for generating dynamic password, and judges whether dynamic password output according to the recognition result of fingerprint unit 12; Battery 13, as electric supply installation, is fingerprint unit 12 and 15 power supplies of digital token unit; 14 of Power Management Unit are for utilizing battery 13 for charging and boost in fingerprint unit 12 and digital token unit 15; Fingerprint unit 12 is connected with digital token unit 15, battery 13 and Power Management Unit 15 respectively.
Key-press and voice circuit board 10 comprises sound circuit 21, as the loudspeaker 22 of public address set and as delete key 23 and the register button 24 of input/output unit.Power Management Unit 14 comprises charging circuit, booster circuit and usb 16.
By usb 16, can realize dynamic password token module is charged, also can connect to carry out fingerprint management with key-press and voice circuit board 10.Connecting signal comprises: power supply+5v, power-, signal 1, signal 2 and signal 3.Power Management Unit 14 and fingerprint unit 12 join by board to board connector, Power Management Unit 14 and fingerprint unit 12 are integrated on chip piece, all signals that join with fingerprint module all need through Power Management Unit 14 switchings, and Power Management Unit 14 is arranged on key-press and voice circuit board 10 by usb 16.Between Power Management Unit 14 and digital token unit 15, by three lines, connect: anode, battery cathode and control signal.Battery 13 can connect with digital token unit 15, also can connect with Power Management Unit.
As shown in Figure 3, digital token unit 15 comprises MCU31, section-type LCD 32 and 32768Hz crystal 32 to the structure of digital token unit 15; Section-type LCD 32 is as display unit, for showing dynamic password.32768Hz crystal 33 is as clock apparatus, for inside, digital token unit provides work clock.MCU31, as the core of whole dynamic password token, connects respectively at section-type LCD 32 and 32768Hz crystal 33, for controlling the work of dynamic password token, is responsible for working state of system scheduling, mode of operation switching, and generates dynamic password.MCU31 can adopt the chip inlet with large capacity program storage and RAM, and in MCU31, the several functions such as integrated LCD driving, RTC, UART, has extremely low power consumption, is enough to meet the instructions for use of dynamic password token.
Use before the present invention's dynamic cipher token apparatus, user need to carry out initialization, so that in advance the finger print information of oneself is stored in dynamic password token.When carrying out authentication, digital token unit 15 first generates dynamic password, in digital token of the present invention unit 15, be embedded with the algorithm of cryptographic calculation, can the time or the technological means of event synchronization, by meeting the OATH dynamic password calculation standard of world security approval, use HMAC-SHA1 algorithm to produce six dynamic passwords, carry out the authentication of one-time pad.
User is positioned over finger the fingerprint input area of fingerprint unit 12, fingerprint unit 12 is obtained user's finger print information and is identified by scanning, when fingerprint unit 12 these finger print informations of judgement match with the finger print information prestoring, the successful result of output identification is to digital token unit.If do not match, digital token unit 15 is also exported to by the unsuccessful result of identification in fingerprint unit 12, and digital token unit 15 only receives the successful result of identification just can show dynamic password by inner section-type LCD 32.User reads after this dynamic password, can use oneself input user name, input password and input dynamic password to carry out network operation.Because dynamic password obtains, carry out user's authentication before, guaranteed user's operation, improved coefficient of safety.
The present embodiment is to adopt battery 13 as electric supply installation, as conversion, also can adopt one or more power supplies as electric supply installation.
A kind of conversion as dynamic cipher token apparatus embodiment of the present invention, Power Management Unit 14 and fingerprint unit 12 can lay respectively on two chip blocks, one end of Power Management Unit 14 is arranged on key-press and voice circuit board 10 by usb 16, and the other end of Power Management Unit 14 connects with fingerprint unit 12.
Dynamic password token system embodiment:
Dynamic password token system comprises dynamic cipher token apparatus and dynamic password token server.
The same dynamic cipher token apparatus embodiment of structure of dynamic cipher token apparatus, comprise key-press and voice circuit board 10 and be installed on the dynamic password token module 11 on this key-press and voice circuit board 10, key-press and voice circuit board 10 and dynamic password token module 11 connect by USB line 30.Dynamic password token module 11 comprises fingerprint unit 12, digital token unit 15, battery 13 and Power Management Unit 14.Fingerprint unit 12 is for scanning and identification finger print information; Digital token unit 15 is for generating dynamic password, and judges whether dynamic password output according to the recognition result of fingerprint unit 12; Battery 13, as electric supply installation, is fingerprint unit 11 and 15 power supplies of digital token unit; 14 of Power Management Unit are for utilizing battery 13 for charging and boost in fingerprint unit 12 and digital token unit 15; Fingerprint unit 11 is connected with digital token unit 15, battery 13 and Power Management Unit 14 respectively.
Key-press and voice circuit board 10 comprises sound circuit 21, as the loudspeaker 22 of public address set and as delete key 23 and the register button 24 of input/output unit.Power Management Unit 14 comprises charging circuit, booster circuit and usb 16.By usb 16, can realize 11 chargings of dynamic password token module, also can connect to carry out fingerprint management with key-press and voice circuit board 10.Connecting signal comprises: power supply+5v, power-, signal 1, signal 2 and signal 3.Power Management Unit 14 and fingerprint unit 12 join by board to board connector.Power Management Unit 14 and fingerprint unit 12 are integrated on chip piece, and all signals that join with fingerprint module all need through Power Management Unit 14 switchings, and Power Management Unit 14 is arranged on key-press and voice circuit board 10 by usb 16.Between Power Management Unit 14 and digital token unit, by three lines, connect: anode, battery cathode and control signal.Battery can with digital token element connection, also can connect with Power Management Unit.
The structure of digital token unit 15 is referring to Fig. 3, and digital token unit 15 comprises MCU31, section-type LCD 32 and 32768Hz crystal 33; Section-type LCD 32 is as display unit, for showing dynamic password; 32768Hz crystal 33 is as clock apparatus, for 15 inside, digital token unit provide work clock; MCU31, as the core of whole dynamic password token, connects respectively at section-type LCD 32 and 32768Hz crystal 33, for controlling the work of dynamic password token, is responsible for working state of system scheduling, mode of operation switching, and generates dynamic password.MCU31 can adopt the chip inlet with large capacity program storage and RAM, and in MCU31, the several functions such as integrated LCD driving, RTC, UART, has extremely low power consumption, is enough to meet the instructions for use of dynamic password token.
Dynamic password token server comprises receiving element and authentication unit, receiving element is inputted user name, input static password and input dynamic password for receiving, authentication unit is for obtaining according to inputting user name the dynamic password storehouse of inputting dynamic password association, then based on time verifying benchmark, input dynamic password is carried out to verification, and show check results.
Use dynamic password token system, first to configure dynamic password token server, need in internal network, set up, this dynamic password token server requires can reach with SSL VPN equipment route, its operating system adopts Windows Server 2003, also can adopt Windows XP SP2 or Windows 2000.
In order completing smoothly, to use Server identity authorization system protection VPN user login, need to complete following installation configuration effort: first install and configuration database system, create Server database and database table; Then install, configure and move Server certificate server, in installation process, needing authority; Install again, configure and operations control center, in installation or layoutprocedure, need authority; Next import dynamic password token, bind with user account number, in administrative center, import token seed; Revise VPN backstage and arrange, be modified as the authentication mode of supporting Radius agreement.
The collocation method of SSL VPN is as follows: first newly-built Radius server, according to the step shown in Fig. 4 to Fig. 6, is configured the above-mentioned dynamic password token server setting up; Then configure user is enabled dynamic token authentication, the Radius server that the dynamic password token authentication server of employing is above-mentioned setting.Complete after dynamic password token server and the configuration of SSL VPN equipment, user logins SSL VPN and can adopt dynamic password token to carry out authentication.
The process that employing the present invention's dynamic password token system is verified is as follows:
1. user initiates access request to SSL VPN equipment.
2. SSL VPN proposes user name cipher authentication to user.
3. user submits user name password completes first authentication, carries out the schematic diagram of user name cipher authentication as shown in Figure 7, after user name cipher authentication, carries out next step dynamic password token authentication.
4. SSL VPN proposes the request of dynamic password token authentication to user.
5. user personnel fingerprint authentication.Whether this step is satisfactory operating personnel for inspection user fingerprint, by fingerprint authentication, when finger print information is errorless, shows 6 random dynamic passwords that produce.
6. as shown in Figure 8, user inputs 6 dynamic passwords of dynamic password token demonstration and submits this dynamic password to.
7. SSL VPN seals dress by user name and identifying code with standard Radius and submits to dynamic token server (Radius) and verify.
8. dynamic password token server finds the associated identifying code storehouse of this dynamic password according to user name, based on time verifying mechanism, carry out verification, and this user time that completes dynamic password token database is calibrated, if adopt the dynamic password token based on Event validation, carry out seed calibration according to the drift of dynamic password.
9. dynamic token server returns to SSL VPN equipment according to standard Radius agreement by the result.
10. SSL VPN equipment allows/refuses user's SSL VPN access according to the result.If by dynamic password token authentication, can successfully log in SSL VPN, show the Resources list interface or system operation interface, the payment that now can be correlated with and other operations as shown in Figure 9.
Whole verification process signal as shown in figure 10.
Dynamic password token identity identifying method embodiment:
The identity identifying method of dynamic password token comprises that dynamic password generates step and dynamic cipher verification step; Dynamic password generates step and comprises that password generates step, fingerprint authentication step and password step display, password generates step and is used for using cryptographic algorithm to generate dynamic password, fingerprint authentication step is for scanning and identification finger print information, password step display is for when fingerprint authentication step is identified successfully, show dynamic password, when fingerprint authentication step, identify when unsuccessful, do not show dynamic password; Dynamic cipher verification step comprises password receiving step, cipher decoding step, cipher authentication step and result step display, password receiving step is for receiving inputting user name, input static password and inputting dynamic password of user's input, cipher decoding step is for obtaining according to inputting user name the dynamic password storehouse of inputting dynamic password association, cipher authentication step is for carrying out verification based on time verifying benchmark to input dynamic password, and result step display is used for showing check results.
The process that use this method is carried out authentication is as follows:
First generate dynamic password: user submits to and inputs user name, input password by after first authentication, enters dynamic password and generates step, at password, generates in step, and dynamic cipher token apparatus generates dynamic password, does not now show.In ensuing fingerprint authentication step, user inputs finger print information, while only having finger print information to coincide with the finger print information prestoring, could pass through fingerprint authentication, represent that user is the user of legal use dynamic password, now enter password step display, the dynamic password generating before dynamic cipher token apparatus shows.
Next be dynamic cipher verification: in password receiving step, dynamic password token server receives the dynamic password of user's input, then by cipher decoding step and cipher authentication step, according to user name, find the associated identifying code storehouse of this dynamic password, based on time verifying mechanism, carry out verification, and complete this user time calibration of dynamic password token database, if adopt the dynamic password token based on Event validation, according to the drift of dynamic password, carry out seed calibration; Finally authentication result is shown to user.
The invention is not restricted to the various embodiments described above, other change and also should be included in the protection range of the claims in the present invention based on technical solution of the present invention and without prejudice to the method for the object of the invention and combination thereof.
Claims (10)
1. dynamic cipher token apparatus, is characterized in that, comprising:
Circuit board and be installed on the dynamic password token module on described circuit board;
Described dynamic password token module comprises:
Fingerprint unit, for scanning and identification finger print information;
Digital token unit, for generating dynamic password, and judges whether dynamic password output according to the recognition result of described fingerprint unit;
Electric supply installation, is used to described fingerprint unit and the power supply of described digital token unit;
Power Management Unit is that described fingerprint unit and described digital token unit charge and boost for utilizing described electric supply installation;
Described fingerprint unit is connected with described digital token unit, described electric supply installation and described Power Management Unit respectively.
2. dynamic cipher token apparatus as claimed in claim 1, is characterized in that:
Described digital token unit comprises MCU, display unit and clock apparatus,
Described MCU is for controlling the work of described dynamic password token and generating dynamic password;
Described display unit is used for showing described dynamic password;
Described clock apparatus is used to described dynamic password token that work clock is provided;
Described MCU and described display unit and described clock apparatus are connected.
3. dynamic cipher token apparatus as claimed in claim 1 or 2, is characterized in that:
Described Power Management Unit comprises charging circuit, booster circuit and interface arrangement.
4. dynamic cipher token apparatus as claimed in claim 3, is characterized in that:
Described Power Management Unit and described fingerprint unit are integrated on chip piece, and described Power Management Unit is arranged on described circuit board by described interface arrangement.
5. dynamic cipher token apparatus as claimed in claim 3, is characterized in that:
Described Power Management Unit and described fingerprint unit lay respectively on two chip blocks, and one end of described power management module is arranged on described circuit board by described interface arrangement, the other end of described power management module and described fingerprint element connection.
6. dynamic cipher token apparatus as described in claim 3, is characterized in that:
On described circuit board, be also provided with sound circuit, public address set and input/output unit, described public address set and input/output unit connect with described phonetical circuit respectively.
7. dynamic cipher token apparatus as described in claim 4, is characterized in that:
On described circuit board, be also provided with sound circuit, public address set and input/output unit, described public address set and input/output unit connect with described phonetical circuit respectively.
8. dynamic cipher token apparatus as described in claim 5, is characterized in that:
On described circuit board, be also provided with sound circuit, public address set and input/output unit, described public address set and input/output unit connect with described phonetical circuit respectively.
9. dynamic password token system, is characterized in that: comprising:
Dynamic cipher token apparatus and dynamic password token server;
Described dynamic cipher token apparatus comprises circuit board and is installed on the dynamic password token module on described circuit board;
Described dynamic password token module comprises:
Fingerprint unit, for scanning and identification finger print information;
Digital token unit, for generating dynamic password, and judges whether dynamic password output according to the recognition result of described fingerprint unit;
Electric supply installation, is used to described fingerprint unit and the power supply of described digital token unit;
Power Management Unit is that described fingerprint unit and described digital token unit charge and boost for utilizing described electric supply installation;
Described fingerprint unit is connected with described digital token unit, described electric supply installation and described Power Management Unit respectively;
Described dynamic password token server comprises:
Receiving element, inputs user name, input static password and input dynamic password for receiving;
Authentication unit, for inputting according to described the dynamic password storehouse that user name is obtained the association of described input dynamic password, then carries out verification based on time verifying benchmark to described input dynamic password, and shows check results.
10. the identity identifying method of dynamic password token, is characterized in that:
Described method comprises:
Dynamic password generates step and dynamic cipher verification step;
Described dynamic password generates step and comprises:
Password generates step: use cryptographic algorithm to generate dynamic password;
Fingerprint authentication step: scanning and identification finger print information;
Password step display: when described fingerprint authentication step is identified successfully, show described dynamic password, identify when unsuccessful when described fingerprint authentication step, do not show described dynamic password;
Described dynamic cipher verification step comprises:
Password receiving step: receive inputting user name, input static password and inputting dynamic password of user's input;
Cipher decoding step: input the dynamic password storehouse that user name is obtained the association of described input dynamic password according to described;
Cipher authentication step: described input dynamic password is carried out to verification based on time verifying benchmark;
Result step display: show check results.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310738159.9A CN103684795A (en) | 2013-12-25 | 2013-12-25 | Dynamic password token device and identity authentication method thereof and dynamic password token system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310738159.9A CN103684795A (en) | 2013-12-25 | 2013-12-25 | Dynamic password token device and identity authentication method thereof and dynamic password token system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103684795A true CN103684795A (en) | 2014-03-26 |
Family
ID=50321189
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310738159.9A Pending CN103684795A (en) | 2013-12-25 | 2013-12-25 | Dynamic password token device and identity authentication method thereof and dynamic password token system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103684795A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106712208A (en) * | 2017-02-14 | 2017-05-24 | 深圳市租电智能科技有限公司 | Dynamic password charging device |
| CN110400150A (en) * | 2019-07-29 | 2019-11-01 | 杭州项帮科技有限公司 | Encrypted payment system based on network game payment transaction on intelligent terminal |
| CN113794571A (en) * | 2021-09-16 | 2021-12-14 | 浪潮商用机器有限公司 | Authentication method, device and medium based on dynamic password |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1527208A (en) * | 2003-09-25 | 2004-09-08 | 联想(北京)有限公司 | Method and device for realizing computer safety and enciphering based on identity confirmation |
| CN1674500A (en) * | 2005-03-23 | 2005-09-28 | 西安青松科技股份有限公司 | Dynamic cipher network identification system based on fingerprint and realizing method thereof |
| CN101093554A (en) * | 2007-06-04 | 2007-12-26 | 李惠科 | Card with realtime biological identification system |
| CN103312509A (en) * | 2013-05-16 | 2013-09-18 | 彭汉儒 | Display method and display device of dynamic token and dynamic password |
| CN203968128U (en) * | 2013-12-25 | 2014-11-26 | 远光软件股份有限公司 | Dynamic cipher token apparatus and dynamic password token system |
-
2013
- 2013-12-25 CN CN201310738159.9A patent/CN103684795A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1527208A (en) * | 2003-09-25 | 2004-09-08 | 联想(北京)有限公司 | Method and device for realizing computer safety and enciphering based on identity confirmation |
| CN1674500A (en) * | 2005-03-23 | 2005-09-28 | 西安青松科技股份有限公司 | Dynamic cipher network identification system based on fingerprint and realizing method thereof |
| CN101093554A (en) * | 2007-06-04 | 2007-12-26 | 李惠科 | Card with realtime biological identification system |
| CN103312509A (en) * | 2013-05-16 | 2013-09-18 | 彭汉儒 | Display method and display device of dynamic token and dynamic password |
| CN203968128U (en) * | 2013-12-25 | 2014-11-26 | 远光软件股份有限公司 | Dynamic cipher token apparatus and dynamic password token system |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106712208A (en) * | 2017-02-14 | 2017-05-24 | 深圳市租电智能科技有限公司 | Dynamic password charging device |
| CN110400150A (en) * | 2019-07-29 | 2019-11-01 | 杭州项帮科技有限公司 | Encrypted payment system based on network game payment transaction on intelligent terminal |
| CN113794571A (en) * | 2021-09-16 | 2021-12-14 | 浪潮商用机器有限公司 | Authentication method, device and medium based on dynamic password |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10929524B2 (en) | Method and system for verifying an access request | |
| US8689013B2 (en) | Dual-interface key management | |
| CN101051908B (en) | Dynamic cipher certifying system and method | |
| US8438385B2 (en) | Method and apparatus for identity verification | |
| US20170034168A1 (en) | System and method for integrating an authentication service within a network architecture | |
| TW201741922A (en) | Biological feature based safety certification method and device | |
| CN105608577A (en) | Method for performing non-repudiation, and payment managing server and user device therefor | |
| CN108540457B (en) | Safety equipment and biological authentication control method and device thereof | |
| WO2008149366A2 (en) | Device method & system for facilitating mobile transactions | |
| CN109063438A (en) | A kind of data access method, device, local data secure access equipment and terminal | |
| CN102456102A (en) | Method for carrying out identity recertification on particular operation of information system by using Usb key technology | |
| CN104079413A (en) | Enhancement type one-time dynamic password authentication method and system | |
| CN104104671B (en) | Establish the unified dynamic authorization code system of business entity's account | |
| CN104135480A (en) | Entrance guard authorization system and entrance guard authorization method | |
| KR101570773B1 (en) | Cloud authentication method for securing mobile service | |
| KR20050053967A (en) | Authorization system and method for utilizing one time password based on time synchronization | |
| CN103684795A (en) | Dynamic password token device and identity authentication method thereof and dynamic password token system | |
| CN203968128U (en) | Dynamic cipher token apparatus and dynamic password token system | |
| TW201328280A (en) | Instant communication identity authentication system and method | |
| WO2010048350A1 (en) | Card credential method and system | |
| US20030088794A1 (en) | Method and system for rendering secure pin entry | |
| CN115967581A (en) | Login verification method and device, electronic equipment and storage medium | |
| KR20180039037A (en) | Cross authentication method and system between online service server and client | |
| KR20180037168A (en) | Cross authentication method and system using one time password | |
| CN102457484A (en) | Method for checking user information by combining user name/password authentication and check code |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140326 |
|
| RJ01 | Rejection of invention patent application after publication |