CN102377573A - Double-factor authentication method capable of securely updating password - Google Patents

Double-factor authentication method capable of securely updating password Download PDF

Info

Publication number
CN102377573A
CN102377573A CN2011104064969A CN201110406496A CN102377573A CN 102377573 A CN102377573 A CN 102377573A CN 2011104064969 A CN2011104064969 A CN 2011104064969A CN 201110406496 A CN201110406496 A CN 201110406496A CN 102377573 A CN102377573 A CN 102377573A
Authority
CN
China
Prior art keywords
user
password
server
data
smart card
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2011104064969A
Other languages
Chinese (zh)
Inventor
钱海峰
李祥学
李强
黄征
郑东
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
SHANGHAI YANSHEN INFORMATION TECHNOLOGY Co Ltd
East China Normal University
Original Assignee
SHANGHAI YANSHEN INFORMATION TECHNOLOGY Co Ltd
East China Normal University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SHANGHAI YANSHEN INFORMATION TECHNOLOGY Co Ltd, East China Normal University filed Critical SHANGHAI YANSHEN INFORMATION TECHNOLOGY Co Ltd
Priority to CN2011104064969A priority Critical patent/CN102377573A/en
Publication of CN102377573A publication Critical patent/CN102377573A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

The invention relates to a double-factor authentication method capable of securely updating a password. The method comprises the following steps of: generating a public parameter and a main key by a server; registering a user, and updating the registry by the server; and logging in and/or updating the password by using mutual authentication of the password and an intelligent card. The password does not need to be updated after the server is successfully logged in, so that the calculation quantity and the traffic are greatly reduced; and the old password is invalid after the password is updated. The security of the password is ensured by mutual authentication of the user and the server in the method.

Description

But a kind of double factor identity identifying method of password security update
Technical field
What the present invention relates to is the secure authentication technology field, but particularly a kind of double factor identity identifying method of password security update.
Background technology
Along with the development of cybertimes, ecommerce, E-Government and other based on network application are have swept the globe, and the internet security problem is important all the more.The incidents such as bank's steal-number that take place in recent years make people also more and more pay attention to the safety of network trading.Authentication is used to confirm the authenticity of communication entity identity.Three kinds of factors that are used for authentication are arranged usually, comprise thing (like smart card) that the user has, thing (like password) that the user knows and user's information (like fingerprint) itself.People can use any factor to realize authentication, also can use the method for several kinds of combinations of factors to realize, the double factor method that wherein combines based on password and smart card is the most generally use at present.
In the identity authorization system based on password, it is to be used to improve security of system and widely used a kind of means that password upgrades.But; There are two kinds of defectives at least in existing double factor identity authorization system when carrying out the password update functions: otherwise password upgrades the successful execution that depends on previous login; For the more new password operation of execution entry stage earlier, this brings the increase of the amount of calculation and the traffic; Be that old password still can be used for system login after being updated, this has run counter to old password should be invalid practice knowledge after renewal.
The present invention has overcome in the prior art more, and new password needs login earlier and old password still to act on the defective of system login; But a kind of double factor identity identifying method of password security update has been proposed; Do not need earlier successful logon server new password more then; Greatly reduce the amount of calculation and the traffic, and more behind the new password old password lapse.The mutual authentication process of user and server has guaranteed the fail safe of password in the inventive method.
Summary of the invention
But the invention discloses a kind of double factor identity identifying method of password security update, it is characterized in that, comprise the steps:
Step 1: server generates open parameters and master key;
Step 2: the user chooses password according to open parameters described in the step 1, with the registration and by server for saving at said server place of the summary info of identity information and said password; Said server generates smart card and gives said user, and said server maintenance is about the registration table of said user profile;
Step 3: said user utilizes said password and smart card to login said server and/or new password more.
Wherein, in the said step 1, said open parameters is shared by said user, and said master key is by said server for saving.
Wherein, smart card has about the master key of said server and the summary info of said user identity in the said step 2, and said user can deposit the required random data of login in after receiving said smart card.
Wherein, in the said step 3, in said login process, the user confirms that the other side is the server of being logined, and said server confirms that login person is the validated user in the system.
Wherein, said login process and password renewal process realize that all the two-way authentication of said user and server to guarantee the authenticity of communicating pair identity, is that false then the opposing party withdraws from conversation procedure like either party.
Wherein, the two-way authentication but also the security update password of user and server had not only been realized in the said password renewal process.
Wherein, said login process may further comprise the steps:
Steps A 1: said user enters password, and upgrades the information in the smart card, and utilizes password and smart card to calculate data to mail to server;
Steps A 2: after said server is received said user's data sent, also search the registration table of being stored, if data misfit and then refuse said user and withdraw from through calculating; Think that then said user is legal if data are coincide, upgrade the information about said user of being stored, and provide response data;
Steps A 3: said user confirms the consistency of data after receiving said response data after, confirm that then said server is real, and provide corresponding session data as response; Said server said user's session data is done confirm to handle after and said user share session key.
Wherein, said password renewal process may further comprise the steps:
Step B1: said user's enter old password, upgrade the information in the smart card, and utilize said password and smart card to calculate the data that comprise new password information to mail to server;
Step B2: after said server is received the said data that comprise new password information; Through calculating and search the registration table of being stored; If data misfit then refusing user's and withdraw from; If coincideing, data then confirm the legal login of user; And upgrade the information about said user of being stored, and provide corresponding response data;
Step B3: said user confirms the consistency of data after receiving said response data after, confirm that then said server is real, utilizes the information in the Data Update smart card of receiving, and provides session data as response; Said server further upgrades the information about this user of being stored after said session data is done the affirmation processing.
Compared with prior art, the present invention has following beneficial effect:
1, the present invention can realize the security update of user password, and the old password that upgrades the back user lapses, and can't be used for follow-up login sessions;
2, the password renewal of the present invention's realization is direct execution, does not need successful logon server of elder generation and then execution password to upgrade and operates, thereby reduce calculation cost and communication bandwidth greatly;
3, the present invention can realize the two-way authentication of user and server, and the user can't logon server if two-way authentication is unsuccessful, also new password more, thus guaranteed the fail safe of password;
4, the double factor identity identifying method of the present invention's realization can be resisted the attack of pretending to be under the card leak case, and the assailant who promptly obtains smart card information both can't pretend to be the server user cheating, also can't pretend to be user's spoofs services device;
5, the present invention provides user's privacy protection function; Even the interactive information in any third party's acquisition login process or the password renewal process between server and user also can't be known subscriber identity information; And can't the interactive information in twice different sessions process be coupled together, thereby do not know in twice session respectively whether the user with server interaction is same.
Description of drawings
Fig. 1 is the sketch map that adopts the user authentication device of embodiment of the present invention method.
Fig. 2 is the flow chart of authentication method embodiment of the present invention.
Fig. 3 is the sketch map of the message flow between user and the server in the login process of authentication method embodiment of the present invention.
Fig. 4 is the sketch map of the message flow between family and the server in the password security process of authentication method embodiment of the present invention.
Embodiment
In conjunction with following specific embodiment and accompanying drawing, the present invention is done further detailed description, protection content of the present invention is not limited to following examples.Under spirit that does not deviate from inventive concept and scope, variation and advantage that those skilled in the art can expect all are included among the present invention, and are protection range with the appending claims.
But the double factor identity identifying method of password security update of the present invention comprises the steps:
Step 1: server generates open parameters and master key; Wherein, open parameters is shared by the user, and master key is by server for saving.
Step 2: the user chooses password according to the open parameters in the step 1, with the summary info of identity information and said password on server, locate the registration and by server for saving; Server generates smart card and gives the user, and server maintenance is about the registration table of user profile.Smart card has about the master key of server and the summary info of user identity, and the user can deposit the required random data of login in after receiving smart card.
Step 3: the user utilizes password and smart card logon server and/or new password more.In login process, the user confirms that the other side is the server logined, and server confirms that login person is the validated user in the system.
Login process and password renewal process have all realized the two-way authentication of user and server, to guarantee the authenticity of communicating pair identity.If either party is false, then the opposing party withdraws from conversation procedure, the process of logging off or password renewal process.Not only realize the two-way authentication of user and server but also realize the security update password in the password renewal process.
Login process may further comprise the steps:
Steps A 1: the user enters password, and upgrades the information in the smart card, and utilizes password and smart card to calculate data to mail to server;
Steps A 2: after server is received user's data sent, also search the registration table of being stored, if data misfit and then refuse said user and withdraw from through calculating; Think that then the user is legal if data are coincide, upgrade the information about the user of being stored, and provide response data;
Steps A 3: the user confirms then to confirm this server legitimacy after the consistency of data after receiving response data, and provides corresponding session data as response; Server user's session data is done confirm to handle after and the user share session key.
Among the present invention; When the user receiving server response (such as: A); Can utilize a part among the response data A that the data oneself known and server send (such as: a) calculate data; Compare, and another part data in these data and A (such as: b) equate, confirm that then this server is true legal.
The password renewal process may further comprise the steps:
Step B1: user's enter old password, upgrade the information in the smart card, and utilize password and smart card to calculate the data that comprise new password information to mail to server;
Step B2: after server is received the data that comprise new password information; Also search the registration table of being stored through calculating,, then confirm the legal login of user if data are coincide if data misfit then refusing user's and withdraw from; And upgrade the information about the user of being stored, and provide corresponding response data;
Step B3: the user confirms the consistency of data after receiving response data after, confirm that then said server is real, utilizes the information in the Data Update smart card of receiving, and provides session data as response; Server further upgrades the information about this user of being stored after session data is done the affirmation processing.
Login process does not comprise the meaning of change password among the present invention.In the general double factor authentication scheme of prior art, the user must carry out a login process earlier for change password, carries out the change password process then, is an operating process that precedence is arranged.But one of main feature of the present invention can be accomplished login process and change password process exactly simultaneously, and the calculation cost of spending and communication cost to save compared with prior art a lot, the cost of spending with the login process of prior art approximately is more or less the same.
Shown in Figure 1, but be the block diagram of user authentication device that adopts the double factor identity identifying method of password security update of the present invention, and user authentication device comprises central processing unit (CPU), server, key-press input unit, display unit, smart card reading unit; Behind the smart card reading unit insertion smart card and password through keyboard input unit input oneself of user through user authentication device; Smart card content that central processing unit (CPU) reads utilization and user's password calculate, and carry out mutual with remote server.Both mutual results are that server allows user's login/password to upgrade, and perhaps interrupt session owing to one among both for illegal.Authentication result shows by display unit.
Shown in Figure 2 is the flow chart of explaining the preferred embodiment of the present invention, between remote server and user end computer, uses user authentication device and authentication method of the present invention shown in Figure 1, comprises the steps:
Step 1, at the parameter generation phase, server generation system parameter.
Server S is selected big prime number p, generates elliptic curve E:y 2=x 3+ ax+b, a wherein, b ∈ Z pAnd 4a 3+ 27b 2Modp ≠ 0, rank of choosing on the E are the some G of n.Server S is further selected Z nIn random number x be the master key of oneself, calculating P=xG is the PKI of oneself.At last, server S is selected hash function h, H, H 1, H 2With H 3And together with (G P) supplies system user to use as open parameters together for p, E.
Step 2, at registration phase, identity is ID uUser U accomplish registration process at the server place.
Said registration process is:
1. user U selection PW is the password of oneself, selects random number b and α, calculates k u=h (PW||b), and with ID u, α and k uSend to server S;
2. server S is selected random number c u, calculate k s=h (P||x), t=H (k s, ID u, k u, c u), make α u=α will write down (ID u, α u, c u) add among the registration table T of oneself, the smart card that will contain t and P is given the user;
3. user U further also deposits b and α in the smart card, and so far registration process finishes.
Among the present invention; Maintenance is meant about the registration table of user profile; The corresponding user's of each row in this table information, the user is in login process or password modification process, and the user message table of server stores can be made amendment to the information about this user in this table according to the needs in the conversation procedure; Such as, changed certain numeral in the table into the another one numeral.User profile can use (user name, random number) mode to carry out record.In the present embodiment, for example: (ID u, α u, c u).The user profile recording mode is unrestricted, can answer method for designing different and different.
Step 3; In entry stage; The user utilizes password of oneself knowing and the smart card logon server that has, and during logining, user and server are accomplished two-way authentication; Be that the user believed that the other side is server really after login sessions was accomplished, server believes that also the other side is the validated user in the system really.
As shown in Figure 3, login process is specially:
1. steps A 1: user U enter password PW and insert smart card after, select random number r u, calculate A=r uG, α=α+1, B = ( ID u | | α | | k u | | H ( A , ID u , α , k u , t ) ) ⊕ H 1 ( r u P ) , With data I: A, B mails to server;
2. steps A 2: server S receive (A, B) after will
Figure BSA00000632072700052
Be interpreted as ID u|| α || k u‖ σ checks in registration table T: as there being record (ID then u, α u, c u) make α>α uAnd σ=H (A, ID u, α, k u, H (k s, ID u, k u, c u)), the step (otherwise refusal) below then continuing: in registration table, upgrade α u=α selects random number r s, calculate C=r sG, K=H 2(xA, A, C, r sA), and X=H (K, C), with response data II: (C X) issues the user;
3. steps A 3: user U receives (C, X) back calculating K=H 2(r uP, A, C, r uC) and check X=H (K, C) whether set up: as not being, denial of service device and withdrawing from then; Otherwise, make that K is the follow-up confidential corespondence that session key is used for user U and server S, and (K X) sends to server S with session data I II:Y=H.Server S inspection Y=H (K, whether X) set up: in this way, getting K is session key; Otherwise refusal also withdraws from.
In execution in step three, in the password security update stage, user password PW that oneself knows capable of using and the smart card that has and server interaction safely are updated to user U selected new password PW ' with password by PW to accomplish the password renewal process.
In login process, (A is to user identity ID B) to the information that the user sends uEncryption; Even this has guaranteed that the assailant can obtain that (A B) also can't be known this user identity thus, and the encryption method that is adopted is probabilistic; Even thereby the assailant obtains the data (A in the different sessions; B) and (A ', B '), can't confirm thus also to participate in whether the user is same user in this twice conversation procedure.In addition; Data in the login process (C, X) all irrelevant with subscriber identity information with Y, so even if the assailant has obtained (C; X) and Y also can't know this user identity thus, also can not confirm whether the user in the different sessions process is same user with these data.
As shown in Figure 4, said password renewal process is specially:
1. step B1: user U enter password PW, PW ' and insert smart card after, select random number b ', r u, calculate A=r uG, α=α+1, k u=h (PW ‖ b), k u'=h (PW ' || b '), B = ( ID u | | α | | k u | | k u ′ | | H ( A , ID u , α , k u , k u ′ , t ) ) ⊕ H 3 ( r u P ) , To count
According to I ': A, B mails to server;
2. step B2: server S receives that (A will after B)
Figure BSA00000632072700062
Be interpreted as ID u|| α || k u‖ k u' ‖ σ checks in registration table T: as there being record (ID then u, α u, c u) make α>α uAnd σ=H (A, ID u, α, k u, k u', H (k s, ID u, k u, c u)), the step (otherwise refusal) below then continuing: in registration table, upgrade α u=α selects random number c u', calculating K c=H 2(k u, k u', xA, A), t '=H (k s, ID u, k u', c u'),
Figure BSA00000632072700063
X=H (K c, C), with response data II ': (C X) issues the user;
3. step B3: user U receives (C, X) back calculating K c=H 2(h (PW ‖ b), and h (PW ' || b '), r uP, r uG), inspection X=H (K c, C) whether set up: be false, then withdraw from; Otherwise, use K cDeciphering C calculates t '=H (k s, ID u, k u', c u'), upgrading t=t ', b=b ' is with session data I II ': Y=H (K c, X) send to server S.Server S inspection Y=H (K c, X) whether set up: in this way, upgrade c u=c u'; Otherwise, in T with (ID u, α u, c u, c u') replacement (ID u, α u, c u).
No matter be in login process or password renewal process, in case server S receive that user U sends (A B), and is checked through in T and contains ID uRecord (ID u, α u, c u, c u'), server S is just left out can not make σ=H (A, ID u, α, k u, H (k s, ID u, k u, c u)) or σ=H (A, ID u, α, k u, k u', H (k s, ID u, k u, c u)) c that sets up uOr c u', thereby safeguarded the effective tlv triple among the T.
Similar with login process, the assailant can't utilize the information that occurs in the password renewal process (A, B), (C X) confirms user's identity with Y, also can not confirm whether the user in the different sessions process is same user with these data.
Among the present invention, login process is incomplete same with the message flow of new password process more, and the method that the data computation that is adopted is come out is different.Thereby realized one of the object of the invention: for change password; The present invention only need carry out password modification process of the present invention; And need not carry out the login process in this method earlier as those methods of other prior aries, carry out the password modification process in this method again.
User and server can be realized two-way authentication in the present embodiment, and the user can freely select or change the password of oneself, and old password can not continue on for follow-up login authentication after renewal.Different with other double factor identity identifying method of the prior art is, the user need not carry out login process earlier before password upgrades, but but when realizing two-way authentication with server with regard to change password, thereby practiced thrift amount of calculation and communication bandwidth.Identity identifying method provided by the invention satisfies the security requirement of double factor authentication, guarantees that the assailant both can't pretend to be the server user cheating, also can't pretend to be user's spoofs services device under the situation that smart card is revealed; Do not have under the situation of smart card only knowing password, the user also can't logon server.

Claims (8)

1. but the double factor identity identifying method of a password security update is characterized in that, comprises the steps:
Step 1: server generates open parameters and master key;
Step 2: the user chooses password according to open parameters described in the step 1, with the registration and by server for saving at said server place of the summary info of identity information and said password; Said server generates smart card and gives said user, and said server maintenance is about the registration table of said user profile;
Step 3: said user utilizes said password and smart card to login said server and/or new password more.
2. but the double factor identity identifying method of password security update according to claim 1 is characterized in that, in the said step 1, said open parameters is shared by said user, and said master key is by said server for saving.
3. but the double factor identity identifying method of password security update according to claim 1; It is characterized in that; Smart card has about the master key of said server and the summary info of said user identity in the said step 2, and said user can deposit the required random data of login in after receiving said smart card.
4. but the double factor identity identifying method of password security update according to claim 1; It is characterized in that; In the said step 3, when the user confirmed that the other side is the server of being logined, said server confirmed that login person is the validated user in the system in said login process.
5. but the double factor identity identifying method of password security update according to claim 1 is characterized in that, said login process and password renewal process realize that all the two-way authentication of user and server is to guarantee the authenticity of communicating pair identity; When either party is false, then the opposing party withdraws from conversation procedure.
6. but the double factor identity identifying method of password security update according to claim 1; It is characterized in that; Said user does not need earlier successfully to login said server and upgrades the password of oneself again, but in the password renewal process, has not only realized the two-way authentication but also the security update password of user and server.
7. but the double factor identity identifying method of password security update according to claim 1 is characterized in that said login process may further comprise the steps:
Steps A 1: said user enters password, and upgrades the information in the smart card, and utilizes password and smart card to calculate data to mail to server;
Steps A 2: after said server is received said user's data sent, also search the registration table of being stored, if data misfit and then refuse said user and withdraw from through calculating; Think that then said user is legal if data are coincide, upgrade the information about said user of being stored, and provide response data;
Steps A 3: said user confirms the consistency of data after receiving said response data after, confirm that then said server is real, and provide corresponding session data as response; Said server said user's session data is done confirm to handle after and said user share session key.
8. but the double factor identity identifying method of password security update as claimed in claim 1 is characterized in that, said password renewal process may further comprise the steps:
Step B1: said user's enter old password, upgrade the information in the smart card, and utilize said password and smart card to calculate the data that comprise new password information to mail to server;
Step B2: after said server is received the said data that comprise new password information; Through calculating and search the registration table of being stored; If data misfit then refusing user's and withdraw from; If coincideing, data then confirm the legal login of user; And upgrade the information about said user of being stored, and provide corresponding response data;
Step B3: said user confirms the consistency of data after receiving said response data after, confirm that then this server is real, utilizes the information in the Data Update smart card of receiving, and provides session data as response; Said server further upgrades the information about this user of being stored after said session data is done the affirmation processing.
CN2011104064969A 2011-12-08 2011-12-08 Double-factor authentication method capable of securely updating password Pending CN102377573A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2011104064969A CN102377573A (en) 2011-12-08 2011-12-08 Double-factor authentication method capable of securely updating password

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2011104064969A CN102377573A (en) 2011-12-08 2011-12-08 Double-factor authentication method capable of securely updating password

Publications (1)

Publication Number Publication Date
CN102377573A true CN102377573A (en) 2012-03-14

Family

ID=45795598

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2011104064969A Pending CN102377573A (en) 2011-12-08 2011-12-08 Double-factor authentication method capable of securely updating password

Country Status (1)

Country Link
CN (1) CN102377573A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103338202A (en) * 2013-07-02 2013-10-02 山东科技大学 Remote user password dual-verification method based on intelligent card
CN103338201A (en) * 2013-07-02 2013-10-02 山东科技大学 Remote identity authentication method participated in by registration center under multi-sever environment
CN103347021A (en) * 2013-07-02 2013-10-09 华东师范大学 Multi-server safety certification method based on passwords capable of being memorized by people
CN103347018A (en) * 2013-07-02 2013-10-09 山东科技大学 Long-distance identity authentication method based on intelligent card and under multiple-service environment
CN103905437A (en) * 2014-03-22 2014-07-02 哈尔滨工程大学 Remote protocol authentication method based on passwords
CN109347887A (en) * 2018-12-17 2019-02-15 郑州云海信息技术有限公司 A kind of identity authentication method and device
CN110838920A (en) * 2019-11-20 2020-02-25 北京航空航天大学 Password authentication and key agreement protocol in web system without storing password related information
CN112966238A (en) * 2021-03-09 2021-06-15 西安邮电大学 Identity authentication method based on Chinese characters

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1069726A2 (en) * 1999-07-13 2001-01-17 Lucent Technologies Inc. Secure mutual network authentication protocol
CN1889432A (en) * 2006-07-13 2007-01-03 上海交通大学 Long-distance password identifying method based on smart card, smart card, server and system
CN101729244A (en) * 2008-10-24 2010-06-09 中兴通讯股份有限公司 Method and system for distributing key

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1069726A2 (en) * 1999-07-13 2001-01-17 Lucent Technologies Inc. Secure mutual network authentication protocol
CN1889432A (en) * 2006-07-13 2007-01-03 上海交通大学 Long-distance password identifying method based on smart card, smart card, server and system
CN101729244A (en) * 2008-10-24 2010-06-09 中兴通讯股份有限公司 Method and system for distributing key

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103338202A (en) * 2013-07-02 2013-10-02 山东科技大学 Remote user password dual-verification method based on intelligent card
CN103338201A (en) * 2013-07-02 2013-10-02 山东科技大学 Remote identity authentication method participated in by registration center under multi-sever environment
CN103347021A (en) * 2013-07-02 2013-10-09 华东师范大学 Multi-server safety certification method based on passwords capable of being memorized by people
CN103347018A (en) * 2013-07-02 2013-10-09 山东科技大学 Long-distance identity authentication method based on intelligent card and under multiple-service environment
CN103338201B (en) * 2013-07-02 2016-06-08 山东科技大学 The remote identity authentication method that under a kind of environment of multi-server, registration center participates in
CN103347021B (en) * 2013-07-02 2016-08-10 华东师范大学 A kind of can the multiserver safety certifying method of memory cipher based on people
CN103338202B (en) * 2013-07-02 2016-10-26 山东科技大学 A kind of long-distance user's password double verification method based on smart card
CN103905437A (en) * 2014-03-22 2014-07-02 哈尔滨工程大学 Remote protocol authentication method based on passwords
CN103905437B (en) * 2014-03-22 2017-02-22 哈尔滨工程大学 Remote protocol authentication method based on passwords
CN109347887A (en) * 2018-12-17 2019-02-15 郑州云海信息技术有限公司 A kind of identity authentication method and device
CN110838920A (en) * 2019-11-20 2020-02-25 北京航空航天大学 Password authentication and key agreement protocol in web system without storing password related information
CN112966238A (en) * 2021-03-09 2021-06-15 西安邮电大学 Identity authentication method based on Chinese characters

Similar Documents

Publication Publication Date Title
CN111046352B (en) Identity information security authorization system and method based on block chain
US11689366B2 (en) Cryptoasset custodial system with vault-specific rules governing different actions allowed for different vaults
RU2747947C2 (en) Systems and methods of personal identification and verification
CN102377573A (en) Double-factor authentication method capable of securely updating password
CN101183932B (en) Security identification system of wireless application service and login and entry method thereof
CN101414909B (en) System, method and mobile communication terminal for verifying network application user identification
EP3997605A1 (en) Cryptoasset custodial system with proof-of-stake blockchain support
CN109983466A (en) A kind of account management system and management method, storage medium based on block chain
EP3997606B1 (en) Cryptoasset custodial system with custom logic
CN107181765A (en) Network digital identity identifying method based on block chain technology
CN109447647A (en) A kind of safety payment system based on block chain
CN110958110A (en) Block chain private data management method and system based on zero knowledge proof
CN106027501B (en) A kind of system and method for being traded safety certification in a mobile device
KR20180022507A (en) Method for providing document delivery service that is based on the block chain
CN110069918A (en) A kind of efficient double factor cross-domain authentication method based on block chain technology
CN103338201B (en) The remote identity authentication method that under a kind of environment of multi-server, registration center participates in
CN109274505A (en) A kind of anonymous electronic voting method based on block chain technology
CN103853950A (en) Authentication method based on mobile terminal and mobile terminal
CN104079413A (en) Enhancement type one-time dynamic password authentication method and system
CN109741800A (en) The method for security protection of medical data intranet and extranet interaction based on block chain technology
CN102043937A (en) Card reader capable of generating dynamic passwords as well as dynamic password authentication system and method
CN108400962A (en) A kind of Authentication and Key Agreement method under multiserver framework
CN109816386A (en) Data get through method on a kind of chain of the unified identity authentication based on block chain
CN105871923A (en) Information processing method, information recording nodes and participation nodes
CN104125230A (en) Short message authentication service system and authentication method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20120314