CN109005155A - Identity identifying method and device - Google Patents

Identity identifying method and device Download PDF

Info

Publication number
CN109005155A
CN109005155A CN201810724395.8A CN201810724395A CN109005155A CN 109005155 A CN109005155 A CN 109005155A CN 201810724395 A CN201810724395 A CN 201810724395A CN 109005155 A CN109005155 A CN 109005155A
Authority
CN
China
Prior art keywords
client
certification request
random number
server
sim card
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810724395.8A
Other languages
Chinese (zh)
Other versions
CN109005155B (en
Inventor
杨智勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Qianxin Technology Co Ltd
Original Assignee
Beijing Qianxin Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qianxin Technology Co Ltd filed Critical Beijing Qianxin Technology Co Ltd
Priority to CN201810724395.8A priority Critical patent/CN109005155B/en
Publication of CN109005155A publication Critical patent/CN109005155A/en
Application granted granted Critical
Publication of CN109005155B publication Critical patent/CN109005155B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The embodiment of the present invention provides a kind of identity identifying method and device.The method is applied to client, which comprises the first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, the client is installed on the terminal;Receive the random number that the server is directed to first certification request feedback;According to preset CertPubKey in the first preset algorithm and the SIM card, the first ciphertext is obtained to the random number encryption;The second certification request for carrying the identification number and the first ciphertext is sent to the server.Verification process in the embodiment of the present invention is simple, convenient for operation;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.

Description

Identity identifying method and device
Technical field
The present embodiments relate to field of communication technology more particularly to a kind of identity identifying methods and device.
Background technique
Authentication refers to the process of confirmation operation person's identity, so that it is determined that whether the user has the visit to certain resource It asks and access right, prevents attacker from palming off the access authority that legitimate user obtains resource, guarantee the safety of system and data, with And the legitimate interests of authorization visitor.
Currently, common identification authentication mode mainly includes three kinds: identification authentication mode, base based on the user name and password In the identification authentication mode of biometrics identification technology, based on universal serial bus (Universal Serial Bus, USB) The identification authentication mode of hardware device;However, there are some defects in above-mentioned three kinds of identification authentication modes.
Specifically, more universal currently based on the identification authentication mode of the user name and password (or password), but password has The risk for leaking or forgetting, and the password rule of different accounts is inconsistent, user may need to remember multiple passwords, and be easy Obscure, brings puzzlement to user.
It mainly include fingerprint recognition, recognition of face, iris recognition etc. for the identification authentication mode based on biological characteristic. On the one hand living things feature recognition depends on hardware supported, before on the other hand, when authenticating for the first time needing other authentication modes to be used as It mentions, to acquire biological characteristic, process is relatively complicated.
And the authentication mode of the hardware device based on USB, such as USB Key, the relevant site certificate of financial industry compared with To be common, but need to carry additional hardware when use, it is inconvenient for use, and be not easy to promote.
Summary of the invention
The embodiment of the present invention provides a kind of identity identifying method and device, to solve authentication side in the prior art Defect problem existing for formula.
On the one hand, the embodiment of the present invention provides a kind of identity identifying method, and the method is applied to client, the method Include:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
On the other hand, the embodiment of the present invention provides a kind of identity identifying method, described to be applied to server, the method packet It includes:
Receive the first certification request of the identification number for the user identity identification SIM card for carrying terminal that client is sent; Wherein, the client is installed on the terminal;
According to the second preset algorithm, a random number is generated, by the random number back to the client, and described in record First corresponding relationship of random number and the identification number;
Receive the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;It is described First ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, to described random Number encryption obtains;
According to first corresponding relationship, second certification request is authenticated.
On the other hand, the embodiment of the present invention provides a kind of identification authentication system, is applied to client, and described device includes:
First sending module, the identification number of the user identity identification SIM card for carrying terminal to server transmission First certification request;Wherein, the client is installed on the terminal;
Random number receiving module, the random number for being directed to first certification request feedback for receiving the server;
Encrypting module is used for according to preset CertPubKey in the first preset algorithm and the SIM card, to described random Number encryption obtains the first ciphertext;
Second sending module is recognized for carrying the second of the identification number and the first ciphertext to server transmission Card request.
On the other hand, the embodiment of the present invention provides a kind of identification authentication system, is applied to server, and described device includes:
First receiving module, the mark of the user identity identification SIM card for carrying terminal for receiving client transmission Number the first certification request;Wherein, the client is installed on the terminal;
Random number generation module, for a random number being generated, by the random number back to institute according to the second preset algorithm Client is stated, and records the first corresponding relationship of the random number Yu the identification number;
Second receiving module carries identification number to be certified and the first ciphertext for receive that the client sends Second certification request;First ciphertext is the client according to preset card in the first preset algorithm and the SIM card Book public key obtains the random number encryption;
Authentication module, for being authenticated to second certification request according to first corresponding relationship.
On the other hand, the embodiment of the invention also provides a kind of electronic equipment, including memory, processor, bus and The computer program that can be run on a memory and on a processor is stored, the processor executes real when the computer program Step in existing above-mentioned identity identifying method.
In another aspect, being stored thereon with the embodiment of the invention also provides a kind of non-transient computer readable storage medium Computer program, the computer program realize the step in above-mentioned identity identifying method when being executed by processor.
Identity identifying method and device provided in an embodiment of the present invention carry the user of terminal by sending to server First certification request of the identification number of identification SIM card, and receive the server and fed back for first certification request Random number;Further according to preset CertPubKey in the first preset algorithm and the SIM card, the random number encryption is obtained First ciphertext finally sends the second certification request for carrying the identification number and the first ciphertext to the server, subsequent The message passed through is authenticated to the second certification request if receiving, process corresponding with this authentication can be performed in client. Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, phase before fabrication It is registered to close certificate information, verification process is without resurveying;And authentication is completed based on the certificate in SIM card, due to more Number communication terminal is provided with sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware Equipment.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is this hair Bright some embodiments for those of ordinary skill in the art without creative efforts, can be with root Other attached drawings are obtained according to these attached drawings.
Fig. 1 is one of the flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 2 is the first exemplary schematic diagram of the embodiment of the present invention;
Fig. 3 is the second exemplary flow diagram of the embodiment of the present invention;
Fig. 4 is the two of the flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 5 is one of the structural schematic diagram of identification authentication system provided in an embodiment of the present invention;
Fig. 6 is the second structural representation of identification authentication system provided in an embodiment of the present invention;
Fig. 7 is the structural schematic diagram of electronic equipment provided in an embodiment of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art Every other embodiment obtained without creative efforts, shall fall within the protection scope of the present invention.
Fig. 1 shows a kind of flow diagram of identity identifying method provided in an embodiment of the present invention.
As shown in Figure 1, identity identifying method provided in an embodiment of the present invention, the method is applied to client, the side Method includes:
Step 101, the first certification that the identification number for the user identity identification SIM card for carrying terminal is sent to server is asked It asks;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, the user identity that client obtains terminal is known The not identification number of (Subscriber Identification Module, SIM) card.
Optionally, identification number can be international mobile subscriber identity (the International Mobile of SIM card Subscriber Identification Number, IMSI), IMSI is the mark for distinguishing mobile subscriber, is stored in SIM card In, it can be used for distinguishing the effective information of mobile subscriber.
Client carries identification number in the first certification request, carries out authentication to client with request server.
As the first example, referring to fig. 2, client executing step 1 in Fig. 2 sends the first certification request to server.Clothes After business device receives the first certification request, a random number is generated, and execute step 2, random number is sent to client, and Step 3, the first corresponding relationship of the random number Yu the identification number is recorded.
Step 102, the random number that the server is directed to first certification request feedback is received.
Wherein, after the first certification request is sent to server by client, the random number of server feedback is received, at random Number is authenticated for the identity to client, due to the randomness of random number, can prevent from being reused.
Step 103, according to preset CertPubKey in the first preset algorithm and the SIM card, the random number is added It is close to obtain the first ciphertext.
Wherein, the first preset algorithm is well known between client and server or the Encryption Algorithm made an appointment.SIM card In preset CertPubKey, that is, SIM card certificate in public key value, SIM card certificate generally comprises following information: public key value, mark It accords with information (such as title and e-mail address), validity period (effective time of certificate), issuer identifier information and issues The digital signature etc. of person, for confirming the effective of binding relationship between the public key of main body where certificate and the identifier information of main body Property.
Client carries out encryption to random number according to CertPubKey preset in the first preset algorithm and SIM card and obtains the One ciphertext, the first ciphertext can be used for verifying the first preset algorithm and CertPubKey, and then verify the identity of client.
With continued reference to Fig. 2, client executing step 4 in Fig. 2, encrypted random number.
Step 104, the second certification request for carrying the identification number and the first ciphertext is sent to the server.
Wherein, user end to server send the second certification request, and carried in the second certification request identification number and First ciphertext, so that server searches the local random number corresponding with the identification number that server local is recorded according to identification number, And according to local the first ciphertext of random number verification, the certification to the second certification request is realized.
Further, if after the message that the subsequently received server of client passes through the certification of the second certification request, visitor Process corresponding with this authentication, such as the login process of third party application can be performed in family end, completes to second After certification request, client realization can be made to exempt from close login third party application, login process no longer needs to use at this time The login modes such as name in an account book, password avoid the cumbersome of the login mode based on username and password.
With continued reference to Fig. 2, client executing step 5 in Fig. 2 sends the second certification request to server.
In the above embodiment of the present invention, the user identity identification SIM card of terminal is carried by sending to server First certification request of identification number, and receive the random number that the server is directed to first certification request feedback;Further according to Preset CertPubKey in first preset algorithm and the SIM card obtains the first ciphertext to the random number encryption, finally to The server sends the second certification request for carrying the identification number and the first ciphertext, if subsequent receive is recognized second Process corresponding with this authentication can be performed in the message that card request certification passes through, client.In the embodiment of the present invention Verification process is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, and related credentials information is registered before fabrication, Verification process is without resurveying;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with Sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.The present invention solves existing There is defect problem existing for the identification authentication mode in technology.
Optionally, described to carry the identification number and first close to server transmission in the embodiment of the present invention After the step of second certification request of text, which comprises
Receive the authentication result that the server is directed to second certification request;
When the authentication result indicates that second certification request passes through, default application program is logged in.
Wherein, presetting application program is third party application, when the authentication in the present invention is third-party application journey When the login process of sequence, after user end to server sends the second certification request, the server is received for described second The authentication result of certification request;When the authentication result indicates that second certification request passes through, exempts from close log in and preset application Program completes authentication based on the certificate in SIM card, avoids the cumbersome of the login mode based on username and password.
Further, in the embodiment of the present invention, described the step of logging in default application program, comprising:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
Wherein, during logging in default application program, the default required parameter of client is obtained first, presets request ginseng It, can be by Request after number is completed for request token (Request Token) server of authorization to the authentication of client Token is sent to client, and client requests access to token (Access to server first according to Request Token Token), then further according to Access Token to the pre-set user identification number of server requesting client, pre-set user is identified Number can be OpenID, be based ultimately upon pre-set user identification number log in third party application.
As the second example, referring to Fig. 3, exempting from for identity identifying method based on the embodiment of the present invention is close logged Journey mainly comprises the steps that
Step 301, where verifying client in the SIM card of terminal, if preset SIM card certificate:
If so, executing step 302, otherwise, authentification failure simultaneously terminates process.
Step 302, authentication is requested to server.
Specifically, authentication procedures mainly comprise the steps that
1, the first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Its In, the client is installed on the terminal;
2, the random number that the server is directed to first certification request feedback is received;
3, according to preset CertPubKey in the first preset algorithm and the SIM card, the random number encryption is obtained First ciphertext;
4, the second certification request for carrying the identification number and the first ciphertext is sent to the server;
5, server is received to the authentication result of the second certification request: if authentication result passes through, thening follow the steps 303, it is no Then, authentification failure and terminate process.
Step 303, the Request Token of authorization is obtained;
Step 304, Access Token is requested to server according to Request Token, further according to Access Token To the OpenID of server requesting client;
Step 305, third party application is logged according to OpenID, and terminates process.
It in above-mentioned example, realizes and exempts from close login, avoid the account name of third party application, password passes out of mind or lets out The problems such as leakage;Meanwhile by the SIM card of preset certificate, increase hardware without additional, SIM card both as the medium communicated, was also made For the voucher of authentication;In addition, certificate is preset in SIM card from factory, solves authentication information and acquire cumbersome ask Topic;And since SIM card has the ability of communication, it can be achieved that control to the identity documents reported the loss.
In the above embodiment of the present invention, the user identity identification SIM card of terminal is carried by sending to server First certification request of identification number, and receive the random number that the server is directed to first certification request feedback;Further according to Preset CertPubKey in first preset algorithm and the SIM card obtains the first ciphertext to the random number encryption, finally to The server sends the second certification request for carrying the identification number and the first ciphertext, if subsequent receive is recognized second The message that card request certification passes through, client is executable to exempt from close login third party application.Certification in the embodiment of the present invention Process is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, and related credentials information is registered before fabrication, certification Process is without resurveying;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with SIM Card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.
As the other side of the embodiment of the present invention, referring to fig. 4, the embodiment of the invention also provides a kind of authentications Method is applied to server, which comprises
Step 401, receive the identification number for the user identity identification SIM card for carrying terminal that client is sent first is recognized Card request;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client is by the mark of the SIM card of terminal Number carrying is sent to server in the first certification request, carries out authentication to client with request server.
Optionally, identification number can be the IMSI of SIM card, and IMSI is the mark for distinguishing mobile subscriber, be stored in SIM card In, it can be used for distinguishing the effective information of mobile subscriber.
As the first example, referring to fig. 2, client executing step 1 in Fig. 2 sends the first certification request to server;Clothes Business device receives the certification request.
Step 402, according to the second preset algorithm, a random number is generated, by the random number back to the client, and Record the first corresponding relationship of the random number Yu the identification number.
Wherein, server generates a random number according to the second preset algorithm, and random number is used to carry out the identity of client Certification, due to the randomness of random number, can prevent from being reused.
With continued reference to Fig. 2, after server receives the first certification request, a random number is generated, and execute step 2, it will Random number is sent to client and step 3, records the first corresponding relationship of the random number Yu the identification number.
Step 403, the second certification for carrying identification number to be certified and the first ciphertext that the client is sent is received Request, first ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, right What the random number encryption obtained.
Wherein, server receives the second certification request that client is sent, and carries the first ciphertext in the second certification request And identification number to be certified;First ciphertext is the client according to the terminal SIM where the first preset algorithm and client Preset CertPubKey in card, obtains the random number encryption, and the first preset algorithm is public between client and server Encryption Algorithm that is knowing or making an appointment.
Public key value in SIM card in the certificate of preset CertPubKey, that is, SIM card, SIM card certificate generally comprise following letter Breath: public key value, identifier information (such as title and e-mail address), validity period (effective time of certificate), issuer mark Information and the digital signature of issuer etc. are accorded with, for confirming between the public key of certificate place main body and the identifier information of main body The validity of binding relationship.
Step 404, according to first corresponding relationship, second certification request is authenticated.
Wherein, server determines in the first corresponding relationship according to identification number to be certified, it is corresponding with identification number to be certified with Machine number (hereinafter referred to as local random number);According to decipherment algorithm corresponding with the first preset algorithm, the plaintext of the first ciphertext is obtained (i.e. random number);If random number is consistent with local random number, show that the CertPubKey of client and the first preset algorithm are equal Correctly, the certification of the second certification request is passed through and the authentication of client passes through.
In the above embodiment of the present invention, the identification number of the SIM card for carrying terminal by receiving client transmission First certification request;According to the second preset algorithm, a random number is generated, by the random number back to the client, and is remembered Record the first corresponding relationship of the random number Yu the identification number;Receive the client transmission carries identification number to be certified And first ciphertext the second certification request;First ciphertext is the client according to the first preset algorithm and described Preset CertPubKey in SIM card, obtains the random number encryption;According to first corresponding relationship, to described second Certification request is authenticated.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is certification clothes Business device is issued, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is complete based on the certificate in SIM card At authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, Without increasing other hardware devices.The present invention solves defect problem existing for identification authentication mode in the prior art.
Specifically, described according to first corresponding relationship in the embodiment of the present invention, second certification request is carried out The step of certification, comprising:
Obtain the identification number to be certified carried in second certification request;
Obtain preset certificate and private key corresponding with the identification number to be certified, according to the certificate and private key and with The plaintext after being decrypted is decrypted to first ciphertext in the corresponding decipherment algorithm of first preset algorithm;
If the plaintext after the decryption is identical as the local random number, determines to authenticate second certification request and lead to It crosses.
Wherein, server obtains the identification number to be certified carried in second certification request, and according to mark to be certified Number, determine in the first corresponding relationship, it is corresponding with identification number to be certified local random number, and obtain it is preset with it is described to The corresponding certificate and private key of identification number is authenticated, according to certificate and private key and decipherment algorithm corresponding with the first preset algorithm, obtains the The plaintext (i.e. random number) of one ciphertext;If random number is consistent with local random number, show the CertPubKey and the of client One preset algorithm is correct, passes through to the certification of the second certification request and the authentication of client passes through.
Optionally, described according to first corresponding relationship in the embodiment of the present invention, second certification request is carried out After the step of certification, the method also includes:
To the client feedback authentication result.
Wherein, after server authenticates the second certification request, to client feedback authentication result, if authentication result Instruction certification is when passing through, client can be performed process corresponding with this authentication, for example third party application is stepped on Process is recorded, after completing to the second certification request, client realization can be made to exempt from close login third party application, stepped at this time Record process no longer needs the login modes such as user name, password, avoids the cumbersome of the login mode based on username and password.
With continued reference to Fig. 2, server executes step 6 in Fig. 2, to client feedback authentication result.
In the above embodiment of the present invention, the identification number of the SIM card for carrying terminal by receiving client transmission First certification request;According to the second preset algorithm, a random number is generated, by the random number back to the client, and is remembered Record the first corresponding relationship of the random number Yu the identification number;Receive the client transmission carries identification number to be certified And first ciphertext the second certification request;First ciphertext is the client according to the first preset algorithm and described Preset CertPubKey in SIM card, obtains the random number encryption;According to first corresponding relationship, to described second Certification request is authenticated.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is certification clothes Business device is issued, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is complete based on the certificate in SIM card At authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, Without increasing other hardware devices.
Identity identifying method provided in an embodiment of the present invention is described above, introduces the present invention below in conjunction with attached drawing and implements The identification authentication system that example provides.
Referring to Fig. 5, the embodiment of the invention provides a kind of identification authentication systems, are applied to client, and described device includes:
First sending module 501, for sending the identification number for carrying the user identity identification SIM card of terminal to server The first certification request;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client obtains the mark of the SIM card of terminal Knowledge number.
Optionally, identification number can be international mobile subscriber identity (the International Mobile of SIM card Subscriber Identification Number, IMSI), IMSI is the mark for distinguishing mobile subscriber, is stored in SIM card In, it can be used for distinguishing the effective information of mobile subscriber.
Client carries identification number in the first certification request, carries out authentication to client with request server.
Random number receiving module 502, the random number for being directed to first certification request feedback for receiving the server.
Wherein, after the first certification request is sent to server by client, the random number of server feedback is received, at random Number is authenticated for the identity to client, due to the randomness of random number, can prevent from being reused.
Encrypting module 503 is used for according to preset CertPubKey in the first preset algorithm and the SIM card, to described Random number encryption obtains the first ciphertext.
Wherein, the first preset algorithm is well known between client and server or the Encryption Algorithm made an appointment.SIM card In preset CertPubKey, that is, SIM card certificate in public key value, SIM card certificate generally comprises following information: public key value, mark It accords with information (such as title and e-mail address), validity period (effective time of certificate), issuer identifier information and issues The digital signature etc. of person, for confirming the effective of binding relationship between the public key of main body where certificate and the identifier information of main body Property.
Client carries out encryption to random number according to CertPubKey preset in the first preset algorithm and SIM card and obtains the One ciphertext, the first ciphertext can be used for verifying the first preset algorithm and CertPubKey, and then verify the identity of client.
Second sending module 504 carries the of the identification number and the first ciphertext for sending to the server Two certification requests.
Wherein, user end to server send the second certification request, and carried in the second certification request identification number and First ciphertext, so that server searches the local random number corresponding with the identification number that server local is recorded according to identification number, And according to local the first ciphertext of random number verification, the certification to the second certification request is realized.
Further, if after the message that the subsequently received server of client passes through the certification of the second certification request, visitor Process corresponding with this authentication, such as the login process of third party application can be performed in family end, completes to second After certification request, client realization can be made to exempt from close login third party application, login process no longer needs to use at this time The login modes such as name in an account book, password avoid the cumbersome of the login mode based on username and password.
Optionally, in the embodiment of the present invention, described device further include:
As a result receiving module, the authentication result for being directed to second certification request for receiving the server;
Login module, it is default using journey for logging in when the authentication result indicates that second certification request passes through Sequence.
Optionally, in the embodiment of the present invention, the login module is used for:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
In the above embodiment of the present invention, the user for carrying terminal is sent to server by the first sending module 501 First certification request of the identification number of identification SIM card, random number receiving module 502 receive the server for described the The random number of one certification request feedback;Encrypting module 503 is public according to certificate preset in the first preset algorithm and the SIM card Key obtains the first ciphertext to the random number encryption, and the second sending module 504 carries the mark to server transmission Number and the first ciphertext the second certification request, if subsequent receive authenticates the message that passes through, client to the second certification request Process corresponding with this authentication can be performed.Verification process in the embodiment of the present invention is simple, convenient for operation, SIM card In certificate issued for certificate server, related credentials information is registered before fabrication, and verification process is without resurveying;And it is based on Certificate in SIM card completes authentication, and since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy In popularization, strong applicability, without increasing other hardware devices.
Referring to Fig. 6, the embodiment of the invention provides a kind of identification authentication systems, are applied to server, and described device includes:
First receiving module 601, the mark of the user identity identification SIM card for carrying terminal for receiving client transmission First certification request of knowledge number;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client is by the mark of the SIM card of terminal Number carrying is sent to server in the first certification request, carries out authentication to client with request server.
Optionally, identification number can be the IMSI of SIM card, and IMSI is the mark for distinguishing mobile subscriber, be stored in SIM card In, it can be used for distinguishing the effective information of mobile subscriber.
Random number generation module 602, for a random number being generated, by the random number back according to the second preset algorithm The extremely client, and record the first corresponding relationship of the random number Yu the identification number.
Wherein, server generates a random number according to the second preset algorithm, and random number is used to carry out the identity of client Certification, due to the randomness of random number, can prevent from being reused.
Second receiving module 603 carries identification number to be certified and first close for receive that the client sends Second certification request of text;First ciphertext is that the client is preset according in the first preset algorithm and the SIM card CertPubKey, the random number encryption is obtained.
Wherein, server receives the second certification request that client is sent, and carries the first ciphertext in the second certification request And identification number to be certified;First ciphertext is the client according to the terminal SIM where the first preset algorithm and client Preset CertPubKey in card, obtains the random number encryption, and the first preset algorithm is public between client and server Encryption Algorithm that is knowing or making an appointment.
Public key value in SIM card in the certificate of preset CertPubKey, that is, SIM card, SIM card certificate generally comprise following letter Breath: public key value, identifier information (such as title and e-mail address), validity period (effective time of certificate), issuer mark Information and the digital signature of issuer etc. are accorded with, for confirming between the public key of certificate place main body and the identifier information of main body The validity of binding relationship.
Authentication module 604, for being authenticated to second certification request according to first corresponding relationship.
Wherein, server determines in the first corresponding relationship according to identification number to be certified, it is corresponding with identification number to be certified with Machine number (hereinafter referred to as local random number);According to decipherment algorithm corresponding with the first preset algorithm, the plaintext of the first ciphertext is obtained (i.e. random number);If random number is consistent with local random number, show that the CertPubKey of client and the first preset algorithm are equal Correctly, the certification of the second certification request is passed through and the authentication of client passes through.
Optionally, in the embodiment of the present invention, the authentication module 604 includes:
Acquisition submodule, for obtaining the identification number to be certified carried in second certification request;
Determine submodule, for according to first corresponding relationship, determining local corresponding with the identification number to be certified Random number;
Submodule is decrypted, for obtaining preset certificate and private key corresponding with the identification number to be certified, according to institute Certificate and private key and decipherment algorithm corresponding with the first preset algorithm are stated, first ciphertext is decrypted after being decrypted In plain text;
Authentication sub module determines if the plaintext for after the decryption is identical as the local random number to described the The certification of two certification requests passes through.
Optionally, in the embodiment of the present invention, described device further include:
As a result feedback module is used for the client feedback authentication result.
In the above embodiment of the present invention, the SIM for carrying terminal that client is sent is received by the first receiving module 601 First certification request of the identification number of card;Random number generation module 602 generates a random number, by institute according to the second preset algorithm Random number back is stated to the client, it is first corresponding to record the random number and the identification number for the second receiving module 603 Relationship receives the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;Described One ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, to the random number What encryption obtained;Authentication module 604 authenticates second certification request according to first corresponding relationship.The present invention Verification process in embodiment is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, related credentials before fabrication Information is registered, and verification process is without resurveying;And authentication is completed based on the certificate in SIM card, since majority communicates Terminal is provided with sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.
Fig. 7 shows the structural schematic diagram of a kind of electronic equipment of further embodiment of this invention offer.
Referring to Fig. 7, electronic equipment provided in an embodiment of the present invention, the electronic equipment include memory (memory) 71, Processor (processor) 72, bus 73 and it is stored in the computer program that can be run on memory 71 and on a processor. Wherein, the memory 71, processor 72 complete mutual communication by the bus 73.
The processor 72 is used to call the program instruction in the memory 71, real when executing the computer program Now such as the method for Fig. 1.
In another embodiment, following method is realized when the processor executes the computer program:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
Electronic equipment provided in an embodiment of the present invention can be used for executing the corresponding program of method of above method embodiment, This implementation repeats no more.
Electronic equipment provided in an embodiment of the present invention, by the processor execute the computer program when, pass through to Server sends the first certification request for carrying the identification number of user identity identification SIM card of terminal, and receives the service Device is directed to the random number of first certification request feedback;Further according to preset card in the first preset algorithm and the SIM card Book public key obtains the first ciphertext to the random number encryption, finally to the server transmission carry the identification number and Second certification request of the first ciphertext, if subsequent receive authenticates the message passed through to the second certification request, client is executable Process corresponding with this authentication.Verification process in the embodiment of the present invention is simple, the card convenient for operating, in SIM card Book is issued for certificate server, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is based on SIM card In certificate complete authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to push away Extensively, strong applicability, without increasing other hardware devices.
A kind of non-transient computer readable storage medium that further embodiment of this invention provides, the non-transient computer can It reads to be stored with computer program on storage medium, realize when the computer program is executed by processor such as the step of Fig. 1.
In another embodiment, following method is realized when the computer program is executed by processor:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
Non-transient computer readable storage medium provided in an embodiment of the present invention, the computer program are executed by processor The method of Shi Shixian above method embodiment, this implementation repeat no more.
Non-transient computer readable storage medium provided in an embodiment of the present invention, by carrying terminal to server transmission User identity identification SIM card identification number the first certification request, and receive the server for it is described first certification ask It negates the random number of feedback;Further according to preset CertPubKey in the first preset algorithm and the SIM card, the random number is added It is close to obtain the first ciphertext, finally asked to the second certification that server transmission carries the identification number and the first ciphertext It asks, if subsequent receive authenticates the message passed through to the second certification request, client is executable corresponding with this authentication Process.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, makes Related credentials information is registered before blocking, and verification process is without resurveying;And authentication is completed based on the certificate in SIM card, Since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, without increasing it His hardware device.
Further embodiment of this invention discloses a kind of computer program product, and the computer program product is non-including being stored in Computer program in transitory computer readable storage medium, the computer program include program instruction, when the computer When program instruction is computer-executed, computer is able to carry out method provided by above-mentioned each method embodiment, for example,
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
The apparatus embodiments described above are merely exemplary, wherein described, unit can as illustrated by the separation member It is physically separated with being or may not be, component shown as a unit may or may not be physics list Member, it can it is in one place, or may be distributed over multiple network units.It can be selected according to the actual needs In some or all of the modules achieve the purpose of the solution of this embodiment.Those of ordinary skill in the art are not paying creativeness Labour in the case where, it can understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can It realizes by means of software and necessary general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, on Stating technical solution, substantially the part that contributes to existing technology can be embodied in the form of software products in other words, should Computer software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including several fingers It enables and using so that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation Method described in certain parts of example or embodiment.
Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although Present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: it still may be used To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features; And these are modified or replaceed, technical solution of various embodiments of the present invention that it does not separate the essence of the corresponding technical solution spirit and Range.

Claims (10)

1. a kind of identity identifying method is applied to client, which is characterized in that the described method includes:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, described Client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, it is close that first is obtained to the random number encryption Text;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
2. the method according to claim 1, wherein described carry the identification number to server transmission And first ciphertext the second certification request the step of after, which comprises
Receive the authentication result that the server is directed to second certification request;
When the authentication result indicates that second certification request passes through, default application program is logged in.
3. according to the method described in claim 2, it is characterized in that, described the step of logging in default application program, comprising:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
4. a kind of identity identifying method is applied to server, which is characterized in that the described method includes:
Receive the first certification request of the identification number for the user identity identification SIM card for carrying terminal that client is sent;Wherein, The client is installed on the terminal;
According to the second preset algorithm, a random number is generated, by the random number back to the client, and is recorded described random Several the first corresponding relationships with the identification number;
Receive the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;Described first Ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, is added to the random number It is close to obtain;
According to first corresponding relationship, second certification request is authenticated.
5. according to the method described in claim 4, it is characterized in that, described according to first corresponding relationship, to described second The step of certification request is authenticated, comprising:
Obtain the identification number to be certified carried in second certification request;
According to first corresponding relationship, determining local random number corresponding with the identification number to be certified;
Preset certificate and private key corresponding with the identification number to be certified is obtained, according to the certificate and private key and with first The plaintext after being decrypted is decrypted to first ciphertext in the corresponding decipherment algorithm of preset algorithm;
If the plaintext after the decryption is identical as the local random number, determines and second certification request certification is passed through.
6. according to the method described in claim 4, it is characterized in that, described according to first corresponding relationship, to described second After the step of certification request is authenticated, the method also includes:
To the client feedback authentication result.
7. a kind of identification authentication system, it is applied to client, which is characterized in that described device includes:
First sending module, first of the identification number for sending the user identity identification SIM card for carrying terminal to server Certification request;Wherein, the client is installed on the terminal;
Random number receiving module, the random number for being directed to first certification request feedback for receiving the server;
Encrypting module, for adding to the random number according to preset CertPubKey in the first preset algorithm and the SIM card It is close to obtain the first ciphertext;
Second sending module, the second certification for carrying the identification number and the first ciphertext to server transmission are asked It asks.
8. a kind of identification authentication system, it is applied to server, which is characterized in that described device includes:
First receiving module, the identification number of the user identity identification SIM card for carrying terminal for receiving client transmission First certification request;Wherein, the client is installed on the terminal;
Random number generation module, for a random number being generated, by the random number back to the visitor according to the second preset algorithm Family end, and record the first corresponding relationship of the random number Yu the identification number;
Second receiving module, carry identification number to be certified and the first ciphertext second sent for receiving the client Certification request;First ciphertext is that the client is public according to certificate preset in the first preset algorithm and the SIM card Key obtains the random number encryption;
Authentication module, for being authenticated to second certification request according to first corresponding relationship.
9. a kind of electronic equipment, which is characterized in that on a memory and can be including memory, processor, bus and storage The computer program run on processor, the processor are realized when executing the computer program as appointed in claim 1 to 6 Step in identity identifying method described in one.
10. a kind of non-transient computer readable storage medium, is stored thereon with computer program, it is characterised in that: the calculating It realizes when machine program is executed by processor such as the step in identity identifying method described in any one of claims 1 to 6.
CN201810724395.8A 2018-07-04 2018-07-04 Identity authentication method and device Active CN109005155B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810724395.8A CN109005155B (en) 2018-07-04 2018-07-04 Identity authentication method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810724395.8A CN109005155B (en) 2018-07-04 2018-07-04 Identity authentication method and device

Publications (2)

Publication Number Publication Date
CN109005155A true CN109005155A (en) 2018-12-14
CN109005155B CN109005155B (en) 2021-11-12

Family

ID=64598756

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810724395.8A Active CN109005155B (en) 2018-07-04 2018-07-04 Identity authentication method and device

Country Status (1)

Country Link
CN (1) CN109005155B (en)

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109286933A (en) * 2018-10-18 2019-01-29 世纪龙信息网络有限责任公司 Authentication method, device, system, computer equipment and storage medium
CN111006692A (en) * 2019-11-29 2020-04-14 东风商用车有限公司 Method for rapidly correcting vehicle speed and mileage of commercial vehicle instrument based on development of diagnostic instrument
CN111541708A (en) * 2020-05-06 2020-08-14 广东纬德信息科技股份有限公司 Identity authentication method based on power distribution
CN111552928A (en) * 2020-04-26 2020-08-18 北京学之途网络科技有限公司 Authentication method and device
CN111572676A (en) * 2020-04-19 2020-08-25 东风汽车股份有限公司 Vehicle instrument configuration parameter calibration method
CN111740846A (en) * 2020-08-04 2020-10-02 飞天诚信科技股份有限公司 Method and system for realizing smart card information reading of mobile terminal
CN112187709A (en) * 2019-07-05 2021-01-05 华为技术有限公司 Authentication method, device and server
CN112543454A (en) * 2020-11-30 2021-03-23 亚信科技(成都)有限公司 Authentication method and equipment
CN112839062A (en) * 2021-04-20 2021-05-25 北京天维信通科技有限公司 Port hiding method, device and equipment with mixed authentication signals
CN112866280A (en) * 2020-07-03 2021-05-28 支付宝(杭州)信息技术有限公司 Information verification method, device and equipment
CN115622794A (en) * 2022-11-15 2023-01-17 北京密码云芯科技有限公司 Encryption and decryption method, device, equipment and storage medium

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101848084A (en) * 2009-03-25 2010-09-29 黄金富 Method and system for authenticating user computer server ISP identity by using SIM cards
US20120144463A1 (en) * 2003-04-11 2012-06-07 Satarasinghe Prasanna J System and method for extending secure authentication using unique session keys derived from entropy
CN104009843A (en) * 2013-02-23 2014-08-27 贺征东 Token terminal and method
CN104348812A (en) * 2013-08-06 2015-02-11 中国电信股份有限公司 Method and device for on-line certification of NFC (Near Field Communication) terminal
CN105812334A (en) * 2014-12-31 2016-07-27 北京华虹集成电路设计有限责任公司 Network authentication method
CN105871864A (en) * 2016-04-20 2016-08-17 中国联合网络通信集团有限公司 Mobile terminal identity authentication method and device
CN107333263A (en) * 2017-06-12 2017-11-07 浙江神州量子网络科技有限公司 A kind of follow-on SIM card and mobile communication personal identification method and system

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120144463A1 (en) * 2003-04-11 2012-06-07 Satarasinghe Prasanna J System and method for extending secure authentication using unique session keys derived from entropy
CN101848084A (en) * 2009-03-25 2010-09-29 黄金富 Method and system for authenticating user computer server ISP identity by using SIM cards
CN104009843A (en) * 2013-02-23 2014-08-27 贺征东 Token terminal and method
CN104348812A (en) * 2013-08-06 2015-02-11 中国电信股份有限公司 Method and device for on-line certification of NFC (Near Field Communication) terminal
CN105812334A (en) * 2014-12-31 2016-07-27 北京华虹集成电路设计有限责任公司 Network authentication method
CN105871864A (en) * 2016-04-20 2016-08-17 中国联合网络通信集团有限公司 Mobile terminal identity authentication method and device
CN107333263A (en) * 2017-06-12 2017-11-07 浙江神州量子网络科技有限公司 A kind of follow-on SIM card and mobile communication personal identification method and system

Cited By (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109286933A (en) * 2018-10-18 2019-01-29 世纪龙信息网络有限责任公司 Authentication method, device, system, computer equipment and storage medium
CN112187709B (en) * 2019-07-05 2022-07-05 荣耀终端有限公司 Authentication method, device and server
CN112187709A (en) * 2019-07-05 2021-01-05 华为技术有限公司 Authentication method, device and server
CN111006692A (en) * 2019-11-29 2020-04-14 东风商用车有限公司 Method for rapidly correcting vehicle speed and mileage of commercial vehicle instrument based on development of diagnostic instrument
CN111572676A (en) * 2020-04-19 2020-08-25 东风汽车股份有限公司 Vehicle instrument configuration parameter calibration method
CN111572676B (en) * 2020-04-19 2021-08-13 东风汽车股份有限公司 Vehicle instrument configuration parameter calibration method
CN111552928A (en) * 2020-04-26 2020-08-18 北京学之途网络科技有限公司 Authentication method and device
CN111541708A (en) * 2020-05-06 2020-08-14 广东纬德信息科技股份有限公司 Identity authentication method based on power distribution
CN111541708B (en) * 2020-05-06 2022-08-19 广东纬德信息科技股份有限公司 Identity authentication method based on power distribution
CN112866280A (en) * 2020-07-03 2021-05-28 支付宝(杭州)信息技术有限公司 Information verification method, device and equipment
CN111740846A (en) * 2020-08-04 2020-10-02 飞天诚信科技股份有限公司 Method and system for realizing smart card information reading of mobile terminal
CN112543454A (en) * 2020-11-30 2021-03-23 亚信科技(成都)有限公司 Authentication method and equipment
CN112543454B (en) * 2020-11-30 2022-11-15 亚信科技(成都)有限公司 Authentication method and equipment
CN112839062A (en) * 2021-04-20 2021-05-25 北京天维信通科技有限公司 Port hiding method, device and equipment with mixed authentication signals
CN112839062B (en) * 2021-04-20 2021-08-13 北京天维信通科技有限公司 Port hiding method, device and equipment with mixed authentication signals
CN115622794A (en) * 2022-11-15 2023-01-17 北京密码云芯科技有限公司 Encryption and decryption method, device, equipment and storage medium
CN115622794B (en) * 2022-11-15 2023-04-07 北京密码云芯科技有限公司 Encryption and decryption method, device, equipment and storage medium

Also Published As

Publication number Publication date
CN109005155B (en) 2021-11-12

Similar Documents

Publication Publication Date Title
CN109005155A (en) Identity identifying method and device
EP3373510B1 (en) Method and device for realizing session identifier synchronization
CN111931144B (en) Unified safe login authentication method and device for operating system and service application
US20180082050A1 (en) Method and a system for secure login to a computer, computer network, and computer website using biometrics and a mobile computing wireless electronic communication device
CN105024819B (en) A kind of multiple-factor authentication method and system based on mobile terminal
JP6586446B2 (en) Method for confirming identification information of user of communication terminal and related system
US8683562B2 (en) Secure authentication using one-time passwords
EP3208732A1 (en) Method and system for authentication
US7409543B1 (en) Method and apparatus for using a third party authentication server
KR101451359B1 (en) User account recovery
CN113302894A (en) Secure account access
US11777743B2 (en) Method for securely providing a personalized electronic identity on a terminal
CN109672675A (en) A kind of WEB authentication method of the cryptographic service middleware based on OAuth2.0
CN104660412A (en) Password-less security authentication method and system for mobile equipment
DK2414983T3 (en) Secure computer system
CN114531277A (en) User identity authentication method based on block chain technology
CN111800378A (en) Login authentication method, device, system and storage medium
US10333707B1 (en) Systems and methods for user authentication
WO2019207032A1 (en) Remote biometric identification
CN114374522B (en) Trusted device authentication method and device, computer device and storage medium
CN104486322B (en) Terminal access authentication authorization method and terminal access authentication authoring system
KR20220167366A (en) Cross authentication method and system between online service server and client
JP6465426B1 (en) Electronic signature system, certificate issuing system, key management system, and electronic certificate issuing method
Kizza Authentication
EP1989815A2 (en) A method for serving a plurality of applications by a security token

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088

Applicant after: Qianxin Technology Group Co.,Ltd.

Address before: 100015 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing.

Applicant before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd.

GR01 Patent grant
GR01 Patent grant