CN101163014A - Dynamic password identification authenticating system and method - Google Patents

Dynamic password identification authenticating system and method Download PDF

Info

Publication number
CN101163014A
CN101163014A CNA2007101958554A CN200710195855A CN101163014A CN 101163014 A CN101163014 A CN 101163014A CN A2007101958554 A CNA2007101958554 A CN A2007101958554A CN 200710195855 A CN200710195855 A CN 200710195855A CN 101163014 A CN101163014 A CN 101163014A
Authority
CN
China
Prior art keywords
dynamic password
authentication
terminal
dynamic
user
Prior art date
Application number
CNA2007101958554A
Other languages
Chinese (zh)
Inventor
罗毅
张明杰
牛汉春
温庭礼
Original Assignee
中国电信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中国电信股份有限公司 filed Critical 中国电信股份有限公司
Priority to CNA2007101958554A priority Critical patent/CN101163014A/en
Publication of CN101163014A publication Critical patent/CN101163014A/en

Links

Abstract

The invention discloses a dynamic password authentication system and a method, wherein, the method includes five steps. Firstly, when authentication is carried out, the dynamic password authentication system prompts a user to enter a dynamic password; secondly, a terminal utilizes a built-in symmetric password algorithm to perform calculation in order to generate a dynamic password; thirdly, the dynamic password generated by the terminal is sent to the dynamic password authentication system; fourthly, the dynamic password authentication system locally calculates a dynamic password according to the same algorithm; fifthly, the dynamic passowrd sent by the client end is compared with the locally calculated dynamic passowrd, if consistent, the user passes the authentication, and if not consistent, the authentication is denied. The invention increases the security of user authentication.

Description

A kind of dynamic password identification authenticating system and method
Technical field
The present invention relates to secure authentication technology, be meant a kind of dynamic password identification authenticating system and method especially.
Background technology
Along with the development of cybertimes, ecommerce and other based on network application are have swept the globe, and the internet security problem is important all the more.The incidents such as bank's steal-number of Fa Shenging make people also more and more pay attention to the safety of network trading in recent years.But present most of network using static password technology realizes authentication, and there is a lot of potential safety hazards in this traditional authentication mode, and information is very easily divulged a secret; Easily by conjecture, easily leakage.Except static password, also have other several authentication modes such as digital certificate, but all have safety problem in various degree, so just need a kind of more convenient safe authentication mode to realize authentication.
Summary of the invention
In view of this, the present invention proposes a kind of dynamic password identification authenticating system and method, more conveniently safe the user is carried out authentication.
Based on above-mentioned purpose a kind of dynamic password identity authentication method provided by the invention, comprising:
During authentication, dynamic password identification authenticating system prompting user imports dynamic password;
Terminal is utilized built-in symmetric cryptographic algorithm to calculate and is produced dynamic password;
The dynamic password that terminal is produced sends to dynamic password identification authenticating system;
Dynamic password identification authenticating system calculates dynamic password according to identical algorithms in this locality; The dynamic password that client is sent compares with the local dynamic password that calculates, if consistent, then by authentication, if inconsistent, then refusal authentication this time.
The described terminal of this method is calculated described dynamic password by telecom intelligent card.
The described telecom intelligent card of this method is personal information management PIM card or USIM usim card.
Also comprise before the described terminal of this method produces dynamic password: the terminal notifying user imports PIN PIN, and whether the PIN value of checking user input is correct, if terminal is calculated described dynamic password.
Also comprise before the described terminal of this method produces dynamic password: dynamic password identification authenticating system provides the challenge number to the user; The terminal notifying user imports the challenge number, and terminal is calculated the dynamic password answer number according to the challenge number.
The described challenge number of this method is a numeral, from dealing money, change, produce the summary of at least one information in account number, currency type, transaction identification sign indicating number, the trade company's code over to.
The described dynamic password of this method is to calculate by symmetric cryptographic algorithm according to unique key, dynamic factor and individuation data that terminal and dynamic password identification authenticating system are made an appointment.
The algorithm of the described dynamic factor of this method adopts based on incident or based on the time mode.
The described terminal of this method is loaded with one or more dynamic password pass information, and each pass can produce and show a plurality of unidirectional keying sequences.
The described encryption key of this method is through the secure hardware HSM of special use storage, and HSM has the PIN protection.
Also provide a kind of dynamic password identification authenticating system based on above-mentioned purpose the present invention, having comprised:
Business service system is used to produce authentication interface, and prompting user input comprises the authentication information of dynamic password, and receives user's authentication information;
The dynamic password authentication server provides dynamic password authentication at unique identity of user;
The dynamic password identification authenticating platform, linking to each other with certificate server links to each other with business service system, is used for the dynamic password log-on message of a plurality of business service systems is carried out centralized stores, and the dynamic password related service is provided uniform services and the interface.
The terminal that the authentication management platform of this system and certificate server can be supported comprises: one or more in token, scratch card, matrix card, PIM, the usim card;
The authentication mode of supporting comprises: one or more in single factor dynamic password, dual factors dynamic password, information signature, two-way authentication dynamic password, matrix form dynamic password, the note dynamic password.
The certificate server of this system is based on the certificate server of time or based on the certificate server of incident.
This system also comprises provides interface to link to each other with Short Message Service Gateway, and with various access platforms, certificate server links to each other.
From above as can be seen, dynamic password identification authenticating system provided by the invention and method, utilize user's terminal equipment to calculate dynamic password cleverly, relatively verify with the dynamic password that system side is calculated, improved safety of user authentication greatly, applicable to industry-by-industry, make the authentication of industry-by-industry to realize at lower cost.
Description of drawings
Fig. 1 is the structural representation of the embodiment of the invention based on USIM (USIM)/personal information management (PIM) card dynamic password identification authenticating system.
Fig. 2 is an embodiment of the invention dynamic password authentication platform schematic diagram;
Fig. 3 is the identifying procedure schematic diagram of the embodiment of the invention based on USIM/PIM card dynamic password;
Fig. 4 is an embodiment of the invention dynamic password algorithm schematic diagram.
Embodiment
With reference to the accompanying drawings the present invention is described more fully, exemplary embodiment of the present invention wherein is described.
Dynamic password identity authentication method of the present invention mainly comprises:
The user imports PIN (PIN) on terminal, the challenge number of this transaction of providing of incoming traffic application system again, terminal is utilized the telecom intelligent card of data such as built-in symmetric cryptographic algorithm, key, dynamic factor according to the challenge number, produces the answer number that calculates; Answer number is sent into the dynamic password platform by business service system, and the dynamic password platform is sent to the dynamic password authentication server with answer number; The dynamic password authentication server system is according to identical algorithms and the correct dynamic password of this terminal key information calculations; The two is compared, if consistent, then by authentication, if inconsistent, then refusal authentication this time.
Described dynamic factor is a time or event variable, and just algorithm can adopt based on incident with based on the time dual mode.
Described telecom intelligent card is PIM card or usim card.
Described challenge number is a numeral, can be from dealing money, change, produce the summary of information such as account number, currency type, transaction identification sign indicating number, trade company's code over to, and summary is determined by business service system.
Described terminal is loaded with one or more dynamic password pass information, and each pass can produce and show a series of unidirectional keying sequences, and the keying sequence that each pass produces is all inequality;
Described encryption key is through hardware encryption module (HSM) storage of special use, and HSM must have the PIN protection.
The dynamic password identification authenticating system of the embodiment of the invention mainly comprises:
The authentication management platform links to each other with certificate server by interface;
Certificate server, judge whether by authentication corresponding with terminal;
Business management system has proprietary business service account, and the user is provided some special services.
This system is that authentication management platform and certificate server can support the authentication of multiple terminal, multiple terminal is a token, scratch card, PIM or usim card, multiple authentication mode are meant single factor dynamic password, dual factors dynamic password, information signature, two-way authentication dynamic password, matrix form dynamic password, these several authentication modes of note dynamic password.
This system is that certificate server can be based on the certificate server of time, also can be based on the certificate server of incident.
This system also comprises provides interface to link to each other with Short Message Service Gateway, and with each big access platform, certificate server links to each other.
As shown in Figure 1, be the structure of the embodiment of the invention based on dynamic password identification authenticating system and the terminal authentication of PIM/USIM, mainly comprise: business service system 103, dynamic password authentication server 105 and dynamic password identification authenticating platform 104 3 parts, this system authenticates individual mobile terminal 101 terminals.Wherein,
Business service system 103 has proprietary business service account, and the user is provided some special services.
Special services is meant these services that the user need authenticate, and for example the user need confirm the service of identity when buying commodity, and by way of example, China Telecom's ChinaVnet in order to protect user's safety, needs to confirm the service of identity when buying game money.
Terminal 101, the PAS terminal of support PTK is supported the USAT3G mobile phone terminal.The dynamic password telecom intelligent card that terminal is built-in is based on the PTK/USAT technology of usim card, realizes the PTK/USAT application program, and provides the user to use the interface with mobile phone interaction.Dynamic password PTK/USAT application program is by card vendor's unified being loaded on the card when making SIM card.The PIM/USIM card that dynamic password is loaded meets the product standard of common PIM/USIM card.Terminal 101 is loaded with one or more dynamic password pass information at the authentication of different business, and each pass can produce and show the keying sequence (dynamic password) of a plurality of unidirectional (promptly can not reuse).
Below be the PIM card request, mobile phone also needs to support " Chinese fixed network and the PIM-PS of wireless terminal alliance interface specification V2.0 ".Wherein 2,3 interface and cards for the last specific implementation of space requirement basis are determined.Do not require the data SMS function.
1) must support " Chinese fixed network and the PIM-PS of wireless terminal alliance interface specification V2.0 ", comprise communication, the SMS of mobile phone and PIM card.
2) enough space mounting dynamic password application program and data, a plurality of DES, 3-DES key space.With reference to the space is 12~16KB.
3) running environment of dynamic password algorithm source code safety.
4) access method of SIM PIN.
5)ISO-7816,vendor?defined?APDU
If telecom intelligent card is a Java card, on the basis in front, also should support: the SIM Toolkit standard of ETSIGSM 03.19; JavaCard 2.1.1 or above Version Spec.
And to the 3G usim card, PIM card demand the basis on, support " 3GPP TSTS 31.111 USIM Application Toolkit (USAT) ", comprise communication, the data SMS function of mobile phone and usim card.
OTA platform 106 is downloaded the pass by the OTA platform of telecommunications.
Dynamic password identification authenticating platform 104, between business service system 103 and dynamic password authentication server 105, its effect is that the dynamic password log-on message with a plurality of business service systems 103 carries out centralized stores, and the dynamic password related service is provided uniform services and the interface.
See shown in Figure 2ly, the main functional module of dynamic password identification authenticating platform is four major parts: control service module 203, platform management maintenance module 201, statistical report form generation module 202, customer support system interface provide module 204 and database.Telecommunication service and SP are connected to by interface and finish authentication on the platform.Platform management personnel manage platform, and the client personnel conduct interviews by the customer support system interface.Platform inner control service module 203 is finished authentication by OTA platform 106 transmitting short message passwords.Each functions of modules is specific as follows:
Control service module 203 provides the external port service, realizes the dynamic password business function by business service system integration calling the corresponding interface.Groundwork comprises: set up being connected of safety with telecommunication customer end, allow client to insert; For user's registration management request, the legitimacy of carrying out information is judged, storing queries or modification information; And carry out alternately in the dynamic password server; For dynamic password authentication and safety management request, judge whether user's login state is legal, and then be transmitted to the dynamic password server; Result is replied to client; The record transaction log is for system provides Audit data; Integrated with the Short Message Service Gateway interface, handle descending and up note; Receive the request that service provider sends the descending dynamic password pass and transaction download function note, and send downlink short message; Receive up note, and whether successful with dynamic password authentication server and business service system validation-cross signature short message.
Platform management maintenance module 201 provides the management maintenance function of this platform self, comprising: the system parameters configuration; Management to the client that allow to insert; To operator's management, comprise operator role, rights management, institutional affiliation management; The management of daily record.
Statistical report form generation module 202 is used to produce required dynamic password business statistics form.
In addition,, need offer business hall or the phone contact staff one cover management page for the registration and the safety management of dynamic password, examine user's identity by the contact staff after, by providing service for the user.This customer support system interface provides module 204 major functions to comprise: HTML is provided access interface; The customer service operator logins/logs off the interface; The registration management interface is provided; Query interface is provided; The dynamic password safe administration interface is provided.
Database: the authentication information of preserving the user, comprise user basic information, business service system number of the account and user's binding information, dynamic password terminal equipment information, and dynamic password end message and user's binding information, in addition, also preserve the operation information of platform itself in the database, for example: operator message, Operation Log information etc.
Dynamic password authentication server 105 provides dynamic password authentication at unique identity of user, and this authentication is independent of business service system 103.
Such as the authentication that can realize following several modes: single factor dynamic password, dual factors dynamic password, information signature, two-way authentication dynamic password, matrix form dynamic password, note dynamic password.
Single factor dynamic password is the dynamic password that does not have the PIN protection to produce on the terminal.This function must be used in combination with the static password authentication.
The dual factors dynamic password is that the PIN protection is arranged on the terminal, and the user need import correct terminal PIN could produce dynamic password.
The terminal that only has the input digit function could be supported this function, for example the SIM card terminal; This function is generally used with the static password authentication of application service system.
Information signature is promptly challenged/response mode (Challenge/Response), and the user need import correct PIN on terminal, the challenge number of this transaction of providing of incoming traffic application system again, and terminal produces the answer number that calculates according to the challenge number.This function is generally used with the static password authentication of application service system; Can prevent that Transaction Information from being distorted.
Two-way authentication is meant that the user can be to server authentication, and then server authenticates the user again.The two-way authentication dynamic password is the server authentication sign indicating number that shows one time one change on terminal, and server at first shows the server authentication sign indicating number of this authentication, after the server authentication sign indicating number contrast on user and the terminal is errorless, submits the dynamic password of authentification of user to.Be primarily aimed at the low cost terminals that does not have input function can't realize the information signature function---scratch card and single factor token.
The matrix form dynamic password is more special, can only be used for this terminals of scratch card, though and also be dynamic, not " disposal password ", but can reuse.During authentication, " challenge " that produced this authentication by server at random is several groups of coordinate combinations, and the user finds card to go up the corresponding password factor and scrapes off, presses synthetic this complete trading password of der group of coordinate prompting, authenticates.
When the note dynamic password is exactly each the transaction, produce dynamic password, send on the user mobile phone by note by server end; The user receives the submission of back input webpage.
In the verification process, the user holds the terminal 101 that is equipped with the PIM/USIM card, when the user when client is concluded the business by communication network registering service service system 103, business service system 103 shows transaction challenge numbers, requires the user to provide dynamic password to carry out authentication.User's operating terminal 101 enters the dynamic password menu, terminal 101 requires the user to import PIN code to verify, the words that PIN is correct, enter the dynamic password function of terminal 101, the transaction challenge number that incoming traffic service system 103 shows, produce dynamic password, the user is submitted to business service system 103 according to the dynamic password that terminal produces.Business service system 103 is sent to dynamic password identification authenticating platform 104 to authentication information, and dynamic password identification authenticating platform 104 checks whether this user profile is validated user, then authentication information is sent to dynamic password authentication server 105 and authenticates; Dynamic password authentication server 105 calculates dynamic password and relatively whether consistent with the dynamic password of terminal, whether successful information is given dynamic password identification authenticating platform 104 to return authentication then, dynamic password identification authenticating platform 104 returns to business service system 103 with this information again, thereby provides the information whether authentication is passed through.
The embodiment of the invention, may further comprise the steps referring to shown in Figure 3 based on the flow process of the dynamic password identity authentication method of USIM/PIM card.Client's one side has client devices such as the dynamic password terminal of built-in USIM/PIM card and PC among this embodiment.
Step 301, during authentication, business service system produces interface prompt input dynamic password and shows transaction challenge number at client-side.
Step 302, the PIN value of user's input terminal on terminal.
Step 303, terminal verify whether this PIN value is correct, if correct, then enter step 304; Otherwise, enter step 308.
Step 304, the challenge number of this transaction that terminal notifying user incoming traffic application system provides.
In the above-mentioned steps 301~304, PIN value and challenge number all are provided with in order to guarantee to authenticate more safely, terminal can not require that the user imports PIN value and challenge number yet, only enters the dynamic password menu by the user, and terminal produces a dynamic password according to built-in algorithms.
Step 305, terminal produces the answer number dynamic password that calculates according to the challenge number, the user imports this dynamic password and sends to business service system, after business service system 103 is received the authentication request that the user fills in, authentication information is sent to dynamic password identification authenticating platform 104, dynamic password identification authenticating platform 104 checks whether this user profile is validated user, then authentication information is sent to dynamic password authentication server 105 and authenticates.
Step 306, the local dynamic password that calculates of dynamic password authentication server, by the dynamic password relatively received with local calculate whether consistent verify whether correct, if correctly, enter step 307; Otherwise enter step 308.
Step 307 is judged authentication success, returns the information of terminal authentication success.
Step 308 is judged authentification failure, returns the information of whether passing through authentication.
In the above-mentioned flow process, the calculating of dynamic password is referring to shown in Figure 4, and during calculating, terminal and dynamic password authentication server use symmetry algorithm, respectively the unique key of dynamic password terminal, dynamic factor and individuation data are calculated, thereby draw consistent dynamic password.Wherein unique key is used to distinguish each dynamic password terminal, for any two terminals in the system, this key is all inequality, and dynamic factor is used to control the different password of the each generation of this terminal, individuation data then is the display mode that is used to control dynamic password, for example password length etc.This key is through the secure hardware HSM of special use storage, and HSM has the PIN protection.The calculating of dynamic password is referring to shown in Figure 4, during calculating, terminal and dynamic password authentication server use symmetry algorithm, DES, 3DES cryptographic algorithm have been used in this algorithm, during authentication, respectively the unique key of dynamic password terminal, dynamic factor and individuation data are calculated by terminal and dynamic password authentication server, when drawing identical dynamic password, be authentication correctly.
Dynamic factor can be used time mechanism, also can use case mechanism.
Employing time mechanism dynamic factor be called time mechanism dynamic password, that adopts the case mechanism dynamic factor is called the case mechanism dynamic password.
Time mechanism dynamic password terminal, as dynamic factor, the algorithm that each run is identical produces the string number password according to the present clock on self chip, because asynchronism(-nization), thereby obtain different passwords at every turn, be generally change in 60 seconds.
Storage password counter on the case mechanism dynamic password terminal, self chip, after the algorithm that each run is identical produced numerical ciphers, counter promptly increased, thereby obtains different passwords at every turn.
The dynamic password terminal can be carried out synchronously with server when dispatching from the factory, and time mechanism product can be with the clock synchronization of clock on the terminal and server, and the case mechanism product can carry out the counter that writes down on counter on the terminal and the server synchronously.
In the use preface, no matter time mechanism still is the dynamic password of case mechanism, and synchronization mechanism is all arranged, and keeps synchronously to guarantee the dynamic factor on terminal and the server.
Description of the invention is in order to provide for the purpose of example and the explanation, and is not exhaustively or limit the invention to disclosed form.Many modifications and variations are obvious for the ordinary skill in the art.Selecting and describing embodiment is for better explanation principle of the present invention and practical application, thereby and makes those of ordinary skill in the art can understand the various embodiment that have various modifications that the present invention's design is suitable for special-purpose.

Claims (14)

1. a dynamic password identity authentication method is characterized in that, comprising:
During authentication, dynamic password identification authenticating system prompting user imports dynamic password;
Terminal is utilized built-in symmetric cryptographic algorithm to calculate and is produced dynamic password;
The dynamic password that terminal is produced sends to dynamic password identification authenticating system;
Dynamic password identification authenticating system calculates dynamic password according to identical algorithms in this locality; The dynamic password that client is sent compares with the local dynamic password that calculates, if consistent, then by authentication, if inconsistent, then refusal authentication this time.
2. the method for claim 1 is characterized in that described terminal calculates described dynamic password by telecom intelligent card.
3. method as claimed in claim 2 is characterized in that described telecom intelligent card is personal information management PIM card or USIM usim card.
4. method as claimed in claim 3, it is characterized in that also comprising before described terminal produces dynamic password: the terminal notifying user imports PIN PIN, and whether the PIN value of checking user input is correct, if terminal is calculated described dynamic password.
5. as any described method of claim 1 to 4, it is characterized in that also comprising before described terminal produces dynamic password: dynamic password identification authenticating system provides the challenge number to the user; The terminal notifying user imports the challenge number, and terminal is calculated the dynamic password answer number according to the challenge number.
6. method as claimed in claim 5 is characterized in that described challenge number is numeral, from dealing money, change, produce the summary of at least one information in account number, currency type, transaction identification sign indicating number, the trade company's code over to.
7. the method for claim 1 is characterized in that described dynamic password is to calculate by symmetric cryptographic algorithm according to unique key, dynamic factor and individuation data that terminal and dynamic password identification authenticating system are made an appointment.
8. method as claimed in claim 7 is characterized in that the algorithm of described dynamic factor adopts based on incident or based on the time mode.
9. method as claimed in claim 7 is characterized in that described terminal is loaded with one or more dynamic password pass information, and each pass can produce and show a plurality of unidirectional keying sequences.
10. method as claimed in claim 7 is characterized in that described encryption key through the secure hardware HSM of special use storage, and HSM has the PIN protection.
11. a dynamic password identification authenticating system is characterized in that, comprising:
Business service system is used to produce authentication interface, and prompting user input comprises the authentication information of dynamic password, and receives user's authentication information;
The dynamic password authentication server provides dynamic password authentication at unique identity of user;
The dynamic password identification authenticating platform, linking to each other with certificate server links to each other with business service system, is used for the dynamic password log-on message of a plurality of business service systems is carried out centralized stores, and the dynamic password related service is provided uniform services and the interface.
12. system as claimed in claim 11 is characterized in that the terminal that authentication management platform and certificate server can be supported comprises: one or more in token, scratch card, matrix card, PIM, the usim card;
The authentication mode of supporting comprises: one or more in single factor dynamic password, dual factors dynamic password, information signature, two-way authentication dynamic password, matrix form dynamic password, the note dynamic password.
13. system as claimed in claim 11 is characterized in that certificate server is based on the certificate server of time or based on the certificate server of incident.
14. system as claimed in claim 11 is characterized in that also comprising providing interface to link to each other with Short Message Service Gateway, and with various access platforms, certificate server links to each other.
CNA2007101958554A 2007-11-30 2007-11-30 Dynamic password identification authenticating system and method CN101163014A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CNA2007101958554A CN101163014A (en) 2007-11-30 2007-11-30 Dynamic password identification authenticating system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNA2007101958554A CN101163014A (en) 2007-11-30 2007-11-30 Dynamic password identification authenticating system and method

Publications (1)

Publication Number Publication Date
CN101163014A true CN101163014A (en) 2008-04-16

Family

ID=39297852

Family Applications (1)

Application Number Title Priority Date Filing Date
CNA2007101958554A CN101163014A (en) 2007-11-30 2007-11-30 Dynamic password identification authenticating system and method

Country Status (1)

Country Link
CN (1) CN101163014A (en)

Cited By (44)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101304316B (en) * 2008-06-30 2010-11-03 北京飞天诚信科技有限公司 Method for improving identification authentication security based on password card
CN101931657A (en) * 2009-06-23 2010-12-29 思科技术公司 The counterfeit prevention strategy that is used for pluggable modules
CN102013975A (en) * 2010-06-29 2011-04-13 北京飞天诚信科技有限公司 Secret key management method and system
CN102148837A (en) * 2011-05-11 2011-08-10 上海时代亿信信息科技有限公司 Bidirectional authentication method and system for dynamic token
CN101582764B (en) * 2009-04-02 2011-08-17 北京飞天诚信科技有限公司 Method and system for identity authentication based on dynamic password
CN102158488A (en) * 2011-04-06 2011-08-17 北京天地融科技有限公司 Dynamic countersign generation method and device and authentication method and system
CN102170437A (en) * 2011-04-19 2011-08-31 上海众人网络安全技术有限公司 System and method for realizing Phishing identification based on challenge password token
CN102281137A (en) * 2010-06-12 2011-12-14 杭州驭强科技有限公司 Dynamic password authentication method of mutual-authentication challenge response mechanism
CN102299922A (en) * 2011-08-08 2011-12-28 张忠义 User registration method through mobile phone registration and identity verification in Internet
CN102664736A (en) * 2012-04-13 2012-09-12 天地融科技股份有限公司 Electronic cipher generating method, device and equipment and electronic cipher authentication system
CN102780674A (en) * 2011-05-09 2012-11-14 同方股份有限公司 Method and system for processing network service by utilizing multifactor authentication method
CN101674284B (en) * 2008-09-08 2012-12-19 联想(北京)有限公司 Authentication method and system, user side server and authentication server
WO2013075380A1 (en) * 2011-11-24 2013-05-30 飞天诚信科技股份有限公司 Dynamic password authentication method and system
CN103312519A (en) * 2013-07-05 2013-09-18 飞天诚信科技股份有限公司 Dynamic password device and working method thereof
CN103441856A (en) * 2013-09-06 2013-12-11 北京握奇智能科技有限公司 Dynamic password authentication method and device
CN103475658A (en) * 2011-04-06 2013-12-25 天地融科技股份有限公司 Dynamic password generating method and device and authentication method and system
CN103903315A (en) * 2012-12-26 2014-07-02 东莞市立旺电子塑胶有限公司 Dynamic electronic lock and dynamic electronic lock software
CN103902880A (en) * 2014-03-31 2014-07-02 上海动联信息技术股份有限公司 Windows system two-factor authentication method based on challenge responding type dynamic passwords
CN103916249A (en) * 2014-04-25 2014-07-09 长沙市梦马软件有限公司 Dynamic password generating method and system
CN103946881A (en) * 2011-11-17 2014-07-23 德国邮政股份公司 Electronic transaction method
CN103957104A (en) * 2014-04-22 2014-07-30 交通银行股份有限公司 Dynamic token anti-phishing method and device
CN104036392A (en) * 2014-06-25 2014-09-10 Tcl集团股份有限公司 Network payment method and device
CN104065479A (en) * 2014-07-11 2014-09-24 中国人民公安大学 Key generation method and system and key distribution method and system based on group
CN104079407A (en) * 2013-03-29 2014-10-01 北京千橡网景科技发展有限公司 Token generation and verification method and device
CN104079413A (en) * 2014-07-14 2014-10-01 上海众人科技有限公司 Enhancement type one-time dynamic password authentication method and system
WO2014201830A1 (en) * 2013-06-20 2014-12-24 Tencent Technology (Shenzhen) Company Limited Method and device for detecting software-tampering
CN104378206A (en) * 2014-10-20 2015-02-25 中国科学院信息工程研究所 Virtualization desktop safety certification method and system based on USB-Key
CN104579649A (en) * 2013-10-28 2015-04-29 腾讯科技(深圳)有限公司 Identity recognition method and system
CN104618104A (en) * 2014-12-15 2015-05-13 惠州Tcl移动通信有限公司 Accessory, electronic equipment and accessory authentication implementation system
CN104751044A (en) * 2013-12-31 2015-07-01 环达电脑(上海)有限公司 Dynamic password identity authentication system and method
CN105094004A (en) * 2014-05-12 2015-11-25 罗伯特·博世有限公司 Method for operating a control unit
CN105450400A (en) * 2014-06-03 2016-03-30 阿里巴巴集团控股有限公司 Identity verification method, client, server side, and system
CN105530094A (en) * 2014-09-28 2016-04-27 中国移动通信集团公司 Method, device and system for identity authentication and cipher device
WO2016107332A1 (en) * 2014-12-30 2016-07-07 飞天诚信科技股份有限公司 Card-based dynamic password generation method and device
CN105991293A (en) * 2016-07-26 2016-10-05 努比亚技术有限公司 Verification method and verification device
CN106533895A (en) * 2015-09-11 2017-03-22 北大方正集团有限公司 Password-based instant communication method and system
CN106817217A (en) * 2017-01-22 2017-06-09 石家庄科林电气股份有限公司 A kind of dynamic password AES of interrupted aging
CN107210918A (en) * 2015-02-17 2017-09-26 维萨国际服务协会 Use the token and password of transaction-specific information
CN107332819A (en) * 2017-05-25 2017-11-07 苏州科达科技股份有限公司 A kind of method for authenticating and device for conference system
CN107959670A (en) * 2017-11-06 2018-04-24 北京明华联盟科技有限公司 A kind of generation method of dynamic password, device, terminal device and storage medium
WO2018108062A1 (en) * 2016-12-15 2018-06-21 腾讯科技(深圳)有限公司 Method and device for identity verification, and storage medium
CN108769021A (en) * 2018-05-28 2018-11-06 徐州徐工挖掘机械有限公司 A kind of dynamic password control method suitable for excavator
CN109075965A (en) * 2015-12-30 2018-12-21 欧尼斯潘国际有限公司 Use the mthods, systems and devices for the forward secrecy cryptographic technique that password code is verified
CN110121010A (en) * 2019-05-13 2019-08-13 重庆天蓬网络有限公司 One key outgoing call implementation method, terminal, medium and electronic equipment

Cited By (62)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101304316B (en) * 2008-06-30 2010-11-03 北京飞天诚信科技有限公司 Method for improving identification authentication security based on password card
CN101674284B (en) * 2008-09-08 2012-12-19 联想(北京)有限公司 Authentication method and system, user side server and authentication server
CN101582764B (en) * 2009-04-02 2011-08-17 北京飞天诚信科技有限公司 Method and system for identity authentication based on dynamic password
CN101931657A (en) * 2009-06-23 2010-12-29 思科技术公司 The counterfeit prevention strategy that is used for pluggable modules
US8769654B2 (en) 2009-06-23 2014-07-01 Cisco Technology, Inc. Counterfeit prevention strategy for pluggable modules
CN101931657B (en) * 2009-06-23 2016-03-09 思科技术公司 For the counterfeit prevention strategy of pluggable modules
CN102281137A (en) * 2010-06-12 2011-12-14 杭州驭强科技有限公司 Dynamic password authentication method of mutual-authentication challenge response mechanism
CN102013975A (en) * 2010-06-29 2011-04-13 北京飞天诚信科技有限公司 Secret key management method and system
CN102013975B (en) * 2010-06-29 2012-06-27 飞天诚信科技股份有限公司 Secret key management method and system
CN102158488A (en) * 2011-04-06 2011-08-17 北京天地融科技有限公司 Dynamic countersign generation method and device and authentication method and system
CN102158488B (en) * 2011-04-06 2014-03-12 天地融科技股份有限公司 Dynamic countersign generation method and device and authentication method and system
CN103475658A (en) * 2011-04-06 2013-12-25 天地融科技股份有限公司 Dynamic password generating method and device and authentication method and system
CN102170437A (en) * 2011-04-19 2011-08-31 上海众人网络安全技术有限公司 System and method for realizing Phishing identification based on challenge password token
CN102780674A (en) * 2011-05-09 2012-11-14 同方股份有限公司 Method and system for processing network service by utilizing multifactor authentication method
CN102148837A (en) * 2011-05-11 2011-08-10 上海时代亿信信息科技有限公司 Bidirectional authentication method and system for dynamic token
CN102299922A (en) * 2011-08-08 2011-12-28 张忠义 User registration method through mobile phone registration and identity verification in Internet
CN103946881A (en) * 2011-11-17 2014-07-23 德国邮政股份公司 Electronic transaction method
WO2013075380A1 (en) * 2011-11-24 2013-05-30 飞天诚信科技股份有限公司 Dynamic password authentication method and system
US9386013B2 (en) 2011-11-24 2016-07-05 Feitian Technologies Co., Ltd. Dynamic password authentication method and system thereof
CN102664736A (en) * 2012-04-13 2012-09-12 天地融科技股份有限公司 Electronic cipher generating method, device and equipment and electronic cipher authentication system
CN103903315A (en) * 2012-12-26 2014-07-02 东莞市立旺电子塑胶有限公司 Dynamic electronic lock and dynamic electronic lock software
CN104079407A (en) * 2013-03-29 2014-10-01 北京千橡网景科技发展有限公司 Token generation and verification method and device
WO2014201830A1 (en) * 2013-06-20 2014-12-24 Tencent Technology (Shenzhen) Company Limited Method and device for detecting software-tampering
US9607147B2 (en) 2013-06-20 2017-03-28 Tencent Technology (Shenzhen) Company Limited Method and device for detecting software-tampering
CN103312519A (en) * 2013-07-05 2013-09-18 飞天诚信科技股份有限公司 Dynamic password device and working method thereof
CN103312519B (en) * 2013-07-05 2016-08-24 飞天诚信科技股份有限公司 A kind of dynamic password device and method of work thereof
CN103441856A (en) * 2013-09-06 2013-12-11 北京握奇智能科技有限公司 Dynamic password authentication method and device
CN104579649B (en) * 2013-10-28 2019-01-11 腾讯科技(深圳)有限公司 Personal identification method and system
CN104579649A (en) * 2013-10-28 2015-04-29 腾讯科技(深圳)有限公司 Identity recognition method and system
WO2015062461A1 (en) * 2013-10-28 2015-05-07 Tencent Technology (Shenzhen) Company Limited Method and system for verifying user identity of an online application
CN104751044A (en) * 2013-12-31 2015-07-01 环达电脑(上海)有限公司 Dynamic password identity authentication system and method
CN103902880A (en) * 2014-03-31 2014-07-02 上海动联信息技术股份有限公司 Windows system two-factor authentication method based on challenge responding type dynamic passwords
CN103957104A (en) * 2014-04-22 2014-07-30 交通银行股份有限公司 Dynamic token anti-phishing method and device
CN103916249A (en) * 2014-04-25 2014-07-09 长沙市梦马软件有限公司 Dynamic password generating method and system
CN105094004B (en) * 2014-05-12 2020-10-13 罗伯特·博世有限公司 Method for operating a control device
CN105094004A (en) * 2014-05-12 2015-11-25 罗伯特·博世有限公司 Method for operating a control unit
CN105450400B (en) * 2014-06-03 2019-12-13 阿里巴巴集团控股有限公司 Identity verification method, client, server and system
CN105450400A (en) * 2014-06-03 2016-03-30 阿里巴巴集团控股有限公司 Identity verification method, client, server side, and system
CN104036392A (en) * 2014-06-25 2014-09-10 Tcl集团股份有限公司 Network payment method and device
CN104065479A (en) * 2014-07-11 2014-09-24 中国人民公安大学 Key generation method and system and key distribution method and system based on group
CN104079413A (en) * 2014-07-14 2014-10-01 上海众人科技有限公司 Enhancement type one-time dynamic password authentication method and system
CN105530094A (en) * 2014-09-28 2016-04-27 中国移动通信集团公司 Method, device and system for identity authentication and cipher device
CN105530094B (en) * 2014-09-28 2019-04-23 中国移动通信集团公司 A kind of identity identifying method, device, system and scrambler
CN104378206B (en) * 2014-10-20 2017-09-12 中国科学院信息工程研究所 A kind of virtual desktop safety certifying method and system based on USB Key
CN104378206A (en) * 2014-10-20 2015-02-25 中国科学院信息工程研究所 Virtualization desktop safety certification method and system based on USB-Key
CN104618104A (en) * 2014-12-15 2015-05-13 惠州Tcl移动通信有限公司 Accessory, electronic equipment and accessory authentication implementation system
CN104618104B (en) * 2014-12-15 2019-11-29 惠州Tcl移动通信有限公司 Accessory, electronic equipment and the system for realizing accessory certification
WO2016107332A1 (en) * 2014-12-30 2016-07-07 飞天诚信科技股份有限公司 Card-based dynamic password generation method and device
CN107210918A (en) * 2015-02-17 2017-09-26 维萨国际服务协会 Use the token and password of transaction-specific information
CN106533895A (en) * 2015-09-11 2017-03-22 北大方正集团有限公司 Password-based instant communication method and system
CN106533895B (en) * 2015-09-11 2019-04-30 北大方正集团有限公司 Instant communicating method and system based on password
CN109075965A (en) * 2015-12-30 2018-12-21 欧尼斯潘国际有限公司 Use the mthods, systems and devices for the forward secrecy cryptographic technique that password code is verified
CN105991293B (en) * 2016-07-26 2019-10-08 努比亚技术有限公司 A kind of method of calibration and device
CN105991293A (en) * 2016-07-26 2016-10-05 努比亚技术有限公司 Verification method and verification device
WO2018108062A1 (en) * 2016-12-15 2018-06-21 腾讯科技(深圳)有限公司 Method and device for identity verification, and storage medium
CN106817217A (en) * 2017-01-22 2017-06-09 石家庄科林电气股份有限公司 A kind of dynamic password AES of interrupted aging
CN106817217B (en) * 2017-01-22 2019-06-28 石家庄科林电气股份有限公司 A kind of dynamic password Encryption Algorithm of interrupted aging
CN107332819A (en) * 2017-05-25 2017-11-07 苏州科达科技股份有限公司 A kind of method for authenticating and device for conference system
CN107959670B (en) * 2017-11-06 2020-12-18 北京明华联盟科技有限公司 Dynamic password generation method and device, terminal equipment and storage medium
CN107959670A (en) * 2017-11-06 2018-04-24 北京明华联盟科技有限公司 A kind of generation method of dynamic password, device, terminal device and storage medium
CN108769021A (en) * 2018-05-28 2018-11-06 徐州徐工挖掘机械有限公司 A kind of dynamic password control method suitable for excavator
CN110121010A (en) * 2019-05-13 2019-08-13 重庆天蓬网络有限公司 One key outgoing call implementation method, terminal, medium and electronic equipment

Similar Documents

Publication Publication Date Title
JP2018088292A (en) System and method for secure transaction process by mobile equipment
US8990889B2 (en) System and method for physical access control
US9699183B2 (en) Mutual authentication of a user and service provider
CN103259667B (en) The method and system of eID authentication on mobile terminal
US8407112B2 (en) Transaction authorisation system and method
CN103229452B (en) The identification of mobile hand-held device and communication authentication
US8522039B2 (en) Method and apparatus for establishing a federated identity using a personal wireless device
CN100505927C (en) Dynamic password identification method
EP2062210B1 (en) Transaction authorisation system & method
EP1769419B1 (en) Transaction & payment system securing remote authentication/validation of transactions from a transaction provider
EP1807966B1 (en) Authentication method
RU2482623C2 (en) Personalising sim by means of unique personalised master sim
US8151328B1 (en) Accessing secure network areas by utilizing mobile-device authentication
CN101803272B (en) Authentication system and method
US8839394B2 (en) Systems and methods for authenticating a user of a computer application, network, or device using a wireless device
US8862097B2 (en) Secure transaction authentication
CN101897165B (en) Method of authentication of users in data processing systems
CN105162596B (en) For generating the safety value used in being interacted with server and the equipment for sending user to
CN102187701B (en) User authentication management
CN1879071B (en) Method and system for the authentication of a user of a data processing system
CN101978675B (en) System and method for securely issuing subscription credentials to communication devices
US9497630B2 (en) Enhanced manageability in wireless data communication systems
CN101166091B (en) A dynamic password authentication method and service end system
EP1058872B2 (en) Method, arrangement and apparatus for authentication through a communications network
CN101222333B (en) Data transaction processing method and apparatus

Legal Events

Date Code Title Description
PB01 Publication
C06 Publication
SE01 Entry into force of request for substantive examination
C10 Entry into substantive examination
WD01 Invention patent application deemed withdrawn after publication

Open date: 20080416

C02 Deemed withdrawal of patent application after publication (patent law 2001)