CN105429991A - Efficient data transmission method for mobile terminal - Google Patents

Efficient data transmission method for mobile terminal Download PDF

Info

Publication number
CN105429991A
CN105429991A CN201510872804.5A CN201510872804A CN105429991A CN 105429991 A CN105429991 A CN 105429991A CN 201510872804 A CN201510872804 A CN 201510872804A CN 105429991 A CN105429991 A CN 105429991A
Authority
CN
China
Prior art keywords
identity
application platform
user
information
authentication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510872804.5A
Other languages
Chinese (zh)
Inventor
刘金明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
CHENGDU HARMONY TECHNOLOGY Co Ltd
Original Assignee
CHENGDU HARMONY TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by CHENGDU HARMONY TECHNOLOGY Co Ltd filed Critical CHENGDU HARMONY TECHNOLOGY Co Ltd
Priority to CN201510872804.5A priority Critical patent/CN105429991A/en
Publication of CN105429991A publication Critical patent/CN105429991A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos

Abstract

The present invention provides an efficient data transmission method for a mobile terminal. The method comprises the following steps: an authentication server receives a login request of a user, acquires an identity license of a user identification chip, and verifies the license through a secure channel; and after identifying the identity license successfully, the authentication server provides the user with a trusted marker for accessing an application platform. The present invention proposes the efficient data transmission method for the mobile terminal. The method achieves the efficient real-time user authentication for environments of the mobile terminal and the server, and improves the confidentiality and authenticity of identities of mobile Internet users.

Description

Mobile terminal efficient data transfer method
Technical field
The present invention relates to communication of mobile terminal, particularly a kind of mobile terminal efficient data transfer method.
Background technology
Along with the development of Internet technology, E-Government, ecommerce, the importance of the network service such as electronic banking and social networks increases gradually.Mobile device combines with the Internet by mobile Internet, makes user can Gains resources and service from the Internet whenever and wherever possible, for Consumer's Experience Internet service provides mode more easily.Along with the technical development day by day ripe and constantly popularization and application of mobile Internet and Internet of Things, cyberspace defines a kind of ubiquitous internet environment gradually.Cyberspace also brings the challenge of various network security and individual privacy protection problem on the other hand.Occur that user privacy information is revealed.After all be to lack one network trust and Identity Management system safely and effectively.In cyberspace, user identity has virtual and is difficult to certainty.The network user lacks network behavior responsibility consciousness, utilizes the virtual of network identity, carries out issue flame, even participates in unlawful activities, has increased the weight of the severe situation of cyberspace user identity management further.The real name method of current internet generally adopts by name, identification card number, or also has the identity of cellphone information authentication of users.But the credibility of user identity cannot be determined completely, be difficult to fundamentally protect privacy of user, also really cannot ensure that the real name of network user identity is credible simultaneously.In addition, existing identity identifying method all cannot be applicable to mobile terminal effectively.
Summary of the invention
For solving the problem existing for above-mentioned prior art, the present invention proposes a kind of mobile terminal efficient data transfer method, comprising:
Certificate server receives the logging request of user, obtain the identity licence of User Identity chip, and by escape way, described licence is verified, after the success of certificate server qualification identity licence, for user provides fiducial markers to accord with, for access application platform.
Preferably, described certificate server have comprise authentication ' unit and store transmission unit,
Wherein authentication ' unit provides licence verification and the authenticating transactions process of user; Authentication ' unit adopts concentrates checking, creates unified authentication center, for each application platform provides identity authentication service, carries out the acknowledgment of your inquiry of identity verify and effective status according to the licence in User Identity chip; Can access corresponding application platform by user after certification, this authentication ' unit provides identity authorization system to associate with the account information of application platform for authenticated user, obtains related information and cancel identity authorization system to associate with the account information of application platform; When application platform receives the logging request of user, will be redirected in certificate server; When user uses identity to log in application platform first, first associated with application platform account information by identity authorization system, the corresponding relation that the account information of identity information and application platform is preserved in this locality by certificate server is stored by encryption; In the non-login process first of user, carry out the verification of identity licence, proof of identity is accorded with by rear generation fiducial markers, confirm marker character validity, with make user use at every turn log in application platform time, certificate server directly reads local data, obtains the application platform account information that identity information maps; Wherein identity verification licence comprises authenticity and the legitimacy of identity verification information, then the result is back to authentication request side; After the identity information of user is proved to be successful, certificate server calculates marker character according to application platform condition code, identity information and timestamp, and the value of marker character is returned to client with the form of URL; The application platform condition code that reception application platform provides and marker character, the legitimacy of verification mark symbol; If marker character is proved to be successful, then return the account's list associated by application platform and identity;
Described storage transmission unit by safe transmission, operate and be stored as user safety guarantee environment is provided; Certificate revocation list buffer memory is set and provides inquiry service for application platform, upgrade the certificate revocation list of identity in nearest special time simultaneously; DES algorithm is adopted to be encrypted storage to data; The operation information formed in record server running; To server access information, the renewal of data in database, and the system failure carries out Real-Time Monitoring, and form journal file, cryptographic storage is in background data base; Information is prevented when Internet Transmission by malicious attack or intercepting and capturing by being encrypted transmission to data; Mutual middle use Transmission Encryption agreement between platform, has needing the data of transmission and expressly transfers ciphertext to, be sent to recipient.
The present invention compared to existing technology, has the following advantages:
The present invention proposes a kind of mobile terminal efficient data transfer method, the environment for mobile terminal and server achieves authenticating user identification during efficient real, improves confidentiality and the authenticity of mobile Internet user identity.
Accompanying drawing explanation
Fig. 1 is the flow chart of the mobile terminal efficient data transfer method according to the embodiment of the present invention.
Embodiment
Detailed description to one or more embodiment of the present invention is hereafter provided together with the accompanying drawing of the diagram principle of the invention.Describe the present invention in conjunction with such embodiment, but the invention is not restricted to any embodiment.Scope of the present invention is only defined by the claims, and the present invention contain many substitute, amendment and equivalent.Set forth many details in the following description to provide thorough understanding of the present invention.These details are provided for exemplary purposes, and also can realize the present invention according to claims without some in these details or all details.
An aspect of of the present present invention provides a kind of mobile terminal efficient data transfer method.Fig. 1 is the mobile terminal efficient data transfer method flow diagram according to the embodiment of the present invention.Mobile identity authorization system general frame of the present invention comprises four parts: certificate server, identify label chip, client and application platform based on RFID.Wherein, certificate server for each application platform provides identity authentication service, after certificate server receives the logging request of user, can obtain the identity licence of user in general frame, and by SSL escape way, submitted to by licence identity information server to verify.After the success of certificate server qualification identity licence, realize user with the authority of the information system account of registration, access application platform by safe and reliable fiducial markers symbol mechanism.Secondly, based on the identify label chip of RFID, design for being applicable to mobile terminal.Identify label chip, except built-in RFID communication unit, realizes the communication with mobile terminal, built-in security module, ensures the safe storage of information in card, by the cryptographic algorithm of preserving in on-chip memory, can be encrypted transmission to data.Again, client is the mutual intermediate member of identify label chip and certificate server, the ID authentication request that client sends for receiving application platform, information in identify label chip is obtained by the RFID communication unit of mobile terminal, the legitimacy of proxy authentication subscriber identity information, and the result of identity information is back to application platform.。
Certificate server has two module compositions, and one is authentication ' unit, and one is store transmission unit.Authentication ' unit provides licence validate service and the authenticating transactions process service of user; Store transmission unit and provide safe and reliable safety guarantee environment by realizing safe transmission, safety operation and safe storage for user.
Authentication ' unit adopts concentrates checking, creates unified authentication center, for each application platform provides identity authentication service, carries out the acknowledgment of your inquiry of identity verify and effective status according to the licence in User Identity chip.Corresponding application platform can be accessed by user after certification.Authentication ' unit is except providing the service for checking credentials of user validation for application platform, also for authenticated user provides identity authorization system to associate with the account information of application platform, obtain related information, and cancel identity authorization system and associate with the account information of application platform.Certificate server is supported the access request of high access concurrent user and effectively can be prevented external attack, has redundancy backup and recovery mechanism.
Certificate server provides unified identity authentication service for each application platform, when application platform receives the logging request of user, will be redirected in certificate server.The function of authentication ' unit comprises: when user logs in first, in the account association that identity information and application platform account are mapped, the non-login process first of user, for carrying out the verification of identity licence, proof of identity pass through after fiducial markers symbol generate, the marker character validation of information system verification mark symbol.
When user uses identity to log in application platform first, first associated with application platform account information by identity authorization system, an identity can associate multiple account informations of multiple application platform.Certificate server this locality is preserved the corresponding relation of the account information of identity information and application platform, by the fail safe of cryptographic storage technique guarantee data storage; When user uses login application platform at every turn, certificate server directly reads local data, obtains the application platform account information that identity information maps.In addition, account association allows user to cancel the incidence relation of authentication information and account information at any time, certificate server backstage real-time update related information.Identity license validation comprises the authenticity of identity verification information, and the legitimacy of proxy authentication identity information, is back to authentication request side by the result afterwards.After the identity information of user is proved to be successful, certificate server calculates transmission marker character according to application platform condition code, identity information and timestamp etc., and the value of marker character is returned to client with the form of URL.The application platform condition code that reception application platform provides and marker character, the legal validity of verification mark symbol, if marker character is own through out-of-date or inefficacy, then returns the corresponding miscue of application platform; If marker character is proved to be successful, then return the account's list associated by application platform and identity.
Described storage transmission unit realizes using identity to carry out the stable environment of authentication by safe transmission, safety operation and safe storage.
Secure storage unit is divided into certificate revocation list buffer memory, and enciphered data stores and safety verification daily record 3 unit.Certificate revocation list buffer memory is set, for application platform provides efficient inquiry service, upgrades the certificate revocation list of identity in nearest special time simultaneously, ensure the real-time effectiveness storing data in buffer memory.Secondly, adopting the encryption storing data is the basis of safe storage.DES algorithm is adopted to be encrypted storage to data.In addition, the operation information formed in security check unit record server running.Can to server access information, the renewal of data in database, and system malfunctions etc. carries out Real-Time Monitoring, and form journal file, cryptographic storage in background data base, for the inspection work of certificate server provides reliable basis.Safety operation unit ensure certificate server account information association, key operation approval and authentication management.In key operation links such as identity information association, identity information checkings, detect in real time respectively from function and performance two aspect, process in time if there is abnormal conditions.Safe transmission unit, by being encrypted transmission to data, prevents information when Internet Transmission by malicious attack or intercepting and capturing.When carrying out mutual with application platform, client and identity information server, the Transmission Encryption agreement specified by safe transmission unit, is had needing the data of transmission and expressly transfers ciphertext to, be sent to recipient.Ciphertext is converted to expressly according to key by recipient again.Safe transmission unit effectively ensures the secure communication of certificate server and application platform and client.In addition, be reduce the generation of communication flows, reduce network delay, safe transmission Unit Design is efficient, simplify, the communication protocol of safety and data format are applied to communication between certificate server and application platform.
The present invention is based on the identity terminal built-in RFID communication module of RFID, use cordless and mobile terminal alternately, configure corresponding RFID card reader and be connected with PC, by identify label chip close to card reader, identity label can be used to carry out authentication.The internal physical structure of identify label chip comprises primary processor, on-chip memory, RFID module and front end unit module, the physical hardware of antenna and other necessity.In identify label chip, the work of each component coordination, achieves the various functions of identify label chip jointly.
Identity label adopts PKI, by a network environment needing the digital information of transmission be encrypted and sign, comes the authenticity of guarantee information transmission, integrality, confidentiality and non-repudiation.Authentication adopts PKI mechanism the identity of individual to be associated with background data base, thus realizes front end anonymity, rear end real name, effectively protects the individual privacy information of user.In addition, identity arranges PUK code protection mechanism, and user uses during identity to be needed first to input PUK code, ensure that the safe handling of identify label chip.
RFID communication control module, for conciliation and the demodulation work of identify label chip circumference radiofrequency signal, also process the related protocol of contactless communication and rule simultaneously, to realize transmission and the reception of signal, another side is communicated with credible platform module by single line connection protocol SWP, carries out the read-write operation of FRID label information.
For ensureing the safe storage of data in on-chip memory, in on-chip memory, add credible platform module.Computing and encryption are carried out for the sensitive data stored in on-chip memory, by RFID front-end module, communicates with exterior read-write equipment, ensure the fail safe in data exchange process.
Client is used for carrying out alternately with terminal use, reads the effective information in identify label chip, and sets up the legitimacy of the session channel identity verification information of safety with certificate server, and afterwards, the result of identity information is back to application platform by client.
Client is by five module compositions: read chip information, authentication, result treatment, user's display and logger module.When user uses login, APP can call client, sends the request of authentication, provides APP to identify to client-side program simultaneously, and this mark is inquired about and obtains user account list after being used for authentication success.Client obtains related identification information by the RFID unit of mobile terminal.Authentication of users input PUK code.After the success of checking PUK code, import the identity information of acquisition into authentication module, set up safe and reliable BlueDrama passage by WLAN, carry out information interaction with certificate server.The authentication information that certificate server returns is made up of three territories, is authentication result, user ID, abnormality code respectively, and according to the difference of authentication result, these three territories combinationally use, and can be divided into two large classes.One class be authentication failure, certificate server returns abnormality code, now according to abnormality code not in the same way user show relevant information, meanwhile to application platform return authentication failure, the result of subsequent operation cannot be carried out.Another kind of is authentication success, now certificate server returns the transmission marker character calculated by data such as application platform condition code, identity license information, timestamps, result treatment module is to the successful result prompting of application platform return authentication, this transmission marker character is returned application platform, application platform carries out follow-up verification operation according to transmission marker character simultaneously.The result of authentication returns APP, display result, and namely authentication success shows successfully; Authentification failure is pointed out to user, as identity License expiration accordingly according to the error situation code returned; Record nearest identity authentication result to back up as back-end data, comprise the timestamp of APP application authentication, APP mark, identity licence sequence number, authentication result, certification end time and other remark informations.Journal file adopts text formatting, and cryptographic storage is in the program space of client self.Client externally provides specific functional interface, facilitates the interface of APP.Within the whole cycle that client is run, user only needs identify label chip can obtain corresponding identity information close to the mobile terminal back side.
Application platform management end is first to certificate server application platform condition code, and the legitimacy of certificate server examination & verification application platform management end, the character string of distributing a unique identification application platform for each application platform management end is afterwards designated as application platform condition code.When application platform is to certificate server identity verification information, provide application platform condition code, certificate server first checks the legitimacy of application platform condition code, the authentication request of reprocessing application platform submission subsequently.
Application platform on the one hand and client mutual, send the transactions requests (comprise logins, register and Modify password) of ID authentication request and user, receive simultaneously and resolve the authentication result of client feedback; On the other hand, application also carries out safe communication with certificate server, the validity of checking transmission marker character, and performs the operation of corresponding the affair logic according to the result.
Call between application platform service routine or use browser to call client and propose authentication application, and receive the identity authentication result that client returns Jiong.Application platform judges the identity of user further according to the result got.Authentification failure directly refuses operation.Authentication success, client can return network, and now application platform needs the server this user ID being sent to application platform place.After server receives user ID, need to set up safe and reliable session channel with certificate server, verify the legitimacy of this user ID.Obtain the user profile with Identity Association after being verified, perform the affair logic by application platform place server, user side application platform completes register simultaneously.
According to the framework of mobile authentication, the operating process of mobile authentication is refined as following steps, wherein application platform is further refined as application door and background server.
User logs in application platform, and application door initiates logging request to background server.
Background server detects user's logging request, and the logging request of user, the access path of identity authentication service and application platform unique identification are issued application door.Wherein, application platform condition code is the unique sequence numbers of mark application platform.Application door jumps to client according to logging request type.
Client receives logging request, and identify label chip close to mobile terminal, is carried out the operation of reading identify label chip information by prompting user.After good authentication identify label chip PUK code, client passes through RFID function and the identify label chip communication of mobile terminal, obtains the effective information in identify label chip.
Client submits identity information and application platform condition code to certificate server.
The true legitimacy of certificate server identity verification information, if be proved to be successful, then calculated user according to timestamp, identity information and application platform condition code and transmits marker character, return to client; If authentication failed, then return corresponding abnormality code to client.
The result of identity information, according to application platform condition code, is returned to application door by client.
Application door, according to the result of identity information, performs next step logical operation.If be proved to be successful, the marker character that background server will obtain in the result; If authentication failed, background server refusal user access application door, identifying procedure terminates.
Background server carries marker character access registrar server, the legal validity of verification mark symbol.
Certificate server, after marker character is verified, returns the user name list associated by identity information to application platform.If marker character authentication failed, then return authentication failed result.
Background server selects corresponding the affair logic according to the result of marker character.
If the result is successfully, then log in application platform with the user name associated by identity information; If the result is unsuccessfully, then refuses user's access application platform, require user's identity verification information again.
Client sets up safe and reliable session channel by HTTPS agreement and certificate server.First client or browser send the request of connection to server end, comprise the kind of cryptographic algorithm in request, the random number produced and the information required for the communication of other client and servers;
Server end returns licence corresponding for supported cryptographic algorithm to client, comprises the information such as CA issuing organization and encrypted public key;
Client, according to the legitimacy of the Information Authentication server end received, produce a symmetric key at random afterwards, and the encrypted public key utilizing server end to provide is encrypted to it, then the symmetric key after encryption is sent to server end;
Server end requires that client carries out authentication, and client produces a random number and then carries out data signature to it, and passes to server together with the licence of the random number containing digital signature and client oneself.
The identity legitimacy of server end checking client, if checking is not passed through, then interrupt communication at once; If the verification passes, the server end private key of oneself unties " symmetric key " of encryption, then produces signcode, and client also produces corresponding signcode by identical method.
Client and server end is arranged, and the signcode used is symmetric key by the data communication indicated below.
In sum, the present invention proposes a kind of mobile terminal efficient data transfer method, the environment for mobile terminal and server achieves authenticating user identification during efficient real, improves confidentiality and the authenticity of mobile Internet user identity.
Obviously, it should be appreciated by those skilled in the art, above-mentioned of the present invention each module or each step can realize with general computing system, they can concentrate on single computing system, or be distributed on network that multiple computing system forms, alternatively, they can realize with the executable program code of computing system, thus, they can be stored and be performed by computing system within the storage system.Like this, the present invention is not restricted to any specific hardware and software combination.
Should be understood that, above-mentioned embodiment of the present invention only for exemplary illustration or explain principle of the present invention, and is not construed as limiting the invention.Therefore, any amendment made when without departing from the spirit and scope of the present invention, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.In addition, claims of the present invention be intended to contain fall into claims scope and border or this scope and border equivalents in whole change and modification.

Claims (2)

1. a mobile terminal efficient data transfer method, is characterized in that, comprising:
Certificate server receives the logging request of user, obtain the identity licence of User Identity chip, and by escape way, described licence is verified, after the success of certificate server qualification identity licence, for user provides fiducial markers to accord with, for access application platform.
2. method according to claim 1, is characterized in that, described certificate server have comprise authentication ' unit and store transmission unit,
Wherein authentication ' unit provides licence verification and the authenticating transactions process of user; Authentication ' unit adopts concentrates checking, creates unified authentication center, for each application platform provides identity authentication service, carries out the acknowledgment of your inquiry of identity verify and effective status according to the licence in User Identity chip; Can access corresponding application platform by user after certification, this authentication ' unit provides identity authorization system to associate with the account information of application platform for authenticated user, obtains related information and cancel identity authorization system to associate with the account information of application platform; When application platform receives the logging request of user, will be redirected in certificate server; When user uses identity to log in application platform first, first associated with application platform account information by identity authorization system, the corresponding relation that the account information of identity information and application platform is preserved in this locality by certificate server is stored by encryption; In the non-login process first of user, carry out the verification of identity licence, proof of identity is accorded with by rear generation fiducial markers, confirm marker character validity, with make user use at every turn log in application platform time, certificate server directly reads local data, obtains the application platform account information that identity information maps; Wherein identity verification licence comprises authenticity and the legitimacy of identity verification information, then the result is back to authentication request side; After the identity information of user is proved to be successful, certificate server calculates marker character according to application platform condition code, identity information and timestamp, and the value of marker character is returned to client with the form of URL; The application platform condition code that reception application platform provides and marker character, the legitimacy of verification mark symbol; If marker character is proved to be successful, then return the account's list associated by application platform and identity;
Described storage transmission unit by safe transmission, operate and be stored as user safety guarantee environment is provided; Certificate revocation list buffer memory is set and provides inquiry service for application platform, upgrade the certificate revocation list of identity in nearest special time simultaneously; DES algorithm is adopted to be encrypted storage to data; The operation information formed in record server running; To server access information, the renewal of data in database, and the system failure carries out Real-Time Monitoring, and form journal file, cryptographic storage is in background data base; Information is prevented when Internet Transmission by malicious attack or intercepting and capturing by being encrypted transmission to data; Mutual middle use Transmission Encryption agreement between platform, has needing the data of transmission and expressly transfers ciphertext to, be sent to recipient.
CN201510872804.5A 2015-12-02 2015-12-02 Efficient data transmission method for mobile terminal Pending CN105429991A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510872804.5A CN105429991A (en) 2015-12-02 2015-12-02 Efficient data transmission method for mobile terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510872804.5A CN105429991A (en) 2015-12-02 2015-12-02 Efficient data transmission method for mobile terminal

Publications (1)

Publication Number Publication Date
CN105429991A true CN105429991A (en) 2016-03-23

Family

ID=55507932

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510872804.5A Pending CN105429991A (en) 2015-12-02 2015-12-02 Efficient data transmission method for mobile terminal

Country Status (1)

Country Link
CN (1) CN105429991A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107579969A (en) * 2017-08-31 2018-01-12 江西博瑞彤芸科技有限公司 A kind of user profile acquisition method
CN108512862A (en) * 2018-05-30 2018-09-07 博潮科技(北京)有限公司 Internet-of-things terminal safety certification control platform based on no certificates identified authentication techniques
CN108763929A (en) * 2018-05-16 2018-11-06 有时数联科技(北京)有限公司 A kind of method and system for data and application to be carried out with parallel security audit
CN109495458A (en) * 2018-10-31 2019-03-19 深圳市元征科技股份有限公司 A kind of method, system and the associated component of data transmission
CN111669361A (en) * 2019-03-08 2020-09-15 克洛纳测量技术有限公司 Method and system for secure communication between a field device and a terminal device of an automation system
CN112491836A (en) * 2020-11-16 2021-03-12 新华三技术有限公司合肥分公司 Communication system, method, device and electronic equipment
CN112787979A (en) * 2019-11-07 2021-05-11 北京地平线机器人技术研发有限公司 Internet of things equipment access control method and internet of things equipment access control device
CN114124545A (en) * 2021-11-25 2022-03-01 杭州摸象大数据科技有限公司 Data credible cochain and identity authentication terminal for supply chain finance

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2012120313A1 (en) * 2011-03-10 2012-09-13 Amethyst Cryptographic Services Limited A cryptographic system and method
CN102984127A (en) * 2012-11-05 2013-03-20 武汉大学 User-centered mobile internet identity managing and identifying method
CN103188248A (en) * 2011-12-31 2013-07-03 卓望数码技术(深圳)有限公司 Identity authentication system and method based on single sign-on
CN103259667A (en) * 2013-06-07 2013-08-21 北京邮电大学 Method and system for eID authentication on mobile terminal
CN104113412A (en) * 2013-04-22 2014-10-22 中国银联股份有限公司 PaaS platform-based identity authentication method and identity authentication apparatus

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2012120313A1 (en) * 2011-03-10 2012-09-13 Amethyst Cryptographic Services Limited A cryptographic system and method
CN103188248A (en) * 2011-12-31 2013-07-03 卓望数码技术(深圳)有限公司 Identity authentication system and method based on single sign-on
CN102984127A (en) * 2012-11-05 2013-03-20 武汉大学 User-centered mobile internet identity managing and identifying method
CN104113412A (en) * 2013-04-22 2014-10-22 中国银联股份有限公司 PaaS platform-based identity authentication method and identity authentication apparatus
CN103259667A (en) * 2013-06-07 2013-08-21 北京邮电大学 Method and system for eID authentication on mobile terminal

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107579969A (en) * 2017-08-31 2018-01-12 江西博瑞彤芸科技有限公司 A kind of user profile acquisition method
CN107579969B (en) * 2017-08-31 2020-12-01 江西博瑞彤芸科技有限公司 User information acquisition method
CN108763929A (en) * 2018-05-16 2018-11-06 有时数联科技(北京)有限公司 A kind of method and system for data and application to be carried out with parallel security audit
CN108763929B (en) * 2018-05-16 2020-08-21 有时数联科技(北京)有限公司 Method and system for performing parallel security audit on data and application
CN108512862A (en) * 2018-05-30 2018-09-07 博潮科技(北京)有限公司 Internet-of-things terminal safety certification control platform based on no certificates identified authentication techniques
CN108512862B (en) * 2018-05-30 2023-12-05 博潮科技(北京)有限公司 Internet of things terminal security authentication management and control platform based on certificate-free identification authentication technology
CN109495458A (en) * 2018-10-31 2019-03-19 深圳市元征科技股份有限公司 A kind of method, system and the associated component of data transmission
CN111669361A (en) * 2019-03-08 2020-09-15 克洛纳测量技术有限公司 Method and system for secure communication between a field device and a terminal device of an automation system
CN112787979A (en) * 2019-11-07 2021-05-11 北京地平线机器人技术研发有限公司 Internet of things equipment access control method and internet of things equipment access control device
CN112491836A (en) * 2020-11-16 2021-03-12 新华三技术有限公司合肥分公司 Communication system, method, device and electronic equipment
CN112491836B (en) * 2020-11-16 2022-04-22 新华三技术有限公司合肥分公司 Communication system, method, device and electronic equipment
CN114124545A (en) * 2021-11-25 2022-03-01 杭州摸象大数据科技有限公司 Data credible cochain and identity authentication terminal for supply chain finance

Similar Documents

Publication Publication Date Title
CN111429254B (en) Business data processing method and device and readable storage medium
CN110692214B (en) Method and system for ownership verification using blockchain
US11757641B2 (en) Decentralized data authentication
CN102647461B (en) Communication means based on HTTP, server, terminal
CN105429991A (en) Efficient data transmission method for mobile terminal
US20090240936A1 (en) System and method for storing client-side certificate credentials
CN104662864A (en) User-convenient authentication method and apparatus using a mobile authentication application
CN103179134A (en) Single sign on method and system based on Cookie and application server thereof
CN102834830A (en) Method for reading an attribute from an id token
US20110213959A1 (en) Methods, apparatuses, system and related computer program product for privacy-enhanced identity management
KR20120055728A (en) Method and apparatus for trusted authentication and logon
Dewanta et al. A mutual authentication scheme for secure fog computing service handover in vehicular network environment
CN103856468A (en) Authentication system and method
US9398024B2 (en) System and method for reliably authenticating an appliance
CN105681470A (en) Communication method, server and terminal based on hypertext transfer protocol
CN112905979B (en) Electronic signature authorization method and device, storage medium and electronic device
CN109981287A (en) A kind of code signature method and its storage medium
Alhaidary et al. Vulnerability analysis for the authentication protocols in trusted computing platforms and a proposed enhancement of the offpad protocol
Alzuwaini et al. An Efficient Mechanism to Prevent the Phishing Attacks.
Zhang et al. El passo: privacy-preserving, asynchronous single sign-on
CN104767740A (en) User platform credible authentication and access method
Schwarz et al. Feido: Recoverable FIDO2 tokens using electronic ids
JP5186648B2 (en) System and method for facilitating secure online transactions
CN114079645B (en) Method and device for registering service
CN105516111A (en) Intelligent device real-time data interaction method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20160323