CN104202299A - System and method of identity authentication based on Bluetooth - Google Patents
System and method of identity authentication based on Bluetooth Download PDFInfo
- Publication number
- CN104202299A CN104202299A CN201410383914.0A CN201410383914A CN104202299A CN 104202299 A CN104202299 A CN 104202299A CN 201410383914 A CN201410383914 A CN 201410383914A CN 104202299 A CN104202299 A CN 104202299A
- Authority
- CN
- China
- Prior art keywords
- module
- equipment
- authentication
- authentication token
- subscriber equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention relates to the field of network security technologies and provides a method and a system of identity authentication based on Bluetooth. The method comprises the following steps that: a feature code is embedded into authentication token equipment; binding information is obtained according to user information and the feature code in the authentication token equipment of a user and is recorded on the server side; user equipment obtains the feature code in the binding information through visiting the server side; the user equipment computes the feature code and carries out Bluetooth broadcast; and after the authentication token equipment opens a power supply, Bluetooth broadcast data are monitored, a Bluetooth link is established with the user equipment according to a result matched with verification of the feature code, so that the identity authentication is provided for the user equipment. According to the system and the method, the common safety hidden trouble of the existing Bluetooth equipment is avoided, credible identity authentication of each business system can be reinforced, authority and security of data of each business system are improved, the power consumption of the authentication token equipment is saved, and meanwhile, the using experience of the user is improved.
Description
Technical field
The present invention relates to network security technology field, particularly a kind of method and system of the authentication based on bluetooth communication.
Background technology
Along with computer network is deep into the every aspect that people live, in increasing network application, related to user's privacy information, simple user password, because coefficient of safety is lower, is difficult to effectively guarantee user's information security.Thereby on the Internet, usually need user to carry out intensity much larger than the authentication of username-password mode, typical scene is that user need to strictly authenticate operation user identity when logining Net silver and transferring accounts operation, on PC, generally use at present USBKey (being commonly referred to as U shield) equipment as the means of authentication, between this kind equipment and PC, by usb data mouth, carry out communication, user inserts Key on PC in the time of need to carrying out authentication, while finishing using, extract Key, authentication information is provided by USBKey completely, the unauthorized user without this Key is rejected access, which has greatly guaranteed user account safety.
But on mobile device, also seldom have the equipment that carries out authentication with USBKey or similar fashion can be provided at present.Reason mainly contains two: the equipment that 1, is difficult to find the systems such as a kind of general data communication method energy whole compatible iOS, Android; 2, because the problems such as electric weight, volume, connecting line are difficult to design user and experience gratifying equipment.For realizing the authentication on mobile device, occurred once SD card shield, SIM card shield, SIM card paster shield, earphone interface shield, etc. equipment, but be connected because it all requires to carry out contact with mobile device, thereby effect is all not ideal.
Also the Related product that has a small amount of bluetooth class on Vehicles Collected from Market, but the following problem of existing bluetooth series products ubiquity: 1, do not use the PKI technology that security intensity is high; 2, the method not had is carried out the coupling of subscriber equipment and authentication token equipment, connects all safe not with the process of communication; 3, usually used as blindly accepting wireless connections request from equipment, this just increases the possibility of malicious attack, thus the potential safety hazard of causing; 4, use and once need the time of power-on long, electric quantity consumption is fast.Based on above reason, existing authentication token equipment not can solve the Verify Your Identity questions of mobile device.
Summary of the invention
In view of this, the invention provides a kind of identity identifying method and system based on bluetooth communication, to solve in prior art, cannot in mobile device, carry out the problem of effective authentication.
For solving the problems of the technologies described above, the identity identifying method based on bluetooth communication of the present invention comprises:
Step 1: be implanted into condition code to authentication token equipment;
Step 2: obtain binding information according to the condition code in user's information and described user's authentication token equipment, and binding information is recorded in to server end;
Step 3: described user's subscriber equipment obtains the condition code in described binding information by access services device end;
Step 4: described subscriber equipment will utilize described condition code to calculate external authentication data, and the part using external authentication data as broadcast packet is carried out Bluetooth broadcast;
Step 5: described authentication token equipment is intercepted Bluetooth broadcast data, extracts wherein external authentication data, verifies whether mate according to unique characteristics code, sets up Bluetooth link based on matching result and described subscriber equipment, for subscriber equipment provides authentication.
Wherein, in described step 4, described subscriber equipment is usingd and is connected number of times and be encrypted calculating as encrypting condition code described in factor pair; In described step 5, connect number of times described in described authentication token equipment utilization and the broadcast data listening to and unique characteristics code are carried out to computation rule mate.
Described connection number of times is the number of times being connected that described subscriber equipment is set up with described authentication token equipment
Described method also comprises:
Described subscriber equipment is automatically deleted condition code after authentication completes.
Described authentication token equipment completes after authentication, closes self power supply.
Described step 3 comprises:
Step 3.1: described subscriber equipment sends the authentication request that comprises user profile to described server end;
Step 3.2: described server end extracts the user profile in described authentication request after receiving described authentication request;
Step 3.3: described server end, according to the user profile of extracting, is searched the binding information corresponding with described user profile;
Step 3.4: described server end sends to described subscriber equipment by the condition code in the binding information of finding.
Described step 5 comprises:
Step 5.1: described authentication token equipment is intercepted Bluetooth broadcast data;
Step 5.2: described authentication token equipment is analyzed the blue-teeth data listening to, extracts the encryption result that wherein contains the condition code factor, as external authentication data.
Step 5.3: described authentication token equipment judges according to unique characteristics code whether described external authentication data meet self rule, if meet, enter step 5.4, if inconsistent, return to step 5.1;
Step 5.4: described authentication token equipment and described subscriber equipment are set up Bluetooth link, for described subscriber equipment provides authentication.
Described subscriber equipment and authentication token equipment will be encoded into Bluetooth signal again after information encryption to be sent.
Described subscriber equipment is the device for mobile communication that is built-in with corresponding program.
Described subscriber equipment is stored in described server end by described connection number of times, and when each encryption, fetches the connection number of times information of having stored from described server end; Described authentication token equipment is stored in described connection number of times in self memory space, and when carrying out computation rule coupling, from self memory space, takes out described connection number of times information.
After connecting each time, described authentication token equipment increases progressively the connection number of times information in self memory space, and described subscriber equipment is stored connections number of times after increasing progressively and is stored in described server end simultaneously.
The present invention also provides a kind of identity authorization system based on bluetooth communication, comprising: server, subscriber equipment and authentication token equipment; Wherein,
Described server comprises that binding module, binding information memory module, condition code provide module, connect number of times memory module, wherein,
Described binding module is for binding condition code and described user's information in user's authentication token equipment to obtain binding information;
Described binding information memory module is used for storing binding information;
Described condition code provides module, for extracting the user profile of described authentication request after the authentication request receiving subscriber equipment transmission; And according to the user profile of extracting, in described binding information memory module, search the binding information corresponding with described user profile; And the condition code in the binding information finding is sent to described subscriber equipment;
Described connection number of times memory module, the connection number of times information sending for receiving and store described subscriber equipment; ;
Described subscriber equipment, comprises condition code extraction module, authentication token equipment connection module, the first broadcast module, condition code removing module, connects number of times acquisition module, connects number of times update module; Wherein,
Described condition code extraction module, for to described server end, send comprise user profile authentication request to obtain condition code from described server;
Described connection number of times acquisition module, obtains and connects number of times information for the connection number of times memory module from described server end;
Described authentication token equipment connection module, for triggering the connection number of times information that described connection number of times acquisition module obtains server end, and using and connect number of times as encrypting described in factor pair condition code by certain regular computations, and based on result of calculation generation connectivity request message broadcast packet; And described broadcast packet is encoded into Bluetooth signal;
Described the first broadcast module, the described Bluetooth signal generating for broadcasting described authentication token equipment connection module;
Described condition code removing module, for after completing authentication, deletes the condition code of obtaining;
Described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times information that described server end is stored is upgraded;
Described authentication token equipment, comprises and intercepts module, authentication module, the second broadcast module, power management module, the local number of times storage update module that connects; Wherein,
The described module of intercepting, for intercepting Bluetooth signal;
Described authentication module, decodes to the Bluetooth signal listening to for extracting the local connection number of times information that connects number of times storage update module, and judges in described Bluetooth signal, whether to comprise condition code according to decoded result; And whether the condition code comprising described in judgement is consistent with the condition code of implantation; If consistent, set up Bluetooth link with described subscriber equipment, generate authentication information, and authentication information is encoded to Bluetooth signal by described Bluetooth link, by described the second broadcast module, sends to described subscriber equipment so that authentication to be provided;
Described the second broadcast module, for broadcasting Bluetooth signal;
Described power management module, for after completing identity authentication service, closes the power supply of authentication token equipment;
The described local number of times storage update module that connects, for storing described connection number of times information, and realizing with after being connected of described subscriber equipment, upgrades described connection number of times information.
Described subscriber equipment is the device for mobile communication that is built-in with corresponding program.
Described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times that described connection number of times acquisition module is obtained adds 1 calculating, and the connection number of times after upgrading sends to described server end using result of calculation; The described local number of times storage update module that connects, realizing with after being connected of described subscriber equipment, adds 1 calculating and stores result of calculation stored connection number of times.
By technique scheme, the present invention has avoided the common potential safety hazard of existing bluetooth equipment, and the trusted identity that can strengthen each operation system authenticates and improve authority, the confidentiality of each operation system data, has promoted user's experience simultaneously.
Accompanying drawing explanation
Fig. 1 is the schematic flow sheet of the identity identifying method based on bluetooth communication that provides of one embodiment of the invention;
Fig. 2 is the structural representation of the identity authorization system based on bluetooth communication that provides of one embodiment of the invention.
Embodiment
Below in conjunction with each accompanying drawing, the technical scheme in the embodiment of the present invention is carried out to clear, complete description, obviously, described embodiment is a part of embodiment of the present invention, rather than whole embodiment.Embodiment based in the present invention, the every other embodiment that those of ordinary skills obtain under the prerequisite of not making creative work, belongs to the scope of protection of the invention.
Traditional authentication token device, as U shield, is difficult to use on mobile terminal, has more in recent years adopted the authentication token equipment of the communication interfaces such as bluetooth, earphone because compatible problem only can adaptive a part of terminal.And existing some used the safety means of Bluetooth transmission not use the PKI technology of high authentication strength; And the foundation of its communication link and communication process all do not have sufficiently high fail safe; Passive blindness accept Bluetooth connection request, increased the risk of being attacked; When around while having a plurality of similar devices, user terminal cannot accurately be identified corresponding equipment.
In order to overcome the above-mentioned defect of existing authentication token equipment, the invention provides and a kind ofly by the mode that condition code is mated and subscriber equipment is done to connect from Model Establishment, use authentication token equipment to carry out authentication.As shown in Figure 1, the identity identifying method based on bluetooth communication that one embodiment of the invention provides comprises:
Step 1: be implanted into condition code during authentication token device fabrication;
Step 2: while providing in authentication token equipment, obtain binding information according to user's information and described condition code, and binding information is recorded in to server end;
Step 3: use described subscriber equipment to obtain the condition code in described binding information by access services device end when user uses;
Preferably, described step 3 can comprise:
Step 3.1: described subscriber equipment sends the authentication request that comprises user profile to described server end;
Step 3.2: described server end extracts the user profile in described authentication request after receiving described authentication request;
Step 3.3: described server end, according to the user profile of extracting, is searched the binding information corresponding with described user profile;
Step 3.4: described server end sends to described subscriber equipment by the condition code in the binding information of finding.
Step 4: described subscriber equipment will utilize described condition code to calculate external authentication data, and the part using external authentication data as broadcast packet is carried out Bluetooth broadcast; In described step 4, described subscriber equipment is usingd and is connected number of times and be encrypted calculating as encrypting condition code described in factor pair.Described connection number of times is the number of times being connected that described subscriber equipment is set up with described authentication token equipment.
Preferably, described subscriber equipment is stored in described server end by described connection number of times, and when each encryption, fetches the connection number of times information of storage from described server end.Preferably, after connecting each time, described subscriber equipment is stored in described server end after the storage of connection number of times is increased progressively.
Step 5: described authentication token equipment is intercepted Bluetooth broadcast data, extracts wherein external authentication data, verifies whether mate according to unique characteristics code, sets up Bluetooth link based on matching result and described subscriber equipment, for subscriber equipment provides authentication.In described step 5, connect number of times described in described authentication token equipment utilization and the broadcast data listening to and unique characteristics code are carried out to computation rule mate.
Preferably, described step 5 can comprise:
Step 5.1: described authentication token equipment is intercepted Bluetooth broadcast data;
Step 5.2: described authentication token equipment is analyzed the blue-teeth data listening to, extracts the encryption result that wherein contains the condition code factor, as external authentication data.
Step 5.3: described authentication token equipment judges according to unique characteristics code whether described external authentication data meet self rule, if meet, enter step 5.4, if inconsistent, return to step 5.1;
Step 5.4: described authentication token equipment and described subscriber equipment are set up Bluetooth link, for described subscriber equipment provides authentication.
Preferably, described authentication token equipment is stored in described connection number of times in self memory space, and when carrying out computation rule coupling, from self memory space, takes out described connection number of times information.Preferably, after connecting each time, described authentication token equipment increases progressively the connection number of times information in self memory space.
Preferably, described method can also comprise:
Described subscriber equipment is automatically deleted condition code after authentication completes.
Described authentication token equipment completes after authentication, closes self power supply.
Preferably, described subscriber equipment and authentication token equipment can will be encoded into Bluetooth signal again after information encryption to be sent.
Preferably, described subscriber equipment is to set up bluetooth communication link from pattern authentication token equipment with holotype.
Preferably, when described subscriber equipment utilizes condition code to calculate external authentication data, can utilize time, connection number of times etc. to increase the randomness of external authentication data as the factor, and realize synchronously with described authentication token equipment.
Preferably, when utilize connecting number of times etc. as the synchronizer of described subscriber equipment, described authentication token equipment, described subscriber equipment is stored in described server end by synchronizer.
Preferably, described subscriber equipment can be the device for mobile communication that is built-in with corresponding program, such as mobile phone, panel computer etc.
Referring to Fig. 2, another embodiment of the present invention also provides a kind of identity authorization system based on bluetooth communication, comprising again: server, subscriber equipment and authentication token equipment; Wherein,
Described server comprises that binding module, binding information memory module, condition code provide module, connect number of times memory module, wherein,
Described binding module is for binding condition code and described user's information in user's authentication token equipment to obtain binding information;
Described binding information memory module is used for storing binding information;
Described condition code provides module, for extracting the user profile of described authentication request after the authentication request receiving subscriber equipment transmission; And according to the user profile of extracting, in described binding information memory module, search the binding information corresponding with described user profile; And the condition code in the binding information finding is sent to described subscriber equipment;
Described connection number of times memory module, the connection number of times information sending for receiving and store described subscriber equipment.
Described subscriber equipment, comprises condition code extraction module, authentication token equipment connection module, the first broadcast module, condition code removing module, connects number of times acquisition module, connects number of times update module; Wherein,
Described condition code extraction module, for to described server end, send comprise user profile authentication request to obtain condition code from described server;
Described connection number of times acquisition module, obtains and connects number of times information for the connection number of times memory module from described server end;
Described authentication token equipment connection module, for triggering the connection number of times information that described connection number of times acquisition module obtains server end, and using and connect number of times as encrypting described in factor pair condition code by certain regular computations, and based on result of calculation generation connectivity request message broadcast packet; And described broadcast packet is encoded into Bluetooth signal;
Described the first broadcast module, the described Bluetooth signal generating for broadcasting described authentication token equipment connection module;
Described condition code removing module, for after completing authentication, deletes the condition code of obtaining;
Described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times information that described server end is stored is upgraded;
Described authentication token equipment, comprises and intercepts module, authentication module, the second broadcast module, power management module, the local number of times storage update module that connects; Wherein,
The described module of intercepting, for intercepting Bluetooth signal;
Described authentication module, decodes to the Bluetooth signal listening to for extracting the local connection number of times information that connects number of times storage update module, and judges in described Bluetooth signal, whether to comprise condition code according to decoded result; And whether the condition code comprising described in judgement is consistent with the condition code of implantation; If consistent, set up Bluetooth link with described subscriber equipment, generate authentication information, and authentication information is encoded to Bluetooth signal by described Bluetooth link, by described the second broadcast module, sends to described subscriber equipment so that authentication to be provided;
Described the second broadcast module, for broadcasting Bluetooth signal;
Described power management module, for after completing identity authentication service, closes the power supply of authentication token equipment;
The described local number of times storage update module that connects, for storing described connection number of times information, and realizing with after being connected of described subscriber equipment, upgrades described connection number of times information.
Described subscriber equipment can be the device for mobile communication that is built-in with corresponding program.For example, mobile phone, panel computer etc.
Preferably, described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times that described connection number of times acquisition module is obtained adds 1 calculating, and the connection number of times after renewal sends to described server end using result of calculation; The described local number of times storage update module that connects, realizing with after being connected of described subscriber equipment, adds 1 calculating and stores result of calculation stored connection number of times
In embodiments of the invention, in advance the condition code of authentication token equipment is recorded in to server end, authentication token equipment is set simultaneously for initiatively accepting Bluetooth connection request, make authentication token equipment after power-on, give tacit consent to only judgement Bluetooth signal around, do not accept other bluetooth equipment connection requests.Can avoid so on the one hand authentication token equipment to be searched even and connect above by unauthorized user equipment, strengthen the fail safe of authentication token equipment; Reduce on the other hand the power consumption of authentication token equipment, thereby save electric weight, extended equipment service time.
Subsequently, when bluetooth authentication token device is provided to user, by the condition code binding of user's user profile and this authentication token equipment.The information recording of binding is at server end, and the binding of information is undertaken by the keeper of credit, can when providing, carry out, and also can after granting, carry out, but preferably when providing, carry out.
User is when using authentication token equipment to carry out authentication, first by subscriber equipment (as mobile terminal, panel computer or other computer equipments with blue tooth communication function) input user profile, visit server, by the user of checking, can obtain the condition code of the authentication token equipment corresponding with user profile.Subsequently, subscriber equipment is opened Bluetooth function, utilizes this condition code to calculate external authentication data, and carries out Bluetooth broadcast, and meanwhile user opens the power supply of authentication token equipment.Authentication token equipment listens to after this Bluetooth broadcast, and checking is mated afterwards and subscriber equipment is set up Bluetooth link, for the user data of submitting in this subscriber equipment provides authentication.Described authentication token equipment comprises safety chip, can complete the digital signature functions such as RSA, SM2.Can carry out common symmetry, asymmetric encryption is operating as subscriber equipment that service is provided.Described authentication can be for the digital signature that user data provides, coded communication or both combinations etc., can realize by the mode of software, hardware or soft or hard combination, and concrete implementation procedure is similar to existing USBKey form, does not repeat them here.
Authentication token equipment of the present invention has higher fail safe compared to other bluetooth equipments, can effectively avoid the exploration of unauthorized user equipment to connect, owing to only setting up link with credit user, for the use of user data and authentication token equipment provides dual safety guarantee.For further guaranteeing safety and health low-power consumption, authentication token equipment of the present invention can be closed immediately authentication token device power supply (DPS) after completing one-time identity authentication.More preferably, the condition code that meeting active deletion or prompting user retain in deleting subscriber equipment when authentication token device shutdown power supply, to avoid this subscriber equipment illegally to be used by unauthorized user, further guarantees the fail safe of this authentication token equipment.
By the way, the invention provides a kind of identity identifying method and system based on bluetooth communication, by bluetooth, communicate, conventional authentication token device and the mutual problem of customer equipment data have been solved, broadcast message by subscriber equipment broadcast packet containing the condition code factor, authentication token equipment Proactive authentication request connect, solve the safety problem that Bluetooth link is set up, by going server retrieves condition code, do not need search, reduce user and get involved number of times, optimizing user is experienced, also can greatly shorten the operating time of authentication token equipment simultaneously, reduce power consumption.So the present invention is particularly suitable for mobile device as the identity authentication service of mobile phone, panel computer, significant to promoting mobile e-business.
Above execution mode is only for illustrating the present invention; and be not limitation of the present invention; the those of ordinary skill in relevant technologies field; without departing from the spirit and scope of the present invention; can also make a variety of changes and modification; therefore all technical schemes that are equal to also belong to category of the present invention, and scope of patent protection of the present invention should be defined by the claims.
Claims (10)
1. the identity identifying method based on bluetooth communication, is characterized in that, described method comprises:
Step 1: be implanted into condition code to authentication token equipment;
Step 2: obtain binding information according to the condition code in user's information and described user's authentication token equipment while providing token device, and binding information is recorded in to server end;
Step 3: described user's subscriber equipment obtains the condition code in described binding information by access services device end;
Step 4: described subscriber equipment is by described condition code by certain regular computations, and the part using result of calculation as broadcast packet data, carries out Bluetooth signal broadcast;
Step 5: described authentication token equipment is intercepted Bluetooth broadcast signal, and the broadcast data listening to and unique characteristics code are carried out to computation rule mate, as the match is successful, initiatively set up linking bluetooth with subscriber equipment, for described subscriber equipment provides authentication;
Wherein, described step 3 comprises:
Step 3.1: described subscriber equipment sends the authentication request that comprises user profile to described server end;
Step 3.2: described server end extracts the user profile in described authentication request after receiving described authentication request;
Step 3.3: described server end, according to the user profile of extracting, is searched the binding information corresponding with described user profile;
Step 3.4: described server end sends to described subscriber equipment by the condition code in the binding information of finding;
Described step 5 comprises:
Step 5.1: described authentication token equipment is intercepted Bluetooth broadcast data;
Step 5.2: described authentication token equipment is analyzed the blue-teeth data listening to, extracts the encryption result that wherein contains the condition code factor, as external authentication data.
Step 5.3: described authentication token equipment judges according to unique characteristics code whether described external authentication data meet self rule, if meet, enter step 5.4, if inconsistent, return to step 5.1;
Step 5.4: described authentication token equipment is initiatively set up Bluetooth link with described subscriber equipment, for described subscriber equipment provides authentication;
In described step 4, described subscriber equipment is usingd and is connected number of times and be encrypted calculating as encrypting condition code described in factor pair; In described step 5, described in described authentication token equipment utilization, connecting number of times carries out computation rule to the broadcast data listening to and unique characteristics code and mates, wherein, described connection number of times is the number of times being connected that described subscriber equipment is set up with described authentication token equipment.
2. a kind of identity identifying method based on blue-tooth technology according to claim 1, is characterized in that, described method also comprises:
Described subscriber equipment is automatically deleted condition code after authentication completes.
3. a kind of identity identifying method based on bluetooth communication according to claim 1 and 2, is characterized in that, described authentication token equipment completes after authentication, closes self power supply.
4. a kind of identity identifying method based on bluetooth communication according to claim 3, it is characterized in that, after described authentication token equipment judgement broadcast packet Data Matching, initiatively initiate Bluetooth connection request, described authentication token equipment is passive receive Bluetooth connection request not.
5. a kind of identity identifying method based on bluetooth communication according to claim 4, is characterized in that, described subscriber equipment is the device for mobile communication that is built-in with corresponding program.
6. a kind of identity identifying method based on bluetooth communication according to claim 5, it is characterized in that, described subscriber equipment is stored in described server end by described connection number of times, and when each encryption, fetches the connection number of times information of having stored from described server end; Described authentication token equipment is stored in described connection number of times in self memory space, and when carrying out computation rule coupling, from self memory space, takes out described connection number of times information.
7. a kind of identity identifying method based on bluetooth communication according to claim 6, it is characterized in that, after connecting each time, described authentication token equipment increases progressively the connection number of times information in self memory space, and described subscriber equipment is stored connections number of times after increasing progressively and is stored in described server end simultaneously.
8. the identity authorization system based on bluetooth communication, comprising: server, subscriber equipment and authentication token equipment; It is characterized in that,
Described server comprises that binding module, binding information memory module, condition code provide module, connect number of times memory module; Wherein,
Described binding module, for binding condition code and described user's information in user's authentication token equipment to obtain binding information;
Described binding information memory module, for storing binding information;
Described condition code provides module, for extracting the user profile of described authentication request after the authentication request receiving subscriber equipment transmission; And according to the user profile of extracting, in described binding information memory module, search the binding information corresponding with described user profile; And the condition code in the binding information finding is sent to described subscriber equipment;
Described connection number of times memory module, the connection number of times information sending for receiving and store described subscriber equipment;
Described subscriber equipment, comprises condition code extraction module, authentication token equipment connection module, the first broadcast module, condition code removing module, connects number of times acquisition module, connects number of times update module; Wherein,
Described condition code extraction module, for to described server end, send comprise user profile authentication request to obtain condition code from described server;
Described connection number of times acquisition module, obtains and connects number of times information for the connection number of times memory module from described server end;
Described authentication token equipment connection module, for triggering the connection number of times information that described connection number of times acquisition module obtains server end, and using and connect number of times as encrypting described in factor pair condition code by certain regular computations, and based on result of calculation generation connectivity request message broadcast packet; And described broadcast packet is encoded into Bluetooth signal;
Described the first broadcast module, the described Bluetooth signal generating for broadcasting described authentication token equipment connection module;
Described condition code removing module, for after completing authentication, deletes the condition code of obtaining;
Described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times information that described server end is stored is upgraded;
Described authentication token equipment, comprises and intercepts module, authentication module, the second broadcast module, power management module, the local number of times storage update module that connects; Wherein,
The described module of intercepting, for intercepting Bluetooth signal;
Described authentication module, decodes to the Bluetooth signal listening to for extracting the local connection number of times information that connects number of times storage update module, and judges in described Bluetooth signal, whether to comprise condition code according to decoded result; And whether the condition code comprising described in judgement is consistent with the condition code of implantation; If consistent, set up Bluetooth link with described subscriber equipment, generate authentication information, and authentication information is encoded to Bluetooth signal by described Bluetooth link, by described the second broadcast module, sends to described subscriber equipment so that authentication to be provided;
Described the second broadcast module, for broadcasting Bluetooth signal;
Described power management module, for after completing identity authentication service, closes the power supply of authentication token equipment;
The described local number of times storage update module that connects, for storing described connection number of times information, and realizing with after being connected of described subscriber equipment, upgrades described connection number of times information.
9. a kind of identity authorization system based on bluetooth communication according to claim 8, is characterized in that, described subscriber equipment is the device for mobile communication that is built-in with corresponding program.
10. a kind of identity authorization system based on bluetooth communication according to claim 9, it is characterized in that, described connection number of times update module, for realizing with after being connected of described authentication token equipment, the connection number of times that described connection number of times acquisition module is obtained adds 1 calculating, and the connection number of times after upgrading sends to described server end using result of calculation; The described local number of times storage update module that connects, realizing with after being connected of described subscriber equipment, adds 1 calculating and stores result of calculation stored connection number of times.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410383914.0A CN104202299A (en) | 2014-08-06 | 2014-08-06 | System and method of identity authentication based on Bluetooth |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410383914.0A CN104202299A (en) | 2014-08-06 | 2014-08-06 | System and method of identity authentication based on Bluetooth |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104202299A true CN104202299A (en) | 2014-12-10 |
Family
ID=52087524
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410383914.0A Pending CN104202299A (en) | 2014-08-06 | 2014-08-06 | System and method of identity authentication based on Bluetooth |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104202299A (en) |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104941066A (en) * | 2015-07-13 | 2015-09-30 | 北京品驰医疗设备有限公司 | Implanted medical system adopting Bluetooth communication |
| CN105007257A (en) * | 2015-05-08 | 2015-10-28 | 牛力伟 | On-site identity verification method based on bluetooth technology and on-site identity verification system based on bluetooth technology |
| CN105141639A (en) * | 2015-09-30 | 2015-12-09 | 成都信汇聚源科技有限公司 | Cloud-computing-platform-based bluetooth dynamic password security certificate method |
| CN105306452A (en) * | 2015-09-30 | 2016-02-03 | 成都信汇聚源科技有限公司 | Bluetooth dynamic password security authentication method avoiding device password transmission and based on cloud computing platform |
| CN105516908A (en) * | 2016-01-04 | 2016-04-20 | 北京映翰通网络技术股份有限公司 | Bluetooth-based lock control method and system |
| CN107888538A (en) * | 2016-09-29 | 2018-04-06 | 北京飞凡士科技有限公司 | A kind of identity identifying method and system based on Bluetooth terminal |
| CN108282768A (en) * | 2018-01-24 | 2018-07-13 | 北京地平线机器人技术研发有限公司 | Bluetooth equipment shares control and requesting method and electronic equipment |
| CN109089248A (en) * | 2018-08-07 | 2018-12-25 | 河南云拓智能科技有限公司 | A kind of information monitoring method based on Bluetooth gateway |
| CN111414652A (en) * | 2020-03-15 | 2020-07-14 | 黎明职业大学 | Computer and storage equipment mutual binding authentication system and device thereof |
| CN113329399A (en) * | 2020-02-28 | 2021-08-31 | 阿里巴巴集团控股有限公司 | Data transmission, distribution network and management method, device, system and storage medium |
| CN113450108A (en) * | 2021-07-13 | 2021-09-28 | 中国银行股份有限公司 | Mobile banking transaction security verification method and device |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101102194A (en) * | 2007-07-31 | 2008-01-09 | 北京飞天诚信科技有限公司 | A method for OTP device and identity authentication with this device |
| US20110028091A1 (en) * | 2009-08-03 | 2011-02-03 | Motorola, Inc. | Method and system for near-field wireless device pairing |
| CN103428000A (en) * | 2013-08-27 | 2013-12-04 | 深圳市文鼎创数据科技有限公司 | Information authentication method and system |
| CN103684938A (en) * | 2014-01-26 | 2014-03-26 | 华中科技大学 | Industrial bluetooth network system and networking method |
| CN103905200A (en) * | 2014-03-21 | 2014-07-02 | 北京中金国信科技有限公司 | Identity authentication method and system based on sound wave communications |
-
2014
- 2014-08-06 CN CN201410383914.0A patent/CN104202299A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101102194A (en) * | 2007-07-31 | 2008-01-09 | 北京飞天诚信科技有限公司 | A method for OTP device and identity authentication with this device |
| US20110028091A1 (en) * | 2009-08-03 | 2011-02-03 | Motorola, Inc. | Method and system for near-field wireless device pairing |
| CN103428000A (en) * | 2013-08-27 | 2013-12-04 | 深圳市文鼎创数据科技有限公司 | Information authentication method and system |
| CN103684938A (en) * | 2014-01-26 | 2014-03-26 | 华中科技大学 | Industrial bluetooth network system and networking method |
| CN103905200A (en) * | 2014-03-21 | 2014-07-02 | 北京中金国信科技有限公司 | Identity authentication method and system based on sound wave communications |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105007257A (en) * | 2015-05-08 | 2015-10-28 | 牛力伟 | On-site identity verification method based on bluetooth technology and on-site identity verification system based on bluetooth technology |
| CN104941066A (en) * | 2015-07-13 | 2015-09-30 | 北京品驰医疗设备有限公司 | Implanted medical system adopting Bluetooth communication |
| CN105141639A (en) * | 2015-09-30 | 2015-12-09 | 成都信汇聚源科技有限公司 | Cloud-computing-platform-based bluetooth dynamic password security certificate method |
| CN105306452A (en) * | 2015-09-30 | 2016-02-03 | 成都信汇聚源科技有限公司 | Bluetooth dynamic password security authentication method avoiding device password transmission and based on cloud computing platform |
| CN105516908B (en) * | 2016-01-04 | 2019-03-12 | 北京映翰通网络技术股份有限公司 | A kind of locking method and system based on bluetooth |
| CN105516908A (en) * | 2016-01-04 | 2016-04-20 | 北京映翰通网络技术股份有限公司 | Bluetooth-based lock control method and system |
| CN107888538A (en) * | 2016-09-29 | 2018-04-06 | 北京飞凡士科技有限公司 | A kind of identity identifying method and system based on Bluetooth terminal |
| CN108282768A (en) * | 2018-01-24 | 2018-07-13 | 北京地平线机器人技术研发有限公司 | Bluetooth equipment shares control and requesting method and electronic equipment |
| CN108282768B (en) * | 2018-01-24 | 2019-12-31 | 北京地平线机器人技术研发有限公司 | Bluetooth device sharing control and request method and device, and computer storage medium |
| CN109089248A (en) * | 2018-08-07 | 2018-12-25 | 河南云拓智能科技有限公司 | A kind of information monitoring method based on Bluetooth gateway |
| CN113329399A (en) * | 2020-02-28 | 2021-08-31 | 阿里巴巴集团控股有限公司 | Data transmission, distribution network and management method, device, system and storage medium |
| CN111414652A (en) * | 2020-03-15 | 2020-07-14 | 黎明职业大学 | Computer and storage equipment mutual binding authentication system and device thereof |
| CN113450108A (en) * | 2021-07-13 | 2021-09-28 | 中国银行股份有限公司 | Mobile banking transaction security verification method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104202299A (en) | System and method of identity authentication based on Bluetooth | |
| CN108012268B (en) | SIM card for ensuring safe use of application software on mobile phone terminal | |
| CN103259667B (en) | The method and system of eID authentication on mobile terminal | |
| JP6129325B2 (en) | Method, system, and terminal for encrypting and decrypting application program in communication terminal | |
| CN103905200A (en) | Identity authentication method and system based on sound wave communications | |
| CN103152329B (en) | Bluetooth is utilized to carry out identity authentication method and system | |
| CN107784499B (en) | Secure payment system and method of near field communication mobile terminal | |
| CN103793815A (en) | Mobile intelligent terminal acquirer system and method suitable for bank cards and business cards | |
| CN109063438A (en) | A kind of data access method, device, local data secure access equipment and terminal | |
| CN101841525A (en) | Secure access method, system and client | |
| US20160381011A1 (en) | Network security method and network security system | |
| CN102542449A (en) | Wireless communication device and payment authentication method | |
| CN105656627A (en) | Identity verification method, device and system | |
| CN104424676A (en) | Identity information sending method, identity information sending device, access control card reader and access control system | |
| CN101605325A (en) | The method of authentication and portable terminal, server and identity authorization system | |
| CN104468099A (en) | Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) | |
| CN107113613A (en) | Server, mobile terminal, real-name network authentication system and method | |
| CN106789024A (en) | A kind of remote de-locking method, device and system | |
| CN105184567A (en) | Information processing method, processing device and mobile terminal | |
| CN103905194A (en) | Identity traceability authentication method and system | |
| CN106027250A (en) | Identity card information safety transmission method and system | |
| CN106452763B (en) | One kind using cipher key method by remote dummy USB device | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN111065101A (en) | 5G communication information encryption and decryption method and device based on block chain and storage medium | |
| CN107612949A (en) | A kind of intelligent wireless terminal access authentication method and system based on radio-frequency fingerprint |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20141210 |
|
| RJ01 | Rejection of invention patent application after publication |