CN101895391A - Card-type dynamic password identity authentication equipment and implementation method thereof - Google Patents
Card-type dynamic password identity authentication equipment and implementation method thereof Download PDFInfo
- Publication number
- CN101895391A CN101895391A CN2009100571026A CN200910057102A CN101895391A CN 101895391 A CN101895391 A CN 101895391A CN 2009100571026 A CN2009100571026 A CN 2009100571026A CN 200910057102 A CN200910057102 A CN 200910057102A CN 101895391 A CN101895391 A CN 101895391A
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- card
- equipment
- identity authentication
- password
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention aims to provide card-type dynamic password identity authentication equipment and an implementation method thereof for effectively solving the problems of equipment custody, equipment carrying, insufficient password strength, irreversibility of generated dynamic password, lower safety, high system consumption and the like in the identity authentication field. The invention relates to the card-type dynamic password identity authentication equipment, which comprises a card; a dynamic password chip, a display, a crystal oscillator, a storage medium, a power supply and a control circuit are arranged in the card; and the control circuit is connected with the dynamic password chip, the displayer, the crystal oscillator, the storage medium and the power supply respectively. The dynamic password equipment can be integrated to a standard financial card in a card mode, and the operating right of a user at a terminal is authenticated through the dynamic password generated by the dynamic password equipment so that the custody and the carrying of the user authentication equipment are convenient, the password strength is high and the safety of the user account and the equity is fully guaranteed.
Description
Technical field
The present invention relates to a kind of card-type dynamic password identity authentication equipment and its implementation.
Background technology
Authentication is the important topic of information security field.The user at first will verify whether user's identity is legal by certain ID authentication mechanism before any system of visit.After the authentication success, could or carry out a certain operation according to some resource of user's legal identity access system.In order to improve the fail safe of authentication, adopt the auxiliary mode of hardware device realizing strong identity authentication at present usually, these have the hardware device of authentication function, and often volume ratio is bigger, is difficult to keeping and carries.
The present invention is based on the basis of identity authorization system, and the dynamic password chip is integrated on the common fiscard or IC-card.About identity authorization system and identity identifying method, can be with reference to documents 1.
Documents 1, number of patent application: 200810040274.8, patent name: a kind of identity authorization system and identity identifying method, the applying date: on July 7th, 2008, applicant: Tan Jianfeng based on the ECC algorithm.This invention relates to a kind of identity authorization system and identity identifying method based on the ECC algorithm, comprise client-side interface, card-type dynamic password identity authentication equipment, application terminal, certificate server, management system and database, client-side interface is connected with card-type dynamic password identity authentication equipment, client-side interface is connected with the application terminal, the application terminal is connected with certificate server, certificate server is connected with management system, certificate server is connected with database, and management system is connected with database.This invention can improve the security performance of dynamic password identification authenticating, the verifying speed of accelerating authentication center, the consumption of minimizing system space, conserve network bandwidth.
Summary of the invention
The purpose of this invention is to provide a kind of card-type dynamic password identity authentication equipment and its implementation, can effectively solve problems such as equipment keeping, equipment carry in the field of identity authentication, Cipher Strength is not enough, the generation dynamic password is irreversible, fail safe is lower, system consumption is big.The present invention relates to a kind of card-type dynamic password identity authentication equipment, comprise card, be provided with dynamic password chip, display, crystal oscillator, storage medium, power supply, control circuit in the described card, control circuit is connected with dynamic password chip, display, crystal oscillator, storage medium, power supply respectively.Described card is fiscard or IC-card.Described display is a LCD.Power supply is the papery battery.
The implementation method of card-type dynamic password identity authentication equipment is characterized in that, may further comprise the steps:
1) card-type dynamic password identity authentication equipment time that will be stored in Equipment Serial Number in the internal memory and crystal oscillator and provide offers the dynamic password chip and carries out encryption, and the dynamic password chip generates dynamic password, delivers to display screen;
2) user is input to the dynamic password that shows on the display screen in the password box of log-in interface of application terminal;
3) certificate server obtains user.name and password;
4) in database, take out this user's the information and the information of the card-type device that the user binds in advance, will withdraw from authentication and return error message, successfully will carry out next step operation if read information if read the information failure;
5) certificate server produces corresponding dynamic password with current time of Equipment Serial Number in the information of returning in the step 4) and server algorithm by used dynamic password chip;
6) dynamic password that the password of input and step 5) are produced compares, if more successfully will return success message number, if relatively failure will be returned error message number;
7) will authenticate overall process and make the authentication daily record data, be inserted in the database.
The invention has the advantages that: the present invention can pass through card mode, dynamic password equipment is integrated on the standard fiscard, the operational rights of dynamic cipher verification user on terminal that generates by dynamic password equipment again, it is convenient to make user authentication device take care of and carry, the Cipher Strength height, thus the fail safe of user account and rights and interests fully ensured.
Description of drawings
Accompanying drawing 1 is the structural representation of intermediate champing dynamic password ID authentication device of the present invention;
Accompanying drawing 2 is the working state schematic representation of intermediate champing dynamic password ID authentication device of the present invention;
Accompanying drawing 3 is realized the flow chart of identity recognition function for intermediate champing dynamic password ID authentication device of the present invention.
Embodiment
The present invention is described in detail below in conjunction with accompanying drawing.
Comprise card 1 among the figure, be provided with dynamic password chip 2, display 3, crystal oscillator 4, storage medium 5, power supply 6, control circuit 7 in the described card, control circuit is connected with dynamic password chip, display, storage medium, power supply respectively.
Described card is fiscard or IC-card, and described display is a LCD, preferred LCD LCD.
Power supply is a battery, preferred papery battery, and the model that the preferred Solilove of papery battery manufactory produces is the papery battery of SF-4823-2SEC-002.
Described control circuit links together above-mentioned each module, makes it the operate as normal of working in coordination.
The dynamic password chip can be the iKEY dynamic password chip of Shanghai People Network Security Technology Co., Ltd., it is the identity authorization system that relates in the documents 1 based on the ECC algorithm, comprise client-side interface, card-type dynamic password identity authentication equipment, the application terminal, certificate server, management system and database, client-side interface is connected with card-type dynamic password identity authentication equipment, client-side interface is connected with the application terminal, the application terminal is connected with certificate server, certificate server is connected with management system, certificate server is connected with database, and management system is connected with database.
The implementation method of card-type dynamic password identity authentication equipment may further comprise the steps:
1) card-type dynamic password identity authentication equipment time that will be stored in Equipment Serial Number in the internal memory and crystal oscillator and provide offers the dynamic password chip and carries out encryption, and the dynamic password chip generates dynamic password, delivers to display screen;
2) user is input to the dynamic password that shows on the display screen in the password box of log-in interface of application terminal;
If be provided with PIN code, this need comprise PIN code in the previous section of password.
3) certificate server obtains user.name and password;
4) in database, take out this user's the information and the information of the card-type device that the user binds in advance, will withdraw from authentication and return error message, successfully will carry out next step operation if read information if read the information failure;
5) certificate server produces corresponding dynamic password with current time of Equipment Serial Number in the information of returning in the step 4) and server algorithm by used dynamic password chip;
6) dynamic password that the password of input and step 5) are produced compares, if more successfully will return success message number, if relatively failure will be returned error message number;
If be provided with PIN code, then relatively the time, also need before dynamic password, add PIN code.
7) will authenticate overall process and make the authentication daily record data, be inserted in the database.
Claims (5)
1. card-type dynamic password identity authentication equipment, comprise card, it is characterized in that: be provided with dynamic password chip, display, crystal oscillator, storage medium, power supply, control circuit in the described card, control circuit is connected with dynamic password chip, display, crystal oscillator, storage medium, power supply respectively.
2. require described a kind of card-type dynamic password identity authentication equipment as right 1, it is characterized in that: described card is fiscard or IC-card.
3. require described a kind of card-type dynamic password identity authentication equipment as right 1, it is characterized in that: described display is a LCD.
4. require described a kind of card-type dynamic password identity authentication equipment as right 1, it is characterized in that: power supply is the papery battery.
5. require the implementation method of described card-type dynamic password identity authentication equipment as right 1, it is characterized in that, may further comprise the steps:
1) card-type dynamic password identity authentication equipment time that will be stored in Equipment Serial Number in the internal memory and crystal oscillator and provide offers the dynamic password chip and carries out encryption, and the dynamic password chip generates dynamic password, delivers to display screen;
2) user is input to the dynamic password that shows on the display screen in the password box of log-in interface of application terminal;
3) certificate server obtains user.name and password;
4) in database, take out this user's the information and the information of the card-type device that the user binds in advance, will withdraw from authentication and return error message, successfully will carry out next step operation if read information if read the information failure;
5) certificate server produces corresponding dynamic password with current time of Equipment Serial Number in the information of returning in the step 4) and certificate server algorithm by used dynamic password chip;
6) dynamic password that the password of input and step 5) are produced compares, if more successfully will return success message number, if relatively failure will be returned error message number;
7) will authenticate overall process and make the authentication daily record data, be inserted in the database.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100571026A CN101895391A (en) | 2009-04-21 | 2009-04-21 | Card-type dynamic password identity authentication equipment and implementation method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009100571026A CN101895391A (en) | 2009-04-21 | 2009-04-21 | Card-type dynamic password identity authentication equipment and implementation method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101895391A true CN101895391A (en) | 2010-11-24 |
Family
ID=43104470
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009100571026A Pending CN101895391A (en) | 2009-04-21 | 2009-04-21 | Card-type dynamic password identity authentication equipment and implementation method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101895391A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102073888A (en) * | 2010-12-31 | 2011-05-25 | 上海众人网络安全技术有限公司 | Intelligent card system capable of displaying transaction data in real time and method thereof |
| CN102298718A (en) * | 2011-07-07 | 2011-12-28 | 天速特信息科技(上海)有限公司 | Multifunctional financial IC (Integrated Circuit) visible card |
| CN102323742A (en) * | 2011-04-19 | 2012-01-18 | 上海众人网络安全技术有限公司 | Clock calibration system and method for dynamic password token |
| CN102750633A (en) * | 2011-04-22 | 2012-10-24 | 文黔军 | Method for anti-counterfeiting by combining RFID (Radio Frequency Identification) technology with dynamic password token |
| CN104426897A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for performing identity re-authentication on special operation of information system by IC (integrated circuit) card technology |
| WO2016107332A1 (en) * | 2014-12-30 | 2016-07-07 | 飞天诚信科技股份有限公司 | Card-based dynamic password generation method and device |
-
2009
- 2009-04-21 CN CN2009100571026A patent/CN101895391A/en active Pending
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102073888A (en) * | 2010-12-31 | 2011-05-25 | 上海众人网络安全技术有限公司 | Intelligent card system capable of displaying transaction data in real time and method thereof |
| CN102323742A (en) * | 2011-04-19 | 2012-01-18 | 上海众人网络安全技术有限公司 | Clock calibration system and method for dynamic password token |
| CN102323742B (en) * | 2011-04-19 | 2014-03-26 | 上海众人网络安全技术有限公司 | Clock calibration system and method for dynamic password token |
| CN102750633A (en) * | 2011-04-22 | 2012-10-24 | 文黔军 | Method for anti-counterfeiting by combining RFID (Radio Frequency Identification) technology with dynamic password token |
| CN102298718A (en) * | 2011-07-07 | 2011-12-28 | 天速特信息科技(上海)有限公司 | Multifunctional financial IC (Integrated Circuit) visible card |
| CN104426897A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for performing identity re-authentication on special operation of information system by IC (integrated circuit) card technology |
| WO2016107332A1 (en) * | 2014-12-30 | 2016-07-07 | 飞天诚信科技股份有限公司 | Card-based dynamic password generation method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20210226797A1 (en) | Authentication in ubiquitous environment | |
| CN103259667B (en) | The method and system of eID authentication on mobile terminal | |
| US8485438B2 (en) | Mobile computing device authentication using scannable images | |
| CN102696212B (en) | There is the compact safety device of transaction risk grade approval ability | |
| CN101923660B (en) | Dynamic password identity authorization system and method based on RFID | |
| CN102694782B (en) | Security information exchange device based on internet and method | |
| CN103457922B (en) | Electronic authentication client-side system, processing method, electronic authentication system and method | |
| CN102158488B (en) | Dynamic countersign generation method and device and authentication method and system | |
| CN101465019A (en) | Method and system for implementing network authentication | |
| CN102694781B (en) | Based on security information interaction system and the method for the Internet | |
| BRPI0722174B1 (en) | method and system for authenticating users in a data processing system | |
| CN102202300A (en) | System and method for dynamic password authentication based on dual channels | |
| CN101895391A (en) | Card-type dynamic password identity authentication equipment and implementation method thereof | |
| CN101626291B (en) | ECC algorithm-based identity authentication system and identity authentication method | |
| CN102542451B (en) | Electronic paying method, system and device thereof | |
| CN102377569A (en) | Dynamic token unlocking method and system | |
| KR20060102456A (en) | System and method for authenticating user, server for authenticating user and recording medium | |
| CN104579659A (en) | Device for safety information interaction | |
| US8924729B1 (en) | Systems and methods for biometric E-signature | |
| CN102170437A (en) | System and method for realizing Phishing identification based on challenge password token | |
| CN102034307A (en) | Electronic wallet-based dynamic password authentication system and method | |
| CN101753301A (en) | Fingerprint dynamic password ID authentication device and the implementation method thereof | |
| CN103544598A (en) | Financial transaction safety certification system | |
| CN109447029A (en) | Electronic identity license generates system and method | |
| CN102938116A (en) | Full-link protection and management method for ensuring safety of transaction |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: SHANGHAI PEOPLE NETWORK SECURITY TECHNOLOGY CO., L Free format text: FORMER OWNER: TAN JIANFENG Effective date: 20110128 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 200072 ROOM 501, BUILDING 11, NO.1, PENGJIANG ROAD, ZHABEI DISTRICT, SHANGHAI TO: 201204 2/F, BUILDING 1, LANE 289, BISHENG ROAD, ZHANGJIANG, PUDONG NEW DISTRICT, SHANGHAI |
|
| TA01 | Transfer of patent application right |
Effective date of registration: 20110128 Address after: 201204 Shanghai city in Pudong New Area Zhangjiang road 289 Lane 1 Building 2 layer Applicant after: Shanghai PeopleNet Security Technology Co., Ltd. Address before: 200072 Shanghai city Zhabei District Pengjiang Road No. 1 building 11 Room 501 Applicant before: Tan Jianfeng |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Open date: 20101124 |