CN104468099A - Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) - Google Patents
Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) Download PDFInfo
- Publication number
- CN104468099A CN104468099A CN201310415605.2A CN201310415605A CN104468099A CN 104468099 A CN104468099 A CN 104468099A CN 201310415605 A CN201310415605 A CN 201310415605A CN 104468099 A CN104468099 A CN 104468099A
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- user
- server
- random number
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The invention discloses a dynamic password generating method and device based on a CPK (Combined Public Key) and a dynamic password authentication method and device based on the CPK, and the dynamic password generating method includes the steps of: receiving a server identification and a random number sent by a server, wherein the random number is generated by the server according to a dynamic password generating request sent by a user; according to the server identification, determining a public key of the server corresponding to the server identification; generating a first session key according to the public key of the server and a pre-configured private key of the user; and encrypting the random number by using the first session key to generate a dynamic password. According to the invention, the random number generated at each time is encrypted, as the dynamic password used for authentication at each time is encrypted based on the keys of the user and the server, even the dynamic password is lost or illegally stolen, the situation of illegal login by using the lost dynamic password is avoided, and the safety of the dynamic password is effectively improved.
Description
Technical field
The present invention relates to differentiate (Authentication), authorize the AAA field that (Authorization) and management (Administration) are core, specifically, relate to a kind of dynamic password based on Conbined public or double key (Combined Public Key, referred to as CPK) to generate and verification method and device.
Background technology
OTP(full name is one time password) also claim dynamic password, be a kind of anti-theft technique of safe and convenient, this technology is the uncertain random digit combination generated according to special algorithm, and a password can only use once.Adopt dynamic password just without the need to periodic modification password; safety is saved worry; the user huge to management is very convenient; be widely used in the applications such as Net silver, network game, ecommerce, enterprise at present; such as, in online transaction, use supporting dynamic password effectively to protect log in and transaction security.
At present; dynamic password is generally exist based on the form of dynamic password token; dynamic password token be a kind of can according to the device of time synchronized dynamic password; its size is similar to the size of USB flash disk; there is little, the portative feature of volume; be subject to liking of users; but; existing dynamic password token does not possess PIN defencive function; therefore, after dynamic password token is lost, the dynamic password that dynamic password token generates is easy to be stolen by people; thus with regard to likely causing the danger illegally logged in, there is certain potential safety hazard.
There is the problem of potential safety hazard for the proof scheme based on dynamic password token in existing correlation technique, not yet propose effective solution at present.
Summary of the invention
The problem of potential safety hazard is there is for the proof scheme based on dynamic password token in correlation technique, the present invention proposes a kind of dynamic password based on CPK and generates and verification method and device, dynamic password can be avoided after the loss., there is situation about illegally logging in, improve the fail safe of verifying dynamic password.
Technical scheme of the present invention is achieved in that
According to an aspect of the present invention, a kind of dynamic password formation method based on CPK is provided.
This dynamic password formation method comprises:
The server identification that reception server sends and random number, wherein, random number is that server generates the random number of request generation according to the dynamic password that user sends;
According to server identification, determine the PKI of the server corresponding with server identification;
According to the PKI of server and the private key of pre-configured user, generate the first session key;
Utilize the first session key, random number is encrypted, generate dynamic password.
In addition, this dynamic password formation method also comprises: send dynamic password to server in advance and generate request, impels server to generate request according to dynamic password and generates random number.
In addition, this dynamic password formation method also comprises: the private key of pre-configured user, wherein, when the private key of pre-configured user, according to the private key matrix in key management system and Conbined public or double key algorithm, name corresponding for user can be referred to as user ID, generate the private key of user.
In addition, this dynamic password formation method also comprises: be stored in pre-configured carrier by the private key of user, and the private key of user and carrier is bound, impel the private key of user and carrier inseparable.
Wherein, above-mentioned carrier can be TransFLash card.
According to a further aspect in the invention, a kind of dynamic password generating device based on CPK is provided.
This dynamic password generating device comprises:
First receiver module, the server identification sent for reception server and random number, wherein, random number is that server generates the random number of request generation according to the dynamic password that user sends;
First PKI determination module, for according to server identification, determines the PKI of the server corresponding with service identifiers;
First key production module, for according to the PKI of server and the private key of pre-configured user, generates the first session key;
First password generation module, for utilizing the first session key, is encrypted random number, generates dynamic password.
In addition, this dynamic password generating device also comprises request module, generates request for sending dynamic password to server in advance, impels server to generate request according to dynamic password and generates random number.
In addition, this dynamic password generating device also comprises configuration module, for the private key of pre-configured user, wherein when the private key of pre-configured user, according to the private key matrix in key management system and Conbined public or double key algorithm, name corresponding for user can be referred to as user ID, generate the private key of user.
In addition, this dynamic password generating device also comprises binding module, for being stored in pre-configured carrier by the private key of user, and the private key of user and carrier is bound, impel the private key of user and carrier inseparable.
Wherein, above-mentioned carrier can be TransFLash card.
According to another aspect of the invention, a kind of verifying dynamic password method based on CPK is provided.
This verifying dynamic password method comprises:
Receive user ID and the dynamic password of user's transmission;
According to user ID, determine the PKI of user;
According to the PKI of user and the private key of the server corresponding with server identification, generate the second session key;
Utilize the second session key, random number is encrypted, generate checking password;
According to checking password, the dynamic password received is verified, and the result of checking is returned to user.
Wherein, according to checking password, when the dynamic password received is verified, checking password and dynamic password can be compared, when the result compared is consistent, judge that dynamic password is by checking.
In addition, this verifying dynamic password method also comprises: when dynamic password is by checking, delete random number.
In accordance with a further aspect of the present invention, a kind of verifying dynamic password device based on CPK is provided.
This verifying dynamic password device comprises:
Second receiver module, for receiving user ID and the dynamic password of user's transmission;
Second PKI determination module, for according to user ID, determines the PKI of user;
Second key production module, for according to the PKI of user and the private key of the server corresponding with server identification, generates the second session key;
Second password generated module, for utilizing the second session key, is encrypted random number, generates checking password;
Verifying dynamic password module, for according to checking password, verifies the dynamic password received.
Wherein, verifying dynamic password module comprises comparison module and determination module, and wherein, comparison module, for comparing checking password and dynamic password; Determination module, for being consistent in the result compared, judges that dynamic password is by checking.
In addition, this verifying dynamic password device also comprises removing module, for when dynamic password is by checking, deletes random number.
In sum, by means of technique scheme of the present invention, be encrypted by the random number of form to each generation of Conbined public or double key and obtain dynamic password, thus make each random number generated all be in encrypted state, because each dynamic password for carrying out verifying is encrypted based on the key of user and server, therefore, even if dynamic password is lost or is illegally stolen, also there will not be the dynamic password by losing to carry out illegal situation about logging in, effectively improve the fail safe of dynamic password; Simultaneously, due to dynamic password generation with checking based on public key system, thus make dynamic password be no longer dependent on algorithm secrecy in the process generated and verify, therefore effectively can also prevent developer from carrying out illegal operation, effectively raise the fail safe of checking.In addition, technique scheme of the present invention can combine with multiple terminals such as mobile phones, make user when needs dynamic password, dynamic password is obtained by mobile phone, not only increase the convenience (portability) when user uses, but also eliminate the physics cost making dynamic password token.In addition, because authentication mechanism of the present invention is based on challenge, therefore, the fail safe of authentication mechanism provided by the present invention is by the fail safe of verifying dynamic password mechanism time-based in conventional art
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the schematic flow sheet of the dynamic password formation method based on CPK according to the embodiment of the present invention;
Fig. 2 is the schematic flow sheet of the verifying dynamic password method based on CPK according to the embodiment of the present invention;
Fig. 3 is time diagram when differentiating according to the dynamic password based on CPK of example of the present invention;
Fig. 4 be according to the embodiment of the present invention based on the application structure schematic diagram of verifying dynamic password method in electric quotient system system of CPK;
Fig. 5 is the structural representation of the dynamic password generating device based on CPK according to the embodiment of the present invention;
Fig. 6 is the structural representation of the verifying dynamic password device based on CPK according to the embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art obtain, all belongs to the scope of protection of the invention.
According to embodiments of the invention, provide a kind of dynamic password formation method based on CPK.
As shown in Figure 1, comprise according to the dynamic password formation method based on CPK of the embodiment of the present invention:
Step S101, the server identification that reception server sends and random number, wherein, random number is that server generates the random number of request generation according to the dynamic password that user sends;
Step S103, according to server identification, determines the PKI of the server corresponding with server identification;
Step S105, according to the PKI of server and the private key of pre-configured user, generates the first session key;
Step S107, utilizes the first session key, is encrypted random number, generates dynamic password.
In above process; obtain because dynamic password of the present invention to be encrypted each random number generated by the form of Conbined public or double key; thus make each random number generated all possess encipherment protection function; stop dynamic password after the loss.; the possibility that random number (being equivalent to existing dynamic password) is stolen by people; and then after avoiding dynamic password loss, occur that situation about illegally logging in occurs, improve the fail safe of dynamic password greatly.
Certainly, in order to realize said process, the dynamic password formation method based on CPK according to the embodiment of the present invention also comprises: send dynamic password to server in advance and generate request, impels server to generate request according to dynamic password and generates random number.
Meanwhile, in order to realize said process, the dynamic password formation method based on CPK according to the embodiment of the present invention also comprises: the private key of pre-configured user.And when practical application, according to the private key matrix in key management system and Conbined public or double key algorithm, name corresponding for user can be referred to as user ID, generate the private key of user.Wherein, the title that user is corresponding can sets itself.
In addition, in order to can dynamic password be used whenever and wherever possible, the private key of pre-configured user can also be stored in corresponding carrier according to the dynamic password formation method based on CPK of the embodiment of the present invention, such as, be stored in TransFLash card, thus can TransFLash card be inserted in mobile phone, coordinate TransFLash card by the software systems on mobile phone, dynamic password is presented on mobile phone, thus effectively facilitates the use of user to dynamic password.
It should be noted that, above-mentioned TransFLash card only illustrative explanation, when practical application, carrier can be the parts that other outside TransFLash card have memory function, also can be other memory devices (such as, safety chip), as long as this equipment can support CPK, the display unit coordinated with this equipment then can be determined (such as, this display unit can be mobile communication terminal, notebook computer, panel computer) according to the carrier of actual conditions and actual selection.
In addition, in order to ensure that the private key of the user stored is not copied by people, the carrier of the private key of user and selection can also be bound by the dynamic password formation method based on CPK according to the embodiment of the present invention, therefore the private key of user and the carrier of selection are inseparable, thus the private key avoiding user is by physical copy, improves the fail safe of dynamic password.
Because above-mentioned dynamic password formation method generates dynamic password based on the form of Conbined public or double key, therefore, the method of the verifying dynamic password (or certification) suitable with it also should be carry out based on the form of Conbined public or double key, so additionally provide the suitable verifying dynamic password method of a kind of with above-mentioned dynamic password hair growth method in the present invention.
According to embodiments of the invention, additionally provide a kind of verifying dynamic password method based on CPK.
As shown in Figure 2, comprise according to the verifying dynamic password method based on CPK of the embodiment of the present invention:
Step S201, receives user ID and the dynamic password of user's transmission;
Step S203, according to user ID, determines the PKI of user;
Step S205, according to the PKI of user and the private key of the server corresponding with server identification, generates the second session key;
Step S207, utilizes the second session key, is encrypted random number, generates checking password;
Step S209, according to checking password, verifies the dynamic password received, and the result of checking is returned to user.
In above process, verifying dynamic password method of the present invention carrys out session key generation by the PKI of user and the private key of server, then the session key by generating to be encrypted random number and to be verified password, and this just with dynamic password formation method in by the private key of user and the PKI session key generation of server, then the session key by generating to be encrypted the dynamic password obtained step to random number is corresponding, based on ECDH encrypted negotiation agreement (i.e. ECC(Elliptic Curve Cryptosystems, elliptic curve cryptosystem) DH(Diffie-Hellman) Diffie-Hellman) to carry out, therefore, characteristic based on ECDH encrypted negotiation agreement can be learnt, the session key generated by the private key of user and the PKI of server must be corresponding with the session key generated by the PKI of user and the private key of server, and these two session keys are encrypted to same random number the password obtained must be identical, therefore, in the process of checking, the checking password obtained by the second session key and the dynamic password obtained by the first secret key encryption can be compared, verify the authenticity of dynamic password.
So, in above process, verifying the dynamic password received according to checking password, is checking password and dynamic password are compared in fact, when the result compared is consistent, then can judge that dynamic password is as true (namely dynamic password is by checking).
Characteristic due to dynamic password is dynamic, and each password generated is all not identical, and each password generated is disposable effective password, so, when dynamic password is by checking, the random number generated before should deleting, generates next random number to facilitate.
Therefore, the verifying dynamic password method according to an embodiment of the invention based on CPK also should comprise: when dynamic password is by checking, delete random number.
Sequential chart when differentiating below in conjunction with dynamic password is described in detail to technique scheme of the present invention.
Fig. 3 is time diagram when differentiating based on the dynamic password of CPK.As can be seen from Figure 3, the discrimination process of carrying out dynamic password is: user ID sends to server to generate request to initiate dynamic password by user side, after server authentication user ID is legal, the mark of return service device and random number are to user side, now user side can carry out calculation server PKI according to the mark of server, and use server public key and private key for user to calculate session key, then by this session key, generation dynamic password is encrypted to random number, and dynamic password is sent server verifies.And after server receives dynamic password, client public key is calculated according to user ID, and use the private key of client public key and server to calculate another session key, and use this session key to be encrypted generation checking password to random number, then the dynamic password that checking password and user side are given is compared checking by server, and the result of checking is sent back to user side, meanwhile, server removes random number.
Below by way of instantiation, technique scheme of the present invention is described.
Fig. 4 is the application structure schematic diagram of verifying dynamic password method in electric quotient system system based on CPK.As can be seen from Figure 4, dynamic password shows by means of mobile phone, when user accesses electric business website on the internet or webpage (such as, shopping website), show dynamic password by mobile phone, then utilize dynamic password to carry out secure log, thus make user when doing shopping in the website that electric business provides or webpage, can be safer, more convenient, bring safer user management also to the website of electric business or webpage simultaneously.
According to embodiments of the invention, additionally provide a kind of dynamic password generating device based on CPK.
As shown in Figure 5, comprise according to the dynamic password generating device based on CPK of the embodiment of the present invention:
First receiver module 51, the server identification sent for reception server and random number, wherein, random number is that server generates the random number of request generation according to the dynamic password that user sends;
First PKI determination module 52, for according to server identification, determines the PKI of the server corresponding with service identifiers;
First key production module 53, for according to the PKI of server and the private key of pre-configured user, generates the first session key;
First password generation module 54, for utilizing the first session key, is encrypted random number, generates dynamic password.
Certainly, in order to realize the function of above-mentioned module, the dynamic password generating device based on CPK according to the embodiment of the present invention also comprises request module (not shown), generates request for sending dynamic password to server in advance, impels server to generate request according to dynamic password and generates random number.
Simultaneously, in order to realize the function of above-mentioned module, the dynamic password generating device based on CPK according to the embodiment of the present invention also should comprise configuration module (not shown), for the private key of pre-configured user, wherein when the private key of pre-configured user, according to the private key matrix in key management system and Conbined public or double key algorithm, name corresponding for user can be referred to as user ID, generate the private key of user.
In addition, in order to dynamic password can be used whenever and wherever possible and prevent the private key of user from being copied by people, the dynamic password generating device based on CPK according to the embodiment of the present invention also can comprise binding module (not shown), for the private key of user is stored in pre-configured carrier, and the private key of user and carrier are bound, impel the private key of user and carrier inseparable.
In actual applications, carrier can be TransFLash card, also can be other equipment, as long as this equipment can support CPK.
According to embodiments of the invention, additionally provide a kind of verifying dynamic password device based on CPK.
As shown in Figure 6, comprise according to the verifying dynamic password device based on CPK of the embodiment of the present invention:
Second receiver module 61, for receiving user ID and the dynamic password of user's transmission;
Second PKI determination module 62, for according to user ID, determines the PKI of user;
Second key production module 63, for according to the PKI of user and the private key of the server corresponding with server identification, generates the second session key;
Second password generated module 64, for utilizing the second session key, is encrypted random number, generates checking password;
Verifying dynamic password module 65, for according to checking password, verifies the dynamic password received.
In said structure, verifying dynamic password module 65 comprises comparison module (not shown) and determination module (not shown), and wherein, comparison module, for comparing checking password and dynamic password; Determination module, for being consistent in the result compared, judges that dynamic password is by checking.
Characteristic due to dynamic password is dynamic, and each password generated is all not identical, and each password generated is disposable effective password, so, when dynamic password is by checking, the random number generated before should deleting, generates next random number to facilitate.
Therefore, the verifying dynamic password device based on CPK according to the embodiment of the present invention also comprises removing module (not shown), for when dynamic password is by checking, deletes random number.
In sum, by means of technique scheme of the present invention, be encrypted by the random number of form to each generation of Conbined public or double key and obtain dynamic password, thus make each random number generated all be in encrypted state, because each dynamic password for carrying out verifying is encrypted based on the key of user and server, therefore, even if dynamic password is lost or is illegally stolen, also there will not be the dynamic password by losing to carry out illegal situation about logging in, effectively improve the fail safe of dynamic password; Simultaneously, due to dynamic password generation with checking based on public key system, thus make dynamic password be no longer dependent on algorithm secrecy in the process generated and verify, therefore effectively can also prevent developer from carrying out illegal operation, effectively raise the fail safe of checking.
In addition, by means of technique scheme of the present invention, by the private key of user being stored in pre-configured carrier (this carrier can be safety chip), and the private key of user and carrier are bound, impel the private key of user and carrier inseparable, thus the private key of user is possessed strict security mechanism, is illegally stolen even if carrier is lost, also there will not be the situation of private key by physical copy of user, the private key effectively having stopped user is occurred by situation about falsely using.
In addition, because authentication mechanism of the present invention is based on challenge, therefore, the fail safe of authentication mechanism provided by the present invention is by the fail safe of verifying dynamic password mechanism time-based in conventional art.
In addition, technique scheme of the present invention can combine with multiple terminals such as mobile phones, make user when needs dynamic password, dynamic password is obtained by mobile phone, not only increase the convenience (portability) when user uses, but also eliminate the physics cost making dynamic password token.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. based on a dynamic password formation method of Conbined public or double key CPK, it is characterized in that, comprising:
The server identification that reception server sends and random number, wherein, described random number is that described server generates the random number of request generation according to the dynamic password that user sends;
According to described server identification, determine the PKI of the described server corresponding with described server identification;
According to the PKI of described server and the private key of pre-configured user, generate the first session key;
Utilize described first session key, described random number is encrypted, generate dynamic password.
2. dynamic password formation method according to claim 1, is characterized in that, comprises further:
Send described dynamic password to described server in advance and generate request, impel described server to generate request according to described dynamic password and generate described random number.
3. dynamic password formation method according to claim 1, is characterized in that, comprises further:
The private key of pre-configured user, and the private key of pre-configured user comprises: according to the private key matrix in key management system and Conbined public or double key algorithm, name corresponding for described user is referred to as user ID, generates the private key of described user.
4. dynamic password formation method according to claim 3, is characterized in that, comprises further:
The private key of described user is stored in pre-configured carrier, and the private key of described user and described carrier is bound, impel the private key of described user and described carrier inseparable.
5. dynamic password formation method according to claim 4, is characterized in that, described carrier is TransFLash card.
6. based on a dynamic password generating device of Conbined public or double key CPK, it is characterized in that, comprising:
First receiver module, the server identification sent for reception server and random number, wherein, described random number is that described server generates the random number of request generation according to the dynamic password that user sends;
First PKI determination module, for according to described server identification, determines the PKI of the described server corresponding with described service identifiers;
First key production module, for according to the PKI of described server and the private key of pre-configured user, generates the first session key;
First password generation module, for utilizing described first session key, is encrypted described random number, generates dynamic password.
7., based on a verifying dynamic password method of Conbined public or double key CPK, it is characterized in that, comprising:
Receive the described user ID of user's transmission and described dynamic password;
According to described user ID, determine the PKI of described user;
According to the PKI of described user and the private key of the server corresponding with described server identification, generate the second session key;
Utilize described second session key, described random number is encrypted, generate checking password;
According to described checking password, the described dynamic password received is verified, and the result of checking is returned to described user.
8. verifying dynamic password method according to claim 7, is characterized in that, according to described checking password, carries out checking comprise the described dynamic password received:
Described checking password and described dynamic password are compared, when the result compared is consistent, judges that described dynamic password is by checking.
9. verifying dynamic password method according to claim 8, is characterized in that, comprise further:
When described dynamic password is by checking, delete described random number.
10., based on a verifying dynamic password device of Conbined public or double key CPK, it is characterized in that, comprising:
Second receiver module, for receiving the described user ID of user's transmission and described dynamic password;
Second PKI determination module, for according to described user ID, determines the PKI of described user;
Second key production module, for according to the PKI of described user and the private key of the server corresponding with described server identification, generates the second session key;
Second password generated module, for utilizing described second session key, is encrypted described random number, generates checking password;
Verifying dynamic password module, for according to described checking password, verifies the described dynamic password received.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310415605.2A CN104468099A (en) | 2013-09-12 | 2013-09-12 | Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310415605.2A CN104468099A (en) | 2013-09-12 | 2013-09-12 | Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104468099A true CN104468099A (en) | 2015-03-25 |
Family
ID=52913533
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310415605.2A Pending CN104468099A (en) | 2013-09-12 | 2013-09-12 | Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104468099A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105530250A (en) * | 2015-12-09 | 2016-04-27 | 美的集团股份有限公司 | Authentication activation method and system for household appliance |
| CN105807681A (en) * | 2016-03-04 | 2016-07-27 | 广东格兰仕集团有限公司 | Method for guaranteeing communication safety of smart products |
| CN106302514A (en) * | 2016-09-06 | 2017-01-04 | 苏州协鑫集成科技工业应用研究院有限公司 | The dynamic encrypting method of memory card and decryption method and device thereof |
| CN108200108A (en) * | 2018-04-11 | 2018-06-22 | 吕航宇 | A kind of rivest, shamir, adelman and its application |
| CN108600176A (en) * | 2018-03-27 | 2018-09-28 | 中南大学 | A kind of intelligent terminal safety certifying method, equipment, server and system |
| CN109547217A (en) * | 2019-01-11 | 2019-03-29 | 北京中实信达科技有限公司 | One-to-many identity authorization system and method based on dynamic password |
| CN109768982A (en) * | 2019-01-23 | 2019-05-17 | 深圳市元征科技股份有限公司 | A kind of encrypted transmission method and device based on Internet of Things |
| CN110495198A (en) * | 2017-05-09 | 2019-11-22 | 华为国际有限公司 | Method for network authorization, the network equipment, terminal device and storage medium |
| CN112328986A (en) * | 2020-11-26 | 2021-02-05 | 西安四叶草信息技术有限公司 | User identity authentication method, device, server and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1694555A (en) * | 2005-05-24 | 2005-11-09 | 北京易诚世纪科技有限公司 | Dynamic cipher system and method based on mobile communication terminal |
| WO2007095097A2 (en) * | 2006-02-13 | 2007-08-23 | Sig-Tec | Secure authentication facility |
| CN101132281A (en) * | 2007-09-18 | 2008-02-27 | 刘亚梅 | Network security authentication system for preventing key from stealing |
| CN101500011A (en) * | 2009-03-13 | 2009-08-05 | 北京华大智宝电子系统有限公司 | Method and system for implementing dynamic password security protection |
| CN101662465A (en) * | 2009-08-26 | 2010-03-03 | 深圳市腾讯计算机系统有限公司 | Method and device for verifying dynamic password |
| CN102457491A (en) * | 2010-10-20 | 2012-05-16 | 北京大学 | Dynamic identity authenticating method and system |
| CN104426659A (en) * | 2013-09-02 | 2015-03-18 | 中国移动通信集团公司 | Dynamic password generating method, authentication method, authentication system and corresponding equipment |
| CN104639516A (en) * | 2013-11-13 | 2015-05-20 | 华为技术有限公司 | Method, equipment and system for authenticating identities |
-
2013
- 2013-09-12 CN CN201310415605.2A patent/CN104468099A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1694555A (en) * | 2005-05-24 | 2005-11-09 | 北京易诚世纪科技有限公司 | Dynamic cipher system and method based on mobile communication terminal |
| WO2007095097A2 (en) * | 2006-02-13 | 2007-08-23 | Sig-Tec | Secure authentication facility |
| CN101132281A (en) * | 2007-09-18 | 2008-02-27 | 刘亚梅 | Network security authentication system for preventing key from stealing |
| CN101500011A (en) * | 2009-03-13 | 2009-08-05 | 北京华大智宝电子系统有限公司 | Method and system for implementing dynamic password security protection |
| CN101662465A (en) * | 2009-08-26 | 2010-03-03 | 深圳市腾讯计算机系统有限公司 | Method and device for verifying dynamic password |
| CN102457491A (en) * | 2010-10-20 | 2012-05-16 | 北京大学 | Dynamic identity authenticating method and system |
| CN104426659A (en) * | 2013-09-02 | 2015-03-18 | 中国移动通信集团公司 | Dynamic password generating method, authentication method, authentication system and corresponding equipment |
| CN104639516A (en) * | 2013-11-13 | 2015-05-20 | 华为技术有限公司 | Method, equipment and system for authenticating identities |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105530250A (en) * | 2015-12-09 | 2016-04-27 | 美的集团股份有限公司 | Authentication activation method and system for household appliance |
| CN105807681A (en) * | 2016-03-04 | 2016-07-27 | 广东格兰仕集团有限公司 | Method for guaranteeing communication safety of smart products |
| CN106302514A (en) * | 2016-09-06 | 2017-01-04 | 苏州协鑫集成科技工业应用研究院有限公司 | The dynamic encrypting method of memory card and decryption method and device thereof |
| CN110495198A (en) * | 2017-05-09 | 2019-11-22 | 华为国际有限公司 | Method for network authorization, the network equipment, terminal device and storage medium |
| CN108600176A (en) * | 2018-03-27 | 2018-09-28 | 中南大学 | A kind of intelligent terminal safety certifying method, equipment, server and system |
| CN108200108A (en) * | 2018-04-11 | 2018-06-22 | 吕航宇 | A kind of rivest, shamir, adelman and its application |
| CN108200108B (en) * | 2018-04-11 | 2021-02-05 | 吕航宇 | Asymmetric encryption algorithm and application thereof |
| CN109547217A (en) * | 2019-01-11 | 2019-03-29 | 北京中实信达科技有限公司 | One-to-many identity authorization system and method based on dynamic password |
| CN109547217B (en) * | 2019-01-11 | 2021-10-22 | 北京中实信达科技有限公司 | One-to-many identity authentication system and method based on dynamic password |
| CN109768982A (en) * | 2019-01-23 | 2019-05-17 | 深圳市元征科技股份有限公司 | A kind of encrypted transmission method and device based on Internet of Things |
| CN112328986A (en) * | 2020-11-26 | 2021-02-05 | 西安四叶草信息技术有限公司 | User identity authentication method, device, server and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11258777B2 (en) | Method for carrying out a two-factor authentication | |
| CN104468099A (en) | Dynamic password generating method and device based on CPK (Combined Public Key) and dynamic password authentication method and device based on CPK (Combined Public Key) | |
| CN103167491B (en) | A kind of mobile terminal uniqueness authentication method based on software digital certificate | |
| CN106797311B (en) | System, method and storage medium for secure password generation | |
| US20210004454A1 (en) | Proof of affinity to a secure event for frictionless credential management | |
| CN104994114B (en) | A kind of identity authorization system and method based on electronic ID card | |
| US8112787B2 (en) | System and method for securing a credential via user and server verification | |
| JP6117317B2 (en) | Non-repudiation method, settlement management server for this, and user terminal | |
| US8769289B1 (en) | Authentication of a user accessing a protected resource using multi-channel protocol | |
| CA2875503A1 (en) | Enterprise triggered 2chk association activation | |
| CN103297403A (en) | Method and system for achieving dynamic password authentication | |
| TWI632798B (en) | Server, mobile terminal, and network real-name authentication system and method | |
| CN103853950A (en) | Authentication method based on mobile terminal and mobile terminal | |
| CN107920052B (en) | Encryption method and intelligent device | |
| CN105164689A (en) | User authentication | |
| CN109067766A (en) | A kind of identity identifying method, server end and client | |
| CN112989426B (en) | Authorization authentication method and device, and resource access token acquisition method | |
| CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
| CN104202163A (en) | Password system based on mobile terminal | |
| CN104660397A (en) | Secret key managing method and system | |
| CN103037366A (en) | Mobile terminal user authentication method and mobile terminal based on asymmetric cryptographic technique | |
| Shaju et al. | BISC authentication algorithm: An efficient new authentication algorithm using three factor authentication for mobile banking | |
| Wei et al. | Secure control protocol for universal serial bus mass storage devices | |
| CN103401686A (en) | User Internet identity authentication system and application method thereof | |
| CN107248997A (en) | Authentication method based on smart card under environment of multi-server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150325 |