CN109005155A - Identity identifying method and device - Google Patents
Identity identifying method and device Download PDFInfo
- Publication number
- CN109005155A CN109005155A CN201810724395.8A CN201810724395A CN109005155A CN 109005155 A CN109005155 A CN 109005155A CN 201810724395 A CN201810724395 A CN 201810724395A CN 109005155 A CN109005155 A CN 109005155A
- Authority
- CN
- China
- Prior art keywords
- client
- certification request
- random number
- server
- sim card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Telephonic Communication Services (AREA)
Abstract
The embodiment of the present invention provides a kind of identity identifying method and device.The method is applied to client, which comprises the first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, the client is installed on the terminal;Receive the random number that the server is directed to first certification request feedback;According to preset CertPubKey in the first preset algorithm and the SIM card, the first ciphertext is obtained to the random number encryption;The second certification request for carrying the identification number and the first ciphertext is sent to the server.Verification process in the embodiment of the present invention is simple, convenient for operation;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.
Description
Technical field
The present embodiments relate to field of communication technology more particularly to a kind of identity identifying methods and device.
Background technique
Authentication refers to the process of confirmation operation person's identity, so that it is determined that whether the user has the visit to certain resource
It asks and access right, prevents attacker from palming off the access authority that legitimate user obtains resource, guarantee the safety of system and data, with
And the legitimate interests of authorization visitor.
Currently, common identification authentication mode mainly includes three kinds: identification authentication mode, base based on the user name and password
In the identification authentication mode of biometrics identification technology, based on universal serial bus (Universal Serial Bus, USB)
The identification authentication mode of hardware device;However, there are some defects in above-mentioned three kinds of identification authentication modes.
Specifically, more universal currently based on the identification authentication mode of the user name and password (or password), but password has
The risk for leaking or forgetting, and the password rule of different accounts is inconsistent, user may need to remember multiple passwords, and be easy
Obscure, brings puzzlement to user.
It mainly include fingerprint recognition, recognition of face, iris recognition etc. for the identification authentication mode based on biological characteristic.
On the one hand living things feature recognition depends on hardware supported, before on the other hand, when authenticating for the first time needing other authentication modes to be used as
It mentions, to acquire biological characteristic, process is relatively complicated.
And the authentication mode of the hardware device based on USB, such as USB Key, the relevant site certificate of financial industry compared with
To be common, but need to carry additional hardware when use, it is inconvenient for use, and be not easy to promote.
Summary of the invention
The embodiment of the present invention provides a kind of identity identifying method and device, to solve authentication side in the prior art
Defect problem existing for formula.
On the one hand, the embodiment of the present invention provides a kind of identity identifying method, and the method is applied to client, the method
Include:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein,
The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption
One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
On the other hand, the embodiment of the present invention provides a kind of identity identifying method, described to be applied to server, the method packet
It includes:
Receive the first certification request of the identification number for the user identity identification SIM card for carrying terminal that client is sent;
Wherein, the client is installed on the terminal;
According to the second preset algorithm, a random number is generated, by the random number back to the client, and described in record
First corresponding relationship of random number and the identification number;
Receive the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;It is described
First ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, to described random
Number encryption obtains;
According to first corresponding relationship, second certification request is authenticated.
On the other hand, the embodiment of the present invention provides a kind of identification authentication system, is applied to client, and described device includes:
First sending module, the identification number of the user identity identification SIM card for carrying terminal to server transmission
First certification request;Wherein, the client is installed on the terminal;
Random number receiving module, the random number for being directed to first certification request feedback for receiving the server;
Encrypting module is used for according to preset CertPubKey in the first preset algorithm and the SIM card, to described random
Number encryption obtains the first ciphertext;
Second sending module is recognized for carrying the second of the identification number and the first ciphertext to server transmission
Card request.
On the other hand, the embodiment of the present invention provides a kind of identification authentication system, is applied to server, and described device includes:
First receiving module, the mark of the user identity identification SIM card for carrying terminal for receiving client transmission
Number the first certification request;Wherein, the client is installed on the terminal;
Random number generation module, for a random number being generated, by the random number back to institute according to the second preset algorithm
Client is stated, and records the first corresponding relationship of the random number Yu the identification number;
Second receiving module carries identification number to be certified and the first ciphertext for receive that the client sends
Second certification request;First ciphertext is the client according to preset card in the first preset algorithm and the SIM card
Book public key obtains the random number encryption;
Authentication module, for being authenticated to second certification request according to first corresponding relationship.
On the other hand, the embodiment of the invention also provides a kind of electronic equipment, including memory, processor, bus and
The computer program that can be run on a memory and on a processor is stored, the processor executes real when the computer program
Step in existing above-mentioned identity identifying method.
In another aspect, being stored thereon with the embodiment of the invention also provides a kind of non-transient computer readable storage medium
Computer program, the computer program realize the step in above-mentioned identity identifying method when being executed by processor.
Identity identifying method and device provided in an embodiment of the present invention carry the user of terminal by sending to server
First certification request of the identification number of identification SIM card, and receive the server and fed back for first certification request
Random number;Further according to preset CertPubKey in the first preset algorithm and the SIM card, the random number encryption is obtained
First ciphertext finally sends the second certification request for carrying the identification number and the first ciphertext to the server, subsequent
The message passed through is authenticated to the second certification request if receiving, process corresponding with this authentication can be performed in client.
Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, phase before fabrication
It is registered to close certificate information, verification process is without resurveying;And authentication is completed based on the certificate in SIM card, due to more
Number communication terminal is provided with sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware
Equipment.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is this hair
Bright some embodiments for those of ordinary skill in the art without creative efforts, can be with root
Other attached drawings are obtained according to these attached drawings.
Fig. 1 is one of the flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 2 is the first exemplary schematic diagram of the embodiment of the present invention;
Fig. 3 is the second exemplary flow diagram of the embodiment of the present invention;
Fig. 4 is the two of the flow diagram of identity identifying method provided in an embodiment of the present invention;
Fig. 5 is one of the structural schematic diagram of identification authentication system provided in an embodiment of the present invention;
Fig. 6 is the second structural representation of identification authentication system provided in an embodiment of the present invention;
Fig. 7 is the structural schematic diagram of electronic equipment provided in an embodiment of the present invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is
A part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art
Every other embodiment obtained without creative efforts, shall fall within the protection scope of the present invention.
Fig. 1 shows a kind of flow diagram of identity identifying method provided in an embodiment of the present invention.
As shown in Figure 1, identity identifying method provided in an embodiment of the present invention, the method is applied to client, the side
Method includes:
Step 101, the first certification that the identification number for the user identity identification SIM card for carrying terminal is sent to server is asked
It asks;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, the user identity that client obtains terminal is known
The not identification number of (Subscriber Identification Module, SIM) card.
Optionally, identification number can be international mobile subscriber identity (the International Mobile of SIM card
Subscriber Identification Number, IMSI), IMSI is the mark for distinguishing mobile subscriber, is stored in SIM card
In, it can be used for distinguishing the effective information of mobile subscriber.
Client carries identification number in the first certification request, carries out authentication to client with request server.
As the first example, referring to fig. 2, client executing step 1 in Fig. 2 sends the first certification request to server.Clothes
After business device receives the first certification request, a random number is generated, and execute step 2, random number is sent to client, and
Step 3, the first corresponding relationship of the random number Yu the identification number is recorded.
Step 102, the random number that the server is directed to first certification request feedback is received.
Wherein, after the first certification request is sent to server by client, the random number of server feedback is received, at random
Number is authenticated for the identity to client, due to the randomness of random number, can prevent from being reused.
Step 103, according to preset CertPubKey in the first preset algorithm and the SIM card, the random number is added
It is close to obtain the first ciphertext.
Wherein, the first preset algorithm is well known between client and server or the Encryption Algorithm made an appointment.SIM card
In preset CertPubKey, that is, SIM card certificate in public key value, SIM card certificate generally comprises following information: public key value, mark
It accords with information (such as title and e-mail address), validity period (effective time of certificate), issuer identifier information and issues
The digital signature etc. of person, for confirming the effective of binding relationship between the public key of main body where certificate and the identifier information of main body
Property.
Client carries out encryption to random number according to CertPubKey preset in the first preset algorithm and SIM card and obtains the
One ciphertext, the first ciphertext can be used for verifying the first preset algorithm and CertPubKey, and then verify the identity of client.
With continued reference to Fig. 2, client executing step 4 in Fig. 2, encrypted random number.
Step 104, the second certification request for carrying the identification number and the first ciphertext is sent to the server.
Wherein, user end to server send the second certification request, and carried in the second certification request identification number and
First ciphertext, so that server searches the local random number corresponding with the identification number that server local is recorded according to identification number,
And according to local the first ciphertext of random number verification, the certification to the second certification request is realized.
Further, if after the message that the subsequently received server of client passes through the certification of the second certification request, visitor
Process corresponding with this authentication, such as the login process of third party application can be performed in family end, completes to second
After certification request, client realization can be made to exempt from close login third party application, login process no longer needs to use at this time
The login modes such as name in an account book, password avoid the cumbersome of the login mode based on username and password.
With continued reference to Fig. 2, client executing step 5 in Fig. 2 sends the second certification request to server.
In the above embodiment of the present invention, the user identity identification SIM card of terminal is carried by sending to server
First certification request of identification number, and receive the random number that the server is directed to first certification request feedback;Further according to
Preset CertPubKey in first preset algorithm and the SIM card obtains the first ciphertext to the random number encryption, finally to
The server sends the second certification request for carrying the identification number and the first ciphertext, if subsequent receive is recognized second
Process corresponding with this authentication can be performed in the message that card request certification passes through, client.In the embodiment of the present invention
Verification process is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, and related credentials information is registered before fabrication,
Verification process is without resurveying;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with
Sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.The present invention solves existing
There is defect problem existing for the identification authentication mode in technology.
Optionally, described to carry the identification number and first close to server transmission in the embodiment of the present invention
After the step of second certification request of text, which comprises
Receive the authentication result that the server is directed to second certification request;
When the authentication result indicates that second certification request passes through, default application program is logged in.
Wherein, presetting application program is third party application, when the authentication in the present invention is third-party application journey
When the login process of sequence, after user end to server sends the second certification request, the server is received for described second
The authentication result of certification request;When the authentication result indicates that second certification request passes through, exempts from close log in and preset application
Program completes authentication based on the certificate in SIM card, avoids the cumbersome of the login mode based on username and password.
Further, in the embodiment of the present invention, described the step of logging in default application program, comprising:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
Wherein, during logging in default application program, the default required parameter of client is obtained first, presets request ginseng
It, can be by Request after number is completed for request token (Request Token) server of authorization to the authentication of client
Token is sent to client, and client requests access to token (Access to server first according to Request Token
Token), then further according to Access Token to the pre-set user identification number of server requesting client, pre-set user is identified
Number can be OpenID, be based ultimately upon pre-set user identification number log in third party application.
As the second example, referring to Fig. 3, exempting from for identity identifying method based on the embodiment of the present invention is close logged
Journey mainly comprises the steps that
Step 301, where verifying client in the SIM card of terminal, if preset SIM card certificate:
If so, executing step 302, otherwise, authentification failure simultaneously terminates process.
Step 302, authentication is requested to server.
Specifically, authentication procedures mainly comprise the steps that
1, the first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Its
In, the client is installed on the terminal;
2, the random number that the server is directed to first certification request feedback is received;
3, according to preset CertPubKey in the first preset algorithm and the SIM card, the random number encryption is obtained
First ciphertext;
4, the second certification request for carrying the identification number and the first ciphertext is sent to the server;
5, server is received to the authentication result of the second certification request: if authentication result passes through, thening follow the steps 303, it is no
Then, authentification failure and terminate process.
Step 303, the Request Token of authorization is obtained;
Step 304, Access Token is requested to server according to Request Token, further according to Access Token
To the OpenID of server requesting client;
Step 305, third party application is logged according to OpenID, and terminates process.
It in above-mentioned example, realizes and exempts from close login, avoid the account name of third party application, password passes out of mind or lets out
The problems such as leakage;Meanwhile by the SIM card of preset certificate, increase hardware without additional, SIM card both as the medium communicated, was also made
For the voucher of authentication;In addition, certificate is preset in SIM card from factory, solves authentication information and acquire cumbersome ask
Topic;And since SIM card has the ability of communication, it can be achieved that control to the identity documents reported the loss.
In the above embodiment of the present invention, the user identity identification SIM card of terminal is carried by sending to server
First certification request of identification number, and receive the random number that the server is directed to first certification request feedback;Further according to
Preset CertPubKey in first preset algorithm and the SIM card obtains the first ciphertext to the random number encryption, finally to
The server sends the second certification request for carrying the identification number and the first ciphertext, if subsequent receive is recognized second
The message that card request certification passes through, client is executable to exempt from close login third party application.Certification in the embodiment of the present invention
Process is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, and related credentials information is registered before fabrication, certification
Process is without resurveying;And authentication is completed based on the certificate in SIM card, since most communication terminals are provided with SIM
Card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.
As the other side of the embodiment of the present invention, referring to fig. 4, the embodiment of the invention also provides a kind of authentications
Method is applied to server, which comprises
Step 401, receive the identification number for the user identity identification SIM card for carrying terminal that client is sent first is recognized
Card request;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client is by the mark of the SIM card of terminal
Number carrying is sent to server in the first certification request, carries out authentication to client with request server.
Optionally, identification number can be the IMSI of SIM card, and IMSI is the mark for distinguishing mobile subscriber, be stored in SIM card
In, it can be used for distinguishing the effective information of mobile subscriber.
As the first example, referring to fig. 2, client executing step 1 in Fig. 2 sends the first certification request to server;Clothes
Business device receives the certification request.
Step 402, according to the second preset algorithm, a random number is generated, by the random number back to the client, and
Record the first corresponding relationship of the random number Yu the identification number.
Wherein, server generates a random number according to the second preset algorithm, and random number is used to carry out the identity of client
Certification, due to the randomness of random number, can prevent from being reused.
With continued reference to Fig. 2, after server receives the first certification request, a random number is generated, and execute step 2, it will
Random number is sent to client and step 3, records the first corresponding relationship of the random number Yu the identification number.
Step 403, the second certification for carrying identification number to be certified and the first ciphertext that the client is sent is received
Request, first ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, right
What the random number encryption obtained.
Wherein, server receives the second certification request that client is sent, and carries the first ciphertext in the second certification request
And identification number to be certified;First ciphertext is the client according to the terminal SIM where the first preset algorithm and client
Preset CertPubKey in card, obtains the random number encryption, and the first preset algorithm is public between client and server
Encryption Algorithm that is knowing or making an appointment.
Public key value in SIM card in the certificate of preset CertPubKey, that is, SIM card, SIM card certificate generally comprise following letter
Breath: public key value, identifier information (such as title and e-mail address), validity period (effective time of certificate), issuer mark
Information and the digital signature of issuer etc. are accorded with, for confirming between the public key of certificate place main body and the identifier information of main body
The validity of binding relationship.
Step 404, according to first corresponding relationship, second certification request is authenticated.
Wherein, server determines in the first corresponding relationship according to identification number to be certified, it is corresponding with identification number to be certified with
Machine number (hereinafter referred to as local random number);According to decipherment algorithm corresponding with the first preset algorithm, the plaintext of the first ciphertext is obtained
(i.e. random number);If random number is consistent with local random number, show that the CertPubKey of client and the first preset algorithm are equal
Correctly, the certification of the second certification request is passed through and the authentication of client passes through.
In the above embodiment of the present invention, the identification number of the SIM card for carrying terminal by receiving client transmission
First certification request;According to the second preset algorithm, a random number is generated, by the random number back to the client, and is remembered
Record the first corresponding relationship of the random number Yu the identification number;Receive the client transmission carries identification number to be certified
And first ciphertext the second certification request;First ciphertext is the client according to the first preset algorithm and described
Preset CertPubKey in SIM card, obtains the random number encryption;According to first corresponding relationship, to described second
Certification request is authenticated.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is certification clothes
Business device is issued, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is complete based on the certificate in SIM card
At authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability,
Without increasing other hardware devices.The present invention solves defect problem existing for identification authentication mode in the prior art.
Specifically, described according to first corresponding relationship in the embodiment of the present invention, second certification request is carried out
The step of certification, comprising:
Obtain the identification number to be certified carried in second certification request;
Obtain preset certificate and private key corresponding with the identification number to be certified, according to the certificate and private key and with
The plaintext after being decrypted is decrypted to first ciphertext in the corresponding decipherment algorithm of first preset algorithm;
If the plaintext after the decryption is identical as the local random number, determines to authenticate second certification request and lead to
It crosses.
Wherein, server obtains the identification number to be certified carried in second certification request, and according to mark to be certified
Number, determine in the first corresponding relationship, it is corresponding with identification number to be certified local random number, and obtain it is preset with it is described to
The corresponding certificate and private key of identification number is authenticated, according to certificate and private key and decipherment algorithm corresponding with the first preset algorithm, obtains the
The plaintext (i.e. random number) of one ciphertext;If random number is consistent with local random number, show the CertPubKey and the of client
One preset algorithm is correct, passes through to the certification of the second certification request and the authentication of client passes through.
Optionally, described according to first corresponding relationship in the embodiment of the present invention, second certification request is carried out
After the step of certification, the method also includes:
To the client feedback authentication result.
Wherein, after server authenticates the second certification request, to client feedback authentication result, if authentication result
Instruction certification is when passing through, client can be performed process corresponding with this authentication, for example third party application is stepped on
Process is recorded, after completing to the second certification request, client realization can be made to exempt from close login third party application, stepped at this time
Record process no longer needs the login modes such as user name, password, avoids the cumbersome of the login mode based on username and password.
With continued reference to Fig. 2, server executes step 6 in Fig. 2, to client feedback authentication result.
In the above embodiment of the present invention, the identification number of the SIM card for carrying terminal by receiving client transmission
First certification request;According to the second preset algorithm, a random number is generated, by the random number back to the client, and is remembered
Record the first corresponding relationship of the random number Yu the identification number;Receive the client transmission carries identification number to be certified
And first ciphertext the second certification request;First ciphertext is the client according to the first preset algorithm and described
Preset CertPubKey in SIM card, obtains the random number encryption;According to first corresponding relationship, to described second
Certification request is authenticated.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is certification clothes
Business device is issued, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is complete based on the certificate in SIM card
At authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability,
Without increasing other hardware devices.
Identity identifying method provided in an embodiment of the present invention is described above, introduces the present invention below in conjunction with attached drawing and implements
The identification authentication system that example provides.
Referring to Fig. 5, the embodiment of the invention provides a kind of identification authentication systems, are applied to client, and described device includes:
First sending module 501, for sending the identification number for carrying the user identity identification SIM card of terminal to server
The first certification request;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client obtains the mark of the SIM card of terminal
Knowledge number.
Optionally, identification number can be international mobile subscriber identity (the International Mobile of SIM card
Subscriber Identification Number, IMSI), IMSI is the mark for distinguishing mobile subscriber, is stored in SIM card
In, it can be used for distinguishing the effective information of mobile subscriber.
Client carries identification number in the first certification request, carries out authentication to client with request server.
Random number receiving module 502, the random number for being directed to first certification request feedback for receiving the server.
Wherein, after the first certification request is sent to server by client, the random number of server feedback is received, at random
Number is authenticated for the identity to client, due to the randomness of random number, can prevent from being reused.
Encrypting module 503 is used for according to preset CertPubKey in the first preset algorithm and the SIM card, to described
Random number encryption obtains the first ciphertext.
Wherein, the first preset algorithm is well known between client and server or the Encryption Algorithm made an appointment.SIM card
In preset CertPubKey, that is, SIM card certificate in public key value, SIM card certificate generally comprises following information: public key value, mark
It accords with information (such as title and e-mail address), validity period (effective time of certificate), issuer identifier information and issues
The digital signature etc. of person, for confirming the effective of binding relationship between the public key of main body where certificate and the identifier information of main body
Property.
Client carries out encryption to random number according to CertPubKey preset in the first preset algorithm and SIM card and obtains the
One ciphertext, the first ciphertext can be used for verifying the first preset algorithm and CertPubKey, and then verify the identity of client.
Second sending module 504 carries the of the identification number and the first ciphertext for sending to the server
Two certification requests.
Wherein, user end to server send the second certification request, and carried in the second certification request identification number and
First ciphertext, so that server searches the local random number corresponding with the identification number that server local is recorded according to identification number,
And according to local the first ciphertext of random number verification, the certification to the second certification request is realized.
Further, if after the message that the subsequently received server of client passes through the certification of the second certification request, visitor
Process corresponding with this authentication, such as the login process of third party application can be performed in family end, completes to second
After certification request, client realization can be made to exempt from close login third party application, login process no longer needs to use at this time
The login modes such as name in an account book, password avoid the cumbersome of the login mode based on username and password.
Optionally, in the embodiment of the present invention, described device further include:
As a result receiving module, the authentication result for being directed to second certification request for receiving the server;
Login module, it is default using journey for logging in when the authentication result indicates that second certification request passes through
Sequence.
Optionally, in the embodiment of the present invention, the login module is used for:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
In the above embodiment of the present invention, the user for carrying terminal is sent to server by the first sending module 501
First certification request of the identification number of identification SIM card, random number receiving module 502 receive the server for described the
The random number of one certification request feedback;Encrypting module 503 is public according to certificate preset in the first preset algorithm and the SIM card
Key obtains the first ciphertext to the random number encryption, and the second sending module 504 carries the mark to server transmission
Number and the first ciphertext the second certification request, if subsequent receive authenticates the message that passes through, client to the second certification request
Process corresponding with this authentication can be performed.Verification process in the embodiment of the present invention is simple, convenient for operation, SIM card
In certificate issued for certificate server, related credentials information is registered before fabrication, and verification process is without resurveying;And it is based on
Certificate in SIM card completes authentication, and since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy
In popularization, strong applicability, without increasing other hardware devices.
Referring to Fig. 6, the embodiment of the invention provides a kind of identification authentication systems, are applied to server, and described device includes:
First receiving module 601, the mark of the user identity identification SIM card for carrying terminal for receiving client transmission
First certification request of knowledge number;Wherein, the client is installed on the terminal.
Wherein, client is installed on the terminal, and when carrying out authentication, client is by the mark of the SIM card of terminal
Number carrying is sent to server in the first certification request, carries out authentication to client with request server.
Optionally, identification number can be the IMSI of SIM card, and IMSI is the mark for distinguishing mobile subscriber, be stored in SIM card
In, it can be used for distinguishing the effective information of mobile subscriber.
Random number generation module 602, for a random number being generated, by the random number back according to the second preset algorithm
The extremely client, and record the first corresponding relationship of the random number Yu the identification number.
Wherein, server generates a random number according to the second preset algorithm, and random number is used to carry out the identity of client
Certification, due to the randomness of random number, can prevent from being reused.
Second receiving module 603 carries identification number to be certified and first close for receive that the client sends
Second certification request of text;First ciphertext is that the client is preset according in the first preset algorithm and the SIM card
CertPubKey, the random number encryption is obtained.
Wherein, server receives the second certification request that client is sent, and carries the first ciphertext in the second certification request
And identification number to be certified;First ciphertext is the client according to the terminal SIM where the first preset algorithm and client
Preset CertPubKey in card, obtains the random number encryption, and the first preset algorithm is public between client and server
Encryption Algorithm that is knowing or making an appointment.
Public key value in SIM card in the certificate of preset CertPubKey, that is, SIM card, SIM card certificate generally comprise following letter
Breath: public key value, identifier information (such as title and e-mail address), validity period (effective time of certificate), issuer mark
Information and the digital signature of issuer etc. are accorded with, for confirming between the public key of certificate place main body and the identifier information of main body
The validity of binding relationship.
Authentication module 604, for being authenticated to second certification request according to first corresponding relationship.
Wherein, server determines in the first corresponding relationship according to identification number to be certified, it is corresponding with identification number to be certified with
Machine number (hereinafter referred to as local random number);According to decipherment algorithm corresponding with the first preset algorithm, the plaintext of the first ciphertext is obtained
(i.e. random number);If random number is consistent with local random number, show that the CertPubKey of client and the first preset algorithm are equal
Correctly, the certification of the second certification request is passed through and the authentication of client passes through.
Optionally, in the embodiment of the present invention, the authentication module 604 includes:
Acquisition submodule, for obtaining the identification number to be certified carried in second certification request;
Determine submodule, for according to first corresponding relationship, determining local corresponding with the identification number to be certified
Random number;
Submodule is decrypted, for obtaining preset certificate and private key corresponding with the identification number to be certified, according to institute
Certificate and private key and decipherment algorithm corresponding with the first preset algorithm are stated, first ciphertext is decrypted after being decrypted
In plain text;
Authentication sub module determines if the plaintext for after the decryption is identical as the local random number to described the
The certification of two certification requests passes through.
Optionally, in the embodiment of the present invention, described device further include:
As a result feedback module is used for the client feedback authentication result.
In the above embodiment of the present invention, the SIM for carrying terminal that client is sent is received by the first receiving module 601
First certification request of the identification number of card;Random number generation module 602 generates a random number, by institute according to the second preset algorithm
Random number back is stated to the client, it is first corresponding to record the random number and the identification number for the second receiving module 603
Relationship receives the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;Described
One ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, to the random number
What encryption obtained;Authentication module 604 authenticates second certification request according to first corresponding relationship.The present invention
Verification process in embodiment is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, related credentials before fabrication
Information is registered, and verification process is without resurveying;And authentication is completed based on the certificate in SIM card, since majority communicates
Terminal is provided with sim card slot, therefore the embodiment of the present invention is easy to spread, strong applicability, without increasing other hardware devices.
Fig. 7 shows the structural schematic diagram of a kind of electronic equipment of further embodiment of this invention offer.
Referring to Fig. 7, electronic equipment provided in an embodiment of the present invention, the electronic equipment include memory (memory) 71,
Processor (processor) 72, bus 73 and it is stored in the computer program that can be run on memory 71 and on a processor.
Wherein, the memory 71, processor 72 complete mutual communication by the bus 73.
The processor 72 is used to call the program instruction in the memory 71, real when executing the computer program
Now such as the method for Fig. 1.
In another embodiment, following method is realized when the processor executes the computer program:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein,
The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption
One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
Electronic equipment provided in an embodiment of the present invention can be used for executing the corresponding program of method of above method embodiment,
This implementation repeats no more.
Electronic equipment provided in an embodiment of the present invention, by the processor execute the computer program when, pass through to
Server sends the first certification request for carrying the identification number of user identity identification SIM card of terminal, and receives the service
Device is directed to the random number of first certification request feedback;Further according to preset card in the first preset algorithm and the SIM card
Book public key obtains the first ciphertext to the random number encryption, finally to the server transmission carry the identification number and
Second certification request of the first ciphertext, if subsequent receive authenticates the message passed through to the second certification request, client is executable
Process corresponding with this authentication.Verification process in the embodiment of the present invention is simple, the card convenient for operating, in SIM card
Book is issued for certificate server, and related credentials information is registered before fabrication, and verification process is without resurveying;And it is based on SIM card
In certificate complete authentication, since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to push away
Extensively, strong applicability, without increasing other hardware devices.
A kind of non-transient computer readable storage medium that further embodiment of this invention provides, the non-transient computer can
It reads to be stored with computer program on storage medium, realize when the computer program is executed by processor such as the step of Fig. 1.
In another embodiment, following method is realized when the computer program is executed by processor:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein,
The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption
One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
Non-transient computer readable storage medium provided in an embodiment of the present invention, the computer program are executed by processor
The method of Shi Shixian above method embodiment, this implementation repeat no more.
Non-transient computer readable storage medium provided in an embodiment of the present invention, by carrying terminal to server transmission
User identity identification SIM card identification number the first certification request, and receive the server for it is described first certification ask
It negates the random number of feedback;Further according to preset CertPubKey in the first preset algorithm and the SIM card, the random number is added
It is close to obtain the first ciphertext, finally asked to the second certification that server transmission carries the identification number and the first ciphertext
It asks, if subsequent receive authenticates the message passed through to the second certification request, client is executable corresponding with this authentication
Process.Verification process in the embodiment of the present invention is simple, and convenient for operation, the certificate in SIM card is issued for certificate server, makes
Related credentials information is registered before blocking, and verification process is without resurveying;And authentication is completed based on the certificate in SIM card,
Since most communication terminals are provided with sim card slot, the embodiment of the present invention is easy to spread, strong applicability, without increasing it
His hardware device.
Further embodiment of this invention discloses a kind of computer program product, and the computer program product is non-including being stored in
Computer program in transitory computer readable storage medium, the computer program include program instruction, when the computer
When program instruction is computer-executed, computer is able to carry out method provided by above-mentioned each method embodiment, for example,
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein,
The client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, is obtained to the random number encryption
One ciphertext;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
The apparatus embodiments described above are merely exemplary, wherein described, unit can as illustrated by the separation member
It is physically separated with being or may not be, component shown as a unit may or may not be physics list
Member, it can it is in one place, or may be distributed over multiple network units.It can be selected according to the actual needs
In some or all of the modules achieve the purpose of the solution of this embodiment.Those of ordinary skill in the art are not paying creativeness
Labour in the case where, it can understand and implement.
Through the above description of the embodiments, those skilled in the art can be understood that each embodiment can
It realizes by means of software and necessary general hardware platform, naturally it is also possible to pass through hardware.Based on this understanding, on
Stating technical solution, substantially the part that contributes to existing technology can be embodied in the form of software products in other words, should
Computer software product may be stored in a computer readable storage medium, such as ROM/RAM, magnetic disk, CD, including several fingers
It enables and using so that a computer equipment (can be personal computer, server or the network equipment etc.) executes each implementation
Method described in certain parts of example or embodiment.
Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although
Present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: it still may be used
To modify the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features;
And these are modified or replaceed, technical solution of various embodiments of the present invention that it does not separate the essence of the corresponding technical solution spirit and
Range.
Claims (10)
1. a kind of identity identifying method is applied to client, which is characterized in that the described method includes:
The first certification request for carrying the identification number of user identity identification SIM card of terminal is sent to server;Wherein, described
Client is installed on the terminal;
Receive the random number that the server is directed to first certification request feedback;
According to preset CertPubKey in the first preset algorithm and the SIM card, it is close that first is obtained to the random number encryption
Text;
The second certification request for carrying the identification number and the first ciphertext is sent to the server.
2. the method according to claim 1, wherein described carry the identification number to server transmission
And first ciphertext the second certification request the step of after, which comprises
Receive the authentication result that the server is directed to second certification request;
When the authentication result indicates that second certification request passes through, default application program is logged in.
3. according to the method described in claim 2, it is characterized in that, described the step of logging in default application program, comprising:
Obtain the default required parameter of the client;
According to the default required parameter, pre-set user identification number is requested to the server;
According to the pre-set user identification number, default application program is logged in.
4. a kind of identity identifying method is applied to server, which is characterized in that the described method includes:
Receive the first certification request of the identification number for the user identity identification SIM card for carrying terminal that client is sent;Wherein,
The client is installed on the terminal;
According to the second preset algorithm, a random number is generated, by the random number back to the client, and is recorded described random
Several the first corresponding relationships with the identification number;
Receive the second certification request for carrying identification number to be certified and the first ciphertext that the client is sent;Described first
Ciphertext is the client according to preset CertPubKey in the first preset algorithm and the SIM card, is added to the random number
It is close to obtain;
According to first corresponding relationship, second certification request is authenticated.
5. according to the method described in claim 4, it is characterized in that, described according to first corresponding relationship, to described second
The step of certification request is authenticated, comprising:
Obtain the identification number to be certified carried in second certification request;
According to first corresponding relationship, determining local random number corresponding with the identification number to be certified;
Preset certificate and private key corresponding with the identification number to be certified is obtained, according to the certificate and private key and with first
The plaintext after being decrypted is decrypted to first ciphertext in the corresponding decipherment algorithm of preset algorithm;
If the plaintext after the decryption is identical as the local random number, determines and second certification request certification is passed through.
6. according to the method described in claim 4, it is characterized in that, described according to first corresponding relationship, to described second
After the step of certification request is authenticated, the method also includes:
To the client feedback authentication result.
7. a kind of identification authentication system, it is applied to client, which is characterized in that described device includes:
First sending module, first of the identification number for sending the user identity identification SIM card for carrying terminal to server
Certification request;Wherein, the client is installed on the terminal;
Random number receiving module, the random number for being directed to first certification request feedback for receiving the server;
Encrypting module, for adding to the random number according to preset CertPubKey in the first preset algorithm and the SIM card
It is close to obtain the first ciphertext;
Second sending module, the second certification for carrying the identification number and the first ciphertext to server transmission are asked
It asks.
8. a kind of identification authentication system, it is applied to server, which is characterized in that described device includes:
First receiving module, the identification number of the user identity identification SIM card for carrying terminal for receiving client transmission
First certification request;Wherein, the client is installed on the terminal;
Random number generation module, for a random number being generated, by the random number back to the visitor according to the second preset algorithm
Family end, and record the first corresponding relationship of the random number Yu the identification number;
Second receiving module, carry identification number to be certified and the first ciphertext second sent for receiving the client
Certification request;First ciphertext is that the client is public according to certificate preset in the first preset algorithm and the SIM card
Key obtains the random number encryption;
Authentication module, for being authenticated to second certification request according to first corresponding relationship.
9. a kind of electronic equipment, which is characterized in that on a memory and can be including memory, processor, bus and storage
The computer program run on processor, the processor are realized when executing the computer program as appointed in claim 1 to 6
Step in identity identifying method described in one.
10. a kind of non-transient computer readable storage medium, is stored thereon with computer program, it is characterised in that: the calculating
It realizes when machine program is executed by processor such as the step in identity identifying method described in any one of claims 1 to 6.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810724395.8A CN109005155B (en) | 2018-07-04 | 2018-07-04 | Identity authentication method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810724395.8A CN109005155B (en) | 2018-07-04 | 2018-07-04 | Identity authentication method and device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN109005155A true CN109005155A (en) | 2018-12-14 |
CN109005155B CN109005155B (en) | 2021-11-12 |
Family
ID=64598756
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810724395.8A Active CN109005155B (en) | 2018-07-04 | 2018-07-04 | Identity authentication method and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN109005155B (en) |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109286933A (en) * | 2018-10-18 | 2019-01-29 | 世纪龙信息网络有限责任公司 | Authentication method, device, system, computer equipment and storage medium |
CN111006692A (en) * | 2019-11-29 | 2020-04-14 | 东风商用车有限公司 | Method for rapidly correcting vehicle speed and mileage of commercial vehicle instrument based on development of diagnostic instrument |
CN111541708A (en) * | 2020-05-06 | 2020-08-14 | 广东纬德信息科技股份有限公司 | Identity authentication method based on power distribution |
CN111552928A (en) * | 2020-04-26 | 2020-08-18 | 北京学之途网络科技有限公司 | Authentication method and device |
CN111572676A (en) * | 2020-04-19 | 2020-08-25 | 东风汽车股份有限公司 | Vehicle instrument configuration parameter calibration method |
CN111740846A (en) * | 2020-08-04 | 2020-10-02 | 飞天诚信科技股份有限公司 | Method and system for realizing smart card information reading of mobile terminal |
CN112187709A (en) * | 2019-07-05 | 2021-01-05 | 华为技术有限公司 | Authentication method, device and server |
CN112543454A (en) * | 2020-11-30 | 2021-03-23 | 亚信科技(成都)有限公司 | Authentication method and equipment |
CN112839062A (en) * | 2021-04-20 | 2021-05-25 | 北京天维信通科技有限公司 | Port hiding method, device and equipment with mixed authentication signals |
CN112866280A (en) * | 2020-07-03 | 2021-05-28 | 支付宝(杭州)信息技术有限公司 | Information verification method, device and equipment |
CN115622794A (en) * | 2022-11-15 | 2023-01-17 | 北京密码云芯科技有限公司 | Encryption and decryption method, device, equipment and storage medium |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101848084A (en) * | 2009-03-25 | 2010-09-29 | 黄金富 | Method and system for authenticating user computer server ISP identity by using SIM cards |
US20120144463A1 (en) * | 2003-04-11 | 2012-06-07 | Satarasinghe Prasanna J | System and method for extending secure authentication using unique session keys derived from entropy |
CN104009843A (en) * | 2013-02-23 | 2014-08-27 | 贺征东 | Token terminal and method |
CN104348812A (en) * | 2013-08-06 | 2015-02-11 | 中国电信股份有限公司 | Method and device for on-line certification of NFC (Near Field Communication) terminal |
CN105812334A (en) * | 2014-12-31 | 2016-07-27 | 北京华虹集成电路设计有限责任公司 | Network authentication method |
CN105871864A (en) * | 2016-04-20 | 2016-08-17 | 中国联合网络通信集团有限公司 | Mobile terminal identity authentication method and device |
CN107333263A (en) * | 2017-06-12 | 2017-11-07 | 浙江神州量子网络科技有限公司 | A kind of follow-on SIM card and mobile communication personal identification method and system |
-
2018
- 2018-07-04 CN CN201810724395.8A patent/CN109005155B/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20120144463A1 (en) * | 2003-04-11 | 2012-06-07 | Satarasinghe Prasanna J | System and method for extending secure authentication using unique session keys derived from entropy |
CN101848084A (en) * | 2009-03-25 | 2010-09-29 | 黄金富 | Method and system for authenticating user computer server ISP identity by using SIM cards |
CN104009843A (en) * | 2013-02-23 | 2014-08-27 | 贺征东 | Token terminal and method |
CN104348812A (en) * | 2013-08-06 | 2015-02-11 | 中国电信股份有限公司 | Method and device for on-line certification of NFC (Near Field Communication) terminal |
CN105812334A (en) * | 2014-12-31 | 2016-07-27 | 北京华虹集成电路设计有限责任公司 | Network authentication method |
CN105871864A (en) * | 2016-04-20 | 2016-08-17 | 中国联合网络通信集团有限公司 | Mobile terminal identity authentication method and device |
CN107333263A (en) * | 2017-06-12 | 2017-11-07 | 浙江神州量子网络科技有限公司 | A kind of follow-on SIM card and mobile communication personal identification method and system |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109286933A (en) * | 2018-10-18 | 2019-01-29 | 世纪龙信息网络有限责任公司 | Authentication method, device, system, computer equipment and storage medium |
CN112187709B (en) * | 2019-07-05 | 2022-07-05 | 荣耀终端有限公司 | Authentication method, device and server |
CN112187709A (en) * | 2019-07-05 | 2021-01-05 | 华为技术有限公司 | Authentication method, device and server |
CN111006692A (en) * | 2019-11-29 | 2020-04-14 | 东风商用车有限公司 | Method for rapidly correcting vehicle speed and mileage of commercial vehicle instrument based on development of diagnostic instrument |
CN111572676A (en) * | 2020-04-19 | 2020-08-25 | 东风汽车股份有限公司 | Vehicle instrument configuration parameter calibration method |
CN111572676B (en) * | 2020-04-19 | 2021-08-13 | 东风汽车股份有限公司 | Vehicle instrument configuration parameter calibration method |
CN111552928A (en) * | 2020-04-26 | 2020-08-18 | 北京学之途网络科技有限公司 | Authentication method and device |
CN111541708A (en) * | 2020-05-06 | 2020-08-14 | 广东纬德信息科技股份有限公司 | Identity authentication method based on power distribution |
CN111541708B (en) * | 2020-05-06 | 2022-08-19 | 广东纬德信息科技股份有限公司 | Identity authentication method based on power distribution |
CN112866280A (en) * | 2020-07-03 | 2021-05-28 | 支付宝(杭州)信息技术有限公司 | Information verification method, device and equipment |
CN111740846A (en) * | 2020-08-04 | 2020-10-02 | 飞天诚信科技股份有限公司 | Method and system for realizing smart card information reading of mobile terminal |
CN112543454A (en) * | 2020-11-30 | 2021-03-23 | 亚信科技(成都)有限公司 | Authentication method and equipment |
CN112543454B (en) * | 2020-11-30 | 2022-11-15 | 亚信科技(成都)有限公司 | Authentication method and equipment |
CN112839062A (en) * | 2021-04-20 | 2021-05-25 | 北京天维信通科技有限公司 | Port hiding method, device and equipment with mixed authentication signals |
CN112839062B (en) * | 2021-04-20 | 2021-08-13 | 北京天维信通科技有限公司 | Port hiding method, device and equipment with mixed authentication signals |
CN115622794A (en) * | 2022-11-15 | 2023-01-17 | 北京密码云芯科技有限公司 | Encryption and decryption method, device, equipment and storage medium |
CN115622794B (en) * | 2022-11-15 | 2023-04-07 | 北京密码云芯科技有限公司 | Encryption and decryption method, device, equipment and storage medium |
Also Published As
Publication number | Publication date |
---|---|
CN109005155B (en) | 2021-11-12 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109005155A (en) | Identity identifying method and device | |
EP3373510B1 (en) | Method and device for realizing session identifier synchronization | |
CN111931144B (en) | Unified safe login authentication method and device for operating system and service application | |
US20180082050A1 (en) | Method and a system for secure login to a computer, computer network, and computer website using biometrics and a mobile computing wireless electronic communication device | |
CN105024819B (en) | A kind of multiple-factor authentication method and system based on mobile terminal | |
JP6586446B2 (en) | Method for confirming identification information of user of communication terminal and related system | |
US8683562B2 (en) | Secure authentication using one-time passwords | |
EP3208732A1 (en) | Method and system for authentication | |
US7409543B1 (en) | Method and apparatus for using a third party authentication server | |
KR101451359B1 (en) | User account recovery | |
CN113302894A (en) | Secure account access | |
US11777743B2 (en) | Method for securely providing a personalized electronic identity on a terminal | |
CN109672675A (en) | A kind of WEB authentication method of the cryptographic service middleware based on OAuth2.0 | |
CN104660412A (en) | Password-less security authentication method and system for mobile equipment | |
DK2414983T3 (en) | Secure computer system | |
CN114531277A (en) | User identity authentication method based on block chain technology | |
CN111800378A (en) | Login authentication method, device, system and storage medium | |
US10333707B1 (en) | Systems and methods for user authentication | |
WO2019207032A1 (en) | Remote biometric identification | |
CN114374522B (en) | Trusted device authentication method and device, computer device and storage medium | |
CN104486322B (en) | Terminal access authentication authorization method and terminal access authentication authoring system | |
KR20220167366A (en) | Cross authentication method and system between online service server and client | |
JP6465426B1 (en) | Electronic signature system, certificate issuing system, key management system, and electronic certificate issuing method | |
Kizza | Authentication | |
EP1989815A2 (en) | A method for serving a plurality of applications by a security token |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information | ||
CB02 | Change of applicant information |
Address after: Room 332, 3 / F, Building 102, 28 xinjiekouwei street, Xicheng District, Beijing 100088 Applicant after: Qianxin Technology Group Co.,Ltd. Address before: 100015 15, 17 floor 1701-26, 3 building, 10 Jiuxianqiao Road, Chaoyang District, Beijing. Applicant before: BEIJING QIANXIN TECHNOLOGY Co.,Ltd. |
|
GR01 | Patent grant | ||
GR01 | Patent grant |