CN201218950Y - Authorization and authentication system for multi-dynamic password device - Google Patents
Authorization and authentication system for multi-dynamic password device Download PDFInfo
- Publication number
- CN201218950Y CN201218950Y CNU2007203066665U CN200720306666U CN201218950Y CN 201218950 Y CN201218950 Y CN 201218950Y CN U2007203066665 U CNU2007203066665 U CN U2007203066665U CN 200720306666 U CN200720306666 U CN 200720306666U CN 201218950 Y CN201218950 Y CN 201218950Y
- Authority
- CN
- China
- Prior art keywords
- client
- cipher device
- dynamic
- dynamic cipher
- multiple dynamic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
An authentication and authorization system capable of mutually authenticating a service provider and a client and updating the authentication code at any moment, comprises a computer mainframe (11) of the service provider and a client login terminal (12) and a communication network (13), also comprises a multi dynamic scrambler (1) in client hand with a built-in clock synchronous with the computer mainframe and a built-in dynamic code generation program, wherein the computer mainframe comprises built-in corresponding same dynamic code generation programs which are stored in account number of each client and generate two dynamic codes updated along the time according to the given time function. The double codes can mutually authenticate the service provider and the client and the authentication code can be updated at any moment to ensure safety and the computer mainframe has no need of dilation, and the main parts of the multi dynamic scrambler are laid on the same plane and in single-row linear arrangement to obtain the ultrathin and narrow shape, thus the client can conveniently carry three or more multi dynamic scramblers in purse.
Description
Technical field
The utility model relates to a kind of multiple dynamic cipher device authorization identifying system, especially a kind ofly can allow the authorization identifying system that ISP and client both sides verify mutually and authentication password is upgraded at any time.
Background technology
In modern society, more and more Duo people use ebanking services, internet shopping and other e-commerce initiative.When login, they must input customer name and password.But the offender uses spyware, trojan horse, and hacking technique, fishing website (the same false webpages of webpage such as outward appearance and bank are used to steal client password) etc. are stolen these fixing customer name and passwords at an easy rate.And more and more active financial crime discloses, and utilizing card number and card holder's name is to be nowhere near as the credit card safety practice.The offender can steal credit card information, and uses these fixing information unlawfully to enter client's online account, or forged credit card or clone ATM card.
For solving the problem that fixed password is stolen, some banks have distributed dynamic cipher device for their Net silver client.Using the most general dynamic cipher device is the product of U.S. RSA Security Inc company: the SecurID dynamic cipher device.The principle of work of SecurID dynamic cipher device is such: the SecurID dynamic cipher device produces a quasi random number as dynamic password according to plug-in per 30 (or 60) second.The main frame of bank or mechanism also produces a quasi random number on clients' accounts according to same program per 30 (or 60) simultaneously second.When the client used Internet-based banking services, they must input the password that shows on the SecurID dynamic cipher device when login.If the password that the client submits is identical with the password of bank main, the client allows to enter his/her Net silver account.The SecurID dynamic cipher device provides the authentication of high safety for ebanking services.Even dynamic password is stolen, it can become useless password.Because dynamic password in minutes just can lose efficacy, and in its term of validity, can only use once.
But common dynamic cipher device, such as SecurID dynamic cipher device still have safety defect and shortcoming.At first, it can't tackle fishing webpage.Common dynamic cipher device only allows bank to examine the client, but the client can't examine whether the webpage of their login is the webpage of forging.The offender still can cheat the client and sign in to fishing webpage, when the client imports customer name and dynamic password on fishing webpage, the offender has intercepted the customer name and the dynamic password of client's input, exists side by side and promptly uses the website of these information registration to bank, enters in client's the Net silver account.
The second, bank only distributes dynamic cipher device for the Net silver client, and common dynamic cipher device only is used for online transaction (internet banking), and can not be used to tackle forged credit card or clone ATM card.
The 3rd, common dynamic cipher device volume is inadequately little, and the client carries above two will feel inconvenience.Yet people have the account surpassing in the banks different more than two usually.
United States Patent (USP) 7,051,929 B2 propose the safety credit card that produce new secure digital a kind of every day.The first half of card has magnetic stripe, and thickness is the same with normal card, therefore can read information by credit card reader; The card Lower Half comprises processor, button or keyboard, battery, display window and program input port.Before credit card is issued the client, download a specific program to credit card processor, this specific program also is recorded under the interior customer account number of host computer of bank or mechanism.Processor produces a new secure digital according to this specific program every day, and itself and date are presented at display window.Secure digital is the function on date, and funtcional relationship is by this specific program definition.Not only customer name, card number be to provide during payment, the date of payment and secure digital at that time also will be submitted to.These information are sent to bank and check.Bank retrieves corresponding account and specific program, calculates secure digital with this specific program according to the date of payment then; If the secure digital that produces is identical with the secure digital that credit card produces, just the transaction approval, otherwise refusal.Because secure digital is to change every day,, bring risk can for card holder and bank even the information of credit card is divulged yet.Though this safety credit card may prevent that credit card is forged, it still has safety defect.For example, criminal can use false webpage (fishing webpage is used to defraud of the forgery webpage of password) or trojan horse to steal the information and the secure digital of safety credit card and use their illegal payment immediately.
The utility model content
First purpose of the present utility model just provides a kind of multiple dynamic cipher device authorization identifying system that ISP and client both sides verify mutually and authentication password is upgraded at any time that can allow.
For achieving the above object, multiple dynamic cipher device authorization identifying system of the present utility model, comprise and the host computer of serving the provider and client land terminal (landing terminal can be computer, phone or other communication are not equipped with), and the wired or wireless communication network that connects both, it is characterized in that: also comprise the multiple dynamic cipher device that is in client's hand, its onboard clock and host computer are synchronous; Described client's multiple dynamic cipher device is built-in with at least one dynamic password generator program, described host computer is built-in with corresponding to the identical dynamic password generator program of each client's multiple dynamic cipher device and is stored under this client's the account number, and described dynamic password generator program generates two or more each dynamic passwords that upgrades in time according to the function of time of setting; Two or more dynamic passwords that identical dynamic password generator program generates are corresponding identical respectively.
Described host computer and multiple dynamic cipher device generate two dynamic passwords, the length of first dynamic password is 3 to 5, be equal to or greater than 2 minutes update time at interval, be less than or equal to 12 hours, the length of described second dynamic password is 4 to 8, be equal to or greater than 20 seconds update time at interval, is less than or equal to 120 seconds.
Described dynamic password is numeral, letter or its combination, can also be bar code.
Described multiple dynamic cipher device is provided with switch, and the ability computing generates the dynamic password under the current time during startup; When described host computer received customer name that communication network transmits and fixed password, host computer just called dynamic password generator program union corresponding to this client's multiple dynamic cipher device and generates dynamic password under the current time.
Described multiple dynamic cipher device has display screen.
Described multiple dynamic cipher device can be inserted in the mobile phone.
Described client's multiple dynamic cipher device is built-in with a plurality of dynamic password generator programs that correspond respectively to a plurality of service provider host computers.
Described client's multiple dynamic cipher device is provided with the data input port, and serving the provider can be input to the dynamic password generator program of themselves host computer on the multiple dynamic cipher device.
Described client's multiple dynamic cipher device is by stainless steel inner housing, shell body and put at grade the display screen, main circuit board and the button cell that are linked to be a bluff body by welding and constitute.
Described client's multiple dynamic cipher device display screen can be arranged on upper and lower a, left side or the right end of scrambler, and battery is arranged on and its corresponding sides, between the two for being welded with the main circuit board of processor.
The main circuit board that described client's multiple dynamic cipher device is welded with processor can be arranged on upper and lower a, left side or the right end of scrambler, and battery is arranged on and its corresponding sides, is display screen between the two.
Described client's multiple dynamic cipher device on ﹠ off switch and cryptographic key are to be attached on the main circuit board by the button film and to constitute.
Described client's multiple dynamic cipher device shell body inside surface Nian Stickers a transparent plastic mantle, and the joint of inside and outside housing is with glue or other material seal.
The authentication method of said system can be applicable to the authentication of Web bank, the network gaming login authentication, and each major company, mechanism, remote authentications such as inner website login authentication such as government department, authenticating step is as follows:
1, the client inputs user name (user ID) and fixed password (Pin number) from landing terminal (landing terminal can be computer, also can be mobile phone, or other communication is not equipped with);
2, host computer accesses this client's dynamic password generator program in this customer account number according to client's user name and fixed password, produces first dynamic password and is transmitted back to and land on the terminal screen;
3, the client compares first dynamic password that shows on the multiple dynamic cipher device in first dynamic password of host computer passback and the hand: different as if two passwords, the client is terminating operation then; If two dynamic passwords are identical, then the client imports second dynamic password that shows on his multiple dynamic cipher device;
4, second dynamic password that generates it oneself of host computer compares with second dynamic password of client's passback, if two passwords are identical, host computer just can be confirmed client's legal identity, thereby the permission client enters his account number; Otherwise refusal lands.
Beneficial effect: the multiple dynamic cipher device of multiple dynamic cipher device authorization identifying system of the present utility model can produce two or more dynamic passwords by Enough, and the length of each dynamic password, and the time interval of renewal is all different.Dynamic password be the time (year, month, day, the time, divide, second) function, this funtcional relationship is determined by the dynamic password generator program.The dynamic password generator program is stored on the processor and host computer of multiple dynamic cipher device.Because the clock of multiple dynamic cipher device and the clock synchronization of host computer, therefore, at each constantly, it is identical respectively with one group of password that host computer produces that multiple dynamic cipher device can produce one group of password.Multiple dynamic cipher device can not only allow bank examine client identity authentication, also allows the client examine the true and false of bank's webpage, eliminates fishing webpage (being used to defraud of the forgery webpage of password) effectively.Although the client might be stolen by spyware or trojan horse from the dynamic password that computer is imported, because the term of validity of dynamic password has only short a few minutes, and can only use once, the client has used it just to lose efficacy.What therefore spyware or trojan horse stole only is password expired or that lost efficacy.And multiple dynamic cipher device produces different length, and the dynamic password in the different update time interval can be applied to anti-counterfeiting credit card and anti-clone ATM card easily.Dynamic cipher device and host computer only need considerably less calculated amount.Therefore, serve the provider and need not to invest substantial contribution expansion host capacity and maintenance, and dynamic cipher device can design to such an extent that volume is urinated in carrying, because it only needs the very little button battery of volume just can keep long operation very much.
Description of drawings
Below in conjunction with drawings and Examples the utility model is described in further detail.
Fig. 1 is that authorization identifying system of the present utility model is formed the structural principle synoptic diagram.
Fig. 2 is an authorization identifying system authentication method process flow diagram of the present utility model.
Fig. 3 is the stereo appearance figure of dynamic cipher device.
Fig. 4 is the stereo appearance figure of shell body.
Fig. 5 is the stereo appearance figure of inner housing.
Fig. 6 is the profile synoptic diagram of electronic unit.
Fig. 7 is that 3 multiple dynamic cipher devices are placed side by side on synoptic diagram together.
Fig. 8 shows credit card length synoptic diagram.
Among the figure, 11-serves provider's host computer, and 12-client lands terminal, 13-wired or wireless communication network, 1-multiple dynamic cipher device, the 2-inner housing, 3-shell body, 4-electronic unit, 5-power supply, 6-on ﹠ off switch, the 7-cryptographic key, 8-LCDs, 9-shell body opening, 14-main circuit board.
Embodiment
Fig. 1 is that multiple dynamic cipher device authorization identifying system of the present utility model is formed the structural principle synoptic diagram, from Fig. 1, can see, authorization identifying system of the present utility model, comprise that the host computer 11 and the client that serve the provider land terminal 12, and the wired or wireless communication network 13 that connects both, also comprise the multiple dynamic cipher device 1 that is in client's hand, its onboard clock and host computer are synchronous, multiple dynamic cipher device has display screen 8 and switch key 6, multiple dynamic cipher device built-in dynamic password generator program.In the host computer 11 of serving the provider, also be built-in with corresponding to the identical dynamic password generator program of each client's dynamic cipher device, the dynamic password generator program can generate two dynamic passwords that upgrade in time, the length of each dynamic password, the time interval of upgrading may be different, the length of first dynamic password is 3 to 5, be equal to or greater than 2 minutes update time at interval, be less than or equal to 12 hours, the length of second dynamic password is 4 to 8, be equal to or greater than 20 seconds update time at interval, is less than or equal to 120 seconds; Dynamic password be time such as year, month, day, hour, min, second function, this funtcional relationship is by the decision of dynamic password generator program, two or more dynamic passwords that identical dynamic password generator program generates are corresponding identical respectively.The length of first dynamic password of present embodiment is 3 bit digital, is spaced apart 15 minutes update time, and the length of second dynamic password is 5 bit digital, is spaced apart 30 seconds update time.Host computer is when receiving customer name that communication network transmits and fixed password, and host computer just calls dynamic password generator program union corresponding to this client's multiple dynamic cipher device and generates dynamic password under the current time; And multiple dynamic cipher device ability computing when starting switch generates the dynamic password under the current time.
Dynamic password is also formed by numeral and monogram, can also convert the bar code that is fit to the scanning input to.
Fig. 3 is the stereo appearance figure of dynamic cipher device 1, and the shell of dynamic cipher device 1 is inserted in the shell body 3 by inner housing 2 and constitutes the inner chamber of a sealing, and 4 of electronic units are placed in the inner chamber of this sealing.Fig. 4 is the stereo appearance figure of shell body 3, and Fig. 5 is the stereo appearance figure of inner housing 2, and Fig. 6 is the profile synoptic diagram of electronic unit 4.Electronic unit 4 is by display screen 8, power supply 5, and control piece, the main circuit board 14 that is welded with processor is formed.In this example, power supply 5 is batteries, and control piece is on ﹠ off switch 6 and cryptographic key 7, and display screen is a LCDs 8.On ﹠ off switch 6 is being controlled the duty of processor and display screen 8,7 displaying contents of controlling display screen 8 of cryptographic key.Opening 9 is arranged on the shell body 3, and these openings 9 face display screen 8 and on ﹠ off switch 6 and cryptographic key 7, therefore can see display screen and touch by on ﹠ off switch 6 and cryptographic key 7 from these openings 9.
Processor is storing the dynamic password generating routine, and the dynamic password generator program is formed (only be as title with first section program and second section program, be used for distinguishing each other, with the location independent of this section program in master routine) here by at least two sections.First section program produces the length weak point, and the dynamic password that update time is long at interval is called first dynamic password here and this dynamic password.Second section program generation length is long, and the dynamic password that update time is short at interval is called second dynamic password.First dynamic password is made up of 2 to 5 numerals or letter, and update time is at interval from 2 minutes to 12 hours; Second dynamic password is made up of 4 to 8 numerals or letter, and update time is at interval from 20 seconds to 120 seconds.In this example, first dynamic password has 3 figure places, upgrades once in 15 minutes; Second dynamic password has 5 figure places, upgrades once in 30 seconds.Dynamic password can all be made up of numeral, also can be formed by numeral and monogram.When pressing on ﹠ off switch, processor 9 beginning computings according to the dynamic password generator program, produce 2 dynamic passwords under the current time.These 2 dynamic passwords can be simultaneously displayed on the display screen 8, also can once only show a password by display screen 8, press cryptographic key 7, and these 2 dynamic passwords alternately are presented on the display screen 8.Automatically disappear after display screen 8 shows 1 minute, processor enters dormant state to save electric energy.Dynamic password also can bar code form be presented on the display screen 8, therefore can import dynamic password quickly and easily with scanner in the cash desk.Dynamic password be year time, the moon, * day, the time, branch or second function, this funtcional relationship is determined by the dynamic password generator program.
Because various dynamic password generator programs can have thousands of up to ten thousand, and the combination of the coefficient in the program also can have thousands of up to ten thousand kinds.Therefore, even dynamic password is stolen, does not violate molecule and can't extrapolate the dynamic password generator program yet from the dynamic password of stealing.
Simultaneously, host computer also is stored in this dynamic password generator program under the customer accounting code.Because the clock synchronization of host computer and dynamic cipher device, therefore, at any time, host computer can both produce identical dynamic password with dynamic cipher device.
Referring to Fig. 2, authorization identifying system of the present utility model is applied to the authentication of Web bank, the network gaming login authentication, and each major company, mechanism, the step of remote authentications such as inner website login authentication such as government department is as follows:
The client is from landing terminal input customer name and fixed password;
2, host computer accesses this client's dynamic password generator program in this customer account number according to customer name and fixed password, produces first dynamic password and is transmitted back to and land on the terminal screen;
4, second dynamic password that generates it oneself of host computer compares with second dynamic password of client's passback, if two passwords are identical, host computer just can be confirmed client's legal identity, thereby the permission client enters his account number; Otherwise refusal lands.
As seen from the following analysis, these two of authorization identifying systems of the present utility model have different length, and the dynamic password in the different update time interval can provide the high safe precautionary measures for various transaction.
Be applied in remote authentication (Web bank, the remote authentication of network gaming etc.)
When client's logging in to online banks (or game website), at first import customer name and fixed password, the host computer of bank accesses this client's dynamic password generator program in this customer account number, produces first dynamic password.Host computer is having only 3 figure places, first dynamic password that upgraded in 15 minutes once passes back on the terminal screen of client's login, the client compares first dynamic password that shows on first dynamic password of bank's passback and his multiple dynamic cipher device, if two passwords are identical, the client just can be sure of that the webpage that he logins is official's webpage of bank.At this moment, the client imports second dynamic password that shows on his multiple dynamic cipher device.Second dynamic password that the dynamic password generator program that host computer accesses it in this customer account number generates compares with second dynamic password that the client returns, if two passwords are identical, bank just can confirm client's legal identity, thereby allows the client to enter his account number.Therefore, multiple dynamic cipher device can not only allow bank examine client identity authentication, also can allow the client examine the true and false of webpage, eliminates fishing webpage effectively.
Be used for the anti-counterfeiting credit card and usurp credit card
When paying the bill in cashier with credit card, outside card number and cardholder name, the client also must hand in first dynamic password that shows on the multiple dynamic cipher device as the anti-tamper security measure.The cashier is the amount of money, the card number of credit card, and first dynamic password that cardholder name and client hand in is sent to credit card company and examines.Reduce out the dynamic password generating routine from this client's account number after credit card company receives, first dynamic password of this program generation and first dynamic password that send Come are compared, if both identical then approvals are concluded the business.If client's credit card information is stolen, the offender also can't remove forged credit card with stealing the credit card information that comes, because first dynamic password just lost efficacy after using once.As seen, used of the anti-tamper security measure of first dynamic password, can eliminate forged credit card effectively as credit card, and, need not on charging terminal, to increase any equipment.The more important thing is that cashier's input has only first dynamic password of 3 figure places only to need the several seconds, can not increase chargeable time significantly.This point is all very important to businessman and client.If increase chargeable time significantly, can make the time lengthening of paying dues of lining up when busy, some client can be impatient of and abandon buying, and businessman can refuse to use because of income reduces.Therefore, with credit card when pay the bill in cashier with the anti-tamper security measure of first dynamic password of 3 figure places as credit card, and second dynamic password of growing without figure place.In addition, for making more convenient and quicker ground input first dynamic password, also can be shown as bar code to first dynamic password on the display screen.After the cashier uses scanner scans article price bar code, scan first dynamic password of the bar code form that shows on the dynamic cipher device again, just can import first dynamic password quickly.
When paying the bill on the internet with credit card, except that card number and cardholder name, the client also must hand in the anti-safety practice of usurping of second dynamic password conduct that shows on the multiple dynamic cipher device.Reduce out the dynamic password generating routine from this client's account number after credit card company receives, second dynamic password of this program generation and second and the attitude password that send Come are compared, if both identical then approvals are concluded the business.If client's credit card information is stolen, the offender also can't be used for illegally paying the bill on the internet with stealing the credit card information and second dynamic password that come, because second dynamic password just lost efficacy after using once.Although second dynamic password is longer, the input required time is long slightly, and the client imports on computer screen, and should not be a problem Chang input time slightly.Yet much bigger when the risk of paying the bill on the net with credit card is paid the bill than in cashier, therefore, figure place is long, brings higher safety update time on the net when the second short dynamic password can be paid the bill for credit card.
Be used for anti-clone ATM card
The client is if will withdraw the money or carry out other transaction on ATM, the client inserts atm card earlier, the input fixed password; ATM screen prompt: please import first dynamic password; The client opens multiple dynamic cipher device, and first dynamic password that shows on the multiple dynamic cipher device is input on the ATM.ATM reads client's account information from the atm card that the client inserts, and then first dynamic password of client's account information and input is sent to the bank computer main frame.The bank computer main frame accesses this client's the first dynamic password computing formula again under this account, calculates first dynamic password under the current time, and first dynamic password of itself and client's input is made comparisons.If two first dynamic passwords are identical, then client's account of allowing to enter him is withdrawn the money or is carried out other transaction; Otherwise refusing this client enters.
As seen, the client outside the input fixed password, also will import first dynamic password when using atm card.Because first dynamic password has only three figure places, the client imports three-figure first dynamic password and only needs the several seconds, can not increase client's trouble; The bank ATM machine also need not to transform, and need not increase bank and drop into.But greatly increased safety, because first dynamic password is to upgrade 1 time every 15 minutes, and can only use once, even be stolen, it lost efficacy, can't remove to clone an atm card with it.If require highlyer, ATM also can require the client to import second dynamic password.The client imports five figure second dynamic password may need more than ten second, has increased the time that the client uses a little.
Multiple dynamic cipher device authorization identifying system also can be applicable to the network gaming login authentication, each major company, mechanism, inner website login authentication such as government department.Here do not list one by one.
With respect to other dynamic cipher devices, the multiple dynamic cipher device of authorization identifying system of the present utility model also has an advantage, and its required computing is few.Common dynamic cipher device, for example product of U.S. RSA Security Inc company: the SecurID dynamic cipher device, the SecurID dynamic cipher device produces a quasi random number as dynamic password according to plug-in per 30 seconds.The production process of quasi random number is: the generation of each quasi random number is based on previous quasi random number.Therefore, common dynamic cipher device must produce a quasi random number incessantly every 30 seconds.Same, and the bank computer main frame also is necessary for this client and produces a quasi random number incessantly every 30 seconds.The device even this client does not access to your password, the bank computer main frame also is necessary for this client's computing password 2880 times every day, and annual computing password is above 1,000,000 times.Hence one can see that, if scrambler is sent out for its each client by bank, bank's host computer is necessary for 1,000,000 passwords of the annual computing of each client.Bank's expansion computer of must injecting capital into also is necessary for and safeguards that computer increases expense so.
Because the dynamic password of multiple dynamic cipher device is the function of time, does not need to produce every 30 seconds incessantly a dynamic password.When the client starts dynamic cipher device, the dynamic password of multiple dynamic cipher device under the ability computing current time; When dynamic password was transferred to host computer, host computer this client's under the ability computing current time password was made comparisons two passwords then.When the client did not use dynamic cipher device, host computer was not required to be this client's computing password yet.On average, the client just uses dynamic cipher device every day one time, also is host computer every day only to be this client's computing password 1 time, and only be this client's computing password 360 times every year.Even scrambler is sent out for its each client by bank, bank's host computer need only be the annual computing of each client 360 passwords only.Bank need not infusion of financial resources expansion computer so, also need not to safeguarding that computer increases expense.The use annual fee of each dynamic cipher device is less to ignoring.
Another significant advantage of multiple dynamic cipher device of the present utility model is its thin slice design, is easy to carry.The thickness of common dynamic cipher device generally has more than 10 millimeters, and volume and thumb are similar, is designed to and can only hangs on the key chain.Such dynamic cipher device of many extensions is all right on the key chain, and volume is too big if three such dynamic cipher devices of many extensions just become, and carries inconvenience.But people generally have three above bank accounts, and the client should carry three above dynamic cipher devices so.But the client is very inconvenient three the such dynamic cipher devices that carry simultaneously.Multiple dynamic cipher device of the present utility model is to be placed in the wallet.Therefore adopt ultrathin design to be: display screen 8, main circuit board 14 is put at grade with button cell 5 and is linked to be a bluff body by welding, and the material of inner housing 2 and shell body 3 is stainless steels, and therefore very thin housing also has the intensity of sufficient Enough.The thickness of the multiple dynamic cipher device of ultrathin design is less than 4 millimeters thus.
Multiple dynamic cipher device is to be placed in the pouch of adorning credit card and atm card in the wallet.Do not make the wallet bulging for making wallet can place at least 3 multiple dynamic cipher devices, 3 multiple dynamic cipher devices should be to adorn in the pouch of credit card and atm card in being placed side by side on wallet.Therefore, the total length L 3 that is placed side by side on together of 3 multiple dynamic cipher devices should be less than the length L of credit card, as shown in Figure 7 and Figure 8.Like this, 3 multiple dynamic cipher devices just can be placed side by side in the pouch of adorning credit card and atm card in the wallet, and 3 multiple dynamic cipher device thickness that increase to wallet placed side by side only are equivalent to 3 credits card.
Be placed side by side on together total length L 3 less than the length L of credit card for reaching 3 multiple dynamic cipher devices, the width L1 of multiple dynamic cipher device must be less than 28 millimeters.In the implementation case, the width L1 of multiple dynamic cipher device is about 26 millimeters.For the width L1 that makes multiple dynamic cipher device is so narrow, each critical piece is single-row line spread: display screen 8 is placed at one end, and then is welded with the main circuit board 14 of processor, and then is connecting battery 5; Or: the main circuit board 14 that is welded with processor is placed at one end,, and then display screen 8, and then connecting battery 5.On Fig. 6, display screen 8 is placed on the upper end, and then is welded with the main circuit board 14 of processor, is connecting battery 5 below again.But display screen 8 also can be placed on left end, right-hand member or lower end.
On ﹠ off switch 6 and cryptographic key 7 are that the button film is attached on the main circuit board 14 and constitutes.For waterproof, sticking Stickers a transparent plastic mantle at shell body 3 inside surfaces.Water just cannot infiltrate in the housing from shell body opening 9.The joint of inner housing 2 and shell body 3 is with glue or other material seal, is inserted in the shell body 3 and the inner chamber that constitutes is exactly to seal fully by inner housing 2, and multiple dynamic cipher device is just waterproof.Because sticking Stickers's is the transparent plastic mantle, the password that does not influence display screen 8 shows and the use of on ﹠ off switch 6 with cryptographic key 7.
Also can be built-in with a plurality of dynamic password generator programs that correspond respectively to a plurality of service provider host computers at client's multiple dynamic cipher device, respectively serve provider's use a pair of dynamic password wherein, just therefore a multiple dynamic cipher device may be used on a plurality of service providers such as each bank or other mechanism.Can also be provided with the data input port on client's multiple dynamic cipher device, serving the provider can be input to the dynamic password generator program of themselves host computer on the multiple dynamic cipher device.Such benefit is that the client only need carry a multiple dynamic cipher device.Multiple dynamic cipher device also can combine with mobile phone.Bank can be input to the dynamic password generator program on the processor of mobile phone, and mobile phone also can produce the different dynamic password of a pair of length.Such benefit is that the client need not carry multiple dynamic cipher device.
Claims (7)
1, a kind of multiple dynamic cipher device authorization identifying system, comprise that the host computer (11) and the client that serve the provider land terminal (12), and the wired or wireless communication network (13) that connects both, it is characterized in that: also comprise the multiple dynamic cipher device (1) that is in client's hand, the onboard clock and the host computer of this multiple dynamic cipher device are synchronous.
2, multiple dynamic cipher device authorization identifying system according to claim 1 is characterized in that: described multiple dynamic cipher device is provided with switch.
3, a kind of multiple dynamic cipher device that is used for multiple dynamic cipher device authorization identifying system as claimed in claim 1, comprise shell, on ﹠ off switch and cryptographic key, display screen (8), battery of forming by steel inner housing and shell body (5) and the main circuit board (14) that is welded with processor, it is characterized in that: described display screen (8), battery (5) are arranged on the same plane with main circuit board (14), and are single-row line spread.
4, multiple dynamic cipher device according to claim 3, it is characterized in that: described client's multiple dynamic cipher device display screen is arranged on upper and lower a, left side or the right end of scrambler, battery is arranged on and its corresponding sides, between the two for being welded with the main circuit board of processor; Or main circuit board is arranged on upper and lower a, left side or the right end of scrambler, and battery is arranged on and its corresponding sides, is display screen between the two.
5, multiple dynamic cipher device according to claim 3 is characterized in that: described client's multiple dynamic cipher device on ﹠ off switch and cryptographic key are to be attached on the main circuit board by the button film and to constitute.
6, multiple dynamic cipher device according to claim 3 is characterized in that: described client's multiple dynamic cipher device shell body inside surface is being pasted a transparent plastic mantle, the joint glue of inside and outside housing.
7, according to described each multiple dynamic cipher device of claim 3 to 6, it is characterized in that: described client's multiple dynamic cipher device is provided with the data input port.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2007203066665U CN201218950Y (en) | 2007-11-29 | 2007-11-29 | Authorization and authentication system for multi-dynamic password device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNU2007203066665U CN201218950Y (en) | 2007-11-29 | 2007-11-29 | Authorization and authentication system for multi-dynamic password device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN201218950Y true CN201218950Y (en) | 2009-04-08 |
Family
ID=40541785
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNU2007203066665U Expired - Fee Related CN201218950Y (en) | 2007-11-29 | 2007-11-29 | Authorization and authentication system for multi-dynamic password device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN201218950Y (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103929295A (en) * | 2014-04-24 | 2014-07-16 | 天地融科技股份有限公司 | Intelligent cipher equipment |
| TWI454121B (en) * | 2011-05-30 | 2014-09-21 | Chunghwa Telecom Co Ltd | Method for generating dynamic code over secure network connection |
-
2007
- 2007-11-29 CN CNU2007203066665U patent/CN201218950Y/en not_active Expired - Fee Related
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI454121B (en) * | 2011-05-30 | 2014-09-21 | Chunghwa Telecom Co Ltd | Method for generating dynamic code over secure network connection |
| CN103929295A (en) * | 2014-04-24 | 2014-07-16 | 天地融科技股份有限公司 | Intelligent cipher equipment |
| CN103929295B (en) * | 2014-04-24 | 2017-11-24 | 天地融科技股份有限公司 | Intelligent cipher equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101162996B (en) | Multiple dynamic cipher device authorization identifying system and identifying method thereof | |
| US8200978B2 (en) | Security device and method incorporating multiple varying password generator | |
| US7917444B1 (en) | Secure single-use transaction numbers | |
| KR101259925B1 (en) | One-time password credit/debit card | |
| US5623547A (en) | Value transfer system | |
| JP5562965B2 (en) | Electronic payment application system and payment authentication method | |
| US5544086A (en) | Information consolidation within a transaction network | |
| US7278581B2 (en) | Electronic credit card-ecc | |
| AU741873C (en) | Electronic transaction | |
| US20120153028A1 (en) | Transaction Card with dynamic CVV | |
| CN101702223A (en) | Mobile phone POS payment method and system | |
| JP2017515248A (en) | Wireless digital wallet implementation method and system | |
| WO2011153355A2 (en) | Electronic credit card with fraud protection | |
| WO2014108916A1 (en) | A computer implemented system and method for cashless and cardless transactions | |
| CN104657847A (en) | Method for payment with limit code | |
| CN101223729B (en) | Updating a mobile payment device | |
| CN201218950Y (en) | Authorization and authentication system for multi-dynamic password device | |
| CN101501708A (en) | Transaction instruments with enhanced security PIN and expiration date generation | |
| US20020032874A1 (en) | System and method for identity verification | |
| US20120228375A1 (en) | e-card (Electronic debit and credit cards systems) | |
| JP2000187700A (en) | Electronic wallet and electronic money | |
| KR101162194B1 (en) | Card for preventing unlawful use and financial activities system using that | |
| CN100353705C (en) | Disposable cipher protection careless electronic transaction payment method | |
| CN107230300A (en) | The method and system of cash in kind are exchanged using digital cash chip card | |
| KR20010078424A (en) | A Lottery Direct Ticketing Processing System and Method Therefore through Internet |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20090408 Termination date: 20111129 |