CN109698833B - Method and system for performing collaborative authentication of identification information in Internet - Google Patents

Method and system for performing collaborative authentication of identification information in Internet Download PDF

Info

Publication number
CN109698833B
CN109698833B CN201811627373.6A CN201811627373A CN109698833B CN 109698833 B CN109698833 B CN 109698833B CN 201811627373 A CN201811627373 A CN 201811627373A CN 109698833 B CN109698833 B CN 109698833B
Authority
CN
China
Prior art keywords
user equipment
identification information
random number
user
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811627373.6A
Other languages
Chinese (zh)
Other versions
CN109698833A (en
Inventor
不公告发明人
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Tianyi Digital Polymer Technology Co.,Ltd.
Original Assignee
Beijing Tianyi Digital Polymer Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Tianyi Digital Polymer Technology Co ltd filed Critical Beijing Tianyi Digital Polymer Technology Co ltd
Priority to CN201811627373.6A priority Critical patent/CN109698833B/en
Publication of CN109698833A publication Critical patent/CN109698833A/en
Application granted granted Critical
Publication of CN109698833B publication Critical patent/CN109698833B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/55Push-based network services

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

The invention discloses a method and a system for carrying out collaborative authentication on identification information in the Internet, wherein the method comprises the following steps: the user equipment sends an identity authentication request to an authentication server in the Internet; when the verification result of the initial verification of the user equipment is determined to be passed, the authentication server sends the basic text file and the random number sequence generator to the user equipment; the user equipment generates a first random number sequence by using the random number sequence generator, sends the first random number sequence to the authentication server, and forms a first character sequence; and generating authentication data comprising a plurality of identification information according to the first character sequence, sending the authentication data to the authentication server, decrypting the encrypted mixed information to obtain a plurality of decrypted characters and fingerprint information, and establishing virtual private network connection between the user equipment and the data server when the plurality of decrypted characters are the same as the plurality of characters sent by the user equipment and the fingerprint information passes verification.

Description

Method and system for performing collaborative authentication of identification information in Internet
Technical Field
The present invention relates to the field of internet, and more particularly, to a method and system for performing cooperative authentication of identification information in internet.
Background
Virtual Private network vpn (virtual Private network) belongs to remote access technology, and is simply to use public network to establish a Private network. For example, when an employee of a company goes on business and goes out of the country, the employee wants to access a server resource of an intranet, and the access belongs to remote access. In a conventional enterprise network configuration, remote access is performed by leasing a DDN (digital data network) private line or a frame relay, and such a communication scheme necessarily causes high network communication and maintenance costs. For mobile users (mobile office staff) and remote personal users, they usually enter the local area network of the enterprise through the dial-up line (Internet), but this inevitably brings about a security hidden trouble.
The method for making the outside staff to access the resources of the internal network and utilizing the VPN is to set up a VPN server in the internal network. After the local staff is connected with the Internet, the staff outside the enterprise enters the intranet through the VPN server after connecting with the VPN server through the Internet. In order to ensure data security, communication data between the VPN server and the client is encrypted. With data encryption, data can be considered to be securely transmitted over a dedicated data link as if a private network were specifically set up, but in reality the VPN uses a public link over the internet, so the VPN is called a virtual private network, which essentially encapsulates a data communication tunnel over a public network using encryption techniques. With the VPN technology, users can access intranet resources by using the VPN whether the users are on business or at home, as long as the users can access the intranet resources through the internet, which is why the VPN is widely used in enterprises.
However, in the current VPN access scheme, the VPN server or the authentication server authenticates only the user name and password from the user equipment without considering other identification information. In this case, the user names and passwords of some users are lost or stolen, which may cause the data of the internal network to be illegally accessed.
Disclosure of Invention
According to an aspect of the present invention, there is provided a method for performing cooperative authentication of identification information in the internet, the method comprising:
when user equipment wants to establish virtual private network connection with a data server in the Internet, sending an identity authentication request to an authentication server in the Internet, wherein the identity authentication request comprises: an identifier of the user equipment, a network address of the user equipment and password information;
in response to receiving the identity authentication request, the authentication server acquires an identifier and password information of the user equipment in the identity authentication request, acquires a preset password associated with the user equipment from a password database according to the identifier of the user equipment, and determines that a verification result of initial verification of the user equipment is passed when the preset password is the same as a current password in the password information;
when the verification result of the initial verification of the user equipment is determined to be passed, the authentication server sends the identifier of the user equipment and the network address of the user equipment to the data server to prompt the data server to add the identifier of the user equipment and the network address of the user equipment to a metadata push white list, wherein the data server sends a metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at preset time intervals;
the authentication server selects one text file from a plurality of text files in a text information base as a basic text file according to an identifier of the user equipment, creates a random number sequence generator associated with the basic text file, sets a maximum value of a random number for the random number sequence generator according to the number of characters included in the basic text file, wherein the random number is a natural number, sets a survival time and a counter for the random number sequence generator, sets an initial value of the counter to 0, and sends the basic text file and the random number sequence generator to the user equipment;
in response to receiving the base text file and the random number sequence generator, the user device determining whether a lifetime of the random number sequence generator expires, setting the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generating a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a numerical value of each natural number is less than or equal to a maximum value of a random number;
the user equipment sends the generated first random number sequence to the authentication server, and the user equipment selects a plurality of characters from the basic text file according to the position sequence by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the basic text file and forms the first character sequence according to the position sequence of the random number sequence;
prompting a user of the user equipment to generate authentication data including a plurality of identification information according to the first character sequence, wherein the authentication data includes at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information;
wherein a user records video identification information and audio identification information through a multimedia input device of a user device, wherein the video identification information is video information which is formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is audio information which is formed when the user reads the first character sequence and is synchronized with the video identification information in time;
wherein a user inputs fingerprint information through a fingerprint input device of a user equipment and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number with the largest numerical value from the second random data column as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server;
the user equipment sends video identification information, audio identification information and encrypted mixed information to the authentication server, the authentication server carries out voice recognition on the audio identification information to obtain a first character sequence, the authentication server generates a second character sequence according to a first random number sequence received from the user equipment, and when the second character sequence is determined to be the same as the first character sequence, whether the video identification information and the audio identification information are synchronous in time is determined;
decrypting the encrypted mix information to obtain decrypted plurality of characters and fingerprint information when it is determined that the video identification information and the audio identification information are synchronized in time, sending an instruction to the data server to cause a virtual private network connection to be established between the user device and the data server when the decrypted plurality of characters are the same as the plurality of characters sent by the user device and the fingerprint information is authenticated.
When a user of the user equipment wants to establish a virtual private network between the user equipment and a data server in the internet, the user sends an identity authentication request to an authentication server of the internet through the user equipment.
The password database is configured to store identification information and password information associated with each of a plurality of user devices within the internet.
The metadata push white list includes a plurality of push items, each push item including: an identifier of the user equipment and a network address of the user equipment.
Storing a plurality of text files in the text information base, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language; the natural language is English or Chinese.
According to another aspect of the present invention, there is provided a system for performing cooperative authentication of identification information in the internet, the system comprising:
the method comprises the following steps that when the user equipment wants to establish virtual private network connection with a data server in the Internet, the user equipment sends an identity authentication request to an authentication server in the Internet, wherein the identity authentication request comprises the following steps: an identifier of the user equipment, a network address of the user equipment and password information;
the authentication server responds to the received identity authentication request, acquires the identifier and the password information of the user equipment in the identity authentication request, acquires a preset password associated with the user equipment from a password database according to the identifier of the user equipment, and determines that the verification result of the initial verification of the user equipment is passed when the preset password is the same as the current password in the password information; when it is determined that the verification result of the initial verification of the user equipment is passed, the authentication server transmits an identifier of the user equipment and a network address of the user equipment to the data server,
the data server adds the identifier of the user equipment and the network address of the user equipment into a metadata push white list, wherein the data server sends a metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at preset time intervals;
the authentication server selects one text file from a plurality of text files in a text information base according to the identifier of the user equipment to serve as a basic text file, creates a random number sequence generator associated with the basic text file, sets the maximum value of a random number for the random number sequence generator according to the number of characters included in the basic text file, wherein the random number is a natural number, sets a survival time and a counter for the random number sequence generator, sets the initial value of the counter to be 0, and sends the basic text file and the random number sequence generator to the user equipment;
in response to receiving the base text file and the random number sequence generator, the user device determining whether a lifetime of the random number sequence generator expires, setting the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generating a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a numerical value of each natural number is less than or equal to a maximum value of a random number;
the user equipment sends the generated first random number sequence to the authentication server, and the user equipment selects a plurality of characters from the basic text file according to the position sequence by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the basic text file and forms the first character sequence according to the position sequence of the random number sequence;
prompting a user of the user equipment to generate authentication data including a plurality of identification information according to the first character sequence, wherein the authentication data includes at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information;
wherein a user records video identification information and audio identification information through a multimedia input device of a user device, wherein the video identification information is video information which is formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is audio information which is formed when the user reads the first character sequence and is synchronized with the video identification information in time;
wherein a user inputs fingerprint information through a fingerprint input device of a user equipment and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number with the largest numerical value from the second random data column as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server;
the user equipment sends video identification information, audio identification information and encrypted mixed information to the authentication server, the authentication server carries out voice recognition on the audio identification information to obtain a first character sequence, the authentication server generates a second character sequence according to a first random number sequence received from the user equipment, and when the second character sequence is determined to be the same as the first character sequence, whether the video identification information and the audio identification information are synchronous in time is determined;
decrypting the encrypted mix information to obtain decrypted plurality of characters and fingerprint information when it is determined that the video identification information and the audio identification information are synchronized in time, sending an instruction to the data server to cause a virtual private network connection to be established between the user device and the data server when the decrypted plurality of characters are the same as the plurality of characters sent by the user device and the fingerprint information is authenticated.
When a user of user equipment wishes to establish a virtual private network between the user equipment and a data server in the Internet, the user sends an identity authentication request to an authentication server of the Internet through the user equipment;
the password database is configured to store identification information and password information associated with each of a plurality of user devices within the internet.
The metadata push white list includes a plurality of push items, each push item including: an identifier of the user equipment and a network address of the user equipment.
Storing a plurality of text files in the text information base, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language; the natural language is English or Chinese.
Drawings
A more complete understanding of exemplary embodiments of the present invention may be had by reference to the following drawings in which:
fig. 1 is a flowchart of a method for performing cooperative authentication of identification information in the internet according to an embodiment of the present invention;
fig. 2 is a schematic structural diagram of a system for performing cooperative authentication of identification information in the internet according to an embodiment of the present invention; and
fig. 3 is a schematic diagram of a user equipment capable of inputting identification information according to an embodiment of the present invention.
Detailed Description
Fig. 1 is a flow chart of a method 100 for performing collaborative authentication of identification information in the internet according to an embodiment of the present invention. In step 101, when a user equipment wishes to establish a virtual private network connection with a data server in the internet, an identity authentication request is sent to an authentication server in the internet, where the identity authentication request includes: an identifier of the user device, a network address of the user device, and password information.
When a user of the user equipment wants to establish a virtual private network between the user equipment and a data server in the internet, the user sends an identity authentication request to an authentication server of the internet through the user equipment. The password information is a combination of capital English letters, lowercase English letters and numbers.
In step 102, in response to receiving the identity authentication request, the authentication server obtains an identifier and password information of the user equipment in the identity authentication request, obtains a preset password associated with the user equipment from a password database according to the identifier of the user equipment, and determines that a verification result of initial verification of the user equipment is passed when the preset password is the same as a current password in the password information. The password database is configured to store identification information and password information associated with each of a plurality of user devices within the internet. The password database stores a plurality of records, each record including an identifier of a user device and a preset password. The password information includes a current password input by a user through a character input device of the user equipment.
In step 103, when it is determined that the verification result of the initial verification of the user equipment is passed, the authentication server transmits the identifier of the user equipment and the network address of the user equipment to the data server to cause the data server to add the identifier of the user equipment and the network address of the user equipment to the metadata push white list, wherein the data server transmits the metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at predetermined time intervals.
The metadata push white list includes a plurality of push items, each push item including: an identifier of the user equipment and a network address of the user equipment. And each user device in the metadata pushing white list is a target user device of the data server when the metadata pushing is carried out. The predetermined time interval is 1 day, 2 days, 3 days, 5 days, 7 days, 10 days, 15 days, 20 days, or 30 days. Or the data server sends a metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at a preset time. The predetermined time is the 1 st day of each month or the last day of each month. The metadata collection includes metadata for each of all data files stored by the data server.
In step 104, the authentication server selects one text file from a plurality of text files in a text information base as a base text file according to an identifier of the user equipment, creates a random number sequence generator associated with the base text file, sets a maximum value of a random number for the random number sequence generator according to the number of characters included in the base text file, wherein the random number is a natural number, sets a survival time and a counter for the random number sequence generator, sets an initial value of the counter to 0, and transmits the base text file and the random number sequence generator to the user equipment.
The text information base stores a plurality of text files, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language. The natural language is English or Chinese. The identifier of the user equipment can indicate a name of a natural language used by the user equipment.
The authentication server selecting one text file from a plurality of text files in a text information base as a basic text file according to the identifier of the user equipment comprises: the authentication server determines the name of the natural language used by the user equipment according to the identifier of the user equipment, and selects one text file which is the same as the natural language used by the user equipment from a plurality of text files in a text information base as a basic text file according to the name of the natural language used by the user equipment.
Selecting one text file which is the same as the natural language used by the user equipment from a plurality of text files in a text information base according to the name of the natural language used by the user equipment as a basic text file, wherein the text file comprises: selecting a plurality of text files in a text information base, wherein the text files are the same as the natural language used by the user equipment, from a plurality of text files in a text information base according to the name of the natural language used by the user equipment, and randomly selecting one text file from the text files in the same natural language used by the user equipment as a basic text file.
Each text file includes at least 10 characters, 20 characters, 50 characters, 100 characters, 200 characters, 300 characters, or 500 characters; and there is no space between any two adjacent characters of all the characters of each text file. And replacing the characters with words, expressions or characters. The base text file includes 120 characters, and thus the maximum value of the random numbers that the random number sequence generator can generate is 120 and the minimum value of the random numbers that the random number sequence generator can generate is 1. The survival time is 1 minute, 2 minutes, 5 minutes, 8 minutes, 10 minutes, 15 minutes, or 20 minutes.
In step 105, in response to receiving the base text file and the random number sequence generator, the user equipment determines whether a lifetime of the random number sequence generator expires, sets the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generates a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a value of each natural number is less than or equal to a maximum value of a random number.
Upon determining that the lifetime of the random number sequence generator has expired, discarding the base text file and the random number sequence generator. The lifetime of the random number sequence generator is set to infinity so that the random number sequence generator does not fail in generating the random number/random number sequence. The plurality of natural numbers in the position order do not have the same natural number or the same numerical value. The first random number sequence includes at least 5 characters, 10 characters, 20 characters, 30 characters, or 50 characters.
In step 106, the user equipment sends the generated first random number sequence to the authentication server, and the user equipment selects a plurality of characters from the base text file according to the position order by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the base text file and forms the first character sequence according to the position order of the random number sequence.
In step 107, the user of the user equipment is prompted to generate authentication data comprising a plurality of identification information according to the first character sequence, wherein the authentication data comprises at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information. The predetermined number is 25, 30, 40, 50, 80, 100, 120, 150, 200, 300, 500, 800 or 1000. The number of all data frames of the video identification information is 100, 200, 300, 500, 800, 1000, 2000, 3000 or 5000.
And recording video identification information and audio identification information by a user through a multimedia input device of user equipment, wherein the video identification information is video information which is formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is audio information which is formed when the user reads the first character sequence and is synchronized with the video identification information in time. The multimedia input device includes: the camera and the microphone are used for recording the video identification information, and the microphone is used for recording the audio identification information.
Wherein a user inputs fingerprint information through a fingerprint input device of a user equipment and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number with the largest numerical value from the second random data sequence as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server.
The selecting a plurality of characters from the first character sequence according to the value of the authentication natural number comprises: randomly selecting a numeric character of the authentication natural number from the first character sequence. Alternatively, and determining the parity of the authentication natural number, selecting a plurality of characters from the first character sequence according to the value and the parity of the authentication natural number, comprising: when the authentication natural number is an odd number, selecting (randomly) a numeric number of characters of the authentication natural number from the first character sequence. When the authentication natural number is an even number, 1/2-number characters of the numeric value of the authentication natural number are (randomly) selected from the first character sequence.
In step 108, the user device sends the video identification information, the audio identification information and the encrypted mixed information to the authentication server, the authentication server performs voice recognition on the audio identification information to obtain a first character sequence, and the authentication server generates a second character sequence according to the first random number sequence received from the user device, and determines whether the video identification information and the audio identification information are synchronized in time when it is determined that the second character sequence is the same as the first character sequence.
The authentication server generating the second sequence of characters from the first sequence of random numbers received from the user device comprises: the authentication server selects a plurality of characters from the base text file according to the position sequence by utilizing the first random number sequence to form a second character sequence, wherein each random number in the random number sequence selects the character of the corresponding position in the plurality of characters of the base text file and forms the second character sequence according to the position sequence of the random number sequence.
Determining whether the video identification information and the audio identification information are synchronized in time includes: it is determined whether each video frame in the video identification information is synchronized with a corresponding audio sample point in the audio identification information.
In step 109, in the event that it is determined that the video identification information and the audio identification information are synchronized in time, decrypting the encrypted mixed information to obtain a plurality of decrypted characters and fingerprint information, and when the plurality of decrypted characters are the same as the plurality of characters transmitted by the user device and the fingerprint information is authenticated, transmitting an instruction to the data server to cause a virtual private network connection to be established between the user device and the data server.
Determining that video identification information and audio identification information are synchronized in time when it is determined that each video frame in the video identification information is synchronized with a corresponding audio sampling point in the audio identification information; when each video frame in the video identification information is determined to be asynchronous with the corresponding audio sampling point in the audio identification information, determining that the video identification information and the audio identification information are asynchronous in time; after decrypting the encrypted mixed information to obtain a plurality of decrypted characters and fingerprint information, determining whether the plurality of decrypted characters and the plurality of characters sent by the user equipment are the same character set; after decrypting the encrypted mixed information to obtain a plurality of decrypted characters and fingerprint information, determining whether the plurality of decrypted characters are respectively the same as the plurality of characters sent by the user equipment; that is, the character set formed by the decrypted characters is the same as the character set formed by the characters sent by the user equipment; that is, the character set formed by the decrypted plurality of characters comprises the same character elements as the character set formed by the plurality of characters sent by the user equipment.
After sending instructions to the data server to cause a virtual private network connection to be established between the user equipment and the data server, establishing a virtual private network connection between the user equipment and the data server such that the user equipment is able to access the data server through the virtual private network connection. The user device is able to access the data server through the virtual private network connection to upload or download data files to or from the data server. And pre-storing the fingerprint information of each user in the authentication server to form a fingerprint information base, verifying the fingerprint information obtained through decryption according to the fingerprint information base, and determining that the fingerprint information obtained through decryption passes verification when the fingerprint information obtained through decryption is the same as the fingerprint information of the user in the fingerprint information base.
Fig. 2 is a schematic structural diagram of a system 200 for performing cooperative authentication of identification information in the internet according to an embodiment of the present invention. The system 200 includes: user equipment 201, authentication server 202 and data server 203.
The method comprises the following steps that when the user equipment 201 wants to establish virtual private network connection with a data server 203 in the internet, the user equipment 201 sends an identity authentication request to an authentication server 202 in the internet, wherein the identity authentication request comprises: an identifier of the user equipment 201, a network address of the user equipment 201, and password information;
the authentication server 202, in response to receiving the identity authentication request, the authentication server 202 obtaining an identifier and password information of the user equipment 201 in the identity authentication request, obtaining a preset password associated with the user equipment 201 from a password database according to the identifier of the user equipment 201, and determining that a verification result of initial verification of the user equipment 201 is passed when the preset password is the same as a current password in the password information; when it is determined that the verification result of the initial verification of the user equipment 201 is pass, the authentication server 202 transmits the identifier of the user equipment 201 and the network address of the user equipment 201 to the data server 203,
a data server 203, which adds the identifier of the user equipment 201 and the network address of the user equipment 201 to a metadata push white list, wherein the data server 203 sends a metadata set associated with all data files stored by the data server 203 to each user equipment 201 in the metadata push white list according to the network address of each user equipment 201 in the metadata push white list at a predetermined time interval;
further comprising, the authentication server 202 selecting one text file from a plurality of text files in a text information base as a base text file according to an identifier of the user equipment 201, creating a random number sequence generator associated with the base text file, setting a maximum value of a random number for the random number sequence generator according to the number of characters included in the base text file, wherein the random number is a natural number, setting a survival time and a counter for the random number sequence generator, setting an initial value of the counter to 0, and transmitting the base text file and the random number sequence generator to the user equipment 201;
in response to receiving the base text file and the random number sequence generator, the user device 201 determines whether a lifetime of the random number sequence generator expires, sets the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generates a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a numerical value of each natural number is less than or equal to a maximum value of a random number;
the user equipment 201 sends the generated first random number sequence to the authentication server 202, and the user equipment 201 selects a plurality of characters from the base text file according to the position sequence by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the base text file and forms the first character sequence according to the position sequence of the random number sequence;
prompting the user of the user equipment 201 to generate authentication data comprising a plurality of identification information according to the first character sequence, wherein the authentication data comprises at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information;
wherein the user records video identification information and audio identification information through the multimedia input device of the user equipment 201, wherein the video identification information is the video information formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is the audio information formed when the user reads the first character sequence and is synchronized with the video identification information in time;
wherein a user inputs fingerprint information through a fingerprint input device of the user equipment 201, and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number having the largest numerical value from the second random data sequence as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to the authentication server 202;
the user equipment 201 sends video identification information, audio identification information and encrypted mixed information to the authentication server 202, the authentication server 202 performs voice recognition on the audio identification information to acquire a first character sequence, the authentication server 202 generates a second character sequence according to a first random number sequence received from the user equipment 201, and when the second character sequence is determined to be the same as the first character sequence, whether the video identification information and the audio identification information are synchronized in time is determined;
in the event that it is determined that the video identification information and the audio identification information are synchronized in time, decrypting the encrypted mix information to obtain a plurality of decrypted characters and fingerprint information, and when the plurality of decrypted characters are the same as the plurality of characters transmitted by the user equipment 201 and the fingerprint information is authenticated, transmitting an instruction to the data server 203 to cause a virtual private network connection to be established between the user equipment 201 and the data server 203.
When a user of the user equipment 201 wishes to establish a virtual private network between the user equipment 201 and the data server 203 in the internet, the user sends an identity authentication request to the authentication server 202 of the internet through the user equipment 201. The password information is a combination of capital English letters, lowercase English letters and numbers.
The password database is used to store identification information and password information associated with each of a plurality of user devices 201 in the internet. The password database stores a plurality of records, each record including an identifier of the user device 201 and a preset password. The password information includes a current password input by the user through the character input device of the user equipment 201.
The metadata push white list includes a plurality of push items, each push item including: an identifier of the user equipment 201 and a network address of the user equipment 201. Each user device 201 in the metadata push white list is a target user device 201 of the data server 203 when performing metadata push. The predetermined time interval is 1 day, 2 days, 3 days, 5 days, 7 days, 10 days, 15 days, 20 days, or 30 days. Alternatively, the data server 203 sends a metadata set associated with all data files stored by the data server 203 to each user device 201 in the metadata push white list according to the network address of each user device 201 in the metadata push white list at a predetermined time. The predetermined time is the 1 st day of each month or the last day of each month. The metadata collection includes metadata for each of all data files stored by the data server 203.
Storing a plurality of text files in the text information base, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language; the natural language is English or Chinese. The identifier of the user equipment 201 can indicate the name of the natural language used by the user equipment 201.
The authentication server 202 selecting one text file from a plurality of text files in a text information base as a basic text file according to the identifier of the user equipment 201 comprises: the authentication server 202 determines a name of a natural language used by the user equipment 201 according to the identifier of the user equipment 201, and selects one text file, which is the same as the natural language used by the user equipment 201, from a plurality of text files in a text information base as a basic text file according to the name of the natural language used by the user equipment 201.
Selecting one text file which is the same as the natural language used by the user equipment 201 from a plurality of text files in a text information base according to the name of the natural language used by the user equipment 201 as a basic text file comprises: a plurality of text files in the same natural language used by the user equipment 201 are selected from a plurality of text files in a text information base according to the name of the natural language used by the user equipment 201, and one text file is randomly selected from the plurality of text files in the same natural language used by the user equipment 201 to serve as a basic text file.
Each text file includes at least 10 characters, 20 characters, 50 characters, 100 characters, 200 characters, 300 characters, or 500 characters; and there is no space between any two adjacent characters of all the characters of each text file. And replacing the characters with words, expressions or characters. The base text file includes 120 characters, and thus the maximum value of the random numbers that the random number sequence generator can generate is 120 and the minimum value of the random numbers that the random number sequence generator can generate is 1. The survival time is 1 minute, 2 minutes, 5 minutes, 8 minutes, 10 minutes, 15 minutes, or 20 minutes.
Upon determining that the lifetime of the random number sequence generator has expired, discarding the base text file and the random number sequence generator. The lifetime of the random number sequence generator is set to infinity so that the random number sequence generator does not fail in generating the random number/random number sequence. The plurality of natural numbers in the position order do not have the same natural number or the same numerical value. The first random number sequence includes at least 5 characters, 10 characters, 20 characters, 30 characters, or 50 characters. The predetermined number is 25, 30, 40, 50, 80, 100, 120, 150, 200, 300, 500, 800 or 1000. The number of all data frames of the video identification information is 100, 200, 300, 500, 800, 1000, 2000, 3000 or 5000.
The multimedia input device includes: the camera and the microphone are used for recording the video identification information, and the microphone is used for recording the audio identification information. Selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number: the method comprises the step of randomly selecting a numeric character of the authentication natural number from the first character sequence. Alternatively, and determining the parity of the authentication natural number, selecting a plurality of characters from the first character sequence according to the value and the parity of the authentication natural number, comprising: when the authentication natural number is an odd number, selecting (randomly) a numeric character of the authentication natural number from the first character sequence; when the authentication natural number is an even number, 1/2-number characters of the numerical value of the authentication natural number are (randomly) selected from the first character sequence;
the authentication server 202 generating the second sequence of characters from the first sequence of random numbers received from the user device 201 comprises: the authentication server 202 selects a plurality of characters from the base text file in a positional order using the first random number sequence to constitute a second character sequence, wherein each random number in the random number sequence selects a character in a corresponding position among the plurality of characters of the base text file and the second character sequence is constituted in the positional order of the random number sequence.
Determining whether the video identification information and the audio identification information are synchronized in time includes: it is determined whether each video frame in the video identification information is synchronized with a corresponding audio sample point in the audio identification information.
Determining that video identification information and audio identification information are synchronized in time when it is determined that each video frame in the video identification information is synchronized with a corresponding audio sampling point in the audio identification information; when each video frame in the video identification information is determined to be asynchronous with the corresponding audio sampling point in the audio identification information, determining that the video identification information and the audio identification information are asynchronous in time; after decrypting the encrypted mixed information to obtain the decrypted plurality of characters and the fingerprint information, determining whether the obtained decrypted plurality of characters are the same character set as the plurality of characters transmitted by the user equipment 201; after decrypting the encrypted mixed information to obtain the decrypted plurality of characters and the fingerprint information, determining whether the obtained decrypted plurality of characters are respectively the same as the plurality of characters transmitted by the user equipment 201; that is, the character set composed of the plurality of decrypted characters is the same as the character set composed of the plurality of characters transmitted by the user equipment 201; i.e. the decrypted plurality of characters comprises the same character elements as the character set of the plurality of characters transmitted by the user equipment 201.
After sending an instruction to the data server 203 to cause a virtual private network connection to be established between the user equipment 201 and the data server 203, a virtual private network connection is established between the user equipment 201 and the data server 203 such that the user equipment 201 can access the data server 203 through the virtual private network connection. The user device 201 is able to access the data server 203 through a virtual private network connection to upload data files to the data server 203 or download data files from the data server 203. The fingerprint information of each user is stored in the authentication server 202 in advance to form a fingerprint information base, and the fingerprint information obtained through decryption is verified according to the fingerprint information base, and when the fingerprint information obtained through decryption is the same as the fingerprint information of the user in the fingerprint information base, it is determined that the fingerprint information obtained through decryption passes verification.
Fig. 3 is a schematic diagram of a user equipment 300 capable of inputting identification information according to an embodiment of the present invention. As shown in fig. 3, the user device 30 is placed on a support (e.g., a table). When the user equipment 300 wishes to establish a virtual private network connection with a data server within the internet, it sends an identity authentication request to an authentication server within the internet. Furthermore, the user of the user equipment 300 generates authentication data comprising a plurality of identification information from the first character sequence, wherein the authentication data comprises at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information.
A user (or user) records video identification information and audio identification information through a multimedia input device 303 (e.g., a camera with a microphone, a video camera, etc. capable of recording video and audio simultaneously) of the user equipment 300, wherein the video identification information is video information including at least a face of the user formed when the user reads the first character sequence, and the audio identification information is audio information formed when the user reads the first character sequence, and is synchronized with the video identification information in time. For example, the first character sequence is "hit the house, the house has panicum griseum, invite me to the farmhouse, green tree village, qingshan guo skew, kaixuan county garden, morus kendirachta, wait until sun day, and come to chrysanthemum", wherein punctuation marks are added for illustration or to enable display on the display 301, and in fact punctuation marks may not be included in the first character sequence (punctuation marks also belong to characters). That is, the first character sequence is "chrysanthemum when the mountain of the deceased person was invited to me by broomcorn millet to the Tianjia green tree village side Heqingshan guo out-oblique-open-pavilion garden leaves the Jichang mulberry leaf to the sun of the double sun". It should be appreciated that punctuation is added at the user device end to enable the user to better read aloud.
A user (or never) inputs fingerprint information through the fingerprint input device 302 of the user equipment 300 and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number having a largest numerical value from the second random data sequence as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device 302 to form and encrypt mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server.
When the user records the video identification information and the audio identification information using the multimedia input device 303, the video identification information and the audio identification information recorded by the user are synchronized in time since the video input and the audio input of the multimedia input device 303 are synchronized. In other cases, complete synchronization in time is often not achieved if the user forges, tampers, splices the video identification information and the audio identification information.
In general, the multimedia input device 303 may include: the camera and the microphone are used for recording the video identification information, and the microphone is used for recording the audio identification information. The display 301 may, for example, display a first sequence of characters, which may show the user's real-time status as the video identification information and the audio identification information are recorded (i.e., show the recording process in real-time).

Claims (10)

1. A method for performing collaborative authentication of identification information within the internet, the method comprising:
when user equipment wants to establish virtual private network connection with a data server in the Internet, sending an identity authentication request to an authentication server in the Internet, wherein the identity authentication request comprises: an identifier of the user equipment, a network address of the user equipment and password information;
in response to receiving the identity authentication request, the authentication server acquires an identifier and password information of the user equipment in the identity authentication request, acquires a preset password associated with the user equipment from a password database according to the identifier of the user equipment, and determines that a verification result of initial verification of the user equipment is passed when the preset password is the same as a current password in the password information;
when the verification result of the initial verification of the user equipment is determined to be passed, the authentication server sends the identifier of the user equipment and the network address of the user equipment to the data server to prompt the data server to add the identifier of the user equipment and the network address of the user equipment to a metadata push white list, wherein the data server sends a metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at preset time intervals;
the authentication server selects one text file from a plurality of text files in a text information base as a basic text file according to an identifier of the user equipment, creates a random number sequence generator associated with the basic text file, sets a maximum value of a random number for the random number sequence generator according to the number of characters included in the basic text file, wherein the random number is a natural number, sets a survival time and a counter for the random number sequence generator, sets an initial value of the counter to 0, and sends the basic text file and the random number sequence generator to the user equipment;
in response to receiving the base text file and the random number sequence generator, the user device determining whether a lifetime of the random number sequence generator expires, setting the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generating a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a numerical value of each natural number is less than or equal to a maximum value of a random number;
the user equipment sends the generated first random number sequence to the authentication server, and the user equipment selects a plurality of characters from the basic text file according to the position sequence by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the basic text file and forms the first character sequence according to the position sequence of the random number sequence;
prompting a user of the user equipment to generate authentication data including a plurality of identification information according to the first character sequence, wherein the authentication data includes at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information;
wherein a user records video identification information and audio identification information through a multimedia input device of a user device, wherein the video identification information is video information which is formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is audio information which is formed when the user reads the first character sequence and is synchronized with the video identification information in time;
wherein a user inputs fingerprint information through a fingerprint input device of a user equipment and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number with the largest numerical value from the second random data column as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server;
the user equipment sends video identification information, audio identification information and encrypted mixed information to the authentication server, the authentication server carries out voice recognition on the audio identification information to obtain a first character sequence, the authentication server generates a second character sequence according to a first random number sequence received from the user equipment, and when the second character sequence is determined to be the same as the first character sequence, whether the video identification information and the audio identification information are synchronous in time is determined;
decrypting the encrypted mix information to obtain decrypted plurality of characters and fingerprint information when it is determined that the video identification information and the audio identification information are synchronized in time, sending an instruction to the data server to cause a virtual private network connection to be established between the user device and the data server when the decrypted plurality of characters are the same as the plurality of characters sent by the user device and the fingerprint information is authenticated.
2. The method of claim 1, wherein when a user of the user device wishes to establish a virtual private network between the user device and a data server in the internet, the user sends an authentication request to an authentication server in the internet through the user device.
3. The method of claim 1, the cryptographic database to store identification information and cryptographic information associated with each of a plurality of user devices within the internet.
4. The method of claim 1, the metadata push whitelist comprising a plurality of push items, each push item comprising: an identifier of the user equipment and a network address of the user equipment.
5. The method according to claim 1, wherein a plurality of text files are stored in the text information base, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language; the natural language is English or Chinese.
6. A system for collaborative authentication of identification information within the internet, the system comprising:
the method comprises the following steps that when the user equipment wants to establish virtual private network connection with a data server in the Internet, the user equipment sends an identity authentication request to an authentication server in the Internet, wherein the identity authentication request comprises the following steps: an identifier of the user equipment, a network address of the user equipment and password information;
the authentication server responds to the received identity authentication request, acquires the identifier and the password information of the user equipment in the identity authentication request, acquires a preset password associated with the user equipment from a password database according to the identifier of the user equipment, and determines that the verification result of the initial verification of the user equipment is passed when the preset password is the same as the current password in the password information; when it is determined that the verification result of the initial verification of the user equipment is passed, the authentication server transmits an identifier of the user equipment and a network address of the user equipment to the data server,
the data server adds the identifier of the user equipment and the network address of the user equipment into a metadata push white list, wherein the data server sends a metadata set associated with all data files stored by the data server to each user equipment in the metadata push white list according to the network address of each user equipment in the metadata push white list at preset time intervals;
the authentication server selects one text file from a plurality of text files in a text information base according to the identifier of the user equipment to serve as a basic text file, creates a random number sequence generator associated with the basic text file, sets the maximum value of a random number for the random number sequence generator according to the number of characters included in the basic text file, wherein the random number is a natural number, sets a survival time and a counter for the random number sequence generator, sets the initial value of the counter to be 0, and sends the basic text file and the random number sequence generator to the user equipment;
in response to receiving the base text file and the random number sequence generator, the user device determining whether a lifetime of the random number sequence generator expires, setting the lifetime of the random number sequence generator to infinity when it is determined that the lifetime of the random number sequence generator does not expire, and generating a first random number sequence using the random number sequence generator, wherein the first random number sequence includes a plurality of natural numbers having a positional order and a numerical value of each natural number is less than or equal to a maximum value of a random number;
the user equipment sends the generated first random number sequence to the authentication server, and the user equipment selects a plurality of characters from the basic text file according to the position sequence by using the generated first random number sequence to form a first character sequence, wherein each random number in the random number sequence selects a character in a corresponding position from the plurality of characters in the basic text file and forms the first character sequence according to the position sequence of the random number sequence;
prompting a user of the user equipment to generate authentication data including a plurality of identification information according to the first character sequence, wherein the authentication data includes at least the following identification information: video identification information, audio identification information and synthesized fingerprint identification information, and each of all data frames of the video identification information comprises a facial image of a user and at least a predetermined number of consecutive data frames of all data frames of the video identification information comprise an image of user-entered fingerprint identification information;
wherein a user records video identification information and audio identification information through a multimedia input device of a user device, wherein the video identification information is video information which is formed when the user reads the first character sequence and at least comprises the face of the user, and the audio identification information is audio information which is formed when the user reads the first character sequence and is synchronized with the video identification information in time;
wherein a user inputs fingerprint information through a fingerprint input device of a user equipment and generates a second random number sequence using the random number sequence generator, wherein the second random number sequence includes a plurality of natural numbers having no positional order and a numerical value of each natural number is less than or equal to a maximum value of the random numbers; selecting a natural number with the largest numerical value from the second random data column as an authentication natural number, selecting a plurality of characters from the first character sequence according to the numerical value of the authentication natural number, combining the selected plurality of characters with fingerprint information input through a fingerprint input device to form mixed information and encrypting the mixed information, and transmitting the selected plurality of characters from the first character sequence according to the numerical value of the authentication natural number to an authentication server;
the user equipment sends video identification information, audio identification information and encrypted mixed information to the authentication server, the authentication server carries out voice recognition on the audio identification information to obtain a first character sequence, the authentication server generates a second character sequence according to a first random number sequence received from the user equipment, and when the second character sequence is determined to be the same as the first character sequence, whether the video identification information and the audio identification information are synchronous in time is determined;
decrypting the encrypted mix information to obtain decrypted plurality of characters and fingerprint information when it is determined that the video identification information and the audio identification information are synchronized in time, sending an instruction to the data server to cause a virtual private network connection to be established between the user device and the data server when the decrypted plurality of characters are the same as the plurality of characters sent by the user device and the fingerprint information is authenticated.
7. The system of claim 6, wherein when the user of the user device wishes to establish a virtual private network between the user device and a data server in the internet, the user sends an authentication request to an authentication server in the internet through the user device.
8. The system of claim 6, the password database to store identification information and password information associated with each of a plurality of user devices within the internet.
9. The system of claim 6, the metadata push whitelist comprising a plurality of push items, each push item comprising: an identifier of the user equipment and a network address of the user equipment.
10. The system of claim 6, wherein the text information base stores a plurality of text files, wherein the text content of each text file is different or not completely same, and the text content of each text file is the text content of natural language; the natural language is English or Chinese.
CN201811627373.6A 2018-12-28 2018-12-28 Method and system for performing collaborative authentication of identification information in Internet Active CN109698833B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811627373.6A CN109698833B (en) 2018-12-28 2018-12-28 Method and system for performing collaborative authentication of identification information in Internet

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811627373.6A CN109698833B (en) 2018-12-28 2018-12-28 Method and system for performing collaborative authentication of identification information in Internet

Publications (2)

Publication Number Publication Date
CN109698833A CN109698833A (en) 2019-04-30
CN109698833B true CN109698833B (en) 2021-08-27

Family

ID=66232401

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811627373.6A Active CN109698833B (en) 2018-12-28 2018-12-28 Method and system for performing collaborative authentication of identification information in Internet

Country Status (1)

Country Link
CN (1) CN109698833B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116186672B (en) * 2023-04-20 2023-07-28 北京万讯博通科技发展有限公司 User collaborative identification method and system for multi-feature variables

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103441851A (en) * 2013-08-23 2013-12-11 成都卫士通信息产业股份有限公司 Method for allowing terminal equipment to have access to VPN equipment
CN104620251A (en) * 2012-09-14 2015-05-13 株式会社东芝 VPN connection authentication system, user terminal, authentication server, biometric-authentication result evidence-information validation server, VPN connection server, and program
CN104904178A (en) * 2012-10-15 2015-09-09 思杰系统有限公司 Providing virtualized private network tunnels

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP3472719B1 (en) * 2016-06-21 2021-08-04 Noa, Inc. Method and apparatus of implementing a vpn tunnel

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104620251A (en) * 2012-09-14 2015-05-13 株式会社东芝 VPN connection authentication system, user terminal, authentication server, biometric-authentication result evidence-information validation server, VPN connection server, and program
CN104904178A (en) * 2012-10-15 2015-09-09 思杰系统有限公司 Providing virtualized private network tunnels
CN103441851A (en) * 2013-08-23 2013-12-11 成都卫士通信息产业股份有限公司 Method for allowing terminal equipment to have access to VPN equipment

Also Published As

Publication number Publication date
CN109698833A (en) 2019-04-30

Similar Documents

Publication Publication Date Title
CN107302539B (en) Electronic identity registration and authentication login method and system
US20160205098A1 (en) Identity verifying method, apparatus and system, and related devices
JP5711430B2 (en) ID authentication management apparatus and method
CN107077559B (en) Verification System reminds terminal and information recording carrier
CN102833244B (en) Communication method for authentication by fingerprint information
JP2008312048A (en) Authentication method of information terminal
CN106470201A (en) A kind of user authen method and device
US8619978B2 (en) Multiple account authentication
JP6207797B1 (en) User authentication method and system for realizing the method
CN106230594B (en) A method of user authentication is carried out based on dynamic password
CN102055685B (en) Method for encrypting webmail information
JP2011175394A (en) Web server constituting single sign-on system, method of controlling operation of the same, and program for controlling operation of the same
US20160292446A1 (en) Data encryption and compression
CN104883367A (en) Method for auxiliary verification login, system, and application client
CN108985037A (en) A kind of auth method, registration terminal and system
CN113630241B (en) Password recovery method and system, cloud server and electronic equipment
JP2007058455A (en) Access management system and access management method
CN109698833B (en) Method and system for performing collaborative authentication of identification information in Internet
US11777927B1 (en) Monitoring system for providing a secure communication channel between a client computer and a hosting computer server
US11303630B2 (en) Method for opening a secure session on a computer terminal
US11853102B2 (en) Remote control system, remote control method, and non-transitory information recording medium
KR102191111B1 (en) System and method of providing anonymity message service using block chain
JP2017208144A (en) User authentication method and system for implementing the same
US11870908B1 (en) End-to-end encryption based on a simple shared secret
JP2006004321A (en) Security system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right

Effective date of registration: 20210806

Address after: 101100 B123, floor 2, building 1, No. 126, Xinhua East Street, Tongzhou District, Beijing

Applicant after: BEIJING NOASIN TECHNOLOGY Co.,Ltd.

Address before: 110034 door a, floor 2, unit 1, building 6, No.10 Xianglushan Road, Shenyang City, Liaoning Province

Applicant before: Wang Mei

TA01 Transfer of patent application right
GR01 Patent grant
GR01 Patent grant
TA01 Transfer of patent application right

Effective date of registration: 20210816

Address after: 100000 3-1106, floor 11, No. 87, West Third Ring North Road, Haidian District, Beijing

Applicant after: Beijing Tianyi Digital Polymer Technology Co.,Ltd.

Address before: 101100 B123, floor 2, building 1, No. 126, Xinhua East Street, Tongzhou District, Beijing

Applicant before: BEIJING NOASIN TECHNOLOGY Co.,Ltd.

TA01 Transfer of patent application right