CN100337174C - Multi network site log-in system based in intelligent card - Google Patents
Multi network site log-in system based in intelligent card Download PDFInfo
- Publication number
- CN100337174C CN100337174C CNB2005100277119A CN200510027711A CN100337174C CN 100337174 C CN100337174 C CN 100337174C CN B2005100277119 A CNB2005100277119 A CN B2005100277119A CN 200510027711 A CN200510027711 A CN 200510027711A CN 100337174 C CN100337174 C CN 100337174C
- Authority
- CN
- China
- Prior art keywords
- smart card
- terminal
- module
- information
- submodule
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The present invention relates to a multi-website login system based on a smart card, which belongs to the technical field of website safety. The present invention comprises a storage module, a control module and a terminal module, wherein the storage module is connected with a computer through a USB interface, and the control module inputs storage module information into the terminal module through the read-in and the judgment of storage module information. The storage module refers to the smart card, is a basic carrier for safely storing user information, and realizes the data transmission between the storage module and the computer; the terminal module refers to a website client end, and the system inputs the information into the corresponding terminal module through judgment so as to realize the automatic login of the smart card. The present invention has the characteristics that standard configuration tools are designed, and the application range of the smart card is wide; traditional and modern safety technologies such as symmetric encryption algorithms, etc. can be widely applied to the smart card; when a user logs in different websites or accesses certain specific sensitive data, only a simple smart card PIN password needs to be input.
Description
Technical field
What the present invention relates to is a kind of system of website security technical field, specifically, is a kind of many website log system based on smart card.
Background technology
The economic construction of China is development apace, and network application and network service are deep into all trades and professions step by step, are deep into the every aspect of people's lives.Each information sites such as restricting E-Government is quick, the importance of orderly development but information security issue remains.Adapt to informationalized needs and construct practical information security basic platform, carry out the technical guarantee that information security is provided, become the information-based indispensable ring of using for each electronics website is informationalized.And at present, smart card techniques is just deeply being utilized by people, sets up the bridge of a trust in abstract online community.
Find that by prior art documents the Chinese patent publication number is 1514403, denomination of invention is: intelligent card one decryption method and system.This patent has following shortcoming: owing to just realized the system that intelligent card one is close, make that same smart card can only be corresponding to a certain specific system.And same user uses the situation of a plurality of different systems to seem more general in reality.If this patent is applied to a plurality of systems, then have to use a plurality of smart cards, this not only can cause the raising of cost, can cause great use inconvenience simultaneously when using smart card to increase.This certainly will will become the big weakness that smart card is promoted.
Summary of the invention
The objective of the invention is to overcome the deficiencies in the prior art part, a kind of many website log system based on smart card is provided, make its design standards configuration tool, make tradition such as DES (symmetric encipherment algorithm) and modern safety technology can widespread usage in smart card, when the user logins different web sites or visits some certain sensitive data, only need simple smart card PIN password of input.
The present invention is achieved by the following technical solutions, the present invention includes three modules: memory module, control module, terminal module, memory module is connected with computing machine by USB interface, and control module inputs to terminal module with information by to the reading in of memory module information after judging; Described memory module is meant smart card, is the underlying carrier of safe storage user profile, and the data transmission of realization and computing machine; Described terminal module is meant the website client end, and system realizes the automatic login of smart card by terminal module after judging that the information input is corresponding; Described control module comprises: configuration tool submodule and supervision submodule, these two submodules are mutually the input and output direction of oneself with the other side.
Described configuration tool submodule and supervision submodule, independently of one another, be the existence of each submodule or existence or the execution that execution does not influence another submodule, but two submodules complement each other the configuration and the monitoring function of a complete smart card of realization.
Described configuration tool submodule, finish following task: (1) realizes the Standard User interface; (2) connect smart card; (3) checking or modification PIN (PIN (Personal Identification Number)) password; (4) recorded content in demonstration or the modification smart card; (5) realize symmetric encipherment algorithm, make the user can store private key and certificate and realize that interface makes the interface can read the certificate content; (6) coupling of realization smart card and terminal module, even the smart card customizing messages can be read by counterpart terminal automatically, the user needs given attribute and value that the different terminals module is made a distinction, and simultaneously information is deposited in smart card.
Described smart card is meant that with the coupling of terminal module the characteristic information that obtains the website client end is used to distinguish different terminals, makes smart card with corresponding different information input different terminals.
Described supervision submodule, finish following task: whether smart card exists (1) permission system queries, if there is no, and then sleep, if exist, then all the other functions of this part are carried out in trial; (2) coupling of realization terminal and smart card, read all user profile that can import that deposits in by the configuration tool submodule, read all terminals to be matched simultaneously,, respectively mate the information input in the list simultaneously by the coupling of reverse judgement realization information to be entered and terminal; (3) smart card of inquiry and trial are defined as single job with the coupling of terminal, realize a timer simultaneously, and setting interval by timer makes system repeat this operation at set intervals automatically.
The course of work of the present invention and principle are as follows: the user need at first use configuration tool module to come the essential information of configurable smart card storage.Comprise the PIN password that smart card is set, the match information of smart card and terminal is set.Wherein the PIN password is used for need not requiring the user to input password when system realizes login automatically, and the coupling of smart card and terminal is the core of native system.
Described smart card is meant that with the coupling of terminal module the characteristic information that obtains the website terminal is used to distinguish different terminals and makes smart card corresponding different information can be imported different terminals.Obtain the characteristic information of terminal, need at first to determine some essential characteristic attributes of this terminal, as the sign of identification different terminals, use the title of terminal to distinguish variant terminal (using (#) family also can select the determinant attribute of different differentiations simultaneously) in this instrument according to oneself configuration as unique value.Realize coupling then as follows:
(1) user opens the website terminal, is used to make configuration tool can distinguish different terminals in the title value input configuration tool with this website simultaneously.
(2) in the website, import usemame/password, and this information is also imported in the configuration tool.
After executing above-mentioned steps, the assembly that configuration tool need be called the Windows system to be provided obtains current all the Windows window handle of opening set, by traveling through this set, the title value of each unit is compared with the value of input in configuration tool at first will gathering, if it is identical, determine that then this unit is the terminal of required coupling, and then in the unit, search for identical information determining their pairing Property Names, and deposit this information in smart card and just can realize coupling with terminal according to the user name encrypted message of in configuration tool, inputing.After configuration was finished, the user only need open the website terminal, and smart card is inserted computing machine, just can automatically the website terminal be read in and be exported to information in the smart card by monitoring submodule.
The invention provides configuration tool flexibly and make the application of IC cards scope more wide, the user can distinguish different website terminals according to the different attribute that sets in advance, and makes smart card realize the automatic login of different web sites terminal.The capacity of general intelligence card is 32KB, if and each website terminal is only stored general common user name, password (suppose each the longest be 16 bytes), the attribute information (supposing to distinguish) that needs some difference website terminal uniquenesss simultaneously with website terminal title, the then general 80B that only needs just can store all information of a corresponding website, that is to say, the general intelligence card can be stored the i.e. information of at least 400 websites of 32K/80 at most, the website quantity of the required visit of general user head and shoulders above, that is to say, as long as realize once configuration, promptly can once and for all enjoy the automatic login of all websites and needn't worry that at all password variety of issue such as forgets too much the website.
Description of drawings
Fig. 1 is a structured flowchart of the present invention
Embodiment
Embodiment
As shown in Figure 1, the present invention includes three modules: memory module, control module, terminal module, memory module is connected with computing machine by USB interface, and control module inputs to terminal module with information by to the reading in of memory module information after judging; Described memory module is meant smart card, is the underlying carrier of safe storage user profile, and the data transmission of realization and computing machine; Described terminal module is meant the website client end, and system realizes the automatic login of smart card by terminal module after judging that the information input is corresponding; Described control module comprises: configuration tool submodule and supervision submodule, these two submodules are mutually the input and output direction of oneself with the other side.
In total system, the WatchKey product of selecting Beijing Watchdata's data company is as memory module; The operation platform of control module is the WindowsXP system, and development platform is Visual Studio 6; Use the Internet Explorer 6.0 of Microsoft as terminal module.
Described configuration tool submodule and supervision submodule, independently of one another, be the existence of each submodule or existence or the execution that execution does not influence another submodule, but two submodules complement each other the configuration and the monitoring function of a complete smart card of realization.
Described configuration tool submodule, finish following task: (1) realizes the Standard User interface; (2) connect smart card; (3) checking or modification PIN (PIN (Personal Identification Number)) password; (4) recorded content in demonstration or the modification smart card; (5) realize symmetric encipherment algorithm DES (data encryption standards), make the user can store private key and certificate and realize that interface makes the interface can read the certificate content; (6) coupling of realization smart card and terminal module, even the smart card customizing messages can be read by counterpart terminal automatically, the user needs given attribute and value that the different terminals module is made a distinction, and simultaneously information is deposited in smart card.
Described smart card is meant that with the coupling of terminal module the characteristic information that obtains the website client end is used to distinguish different terminals and makes smart card corresponding different information can be imported different terminals.
During specific implementation, the configuration tool submodule can carry out password authentification and read-write to it by general API (application programming interfaces) interface that smart card WatchKey provides, can oneself need the encrypted message of storage by the tools interfaces input as the user, after reading in by configuration tool, information is deposited in by calling the smart card api interface.Simultaneously, configuration tool also can realize the coupling of smart card and terminal.
Realize the coupling of smart card and terminal, need at first to determine some essential characteristic attributes of terminal, as the sign of identification different terminals, use the title of terminal to distinguish variant terminal (using (#) family also can select the determinant attribute of different differentiations simultaneously) in this instrument according to oneself configuration as unique value.Realize coupling then as follows: (1) user opens the website terminal, is used to make configuration tool can distinguish different terminals in the title value input configuration tool with this website simultaneously.(2) in the website, import usemame/password, and this information is also imported in the configuration tool.After executing above-mentioned steps, the assembly that configuration tool need be called the Windows system to be provided obtains current all the Windows window handle of opening set, by traveling through this set, the title value of each unit is compared with the value of input in configuration tool at first will gathering, if it is identical, determine that then this unit is the terminal of required coupling, and then in the unit, search for identical information determining their pairing Property Names, and deposit this information in smart card and just can realize coupling with terminal according to the user name encrypted message of in configuration tool, inputing.
Described supervision submodule, finish following task: whether smart card exists (1) permission system queries, if there is no, and then sleep, if exist, then all the other functions of this part are carried out in trial; (2) coupling of realization terminal and smart card, read all user profile that can import that deposits in by the configuration tool submodule, read all terminals to be matched simultaneously,, respectively mate the information input in the list simultaneously by the coupling of reverse judgement realization information to be entered and terminal; (3) smart card of inquiry and trial are defined as single job with the coupling of terminal, realize a timer simultaneously, and setting interval by timer makes system repeat this operation at set intervals automatically.
Monitor that submodule need monitor memory module and terminal module simultaneously.Whether the timer that it uses operating system to provide is inquired about at set intervals automatically has smart card to insert, if have, then at first from smart card, read in the match information that has deposited in, and judge whether to exist the terminal module of corresponding coupling thus, if exist, then from smart card, read in encrypted message to be imported and export the terminal module that has mated to automatically.
Claims (3)
1. many website log system based on smart card, comprise: memory module, control module, terminal module is characterized in that memory module is connected with computing machine by USB interface, control module inputs to terminal module with information by to the reading in of memory module information after judging; Described memory module is meant smart card, is the underlying carrier of safe storage user profile, and the data transmission of realization and computing machine; Described terminal module is meant the website client end, and system realizes the automatic login of smart card by terminal module after judging that the information input is corresponding; Described control module comprises: configuration tool submodule and supervision submodule, and these two submodules are mutually the input and output direction of oneself with the other side;
Described configuration tool submodule, finish following task: (1) realizes the Standard User interface; (2) connect smart card; (3) checking or modification PIN password; (4) recorded content in demonstration or the modification smart card; (5) realize symmetric encipherment algorithm, make the user can store private key and certificate and realize that interface makes the interface can read the certificate content; (6) coupling of realization smart card and terminal module, even the smart card customizing messages can be read by counterpart terminal automatically, the user needs given attribute and value that the different terminals module is made a distinction, and simultaneously information is deposited in smart card;
Described supervision submodule, finish following task: whether smart card exists (1) permission system queries, if there is no, and then sleep, if exist, then all the other functions of this part are carried out in trial; (2) coupling of realization terminal and smart card, read all user profile that can import that deposits in by the configuration tool submodule, read all terminals to be matched simultaneously,, respectively mate the information input in the list simultaneously by the coupling of reverse judgement realization information to be entered and terminal; (3) smart card of inquiry and trial are defined as single job with the coupling of terminal, realize a timer simultaneously, and setting interval by timer makes system repeat this operation at set intervals automatically.
2. the many website log system based on smart card according to claim 1, it is characterized in that, described configuration tool submodule and supervision submodule, independently of one another, be the existence of each submodule or existence or the execution that execution does not influence another submodule, but two submodules complement each other, the configuration and the monitoring function of a complete smart card of realization.
3. the many website log system based on smart card according to claim 1, it is characterized in that, described smart card is meant that with the coupling of terminal module the characteristic information that obtains the website client end is used to distinguish different terminals, makes smart card with corresponding different information input different terminals.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100277119A CN100337174C (en) | 2005-07-14 | 2005-07-14 | Multi network site log-in system based in intelligent card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100277119A CN100337174C (en) | 2005-07-14 | 2005-07-14 | Multi network site log-in system based in intelligent card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1719372A CN1719372A (en) | 2006-01-11 |
| CN100337174C true CN100337174C (en) | 2007-09-12 |
Family
ID=35931224
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005100277119A Expired - Fee Related CN100337174C (en) | 2005-07-14 | 2005-07-14 | Multi network site log-in system based in intelligent card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100337174C (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104836861B (en) * | 2015-05-20 | 2018-09-21 | 国网山东阳信县供电公司 | A kind of website log system and Website logging method |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1434598A (en) * | 2003-03-06 | 2003-08-06 | 上海交通大学 | Safety All-in-one-card system realized by intelligent card |
| WO2004013734A2 (en) * | 2002-08-02 | 2004-02-12 | Cardtronic | Method and system for executing applications on a mobile device |
| CN1514403A (en) * | 2003-06-24 | 2004-07-21 | 深圳达实智能股份有限公司 | Intelligent card-card-secret method and system |
| US20040162903A1 (en) * | 2002-12-28 | 2004-08-19 | Lg Electronics Inc. | Apparatus and method for automatically logging in internet web site |
| CN1627684A (en) * | 2003-12-09 | 2005-06-15 | 联想(北京)有限公司 | Security management method and system for networked computer users |
| CN1627698A (en) * | 2003-12-12 | 2005-06-15 | 宏碁股份有限公司 | Smart card device, and method for logging on real time transmission and servo system |
-
2005
- 2005-07-14 CN CNB2005100277119A patent/CN100337174C/en not_active Expired - Fee Related
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2004013734A2 (en) * | 2002-08-02 | 2004-02-12 | Cardtronic | Method and system for executing applications on a mobile device |
| US20040162903A1 (en) * | 2002-12-28 | 2004-08-19 | Lg Electronics Inc. | Apparatus and method for automatically logging in internet web site |
| CN1434598A (en) * | 2003-03-06 | 2003-08-06 | 上海交通大学 | Safety All-in-one-card system realized by intelligent card |
| CN1514403A (en) * | 2003-06-24 | 2004-07-21 | 深圳达实智能股份有限公司 | Intelligent card-card-secret method and system |
| CN1627684A (en) * | 2003-12-09 | 2005-06-15 | 联想(北京)有限公司 | Security management method and system for networked computer users |
| CN1627698A (en) * | 2003-12-12 | 2005-06-15 | 宏碁股份有限公司 | Smart card device, and method for logging on real time transmission and servo system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1719372A (en) | 2006-01-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8275789B2 (en) | Collaborative bookmarking | |
| CN101231647B (en) | File management system and method | |
| CN111357240B (en) | Cryptographic system, method and medium for cryptographic system | |
| CN103179126A (en) | Access control method and device | |
| CN101059818A (en) | Method for reinforcing search engine result safety | |
| CN106027520B (en) | A kind of detection processing steals the method and device of website account number | |
| CN103745148A (en) | Information protection method based on fingerprint recognition and mobile terminal | |
| CN101593252B (en) | Method and system for controlling access of computer to USB equipment | |
| CN107196840A (en) | Data processing method, device and equipment | |
| CN112905965B (en) | Financial big data processing system based on block chain | |
| CN101561855B (en) | Method and system for controlling computer to access USB device | |
| CN100337174C (en) | Multi network site log-in system based in intelligent card | |
| JPWO2002071269A1 (en) | Patent or utility model information retrieval management system via the Internet | |
| CN110061988A (en) | Method for authenticating, embedded device, service server and the storage medium of embedded device | |
| CN102567230B (en) | Smart card and method for safely managing same | |
| CN101674301A (en) | Method for storing certificate | |
| CN2896370Y (en) | Intelligent key device | |
| TWI701930B (en) | Method, device and computer storage medium for managing password | |
| CN102457484A (en) | Method for checking user information by combining user name/password authentication and check code | |
| CN106407309A (en) | Cluster database data loading tool and method capable of supporting various data sources | |
| CN110363000A (en) | Identify method, apparatus, electronic equipment and the storage medium of malicious file | |
| CN117453982B (en) | File management file classification system | |
| CN112417496A (en) | Method for realizing white list based on intelligent contract based on deep learning | |
| CN116527303B (en) | Industrial control equipment information extraction method and device based on marked flow comparison | |
| CN109117649A (en) | A kind of document handling method, device and computer readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20070912 Termination date: 20100714 |