CN101527634A - System and method for binding account information with certificates - Google Patents
System and method for binding account information with certificates Download PDFInfo
- Publication number
- CN101527634A CN101527634A CN200810247054A CN200810247054A CN101527634A CN 101527634 A CN101527634 A CN 101527634A CN 200810247054 A CN200810247054 A CN 200810247054A CN 200810247054 A CN200810247054 A CN 200810247054A CN 101527634 A CN101527634 A CN 101527634A
- Authority
- CN
- China
- Prior art keywords
- information
- certificate
- packet
- safety devices
- binding
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 31
- 238000012795 verification Methods 0.000 claims description 6
- BQCADISMDOOEFD-UHFFFAOYSA-N Silver Chemical compound [Ag] BQCADISMDOOEFD-UHFFFAOYSA-N 0.000 description 5
- 229910052709 silver Inorganic materials 0.000 description 5
- 239000004332 silver Substances 0.000 description 5
- 238000010586 diagram Methods 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 4
- 238000004891 communication Methods 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 101000896740 Solanum tuberosum Cysteine protease inhibitor 9 Proteins 0.000 description 1
- 230000004888 barrier function Effects 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention provides a system and a method for binding account information with certificates, which relate to the field of information security and solve the technical problems of complicated operation and low security when users use information security devices. The system for binding account information with certificates comprises a binding device, as well as an information security device and an application terminal which are respectively connected with the binding device, wherein the information security device is used for storing certificates and key pairs and executing intelligent key calculation; the binding device is used for generating account information, binding the account information with the certificate identification information of the information security device to generate a first data packet, receiving a second data packet which is generated after the information security device signs the first data packet with private keys, and sending the first data packet, the second data packet and the certificate information of the information security device to the application terminal; and the application terminal is used for receiving information sent by the binding device and verifying the validity of the second data packet. The system and the method for binding account information with certificates are applied to the information security of online banks.
Description
Technical field
The present invention relates to information security field, relate in particular to the system and method for accounts information and certificate binding.
Background technology
Along with the high speed development of information network technique, network security problem has become the network security hidden danger of present maximum, each side such as Web bank, online game, payment platform, online secorities trading, and password is ubiquitous, brings people more safety.But also there are some problems in password, in case password loss or stolen then brings a lot of troubles when ensureing for people's necessary security.Frequent network cipher is stolen in the prior art; trojan horse, sense of self-protection difference are by phishing, and perhaps password all is the factor that causes the cryptosecurity problem by Brute Force etc.; be necessary to take the safeguard of some cryptosecurities, for password on the catch net is set up barrier one for this reason.Information safety devices (also claiming intelligent key apparatus) is a kind of individual host interface by standard, as USB (Universal Serial Bus, hereinafter to be referred as USB) interface etc., the portable set that provides information encryption to handle, utilize it can improve authentication intensity, its built-in single-chip microcomputer or intelligent card chip can storage key or digital certificate, utilizes its built-in cryptographic algorithm or to carry out identification etc. to information encryption.Information safety devices has PKIX (PublicKey Infrastructure, PKI) application, digital signature, information encryption, secure network login and access security socket layer (Secure Sockets Layer, hereinafter to be referred as SSL) function such as secure network, and have the feature that the private key that guarantees the user leaves hardware never, information safety devices also has characteristics such as physically preventing from illegally to obtain its inner sensitive information simultaneously.
PKI is the infrastructure that security service is provided of utilizing the PKI theory and technology to set up.The comings and goings on safe electronic transaction, communication and the Internet is carried out in the service that the user can utilize the PKI platform to provide.The PKI technology adopts the certificate management PKI, by authentication center of third-party trusted mechanism other identification informations of user's PKI and user is bundled, and verifies user's identity on the internet.At present, general way is to adopt the digital certificate that is based upon on the PKI basis, by the digital information that will transmit being encrypted and sign, confidentiality, authenticity, integrality and the non-repudiation of guarantee information transmission, thereby the safe transmission of guarantee information.PKI is based on public key algorithm and technology, and the infrastructure of security service is provided for online communication.Be to create, issue, manage, nullify all involved softwares of public key certificate, the aggregate of hardware.Its core element is a digital certificate, and core executor is a certification authority.Authentication center is the authoritative institution of a responsible distribution ﹠ management digital certificate.Authentication center usually adopts multi-level hierarchy, and higher level authentication center is responsible for signing and issuing and managing the certificate of authentication center of subordinate, and the authentication center of next stage is directly towards the end user.The major function of authentication center: the issuing of certificate, the renewal of certificate, the inquiry of certificate, the calcellation of certificate, the filing of certificate.
In the prior art, the holder of user information safety equipment carries out following steps usually and obtains legal digital certificate: at first file an application to authentication center, the hardware information of subscriber identity information and information safety devices is sent to authentication center; Authentication center distinguishes after applicant's the identity, just distribute a PKI for him, and authentication center is held together this PKI and applicant's the identity information and the hardware information of information safety devices, and after signing for it, just forms the holder that certificate is issued information safety devices.So, just preserved the certificate that authentication center issues in this intelligent key apparatus.
By authentication center's grant a certificate, with PKI and account binding, with the Net silver service is example, the user opens a Net silver account in the outlet of bank often in such process, earlier register this Net silver account to security centre, security terminal is that this Net silver account is distributed an account number and an identifying code, user's acquired information safety means, behind user account and the identifying code, by the own downloadable authentication in the Internet, the user is in the process of downloadable authentication, as occurring as the network service fault, the computing environment fault, do not observe factors such as using policy, just will cause the certificate failed download.In case failure just will notify security centre to examine this Net silver account again, perhaps want this application to lose efficacy.State in realization in the process that the user obtains certificate, the inventor finds that there are the following problems at least in the prior art: on the one hand, the user is after taking information safety devices, must carry out the certificate process of downloading by computer network, this operation easily makes mistakes, and the user can't obtain legal digital certificate in the very first time, has increased user's complex operation; On the other hand, the user is because of by unsafe network download certificate, thereby produced the potential safety hazard that individual private information is intercepted and captured.
Summary of the invention
The invention provides the system and method for a kind of accounts information and certificate binding, the user need not can directly obtain user's the accounts information and the information safety devices of certificate binding by the Internet, has ensured the fail safe of user's private information.
For achieving the above object, embodiments of the invention adopt following technical scheme:
The system of a kind of accounts information and certificate binding comprises:
Bound device, information safety devices and the application terminal that is connected with described bound device respectively; Wherein,
Described information safety devices is used for Store Credentials and key is right, and carries out the intelligent key computing;
Described bound device, be used to generate accounts information, the identification information of the certificate of described accounts information and described information safety devices is bound generated first packet, receive second packet that generates after described information safety devices utilizes private key that described first packet is signed, and the certificate information of described first packet and described second packet and described information safety devices is sent to the application terminal;
Described application terminal is used to receive the information that described bound device sends, and verifies the validity of described second packet.
Further, described bound device comprises:
The network interface control unit is used for being connected with described application terminal;
Usb interface unit is used for being connected with described information safety devices;
The binding unit is used for the identification information of the certificate of described accounts information and described information safety devices is bound.
Further, described network interface control unit comprises:
Network Interface Module is used for being connected with described application terminal;
Network control module is used to control described bound device and carries out network operation.
Described binding unit comprises:
Search module, the key that is used for searching the identification information of certificate of described information safety devices and described information safety devices is right;
Generation module is used for generating accounts information according to initial user information, and generates first packet according to the identification information of the certificate of described accounts information, described information safety devices;
Memory module, the private key that is used to store the identification information of the certificate of the certificate information of described information safety devices, described information safety devices, described information safety devices is to described first packet second packet that the back generates of signing;
Further, described generation module specifically comprises:
Accounts information generates submodule, is used for generating accounts information according to initial user information;
First packet generates submodule, is used for generating first packet according to the identification information of the certificate of described accounts information, described information safety devices.
Further, described information safety devices comprises:
First interface unit is used for being connected with described bound device;
First memory cell is used for identification information and the certificate information of storage key to the certificate of, key schedule, described information safety devices;
Generation unit, it is right to be used for generating key according to key schedule;
Signature unit is used to utilize the private key of described information safety devices that first packet that described bound device generates is signed, and generates second packet, and described second packet is sent to described bound device.
Further, described application terminal comprises:
Second interface unit is used for being connected with described bound device;
Second memory cell is used to store the certificate information of first packet, second packet and described information safety devices that described bound device sends;
Resolve authentication unit, be used to resolve and handle second packet that described bound device sends, and verify the validity of described second packet.
Further, described parsing authentication unit verifies that the validity of described second packet is specially: the validity of signature of utilizing described second packet of public key verifications of described information safety devices, when the signature of described second packet of checking is effective, notify described second cell stores described second packet; When the signature of verifying described second packet is invalid, then point out error message.
Further, when the signature of verifying described second packet when described parsing authentication unit is effective, described application terminal sends checking to described bound device and passes through message, described bound device receives described checking by after the message, and described second packet is stored in the described information safety devices.
Further, the identification information of the certificate of described information safety devices is a certificate serial number, and described certificate serial number is consistent with the sequence number of described information safety devices.
Further, the certificate information of described information safety devices comprises: the PKI of described cipher key pair, certificate are in full.
The invention provides the system of a kind of accounts information and certificate binding, with accounts information and certificate binding, the user can directly obtain the information safety devices of having bound accounts information and certificate, has ensured the fail safe of user's private information by bound device.
The method of a kind of accounts information and certificate binding comprises:
Bound device generates first packet with the identification information binding back of the certificate of user's accounts information and information safety devices, receive private key that described information safety devices utilizes cipher key pair to described first packet second packet that the back generates of signing, and the certificate information of described first packet and described second packet and described information safety devices is sent to the application terminal;
Described application terminal receives the information that described bound device sends, and verifies the validity of described second packet.
Further, the certificate information of described information safety devices comprises: the PKI of described cipher key pair, certificate are in full.
Further, also comprised before described bound device generates first packet with the identification information binding back of the certificate of user's accounts information and information safety devices: described bound device generates accounts information, for: described bound device generates accounts information according to the initial user information that the user submits to, or described bound device is transferred the accounts information that is stored in the described bound device.
Further, described application terminal receives the information that described bound device sends, and verifies that the process of the validity of described second packet is specially:
Described application terminal obtains the PKI of described information safety devices from the certificate information of described information safety devices, utilize the validity of signature of described second packet of public key verifications of described information safety devices, if the signature of described second packet of checking is effective, then store the information that described bound device sends, otherwise the prompting error message.
Further, when described application terminal verifies that the signature of described second packet is effective, then described application terminal sends checking by message to described bound device, and described bound device receives described checking by after the message, and described second packet is stored in the described information safety devices; When described application terminal verifies that the signature of described second packet is invalid, then point out error message.
Further, the identification information of the certificate of described information safety devices is a certificate serial number, and described certificate serial number is consistent with the sequence number of described information safety devices.
The embodiment of the invention provides the method for a kind of accounts information and certificate binding, by bound device accounts information and certificate are bound, the user can directly obtain the information safety devices of having bound accounts information and certificate, and is simple to operate, ensured the fail safe of user's private information.
Description of drawings
The system configuration schematic diagram of accounts information that Fig. 1 provides for the embodiment of the invention one and certificate binding;
The system configuration schematic diagram of accounts information that Fig. 2 provides for the embodiment of the invention two and certificate binding;
The method flow diagram of accounts information that Fig. 3 provides for the embodiment of the invention three and certificate binding;
The method flow diagram of accounts information that Fig. 4 provides for the embodiment of the invention four and certificate binding.
Embodiment
The invention provides the system and method for a kind of accounts information and certificate binding, the user just can directly not obtain the information safety devices that accounts information and certificate are bound by network, and handling safety is simple.Below in conjunction with accompanying drawing the accounts information of the embodiment of the invention and the system and method for certificate binding are described in detail.
Embodiment one:
As shown in Figure 1, the system of accounts information that the embodiment of the invention provides and certificate binding comprises: bound device 1, information safety devices 2 that links to each other with bound device 1 and application terminal 3 respectively; Wherein, information safety devices 2 is used for Store Credentials and key is right, and carries out the intelligent key computing; Bound device 1 is used to generate accounts information, the identification information of the certificate of accounts information and information safety devices 2 is bound generated first packet, received information safety equipment 2 utilizes private key to first packet, second packet that the back generates of signing, and the certificate information of first packet and second packet and information safety devices 2 is sent to application terminal 3; Application terminal 3 is used to receive the information that bound device 1 sends, and verifies the validity of second packet.
The embodiment of the invention provides the system of a kind of accounts information and certificate binding, and with accounts information and certificate binding, the user can directly obtain the information safety devices of having bound accounts information and certificate, has ensured the fail safe of user's private information by bound device.
Embodiment two:
On the basis of embodiment one, further, bound device 1 comprises: network interface control unit 11 is used for being connected with application terminal 3; Usb interface unit 12 is used for being connected with information safety devices 2; Binding unit 13 is used for the identification information of the certificate of user's accounts information and information safety devices 2 is bound.
Further, network interface control unit 11 comprises: Network Interface Module 111 is used for being connected with application terminal 3; Network control module 112 is used to control bound device 1 and carries out network operation.
Further, binding unit 13 comprises: search module 131, the key that is used for searching the identification information of certificate of information safety devices 2 and information safety devices 2 is right; Generation module 132 is used for generating accounts information according to initial user information, and generates first packet according to the identification information of the certificate of accounts information, information safety devices 2; Memory module 133, the private key of identification information, information safety devices 2 of certificate of certificate information, information safety devices 2 that is used for stored information safety means 2 is to first packet, second packet that the back generates of signing.
Further, generation module 132 comprises: accounts information generates submodule 1321, is used for generating accounts information according to initial user information; First packet generates submodule 1322, is used for generating first packet according to the identification information of the certificate of accounts information, information safety devices 2.
Further, information safety devices 2 comprises: first interface unit 21 is used for being connected with bound device 1; First memory cell 22 is used for storage key to, key schedule, the identification information of the certificate of information safety devices 2 and certificate information; Generation unit 23, it is right to be used for generating key according to key schedule; Signature unit 24 is used to utilize the private key of information safety devices 2 that first packet that bound device 1 generates is signed, and generates second packet, and second packet is sent to bound device 1.
Further, application terminal 3 comprises: second interface unit 31 is used for being connected with bound device 1; Second memory cell 32 is used to store the certificate information of first packet, second packet and information safety devices 2 that bound device 1 sends; Resolve authentication unit 33, be used to resolve and handle second packet that bound device 1 sends, and verify the validity of described second packet.Wherein, the validity of resolving authentication unit 33 checkings second packet is specially: the validity of signature of utilizing public key verifications second packet of information safety devices 2, when the signature of checking second packet is effective, then notify second cell stores second packet; When the signature of verifying second packet is invalid, then point out error message.
Perhaps, when the signature of resolving authentication unit 33 checkings second packet was effective, application terminal 3 sent checking by message to bound device 1, and bound device 1 receives checking by after the message, and second packet is stored in the information safety devices 2.Need to prove that the identification information of the certificate of information safety devices 2 is a certificate serial number, this certificate serial number is consistent with the sequence number of information safety devices 2.The certificate information of information safety devices 2 comprises: the PKI of cipher key pair, certificate are in full.
The embodiment of the invention provides the system of a kind of accounts information and certificate binding, by bound device accounts information and certificate are bound, the user can directly obtain the information safety devices of having bound accounts information and certificate, and is simple to operate, and ensured the fail safe of user's private information.
Embodiment three:
As shown in Figure 3, present embodiment provides the method for a kind of accounts information and certificate binding, comprising:
Present embodiment provides the method for a kind of accounts information and certificate binding, by bound device accounts information and certificate are bound, the user can directly obtain the information safety devices of having bound accounts information and certificate, and is simple to operate, ensured the fail safe of user's private information.
Embodiment four:
As shown in Figure 4, present embodiment provides the method for a kind of accounts information and certificate binding, in the present embodiment, information safety devices is USB Key, the application terminal is Internet bank application terminal, and this system applies is in Internet bank's environment, and how the information safety devices that is specifically described the Internet bank realizes flow process that the certificate of user's accounts information and USB Key is bound, be the method for a kind of accounts information and certificate binding, the specific implementation step is as follows:
In the present embodiment, accounts information can also be stored in the database of bound device inside in advance, and then this step is that bound device is transferred the accounts information that is stored in the bound device.
Further, first packet also comprises the PKI of cipher key pair of identification information, the USB Key of the certificate of USB Key.The identification information of the certificate of USB Key is specially sequence number, this sequence number is consistent with the sequence number of USB Key, this sequence number can for: alphabetical information, digital information, the information that carries check digit and alphabetical information, digital information, carry the ensemble of communication of check digit, in the present embodiment, the sequence number of USB Key is specially digital information.
The certificate information of USB Key comprises: the PKI of cipher key pair, certificate are in full.
Whether step 2006, Internet bank application terminal obtain the PKI of USB Key from the certificate information of USB Key, and utilize the signature of public key verifications second packet of USB Key effective; If then execution in step 2007, if not, then execution in step 2009;
In this step, when Internet bank application terminal verifies that the signature of second packet is effective, can also be that the application terminal sends checking to bound device and passes through message, bound device receives checking by after the message, and second packet is stored in the information safety devices.
The information stores that step 2007, Internet bank application terminal send bound device is in database;
In the present embodiment, this step can also send checking by message to bound device for: Internet bank application terminal, and bound device receives checking by after the message, and second packet is stored among the USB Key.
The embodiment of the invention provides the method for a kind of accounts information and certificate binding, by bound device accounts information and certificate are bound, the user can directly obtain the information safety devices of having bound accounts information and certificate, and is simple to operate, ensured the fail safe of user's private information.
The above; only be the specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, anyly is familiar with those skilled in the art in the technical scope that the present invention discloses; can expect easily changing or replacing, all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of claim.
Claims (17)
1, the system of a kind of accounts information and certificate binding is characterized in that, comprising:
Bound device, information safety devices and the application terminal that is connected with described bound device respectively; Wherein,
Described information safety devices is used for Store Credentials and key is right, and carries out the intelligent key computing;
Described bound device, be used to generate accounts information, the identification information of the certificate of described accounts information and described information safety devices is bound generated first packet, receive second packet that generates after described information safety devices utilizes private key that described first packet is signed, and the certificate information of described first packet and described second packet and described information safety devices is sent to the application terminal;
Described application terminal is used to receive the information that described bound device sends, and verifies the validity of described second packet.
2, the system of accounts information according to claim 1 and certificate binding is characterized in that,
Described bound device comprises:
The network interface control unit is used for being connected with described application terminal;
Usb interface unit is used for being connected with described information safety devices;
The binding unit is used for the identification information of the certificate of described accounts information and described information safety devices is bound.
3, the system of accounts information according to claim 2 and certificate binding is characterized in that,
Described network interface control unit comprises:
Network Interface Module is used for being connected with described application terminal;
Network control module is used to control described bound device and carries out network operation.
4, the system of accounts information according to claim 2 and certificate binding is characterized in that,
Described binding unit comprises:
Search module, the key that is used for searching the identification information of certificate of described information safety devices and described information safety devices is right;
Generation module is used for generating accounts information according to initial user information, and generates first packet according to the identification information of the certificate of described accounts information, described information safety devices.
Memory module, the private key that is used to store the identification information of the certificate of the certificate information of described information safety devices, described information safety devices, described information safety devices is to described first packet second packet that the back generates of signing.
5, the system of accounts information according to claim 4 and certificate binding is characterized in that,
Described generation module specifically comprises:
Accounts information generates submodule, is used for generating accounts information according to initial user information;
First packet generates submodule, is used for generating first packet according to the identification information of the certificate of described accounts information, described information safety devices.
6, the system of accounts information according to claim 1 and certificate binding is characterized in that,
Described information safety devices comprises:
First interface unit is used for being connected with described bound device;
First memory cell is used for identification information and the certificate information of storage key to the certificate of, key schedule, described information safety devices;
Generation unit, it is right to be used for generating key according to key schedule;
Signature unit is used to utilize the private key of described information safety devices that first packet that described bound device generates is signed, and generates second packet, and described second packet is sent to described bound device.
7, the system of accounts information according to claim 1 and certificate binding is characterized in that,
Described application terminal comprises:
Second interface unit is used for being connected with described bound device;
Second memory cell is used to store the certificate information of first packet, second packet and described information safety devices that described bound device sends;
Resolve authentication unit, be used to resolve and handle second packet that described bound device sends, and verify the validity of described second packet.
8, the system of accounts information according to claim 7 and certificate binding, it is characterized in that, described parsing authentication unit verifies that the validity of described second packet is specially: the validity of signature of utilizing described second packet of public key verifications of described information safety devices, when the signature of described second packet of checking is effective, notify described second cell stores described second packet; When the signature of verifying described second packet is invalid, then point out error message.
9, the system of accounts information according to claim 8 and certificate binding, it is characterized in that, when the signature of verifying described second packet when described parsing authentication unit is effective, described application terminal sends checking to described bound device and passes through message, described bound device receives described checking by after the message, and described second packet is stored in the described information safety devices.
10, the system of accounts information according to claim 1 and certificate binding is characterized in that,
The identification information of the certificate of described information safety devices is a certificate serial number, and described certificate serial number is consistent with the sequence number of described information safety devices.
11, the system of accounts information according to claim 1 and certificate binding is characterized in that the certificate information of described information safety devices comprises: the PKI of described cipher key pair, certificate are in full.
12, the method for a kind of accounts information and certificate binding is characterized in that, comprising:
Bound device generates first packet with the identification information binding back of the certificate of user's accounts information and information safety devices, receive private key that described information safety devices utilizes cipher key pair to described first packet second packet that the back generates of signing, and the certificate information of described first packet and described second packet and described information safety devices is sent to the application terminal;
Described application terminal receives the information that described bound device sends, and verifies the validity of described second packet.
13, the method for accounts information according to claim 12 and certificate binding is characterized in that the certificate information of described information safety devices comprises: the PKI of described cipher key pair, certificate are in full.
14, the method for accounts information according to claim 12 and certificate binding, it is characterized in that, also comprised before described bound device generates first packet with the identification information binding back of the certificate of user's accounts information and information safety devices: described bound device generates accounts information, be specially: described bound device generates accounts information according to the initial user information that the user submits to, or described bound device is transferred the accounts information that is stored in the described bound device.
15, the method for accounts information according to claim 12 and certificate binding is characterized in that, described application terminal receives the information that described bound device sends, and verifies that the process of the validity of described second packet is specially:
Described application terminal obtains the PKI of described information safety devices from the certificate information of described information safety devices, utilize the validity of signature of described second packet of public key verifications of described information safety devices, if the signature of described second packet of checking is effective, then store the information that described bound device sends, otherwise the prompting error message.
16, the method for accounts information according to claim 12 and certificate binding is characterized in that,
When described application terminal verifies that the signature of described second packet is effective, described application terminal sends checking to described bound device and passes through message, described bound device receives described checking by after the message, and described second packet is stored in the described information safety devices; When described application terminal verifies that the signature of described second packet is invalid, then point out error message.
17, the method for accounts information according to claim 12 and certificate binding is characterized in that,
The identification information of the certificate of described information safety devices is a certificate serial number, and described certificate serial number is consistent with the sequence number of described information safety devices.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102470542A CN101527634B (en) | 2008-12-31 | 2008-12-31 | System and method for binding account information with certificates |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008102470542A CN101527634B (en) | 2008-12-31 | 2008-12-31 | System and method for binding account information with certificates |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101527634A true CN101527634A (en) | 2009-09-09 |
| CN101527634B CN101527634B (en) | 2011-08-17 |
Family
ID=41095344
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008102470542A Expired - Fee Related CN101527634B (en) | 2008-12-31 | 2008-12-31 | System and method for binding account information with certificates |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101527634B (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103875211A (en) * | 2013-08-23 | 2014-06-18 | 华为技术有限公司 | Internet account management method, manager, server, and system |
| CN103973647A (en) * | 2013-01-31 | 2014-08-06 | 华为终端有限公司 | Application access method and equipment |
| CN104283885A (en) * | 2014-10-14 | 2015-01-14 | 中国科学院信息工程研究所 | Multi-SP safety binding implementation method based on intelligent terminal local authentication |
| CN104851044A (en) * | 2015-04-22 | 2015-08-19 | 中国建设银行股份有限公司 | Output method and apparatus for account security medium |
| CN105205372A (en) * | 2015-08-26 | 2015-12-30 | 宇龙计算机通信科技(深圳)有限公司 | Digital certificate reading method, device and system for terminal, and terminal |
| CN105373397A (en) * | 2014-08-25 | 2016-03-02 | 施耐德电气建筑有限公司 | Specialized app development and deployment system and method |
| CN106302476A (en) * | 2016-08-19 | 2017-01-04 | 腾讯科技(深圳)有限公司 | Network node encryption method and network node encryption device |
| CN107896221A (en) * | 2017-12-01 | 2018-04-10 | 北京深思数盾科技股份有限公司 | A kind of account binding method and device |
| CN110932869A (en) * | 2019-12-02 | 2020-03-27 | 北京合游时空科技有限公司 | Method, device and equipment for certificate real-name authentication |
| CN111625804A (en) * | 2020-05-22 | 2020-09-04 | 浙江大华技术股份有限公司 | Login method and device |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1808973A (en) * | 2006-01-27 | 2006-07-26 | 北京飞天诚信科技有限公司 | USB MMI information security device and its control method |
| CN101246607A (en) * | 2007-02-13 | 2008-08-20 | 陈年 | Digital authentication control method for access control system and access control system using the same |
| CN101312453B (en) * | 2007-05-21 | 2011-11-02 | 联想(北京)有限公司 | User terminal, method for login network service system |
-
2008
- 2008-12-31 CN CN2008102470542A patent/CN101527634B/en not_active Expired - Fee Related
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103973647A (en) * | 2013-01-31 | 2014-08-06 | 华为终端有限公司 | Application access method and equipment |
| CN103875211B (en) * | 2013-08-23 | 2018-02-02 | 华为技术有限公司 | A kind of internet account number management method, manager, server and system |
| CN103875211A (en) * | 2013-08-23 | 2014-06-18 | 华为技术有限公司 | Internet account management method, manager, server, and system |
| US10338904B2 (en) | 2014-08-25 | 2019-07-02 | Schneider Electric Buildings, Llc | Specialized app development and deployment system and method |
| CN105373397A (en) * | 2014-08-25 | 2016-03-02 | 施耐德电气建筑有限公司 | Specialized app development and deployment system and method |
| CN104283885B (en) * | 2014-10-14 | 2017-07-28 | 中国科学院信息工程研究所 | A kind of implementation method of many SP secure bindings based on intelligent terminal local authentication |
| CN104283885A (en) * | 2014-10-14 | 2015-01-14 | 中国科学院信息工程研究所 | Multi-SP safety binding implementation method based on intelligent terminal local authentication |
| CN104851044A (en) * | 2015-04-22 | 2015-08-19 | 中国建设银行股份有限公司 | Output method and apparatus for account security medium |
| CN105205372A (en) * | 2015-08-26 | 2015-12-30 | 宇龙计算机通信科技(深圳)有限公司 | Digital certificate reading method, device and system for terminal, and terminal |
| US11012244B2 (en) | 2016-08-19 | 2021-05-18 | Tencent Technology (Shenzhen) Company Limited | Network node encryption method and apparatus |
| CN106302476A (en) * | 2016-08-19 | 2017-01-04 | 腾讯科技(深圳)有限公司 | Network node encryption method and network node encryption device |
| WO2018032939A1 (en) * | 2016-08-19 | 2018-02-22 | 腾讯科技(深圳)有限公司 | Network node encryption method and network node encryption device |
| CN106302476B (en) * | 2016-08-19 | 2019-06-25 | 腾讯科技(深圳)有限公司 | Network node encryption method and network node encryption device |
| US11611443B2 (en) | 2016-08-19 | 2023-03-21 | Tencent Technology (Shenzhen) Company Limited | Network node encryption method and apparatus |
| CN107896221A (en) * | 2017-12-01 | 2018-04-10 | 北京深思数盾科技股份有限公司 | A kind of account binding method and device |
| CN107896221B (en) * | 2017-12-01 | 2019-11-12 | 北京深思数盾科技股份有限公司 | A kind of account binding method and device |
| CN110932869A (en) * | 2019-12-02 | 2020-03-27 | 北京合游时空科技有限公司 | Method, device and equipment for certificate real-name authentication |
| CN111625804A (en) * | 2020-05-22 | 2020-09-04 | 浙江大华技术股份有限公司 | Login method and device |
| CN111625804B (en) * | 2020-05-22 | 2023-08-11 | 浙江大华技术股份有限公司 | Login method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101527634B (en) | 2011-08-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101527634B (en) | System and method for binding account information with certificates | |
| CN109150548B (en) | Digital certificate signing and signature checking method and system and digital certificate system | |
| CN101414909B (en) | System, method and mobile communication terminal for verifying network application user identification | |
| CN101527633B (en) | Method for intelligent key devices to obtain digital certificates | |
| CN105427099A (en) | Network authentication method for secure electronic transactions | |
| CN105900375A (en) | Efficient methods for protecting identity in authenticated transmissions | |
| CN101226616A (en) | Payment server of webs, payment platform as well as payment method and system of webs | |
| CN109981287B (en) | Code signing method and storage medium thereof | |
| CN102195932A (en) | Method and system for realizing network identity authentication based on two pieces of isolation equipment | |
| KR101385429B1 (en) | Method for authenticating individual of electronic contract using nfc, authentication server and terminal for performing the method | |
| CN110708162B (en) | Resource acquisition method and device, computer readable medium and electronic equipment | |
| CN102694781A (en) | Internet-based system and method for security information interaction | |
| KR100939725B1 (en) | Certification method for a mobile phone | |
| CN102694782A (en) | Internet-based device and method for security information interaction | |
| CN105429991A (en) | Efficient data transmission method for mobile terminal | |
| CN110210863A (en) | Block chain method for secure transactions, device, electronic equipment and storage medium | |
| KR20190115515A (en) | AUTHENTICATION METHOD AND SYSTEM OF IoT(Internet of Things) DEVICE BASED ON PUBLIC KEY INFRASTRUCTURE | |
| CN111651745B (en) | Application authorization signature method based on password equipment | |
| CN1697376A (en) | Method and system for authenticating or enciphering data by using IC card | |
| CN115796871A (en) | Resource data processing method and device based on block chain and server | |
| TW201303780A (en) | System and method for applying financial certificate using a mobile telecommunication device | |
| CN104301288A (en) | Method and system for online identity authentication, online transaction certification, and online certification protection | |
| CN102819799A (en) | Multi-channel safety authenticating system and authenticating method based on U-Key | |
| CN106936760A (en) | A kind of apparatus and method of login Openstack cloud system virtual machines | |
| CN102546168A (en) | Communication device for identity authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110817 |