CN102769624A - Dynamic password generation system, device and method - Google Patents
Dynamic password generation system, device and method Download PDFInfo
- Publication number
- CN102769624A CN102769624A CN2012102588339A CN201210258833A CN102769624A CN 102769624 A CN102769624 A CN 102769624A CN 2012102588339 A CN2012102588339 A CN 2012102588339A CN 201210258833 A CN201210258833 A CN 201210258833A CN 102769624 A CN102769624 A CN 102769624A
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- transaction
- user
- challenge code
- key message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a dynamic password generation system comprising a transaction terminal, an authentication server and a dynamic password generation device, wherein the transaction terminal is used for receiving transaction information input by a user, generating a corresponding transaction message and reminding the user of inputting a challenge code received from the authentication server; the authentication server is used for receiving the transaction message from the transaction terminal, extracting key information from the transaction message and generating the challenge code by performing lossless compression on the key information; the dynamic password generation device is used for receiving the challenge code input by the user, performing lossless un-compression on the challenge code to restore the key information, displaying the key information to the user, and generating a dynamic password of the transaction after the key information is authenticated by the user to be correct. The invention also provides a dynamic password generation device and a dynamic password generation method. Lossless compression is carried out on the key information in the transaction so as to compress the long-digit-capacity key information into the short-digit-cavity challenge code, thereby facilitating inputting and memorizing by the user.
Description
Technical field
The present invention relates to information security field, relate in particular to a kind of dynamic password generation system, device and method.
Background technology
In recent years, follow the fast development of the Internet and Financial Informationization, Web bank obtains the generally high praise of user and bank's industry rapidly with its facility, advantage such as efficient.Bank and various large-scale e-commerce website have adopted dynamic password token or dynamic password card to strengthen the fail safe of network ID authentication in order to overcome the safety defect based on the authentication mode of static password mostly.
The dynamic password technology is called one-time password (One Time Password again; Be called for short OTP) technology; The display digit that is characterized in the dynamic password token that the user provides according to service provider is imported dynamic password; Be dynamic password, and the dynamic password technology can be divided into time-based dynamic password technology and technological based on the dynamic password of challenging/replying according to the difference of password generating mode.
Present most dynamic password token has adopted based on the dynamic password technology of challenging/replying.When employing should technology, the dynamic password generating apparatus had identical key seed with server stores; In the time of need carrying out authentification of user, server generates a challenge code for the user, after the user obtains challenge code, challenge code is imported the dynamic password generating apparatus; The dynamic password generating apparatus uses the challenge code of key seed and user's input to generate answer back code (being dynamic password); After the user is known the present dynamic password through the display screen of dynamic password generating apparatus; At this dynamic password of transaction terminal input, transaction terminal sends to server with information such as this dynamic password and user name, static passwords and carries out authentication.
But when adopting based on the dynamic password technology challenging/reply; Dynamic password token need generate dynamic password according to challenge code; And need the user that challenge code is inputed in the dynamic password token, but often the figure place of user's input more for a long time, input error easily; Therefore, existing dynamic password token is convenient inadequately in user's use.
Summary of the invention
The present invention one of is intended to solve the problems of the technologies described above at least to a certain extent or provides a kind of useful commerce to select at least.
For this reason; First purpose of the present invention is to propose a kind of dynamic password generation system; Through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.Second purpose of the present invention is to propose a kind of dynamic password generating apparatus.The 3rd purpose of the present invention is to propose a kind of dynamic password formation method.
For achieving the above object, the embodiment of first aspect present invention has proposed a kind of dynamic password generation system, comprising: transaction terminal, certificate server and dynamic password generating apparatus.Wherein, said transaction terminal is used to receive the Transaction Information of user's input and generates corresponding transaction message, and points out the user challenge code from said certificate server that input receives; Said certificate server is used to receive the transaction message from said transaction terminal, and extracts the key message in the said transaction message, and said key message is carried out lossless compress to generate said challenge code; Said dynamic password generating apparatus; Be used to receive the said challenge code of said user's input; And said challenge code carried out lossless decompression to reduce said key message; And said key message is shown to said user and after said user confirmed that said key message is correct, the confirmation of receipt instruction generated the dynamic password of this transaction.
According to the dynamic password generation system of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
In one embodiment of the invention, said Transaction Information comprises said user's user name, the other side's number of the account, dealing money and transaction journal number.
In one embodiment of the invention, said certificate server adopts digital lossless compression algorithm that said key message is compressed to generate said challenge code.
In one embodiment of the invention, said digital lossless compression algorithm comprises the Huffman encoding algorithm or the encryption algorithm that counts.
In one embodiment of the invention; Said dynamic password generating apparatus also is used to store the corresponding decompression algorithm of digital lossless compression algorithm that adopts with said certificate server, and utilizes said decompression algorithm that said challenge code is decompressed to reduce said key message.
In one embodiment of the invention, said dynamic password generating apparatus is used for the dynamic password according to said challenge code or said this transaction of said key message generation.
In one embodiment of the invention, said dynamic password generating apparatus is used for generating according to the combination in any of said challenge code, said key message and current time parameter the dynamic password of said this transaction.
In one embodiment of the invention; Said certificate server receives the dynamic password of said user through said this transaction of said transaction terminal input; And the dynamic password of said this transaction and the dynamic password that generates in advance compared; Wherein, the said dynamic password that generates in advance of said certificate server is corresponding with the dynamic password of this transaction of said dynamic password generating apparatus generation.
In one embodiment of the invention, said dynamic password generating apparatus is a dynamic password token.
In one embodiment of the invention, said transaction terminal is imported said challenge code through the said user of literal, image or auditory tone cues.
The embodiment of second aspect present invention has proposed a kind of dynamic password generating apparatus; Comprise: receiver module; Be used to receive the challenge code of user's input, and after said user confirms that key message is correct, the affirmation instruction of input; Wherein, said challenge code is that the key message in the transaction message is carried out generating after the lossless compress; Decompression module is used for said challenge code is carried out lossless decompression to reduce said key message; Reminding module is used to point out said key message to confirm for said user, and the dynamic password of prompting password generation module generation; The password generation module is used for after said user confirms that said key message is correct, generating the dynamic password of this transaction according to the affirmation instruction of receiver module reception.
According to the dynamic password generating apparatus of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
In one embodiment of the invention, said decompression module utilizes decompression algorithm that said challenge code is decompressed to reduce said key message.
In one embodiment of the invention, said decompression algorithm comprises the Hafman decoding algorithm or the encryption algorithm that counts.
In one embodiment of the invention, said password generation module is used for the dynamic password that said key message that challenge code or decompression according to said user input obtain generates said this transaction.
In one embodiment of the invention, said password generation module also comprises clock module, is used to write down the current time parameter.
In one embodiment of the invention, said password generation module also is used to inquire about the current time parameter of said clock module storage, and according to the challenge code of said user's input and the dynamic password of said this transaction of current time parameter generation.
In one embodiment of the invention; Said dynamic password generating apparatus also comprises: authentication module; Be used for the startup password of user's input is carried out verification, and after verifying successfully, indicate said receiver module to receive said challenge code; Surpass preset times if said user imports the errors number of startup password, then lock said dynamic password generating apparatus.
In one embodiment of the invention, said dynamic password generating apparatus is a dynamic password token.
The embodiment of third aspect present invention has proposed a kind of dynamic password formation method, comprises the steps: that transaction terminal receives the Transaction Information of user's input and generates corresponding transaction message; Certificate server receives the transaction message from said transaction terminal, and extracts the key message in the said transaction message, and said key message is carried out lossless compress with the generation challenge code, and said challenge code is sent to said transaction terminal; Said dynamic password generating apparatus receives the said challenge code of said user's input; And said challenge code carried out lossless decompression to reduce said key message; And said key message is shown to said user; After said user confirms that said key message is correct, generate the dynamic password of this transaction.
According to the dynamic password formation method of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
In one embodiment of the invention, said Transaction Information comprises said user's user name, the other side's number of the account, dealing money and transaction journal number.
In one embodiment of the invention, said key message comprises the other side's number of the account and dealing money.
In one embodiment of the invention, said certificate server adopts digital lossless compression algorithm that said key message is compressed to generate said challenge code.
In one embodiment of the invention, said digital lossless compression algorithm comprises the Huffman encoding algorithm or the encryption algorithm that counts.
In one embodiment of the invention; Said dynamic password formation method also comprises the steps: the corresponding decompression algorithm of digital lossless compression algorithm that said dynamic password generating apparatus storage and said authentication service adopt, and utilizes said decompression algorithm that said challenge code is decompressed to reduce said key message.
In one embodiment of the invention, said dynamic password generating apparatus generates one of in the following manner dynamic password:
(1) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said challenge code;
(2) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said key message;
(3) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said key message and current time parameter;
(4) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said challenge code and current time parameter.
In one embodiment of the invention; Said dynamic password formation method comprises the steps: that also said certificate server receives the dynamic password of said user through said this transaction of said transaction terminal input; And the dynamic password of said this transaction and the dynamic password that generates in advance compared; Wherein, the said dynamic password that generates in advance of said certificate server is corresponding with the dynamic password of this transaction of said dynamic password generating apparatus generation; If comparison is consistent, then allows said user to carry out this transaction, otherwise forbid that said user carries out this transaction.
Aspect that the present invention adds and advantage part in the following description provide, and part will become obviously from the following description, or recognize through practice of the present invention.
Description of drawings
Above-mentioned and/or additional aspect of the present invention and advantage are from obviously with easily understanding becoming the description of embodiment below in conjunction with accompanying drawing, wherein:
Fig. 1 is the sketch map according to the dynamic password generation system of the embodiment of the invention;
Fig. 2 is the sketch map of dynamic password generation system according to another embodiment of the present invention;
Fig. 3 is the sketch map according to the dynamic password generating apparatus of the embodiment of the invention; And
Fig. 4 is the flow chart according to the dynamic password formation method of the embodiment of the invention.
Embodiment
Describe embodiments of the invention below in detail, the example of said embodiment is shown in the drawings, and wherein identical from start to finish or similar label is represented identical or similar elements or the element with identical or similar functions.Be exemplary through the embodiment that is described with reference to the drawings below, only be used to explain the present invention, and can not be interpreted as limitation of the present invention.
In description of the invention; It will be appreciated that; Term " vertically ", " laterally ", " on ", the orientation of indications such as D score, " preceding ", " back ", " left side ", " right side ", " vertically ", " level ", " top ", " end " " interior ", " outward " or position relation be for based on orientation shown in the drawings or position relation; Only be to describe with simplifying for the ease of describing the present invention; Rather than the device or the element of indication or hint indication must have specific orientation, with specific azimuth configuration and operation, therefore can not be interpreted as limitation of the present invention.
In description of the invention, need to prove, unless otherwise prescribed and limit; Term " installation ", " linking to each other ", " connection " should be done broad understanding, for example, can be mechanical connection or electrical connection; Also can be the connection of two element internals, can be directly to link to each other, and also can link to each other indirectly through intermediary; For those of ordinary skill in the art, can understand the concrete implication of above-mentioned term as the case may be.
As shown in Figure 1, the dynamic password generation system according to the embodiment of first aspect present invention comprises: transaction terminal 101, certificate server 102 and dynamic password generating apparatus 103.
Particularly, transaction terminal 101 receives Transaction Information and the corresponding transaction message of generation that the user imports, and the prompting user imports the challenge code from certificate server 102 that receives.Wherein, Transaction Information comprises but is not limited in: the user's who concludes the business user name, the other side's number of the account, dealing money and transaction journal number etc.Transaction terminal 101 can be the ATM (Automated Teller Machine, ATM) of bank, also can be equipment such as PC or mobile phone terminal.
Certificate server 102 is used for the authentication dynamic password and realizes customer transaction, is generally the server that bank provides.The transaction message that certificate server 102 receives from transaction terminal 101, and extract the key message in this transaction message, and this key message is carried out lossless compress, to generate challenge code.Wherein, key message comprises: information such as the other side's number of the account and dealing money.In one embodiment of the invention, certificate server adopts digital lossless compression algorithm that key message is compressed to generate challenge code.Wherein, digital lossless compression algorithm comprises but is not limited in: Huffman (Huffman) encryption algorithm or the encryption algorithm that counts.
Certainly, as shown in Figure 2 when actual input is used, transaction terminal 101 also can be merged into a transaction system with certificate server 102, uses same entity device, for example bank ATM machine or the like.
Dynamic password generating apparatus 103 is used to receive the said challenge code of said user's input; And said challenge code carried out lossless decompression to reduce said key message; And said key message is shown to said user and after said user confirmed that said key message is correct, the confirmation of receipt instruction generated the dynamic password of this transaction.
In one embodiment of the invention, dynamic password generating apparatus 103 also is used to store the corresponding decompression algorithm of digital lossless compression algorithm that adopts with certificate server 102, and utilizes decompression algorithm that challenge code is decompressed with the reduction key message.When needing dynamic password, dynamic password generating apparatus 103 is used for the dynamic password according to said challenge code or this transaction of key message generation.
Transaction terminal 101 can be imported challenge code through information indicating users such as literal, image or sound.Then; Certificate server 102 receives the dynamic password of said user through this transaction of transaction terminal 101 inputs; And the dynamic password of this transaction user input compared with the dynamic password that generates in advance; Wherein, the above-mentioned dynamic password that generates in advance is corresponding with the dynamic password of this transaction of dynamic password generating apparatus 102 generations.
In one embodiment of the invention, dynamic password generating apparatus 102 adopts dynamic password tokens, need to prove, this example is just for the ease of to explanation of the present invention, and should not be construed as limitation of the present invention.
According to the dynamic password generation system of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
As shown in Figure 3, the dynamic password generating apparatus according to the embodiment of second aspect present invention comprises: receiver module 301, decompression module 302, reminding module 303 and password generation module 304.
Particularly, receiver module 301 is used to receive the challenge code of user's input, and after the user confirms that key message is correct, the affirmation instruction of input, and wherein, challenge code is for carrying out the key message in the transaction message generating after the lossless compress.
Reminding module 303 is used to point out key message to confirm for the user, and the dynamic password that generates to user prompt password generation module 304.
1) in one embodiment of the invention, password generation module 304 generates the dynamic password of this transaction according to the challenge code of user's input.
2) in one embodiment of the invention, the key message that obtains according to decompression of password generation module 304 generates the dynamic password of this transaction.
3) in one embodiment of the invention, password generation module 304 also comprises clock module, is used to write down the current time parameter.The current time parameter of password generation module 304 inquiry clock module storages, and according to the challenge code of user's input and the dynamic password of current time this transaction of parameter generation.Present embodiment generates dynamic password according to challenge code and current time parameter, even if can guarantee identical challenge code (for example giving same account remittance same amount), also can generate different dynamic passwords, has further guaranteed the fail safe of dynamic password.
In one embodiment of the invention, the password generating apparatus also comprises: authentication module.Authentication module carries out verification to the startup password of user's input; And after verifying successfully; Indication receiver module 301 receives challenge code, surpasses preset times (for example 3 times or 5 times) if the user imports the errors number of startup password, then authentication module locking dynamic password generating apparatus.Authentication module is set,, guarantees user's account safety even if can under the situation that this dynamic password generating apparatus is lost, can prevent that also other people from carrying out the malice repeated attempt to user's password.
In one embodiment of the invention, the dynamic password generating apparatus can be a dynamic password token, need to prove, this example is just for the ease of to explanation of the present invention, and should not be construed as limitation of the present invention.
According to the dynamic password generating apparatus of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
As shown in Figure 4, the dynamic password formation method according to the embodiment of third aspect present invention comprises the steps:
S401: transaction terminal receives the Transaction Information of user's input and generates corresponding transaction message.
The user imports in transaction terminal/the compiles user Transaction Information; Transaction terminal sends to certificate server one by one with user input/editor's transaction message.Wherein, Transaction Information comprises but is not limited in: the user's who concludes the business user name, the other side's number of the account, dealing money and transaction journal number etc.
S402: certificate server receives the transaction message from transaction terminal, and extracts the key message in the transaction message, and this key message is carried out lossless compress with the generation challenge code, and this challenge code is sent to transaction terminal.
The certificate server of transaction system obtains the customer transaction information of this transaction according to the transaction message of this transaction that this transaction terminal sends; Extract the key message in the customer transaction information; Generally speaking, the key message in the customer transaction information comprises: information such as the other side's number of the account and dealing money.
Then, certificate server carries out the key message that extracts to compress through digital lossless compression algorithm, is compressed into the challenge code of short figure place, and indication transaction terminal prompting user imports challenge code.Wherein, lossless compression algorithm can adopt: Huffman encoding algorithm, the encryption algorithm etc. that counts, because its invertibity can guarantee behind the decompress(ion) original compression content to be reduced.Need to prove that above algorithm example should not be construed as limitation of the present invention, in practical application, can select other harmless, reversible compression algorithms for use.
S403: the dynamic password generating apparatus receives the challenge code of user's input; And to this challenge code carry out lossless decompression with the reduction key message; And this key message is shown to the user, after the user confirms that this key message is correct, generate the dynamic password of this transaction.
Store the corresponding decompression algorithm of digital lossless compression algorithm that adopts with certificate server in the dynamic password generating apparatus.After the dynamic password generating apparatus receives the challenge code of user according to the information input of transaction terminal, utilize this decompression algorithm that the challenge code of user's input is decompressed with the reduction key message.Behind the key message in dynamic password generating apparatus reduction customer transaction information; Also this key message is shown; Whether the user can examine transaction this time based on displaying contents is the transaction that the user needs; Confirm that the back is to dynamic password generating apparatus transmission confirmation (in practical application, this step is confirmed the button realization through letting the user press usually).After the user confirmed that this key message is correct, the dynamic password generating apparatus one of can be in the following manner generates dynamic password, as the dynamic password of certificate server end:
(1) the dynamic password generating apparatus generates the dynamic password of this transaction according to challenge code;
(2) the dynamic password generating apparatus generates the dynamic password of this transaction according to key message;
(3) the dynamic password generating apparatus generates the dynamic password of this transaction according to key message and current time parameter;
(4) the dynamic password generating apparatus generates the dynamic password of this transaction according to challenge code and current time parameter.
After the dynamic password generating apparatus generated dynamic password, certificate server received the dynamic password of user through this transaction of transaction terminal input, and the dynamic password of this transaction and the dynamic password that generates in advance of certificate server end are compared.If comparison is consistent, then allow the user to carry out this transaction, otherwise, forbid that then the user carries out this transaction.Wherein, the current time parameter of transaction system (certificate server) end and the current time parameter of dynamic password generating apparatus are identical (for example 2 minutes) in a period of time.Present embodiment generates dynamic password according to challenge code and current time parameter, even if can guarantee identical challenge code (for example giving same account remittance same amount), also can generate different dynamic passwords, has further guaranteed the fail safe of dynamic password.
In one embodiment of the invention, the dynamic password generating apparatus can be a dynamic password token, need to prove, this example is just for the ease of to explanation of the present invention, and should not be construed as limitation of the present invention.
According to the dynamic password formation method of the embodiment of the invention, through the key message in the customer transaction information is carried out lossless compress, the challenge code with the short figure place of the key message boil down in the customer transaction information of long figure place has made things convenient for user's input and memory.
Describe and to be understood that in the flow chart or in this any process otherwise described or method; Expression comprises module, fragment or the part of code of the executable instruction of the step that one or more is used to realize specific logical function or process; And the scope of preferred implementation of the present invention comprises other realization; Wherein can be not according to order shown or that discuss; Comprise according to related function and to carry out function by the mode of basic while or by opposite order, this should be understood by the embodiments of the invention person of ordinary skill in the field.
In flow chart the expression or in this logic of otherwise describing and/or step; For example; Can be considered to be used to realize the sequencing tabulation of the executable instruction of logic function; May be embodied in any computer-readable medium; Use for instruction execution system, device or equipment (like computer-based system, comprise that system or other of processor can be from the systems of instruction execution system, device or equipment instruction fetch and execution command), or combine these instruction execution systems, device or equipment and use.With regard to this specification, " computer-readable medium " can be anyly can comprise, storage, communication, propagation or transmission procedure are for instruction execution system, device or equipment or combine these instruction execution systems, device or equipment and the device that uses.The example more specifically of computer-readable medium (non-exhaustive list) comprises following: the electrical connection section (electronic installation) with one or more wirings; Portable computer diskette box (magnetic device); Random-access memory (ram), read-only memory (ROM) can be wiped and can edit read-only memory (EPROM or flash memory); Fiber device, and portable optic disk read-only memory (CDROM).In addition; Computer-readable medium even can be paper or other the suitable media that to print said program above that; Because can be for example through paper or other media are carried out optical scanner; Then edit, decipher or handle to obtain said program with other suitable methods in case of necessity with the electronics mode, then it is stored in the computer storage.
Should be appreciated that each several part of the present invention can use hardware, software, firmware or their combination to realize.In the above-described embodiment, a plurality of steps or method can realize with being stored in the memory and by software or firmware that suitable instruction execution system is carried out.For example; If realize with hardware; The same in another embodiment, each in the available following technology well known in the art or their combination realize: have the discrete logic that is used for data-signal is realized the logic gates of logic function, have the application-specific integrated circuit (ASIC) of suitable combinational logic gate circuit; Programmable gate array (PGA), field programmable gate array (FPGA) etc.
Those skilled in the art are appreciated that and realize that all or part of step that the foregoing description method is carried is to instruct relevant hardware to accomplish through program; Described program can be stored in a kind of computer-readable recording medium; This program comprises one of step or its combination of method embodiment when carrying out.
In addition, each functional unit in each embodiment of the present invention can be integrated in the processing module, also can be that the independent physics in each unit exists, and also can be integrated in the module two or more unit.Above-mentioned integrated module both can adopt the form of hardware to realize, also can adopt the form of software function module to realize.If said integrated module realizes with the form of software function module and during as independently production marketing or use, also can be stored in the computer read/write memory medium.
In the description of this specification, the description of reference term " embodiment ", " some embodiment ", " example ", " concrete example " or " some examples " etc. means the concrete characteristic, structure, material or the characteristics that combine this embodiment or example to describe and is contained at least one embodiment of the present invention or the example.In this manual, the schematic statement to above-mentioned term not necessarily refers to identical embodiment or example.And concrete characteristic, structure, material or the characteristics of description can combine with suitable manner in any one or more embodiment or example.
Although illustrated and described embodiments of the invention above; It is understandable that; The foregoing description is exemplary; Can not be interpreted as limitation of the present invention, those of ordinary skill in the art can change the foregoing description under the situation that does not break away from principle of the present invention and aim within the scope of the invention, modification, replacement and modification.
Claims (27)
1. a dynamic password generation system is characterized in that, comprising: transaction terminal, certificate server and dynamic password generating apparatus, wherein,
Said transaction terminal is used to receive the Transaction Information of user's input and generates corresponding transaction message, and points out the user challenge code from said certificate server that input receives;
Said certificate server is used to receive the transaction message from said transaction terminal, and extracts the key message in the said transaction message, and said key message is carried out lossless compress to generate said challenge code;
Said dynamic password generating apparatus; Be used to receive the said challenge code of said user's input; And said challenge code carried out lossless decompression to reduce said key message; And said key message is shown to said user and after said user confirmed that said key message is correct, the confirmation of receipt instruction generated the dynamic password of this transaction.
2. dynamic password generation system according to claim 1 is characterized in that, said Transaction Information comprises said user's user name, the other side's number of the account, dealing money and transaction journal number.
3. dynamic password generation system as claimed in claim 2 is characterized in that said key message comprises the other side's number of the account and dealing money.
4. like claim 1 or 3 described dynamic password generation systems, it is characterized in that said certificate server adopts digital lossless compression algorithm that said key message is compressed to generate said challenge code.
5. dynamic password generation system as claimed in claim 4 is characterized in that, said digital lossless compression algorithm comprises the Huffman encoding algorithm or the encryption algorithm that counts.
6. dynamic password generation system as claimed in claim 4; It is characterized in that; Said dynamic password generating apparatus also is used to store the corresponding decompression algorithm of digital lossless compression algorithm that adopts with said certificate server, and utilizes said decompression algorithm that said challenge code is decompressed to reduce said key message.
7. dynamic password generation system as claimed in claim 1 is characterized in that, said dynamic password generating apparatus is used for the dynamic password according to said challenge code or said this transaction of said key message generation.
8. dynamic password generation system as claimed in claim 1 is characterized in that, said dynamic password generating apparatus is used for generating according to the combination in any of said challenge code, said key message and current time parameter the dynamic password of said this transaction.
9. dynamic password generation system as claimed in claim 1; It is characterized in that; Said certificate server receives the dynamic password of said user through said this transaction of said transaction terminal input; And the dynamic password of said this transaction and the dynamic password that generates in advance compared, wherein, the said dynamic password that generates in advance of said certificate server is corresponding with the dynamic password of this transaction of said dynamic password generating apparatus generation.
10. dynamic password generation system as claimed in claim 1 is characterized in that, said dynamic password generating apparatus is a dynamic password token.
11. dynamic password generation system as claimed in claim 1 is characterized in that, said transaction terminal is imported said challenge code through the said user of literal, image or auditory tone cues.
12. a dynamic password generating apparatus is characterized in that, comprising:
Receiver module is used to receive the challenge code of user's input, and after said user confirms that key message is correct, the affirmation instruction of input, and wherein, said challenge code is for carrying out the key message in the transaction message generating after the lossless compress;
Decompression module is used for said challenge code is carried out lossless decompression to reduce said key message;
Reminding module is used to point out said key message to confirm for said user, and the dynamic password of prompting password generation module generation; And
The password generation module is used for after said user confirms that said key message is correct, generating the dynamic password of this transaction according to the affirmation instruction of receiver module reception.
13. dynamic password generating apparatus as claimed in claim 12 is characterized in that, said decompression module utilizes decompression algorithm that said challenge code is decompressed to reduce said key message.
14. dynamic password generating apparatus as claimed in claim 13 is characterized in that, said decompression algorithm comprises the Hafman decoding algorithm or the encryption algorithm that counts.
15. dynamic password generating apparatus as claimed in claim 12 is characterized in that, said password generation module is used for generating according to the said key message that the challenge code of said user input or decompression obtain the dynamic password of said this transaction.
16. dynamic password generating apparatus as claimed in claim 12 is characterized in that, said password generation module also comprises clock module, is used to write down the current time parameter.
17. dynamic password generating apparatus as claimed in claim 16; It is characterized in that; Said password generation module also is used to inquire about the current time parameter of said clock module storage, and according to the challenge code of said user's input and the dynamic password of said this transaction of current time parameter generation.
18. like each described dynamic password generating apparatus among the claim 11-17, it is characterized in that, also comprise:
Authentication module; Be used for the startup password of user's input is carried out verification, and after verifying successfully, indicate said receiver module to receive said challenge code; Surpass preset times if said user imports the errors number of startup password, then lock said dynamic password generating apparatus.
19. dynamic password generating apparatus as claimed in claim 12 is characterized in that, said dynamic password generating apparatus is a dynamic password token.
20. a dynamic password formation method is characterized in that, comprises the steps:
Transaction terminal receives the Transaction Information of user's input and generates corresponding transaction message;
Certificate server receives the transaction message from said transaction terminal, and extracts the key message in the said transaction message, and said key message is carried out lossless compress with the generation challenge code, and said challenge code is sent to said transaction terminal; And
Said dynamic password generating apparatus receives the said challenge code of said user's input; And said challenge code carried out lossless decompression to reduce said key message; And said key message is shown to said user; After said user confirms that said key message is correct, generate the dynamic password of this transaction.
21. dynamic password formation method as claimed in claim 20 is characterized in that, said Transaction Information comprises said user's user name, the other side's number of the account, dealing money and transaction journal number.
22. dynamic password formation method as claimed in claim 21 is characterized in that, said key message comprises the other side's number of the account and dealing money.
23., it is characterized in that said certificate server adopts digital lossless compression algorithm that said key message is compressed to generate said challenge code like each described dynamic password formation method of claim 20-22.
24. dynamic password formation method as claimed in claim 23 is characterized in that, said digital lossless compression algorithm comprises the Huffman encoding algorithm or the encryption algorithm that counts.
25. dynamic password formation method as claimed in claim 23 is characterized in that, also comprises the steps:
Said dynamic password generating apparatus is stored the corresponding decompression algorithm of digital lossless compression algorithm that adopts with said authentication service, and utilizes said decompression algorithm that said challenge code is decompressed to reduce said key message.
26. dynamic password formation method as claimed in claim 20 is characterized in that, said dynamic password generating apparatus generates one of in the following manner dynamic password:
(1) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said challenge code;
(2) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said key message;
(3) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said key message and current time parameter;
(4) said dynamic password generating apparatus generates the dynamic password of said this transaction according to said challenge code and current time parameter.
27. dynamic password formation method as claimed in claim 20 is characterized in that, also comprises the steps:
Said certificate server receives the dynamic password of said user through said this transaction of said transaction terminal input; And the dynamic password of said this transaction and the dynamic password that generates in advance compared; Wherein, the said dynamic password that generates in advance of said certificate server is corresponding with the dynamic password of this transaction of said dynamic password generating apparatus generation;
If comparison is consistent, then allows said user to carry out this transaction, otherwise forbid that said user carries out this transaction.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210258833.9A CN102769624B (en) | 2012-07-24 | 2012-07-24 | A kind of dynamic password generation, device and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210258833.9A CN102769624B (en) | 2012-07-24 | 2012-07-24 | A kind of dynamic password generation, device and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102769624A true CN102769624A (en) | 2012-11-07 |
| CN102769624B CN102769624B (en) | 2016-01-20 |
Family
ID=47096874
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210258833.9A Active CN102769624B (en) | 2012-07-24 | 2012-07-24 | A kind of dynamic password generation, device and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102769624B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103023643A (en) * | 2012-11-22 | 2013-04-03 | 天地融科技股份有限公司 | Dynamic password card and dynamic password generating method |
| CN103078738A (en) * | 2012-11-22 | 2013-05-01 | 天地融科技股份有限公司 | Dynamic password generation device and adapter |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101651675A (en) * | 2009-08-27 | 2010-02-17 | 北京飞天诚信科技有限公司 | Method and system for enhancing security of network transactions |
| US20110047607A1 (en) * | 2009-08-18 | 2011-02-24 | Alibaba Group Holding Limited | User verification using voice based password |
| CN102307180A (en) * | 2011-04-27 | 2012-01-04 | 上海动联信息技术有限公司 | Trade confirmation method for challenge response token |
-
2012
- 2012-07-24 CN CN201210258833.9A patent/CN102769624B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20110047607A1 (en) * | 2009-08-18 | 2011-02-24 | Alibaba Group Holding Limited | User verification using voice based password |
| CN101651675A (en) * | 2009-08-27 | 2010-02-17 | 北京飞天诚信科技有限公司 | Method and system for enhancing security of network transactions |
| CN102307180A (en) * | 2011-04-27 | 2012-01-04 | 上海动联信息技术有限公司 | Trade confirmation method for challenge response token |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103023643A (en) * | 2012-11-22 | 2013-04-03 | 天地融科技股份有限公司 | Dynamic password card and dynamic password generating method |
| CN103078738A (en) * | 2012-11-22 | 2013-05-01 | 天地融科技股份有限公司 | Dynamic password generation device and adapter |
| WO2014079347A1 (en) * | 2012-11-22 | 2014-05-30 | 天地融科技股份有限公司 | One time password and generation method thereof |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102769624B (en) | 2016-01-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102868527B (en) | A kind of dynamic password generation and device | |
| CN110163598A (en) | Mobile offline electronic payment method and mobile offline electronic payment system | |
| US20080305769A1 (en) | Device Method & System For Facilitating Mobile Transactions | |
| CN102158488B (en) | Dynamic countersign generation method and device and authentication method and system | |
| CN102752115B (en) | Challenge code generating method and device, dynamic password authentication method and system | |
| TWI679553B (en) | Method, system and intelligent equipment for checking tickets based on user interface | |
| US9911122B2 (en) | Audio-based electronic transaction authorization system and method | |
| CN202771476U (en) | Security certification system | |
| CN103218740A (en) | Trading system, method and device using two-dimension codes | |
| CN103595719A (en) | Authentication method and system based on fingerprints | |
| CN103942684A (en) | Data security interactive system | |
| CN102542451B (en) | Electronic paying method, system and device thereof | |
| CN110930147A (en) | Offline payment method and device, electronic equipment and computer-readable storage medium | |
| CN103942685A (en) | Data security interactive system | |
| US20110185180A1 (en) | Method and device for creating digital signature | |
| CN112202794A (en) | Transaction data protection method and device, electronic equipment and medium | |
| CN110659470A (en) | Authentication method and authentication system for off-line physical isolation | |
| CN110659899B (en) | Offline payment method, device and equipment | |
| CN104850996B (en) | Transaction method, system and server based on external security equipment | |
| KR20180006253A (en) | Device and system for performing payment authentication using biometric information and a method controlling thereof | |
| CN103475479A (en) | Intelligent secret key equipment, mobile terminal, dynamic password output method and system | |
| CN102769624A (en) | Dynamic password generation system, device and method | |
| US20090037744A1 (en) | Biometric pin block | |
| TWM633896U (en) | Financial Data Authorization Device | |
| CN105654295A (en) | Transaction control method and client |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C53 | Correction of patent of invention or patent application | ||
| CB02 | Change of applicant information |
Address after: 100083, room 1810, block B, 38 clear road, Haidian District, Beijing Applicant after: Tendyron Technology Co., Ltd. Address before: 100083, room 1810, block B, golden building, No. 17, Qinghua East Road, Beijing, Haidian District Applicant before: Tendyron Technology Co., Ltd. |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |