CN107276767A - A kind of time type dynamic token system and authentication method - Google Patents

A kind of time type dynamic token system and authentication method Download PDF

Info

Publication number
CN107276767A
CN107276767A CN201710645080.XA CN201710645080A CN107276767A CN 107276767 A CN107276767 A CN 107276767A CN 201710645080 A CN201710645080 A CN 201710645080A CN 107276767 A CN107276767 A CN 107276767A
Authority
CN
China
Prior art keywords
dynamic
token
time type
dynamic password
time
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710645080.XA
Other languages
Chinese (zh)
Inventor
张坤
贾楠
刘静
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Bank of China Ltd
Original Assignee
Bank of China Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bank of China Ltd filed Critical Bank of China Ltd
Priority to CN201710645080.XA priority Critical patent/CN107276767A/en
Publication of CN107276767A publication Critical patent/CN107276767A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • H04L63/0838Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0872Generation of secret information including derivation or calculation of cryptographic keys or passwords using geo-location information, e.g. location data, time, relative position or proximity to other entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/12Transmitting and receiving encryption devices synchronised or initially set up in a particular manner

Abstract

The invention provides a kind of time type dynamic token system and authentication method, including:Time type dynamic token device generates the first dynamic password, and the first dynamic password described in voice broadcast according to token key and dynamic factor;Certificate server generates the second dynamic password according to the token key and the certificate server current time, and compare the first dynamic password and the second dynamic password, if first dynamic password is matched with second dynamic password, certification success, transaction is completed;If first dynamic password is mismatched with second dynamic password, certificate server initiates the message of dynamic factor time synchronized to the time type dynamic token device.The present invention passes through voice broadcast and multilingual selection function, meet use demand of the different user to time type dynamic token in financial transaction, the method for initiating dynamic factor time synchronized from certificate server to time type dynamic token device simultaneously, maximum magnitude is avoided because time type dynamic token device fails with financial transaction caused by time offset, is met user and is normally transferred accounts demand.

Description

A kind of time type dynamic token system and authentication method
Technical field
The present invention relates to information security field, more particularly to a kind of time type dynamic token system and authentication method.
Background technology
Dynamic token OTP (One-time Password) is the terminal for generating dynamic password.OTP is according to special Algorithm generates one and combined with time correlation, uncertain random digit at regular intervals, i.e. dynamic password, Mei Gedong State password is once effective.It is widely used the different fields such as Net silver, network game, telecom operators, E-Government, enterprise at present. In the prior art, dynamic-password technique is broadly divided into synchronization Password Technology (i.e. time synchronized and event synchronization) and asynchronous password Technology (i.e. challenge-response mode).Shown after dynamic token generation dynamic password by LCD display, user passes through The dynamic password that dynamic token is generated is input to terminal to realize that the identity to user is verified.Online financial transaction is used Time type dynamic token ensure as E-Security, but at present each row provide time type dynamic token display screen Curtain is small, as shown in figure 1, and because the numerical value that safety requirements time type token is shown just is automatically updated at regular intervals.And portion Divide people due to eye eyesight reason (particularly old man), obtain dynamic password and be inconvenient.Time type dynamic token is having simultaneously Situations such as magnetic field, high temperature, concussion, immersion, easily produces the uncertain skew of clock, and offseting conference causes time tag to fail Safety assurance can not be carried out to financial transaction, depot repair can only be carried out.The not good environment of eye eyesight how is set still to use Dynamic token is verified to its identity, and time type dynamic token Problem of Failure is prior art urgent problem to be solved.
The content of the invention
In order to solve problems of the prior art, the present invention proposes a kind of time type dynamic token system and certification Method.The present invention reports function by increasing multi-language voice to time type dynamic token, solves different user dynamic to time type The use demand of state token, causes time tag to fail while solving clock skew by dynamic factor time synchronized and crossing conference The problem of.
The present invention provides a kind of time type dynamic token system, including:Time type dynamic token device and certificate server;
The time type dynamic token device, for according to token key and the dynamic mouth of the first dynamic factor generation first Order, and the first dynamic password described in voice broadcast;
The certificate server, for generating the second dynamic password according to the token key and the second dynamic factor, and Compare first dynamic password and the second dynamic password.
In one embodiment, the certificate server is additionally operable to after Fail Transaction, to the time type dynamic token Device initiates dynamic factor time synchronized.
In one embodiment, the time type dynamic token device, including:Main program module, LED processing modules, language Sound processing module, key-press module, usb interface module, loudspeaker module and volume adjusting module;
The main program module is connected with the LED processing modules, the speech processing module, the key-press module, institute State usb interface module, the loudspeaker module and the volume adjusting module;
The main program module, for generating the first dynamic password according to the token key and the dynamic factor;
The speech processing module includes:Voice output control unit and audio conversion unit;
The voice output control unit, voice integrity is reported for checking;
The audio conversion unit, for finding correspondence audio data file according to the first dynamic password numeral, drives The dynamic loudspeaker pronunciation;
The key-press module includes:Report language button, voice button and close button;
The usb interface module, is connected by access network device with the certificate server, for receiving the certification The dynamic factor time synchronized that server is initiated.
In one embodiment, the LED processing modules include:LED decoding units and LED display unit;
The LED decoding units, for the binary coding of the first dynamic password to be translated into the decimal system;
The LED display unit, for showing the first dynamic password.
The time type dynamic token system that the present invention is provided, can solve user's use demands different in the prior art, Support by voice button and close button and independently choose whether to carry out voice broadcast, and report language button selection correspondence the The report language of one dynamic password, and report volume can voluntarily adjust.
The embodiment of the present invention additionally provides a kind of time type dynamic token authentication method, including:
Time type dynamic token device generates the first dynamic password according to the token key and the first dynamic factor, and sentences It is disconnected whether to need voice broadcast;
The certificate server generates the second dynamic password according to the token key and the second dynamic factor;
The certificate server compares first dynamic password and second dynamic password, judge whether to it is described when Between type dynamic token initiate dynamic factor time synchronized.
In one embodiment, judge whether to need voice broadcast, including:
Judge whether the voice button is triggered, if it is, carrying out voice broadcast.
In one embodiment, in addition to, according to the language of report, pre-estimation is reported first dynamic password and taken Between, and check the integrality for reporting voice.
In one embodiment, the integrality for checking report voice, including:
If the first dynamic password time described in voice broadcast is less than or equal to dynamic token transformation period, audio file is selected Carry out voice broadcast.
In one embodiment, selection audio file carries out voice broadcast, including:
Correspondence audio data file is found by language rule is reported according to first dynamic password numeral, correspondence language is reported First dynamic password of speech.
In one embodiment, judge whether to initiate dynamic factor time synchronized to the time type dynamic token device, Including:
Judge whether first dynamic password matches with second dynamic password, if first dynamic password with Second dynamic password is mismatched, and initiates dynamic factor time synchronized.
The time type dynamic token authentication method that the present invention is provided, is solved in the prior art because time tag is in complexity In the environment of can generation time skew and be continuously increased with time offset, reach that certain threshold values can cause gold in offset Melt the problem of transaction reports an error.The time type dynamic token authentication method that the present invention is provided, by network access authentication server simultaneously The system time for obtaining certificate server carries out time synchronized, is reprocessed with avoiding time type dynamic token from carrying out go back to factory, maximum Fault tolerant mechanism meets user and normally transferred accounts the significant advantage of demand.
For current certain customers are inconvenient for use and dynamic token time offset is continuously increased and causes depot repair Problem, the embodiments of the invention provide a kind of time type dynamic token system and authentication method, time type dynamic token device root The first dynamic password, and the first dynamic password described in voice broadcast are generated according to token key and dynamic factor;Certificate server root The second dynamic password is generated according to the token key and the certificate server current time, and compares the first dynamic password and the Two dynamic passwords, if first dynamic password and second dynamic password are mismatched, the certificate server is to described Time type dynamic token device initiates dynamic factor time synchronized.The present invention is full by voice broadcast and multilingual selection function Use demand of the sufficient different user in financial transaction to time type dynamic token device, while from certificate server to time type The method that dynamic token initiates dynamic factor time synchronized, maximum magnitude is avoided because dynamic token is with the time Financial transaction failure caused by skew, meets user and normally transfers accounts demand.
Brief description of the drawings
In order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, below will be to embodiment or existing There is the accompanying drawing used required in technology description to be briefly described, it should be apparent that, drawings in the following description are only this Some embodiments of invention, for those of ordinary skill in the art, on the premise of not paying creative work, can be with Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is the time type dynamic token frame diagram of prior art;
Fig. 2 is the time type dynamic token device appearance figure of the embodiment of the present invention;
Fig. 3 is the time type dynamic token system construction drawing of the embodiment of the present invention;
Fig. 4 is the flow chart of the embodiment of the present invention;
Fig. 5 is the voice broadcast flow chart of the embodiment of the present invention.
Fig. 6 is the time synchronized flow chart of another embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.It is based on Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of creative work is not made Embodiment, belongs to the scope of protection of the invention.
For prior art partial user is inconvenient for use and dynamic token time offset is continuously increased and causes to return factory The problem of maintenance, the invention provides a kind of time type dynamic token system and authentication method, the time type dynamic token system Including:Time type dynamic token device and certificate server.
Time type dynamic token device, its surface structure as shown in Fig. 2 including:LED display, volume knob, USB, report language button, talk button and X button.
Time type dynamic token system, its structure chart as shown in figure 3, including:Time type dynamic token device and certification clothes Business device.Wherein, time type dynamic token device include main program module, LED processing modules, speech processing module, key-press module, Usb interface module, loudspeaker module and volume adjusting module are collectively constituted.
In one embodiment, key and time of the time type dynamic token device main program module according to time type dynamic token Type dynamic token dynamic factor-time (being designated as the first dynamic factor) (is designated as according to the algorithm generation dynamic password of dynamic password First dynamic password).
In one embodiment, the LED processing modules of time type dynamic token device include:LED decoding units and LED displays are single Member.
The effect of the LED decoding units is the first dynamic mouth for generating time type dynamic token device main program module The binary coding of order translates to decimal coded form, is then moved by LED display unit by the first of decimal coded form State password is shown on a display screen.
In one embodiment, the speech processing module of time type dynamic token device includes:Voice output control unit and sound Frequency converting unit.
The effect of the voice output control unit is to judge whether the first dynamic password meets the integrality of voice broadcast It is required that.
The effect of audio conversion unit is the first dynamic mouth generated according to time type dynamic token device main program module The digital information of order finds correspondence audio data file, is pronounced by drive the speaker unit, and can pass through volume Adjustment module adjusts the size of broadcast sound volume.
In one embodiment, the key-press module of time type dynamic token device includes:Report language button, voice broadcast button And close button.
The effect for reporting language button is to be selected to report the language of the first dynamic password according to user's request, and the present invention is reported Language supports any language such as Chinese, English, Russian, Korean, Japanese.
The effect of voice broadcast button and closing button is respectively to open voice broadcast and closing voice broadcast.User can be with Selection is turned on and off voice broadcast according to demand, to meet the demand of different user under varying environment.
In one embodiment, the effect of the usb interface module of time type dynamic token device includes:On the one hand it is dynamic for time type State token device charges;Another aspect usb interface module is dynamic to time type by access network device certified transmission server Token device initiates the message of dynamic factor time synchronized.It is any that access network device of the present invention includes computer and mobile phone etc. It is a kind of can be with the equipment of access network.
The time type dynamic token system of the present invention is by increasing voice broadcast function and synchronous with certificate server Mechanism, solves user's use demands different in the prior art, supports user independently to be selected by voice button and closing button Select and whether carry out voice broadcast, and report the report language of language button selection the first dynamic password of correspondence, and the sound reported Amount can be adjusted voluntarily.Solve simultaneously because of situations such as time type dynamic token is having magnetic field, high temperature, concussion, immersion easily to produce The uncertain skew of raw clock, offseting conference causes time tag failure can not carry out safety assurance to financial transaction, can only The problem of carrying out depot repair.
Based on conceiving with above-mentioned time type dynamic token system identical application, the application provides a kind of time type and dynamically made The authentication method of board, as described in example below.Due to the time type dynamic token authentication method solve problem principle with Time type dynamic token system is similar, therefore the implementation of the authentication method of the time type dynamic token may refer to time type dynamic The implementation of token system, repeats part and repeats no more.
In the embodiment of the present invention there is provided a kind of authentication method of time type dynamic token, its flow chart as shown in figure 4, Comprise the following steps:
S401:Time type dynamic token device is according to the token key and the dynamic of first dynamic factor generation first Password, and judge whether to need voice broadcast;
S402:The certificate server is according to the token key and the dynamic mouth of second dynamic factor generation second Order;
S403:The certificate server compares first dynamic password and the second dynamic password, judges whether to described Time type dynamic token device initiates dynamic factor time synchronized.
Flow as shown in Figure 4 understand, the present invention according to time type dynamic token device token key and first dynamic because Son the first dynamic password of generation, and judge whether to need the first dynamic password described in voice broadcast, at the same certificate server according to The token key of time type dynamic token device and second dynamic factor generate the second dynamic password, compare described first and move Whether state password matches with the second dynamic password, and dynamic to time type when the first dynamic password and the second dynamic password are mismatched State token device initiates dynamic factor time synchronized message.The present embodiment can meet different user in gold by voice broadcast Melt the use demand to time type dynamic token in transaction, while initiating dynamic from certificate server to time type dynamic token device The method of state factor time synchronized, maximum magnitude avoid due to dynamic token with caused by time offset finance hand over Easily failure, meets user and normally transfers accounts demand.
In above-mentioned S401, token key corresponds to the token key of time type dynamic token device, the first dynamic factor pair It should be generated in the system time of time type dynamic token device, the first dynamic password by time type dynamic token device, voice is broadcast Report for reporting first dynamic password.
In one embodiment, time type dynamic token device can be according to token key and the first dynamic factor according to dynamic mouth Algorithm is made to generate first dynamic password, and the first dynamic mouth according to user's request judges whether to need voice broadcast Order.
Fig. 5 is the authentication method particular flow sheet of the time type dynamic token of one embodiment of the invention.As shown in figure 5, with Family first turns on voice broadcast function, and the language reported is selected according to demand.Then the dynamic password of pre-estimation voice broadcast first The required time, compare the size of voice broadcast time and dynamic token transformation period.Made if the voice broadcast time is less than dynamic Board transformation period, then select audio file voice corresponding with reporting language to report first dynamic password;If voice broadcast Time is more than dynamic token transformation period, then abandons this voice broadcast, compares language again after waiting next dynamic token change Sound reports time and the size of dynamic token transformation period.After voice broadcast is finished, voice broadcast function, Huo Zhetong are closed automatically Cross user's manual-lock voice broadcast function.
When it is implemented, as shown in figure 5, opening voice broadcast function according to user's request or closing voice broadcast work( Can, the present invention is not limited.
When it is implemented, as shown in S501, user is broadcast by triggering the voice voice that presses switch to open according to scene demand Report achievement energy.
When it is implemented, as shown in S502, time type dynamic token device supports user to select the language reported according to demand Speech.The present invention reports language and supports any language such as Chinese, English, Russian, Korean, Japanese, domestic and overseas to adapt to The different application demand of client.
When it is implemented, as shown in S503, being selected in user after different report language, time type dynamic token device root According to six dynamic password numerals of language selected by user, the time required to the first dynamic password described in pre-estimation voice broadcast. Dynamic password is six bit digitals in the present embodiment, and the present invention is not limited.
When it is implemented, as shown in S504, time type dynamic token device is made by comparing the voice broadcast time with dynamic The size of board transformation period, realizes the inspection to reporting voice integrity.Made if the voice broadcast time is less than or equal to dynamic Board transformation period, performs S505;If the voice broadcast time is more than dynamic token transformation period, S506 is performed.
When it is implemented, as shown in S505, the report that time type dynamic token device is selected according to user in above-mentioned S502 Language, finds the corresponding audio file of the first dynamic password of report.
When it is implemented, as shown in S506, time type dynamic token device abandons this voice broadcast, dynamic next time is waited S504 is reentered after token change.
When it is implemented, as shown in S507, time type dynamic token device is according to the audio selected in above-mentioned steps S505 File, drive the speaker reports first dynamic password of correspondence language.
When it is implemented, as shown in S508, after voice broadcast is finished, voice broadcast function is closed automatically, or by using Family manual-lock voice broadcast function.Therefore, time type dynamic token device had not only improved confidentiality but also had ensured the privacy of client Demand.
In above-mentioned S402, token key corresponds to the token key of time type dynamic token device, the second dynamic factor pair It should be generated in the system time of certificate server, the second dynamic password by the certificate server.
In one embodiment, as shown in fig. 6, the certificate server saves the token key, when User logs in Net silver After system, the time type dynamic token device information that the user binds is delivered to certificate server by internet banking system, described Certificate server reads the token key of the time type dynamic token device bound in the user.Certificate server is according to institute State token key and the second dynamic factor, according to the time type dynamic token device inside identical dynamic password algorithm, Generate the second dynamic password.
In above-mentioned S403, the first dynamic password is generated by time type dynamic token device, and the second dynamic password is recognized by described Demonstrate,prove server generation.
In one embodiment, the first dynamic password that the certificate server is generated by comparison time type dynamic token The second dynamic password generated with certificate server, when judging whether to time type dynamic token device initiation dynamic factor Between it is synchronous.If first dynamic password is mismatched with second dynamic password, the certificate server is dynamic to time type State token device initiates the message of dynamic factor time synchronized.
Fig. 6 is the authentication method particular flow sheet of the time type dynamic token of another embodiment of the present invention.As shown in fig. 6, Time type dynamic token device is moved according to dynamic token key and dynamic factor-time 1 according to dynamic password algorithm generation first State password, and the dynamic password of voice broadcast first.Because the token that certificate server saves time type dynamic token device is close Key, after the login window for the first dynamic password input internet banking system that user produces time type dynamic token device, leads to Cross time type dynamic token information that internet banking system binds the user and the first dynamic password is delivered to certificate server.Certification Server read the time type dynamic token device bound in the user token key and certificate server system it is current when Between (be designated as the second dynamic factor).Certificate server system generates the first dynamic password identical according to time type dynamic token Dynamic password algorithm, calculates the second dynamic password.In the present embodiment, dynamic password acquiescence changes once per 60s, and time type is moved State token device generates dynamic password transformation period after first dynamic password and starts countdown, and the present invention is not limited.
When it is implemented, as shown in fig. 6, because the first dynamic password and the second dynamic password use identical dynamic key And dynamic password algorithm generation, when the difference of the dynamic factor-time 1 and the dynamic factor-time 2 become more than dynamic password During the change time, then it is assumed that first dynamic password and second dynamic password are mismatched, now certificate server is to the time Type dynamic token sends the message for starting the synchronous dynamic factor-time;When the dynamic factor-time 1 and the dynamic When the difference of the factor-time 2 is less than or equal to dynamic password transformation period, then it is assumed that the institute generated using identical dynamic password algorithm State the first dynamic password to match with the described second dynamic mouth, now bank transaction system certification success, the transaction of user is completed.
The time type dynamic token authentication method of the present invention, by voice broadcast and dynamic factor time synchronized, is solved Different clients are inconvenient for use to time type dynamic token, and clock skew it is excessive cause dynamic password fail and transaction error Problem.
It should be understood by those skilled in the art that, embodiments of the invention can be provided as method, system or computer program Product.Therefore, the present invention can be using the reality in terms of complete hardware embodiment, complete software embodiment or combination software and hardware Apply the form of example.Moreover, the present invention can be used in one or more computers for wherein including computer usable program code The computer program production that usable storage medium is implemented on (including but is not limited to magnetic disk storage, CD-ROM, optical memory etc.) The form of product.
The present invention is the flow with reference to method according to embodiments of the present invention, equipment (system) and computer program product Figure and/or block diagram are described.It should be understood that can be by every first-class in computer program instructions implementation process figure and/or block diagram Journey and/or the flow in square frame and flow chart and/or block diagram and/or the combination of square frame.These computer programs can be provided The processor of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing devices is instructed to produce A raw machine so that produced by the instruction of computer or the computing device of other programmable data processing devices for real The device for the function of being specified in present one flow of flow chart or one square frame of multiple flows and/or block diagram or multiple square frames.
These computer program instructions, which may be alternatively stored in, can guide computer or other programmable data processing devices with spy Determine in the computer-readable memory that mode works so that the instruction being stored in the computer-readable memory, which is produced, to be included referring to Make the manufacture of device, the command device realize in one flow of flow chart or multiple flows and/or one square frame of block diagram or The function of being specified in multiple square frames.
These computer program instructions can be also loaded into computer or other programmable data processing devices so that in meter Series of operation steps is performed on calculation machine or other programmable devices to produce computer implemented processing, thus in computer or The instruction performed on other programmable devices is provided for realizing in one flow of flow chart or multiple flows and/or block diagram one The step of function of being specified in individual square frame or multiple square frames.
Apply specific embodiment in the present invention to be set forth the principle and embodiment of the present invention, above example Explanation be only intended to help to understand the method and its core concept of the present invention;Simultaneously for those of ordinary skill in the art, According to the thought of the present invention, it will change in specific embodiments and applications, in summary, in this specification Appearance should not be construed as limiting the invention.

Claims (10)

1. a kind of time type dynamic token system, it is characterised in that including:Time type dynamic token device and certificate server;
The time type dynamic token device, for generating the first dynamic password according to token key and the first dynamic factor, and First dynamic password described in voice broadcast;
The certificate server, for generating the second dynamic password according to the token key and the second dynamic factor, and is compared First dynamic password and the second dynamic password.
2. time type dynamic token system according to claim 1, the certificate server is additionally operable to after Fail Transaction, Dynamic factor time synchronized is initiated to the time type dynamic token device.
3. time type dynamic token system according to claim 1, it is characterised in that the time type dynamic token device Including:Main program module, LED processing modules, speech processing module, key-press module, usb interface module, loudspeaker module and sound Measure adjustment module;
The main program module and the LED processing modules, the speech processing module, the key-press module, the USB interface Module, the loudspeaker module and volume adjusting module connection;
The main program module, for generating the first dynamic password according to the token key and the dynamic factor;
The speech processing module includes:Voice output control unit and audio conversion unit;
The voice output control unit, voice integrity is reported for checking;
The audio conversion unit, for finding correspondence audio data file according to the first dynamic password numeral, drives institute State loudspeaker pronunciation;
The key-press module includes:Report language button, voice button and close button;
The usb interface module, is connected by access network device with the certificate server, for transmitting the authentication service The message for the dynamic factor time synchronized that device is initiated.
4. time type dynamic token system according to claim 3, it is characterised in that the LED processing modules include: LED decoding units and LED display unit;
The LED decoding units, for the binary coding of the first dynamic password to be translated into the decimal system;
The LED display unit, for showing the first dynamic password.
5. a kind of time type dynamic token authentication method, it is characterised in that including:
Time type dynamic token device generates the first dynamic password according to the token key and the first dynamic factor, and judgement is It is no to need voice broadcast;
The certificate server generates the second dynamic password according to the token key and the second dynamic factor;
The certificate server compares first dynamic password and second dynamic password, is judged whether according to comparison result Dynamic factor time synchronized is initiated to the time type dynamic token device.
6. time type dynamic token authentication method according to claim 5, it is characterised in that judge whether to need voice to broadcast Report, including:
Judge whether the voice button is triggered, if it is, carrying out voice broadcast.
7. time type dynamic token authentication method according to claim 6, it is characterised in that also include:Broadcast according to selection The language of report, the time required to first dynamic password is reported in pre-estimation, and checks the integrality for reporting voice.
8. time type dynamic token authentication method according to claim 7, it is characterised in that voice is reported in the inspection Integrality, including:
If the first dynamic password time described in voice broadcast is less than or equal to dynamic token transformation period, selection audio file is carried out Voice broadcast.
9. time type dynamic token authentication method according to claim 8, it is characterised in that selection audio file carries out language Sound is reported, including:
Correspondence audio data file is found by language rule is reported according to first dynamic password numeral, correspondence language is reported First dynamic password.
10. time type dynamic token authentication method according to claim 5, it is characterised in that judge whether to it is described when Between type dynamic token initiate dynamic factor time synchronized, including:
Judge whether first dynamic password matches with second dynamic password, if first dynamic password with it is described Second dynamic password is mismatched, and initiates dynamic factor time synchronized.
CN201710645080.XA 2017-08-01 2017-08-01 A kind of time type dynamic token system and authentication method Pending CN107276767A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710645080.XA CN107276767A (en) 2017-08-01 2017-08-01 A kind of time type dynamic token system and authentication method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710645080.XA CN107276767A (en) 2017-08-01 2017-08-01 A kind of time type dynamic token system and authentication method

Publications (1)

Publication Number Publication Date
CN107276767A true CN107276767A (en) 2017-10-20

Family

ID=60075610

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710645080.XA Pending CN107276767A (en) 2017-08-01 2017-08-01 A kind of time type dynamic token system and authentication method

Country Status (1)

Country Link
CN (1) CN107276767A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109166199A (en) * 2018-07-06 2019-01-08 嘟嘟物联网(深圳)有限公司 A kind of generation method of password, device and equipment
CN111817998A (en) * 2019-04-10 2020-10-23 阿里巴巴集团控股有限公司 Information authentication processing method, device and system and electronic equipment
WO2022257108A1 (en) * 2021-06-11 2022-12-15 华为技术有限公司 Method for updating vehicle-to-everything (v2x) communication key, and communication apparatus

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140136847A1 (en) * 2007-05-31 2014-05-15 Bby Solutions, Inc Security and authentication systems and methods for personalized portable devices and associated systems
CN204103934U (en) * 2014-09-24 2015-01-14 飞天诚信科技股份有限公司 Voice dynamic token
CN104301109A (en) * 2014-09-24 2015-01-21 飞天诚信科技股份有限公司 Working method of dynamic voice token
CN104915587A (en) * 2015-04-28 2015-09-16 苏州锟恩电子科技有限公司 Dynamic token
CN105577650A (en) * 2015-12-16 2016-05-11 北京握奇智能科技有限公司 Remote time synchronization method and system of one-time password (OTP)
CN106911479A (en) * 2017-03-22 2017-06-30 北京华大信安科技有限公司 A kind of security certification system, method and terminal device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140136847A1 (en) * 2007-05-31 2014-05-15 Bby Solutions, Inc Security and authentication systems and methods for personalized portable devices and associated systems
CN204103934U (en) * 2014-09-24 2015-01-14 飞天诚信科技股份有限公司 Voice dynamic token
CN104301109A (en) * 2014-09-24 2015-01-21 飞天诚信科技股份有限公司 Working method of dynamic voice token
CN104915587A (en) * 2015-04-28 2015-09-16 苏州锟恩电子科技有限公司 Dynamic token
CN105577650A (en) * 2015-12-16 2016-05-11 北京握奇智能科技有限公司 Remote time synchronization method and system of one-time password (OTP)
CN106911479A (en) * 2017-03-22 2017-06-30 北京华大信安科技有限公司 A kind of security certification system, method and terminal device

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109166199A (en) * 2018-07-06 2019-01-08 嘟嘟物联网(深圳)有限公司 A kind of generation method of password, device and equipment
CN109166199B (en) * 2018-07-06 2021-02-23 嘟嘟物联网(深圳)有限公司 Password generation method, device and equipment
CN111817998A (en) * 2019-04-10 2020-10-23 阿里巴巴集团控股有限公司 Information authentication processing method, device and system and electronic equipment
CN111817998B (en) * 2019-04-10 2023-08-15 阿里巴巴集团控股有限公司 Information authentication processing method, device and system and electronic equipment
WO2022257108A1 (en) * 2021-06-11 2022-12-15 华为技术有限公司 Method for updating vehicle-to-everything (v2x) communication key, and communication apparatus

Similar Documents

Publication Publication Date Title
JP7086994B2 (en) Secure authentication of BOT users
US8925062B1 (en) Techniques for user authentication
US10367797B2 (en) Methods, systems, and media for authenticating users using multiple services
US9225717B1 (en) Event-based data signing via time-based one-time authentication passcodes
CN114667711B (en) System and method for implementing open authorized double-sided tokens
US20110145899A1 (en) Single Action Authentication via Mobile Devices
US9191382B1 (en) User authentication using swappable user authentication services
CN113438355B (en) Communication method, device, equipment and storage medium based on cloud mobile phone
US20160371475A1 (en) Enhanced alternative multifactor authentication
CN107276767A (en) A kind of time type dynamic token system and authentication method
EP4120109A1 (en) Cluster access method and apparatus, electronic device, and medium
CN109087639A (en) Method for voice recognition, device, electronic equipment and computer-readable medium
KR102532057B1 (en) Trusted environment remote verification method and apparatus, device, system, and medium
CN104967597A (en) Third-party application message authentication method and system based on secure channel
US11805120B1 (en) Audio tokens for multi-factor authentication
CN113424161A (en) Methods, systems, and media for authenticating a user using blockchains
CN101902329A (en) Method and device for single sign on
KR20120093598A (en) System and method for transferring money using otp generated from account number
CN114513350A (en) Identity verification method, system and storage medium
CN101996022A (en) Method for displaying prompting information related to password
US10440003B2 (en) Automatic on demand re-authentication of software agents
CN104765538B (en) A kind of information processing method and terminal
CN101719828B (en) Time synchronizing dynamic token and method for generating a plurality of dynamic passwords in real time
CN106022092A (en) Authentication method and device for NFC (Near Field Communication) equipment
KR100835260B1 (en) Internet-banking controll method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20171020

RJ01 Rejection of invention patent application after publication