CN103051447A - Method for user security management of important system - Google Patents
Method for user security management of important system Download PDFInfo
- Publication number
- CN103051447A CN103051447A CN2011103052517A CN201110305251A CN103051447A CN 103051447 A CN103051447 A CN 103051447A CN 2011103052517 A CN2011103052517 A CN 2011103052517A CN 201110305251 A CN201110305251 A CN 201110305251A CN 103051447 A CN103051447 A CN 103051447A
- Authority
- CN
- China
- Prior art keywords
- user
- password
- cipher
- safety
- security management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The invention relates to a method for user security management of an important software system, which aims at solving the current situation that users of a traditional system are lack of security awareness and hardly voluntarily change user passwords. The method is characterized in that for the important software system, after a user logs in the system every time, the system generates a verification code in real time and transmits the verification code onto a mobile phone of the user through a background management program, and then the user inputs the verification code to verify, so that a purpose for security management of the user password can be realized.
Description
Technical field
The present invention relates to the safety method of a kind of critical software system user safety management, the present invention is directed to the important system software of user/pin mode login, add a SMS transmitting apparatus at the server end machine, it is user's oneself phone number that system bundlees 1 for each user, when the user inputs the password login system, system's backstage management procedure generates at random 6 new bit digital check codes and sends to the user, the user carries out verification at the input validation code, successful then could login system, this user cipher login system mode generates in real time check code by secondary and confirms to prevent that the disabled user from inputting pin mode and obtain malice use system behind the password by peeping the user, has improved greatly security of system.
Background technology
In the information system, user's authentication is had a variety of methods, usemame/password be the simplest also be the most frequently used identity identifying method, it is based on the checking means of " what you know ".Each user's password is set by this user oneself, only has him just to know by oneself, as long as therefore can correctly input password, computer just thinks that he is exactly this user.Yet in fact, because many users forget Password in order to prevent, often employing such as own or household's birthday, telephone number etc. are guessed that by other people the significant character string that arrives is as password easily, perhaps password is copied at one and oneself thought safe place, this all exists many potential safety hazards, very easily causes password to reveal.
The software systems that normal operation usemame/password mode is carried out authentication, user cipher generally all are that the user initiatively removes Modify password by the password modify feature, and a lot of users may not revise in 1 year in design is used; The password of the system designer that security of system designs any general all force users when design must be modified once after how many days, is stolen to prevent the user, and system is maliciously used.More than two kinds of situations show that the General System user seldom initiatively removes Modify password, for the responsible consumer of important system or system, this present situation is breakneck, in actual life, system password is stolen, the thing that system is maliciously used happens occasionally.
Summary of the invention
The object of the invention is to: for system user awareness of safety in the past not by force, seldom initiatively go to revise this present situation of user cipher, the present invention be directed to the critical software system, after the each login system of user, system generates in real time check code and the hypervisor by the backstage sends on user's the mobile phone, the user verifies at the input validation code, reaches the purpose of safety management user cipher.
Embodiment
Embodiment one
Vehicle administration office's post test system, this system adopts the development mode of C/S, after system user was inputted user name, password success login system, system's backstage management procedure generated at random at once 6 bit digital check codes and sends to the user, and the user verifies at the input validation code.
The process of present embodiment is:
When the operator safeguards, each operator has bundled this user's phone number, disposed the note transmitting apparatus on the machine of operation backstage management procedure, but during this user's success login system, system writes the log-on message table to log-on message, backstage management procedure just can know that within several seconds that user logins successfully, and system generates 6 figure place check codes at once at random, and system reads simultaneously this user's phone number and by the note transmitting apparatus check code sent to the user and carries out in checking.
Claims (2)
1. the method for an important system user safety management is characterized in that:
Cipher random generates---user cipher all regenerates after each successful user's login---after each user successfully logins, and system all automatically generates 6 new figure place check codes and sends to the user by mobile phone short messages and carries out in checking;
2. described a kind of safety method of managing the important system user according to claim 1, it is characterized in that: initiatively generate at random the mode leading subscriber password that 6 figure place check codes are issued the passive receive that the user verifies in real time by system, make system's safety and reliability, avoid user cipher to be stolen, system is maliciously used.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103052517A CN103051447A (en) | 2011-10-11 | 2011-10-11 | Method for user security management of important system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103052517A CN103051447A (en) | 2011-10-11 | 2011-10-11 | Method for user security management of important system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103051447A true CN103051447A (en) | 2013-04-17 |
Family
ID=48063955
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011103052517A Pending CN103051447A (en) | 2011-10-11 | 2011-10-11 | Method for user security management of important system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103051447A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104426667A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for safer management for user passwords of software systems |
| CN104426668A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for securely using specific module of software system |
| CN105046423A (en) * | 2015-07-01 | 2015-11-11 | 安徽海澄德畅电子科技有限公司 | Book management device |
| CN107506624A (en) * | 2017-08-22 | 2017-12-22 | 深圳竹云科技有限公司 | A kind of Windows system safe login methods based on short message verification code |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1832401A (en) * | 2006-04-06 | 2006-09-13 | 陈珂 | Method for protecting safety of account number cipher |
| CN1889421A (en) * | 2006-04-28 | 2007-01-03 | 珠海市西山居软件有限公司 | Account number protecting apparatus and method |
| CN101034988A (en) * | 2007-02-15 | 2007-09-12 | 张仁平 | Network login authentication protection device and its using method |
| CN101257489A (en) * | 2008-03-20 | 2008-09-03 | 陈珂 | Method for protecting account number safety |
| CN102164141A (en) * | 2011-04-24 | 2011-08-24 | 陈珂 | Method for protecting security of account |
-
2011
- 2011-10-11 CN CN2011103052517A patent/CN103051447A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1832401A (en) * | 2006-04-06 | 2006-09-13 | 陈珂 | Method for protecting safety of account number cipher |
| CN1889421A (en) * | 2006-04-28 | 2007-01-03 | 珠海市西山居软件有限公司 | Account number protecting apparatus and method |
| CN101034988A (en) * | 2007-02-15 | 2007-09-12 | 张仁平 | Network login authentication protection device and its using method |
| CN101257489A (en) * | 2008-03-20 | 2008-09-03 | 陈珂 | Method for protecting account number safety |
| CN102164141A (en) * | 2011-04-24 | 2011-08-24 | 陈珂 | Method for protecting security of account |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104426667A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for safer management for user passwords of software systems |
| CN104426668A (en) * | 2013-09-06 | 2015-03-18 | 镇江精英软件科技有限公司 | Method for securely using specific module of software system |
| CN105046423A (en) * | 2015-07-01 | 2015-11-11 | 安徽海澄德畅电子科技有限公司 | Book management device |
| CN107506624A (en) * | 2017-08-22 | 2017-12-22 | 深圳竹云科技有限公司 | A kind of Windows system safe login methods based on short message verification code |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105592065B (en) | A kind of Website logging method and its login system based on SMS | |
| CN101166091B (en) | A dynamic password authentication method and service end system | |
| CN103581105B (en) | Login validation method and login authentication system | |
| CN106790267A (en) | A kind of method and apparatus of access server operating system | |
| CN102281138B (en) | Method and system for improving safety of verification code | |
| CN102300182A (en) | Short-message-based authentication method, system and device | |
| CN103973711B (en) | A kind of verification method and device | |
| CN102130909A (en) | Authentication method and system | |
| CN103220673B (en) | WLAN user authentication method, certificate server and subscriber equipment | |
| CN102868702B (en) | System login device and system login method | |
| CN103368928A (en) | System and method for resetting account password | |
| CN105208013A (en) | Cross-device high-security non-password login method | |
| CN103458407A (en) | Internet account number login management system and method based on short message | |
| CN106060034A (en) | Account login method and device | |
| CN102916976A (en) | Novel system for carrying out network login authentication in combination with short message | |
| CN102833247A (en) | Method for anti-sweeping ciphers in user login system and device thereof | |
| CN107846406A (en) | A kind of account logon method and device | |
| AU2017285865A1 (en) | Mobile authentication method and system therefor | |
| CN103051447A (en) | Method for user security management of important system | |
| CN102413146B (en) | Client authorized logon method based on dynamic codes | |
| CN104918241B (en) | A kind of user authen method and system | |
| CN106203021A (en) | The application login method of a kind of many certification modes integration and system | |
| CN101854357B (en) | Method and system for monitoring network authentication | |
| CN104079527A (en) | Information processing method and electronic equipment | |
| CN102957706A (en) | Safe anti-cracking method of data server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130417 |