CN100566238C - Obtain the method and system of user profile - Google Patents
Obtain the method and system of user profile Download PDFInfo
- Publication number
- CN100566238C CN100566238C CNB2007100627959A CN200710062795A CN100566238C CN 100566238 C CN100566238 C CN 100566238C CN B2007100627959 A CNB2007100627959 A CN B2007100627959A CN 200710062795 A CN200710062795 A CN 200710062795A CN 100566238 C CN100566238 C CN 100566238C
- Authority
- CN
- China
- Prior art keywords
- user profile
- hwid
- safety devices
- information safety
- password
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 13
- 238000004519 manufacturing process Methods 0.000 claims description 4
- 230000008676 import Effects 0.000 description 6
- 238000010276 construction Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000002427 irreversible effect Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 230000009897 systematic effect Effects 0.000 description 1
Images
Landscapes
- Storage Device Security (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
Abstract
The invention provides a kind of method and system that obtains user profile, belong to information security field.In order to solve in the prior art when information safety devices is lost or damage, obtain the problem that administers and maintains that user profile depends on database, the invention provides said method, comprise: when information of registered users, the computing log-in password generates registration code, and be kept in the computer together after the hwid of user profile and information safety devices is related; When obtaining user profile,, then utilize this hwid to obtain user profile if can read the hwid of information safety devices; If can not read the hwid of information safety devices, then utilize user password to obtain user profile.Said system comprises: Registering modules and acquisition module.The present invention utilizes the hwid of PIN code and information safety devices, or utilizes user password to obtain user profile, has avoided obtaining user profile from database, has reduced the cost that administers and maintains.
Description
Technical field
The present invention relates to information security field, particularly a kind of method and system that obtains user profile.
Background technology
In the prior art, identification authentication mode based on hardware device is a kind of convenience that grew up in recent years, safe, economic identity identifying technology, hardware device generally is built-in with single-chip microcomputer or intelligent card chip, can store user's key or digital certificate, utilize the built-in cryptographic algorithm of hardware device can realize authentication user identity.Usually hardware device adopts USB interface to link to each other with computer.The user must import correct authentication information, the data in just can obtaining and use a computer when utilizing hardware device to carry out authentication.The double strong factor certification mode of this one-time pad has solved the contradiction between fail safe and the ease for use well.
Information safety devices is a kind of small hardware device that has processor and memory, and it can be connected with computer by the data communication interface of computer.It has the key systematic function, but safe storage key, and can preset cryptographic algorithm, have functions such as E-mail enciphered, digital signature, safety certificate, secure network login and visit SSL (secure Sockets Layer, secure socket layer protocol layer) secure network.Information safety devices also has the feature that the private key that guarantees the user leaves hardware device never in addition, and the characteristic of attack protection physically, and fail safe is high, and information safety devices has been widely used in the data security field at present.
Each information safety devices all has unique hardware sequence number, and the user is when buying information safety devices, and the manufacturer can bind the unique hardware sequence number of user profile and information safety devices, and stores in the database together.When information safety devices was lost or damage, the manufacturer can obtain user profile and hardware sequence number from database after checking user's legal identity, produced an information safety devices identical with the original equipment function again and offered the user.Because the database self-capacity is big, the cost of complex management, construction and maintenance is all very high, in case and database make a mistake, just can't obtain user profile, can not regenerate same information safety devices again, can bring great loss to the user.
One-way Hash algorithm is a kind of message digest algorithm, and it can produce a unique one-way Hash algorithm value to expressly carrying out computing.One-way Hash algorithm is irreversible algorithm, can't be from the anti-original value of releasing of operation result, and it is technical that it is widely used in encryption and decryption, for example, MD5 (Message Digest Algorithm5, Message Digest 5), SHA (Secure HashAlgorithm, Secure Hash Algorithm) etc.
Summary of the invention
In order to solve in the prior art when information safety devices is lost or damage, obtain the problem that administers and maintains that user profile depends on database, the invention provides a kind of method of obtaining user profile, specifically may further comprise the steps:
When information of registered users, carry out following steps:
Steps A: information safety devices is with after computer is connected, and described computer reads the hwid of described information safety devices;
Step B: described computer obtains the log-in password and the user profile of user's input, and the described log-in password of union generates registration code, described registration code, user profile and hwid is associated together preserves;
When obtaining described user profile, carry out following steps:
Step C: described computer judges whether to read the hwid of information safety devices,
If can read the hwid of information safety devices, then described computer reads the hwid of described information safety devices, and search and whether preserve in the described computer and the corresponding to hwid of this hwid, if find, then obtain described user profile;
If can not read the hwid of information safety devices, then obtain the user password of user's input, whether the described user password of union generates input code, search and preserve in the described computer and the corresponding to registration code of this input code, if find, then obtain described user profile.
Described registration code generates for utilizing one-way Hash algorithm that described log-in password is carried out computing; Described input code generates for utilizing one-way Hash algorithm that described user password is carried out computing.
Described one-way Hash algorithm is MD5 or SHA.
Described user profile is one or more in production number, guarantee number, subscriber data, product type and the information safety devices data.
The present invention also provides a kind of system that obtains user profile, and described system comprises:
Registering modules is used for when information of registered users information safety devices being connected with computer, reads the hwid of described information safety devices; Obtain the log-in password and the user profile of user's input, the described log-in password of union generates registration code, described registration code, user profile and hwid is associated together preserves then;
Acquisition module, be used for when obtaining described user profile, judge whether to read the hwid of information safety devices, if can read the hwid of information safety devices, then read the hwid of described information safety devices, search and whether preserve in the described computer and the corresponding to hwid of this hwid,, then obtain described user profile if find; If can not read the hwid of information safety devices, then obtain the user password of described user's input, whether the described user password of union generates input code, search and preserve in the described computer and the corresponding to registration code of this input code, if find, then obtain described user profile.
Described registration code generates for utilizing one-way Hash algorithm that described log-in password is carried out computing; Described input code generates for utilizing one-way Hash algorithm that described user password is carried out computing.
Described one-way Hash algorithm is MD5 or SHA.
The invention has the beneficial effects as follows:
The registration code that makes the hwid of preserving user profile, information safety devices in the computer and utilize log-in password to generate by registered in advance; When computer can read the hwid of information safety devices, can obtain user profile by from the hwid that prestores, finding with the corresponding to hwid of the hwid of current information safety means; When computer can not read the hwid of information safety devices, can obtain user profile by the corresponding to registration code of input code that from the registration code that prestores, finds and utilize user password to generate, thereby avoided from database, obtaining user profile, reduced the cost that administers and maintains.
Description of drawings
Fig. 1 is the method flow diagram that the embodiment of the invention one is obtained user profile;
Fig. 2 is the system construction drawing that the embodiment of the invention two is obtained user profile.
Embodiment
The invention will be further described below in conjunction with the drawings and specific embodiments, but the present invention is not limited to the following examples.
Embodiment one
Referring to Fig. 1, the embodiment of the invention provides a kind of method of obtaining user profile, specifically may further comprise the steps:
When user's information of registered users, carry out the step of following registration:
Step 101: the user links to each other information safety devices with computer;
Step 102: computer reads the hwid of information safety devices, and the prompting user imports log-in password and user profile;
Step 103: the user imports log-in password and user profile, and user profile is one or more in production number, guarantee number, subscriber data, product type and the information safety devices data.
Step 104: computer utilizes the log-in password of MD5 algorithm computing user input, generates registration code, and the user profile that this registration code and user are imported and the hwid that reads associate, and is stored in then in the computer; Association realizes by data structure, array, listed files or file Hash table.
When the user need obtain user profile, the step of carrying out following checking and obtaining:
Step 105: computer judges whether to read the hwid of information safety devices, if can read the hwid of information safety devices, it is very slight that the information safety devices that the user then is described is not lost degree excellent or that damage, execution in step 106; If can not read the hwid of information safety devices, the information safety devices that the user then is described lose or the degree damaged very serious, then execution in step 113;
Step 106: computer reads the hwid of information safety devices;
Step 107: whether in the hwid in computer stored have with current hwid consistent identifier, if having, then execution in step 108 if searching; Otherwise execution in step 112;
Step 108: the computer prompted user imports PIN code;
Step 109: the user imports PIN code to computer;
Step 110: computer judges whether the PIN code of user's input is correct, if correct, then execution in step 111, otherwise execution in step 112;
Step 111: the user obtains the user profile in the computer by checking, finishes then;
Step 112: the computer prompted error message, and finish;
Step 113: the user imports user password;
Step 114: computer utilizes the MD5 algorithm that user password is carried out computing, produces input code;
Step 115: whether in the registration code in computer stored have with the input code of current generation consistent registration code, if having, then execution in step 116 if searching; Otherwise execution in step 117;
Step 116: the user obtains the user profile in the computer by checking;
Step 117: computer prompted error message.
MD5 one-way Hash algorithm in the present embodiment can be replaced by the SHA algorithm.
Embodiment two
Referring to Fig. 2, the embodiment of the invention also provides a kind of system that obtains user profile, specifically comprises:
(1) Registering modules is used for when information of registered users information safety devices being connected with computer, reads the hwid of information safety devices; Obtain the log-in password and the user profile of user's input, the union log-in password generates registration code, registration code, user profile and hwid is associated together preserves then;
(2) acquisition module, be used for when obtaining user profile, judge whether to read the hwid of information safety devices, if can read the hwid of information safety devices, then read the hwid of information safety devices, search and whether preserve in the computer and the corresponding to hwid of this hwid,, then obtain user profile if find; If can not read the hwid of information safety devices, then obtain the user password of user's input, whether the computing user password generates input code, search and preserve in the computer and the corresponding to registration code of this input code, if find, then obtains user profile.
Above-mentioned registration code generates for utilizing one-way Hash algorithm that log-in password is carried out computing, and above-mentioned input code generates for utilizing one-way Hash algorithm that user password is carried out computing.
Above-mentioned one-way Hash algorithm is MD5 or SHA.
Above-mentioned association realizes by data structure, array, listed files or file Hash table.
Above-mentioned user profile is one or more in production number, guarantee number, subscriber data, product type and the information safety devices data.
Above-described embodiment is a more preferably embodiment of the present invention, and common variation that those skilled in the art carries out in the technical solution of the present invention scope and replacement all should be included in protection scope of the present invention.
Claims (7)
1. a method of obtaining user profile is characterized in that, said method comprising the steps of:
When information of registered users, carry out following steps:
Steps A: information safety devices is with after computer is connected, and described computer reads the hwid of described information safety devices;
Step B: described computer obtains the log-in password and the user profile of user's input, and the described log-in password of union generates registration code, described registration code, user profile and hwid is associated together preserves;
When obtaining described user profile, carry out following steps:
Step C: described computer judges whether to read the hwid of information safety devices,
If can read the hwid of information safety devices, then described computer reads the hwid of described information safety devices, and search and whether preserve in the described computer and the corresponding to hwid of this hwid, if find, then obtain described user profile;
If can not read the hwid of information safety devices, then obtain the user password of user's input, whether the described user password of union generates input code, search and preserve in the described computer and the corresponding to registration code of this input code, if find, then obtain described user profile.
2. the method for obtaining user profile according to claim 1 is characterized in that, described registration code generates for utilizing one-way Hash algorithm that described log-in password is carried out computing; Described input code generates for utilizing one-way Hash algorithm that described user password is carried out computing.
3. the method for obtaining user profile according to claim 2 is characterized in that, described one-way Hash algorithm is MD5 or SHA.
4. the method for obtaining user profile according to claim 1 is characterized in that, described user profile is one or more in production number, guarantee number, subscriber data, product type and the information safety devices data.
5. a system that obtains user profile is characterized in that, described system comprises:
Registering modules is used for when information of registered users information safety devices being connected with computer, reads the hwid of described information safety devices; Obtain the log-in password and the user profile of user's input, the described log-in password of union generates registration code, described registration code, user profile and hwid is associated together preserves then;
Acquisition module, be used for when obtaining described user profile, judge whether to read the hwid of information safety devices, if can read the hwid of information safety devices, then read the hwid of described information safety devices, search and whether preserve in the described computer and the corresponding to hwid of this hwid,, then obtain described user profile if find; If can not read the hwid of information safety devices, then obtain the user password of described user's input, whether the described user password of union generates input code, search and preserve in the described computer and the corresponding to registration code of this input code, if find, then obtain described user profile.
6. the system that obtains user profile according to claim 5 is characterized in that, described registration code generates for utilizing one-way Hash algorithm that described log-in password is carried out computing; Described input code generates for utilizing one-way Hash algorithm that described user password is carried out computing.
7. the system that obtains user profile according to claim 6 is characterized in that, described one-way Hash algorithm is MD5 or SHA.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007100627959A CN100566238C (en) | 2007-01-17 | 2007-01-17 | Obtain the method and system of user profile |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2007100627959A CN100566238C (en) | 2007-01-17 | 2007-01-17 | Obtain the method and system of user profile |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101018120A CN101018120A (en) | 2007-08-15 |
| CN100566238C true CN100566238C (en) | 2009-12-02 |
Family
ID=38726893
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2007100627959A Expired - Fee Related CN100566238C (en) | 2007-01-17 | 2007-01-17 | Obtain the method and system of user profile |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100566238C (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101150459B (en) * | 2007-10-30 | 2010-06-02 | 北京飞天诚信科技有限公司 | Method and system for improving safety of information safety device |
| SG177597A1 (en) * | 2009-07-10 | 2012-03-29 | Certicom Corp | System and method for performing serialization of devices |
| CN103490976A (en) * | 2013-08-24 | 2014-01-01 | 金硕澳门离岸商业服务有限公司 | Information prompt method and device |
| CN104751042B (en) * | 2015-01-16 | 2018-03-06 | 西安电子科技大学 | Creditability detection method based on cryptographic hash and living things feature recognition |
| CN106529223A (en) * | 2016-12-15 | 2017-03-22 | 重庆兆洲科技发展有限公司 | Microcontroller unit and control method thereof |
-
2007
- 2007-01-17 CN CNB2007100627959A patent/CN100566238C/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN101018120A (en) | 2007-08-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10447486B2 (en) | Remote attestation of a security module's assurance level | |
| WO2020048241A1 (en) | Blockchain cross-chain authentication method and system, and server and readable storage medium | |
| CN110175840B (en) | Method, client, alliance chain and system for realizing light wallet mechanism in alliance chain | |
| CN104320389B (en) | A kind of fusion identity protection system and method based on cloud computing | |
| US8693690B2 (en) | Organizing an extensible table for storing cryptographic objects | |
| EP3526721A1 (en) | Method, device and system for validating sensitive user data transactions within trusted circle | |
| US9495546B2 (en) | Electronic signing methods, systems, and apparatus | |
| CN107222476B (en) | A kind of authentication service method | |
| US20070283427A1 (en) | Simplified identity management of a common area endpoint | |
| CN105915338B (en) | Generate the method and system of key | |
| CN102271042A (en) | Certificate authorization method, system, universal serial bus (USB) Key equipment and server | |
| CA2879910C (en) | Terminal identity verification and service authentication method, system and terminal | |
| JP6190404B2 (en) | Receiving node, message receiving method and computer program | |
| CN105681281B (en) | Encryption device based on embedded OS | |
| CN100566238C (en) | Obtain the method and system of user profile | |
| CN114257376B (en) | Digital certificate updating method, device, computer equipment and storage medium | |
| CN102694782A (en) | Internet-based device and method for security information interaction | |
| TWI476629B (en) | Data security and security systems and methods | |
| CN102752754B (en) | Subscriber Identity Module lock data are carried out method and the mobile terminal of safety certification | |
| CN101673250B (en) | Method and device for protecting codes or data in mobile phone memory | |
| CN101789939B (en) | Effective realization method for credible OpenSSH | |
| CN110620776A (en) | Data transfer information transmission method and device | |
| CN109495500A (en) | A kind of double factor authentication method based on smart phone | |
| TW201430608A (en) | Single-sign-on system and method | |
| CN102332068A (en) | On-line logistics encryption, authentication and storage system using universal serial bus key (USBKEY) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C56 | Change in the name or address of the patentee |
Owner name: FEITIAN CHENGXIN TECHNOLOGIES CO., LTD. Free format text: FORMER NAME: BEIJING FEITIAN CHENGXIN SCIENCE + TECHNOLOGY CO. LTD. |
|
| CP03 | Change of name, title or address |
Address after: 100085 Beijing city Haidian District Xueqing Road No. 9 Ebizal building B block 17 layer Patentee after: Feitian Technologies Co.,Ltd. Address before: 100083, Haidian District, Xueyuan Road, No. 40 research, 7 floor, 5 floor, Beijing Patentee before: FEITIAN TECHNOLOGIES Co.,Ltd. |
|
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20091202 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |