CN106161710A - A kind of user account safety management system based on smart mobile phone - Google Patents
A kind of user account safety management system based on smart mobile phone Download PDFInfo
- Publication number
- CN106161710A CN106161710A CN201510199485.6A CN201510199485A CN106161710A CN 106161710 A CN106161710 A CN 106161710A CN 201510199485 A CN201510199485 A CN 201510199485A CN 106161710 A CN106161710 A CN 106161710A
- Authority
- CN
- China
- Prior art keywords
- submodule
- password
- user
- application program
- user account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Storage Device Security (AREA)
- Telephonic Communication Services (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The present invention provides a kind of user account safety management system based on smart mobile phone, including DBM, management module and card module;Described DBM, for providing the steganography storage of user account data and calling;Described management module, changes operation for providing the additions and deletions of system login interface and user to look into;Described card module, operates in website or the login of Application Program Interface, password amendment, account registration etc. for monitoring users.The present invention can with safe storage user account data, and need to fill in the website of username and password or Application Program Interface can be filled automatically, facilitates user to use on smart mobile phone, has ensured information security simultaneously.
Description
Technical field
The present invention relates to smart mobile phone technical field, a kind of user account safety management system based on smart mobile phone.
Background technology
In today that network is flourishing, a lot of websites could use after needing user to register.Owing to website is too many, the most difficult memory of username and password, so a lot of user uses same set of username and password to many websites, once the username and password of some websites is revealed, and the username and password of other websites also will be broken.And owing to the most complicated password is difficult to remember, most people uses simple password, and assailant can break through by the method for dictionary attack.Recently, there is a lot of website to produce user profile and reveal event, analyze the password wherein revealed it can be seen that most people uses simple passwords such as " 123456 ", the most dangerous.
Some users, in order to remember the password of complexity, can be stored in this locality decodement, but also be so unsafe, and if local computer or cell phone system are broken, information will be revealed.If password encryption preserves, need the when of use manually to decipher every time, so use very inconvenient.The general AES of existing code management device is the most fairly simple, and increases the inconvenient operation such as password, Modify password.Digital picture steganography is by the technology in image watermarking to picture, compared with traditional encryption technology, disguised higher.
In recent years, the usage amount of smart mobile phone alreadys more than personal computer, but also lacks easy to use on smart mobile phone, code management device that safety is high.
Summary of the invention
It is an object of the invention to provide a kind of user account safety management system based on smart mobile phone, improve the safety of local user's account data on smart mobile phone, be not related to network transmission.
The technical scheme is that
A kind of user account safety management system based on smart mobile phone, this system includes DBM, management module and card module;
Described DBM, for providing the steganography storage of user account data and calling the username and password that service, the network address at described user account packet purse rope station or the bag name of application program and this website or application program are corresponding for management module and card module;
User account data, for providing user's login interface and the data editing interface of this system, are increased, delete, search or revise operation by described management module;
Described card module, for monitoring website or Application Program Interface, when user needs to input username and password, automatically username and password edit box is filled, when user's Modify password, more it is newly stored in the password in DBM, when user registers new account, username and password corresponding to the login interface network address of website or the bag name of application program and this newly-built website or application program is stored in DBM.
Described user account safety management system based on smart mobile phone, described DBM includes verifying submodule, steganography submodule and extracting submodule, described management module includes logging in submodule and editor's submodule, and described card module includes filling submodule, change submodule and registration submodule;
Described checking submodule, the most correct for verifying system login password, after being proved to be successful, data encryption key is deciphered with system login password, and data encryption key is stored in the internal memory of smart mobile phone, it is additionally operable to the sensitive operation of verification management module and card module whether within the system login cipher memory time;
Described steganography submodule, for utilizing the data encryption key of storage in internal memory to be encrypted the user account data newly increasing or revising, the user account image watermarking after encryption is entered predetermined pictures by recycling image latent writing algorithm;
Described extraction submodule, for utilizing image latent writing algorithm to extract hiding the user account data into predetermined pictures, is sent to manage module or card module after the data encryption key deciphering of storage in recycling internal memory;
Described login submodule, for providing user's login interface of this system, system login password user inputted and the system login cipher memory time of setting are sent to verify submodule;
Described editor's submodule, for providing the data edition interface of this system, obtain user account data from extracting submodule, user account data are increased, delete, search or revise operation, and the user account data newly increasing or revising are sent to steganography submodule;
Described filling submodule, for monitoring the login interface of website or application program, when user needs to input username and password login, automatically identify the edit box filling username and password, and described edit box will be filled into from the username and password corresponding with this website or application program extracting submodule acquisition;
Described change submodule, for monitoring the password amendment interface of website or application program, when user's Modify password, is sent to steganography submodule by amended password;
Described registration submodule, for monitoring the register interface of website or application program, when user registers new account, generate the random string specifying figure place as the security password of new account, and username and password corresponding to the login interface network address of website or the bag name of application program and this newly-built website or application program is sent to steganography submodule.
Described user account safety management system based on smart mobile phone, described image latent writing algorithm is specially LSB algorithm.
As shown from the above technical solution, the present invention can with safe storage user account data, and need to fill in the website of username and password or Application Program Interface can be filled automatically, facilitates user to use on smart mobile phone, has ensured information security simultaneously.
Accompanying drawing explanation
Fig. 1 is the structural representation of the specific embodiment of the invention.
Detailed description of the invention
The present invention is further illustrated below in conjunction with the accompanying drawings with specific embodiment.
As shown in Figure 1, a kind of user account safety management system based on smart mobile phone, including DBM 1, management module 2 and card module 3, wherein, DBM 1 includes verifying submodule 11, steganography submodule 12 and extracting submodule 13, management module 2 includes logging in submodule 21 and editor's submodule 22, and card module 3 includes registering submodule 31, change submodule 32 and filling submodule 33.
Checking submodule 11, the hash value of the system login password that submodule 21 sends is logged in by using irreversible Secure Hash Algorithm (Safe Hash Algorithm) to calculate, and compare with the hash value of the system login password prestored, verify that the system login password that user inputs is the most correct.After being proved to be successful, decipher data encryption key with system login password, and data encryption key be stored in the internal memory of smart mobile phone for steganography submodule 12 and extract submodule 13 and call.
Checking submodule 11, is also responsible for checking whether the sensitive operation of management module 2 and card module 3 has permission, and the most whether carries out these operations within the system login cipher memory time.Sensitive operation refers to replicate password, Edit Password, check the operation such as cipher list, and " password " here refers to website or password corresponding to application program rather than the system login password of the present invention.
Steganography submodule 12, utilizes the data encryption key of storage in internal memory to be encrypted the user account data newly increasing or revising, and the user account image watermarking after encryption is entered predetermined pictures by recycling LSB algorithm.The most all of user account data are all to ensconce in a pictures on smart mobile phone, even if smart mobile phone is lost, assailant also can not get any effective information.The network address at user account packet purse rope station or the bag name of application program and this website or username and password corresponding to application program.The bag name of application program refers to application program unique designation on smart mobile phone.
Extracting submodule 13, utilize LSB algorithm to extract hiding the user account data into predetermined pictures, in recycling internal memory, the user account data extracted are decrypted by the data encryption key of storage, then pass to manage module 2 or card module 3.
Logging in submodule 21, it is provided that user's login interface of this system, user inputs login password, and selects to remember the time of password: 1 minute, 10 minutes, 30 minutes, 1 hour or 24 hours.System login password and the cipher memory time of selection that user is inputted by login submodule 21 are sent to verify submodule 11.After logining successfully, when carrying out sensitive operation within the time period selected, it is not necessary to log on.
Editor's submodule 22, the data edition interface of this system is provided, obtain user account data from extracting submodule 13, user account data are increased, delete, search or revise operation, and the user account data newly increasing or revising are sent to steganography submodule 12.
User uses the account number cipher process editing submodule 22 edit websites or application program as follows:
(1) user selects to check account number cipher list at the interface of editor's submodule 22;
(2) the most whether checking submodule 11 checks that the login of user last time is the most expired, within the system login cipher memory time arranged, if expired, then need again to log in, otherwise continue;
(3) extract submodule 13 to return to user account clear data edit submodule 22;
(4) user selects a record, Modify password, then clicks on storage;
(5) record of amendment is issued steganography submodule 12 by editor's submodule 22, and after encryption, steganography enters predetermined pictures.
Fill submodule 31, monitor website or the login interface of application program, when user needs to input username and password login, automatically identify the edit box filling username and password, and the username and password corresponding with this website or application program obtained from extraction submodule 13 is filled into edit box.When there is multiple account a website or application program, user can select account to fill, user can replicate this website or user name corresponding to application program or password simultaneously, need to carry out within the system login cipher memory time when wherein replicating password, otherwise need to re-enter system login password.
Change submodule 32, monitors the password amendment interface of website or application program, when listening to user and have modified password, after the user approval amended password is sent to steganography submodule 12.
Registration submodule 33, monitor website or the register interface of application program, when user registers new account, generate the random string specifying figure place as the security password of new account, and after the user approval username and password corresponding to the login interface network address of website or the bag name of application program and this newly-built website or application program is sent to steganography submodule 12.
When user operates in website or Application Program Interface, card module 3 is started working, from the above, use card module 3, can fill easily, change, newly-built username and password, sensitive operation needs again system login password authentification simultaneously, has reached good equilibrium, convenient use on smart mobile phone in safety and ease for use.
Card module 3 work process when user log-on webpage be exemplified below:
(1) user opens the login interface of Baidu in a browser, does not has account, goes register interface to fill in new user name, clicks on the suspended window of card module 3, selects to generate security password;
(2) the registration submodule 33 of card module 3 generates a random string specifying figure place, returns to user and makees new password;
(3) when user submits new user name and password to, pop-up dialogue box, remind whether user preserves new username and password;
(4) user clicks on and is, the steganography submodule 12 that the login interface network address of new Baidu's username and password and Baidu is sent to DBM 1 is preserved by registration submodule 33;
(5) user returns to the login interface of Baidu, and the login interface network address of Baidu is sent to the extraction submodule 13 of DBM 1 by the submodule 31 of filling of card module 3;
(6) extract submodule 13 and found the username and password that network address is corresponding, return to fill submodule 31;
(7) filling submodule 31 and be automatically filled with the list of username and password, user can directly log in and need not fill in password again.
It is exemplified below when user's Modify password in the application, the working method of card module 3:
(1) user opens Sina microblogging app, enters into Modify password interface;
(2) clicking on ACK button after fill in new password, the change submodule 32 of card module 3 detects Modify password, after user confirms to preserve amendment, Modify password request is sent to the steganography submodule 12 of DBM 1;
(3) steganography after amended recording of encrypted is entered particular picture by steganography submodule 12, covers former record.
The above embodiment is only to be described the preferred embodiment of the present invention; not the scope of the present invention is defined; on the premise of designing spirit without departing from the present invention; various deformation that technical scheme is made by those of ordinary skill in the art and improvement, all should fall in the protection domain that claims of the present invention determines.
Claims (3)
1. a user account safety management system based on smart mobile phone, it is characterised in that: this system includes DBM, management module and card module;
Described DBM, for providing the steganography storage of user account data for management module and card module and calling the username and password that service, the login interface network address at described user account packet purse rope station or the bag name of application program and this website or application program are corresponding;
User account data, for providing user's login interface and the data editing interface of this system, are increased, delete, search or revise operation by described management module;
Described card module, for monitoring website or Application Program Interface, when user needs to input username and password, automatically username and password edit box is filled, when user's Modify password, more it is newly stored in the password in DBM, when user registers new account, username and password corresponding to the login interface network address of website or the bag name of application program and this newly-built website or application program is stored in DBM.
User account safety management system based on smart mobile phone the most according to claim 1, it is characterized in that: described DBM includes verifying submodule, steganography submodule and extracting submodule, described management module includes logging in submodule and editor's submodule, and described card module includes filling submodule, change submodule and registration submodule;
Described checking submodule, the most correct for verifying system login password, after being proved to be successful, data encryption key is deciphered with system login password, and data encryption key is stored in the internal memory of smart mobile phone, it is additionally operable to the sensitive operation of verification management module and card module whether within the system login cipher memory time;
Described steganography submodule, for utilizing the data encryption key of storage in internal memory to be encrypted the user account data newly increasing or revising, the user account image watermarking after encryption is entered predetermined pictures by recycling image latent writing algorithm;
Described extraction submodule, for utilizing image latent writing algorithm to extract hiding the user account data into predetermined pictures, is sent to manage module or card module after the data encryption key deciphering of storage in recycling internal memory;
Described login submodule, for providing user's login interface of this system, system login password user inputted and the system login cipher memory time of setting are sent to verify submodule;
Described editor's submodule, for providing the data edition interface of this system, obtain user account data from extracting submodule, user account data are increased, delete, search or revise operation, and the user account data newly increasing or revising are sent to steganography submodule;
Described filling submodule, for monitoring the login interface of website or application program, when user needs to input username and password login, automatically identify the edit box filling username and password, and described edit box will be filled into from the username and password corresponding with this website or application program extracting submodule acquisition;
Described change submodule, for monitoring the password amendment interface of website or application program, when user's Modify password, is sent to steganography submodule by amended password;
Described registration submodule, for monitoring the register interface of website or application program, when user registers new account, generate the random string specifying figure place as the security password of new account, and username and password corresponding to the login interface network address of website or the bag name of application program and this newly-built website or application program is sent to steganography submodule.
User account safety management system based on smart mobile phone the most according to claim 2, it is characterised in that: described image latent writing algorithm is specially LSB algorithm.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510199485.6A CN106161710B (en) | 2015-04-24 | 2015-04-24 | A kind of user account safety management system based on smart phone |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510199485.6A CN106161710B (en) | 2015-04-24 | 2015-04-24 | A kind of user account safety management system based on smart phone |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106161710A true CN106161710A (en) | 2016-11-23 |
| CN106161710B CN106161710B (en) | 2019-02-15 |
Family
ID=57346387
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510199485.6A Active CN106161710B (en) | 2015-04-24 | 2015-04-24 | A kind of user account safety management system based on smart phone |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106161710B (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790686A (en) * | 2017-02-16 | 2017-05-31 | 上海斐讯数据通信技术有限公司 | A kind of user name password fill method and system |
| CN109660348A (en) * | 2018-12-03 | 2019-04-19 | 东华大学 | A kind of cryptographic system |
| CN110383317A (en) * | 2017-03-07 | 2019-10-25 | 万事达卡国际公司 | For recording the method and system of point-to-point trading processing |
| CN110610071A (en) * | 2019-08-20 | 2019-12-24 | 广州海颐信息安全技术有限公司 | Privileged account management method and device based on screen identification |
| CN110807536A (en) * | 2019-09-30 | 2020-02-18 | 北京三快在线科技有限公司 | Account information association method and device, electronic equipment and storage medium |
| CN116244684A (en) * | 2023-05-11 | 2023-06-09 | 深圳奥联信息安全技术有限公司 | Password management method, password management system, computer equipment and storage medium |
| CN117540364A (en) * | 2023-11-22 | 2024-02-09 | 国电南瑞南京控制系统有限公司 | Cloud ECS (electronic control system) operating system password intelligent generation batch modification system and method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6480903B1 (en) * | 1995-08-24 | 2002-11-12 | Compaq Information Technologies Group, L.P. | Hardware component interface for desktop computer management systems |
| CN1598791A (en) * | 2003-09-15 | 2005-03-23 | 联想(北京)有限公司 | Method of information automatic collecting and playback |
-
2015
- 2015-04-24 CN CN201510199485.6A patent/CN106161710B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6480903B1 (en) * | 1995-08-24 | 2002-11-12 | Compaq Information Technologies Group, L.P. | Hardware component interface for desktop computer management systems |
| CN1598791A (en) * | 2003-09-15 | 2005-03-23 | 联想(北京)有限公司 | Method of information automatic collecting and playback |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106790686A (en) * | 2017-02-16 | 2017-05-31 | 上海斐讯数据通信技术有限公司 | A kind of user name password fill method and system |
| CN110383317A (en) * | 2017-03-07 | 2019-10-25 | 万事达卡国际公司 | For recording the method and system of point-to-point trading processing |
| US11456868B2 (en) | 2017-03-07 | 2022-09-27 | Mastercard International Incorporated | Method and system for recording point to point transaction processing |
| CN109660348A (en) * | 2018-12-03 | 2019-04-19 | 东华大学 | A kind of cryptographic system |
| CN110610071A (en) * | 2019-08-20 | 2019-12-24 | 广州海颐信息安全技术有限公司 | Privileged account management method and device based on screen identification |
| CN110807536A (en) * | 2019-09-30 | 2020-02-18 | 北京三快在线科技有限公司 | Account information association method and device, electronic equipment and storage medium |
| CN116244684A (en) * | 2023-05-11 | 2023-06-09 | 深圳奥联信息安全技术有限公司 | Password management method, password management system, computer equipment and storage medium |
| CN117540364A (en) * | 2023-11-22 | 2024-02-09 | 国电南瑞南京控制系统有限公司 | Cloud ECS (electronic control system) operating system password intelligent generation batch modification system and method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106161710B (en) | 2019-02-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106161710A (en) | A kind of user account safety management system based on smart mobile phone | |
| US9729540B2 (en) | System and method for user authentication | |
| CN109587162B (en) | Login verification method, device, terminal, password server and storage medium | |
| US10491588B2 (en) | Local and remote access apparatus and system for password storage and management | |
| CN103401689B (en) | Positional information based dynamic token and encryption method thereof | |
| CN104917716B (en) | Page security management method and device | |
| US9208304B2 (en) | Method for web service user authentication | |
| TWI512526B (en) | System and method for resetting password | |
| CN101272237A (en) | Method and system for automatically generating and filling login information | |
| CN103813334A (en) | Right control method and right control device | |
| KR20140042905A (en) | Identity authentication and management device and method thereof | |
| CN107871081A (en) | A kind of computer information safe system | |
| CN102325026A (en) | Account password secure encryption system | |
| CN107257349A (en) | Cipher encrypting method and system based on unidirectional and public key encryption algorithm | |
| CN115795538B (en) | Anti-desensitization method, device, computer equipment and storage medium for desensitizing document | |
| CN106100851A (en) | Password management system, intelligent wristwatch and cipher management method thereof | |
| CN106549759A (en) | Identity identifying method and device | |
| CN1494686A (en) | User identification with improved password input method | |
| CN102739404A (en) | Method and system for managing password | |
| CN102938033A (en) | System for enhancing safety of U shield for bank and application method thereof | |
| CN107885986A (en) | A kind of form filling method, form data store method and device | |
| US20190109710A1 (en) | System and method for randomizing hidden messages in digital files | |
| TWI585606B (en) | System and method for authentication | |
| US20210211415A1 (en) | Password protection in a computing environment | |
| CN107197075A (en) | Clean boot means of defence, device and computer-readable recording medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |