CN103095704A - Trusted medium online validation method and device - Google Patents
Trusted medium online validation method and device Download PDFInfo
- Publication number
- CN103095704A CN103095704A CN2013100152527A CN201310015252A CN103095704A CN 103095704 A CN103095704 A CN 103095704A CN 2013100152527 A CN2013100152527 A CN 2013100152527A CN 201310015252 A CN201310015252 A CN 201310015252A CN 103095704 A CN103095704 A CN 103095704A
- Authority
- CN
- China
- Prior art keywords
- trusted medium
- characteristic information
- server
- trusted
- medium
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention provides a trusted medium online validation method and a device, and belongs to the technical field of network communication. The method includes that a client carries out encryption to trusted media feature information through a public key A to form a validation request message, sends the validation request message to a server to enable the server to carry out deciphering to the validation request message through a private key A, and enables the trusted media feature information obtained through deciphering to be compared with trusted media feature information stored in the server to verify validity of trusted media; the client receives a validation response message sent by the server after the trusted media is verified to be valid, and the validation response message is formed in the manner that the server uses a public key B to carry out encryption to enterprises feature information; and the client uses a private key B to carry out deciphering to the validation response message, compares the enterprise feature information obtained through deciphering with enterprises feature information stored in the trusted media to verify the validity of the server. The trusted medium online validation method and the device can improve using safety of the trusted media.
Description
Technical field
The present invention relates to network communications technology field, relate in particular to a kind of online verification method and device of trusted medium.
Background technology
More and more lighter along with mobile memory medium, memory capacity is increasing, the safe handling problem that mobile memory medium occurs in enterprise information security is built is more and more outstanding.Therefore, current enterprises and institutions are in the urgent need to a complete mobile memory medium Managed Solution of cover, fundamentally to solve the safe handling problem of mobile memory medium in prior art.
When prior art is carried out online management to credible mobile memory medium, can the whole life cycle that mobile memory medium uses be managed.For example, can first manage registration center by credible mobile memory medium and complete mandate for the new mobile memory medium of buying by registration (labelling), then, by credible mobile memory medium administrative client, mobile memory medium is accessed and control, thereby accomplish that enterprise information assets, classified information etc. are not moved storage medium and illegally copy, realize the safety management to mobile memory medium information.
Particularly, credible movable storage medium management system is before using credible mobile memory medium, credible mobile memory medium management server need to verify whether the credible mobile memory medium of access is the credible mobile memory medium of authorizing in native system, credible mobile memory medium client needs also whether authentication server is the server of disposing in native system simultaneously, but not the server that the third party disposes.After both sides were verified, client just can load credible mobile memory medium according to the storage policy that server issues, and realizes the safe read-write of data.
In both sides test process mutually, can carry both sides' mutual trust sign in checking request message and auth response message, the enterprise characteristic information that namely generates when the characteristic information of credible mobile memory medium and server disposition.From security standpoint, both sides' mutual trust sign should be encrypted processing, usually uses two kinds of following encryption methods:
(1) fixed key, namely client and server uses fixing password in reciprocal process;
(2) use certificate dynamic negotiation key, message is carried out bulk encryption process.
But if use fixed key, in case Key Exposure, message easily is forged, and fixed key is knowing that for the identical key of all systems' uses credible mobile memory medium is easy to counterfeit message when identifying, cheat the other side, thereby cause leakage of data; If use certificate dynamic negotiation key, need certificate deployment when using, to message bulk encryption, dispose and realize more complicated.
For convenience of describing, represent credible mobile memory medium with trusted medium in following content.
Summary of the invention
In view of this, the purpose of this invention is to provide a kind of online verification method and device of trusted medium, can improve the fail safe that trusted medium uses.
For achieving the above object, the invention provides technical scheme as follows:
A kind of online verification method of trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, wherein store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described method comprises:
Client is encrypted to form to the trusted medium characteristic information with PKI A and is verified that request message sends to server, the checking request message is decrypted with private key A for server, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server compares, and verifies the legitimacy of trusted medium;
The client server is at the auth response message of the legal rear transmission of checking trusted medium, and described auth response message is encrypted enterprise characteristic information with PKI B by server and forms;
Client is decrypted the auth response message with private key B, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium is compared, and comes the legitimacy of authentication server.
A kind of online verification device of trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, described device is client, store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in described trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described device comprises:
The first transmitting element, be used for PKI A, the trusted medium characteristic information being encrypted to form verifying that request message sends to server, the checking request message is decrypted with private key A for server, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server compares, and verifies the legitimacy of trusted medium;
The first receiving element is used for reception server at the auth response message of the legal rear transmission of checking trusted medium, and described auth response message is encrypted enterprise characteristic information with PKI B by server and forms;
The first authentication unit is used for private key B, the auth response message being decrypted, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium is compared, and comes the legitimacy of authentication server.
Compared with prior art, technical scheme of the present invention is by introducing two pairs of unsymmetrical key, mutual trust in trusted medium online verification process sign is encrypted processing, improve the fail safe of message session in credible movable storage medium management system, and then improved the fail safe that trusted medium uses.
Description of drawings
Fig. 1 is the online verification method flow diagram according to the trusted medium of the embodiment of the present invention;
Fig. 2 is the structure chart according to the credible movable storage medium management system of the embodiment of the present invention.
Embodiment
when using trusted medium in the computer that the trusted medium administrative client is installed, client needs and the trusted medium management server communication, the characteristic information of trusted medium is sent to server authentication, server is according to the result, storage policy and enterprise characteristic information are handed down to client, client is after storage policy and after enterprise characteristic information, need the enterprise characteristic information of preserving in this enterprise characteristic information and trusted medium is compared, judge whereby the legitimacy of server, the storage policy that issues according to server after comparing successfully loads the trusted medium that inserts.During online verification, if the not protection of mutual message is perhaps just simply encrypted, mutual message is easy to be forged, and this greatly reduces the fail safe that trusted medium uses, and needs a kind of simple and effective way to solve checking message secure session problem.
For addressing this problem, the embodiment of the present invention is utilized the characteristic that trusted medium can save data, introduce two pairs of unsymmetrical key in each trusted medium, encryption uses public-key during transmission checking message, the other side who only has private key just can untie, thereby efficiently solves the secure session of trusted medium in proof procedure.
Describe the present invention below in conjunction with accompanying drawing.
Fig. 1 is the online verification method flow diagram according to the trusted medium of the embodiment of the present invention, described method is applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, wherein, described client specifically refers to be equipped with the computer of the client software that can use trusted medium, and described server specifically refers to be equipped with and can carry out to trusted medium the computer of the server software of authentication.
With reference to Fig. 1, described online verification method can comprise the steps:
Trusted medium can be registered (labelling) by the computer that client software is installed, and also can register by registration center.To be registered as example by registration center, the keeper inserts trusted medium in registration center, registration center sends registration request to server, after server is received registration request, generate two pairs of unsymmetrical key, be respectively the first unsymmetrical key and the second unsymmetrical key, the first unsymmetrical key comprises PKI A and private key A, the second unsymmetrical key comprises PKI B and private key B, and in addition, server also can generate the characteristic information of trusted medium.
Further, describedly the computer of client software is installed or trusted medium that registration center can think all registrations generates identical unsymmetrical key; Also can distribute different unsymmetrical key for the trusted medium of each registration, to guarantee more fully the safety of message interaction.
Server preservation private key A, PKI B and trusted medium characteristic information are (if be that each trusted medium distributes different unsymmetrical key, also preserve the identification information of trusted medium, like this, server can be inquired about key and the characteristic information corresponding with trusted medium according to identification information), and following information is sent to registration center:
Enterprise characteristic information;
The trusted medium label information comprises the trusted medium characteristic information, if for each trusted medium distributes different unsymmetrical key, also comprise the identification information of trusted medium;
PKI A;
Private key B.
After registration center receives these information, these information are saved in the specific region of trusted medium, so common mobile memory medium just becomes the mobile memory medium of encryption.After registration was completed, trusted medium used after can only being loaded by client, and other system can't effectively identify, thereby had improved the fail safe that trusted medium uses.
Client needs the identity to the server authentication trusted medium when using trusted medium.At first client reads label information and the PKI A of trusted medium from trusted medium, then with PKI A, the trusted medium characteristic information in label information is encrypted, trusted medium characteristic information after encrypting at last and cleartext information are (for example, the identification information of trusted medium) together send to server, the legitimacy of request server checking trusted medium.
Server can be according to cleartext information retrieval corresponding trusted medium characteristic information, private key A and the PKI B of trusted medium to be verified that receives; Then, with the trusted medium characteristic information of the private key A enabling decryption of encrypted that retrieves, Decryption failures, checking is not passed through; Successful decryption is compared the trusted medium characteristic information that deciphering obtains, if comparison is consistent with the trusted medium characteristic information of local storage, determine that trusted medium is legal, is verified, if compare inconsistent, determine that trusted medium is illegal, checking is not passed through.
Also can comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.Wherein, described storage policy can be expressly to send, and can be also to reinstate with enterprise characteristic information one to send after PKI B encrypts.
At first client reads the private key B in trusted medium, and with the enterprise characteristic information of private key B enabling decryption of encrypted, Decryption failures, checking is not passed through; Successful decryption reads the enterprise characteristic information in trusted medium, and deciphering the enterprise characteristic information that obtains and the enterprise characteristic information that reads are compared, if comparison is consistent, determine server legitimacy, be verified, if compare inconsistently, determine that server is illegal, checking is not passed through.
If checking is not passed through, abandon loading trusted medium; If the verification passes, load described trusted medium.Wherein, if described auth response message comprises storage policy, load trusted medium according to storage policy.After loading successfully, the user can normally use trusted medium to carry out the read-write operation of file.
Corresponding with said method, the embodiment of the present invention also provides a kind of system that realizes said method.
Fig. 2 is the structure chart according to the credible movable storage medium management system of the embodiment of the present invention, described system can comprise: trusted medium administrative client 10, trusted medium management server 20 and trusted medium 30, store the PKI A of the first unsymmetrical key that server 20 issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium 30, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server 20.Wherein, described client 10 specifically refers to be equipped with the computer of the client software that can use trusted medium, and described server 20 specifically refers to be equipped with and can carry out to trusted medium the computer of the server software of authentication.
Described client 10 can comprise:
The first transmitting element 11, be used for PKI A, the trusted medium characteristic information being encrypted to form verifying that request message sends to server, the checking request message is decrypted with private key A for server, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server compares, and verifies the legitimacy of trusted medium;
The first receiving element 12 is used for reception server at the auth response message of the legal rear transmission of checking trusted medium, and described auth response message is encrypted enterprise characteristic information with PKI B by server and forms;
The first authentication unit 13 is used for private key B, the auth response message being decrypted, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium is compared, and comes the legitimacy of authentication server.
Described server 20 can comprise:
The second receiving element 21 is used for receiving the checking request message that client sends, and described checking request message is encrypted the trusted medium characteristic information with PKI A by client and formed;
The second authentication unit 22 is used for private key A verifying that request message is decrypted, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server is compared, and verifies the legitimacy of trusted medium;
The second transmitting element 23, be used for after the checking trusted medium is legal, with PKI B, enterprise characteristic information is encrypted formation auth response message and sends to client, the auth response message is decrypted with private key B for client, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium compares, and comes the legitimacy of authentication server.
Preferably, the trusted medium sign be can also comprise in described checking request message, corresponding trusted medium characteristic information, private key A and PKI B obtained for server according to the trusted medium sign.
Preferably, can also comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.
Wherein, the legitimacy of described checking trusted medium comprises: described server is to checking request message successful decryption, and the trusted medium characteristic information of storing in the trusted medium characteristic information that obtains of deciphering and server compares unanimously, and definite trusted medium is legal; The legitimacy of described authentication server comprises: described client is to auth response message successful decryption, and the enterprise characteristic information of storing in the enterprise characteristic information that obtains of deciphering and trusted medium compare consistent, definite server legitimacy.
In sum, the embodiment of the present invention is utilized the characteristic that trusted medium can save data, introduce two pairs of unsymmetrical key in each trusted medium, encryption uses public-key during transmission checking message, the other side who only has private key just can untie, thereby efficiently solves the secure session of trusted medium in proof procedure.
The above is only preferred embodiment of the present invention, and is in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of making, is equal to replacement, improvement etc., within all should being included in the scope of protection of the invention.
Claims (10)
1. the online verification method of a trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, it is characterized in that, store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described method comprises:
Client is encrypted to form to the trusted medium characteristic information with PKI A and is verified that request message sends to server, the checking request message is decrypted with private key A for server, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server compares, and verifies the legitimacy of trusted medium;
The client server is at the auth response message of the legal rear transmission of checking trusted medium, and described auth response message is encrypted enterprise characteristic information with PKI B by server and forms;
Client is decrypted the auth response message with private key B, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium is compared, and comes the legitimacy of authentication server.
2. the method for claim 1 is characterized in that:
Also comprise the trusted medium sign in described checking request message, obtain corresponding trusted medium characteristic information, private key A and PKI B for server according to the trusted medium sign; And/or,
Also comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.
3. the method for claim 1 is characterized in that:
The legitimacy of described checking trusted medium comprises: described server is to checking request message successful decryption, and the trusted medium characteristic information of storing in the trusted medium characteristic information that obtains of deciphering and server compares unanimously, and definite trusted medium is legal;
The legitimacy of described authentication server comprises: described client is to auth response message successful decryption, and the enterprise characteristic information of storing in the enterprise characteristic information that obtains of deciphering and trusted medium compare consistent, definite server legitimacy.
4. the online verification method of a trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, it is characterized in that, store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described method comprises:
Server receives the checking request message that client sends, and described checking request message is encrypted the trusted medium characteristic information with PKI A by client and formed;
Server is decrypted the checking request message with private key A, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server is compared, and verifies the legitimacy of trusted medium;
Server is after the checking trusted medium is legal, with PKI B, enterprise characteristic information is encrypted formation auth response message and sends to client, the auth response message is decrypted with private key B for client, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium compares, and comes the legitimacy of authentication server.
5. method as claimed in claim 4 is characterized in that:
Also comprise the trusted medium sign in described checking request message, obtain corresponding trusted medium characteristic information, private key A and PKI B for server according to the trusted medium sign; And/or,
Also comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.
6. method as claimed in claim 4 is characterized in that:
The legitimacy of described checking trusted medium comprises: described server is to checking request message successful decryption, and the trusted medium characteristic information of storing in the trusted medium characteristic information that obtains of deciphering and server compares unanimously, and definite trusted medium is legal;
The legitimacy of described authentication server comprises: described client is to auth response message successful decryption, and the enterprise characteristic information of storing in the enterprise characteristic information that obtains of deciphering and trusted medium compare consistent, definite server legitimacy.
7. the online verification device of a trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, described device is client, it is characterized in that, store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described device comprises:
The first transmitting element, be used for PKI A, the trusted medium characteristic information being encrypted to form verifying that request message sends to server, the checking request message is decrypted with private key A for server, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server compares, and verifies the legitimacy of trusted medium;
The first receiving element is used for reception server at the auth response message of the legal rear transmission of checking trusted medium, and described auth response message is encrypted enterprise characteristic information with PKI B by server and forms;
The first authentication unit is used for private key B, the auth response message being decrypted, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium is compared, and comes the legitimacy of authentication server.
8. device as claimed in claim 7 is characterized in that:
Also comprise the trusted medium sign in described checking request message, obtain corresponding trusted medium characteristic information, private key A and PKI B for server according to the trusted medium sign; And/or,
Also comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.
9. the online verification device of a trusted medium, be applied to comprise in the system of trusted medium administrative client, trusted medium management server and trusted medium, described device is server, it is characterized in that, store the PKI A of the first unsymmetrical key that server issues, private key B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in trusted medium, store the private key A of the first unsymmetrical key, PKI B, enterprise characteristic information and the trusted medium characteristic information of the second unsymmetrical key in server, described method comprises:
The second receiving element is used for receiving the checking request message that client sends, and described checking request message is encrypted the trusted medium characteristic information with PKI A by client and formed;
The second authentication unit is used for private key A verifying that request message is decrypted, and the trusted medium characteristic information of storing in the trusted medium characteristic information that deciphering is obtained and server is compared, and verifies the legitimacy of trusted medium;
The second transmitting element, be used for after the checking trusted medium is legal, with PKI B, enterprise characteristic information is encrypted formation auth response message and sends to client, the auth response message is decrypted with private key B for client, and the enterprise characteristic information of storing in the enterprise characteristic information that deciphering is obtained and trusted medium compares, and comes the legitimacy of authentication server.
10. device as claimed in claim 9 is characterized in that:
Also comprise the trusted medium sign in described checking request message, obtain corresponding trusted medium characteristic information, private key A and PKI B for server according to the trusted medium sign; And/or,
Also comprise storage policy in described auth response message, after authentication server is legal, load the trusted medium of appointment for client according to storage policy.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013100152527A CN103095704A (en) | 2013-01-15 | 2013-01-15 | Trusted medium online validation method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2013100152527A CN103095704A (en) | 2013-01-15 | 2013-01-15 | Trusted medium online validation method and device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN103095704A true CN103095704A (en) | 2013-05-08 |
Family
ID=48207837
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2013100152527A Pending CN103095704A (en) | 2013-01-15 | 2013-01-15 | Trusted medium online validation method and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103095704A (en) |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104243146A (en) * | 2014-09-05 | 2014-12-24 | 宇龙计算机通信科技(深圳)有限公司 | Encryption communication method and device and terminal |
CN104320485A (en) * | 2014-11-07 | 2015-01-28 | 深圳市腾讯计算机系统有限公司 | Information push method, client and router |
CN104580264A (en) * | 2015-02-13 | 2015-04-29 | 人民网股份有限公司 | Login method, registration method and login device as well as login and refrigeration system |
WO2016180204A1 (en) * | 2015-05-14 | 2016-11-17 | 瑞数信息技术(上海)有限公司 | Method and device for secure communication |
WO2016180202A1 (en) * | 2015-05-14 | 2016-11-17 | 瑞数信息技术(上海)有限公司 | Method and device for secure communication |
CN106209384A (en) * | 2016-07-19 | 2016-12-07 | 上海电享信息科技有限公司 | Use the client terminal of security mechanism and the communication authentication method of charging device |
CN106846604A (en) * | 2017-01-18 | 2017-06-13 | 北京云知科技有限公司 | A kind of reading/writing method, the apparatus and system of banknote characteristic information |
CN106899552A (en) * | 2015-12-21 | 2017-06-27 | 中国电信股份有限公司 | Authentication method, certification terminal and system |
CN108322886A (en) * | 2017-12-15 | 2018-07-24 | 腾讯科技(深圳)有限公司 | The method for authenticating and device of terminal positioning data |
CN109391594A (en) * | 2017-08-09 | 2019-02-26 | 中国电信股份有限公司 | Security certification system and method |
CN111193695A (en) * | 2019-07-26 | 2020-05-22 | 腾讯科技(深圳)有限公司 | Encryption method and device for third party account login and storage medium |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101043337A (en) * | 2007-03-22 | 2007-09-26 | 中兴通讯股份有限公司 | Interactive process for content class service |
CN101051292A (en) * | 2007-01-08 | 2007-10-10 | 中国信息安全产品测评认证中心 | Reliable U disc, method for realizing reliable U disc safety and its data communication with computer |
CN101267301A (en) * | 2007-03-15 | 2008-09-17 | 上海贝尔阿尔卡特股份有限公司 | Identity authentication and secret key negotiation method and device in communication network |
CN101840716A (en) * | 2009-03-20 | 2010-09-22 | 深圳市朗科科技股份有限公司 | Authentication system and method of storage device |
CN102202299A (en) * | 2010-03-26 | 2011-09-28 | 谢德育 | Realization method of end-to-end voice encryption system based on 3G/B3G |
CN102377759A (en) * | 2010-08-25 | 2012-03-14 | 中国移动通信有限公司 | Service processing system, user identity identification method and related devices |
CN102724137A (en) * | 2012-05-30 | 2012-10-10 | 杭州华三通信技术有限公司 | Method and system for safely using credible mobile storage medium in off-line state |
CN102750496A (en) * | 2012-06-12 | 2012-10-24 | 南京师范大学 | Secure access authentication method for removable storage media |
-
2013
- 2013-01-15 CN CN2013100152527A patent/CN103095704A/en active Pending
Patent Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101051292A (en) * | 2007-01-08 | 2007-10-10 | 中国信息安全产品测评认证中心 | Reliable U disc, method for realizing reliable U disc safety and its data communication with computer |
CN101267301A (en) * | 2007-03-15 | 2008-09-17 | 上海贝尔阿尔卡特股份有限公司 | Identity authentication and secret key negotiation method and device in communication network |
CN101043337A (en) * | 2007-03-22 | 2007-09-26 | 中兴通讯股份有限公司 | Interactive process for content class service |
CN101840716A (en) * | 2009-03-20 | 2010-09-22 | 深圳市朗科科技股份有限公司 | Authentication system and method of storage device |
CN102202299A (en) * | 2010-03-26 | 2011-09-28 | 谢德育 | Realization method of end-to-end voice encryption system based on 3G/B3G |
CN102377759A (en) * | 2010-08-25 | 2012-03-14 | 中国移动通信有限公司 | Service processing system, user identity identification method and related devices |
CN102724137A (en) * | 2012-05-30 | 2012-10-10 | 杭州华三通信技术有限公司 | Method and system for safely using credible mobile storage medium in off-line state |
CN102750496A (en) * | 2012-06-12 | 2012-10-24 | 南京师范大学 | Secure access authentication method for removable storage media |
Non-Patent Citations (1)
Title |
---|
郭卫东等: "移动存储介质安全认证机制的研究与实现", 《2007北京地区高校研究生学术交流会通信与信息技术会议》 * |
Cited By (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104243146A (en) * | 2014-09-05 | 2014-12-24 | 宇龙计算机通信科技(深圳)有限公司 | Encryption communication method and device and terminal |
CN104320485A (en) * | 2014-11-07 | 2015-01-28 | 深圳市腾讯计算机系统有限公司 | Information push method, client and router |
CN104580264A (en) * | 2015-02-13 | 2015-04-29 | 人民网股份有限公司 | Login method, registration method and login device as well as login and refrigeration system |
US10142297B2 (en) | 2015-05-14 | 2018-11-27 | River Security Inc. | Secure communication method and apparatus |
WO2016180202A1 (en) * | 2015-05-14 | 2016-11-17 | 瑞数信息技术(上海)有限公司 | Method and device for secure communication |
WO2016180204A1 (en) * | 2015-05-14 | 2016-11-17 | 瑞数信息技术(上海)有限公司 | Method and device for secure communication |
CN106899552A (en) * | 2015-12-21 | 2017-06-27 | 中国电信股份有限公司 | Authentication method, certification terminal and system |
CN106899552B (en) * | 2015-12-21 | 2020-03-20 | 中国电信股份有限公司 | Authentication method, authentication terminal and system |
CN106209384A (en) * | 2016-07-19 | 2016-12-07 | 上海电享信息科技有限公司 | Use the client terminal of security mechanism and the communication authentication method of charging device |
CN106209384B (en) * | 2016-07-19 | 2019-09-10 | 上海电享信息科技有限公司 | Use the client terminal of security mechanism and the communication authentication method of charging unit |
CN106846604A (en) * | 2017-01-18 | 2017-06-13 | 北京云知科技有限公司 | A kind of reading/writing method, the apparatus and system of banknote characteristic information |
CN106846604B (en) * | 2017-01-18 | 2020-01-17 | 北京云知科技有限公司 | Method, device and system for reading and writing banknote characteristic information |
CN109391594A (en) * | 2017-08-09 | 2019-02-26 | 中国电信股份有限公司 | Security certification system and method |
CN108322886A (en) * | 2017-12-15 | 2018-07-24 | 腾讯科技(深圳)有限公司 | The method for authenticating and device of terminal positioning data |
CN108322886B (en) * | 2017-12-15 | 2019-12-06 | 腾讯科技(深圳)有限公司 | Authentication method and device for terminal positioning data |
CN111193695A (en) * | 2019-07-26 | 2020-05-22 | 腾讯科技(深圳)有限公司 | Encryption method and device for third party account login and storage medium |
CN111193695B (en) * | 2019-07-26 | 2021-07-06 | 腾讯科技(深圳)有限公司 | Encryption method and device for third party account login and storage medium |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103095704A (en) | Trusted medium online validation method and device | |
CN108292330B (en) | Secure token distribution | |
US11741461B2 (en) | Method for performing non-repudiation, and payment managing server and user device therefor | |
CN102577229B (en) | Key certification in one round trip | |
CN103138939B (en) | Based on the key access times management method of credible platform module under cloud memory module | |
CN102984115B (en) | A kind of network security method and client-server | |
CN108123795B (en) | Quantum key chip issuing method, application method, issuing platform and system | |
US20140112470A1 (en) | Method and system for key generation, backup, and migration based on trusted computing | |
CN112528250B (en) | System and method for realizing data privacy and digital identity through block chain | |
KR101817152B1 (en) | Method for providing trusted right information, method for issuing user credential including trusted right information, and method for obtaining user credential | |
CN101841525A (en) | Secure access method, system and client | |
CN101321064A (en) | Information system access control method and apparatus based on digital certificate technique | |
CN108200014B (en) | Method, device and system for accessing server by using intelligent key device | |
WO2020211481A1 (en) | Method, device and system for generating blockchain authorization information | |
CN107689957A (en) | A kind of digital certificate management method, electronic equipment, storage medium | |
CN114826661A (en) | Data access method, device and medium based on open API | |
US20110154436A1 (en) | Provider Management Methods and Systems for a Portable Device Running Android Platform | |
CN106656955A (en) | Communication method and system and user terminal | |
CN112507296A (en) | User login verification method and system based on block chain | |
CN101582876A (en) | Method, device and system for registering user generated content (UGC) | |
CN110086818B (en) | Cloud file secure storage system and access control method | |
JP6533542B2 (en) | Secret key replication system, terminal and secret key replication method | |
CN103973698A (en) | User access right revoking method in cloud storage environment | |
US20160335453A1 (en) | Managing Data | |
CN102724137A (en) | Method and system for safely using credible mobile storage medium in off-line state |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
CB02 | Change of applicant information |
Address after: 310052 Binjiang District Changhe Road, Zhejiang, China, No. 466, No. Applicant after: Xinhua three Technology Co., Ltd. Address before: 310053 Hangzhou science and Technology Development Zone, Zhejiang high tech park, No. six and road, No. 310 Applicant before: Huasan Communication Technology Co., Ltd. |
|
CB02 | Change of applicant information | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20130508 |
|
RJ01 | Rejection of invention patent application after publication |