CN102629900A - Super password generation system and application method thereof - Google Patents
Super password generation system and application method thereof Download PDFInfo
- Publication number
- CN102629900A CN102629900A CN2012100566072A CN201210056607A CN102629900A CN 102629900 A CN102629900 A CN 102629900A CN 2012100566072 A CN2012100566072 A CN 2012100566072A CN 201210056607 A CN201210056607 A CN 201210056607A CN 102629900 A CN102629900 A CN 102629900A
- Authority
- CN
- China
- Prior art keywords
- code
- super
- super code
- random
- switch
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention provides a super password generation system which includes a switch device, a switch monitor of a PC side and a super password generation device, wherein the switch monitor of the PC side outputs a random check code, and then the super password generation device carries out algorithm encryption and outputs a super password based on a shorthand check code and device information. The super password generation system and the application method have the following characteristics of: (1) uniqueness: only an individual device can use the password, and since the super password is integrated with device information, the code can only be applied to the device which is completely consistent with the device information; (2) single use: access security of a user network is ensured, when a user inputs a specific character string, the device generates a random character string according to a certain algorithm, after the super password is applied, a super password mechanism is reset, execution once again is needed in use at next time, thus it is ensured that the password generated in each time is in single use.
Description
Technical field
The present invention relates to a kind of super code generation system and application process.
Background technology
About the password generation or in using many technical schemes are arranged in the existing technological means; The patent documentation of wherein announcing on May 2nd, 2,007 1 " switch method for managing security " discloses the method for carrying out twice cryptoguard for file system; At first carry out the protection of the conventional password in the 1st road in the document 1 for the program file system; If conventional password input error; Start the 2nd road password program, be the mac address of reading switch and carry out md5 encryption and generate super code and accomplish the 2nd road dynamic password protection.Need after being based on fixed password and losing the deletion configuration file to remove the problem that configuration information that cryptoguard causes whole file system is all lost thereby this scheme is directed against.But this technical scheme is just dynamic during super code for different switches, and each switch all has ownly encrypts the specific super code in back based on MAC Address, has also produced the unsafe problems owing to the specific switch that brings of super code.
Based on above-mentioned technical problem, in disclosed patent documentation 2 on June 15th, 2011 " a kind of client secure login method, Apparatus and system ", disclose and a kind ofly carried out the secure log of client through the mode of password prompt information input password after based on the webpage logging request.But the mode of the password that the password prompt information that is based on that the scheme of patent documentation 2 is directed against input is corresponding is carried out the secure log of system; The problem that this scheme occurs is that several password prompt information and corresponding with it several passwords need be set in advance, because the information of password causes the dangerous of password.
Therefore, the problem that the fail safe that password specificity or password prompt information based on equipment causes in the super code of prior art scheme or secure log, occurred.
Summary of the invention
The problem of appearance of the prior art more than the objective of the invention is to be directed against the present invention proposes a kind of super code generation system and application process.
A kind of super code generation system, said super code generation system comprise the switch watch-dog and the super code generating apparatus of switch device, PC side, and said switch device is used to provide switch device information; Conventional password and super code when the switch watch-dog of said PC side is used to input the super code prompt and generates the said switch device of check code at random, checking login; Said super code generating apparatus generates based on the facility information of said switch device and the super code of said check code at random; When the conventional password mistake of the said switch device of input; Generate check code at random to said switch device input super code prompt, the facility information of said check code at random and said switch device generates super code through AES on the super code generating apparatus; Import said super code to said switch device.
After the switch watch-dog of said PC side produced said check code at random according to said super code prompt, the check code at random that keeps the switch watch-dog of said PC side to produce was constant.
When the switch watch-dog of said friendship PC side is imported said super code, said super code is based on the super code of the facility information generation of current said check code at random and said switch device.
The facility information of described switch device be unit type, Equipment Serial Number and device mac address one of or combine.
A kind of application process of super code generation system
A. when the conventional password mistake of the said switch device of input, generate check code at random to the switch watch-dog input super code prompt of said PC side;
The facility information of B. said check code at random and said switch device generates super code through AES on the super code generating apparatus;
C. import said super code to the switch watch-dog of said PC side.
The super code generation system that the present invention adopts has comprised that said super code generation system comprises the switch watch-dog and the super code generating apparatus of switch device, PC side; The switch watch-dog of wherein said PC side is exported check code at random; And then carry out algorithm for encryption through the super code generating apparatus and export super code based on shorthand check code and facility information; Had following characteristics based on above-mentioned super code generation system and application process: 1, uniqueness, individual equipment uses.Because super code is integrated facility information (one or several in unit type, Equipment Serial Number, the device mac address etc.), so this password can only be applicable to the equipment that conforms to fully with facility information.2, disposable, the access security of assurance user network.When the user imported specific character string, equipment generated character string at random according to certain algorithm.After having used super code, super code mechanism promptly resets, if use next time, need carry out again one time, thereby guarantee that each password that generates is disposable.
Description of drawings
Fig. 1 is that the super code generation system connects sketch map
Fig. 2 is the super code applicating flow chart
Fig. 3 is check code product process figure at random
Fig. 4 super code product process figure
Fig. 5 super code applicating flow chart
Embodiment
In conjunction with the drawings technical scheme of the present invention is done further detailed description below.
A kind of super code generation system is characterized in that: said super code generation system comprises the switch watch-dog and the super code generating apparatus of switch device, PC side, and said switch device is used to provide switch device information; Conventional password and super code when the switch watch-dog of said PC side is used to input the super code prompt and generates the said switch device of check code at random, checking login; Said super code generating apparatus generates based on the facility information of said switch device and the super code of said check code at random; When the conventional password mistake of the said switch device of input; Generate check code at random to said switch device input super code prompt, the facility information of said check code at random and said switch device generates super code through AES on the super code generating apparatus; Import said super code to said switch device.
Generate and use the method for super code to comprise three steps, set forth in the face of this method down:
1, generates check code at random
The conventional password loss of switch device or input should routine password mistake constantly, the user is through serial communication, the input super code prompt (SPP) at the terminal.The switch watch-dog of PC side generates check code (RCC) at random through internal mechanism, and outputs to the switch watch-dog demonstration of PC side through serial communication.The user notes the check code at random of the switch watch-dog output of PC side; And keep the state of switch device constant; Guarantee promptly that also the switch device power supply does not cut off the power supply, do not carry out reboot operation; Unduplicated input super code prompt, the check code at random that will note then feeds back to the super code generating apparatus with the facility information of corresponding switch device.As shown in Figure 1.。
Described internal mechanism generates random number for adopting system random number generating function rand (), but converts the keyboard input character then to, and the character combination that repeatedly generates is got up to be check code at random.
The facility information of switch device comprises unit type, Equipment Serial Number, device mac address.
2, the generation of super code
The super code generating apparatus is according to behind the check code at random of the switch watch-dog of PC side output and the facility information, and check code and facility information are at random carried out AES, and the generation super code feeds back to the client with super code.
When generating super code, can encrypt based in check code and the facility information at random one or several.
Described facility information comprises unit type, Equipment Serial Number, device mac address etc.
3. the use of super code
After the client took super code, the input super code got into privileged mode at the terminal.At this moment, super code mechanism resets, and the user can be configured switch, revises password.
Use flow process shown in accompanying drawing 2.
Respectively the processing of the machine-processed three phases of super code is further set forth below:
1. check code product process at random
When switch device is not logined, the prompt information of serial ports input is filtered, if prompt information is the super code prompt, then get into the super code pattern; Otherwise, judge the current super code pattern that whether run on, if, then carry out the super code application flow, otherwise, do not handle.
For importing the super code prompt first, directly carry out check code generator at random, generate check code at random.For the non-super code prompt of importing first, the check code at random that generates before then destroying is carried out check code generator at random then, generates new check code at random.
The check code generator is based on random algorithm at random; Random function that can using system is as random algorithm, but converts the random number that at every turn generates to the keyboard input character, and with the synthetic character string of the character group that generates; Through repeatedly carrying out, just formed the randomized test sign indicating number.
The check code at random that generates is preserved being used for the super code application program, and export check code at random at the switch watch-dog of PC side.
2, super code product process
The facility information of check code and switch device is at random carried out the MD5 algorithm for encryption, generate summary info.Here algorithm for encryption not only can the MD5 algorithm for encryption, also can other AES, and for example RSA cryptographic algorithms, des encryption algorithm or the like, or self-defining AES.Convert summary info into codeword information that keyboard can be imported, be super code.As shown in Figure 4.
When carrying out algorithm for encryption, described facility information can be one or several the combination in any in unit type, Equipment Serial Number, the device mac address, and promptly facility information can be following table any in listed.
The facility information allocation list
| M | S | A |
| M+S | S+M | A+S |
| M+A | S+A | A+M |
| M+S+A | S+M+A | A+S+M |
| M+A+S | S+A+M | A+M+S |
On behalf of device mac address, S, M represent Equipment Serial Number and A to represent unit type in the table.
3, super code application flow
The user imports super code, and switch device filters the super code of input, if prompt information is the super code prompt, then carries out check code generator at random.
Otherwise, judge the current super code pattern that whether run on, if not, end process then.Otherwise, with the check code at random of record facility information (one or several in unit type, Equipment Serial Number, the device mac address) is carried out md5 encryption, generate summary info.Convert summary info to codeword information that keyboard can be imported, and compare with the character of serial ports input, if in full accord, then super code is verified successfully, and super code mechanism resets, and switches to login mode.Otherwise, super code authentication failed, end process.As shown in Figure 5.
Be noted that at last: the above is merely preferred implementation of the present invention; Be not limited to the present invention; Although the present invention has been carried out detailed explanation with reference to aforementioned embodiments; For a person skilled in the art, it still can be made amendment to the technical scheme that aforementioned each execution mode is put down in writing, and perhaps part technical characterictic wherein is equal to replacement.All within spirit of the present invention and principle, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (7)
1. super code generation system, it is characterized in that: said super code generation system comprises the switch watch-dog and the super code generating apparatus of switch device, PC side, and said switch device is used to provide switch device information; Conventional password and super code when the switch watch-dog of said PC side is used to input the super code prompt and generates the said switch device of check code at random, checking login; Said super code generating apparatus generates based on the facility information of said switch device and the super code of said check code at random; When the conventional password mistake of the said switch device of input; Generate check code at random to said switch device input super code prompt, the facility information of said check code at random and said switch device generates super code through AES on the super code generating apparatus; Import said super code to said switch device.
2. a kind of super code generation system according to claim 1; It is characterized in that: after the switch watch-dog of said PC side produced said check code at random according to said super code prompt, the check code at random that keeps the switch watch-dog of said PC side to produce was constant.
3. a kind of super code generation system according to claim 1; It is characterized in that: when the switch watch-dog of said friendship PC side is imported said super code, said super code is based on the super code of the facility information generation of current said check code at random and said switch device.
4. a kind of super code generation system according to claim 1 is characterized in that: the facility information of described switch device be unit type, Equipment Serial Number and device mac address one of or combine.
5. utilize the application process of a kind of super code generation system described in the aforesaid right requirement, it is characterized in that:
A. when the conventional password mistake of the said switch device of input, generate check code at random to the switch watch-dog input super code prompt of PC side;
The facility information of B. said check code at random and said switch device generates super code through AES on the super code generating apparatus;
C. import said super code to the switch watch-dog of said PC side.
6. the application process of a kind of super code generation system according to claim 5; It is characterized in that: after the switch watch-dog of said PC side produced said check code at random according to said super code prompt, the check code at random that keeps the switch watch-dog of said PC side to produce was constant.
7. the application process of a kind of super code generation system according to claim 5; It is characterized in that: when the switch watch-dog of said friendship PC side was imported said super code, said super code was based on the super code of the facility information generation of current said check code at random and said switch device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210056607.2A CN102629900B (en) | 2012-03-06 | 2012-03-06 | A kind of super password generation system and application process |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210056607.2A CN102629900B (en) | 2012-03-06 | 2012-03-06 | A kind of super password generation system and application process |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102629900A true CN102629900A (en) | 2012-08-08 |
| CN102629900B CN102629900B (en) | 2016-03-30 |
Family
ID=46588063
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210056607.2A Active CN102629900B (en) | 2012-03-06 | 2012-03-06 | A kind of super password generation system and application process |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102629900B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105391741A (en) * | 2015-12-17 | 2016-03-09 | 迈普通信技术股份有限公司 | Access device safety control method, device and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1553650A (en) * | 2003-06-08 | 2004-12-08 | 华为技术有限公司 | Dynamic supercode generating method and exchange board safety managing method |
| CN101291228A (en) * | 2008-06-18 | 2008-10-22 | 华为技术有限公司 | Generating, authenticating method for super code, system and device thereof |
| CN101350048A (en) * | 2008-09-11 | 2009-01-21 | 深圳华为通信技术有限公司 | Peripheral apparatus and method for verifying authority thereof |
-
2012
- 2012-03-06 CN CN201210056607.2A patent/CN102629900B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1553650A (en) * | 2003-06-08 | 2004-12-08 | 华为技术有限公司 | Dynamic supercode generating method and exchange board safety managing method |
| CN101291228A (en) * | 2008-06-18 | 2008-10-22 | 华为技术有限公司 | Generating, authenticating method for super code, system and device thereof |
| CN101350048A (en) * | 2008-09-11 | 2009-01-21 | 深圳华为通信技术有限公司 | Peripheral apparatus and method for verifying authority thereof |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105391741A (en) * | 2015-12-17 | 2016-03-09 | 迈普通信技术股份有限公司 | Access device safety control method, device and system |
| CN105391741B (en) * | 2015-12-17 | 2019-11-22 | 迈普通信技术股份有限公司 | A kind of method of controlling security of access device, equipment and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102629900B (en) | 2016-03-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110324143B (en) | Data transmission method, electronic device and storage medium | |
| CN105184181B (en) | File encryption method, file decryption method and file encryption device | |
| CN109474423A (en) | Data encryption/decryption method, server and storage medium | |
| CA2935780C (en) | Systems and methods with cryptography and tamper resistance software security | |
| CN103701829B (en) | A kind of off-line resolves the method for DPAPI encryption data | |
| CN103701757B (en) | Identity authentication method and system for service access | |
| JP2016012917A (en) | Communication network system, transmission node, reception node, message inspection method, and computer program | |
| CN103051459B (en) | The management method of the transaction key of safety card and device | |
| CN104866784B (en) | A kind of safe hard disk, data encryption and decryption method based on BIOS encryptions | |
| CN113986470B (en) | Batch remote proving method for virtual machines without perception of users | |
| CN105515769A (en) | Dynamic password generation method and dynamic password generation system for network equipment | |
| CN105553667A (en) | Dynamic password generating method | |
| CN111314050A (en) | Encryption and decryption method and device | |
| KR101425456B1 (en) | Information generation system and method therefor | |
| CN105871858A (en) | Method and system for ensuring high data safety | |
| CN103746805A (en) | External authentication key generation method and system | |
| CN101582765B (en) | User bound portable trusted mobile device | |
| CN102831335A (en) | Safety protecting method and safety protecting system of Windows operating system | |
| CN113722741A (en) | Data encryption method and device and data decryption method and device | |
| CN105141631A (en) | Terminal, server and account security login method, device and system | |
| CN105404470A (en) | Data storage method, data security apparatus and data storage system | |
| CN102629900A (en) | Super password generation system and application method thereof | |
| CN108256346A (en) | Guard method, encipherment protection device and the embedded system device of critical data | |
| KR20110101317A (en) | Method and device for cipher-deciphering data automatically | |
| CN105426705A (en) | Encryption control system for accounting software |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |