CN101494541A - System and method for implementing security protection of PIN code - Google Patents
System and method for implementing security protection of PIN code Download PDFInfo
- Publication number
- CN101494541A CN101494541A CNA2009101189221A CN200910118922A CN101494541A CN 101494541 A CN101494541 A CN 101494541A CN A2009101189221 A CNA2009101189221 A CN A2009101189221A CN 200910118922 A CN200910118922 A CN 200910118922A CN 101494541 A CN101494541 A CN 101494541A
- Authority
- CN
- China
- Prior art keywords
- pin code
- usb key
- hardware unit
- safety device
- key hardware
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a system and a method used for protecting a PIN code. When the PIN code of the user requires verification, USB KEY hardware equipment generates random numbers and submits the numbers to completely-self-protected equipment, and then the completely-self-protected equipment sends the numbers into security equipment. The security equipment pops up a PIN code input prompt box into which the user inputs the PIN code by a keyboard. The security equipment guarantees the safety of data transmission between the user keyboard and the security equipment. After inputting the PIN code, the user clicks OK. The security equipment abstracts and processes the random numbers and the PIN code input by the user, and returns the outcome data after abstracting and processing to the completely-self-protected equipment. The completely-self-protected equipment sends the outcome data after abstracting and processing to the USB KEY hardware equipment for verification. The invention solves the potential safety hazards caused by a plaintext method adopted in the PIN code verification process of the existing USB KEY software equipment, thus realizing effective protection of the PIN code, and improving the safety of USB KEY further.
Description
Technical field
The present invention relates to the network security certification processing technology field, particularly relate to a kind of system and method for realizing PIN code is carried out safeguard protection.
Background technology
Along with developing rapidly of China Web bank, various to steal the attack technology that fund is a purpose and means emerge in an endless stream, attacking ways innovations in pattern or design, online transaction safety is constituted a serious threat.
At present, the Web bank of China's commercial banks is adopting digital certificate more aspect the safety certification, the carrier of digital certificate has USB KEY, chip card etc. at present, (patent is by name: the patent application apparatus and method that Web bank's data are encrypted, authenticated) discloses the apparatus and method that a kind of USB of utilization KEY digital certificate carries out Web bank's safety certification, as shown in Figure 1 to be 200410028723.9 such as: application number.This authentication method is placed on client's key in the chip encryption device of USB KEY, the encryption of data is finished by USB KEY, so the illegal softwares such as wooden horse in the computer can't steal client's key, has improved the fail safe of network authentication.
But, generally all adopt the mode of static password at present for the PIN code of USB KEY, PIN code is the equal of the key of visit USB KEY, therefore, still there is the possibility of being stolen by illegal softwares such as wooden horses in PIN code, thereby makes that the fail safe of USB KEY itself is challenged.
For USB KEY user, the PIN code checking is the key that protection client USB KEY uses, and guarantees directly not used by other people after the client loses USB KEY, and there is security risk in PIN code at present, specifically is divided into 3 aspects:
1, client's keyboard input aspect:
All do not adopt protection mechanism in the PIN code input process of USB KEY at present, there is the possibility of being stolen by the hacker in client's PIN code in input process.
2, client internal memory aspect:
Encipherment protection with the clear-text way record, is not made in the back of the PIN code of USB KEY input at present in internal memory, there is the possibility of being stolen by the hacker in the PIN code of USB KEY in the client internal memory.
3, interface accessing aspect:
General at present employing mode is expressly called the access interface of USB KEY, PIN code is sent among the USB KEY with clear-text way verified that client's PIN code is plaintext transmission in each layer interface transmission course of client, has the possibility of being stolen by the hacker.
Summary of the invention
(1) technical problem that will solve
In view of this; main purpose of the present invention is to provide a kind of system and method for realizing PIN code is carried out safeguard protection; to adopt the defective of clear-text way in the PIN code verification process that overcomes present USB KEY; solve PIN code at keyboard input, the client internal memory is deposited and aspect such as interface accessing exists security hidden trouble; realization further improves USB KEY fail safe to effective protection of PIN code.
(2) technical scheme
For achieving the above object, the invention provides a kind of system that realizes PIN code is carried out safeguard protection, this system comprises:
The security application device is used to move and relevant application program, safe control and the signature control of Web bank's safety, and the data that needs are encrypted, signed are sent to complete self-protection device;
Complete self-protection device is used to realize the data communication between security application device and USB KEY hardware unit and safety device and the USB KEY hardware unit;
USB KEY hardware unit, be used for after the data that the needs that receive complete self-protection device transmission are encrypted, signed, producing a random number, then the random number that produces is sent to safety device by complete self-protection device, and the summary result that is received from safety device verified, the data of by the back needs being encrypted, signing in checking are encrypted and are signed, and return to the security application device by complete self-protection device then;
Safety device is used for the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit obtain the result of making a summary, and the result of should making a summary is sent to USB KEY hardware unit by complete self-protection device.
In the such scheme; described complete self-protection device is realized the data communication between security application device and USBKEY hardware unit and safety device and the USB KEY hardware unit; be that the data that the needs that will be received from the security application device are encrypted, signed send to USB KEY hardware unit; the random number that is received from USB KEY hardware unit is sent to safety device, and the summary result that will be received from safety device sends to USB KEY hardware unit.
In the such scheme, described USB KEY hardware unit is verified the summary result that is received from safety device, the random number that to be USB KEY hardware unit send to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.
In the such scheme, described safety device is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.
In the such scheme, the digest algorithm that described safety device adopts is the MD5 algorithm.
In the such scheme, this system further comprises:
Keyboard is connected in safety device, is used to realize that the client imports safety device with PIN code.
For achieving the above object, the present invention carries and has also supplied a kind of method that realizes PIN code is carried out safeguard protection, and this method comprises:
The data that the security application device is encrypted needs, sign by complete self-protection device send to USB KEY hardware unit;
USB KEY hardware unit produces a random number after the data that the needs that receive complete self-protection device transmission are encrypted, signed, then the random number that produces is sent to safety device by complete self-protection device;
Safety device receives the random number that USB KEY hardware unit sends, show the PIN code input frame, receive the PIN code of client's input, then to the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, obtain the result of making a summary, and the result of should making a summary sends to USB KEY hardware unit by complete self-protection device;
USB KEY hardware unit verifies the summary result that is received from safety device, and the data of by the back needs being encrypted, signing in checking are encrypted and signed, and return to the security application device by complete self-protection device then.
In the such scheme, described safety device is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.
In the such scheme, described USB KEY hardware unit is verified the summary result that is received from safety device, specifically comprise: the random number that USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.
In the such scheme, the random number that described USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, be that USB KEY hardware unit adopts digest algorithm, the random number that the PIN code that is received from safety device and being used to of self producing the are sent to safety device computing of making a summary.
In the such scheme, the digest algorithm that digest algorithm that described safety device adopts and described USB KEY hardware unit adopt all is MD5 algorithms.
(3) beneficial effect
From technique scheme as can be seen, the present invention has following beneficial effect:
1, utilizes the present invention; overcome and adopted plaintext method in the PIN code verification process of present USB KEY hardware unit; make PIN code in keyboard input, the client internal memory is deposited and there is the problem of potential safety hazard in aspect such as interface accessing; realized effective protection, further improved USB KEY fail safe PIN code.
2, utilize the present invention, PIN code plaintext transmission not in fully self-protection device and USB KEY hardware unit guarantees that client's PIN code was not stolen in this stage.Owing to there is random number to participate in digest calculations, it is different at every turn to guarantee to transmit data between complete self-protection device and USB KEY, prevents replay attack.
Description of drawings
Fig. 1 is a structural representation of realizing PIN code is carried out safety system in the prior art;
Fig. 2 is safety system is carried out in realization provided by the invention to PIN code a structural representation;
Fig. 3 is safeguard protection is carried out in realization provided by the invention to PIN code a method flow diagram.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer, below in conjunction with specific embodiment, and with reference to accompanying drawing, the present invention is described in more detail.
The invention provides this realization and PIN code is carried out the system and method for safeguard protection; mainly comprise: the interface that USB KEY PIN code is transmitted between security application device, driving, USB KEY hardware unit is done encipherment protection, and USB KEY PIN code is carried out keyboard input protection and memory protect when input.Detailed process is as follows: when needs checking client PIN code; produce random number by USB KEY hardware unit; and complete self-protection (Completely selfProtected will be sent on the random number; CSP) device; the CSP device is sent random number into safety device; safety device ejects PIN code input prompt frame, and the client imports PIN code by keyboard, and safety device guarantees that client's keyboard is to data transmission security between self.The client clicks affirmation after importing PIN code, safety device is imported the PIN code processing of making a summary to random number and client, and the result data that will make a summary after handling returns to the CSP device, result data after the CSP device will be made a summary and be handled is sent into USB KEY hardware unit and is verified, USB KEY hardware unit uses correct PIN code and random number to calculate summary and relatively whether the summary result data sent into of CSP device are consistent with the summary result data of self calculating, if it is consistent, then checking is passed through, needs are encrypted, the data of signature are encrypted and are signed, and return to the security application device by the CSP device then.
Wherein: the CSP device is the Completely selfProtected module in the Windows system, be that Microsoft is integrated in the Windows operating system, communicating by letter with secure hardware equipment (as USB KEY hardware unit) for security application provides a unified interface.Safety device mainly comprises Microsoft's security module, and Microsoft's security module is to realize that keyboard is input to the unit of communication security between the device that calls described Microsoft security module, is integrated in the Windows operating system by Microsoft.Safety device is to realize on the basis of Microsoft's security module, in the inner data input that realizes keyboard by Microsoft's security module of safety device.
Among the present invention, PIN code plaintext transmission not in CSP and USB KEY hardware unit guarantees that client's PIN code was not stolen in this stage.Owing to there is random number to participate in digest calculations, guarantee that the transmission data are all inequality at every turn between CSP and the USB KEY hardware unit, effectively prevented replay attack.
As shown in Figure 2; Fig. 2 is safety system is carried out in realization provided by the invention to PIN code a structural representation; this system comprises: security application device I, self-protection fully (CompletelyselfProtected, CSP) device 2, USB KEY hardware unit 3, safety device 4 and keyboard 5.Wherein, the security application device is used to move and relevant application program, safe control and the signature control of Web bank's safety, and the data that needs are encrypted, signed are sent to the CSP device.The CSP device is used to realize the data communication between security application device and USB KEY hardware unit and safety device and the USB KEY hardware unit.USB KEY hardware unit is used for producing a random number after the data that the needs that receive the transmission of CSP device are encrypted, signed, then the random number that produces is sent to safety device by the CSP device, and the summary result that is received from safety device verified, the data of by the back needs being encrypted, signing in checking are encrypted and are signed, and return to the security application device by the CSP device then.Safety device is used for the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit obtain the result of making a summary, and the result of should making a summary is sent to USB KEY hardware unit by the CSP device.Keyboard is connected in safety device, is used to realize that the client imports safety device with PIN code.
The CSP device is realized the data communication between security application device and USB KEY hardware unit and safety device and the USB KEY hardware unit, be that the data that the needs that will be received from the security application device are encrypted, signed send to USB KEY hardware unit, the random number that is received from the USBKEY hardware unit is sent to safety device, and the summary result that will be received from safety device sends to USB KEY hardware unit.The CSP device is the safeguard protection interface in the Windows operating system, develop and be integrated in the Windows system by Microsoft, for being used to support the upper strata Secure Application to call this standard interface, and be responsible for visiting bsp driver and hardware by the CSP device, solve the compatibility issue of application program, be that application program need not be considered concrete secure hardware equipment and driver thereof, and only need visit the standard interface that the CSP device provides; The production firm of safety means is responsible for realizing CSP device safety function and provides driver and hardware device.
USB KEY hardware unit is verified the summary result that is received from safety device, the random number that to be USB KEY hardware unit send to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if it is consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.USB KEY hardware unit is the USB KEY hardware product that USB KEY manufacturer provides, and is used to provide upper strata Secure Application calling interface, and USB KEY hardware unit is specifically responsible for safe handlings such as the signature of data and encryptions.
Safety device is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm (for example MD5 algorithm) to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.Safety device is used for being responsible for sending out access security between CPS device and the keyboard, and the safeguard measure to internal storage data is provided.
Further, further comprise a USBKEY driver unit between CSP device and USB KEY hardware unit, this USB KEY driver unit is the operation system driver that hardware security manufacturer provides.
Based on the system that realization shown in Figure 2 is carried out safeguard protection to PIN code, Fig. 3 shows the method that realization provided by the invention is carried out safeguard protection to PIN code, and this method comprises:
Step 301: the data that the security application device is encrypted needs, sign by complete self-protection device send to USB KEY hardware unit;
Step 302:USB KEY hardware unit produces a random number after the data that the needs that receive complete self-protection device transmission are encrypted, signed, then the random number that produces is sent to safety device by complete self-protection device;
Step 303: safety device receives the random number that USB KEY hardware unit sends, show the PIN code input frame, receive the PIN code of client's input, then to the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, obtain the result of making a summary, and the result of should making a summary sends to USB KEY hardware unit by complete self-protection device;
Step 304:USB KEY hardware unit is verified the summary result that is received from safety device; the data of by the back needs being encrypted, signing in checking are encrypted and are signed, and return to the security application device by complete self-protection device then.
Safety device described in the step 303 is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm (for example MD5 algorithm) to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.
The KEY of USB described in the step 304 hardware unit is verified the summary result that is received from safety device, specifically comprise: the random number that USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if it is consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.The random number that USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, be that the USBKEY hardware unit adopts digest algorithm (for example MD5 algorithm), the random number that the PIN code that is received from safety device and being used to of self producing the are sent to safety device computing of making a summary.
The method flow diagram that the realization that Fig. 4 shows to be provided according to the embodiment of the invention is carried out safeguard protection to PIN code, this method comprises:
Step 401: security application device request USB KEY hardware unit is to the data processing of encrypting, sign;
The client is in visit Web bank, need encrypt, sign critical data when handling if relate to, encryption, signature that the security application device will start data are handled, and encrypt, sign to handle and by security application device request USB KEY hardware unit data are handled.
Step 402: the security application device sends to USB KEY hardware unit with to be encrypted, signed data by the CSP device;
The data that the security application device will need to encrypt, sign send to the CSP device, and the CSP device sends to the driver unit with to be encrypted, signed data again, send to USB KEY hardware unit by USB KEY driver unit;
Step 403:USB KEY hardware unit requires the client to import PIN code, returns random number;
After USB KEY hardware unit receives the request that data are encrypted, signed, require the client to import PIN code; USB KEY hardware unit produces a random number according to the random number algorithm, and this random number is sent to the CSP device by USB KEY driver unit.
Step 404:CSP device is sent random number into safety device;
The CSP device sends to safety device with random number after receiving the random number of USB KEY hardware unit transmission;
Step 405: safety device shows the PIN code input frame;
After safety device receives random number, eject PIN code input prompt frame, the request client imports PIN code;
Step 406: the client imports PIN code by keyboard;
Step 407: safety device directly obtains PIN code from keyboard hardware;
Step 408: safety device is united the computing of making a summary with random number and client's PIN code, be about to random number and client and import the PIN code processing of making a summary, the digest algorithm that uses can be as digest algorithms such as MD5, data after safety device will be made a summary send to the CSP device, and the CPS device is transmitted to summary data USB KEY hardware unit again;
Behind the summary data that step 409:USB KEY hardware unit reception CSP device sends, unite the computing of making a summary with preserving PIN code in random number and the USB KEY hardware unit, and whether the summary data that relatively receives from the CSP device is identical with the summary data that described summary computing generates, if it is identical then represent that the PIN code that the client imports is correct, execution in step 410; Otherwise, if different then represent that the PIN code that the client imports is incorrect, process ends.
Step 410:USB KEY hardware unit to be encrypted, signed data is encrypted, the processing of signing, and encrypted, signed data is sent to the CSP device, sends to the security application device by the CSP device;
If the PIN code of client's input is correct, then USB KEY hardware unit data that the needs that security application sends are encrypted, the signed processing of encrypting, sign, and encrypted, signed data sent to the CSP device, send to the security application device by the CSP device.
Above-described specific embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is specific embodiments of the invention; be not limited to the present invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (11)
1, a kind of system that realizes PIN code is carried out safeguard protection is characterized in that, this system comprises:
The security application device is used to move and relevant application program, safe control and the signature control of Web bank's safety, and the data that needs are encrypted, signed are sent to complete self-protection device;
Complete self-protection device is used to realize the data communication between security application device and USB KEY hardware unit and safety device and the USB KEY hardware unit;
USB KEY hardware unit, be used for after the data that the needs that receive complete self-protection device transmission are encrypted, signed, producing a random number, then the random number that produces is sent to safety device by complete self-protection device, and the summary result that is received from safety device verified, the data of by the back needs being encrypted, signing in checking are encrypted and are signed, and return to the security application device by complete self-protection device then;
Safety device is used for the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit obtain the result of making a summary, and the result of should making a summary is sent to USB KEY hardware unit by complete self-protection device.
2, the system of safeguard protection is carried out in realization according to claim 1 to PIN code; it is characterized in that; described complete self-protection device is realized the data communication between security application device and USB KEY hardware unit and safety device and the USB KEY hardware unit; be that the data that the needs that will be received from the security application device are encrypted, signed send to USB KEY hardware unit; the random number that is received from USB KEY hardware unit is sent to safety device, and the summary result that will be received from safety device sends to USB KEY hardware unit.
3, the system of safeguard protection is carried out in realization according to claim 1 to PIN code, it is characterized in that, described USB KEY hardware unit is verified the summary result that is received from safety device, the random number that to be USB KEY hardware unit send to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if it is consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.
4, the system of safeguard protection is carried out in realization according to claim 3 to PIN code; it is characterized in that; described safety device is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.
5, realization according to claim 4 system that PIN code is carried out safeguard protection is characterized in that, the digest algorithm that described safety device adopts is the MD5 algorithm.
6, realization according to claim 1 system that PIN code is carried out safeguard protection is characterized in that this system further comprises:
Keyboard is connected in safety device, is used to realize that the client imports safety device with PIN code.
7, a kind of method that realizes PIN code is carried out safeguard protection is characterized in that, this method comprises:
The data that the security application device is encrypted needs, sign by complete self-protection device send to USB KEY hardware unit;
USB KEY hardware unit produces a random number after the data that the needs that receive complete self-protection device transmission are encrypted, signed, then the random number that produces is sent to safety device by complete self-protection device;
Safety device receives the random number that USB KEY hardware unit sends, show the PIN code input frame, receive the PIN code of client's input, then to the processing of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, obtain the result of making a summary, and the result of should making a summary sends to USB KEY hardware unit by complete self-protection device;
USB KEY hardware unit verifies the summary result that is received from safety device, and the data of by the back needs being encrypted, signing in checking are encrypted and signed, and return to the security application device by complete self-protection device then.
8, the method for safeguard protection is carried out in realization according to claim 7 to PIN code; it is characterized in that; described safety device is to processings of making a summary of the PIN code of client input and the random number that is received from USB KEY hardware unit, is that safety device adopts digest algorithm to the computing of making a summary of the PIN code of client's input and the random number that is received from USB KEY hardware unit.
9, realization according to claim 7 method that PIN code is carried out safeguard protection is characterized in that described USB KEY hardware unit is verified the summary result that is received from safety device, specifically comprises:
The random number that USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary, obtain the result of making a summary, and judge whether this summary result is consistent with the summary result that is received from safety device, if it is consistent, then the PIN code of client's input is correct, and checking is passed through; Otherwise the PIN code of client's input is incorrect, authentication failed.
10, the method for safeguard protection is carried out in realization according to claim 9 to PIN code; it is characterized in that; the random number that described USB KEY hardware unit sends to safety device to the PIN code that is received from safety device and being used to of self the producing processing of making a summary; be that USB KEY hardware unit adopts digest algorithm, the random number that the PIN code that is received from safety device and being used to of self producing the are sent to safety device computing of making a summary.
11, according to Claim 8 or 10 described realizations method that PIN code is carried out safeguard protection, it is characterized in that the digest algorithm that digest algorithm that described safety device adopts and described USB KEY hardware unit adopt all is MD5 algorithms.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101189221A CN101494541B (en) | 2009-03-06 | 2009-03-06 | System and method for implementing security protection of PIN code |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101189221A CN101494541B (en) | 2009-03-06 | 2009-03-06 | System and method for implementing security protection of PIN code |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101494541A true CN101494541A (en) | 2009-07-29 |
| CN101494541B CN101494541B (en) | 2011-01-05 |
Family
ID=40924962
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009101189221A Active CN101494541B (en) | 2009-03-06 | 2009-03-06 | System and method for implementing security protection of PIN code |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101494541B (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011060738A1 (en) * | 2009-11-23 | 2011-05-26 | 南京新神郁网络科技有限公司 | Method for confirming data in cpu card |
| CN102571327A (en) * | 2010-12-31 | 2012-07-11 | 上海格尔软件股份有限公司 | Method for managing USBKey unlocking secret key intensively and safely |
| CN103166754A (en) * | 2013-03-12 | 2013-06-19 | 飞天诚信科技股份有限公司 | Method and device processing commands |
| CN103312500A (en) * | 2012-03-13 | 2013-09-18 | 北京海泰方圆科技有限公司 | Methods for protecting universal serial bus (USB) key information |
| CN103428000A (en) * | 2013-08-27 | 2013-12-04 | 深圳市文鼎创数据科技有限公司 | Information authentication method and system |
| CN103441854A (en) * | 2013-08-27 | 2013-12-11 | 深圳市文鼎创数据科技有限公司 | Link protection method and system |
| CN106295375A (en) * | 2016-08-23 | 2017-01-04 | 记忆科技(深圳)有限公司 | A kind of encryption hard disk supporting PCI E interface |
| CN106326754A (en) * | 2016-08-23 | 2017-01-11 | 记忆科技(深圳)有限公司 | Data transmission encryption device implemented based on PCIE (Peripheral Component Interface Express) interface |
| CN106384054A (en) * | 2016-08-23 | 2017-02-08 | 记忆科技(深圳)有限公司 | Encryption Hub device based on PCIE interface |
| CN108509787A (en) * | 2018-03-14 | 2018-09-07 | 深圳市中易通安全芯科技有限公司 | A kind of program authentication method |
| CN108551391A (en) * | 2018-03-14 | 2018-09-18 | 深圳市中易通安全芯科技有限公司 | A kind of authentication method based on USB-key |
| CN117932647A (en) * | 2024-03-14 | 2024-04-26 | 北京电子科技学院 | PIN code encryption method, device, equipment and storage medium |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1271485C (en) * | 2004-01-08 | 2006-08-23 | 中国工商银行股份有限公司 | Device and method for proceeding encryption and identification of network bank data |
| CN100345078C (en) * | 2004-07-09 | 2007-10-24 | 中国民生银行股份有限公司 | Method of implementing cipher protection against computer keyboard information interfference |
-
2009
- 2009-03-06 CN CN2009101189221A patent/CN101494541B/en active Active
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011060738A1 (en) * | 2009-11-23 | 2011-05-26 | 南京新神郁网络科技有限公司 | Method for confirming data in cpu card |
| CN102571327A (en) * | 2010-12-31 | 2012-07-11 | 上海格尔软件股份有限公司 | Method for managing USBKey unlocking secret key intensively and safely |
| CN102571327B (en) * | 2010-12-31 | 2015-04-01 | 上海格尔软件股份有限公司 | Method for managing USBKey unlocking secret key intensively and safely |
| CN103312500A (en) * | 2012-03-13 | 2013-09-18 | 北京海泰方圆科技有限公司 | Methods for protecting universal serial bus (USB) key information |
| CN103166754A (en) * | 2013-03-12 | 2013-06-19 | 飞天诚信科技股份有限公司 | Method and device processing commands |
| CN103166754B (en) * | 2013-03-12 | 2017-05-10 | 飞天诚信科技股份有限公司 | Method and device processing commands |
| CN103428000A (en) * | 2013-08-27 | 2013-12-04 | 深圳市文鼎创数据科技有限公司 | Information authentication method and system |
| CN103441854A (en) * | 2013-08-27 | 2013-12-11 | 深圳市文鼎创数据科技有限公司 | Link protection method and system |
| CN106326754A (en) * | 2016-08-23 | 2017-01-11 | 记忆科技(深圳)有限公司 | Data transmission encryption device implemented based on PCIE (Peripheral Component Interface Express) interface |
| CN106384054A (en) * | 2016-08-23 | 2017-02-08 | 记忆科技(深圳)有限公司 | Encryption Hub device based on PCIE interface |
| CN106295375A (en) * | 2016-08-23 | 2017-01-04 | 记忆科技(深圳)有限公司 | A kind of encryption hard disk supporting PCI E interface |
| CN106295375B (en) * | 2016-08-23 | 2019-09-03 | 记忆科技(深圳)有限公司 | A kind of encryption hard disk for supporting PCI-E interface |
| CN106326754B (en) * | 2016-08-23 | 2019-10-25 | 记忆科技(深圳)有限公司 | A kind of data transmission encryption device realized based on PCIE interface |
| CN106384054B (en) * | 2016-08-23 | 2019-10-25 | 记忆科技(深圳)有限公司 | A kind of encryption Hub device realized based on PCIE interface |
| CN108509787A (en) * | 2018-03-14 | 2018-09-07 | 深圳市中易通安全芯科技有限公司 | A kind of program authentication method |
| CN108551391A (en) * | 2018-03-14 | 2018-09-18 | 深圳市中易通安全芯科技有限公司 | A kind of authentication method based on USB-key |
| CN108551391B (en) * | 2018-03-14 | 2021-04-27 | 深圳市中易通安全芯科技有限公司 | Authentication method based on USB-key |
| CN117932647A (en) * | 2024-03-14 | 2024-04-26 | 北京电子科技学院 | PIN code encryption method, device, equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101494541B (en) | 2011-01-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101494541B (en) | System and method for implementing security protection of PIN code | |
| CA2692083C (en) | Authentication system and method | |
| CN102006306B (en) | Security authentication method for WEB service | |
| US8966269B2 (en) | Integrity protected smart card transaction | |
| TW201741922A (en) | Biological feature based safety certification method and device | |
| CN101072100B (en) | Authenticating system and method utilizing reliable platform module | |
| US8321924B2 (en) | Method for protecting software accessible over a network using a key device | |
| CN102510378B (en) | Method for logging in online game through mobile equipment | |
| CN110990827A (en) | Identity information verification method, server and storage medium | |
| CN102571802B (en) | Information safety devices and Server remote unlock method, equipment and server | |
| US9443068B2 (en) | System and method for preventing unauthorized access to information | |
| CN103051451A (en) | Encryption authentication of security service execution environment | |
| CN106506158B (en) | A kind of encryption method and system based on whitepack | |
| CN101005361A (en) | Server and software protection method and system | |
| CN102946392A (en) | URL (Uniform Resource Locator) data encrypted transmission method and system | |
| TW201108696A (en) | Account identification system, method and peripheral device of performing function thereof | |
| CN106936588A (en) | A kind of trustship method, the apparatus and system of hardware controls lock | |
| WO2012159486A1 (en) | Method and device for generating password-protected carrier | |
| CN108768941B (en) | Method and device for remotely unlocking safety equipment | |
| CN101482957A (en) | Credible electronic transaction method and transaction system | |
| CN106156607A (en) | A kind of SElinux safety access method and POS terminal | |
| CN200993803Y (en) | Internet banking system safety terminal | |
| CN114338201B (en) | Data processing method and device, electronic equipment and storage medium | |
| CN1786864A (en) | Method for safety identification of computer | |
| CN101304315B (en) | Method for improving identification authentication security based on password card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |