CN101350720B - Dynamic cipher authentication system and method - Google Patents
Dynamic cipher authentication system and method Download PDFInfo
- Publication number
- CN101350720B CN101350720B CN200710119230XA CN200710119230A CN101350720B CN 101350720 B CN101350720 B CN 101350720B CN 200710119230X A CN200710119230X A CN 200710119230XA CN 200710119230 A CN200710119230 A CN 200710119230A CN 101350720 B CN101350720 B CN 101350720B
- Authority
- CN
- China
- Prior art keywords
- module
- authentication
- user
- dynamic password
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Abstract
The present invention provides a dynamic password certification system, and comprises an application client, a mobile terminal, an application server module, an information certification module and a short message gateway module. The application server module is connected with the application client, and is used for receiving the user information, sending the user information and/or certification request information to the information certification module, and providing the application service according to the user certification information returned by the information certification module. The information certification module is used for checking the identity of the user according to the user information, so as to generate dynamic passwords; the dynamic passwords and the information of the user mobile terminal of the user are transmitted to the short message gateway module. The short message gateway module is used for transmitting the dynamic passwords to the mobile terminal according to the mobile terminal information of the user. The present invention also provides a dynamic password certification method. The dynamic password certification system requires no periodic maintenance of time synchronism, and has flexibility and security.
Description
Technical field
The present invention relates to a kind of Verification System, particularly a kind of dynamic cipher authentication system belongs to information security field.
Background technology
For guaranteeing the confidentiality and the integrality of communication, frequent identity to the user authenticated before data were transmitted on the internet, and in general, great majority are realized by user name and fixing password being confirmed to be of user identity.This technology employing user name adds the static password mode and carries out system authentication, and system provides the database of user name and static password, and the user is when access system, the input username and password, login system then, if username and password is correct, the logging in system by user success; If user name or password mistake, the failure of prompting login system.
For the user because password is the unique channel of system authentication,, and to protect the password of controlling oneself can not allow others steal so the user must keep the password of controlling oneself constantly firmly in mind, in case password forget or be stolen, will bring to the user to have a strong impact on.Yet static password is easily stolen again or decoded by the crack tool that the hacker is available anywhere, and some software can be finished the work of conjecture password automatically, and worse, some particular words as " password " or " ok " etc., often is used as password.Therefore the user needs the regular password that carries out to revise, and strengthens the operations such as complexity of encrypted message, with the fail safe that improves password.So, the fail safe of static password can not ensure that promptly maintenance is simultaneously got up and be pretty troublesome.
Therefore, be exactly not adopt fixed password to the best approach of cryptoguard, adopt dynamic password, be commonly called as one-time pad, each password can only have only the very short time each effective time with once.
Existing dynamic password technology mainly is to adopt dynamic Token authentication mode.
The mode that dynamic Token authentication techniques adopt the Token certificate server to add dynamic Token is carried out system authentication, the user is when login, need the dynamic password of the demonstration on input Personal Identity Number (PIN code) and the dynamic Token card to server, to authenticate, dynamically the password of Token card generation is along with the time constantly changes, and because clock and server keep synchronously, therefore server can be verified dynamic password, permits user's login.
The shortcoming of this technology is that cost is higher, and needs the maintenance that the special messenger carries out server, must regularly carry out the Token card and the Token server carries out time synchronized.
Summary of the invention
The technical problem to be solved in the present invention is: overcome the defective that above-mentioned existing dynamic cipher authentication method exists, make dynamic cipher verification not need regularly to carry out time synchronized and safeguard.
For realizing above purpose, the invention provides a kind of dynamic cipher authentication system, comprising: be in applications client, portable terminal, application server module, authentification of message module and Short Message Service Gateway module in the network;
Described application server module is connected with applications client, authentification of message module, be used to receive user profile, send user profile and authentication request information to the authentification of message module, and the user authentication information that feeds back when the authentification of message module provides application service when being the correct information of authentification of user;
Described authentification of message module is connected with the Short Message Service Gateway module with application server module, be used for carrying out verification according to the identity of user's information, generate dynamic password, described dynamic password and customer mobile terminal information are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module; Wherein, described customer mobile terminal information stores is in described authentification of message module;
Described Short Message Service Gateway module is connected with described authentification of message module, described portable terminal, is used for according to described customer mobile terminal information described dynamic password being sent to portable terminal.
The authentification of message module comprises: user authentication module, dynamic password administration module;
The dynamic password administration module is connected with user authentication module, be used to receive user profile and authentication request information from application server module, and user profile is sent to user authentication module, generate dynamic password according to check results and customer mobile terminal information from user authentication module, described dynamic password and described customer mobile terminal information are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module; Described dynamic password administration module also comprises the note receiver module; Note receiver module and the automated validation note that is used to accept from portable terminal, and according to automated validation message search dynamic password memory module, upgrade corresponding authentication and reply sign; After system detects this authentication answer sign, then be considered as the user by authentication, automatically perform corresponding user's logging program.
The present invention also provides a kind of dynamic cipher authentication method, may further comprise the steps:
Step 1, according to user profile to carrying out the user identity verification, judge that whether check results is correct, be, execution in step 2, otherwise, return error message, finish;
Step 2, according to user profile inquiry corresponding mobile terminal information, and generate dynamic password;
Step 3, according to described information of mobile terminal, described dynamic password is sent to portable terminal.The authentification of message module comprises: user authentication module, dynamic password administration module;
Also comprise after the step 3:
Step 4b1, receive automated validation note from portable terminal;
Step 4b2, upgrade authentication according to described automated validation note and reply sign;
Whether step 4b3, the described authentication of detection are replied sign and are upgraded, and are, then are considered as the user by authentication, and the transmission indication sends application service to application server module instruction is provided, and automatically performs corresponding user's logging program, otherwise, return error message, finish.
Description of drawings
Fig. 1 is the structure chart of the embodiment one of dynamic cipher authentication system of the present invention;
Fig. 2 is the structure chart of the embodiment two of dynamic cipher authentication system of the present invention;
Fig. 3 is the flow chart of the embodiment of dynamic cipher authentication method of the present invention;
Fig. 4 is a kind of implementation exemplary plot of dynamic cipher authentication method embodiment of the present invention.
Embodiment
The embodiment one of dynamic cipher authentication system of the present invention:
For realizing the present invention, at first need to set up a kind of dynamic cipher authentication system, as shown in Figure 1, comprising:
Be in applications client, portable terminal, application server module, authentification of message module and Short Message Service Gateway module in the network.
Application server module is connected with applications client, authentification of message module, is used to receive user profile, sends user profile and/or authentication request information to the authentification of message module, according to the user authentication information of authentification of message module feedback, and provides application service.The authentification of message module is connected with the Short Message Service Gateway module with application server module, be used for carrying out verification according to the identity of user's information, generate dynamic password, described dynamic password and customer mobile terminal information are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module.The Short Message Service Gateway module is connected with described authentification of message module, described portable terminal, is used for according to described customer mobile terminal information described dynamic password being sent to portable terminal.
In general portable terminal in the present embodiment is the mobile device that is connected in the wireless network, as mobile phone.Applications client can realize that application server module also can adopt the mode of computer hardware or software to realize by the mode of computer hardware or software.Connection between applications client and the application server module can be used client-server (Client/Server) structure, just the C/S structure that is called for short usually.Application server module provides various application services for applications client, and is based on the application service of authentication, have only user when applications client by authentication after, the respective service that can use application server module to provide.
Common situation is that the user logins in the applications client request.After the information such as user name of application server acquisition from applications client, send user profile to the authentification of message module.The authentification of message module is according to above-mentioned user profile, whether inquiring user is legal, if it is legal, then generate a dynamic password, and (customer mobile terminal information is corresponding with user profile, in general is corresponding one by one with this dynamic password and customer mobile terminal information, be stored in the authentification of message module, customer mobile terminal information can be user's cell-phone number) be sent to the Short Message Service Gateway module, the Short Message Service Gateway module sends to portable terminal according to customer mobile terminal information with dynamic password.The user is after having read the dynamic password note that portable terminal receives, use this dynamic password to login in applications client, applications client sends or authentication request information to the authentification of message module, whether the authentification of message module is checked the user provides the dynamic password of dynamic password correct, be, then allow the user to login, the user obtains the application service that application server provides.
Owing to utilized existing cordless communication network and portable terminal, real-time dynamic password is sent to the portable terminal that the user holds, make dynamic cipher verification not need regularly to carry out time synchronized and safeguard.And the user adopts portable terminal such as mobile phone for receiving the instrument of dynamic password in real time, does not need to depend on fixing Token card, has more flexibility.And, owing to adopt existing portable terminal, when not required between reason such as synchronous maintenance, the dynamic cipher authentication system that present embodiment provides is compared existing Token card technique, cost is cheaper, is beneficial to large-scale application.
The embodiment two of dynamic cipher authentication system of the present invention:
On the basis of embodiment one, as shown in Figure 2, the authentication information module of dynamic cipher authentication system of the present invention comprises: user authentication module, dynamic password administration module.
User authentication module is used for carrying out the user identity verification according to user profile, and correct and customer mobile terminal information is sent to the dynamic password administration module with check results, or the verification erroneous results is sent to application server module.The dynamic password administration module is connected with user authentication module, be used to receive user profile and/or authentication request information from application server module, and user profile is sent to user authentication module, generate dynamic password according to check results and information of mobile terminal from user authentication module, described dynamic password and described user profile are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module.
Soon on function sharing to two module of the generation of dynamic password and authentification of user,, adapt to the demand of large-scale Verification System, accelerate the speed that authentification of user and dynamic password generate to reduce system burden.
Further, the dynamic password administration module can also comprise dynamic password generation modules, dynamic password memory module, SMS transmission module.
Dynamic password generation modules is connected with dynamic password memory module and SMS transmission module, be used to receive user profile from application server module, and user profile is sent to user authentication module, generate dynamic password according to check results from user authentication module.The dynamic password memory module is used to store the dynamic password that dynamic password generation modules generates, and accepts the authentication request information from application server module, carries out dynamic cipher verification according to authentication request information; SMS transmission module is used for described dynamic password and customer mobile terminal information are sent to the Short Message Service Gateway module.
Above-mentioned three modules all can adopt the mode of hardware or software to realize, share out the work and help one another, and finish generation, storage, authentication and the transmission work of dynamic password.
For increasing throughput of system, also make more portable terminal user can use dynamic cipher authentication system of the present invention, the Short Message Service Gateway that comprises in the present embodiment can be a plurality of Short Message Service Gateway.Accordingly, in the present embodiment, also comprise the gateway interface service module in the dynamic password administration module.The gateway interface service module is used for note and is distributed to corresponding Short Message Service Gateway.
The embodiment three of dynamic cipher authentication system of the present invention:
On embodiment one or two basis, the application server module of dynamic cipher authentication system of the present invention comprises client-side information interface module, authentication module and application service module.
The client-side information interface module is connected with authentication module and application service module, is used to receive the user profile from applications client.Authentication module is connected with application service module, is used for sending user profile and/or authentication request information to the authentification of message module, and the user authentication information that feeds back according to the authentification of message module provides instruction to application server module transmission application service.Application service module is used for providing instruction according to application service, and application service is provided.
In the existing technology, application server is when the application service that provides based on authentication, often need corresponding Verification System, with the true identity of verified users (just in the present embodiment, authentification of message module, Short Message Service Gateway module, the collaborative verification work of finishing of mobile terminal module), this correspondence is man-to-man, the corresponding cover authentication service of a cover application service just.In the present invention, application server module can that is to say for a plurality of, overlaps application service more and can only adopt a cover Verification System to finish the work of user identity verification, with this optimization system configuration, further reduces system cost.And native system is based on portable terminal in the wireless network and carries out proof of identity, is applicable to the various application services that need proof of identity, has more flexibility.Only need each the application server module configuration corresponding interface in the system, can realize the verification of identity.
In the present embodiment, adopt authentication module to be connected, send user profile and/or authentication request information, receive the user authentication information of authentification of message module feedback to the authentification of message module with the authentification of message module.If during the user authentication information of the authentification of message module feedback information that to be authentification of user correct, authentication module sends application service to application server module instruction is provided, application service module is used for providing instruction according to application service, and application service is provided.The client-side information interface module then is the user profile that is used to receive from applications client, and realization is mutual with the user's.
The embodiment four of dynamic cipher authentication system of the present invention:
On the basis of above embodiment three, the dynamic password administration module also comprises the note receiver module.Note receiver module and the automated validation note that is used to accept from portable terminal, and according to automated validation message search dynamic password memory module, upgrade corresponding authentication and reply sign.
Therefore, in the present embodiment, dynamic cipher authentication system can also be supported the function of answer short message automated validation.After that is to say that the user receives dynamic password, reply the automated validation note, after the dynamic password administration module received the automated validation answer short message, the user authenticated accordingly and replys sign in the renewal dynamic password memory module.After system detects this authentication answer sign, then be considered as the user by authentication, automatically perform corresponding user's logging program.
In application server module, can also comprise the authentication checks module.This authentication checks module is connected with authentication module, is used for the monitoring authentication and replys sign, sends application service according to described authentication answer sign indication authentication module to application server module instruction is provided.That is to say that sign is replied in the authentication of authentication checks module monitors, reply identification renewal, promptly realize user's automatic login in case find user's authentication.
The embodiment of dynamic cipher authentication method of the present invention:
The present invention also provides a kind of embodiment of dynamic cipher authentication method, as shown in Figure 3, comprises the steps:
Step 1, according to user profile to carrying out the user identity verification, judge that whether check results is correct, be, execution in step 2, otherwise, return error message, finish;
Step 2, according to user profile inquiry corresponding mobile terminal information, and generate dynamic password;
Step 3, according to described information of mobile terminal, described dynamic password is sent to portable terminal.
Wherein, whether proof of identity can realize in user list by checking the user profile (can be information such as user name or user ID) that the user provides.Therefore, step 1 can be specially: according to the tabulation of user profile inquiring user, whether user list exists described user profile in the judgement, is, judges that then check results is correct, execution in step 2, otherwise, return error message, finish.
System stores the dynamic password that generates, and with convenient management, also is beneficial to when the user sends authentication request information and uses for inquiry.Therefore, can also comprise after the step 2: step 21, preserve described dynamic password, and set up the corresponding relation of described dynamic password and described user profile.
In the present embodiment, user's receiving terminal is a portable terminal, particularly during mobile phone, dynamic password can think that note is that carrier sends to the user by wireless network, and therefore, the transmission of dynamic password need be passed through Short Message Service Gateway, accordingly, step 3 also just can comprise:
Step 31, described dynamic password and described information of mobile terminal are sent to the Short Message Service Gateway module;
Step 32, Short Message Service Gateway module are sent to portable terminal according to described information of mobile terminal with described dynamic password.
After the user obtains dynamic password by portable terminal, can use this dynamic password by authentication, carry out user's login, therefore, can comprise after the step 3:
Step 4, judge whether authentication request information is correct, is, then send the correct information of authentification of user, otherwise, the information of authentification of user mistake sent.
Receive user's authentication request information in Verification System after, judge whether this authentication request information is correct, correctly then notify application server module to allow user's login, otherwise, error message returned.Minimum needs comprise dynamic password in the authentication request information that the user provides by applications client, and perhaps hash value of this dynamic password etc. is by the well-determined value of dynamic password (therefore, above-mentioned information is commonly referred to as dynamic password information).When judging that authentication request information is whether correct, can be by judging the dynamic password information that comprises in the user authentication request information and by the dynamic password information that dynamic password obtained of system's storage, whether consistently confirm.
Therefore, step 4 can comprise:
Step 41, reception authentication request information are extracted the dynamic password information that comprises in the authentication request information;
Whether the user profile that comprises in step 42, the described authentication request information of inquiry is corresponding with described dynamic password information, is, then execution in step 43, otherwise, execution in step 44;
Step 43, the correct information of transmission authentification of user;
The information of step 44, transmission authentification of user mistake.
In addition, be further to improve the safety factor of dynamic cipher authentication method of the present invention, the MAC Address of the application client terminal that can use in conjunction with the user is confirmed user identity, but not simple employing dynamic password.Therefore, step 4 can comprise:
Step 41b, reception authentication request information are extracted the dynamic password information, the applications client MAC Address that comprise in the authentication request information;
Whether the user profile that step 42b, inquiry comprise in the described authentication request information is corresponding with described dynamic password information and described applications client MAC Address, be, execution in step 43b then, otherwise, execution in step 44b;
Step 43b, the correct information of transmission authentification of user;
The information of step 44b, transmission authentification of user mistake.
That is to say to have only when the user adopts certain fixing application client terminal request authentication, just the respective service that can use application server module to provide.This authentication execution mode is more safe and reliable for the exigent finance of coefficient of safety, government bodies etc.
In addition, in the present embodiment, can also support the message reply automated validation, that is to say user's answer short message after portable terminal receives dynamic password, and do not need to use applications client to carry out authentication (in general, adopt traditional page registering type authentication), system promptly can be the user automatic login service is provided, and is convenient, provide authentication for the user efficiently.Therefore, can comprise after the step 3:
Step 4bl, receive automated validation note from portable terminal;
Step 4b2, upgrade authentication according to described automated validation note and reply sign;
Whether step 4b3, the described authentication of detection are replied sign and are upgraded, and are, and then send indication and provide instruction to application server module transmission application service, otherwise, return error message, finish.
In addition, lose the unsafe hidden danger that produces for preventing customer mobile terminal, the fail safe that further improves present embodiment, the user can preestablish and receive and need the content of replying behind the dynamic password, such as serving as to set short message content with " 888888 ".That is to say, in this enforcement, have only after portable terminal is received dynamic password, when the message reply content that Verification System receives is consistent with the predefined short message content of user, just allow the user to login, therefore, present embodiment is being realized conveniently when logining automatically fast, has further improved coefficient of safety.So in the present embodiment, step 4b2 is specially: judge whether described automated validation short message content is to set short message content, is, then upgrades authentication and replys sign, otherwise, return error message.
Comparatively typical realization flow of present embodiment, wherein, the user logins the application service server by the mode of the page, as shown in Figure 4, may further comprise the steps:
1. the user opens system login page input login username;
2. user authentication request is sent to the dynamic password administration module;
3. the dynamic password administration module is done proof of identity according to user name to user authentication module;
If 4. this user name does not exist in user authentication module then returns wrong to front page layout;
If 5. this user name exists in user authentication module, the phone number that returns this user is to the dynamic password administration module;
6. the dynamic password administration module generates disposal dynamic cipher;
7. dynamic password is sent to the Short Message Service Gateway module;
8. the Short Message Service Gateway module sends to dynamic password on the user mobile phone with way of short messages;
9. the user receive can select after the note answer short message (replying predefined short message content) or directly manual on the page input dynamic password carry out system and land;
10. logging in system by user success.
It should be noted that at last: above embodiment is only in order to technical scheme of the present invention to be described but not technical scheme of the present invention is limited, although the present invention is had been described in detail with reference to the above embodiments, those of ordinary skill in the art is to be understood that: still can make amendment or be equal to replacement technical scheme of the present invention, and these modifications or replace the spirit and scope that still do not break away from technical solution of the present invention.
Claims (9)
1. a dynamic cipher authentication system comprises the applications client, the portable terminal that are in the network, it is characterized in that: also comprise: application server module, authentification of message module and Short Message Service Gateway module; Described application server module is connected with applications client, authentification of message module, be used to receive user profile, send user profile and authentication request information to the authentification of message module, and the user authentication information that feeds back when the authentification of message module provides application service when being the correct information of authentification of user;
Described authentification of message module is connected with the Short Message Service Gateway module with application server module, be used for carrying out verification according to the identity of user's information, generate dynamic password, described dynamic password and customer mobile terminal information are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module; Wherein, described user terminal information is stored in the described authentification of message module;
Described Short Message Service Gateway module is connected with described authentification of message module, described portable terminal, is used for according to described customer mobile terminal information described dynamic password being sent to portable terminal;
The authentification of message module comprises: user authentication module, dynamic password administration module;
The dynamic password administration module is connected with user authentication module, be used to receive user profile and authentication request information from application server module, and user profile is sent to user authentication module, generate dynamic password according to check results and customer mobile terminal information from user authentication module, described dynamic password and described customer mobile terminal information are sent to described Short Message Service Gateway module, carry out dynamic cipher verification according to authentication request information, and user authentication information is fed back to application server module; Described dynamic password administration module also comprises the note receiver module; The note receiver module is used to accept the automated validation note from portable terminal, and according to automated validation message search dynamic password memory module, upgrades corresponding authentication and reply sign; After system detects this authentication answer sign, then be considered as the user by authentication, automatically perform corresponding user's logging program.
2. dynamic cipher authentication system according to claim 1 is characterized in that:
User authentication module is used for carrying out the user identity verification according to user profile, and correct and customer mobile terminal information is sent to the dynamic password administration module with check results, or the verification erroneous results is sent to application server module.
3. dynamic cipher authentication system according to claim 1 is characterized in that: described application server module comprises client-side information interface module, authentication module and application service module;
Described client-side information interface module is connected with authentication module and application service module, is used to receive the user profile from applications client;
Described authentication module is connected with application service module, is used for sending user profile and authentication request information to the authentification of message module, and the user authentication information that feeds back according to the authentification of message module provides instruction to application service module transmission application service;
Described application service module is used for providing instruction according to application service, and application service is provided.
4. according to claim 1,2 or 3 described dynamic cipher authentication systems, it is characterized in that: application server module is one or more.
5. dynamic cipher authentication system according to claim 2 is characterized in that: the dynamic password administration module also comprises dynamic password generation modules, dynamic password memory module, SMS transmission module;
Described dynamic password generation modules is connected with dynamic password memory module and SMS transmission module, be used to receive user profile from application server module, and user profile is sent to user authentication module, generate dynamic password according to check results from user authentication module;
Described dynamic password memory module is used to store the dynamic password that dynamic password generation modules generates, and accepts the authentication request information from application server module, carries out dynamic cipher verification according to authentication request information; Described SMS transmission module is used for described dynamic password and customer mobile terminal information are sent to the Short Message Service Gateway module.
6. dynamic cipher authentication system according to claim 5 is characterized in that: also comprise the gateway interface service module in the dynamic password administration module;
Described gateway interface service module is connected with SMS transmission module, is used for the dynamic password from SMS transmission module is sent to the Short Message Service Gateway module with way of short messages.
7. dynamic cipher authentication system according to claim 3 is characterized in that: application server module also comprises the authentication checks module;
Described authentication checks module is connected with authentication module, is used for the monitoring authentication and replys sign, sends application service according to described authentication answer sign indication authentication module to application service module instruction is provided.
8. a dynamic cipher authentication method is characterized in that: comprise the steps:
Step 1, according to user profile to carrying out the user identity verification, judge that whether check results is correct, be, execution in step 2, otherwise, return error message, finish;
Step 2, according to user profile inquiry corresponding mobile terminal information, and generate dynamic password;
Step 3, according to described information of mobile terminal, described dynamic password is sent to portable terminal;
Also comprise after the step 3:
Step 4b1, receive automated validation note from portable terminal;
Step 4b2, upgrade authentication according to described automated validation note and reply sign;
Whether step 4b3, the described authentication of detection are replied sign and are upgraded, and are, then are considered as the user by authentication, and the transmission indication sends application service to application server module instruction is provided, and automatically performs corresponding user's logging program, otherwise, return error message, finish.
9. dynamic cipher authentication method according to claim 8, it is characterized in that: step 4b2 is specially:
Judge whether described automated validation short message content is the short message content of setting, and is, then upgrades authentication and replys sign, otherwise, error message returned.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200710119230XA CN101350720B (en) | 2007-07-18 | 2007-07-18 | Dynamic cipher authentication system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200710119230XA CN101350720B (en) | 2007-07-18 | 2007-07-18 | Dynamic cipher authentication system and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101350720A CN101350720A (en) | 2009-01-21 |
| CN101350720B true CN101350720B (en) | 2011-12-28 |
Family
ID=40269321
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200710119230XA Active CN101350720B (en) | 2007-07-18 | 2007-07-18 | Dynamic cipher authentication system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101350720B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107306393A (en) * | 2016-04-25 | 2017-10-31 | 中国联合网络通信集团有限公司 | The cut-in method and device of wireless network |
Families Citing this family (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101834834A (en) * | 2009-03-09 | 2010-09-15 | 华为软件技术有限公司 | Authentication method, device and system |
| CN101854357B (en) * | 2010-05-10 | 2013-09-04 | 深圳市中科新业信息科技发展有限公司 | Method and system for monitoring network authentication |
| CN102624678A (en) * | 2011-01-27 | 2012-08-01 | 中国联合网络通信集团有限公司 | System verification method and system verification server |
| CN102790674B (en) * | 2011-05-20 | 2016-03-16 | 阿里巴巴集团控股有限公司 | Auth method, equipment and system |
| CN103023638B (en) * | 2011-09-22 | 2016-03-30 | 阿里巴巴集团控股有限公司 | A kind of auth method based on mobile terminal and device |
| CN103209074B (en) * | 2012-01-16 | 2016-08-10 | 中国移动通信集团安徽有限公司 | A kind of method of safety certification, system and short message processing device |
| CN103546430A (en) * | 2012-07-11 | 2014-01-29 | 网易(杭州)网络有限公司 | Mobile terminal, and method, server and system for authenticating identities on basis of mobile terminal |
| CN103812843B (en) * | 2012-11-14 | 2018-03-30 | 中兴通讯股份有限公司 | Method for authenticating and system based on WebService applications |
| CN103905408A (en) * | 2012-12-28 | 2014-07-02 | 中国移动通信集团公司 | Information acquisition method and equipment |
| CN103227729B (en) * | 2013-04-19 | 2016-01-13 | 深圳市吉祥腾达科技有限公司 | PPPoE dial user name and code error fault cues method and device |
| CN104660404A (en) * | 2013-11-21 | 2015-05-27 | 中国移动通信集团重庆有限公司 | Authentication device and authentication method |
| CN104093146A (en) * | 2014-06-20 | 2014-10-08 | 裴兆欣 | Intelligent identity authentication method and device for mobile devices |
| CN105991519B (en) * | 2015-01-29 | 2019-11-08 | 阿里巴巴集团控股有限公司 | A kind of method, apparatus and system verifying identifying code |
| CN106209372A (en) * | 2015-04-28 | 2016-12-07 | 孙银海 | A kind of dynamic cipher authentication system with location verification and method |
| CN106550089B (en) * | 2015-09-16 | 2019-12-10 | 阿里巴巴集团控股有限公司 | Verification code processing method, client and user terminal |
| CN106856575B (en) * | 2015-12-09 | 2020-05-01 | 中国电信股份有限公司 | Automatic configuration method of IPTV terminal, server and IPTV system |
| CN109714466B (en) * | 2017-10-26 | 2021-08-17 | 中国电信股份有限公司 | Dynamic password authentication processing method and device and mobile terminal thereof |
| CN110098921A (en) * | 2018-01-30 | 2019-08-06 | 北京京东尚科信息技术有限公司 | Verification code generation method, device, application service end and system |
| CN108830977A (en) * | 2018-05-04 | 2018-11-16 | 西安石油大学 | A kind of dynamic password door-control lock and operating method |
| CN109257338A (en) * | 2018-08-29 | 2019-01-22 | 厦门快快网络科技有限公司 | A kind of System and method for of server log re-authentication |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2001091362A1 (en) * | 2000-04-28 | 2001-11-29 | Hongwei Yang | A system and method of dynamic password authentication |
| CN1481109A (en) * | 2002-09-03 | 2004-03-10 | 网泰金安信息技术有限公司 | Identity authentication system with dynamic cipher based on wireless transmission platform |
| CN1595948A (en) * | 2003-09-10 | 2005-03-16 | 华为技术有限公司 | A method for acquiring one-off secret code via handset |
| CN1992590A (en) * | 2005-12-29 | 2007-07-04 | 盛大计算机(上海)有限公司 | Identity authentication system of network user and method |
-
2007
- 2007-07-18 CN CN200710119230XA patent/CN101350720B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2001091362A1 (en) * | 2000-04-28 | 2001-11-29 | Hongwei Yang | A system and method of dynamic password authentication |
| CN1481109A (en) * | 2002-09-03 | 2004-03-10 | 网泰金安信息技术有限公司 | Identity authentication system with dynamic cipher based on wireless transmission platform |
| CN1595948A (en) * | 2003-09-10 | 2005-03-16 | 华为技术有限公司 | A method for acquiring one-off secret code via handset |
| CN1992590A (en) * | 2005-12-29 | 2007-07-04 | 盛大计算机(上海)有限公司 | Identity authentication system of network user and method |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107306393A (en) * | 2016-04-25 | 2017-10-31 | 中国联合网络通信集团有限公司 | The cut-in method and device of wireless network |
| CN107306393B (en) * | 2016-04-25 | 2020-04-28 | 中国联合网络通信集团有限公司 | Wireless network access method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101350720A (en) | 2009-01-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101350720B (en) | Dynamic cipher authentication system and method | |
| CN107948204B (en) | One-key login method and system, related equipment and computer readable storage medium | |
| US7979054B2 (en) | System and method for authenticating remote server access | |
| CN102790674B (en) | Auth method, equipment and system | |
| CN1842993B (en) | Providing credentials | |
| US10743180B2 (en) | Method, apparatus, and system for authenticating WIFI network | |
| TWI632798B (en) | Server, mobile terminal, and network real-name authentication system and method | |
| EP2879421B1 (en) | Terminal identity verification and service authentication method, system, and terminal | |
| DK2924944T3 (en) | Presence authentication | |
| US11165768B2 (en) | Technique for connecting to a service | |
| CN102868702B (en) | System login device and system login method | |
| EP3376421A1 (en) | Method for authenticating a user and corresponding device, first and second servers and system | |
| CN102984045A (en) | Access method of Virtual Private Network and Virtual Private Network client | |
| CN109583154A (en) | A kind of system and method based on Web middleware access intelligent code key | |
| CN102970308A (en) | User authentication method and server | |
| JP2009118110A (en) | Method and system for provisioning meta data of authentication system, its program and recording medium | |
| CN102255904A (en) | Communication network and terminal authentication method thereof | |
| CN107835162A (en) | The method that software digital permit server signs and issues software digital permissions | |
| KR101879843B1 (en) | Authentication mehtod and system using ip address and short message service | |
| KR101133167B1 (en) | Method and apparatus for user verifing process with enhanced security | |
| CN106954214B (en) | Electronic device and control method thereof | |
| KR20170055665A (en) | User authentication system and user authentication method therefor | |
| KR102300021B1 (en) | Authentication method and telecommunication server using IP address and SMS | |
| KR101879842B1 (en) | User authentication method and system using one time password | |
| US11849326B2 (en) | Authentication of a user of a software application |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |