CN103152329B - Bluetooth is utilized to carry out identity authentication method and system - Google Patents
Bluetooth is utilized to carry out identity authentication method and system Download PDFInfo
- Publication number
- CN103152329B CN103152329B CN201310049864.8A CN201310049864A CN103152329B CN 103152329 B CN103152329 B CN 103152329B CN 201310049864 A CN201310049864 A CN 201310049864A CN 103152329 B CN103152329 B CN 103152329B
- Authority
- CN
- China
- Prior art keywords
- bluetooth
- shield
- subscriber equipment
- user
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention relates to technical field of network security, it is provided that one utilizes bluetooth to carry out identity authentication method and system.The method comprising the steps of: it is invisible mode that bluetooth shield arranges its state when dispatching from the factory;Record at server end after providing bluetooth shield and user profile being bound with described Bluetooth address;User inputs described user profile by subscriber equipment and accesses server, is extracted in described subscriber equipment by described Bluetooth address;Described subscriber equipment uses described Bluetooth address active request to connect described bluetooth shield;After described request received by described bluetooth shield, set up the Bluetooth link with described subscriber equipment, provide authentication for user data.Present invention, avoiding the potential safety hazard that existing bluetooth equipment is common, the trusted identity certification of each operation system can be strengthened and improve the authority of each operation system data, confidentiality, while saving bluetooth shield power consumption, improving the experience of user.
Description
Technical field
The present invention relates to technical field of network security, utilize bluetooth to carry out identity authentication method and system particularly to one.
Background technology
Along with computer network is deep into the every aspect of people market life, having related to the privacy information of user in increasing network application, simple user password is relatively low due to safety coefficient, has been difficult to effectively ensure the information security of user.Thus the Internet usually needs user is carried out the intensity authentication much larger than username-password mode, one typical scene be user log in Net silver carry out transferring accounts operation time need operation user identity is carried out rigid authentication, at present on PC, commonly using USBKey(and be commonly referred to as U-shield) equipment is as the hands section of authentication, communication is carried out by usb data mouth between this kind equipment and PC, on PC, Key is inserted when user needs to carry out authentication, Key is extracted when using complete, authentication information is provided by USBKey completely, the unauthorized user without this Key is then denied access to, which greatly ensure that user account safety.
But at present on the mobile apparatus, also seldom have and the equipment carrying out authentication with USBKey or similar fashion can be provided.Reason mainly has two: 1, be difficult to find the equipment of the systems such as a kind of general data communication method energy all compatible iOS, Android;2, because problems such as electricity, volume, connecting lines, it is difficult to design the gratifying equipment of Consumer's Experience.For realizing the authentication on mobile equipment, the equipment such as SD card shield, SIM shield, SIM paster shield, audio interface shield occurred once, but all required due to it that carrying out contact with mobile equipment was connected, thus effect was all not ideal.
Vehicles Collected from Market also has a small amount of bluetooth shield product, but existing bluetooth shield product ubiquity problems with: 1, any equipment with Bluetooth function can search this bluetooth shield equipment, and can attempt to initiate to connect, this brings very big hidden danger to the safety of equipment;2, bluetooth equipment too much needs user to get involved when pairing, connection, poor user experience;3, using the time once needing power-on long, electric quantity consumption is fast.Based on above reason, existing bluetooth shield also fails to well solve the Verify Your Identity questions of mobile equipment.
Summary of the invention
In view of this, the invention provides one and utilize bluetooth to carry out identity authentication method and system, with the problem solving cannot carry out effective authentication in a mobile device in prior art.
For solving above-mentioned technical problem, the present invention utilizes bluetooth to carry out identity authentication method to include step:
It is invisible mode that bluetooth shield arranges its state when dispatching from the factory;
Record at server end after providing bluetooth shield and user profile being bound with described Bluetooth address;
User inputs described user profile by subscriber equipment and accesses server, is extracted in described subscriber equipment by described Bluetooth address;
Described subscriber equipment uses described Bluetooth address active request to connect described bluetooth shield;
After described request received by described bluetooth shield, set up the Bluetooth link with described subscriber equipment, provide authentication for user data.
Preferably, described subscriber equipment just extracts described Bluetooth address from server when initiating certification request.
Preferably, its Bluetooth function just opened by described subscriber equipment after extracting described Bluetooth address, opens the power supply of described bluetooth shield while initiating connection request.
Preferably, described bluetooth shield automatically shuts power off immediately after completing one-time identity authentication.
Preferably, described bluetooth shield can actively be deleted when closing power supply or point out user to delete the described Bluetooth address retained in described subscriber equipment.
On the other hand, the present invention also provides a kind of system utilizing bluetooth to carry out authentication simultaneously, and described system includes: server, subscriber equipment and bluetooth shield;Wherein,
Described server includes memory element and network controller, and described unit records has user profile and the Bluetooth address of the bluetooth shield corresponding with described user profile;Described network controller and described subscriber equipment, by wired or wireless link communication, receive user profile and verify, send to the user by verifying the Bluetooth address of the bluetooth shield of correspondence, receive user data and authentication information and perform;
Described subscriber equipment includes input block, communication unit and bluetooth unit, and described input block is for receiving the user profile of user's input;Described user profile, by described wired or wireless link and described server communication, is mail to described server, receives the Bluetooth address of the bluetooth shield that server is sent, user data and authentication information is mail to server by described communication unit;Described bluetooth unit is communicated with described bluetooth shield by Bluetooth link, sends the connection request containing Bluetooth address to described bluetooth shield, receives the described bluetooth shield authentication information to user data;
Described bluetooth shield includes bluetooth module and authentication ' unit, and described bluetooth module acquiescence is in invisible mode, only just sets up Bluetooth link with described subscriber equipment when receiving described subscriber equipment and sending the connection request comprising correct Bluetooth address;Described authentication ' unit sends the authentication information to user data by described bluetooth module to described subscriber equipment.
Preferably, described bluetooth shield also includes energy supply control module, for completing to be automatically switched off the power supply of described bluetooth shield after one-time identity authentication.
Preferably, the energy supply control module of described bluetooth shield can actively be deleted when closing power supply or point out user to delete the described Bluetooth address retained in described subscriber equipment.
By technique scheme, present invention, avoiding the potential safety hazard that existing bluetooth equipment is common, the trusted identity certification of each operation system can be strengthened and improve the authority of each operation system data, confidentiality, improving the experience of user simultaneously.
Accompanying drawing explanation
Fig. 1 utilizes bluetooth to carry out the flow chart of identity authentication method in one embodiment of the present of invention;
Fig. 2 is the system construction drawing utilizing bluetooth to carry out authentication in a typical application scenarios of the present invention.
Detailed description of the invention
Below in conjunction with each accompanying drawing, the technical scheme in the embodiment of the present invention is carried out clear, complete description, it is clear that described embodiment is a part of embodiment of the present invention, rather than whole embodiments.Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art obtain under the premise not making creative work, broadly fall into the scope of protection of the invention.
Existing bluetooth equipment in use, will carry out two equipment of communication and must all open bluetooth and allow bluetooth module be at any time to treat on line state, otherwise there will be the problem that cannot find counterpart device when carrying out online.Owing to the state of bluetooth module is radio broadcasting, all equipment being in effective range of receiving all may search for this equipment and trial carries out online, even if this makes bluetooth shield also have stolen danger when still holding in validated user hands.Additionally, bluetooth equipment employing user password mode when matching online provides certain safety, but this mode is too low for equipment protection levels such as bluetooth shields and adds user operation complexity, reduces Consumer's Experience.Finally, treat that on line state could searched arrive owing to equipment needs to be in, even if when two equipment being attached enter power saving holding state, remain a need between bluetooth module determining each other whether still on line state by mutual calling, this makes bluetooth module must be maintained at duty at any time, adds the power consumption of equipment.
In order to overcome the drawbacks described above of bluetooth equipment, the invention provides a kind of mode connected either directly through device address foundation to use bluetooth shield to carry out authentication.As it is shown in figure 1, in one embodiment of the invention, utilize bluetooth to carry out identity authentication method and include step: it is invisible mode that bluetooth shield arranges its state when dispatching from the factory;Record at server end after providing bluetooth shield and user profile being bound with described Bluetooth address;User inputs described user profile by subscriber equipment and accesses server, is extracted in described subscriber equipment by described Bluetooth address;Described subscriber equipment uses described Bluetooth address active request to connect described bluetooth shield;After described request received by described bluetooth shield, set up the Bluetooth link with subscriber equipment, provide authentication for user data.
Referring back to Fig. 2, in a typical application scenarios of the present invention, the system that bluetooth carries out authentication is utilized to include: server 1, subscriber equipment 2 and bluetooth shield 3;Wherein,
Described server 1 includes memory element 101 and network controller 102, and described memory element 101 record has user profile and the Bluetooth address of the bluetooth shield 3 corresponding with described user profile;Described network controller 102 and described subscriber equipment 2, by wired or wireless link communication, receive user profile and verify, send to the user by verifying the Bluetooth address of the bluetooth shield 3 of correspondence, receive user data and authentication information and perform;
Described subscriber equipment 2 includes input block 201, communication unit 202 and bluetooth unit 203, and described input block 201 is for receiving the user profile of user's input;Described communication unit 202 is communicated with described server 1 by described wired or wireless link, described user profile mails to described server 1, receive the Bluetooth address of the bluetooth shield 3 that server 1 is sent, user data and authentication information are mail to server 1;Described bluetooth unit 203 is communicated with described bluetooth shield 3 by Bluetooth link, sends the connection request containing Bluetooth address to described bluetooth shield 3, receives the described bluetooth shield 3 authentication information to user data;
Described bluetooth shield 3 includes bluetooth module 301 and authentication ' unit 302, and described bluetooth module 301 acquiescence is in invisible mode, only just sets up Bluetooth link with described subscriber equipment 2 when receiving described subscriber equipment 2 and sending the connection request comprising correct Bluetooth address;Described authentication ' unit 302 sends the authentication information to user data by described bluetooth module 301 to described subscriber equipment 2.
In embodiments of the invention, in advance by the Bluetooth address record of bluetooth shield at server end, the state simultaneously arranging bluetooth shield is invisible mode so that bluetooth shield give tacit consent to after power-on only receive information and actively do not send information.Bluetooth shield can be avoided to be searched by unauthorized user equipment so on the one hand, enhance the safety of bluetooth shield;Reduce the power consumption of bluetooth shield on the other hand, save electricity thus the equipment that extends uses the time.
Subsequently, when authenticating device (bluetooth shield) is issued to user, the Bluetooth address of the user profile of user with this bluetooth shield is bound.The information record of binding is at server end, and the binding of information is undertaken by the manager of credit, it is possible to carry out while providing, it is also possible to carry out after granting, but preferably carries out while providing.
User is when using bluetooth shield to carry out authentication, first pass through subscriber equipment (as mobile terminal, panel computer or other with the computer equipment of Bluetooth function) input user profile to access server, the Bluetooth address of the bluetooth shield corresponding with user profile can be obtained by the user verified.Subsequently, Bluetooth function opened by subscriber equipment, utilizes this Bluetooth address actively to initiate connection request, and meanwhile user opens the power supply of bluetooth shield.Bluetooth shield sets up Bluetooth link with subscriber equipment after receiving this connection request, provides authentication for the user data submitted in this subscriber equipment.Described authentication can be the digital signature, coded communication or both combinations etc. that provide for user data, it is possible to the mode combined by software, hardware or soft or hard is realized, and concrete implementation process is similar to existing USBKey form, does not repeat them here.
The bluetooth shield of the present invention has higher safety compared to other bluetooth equipments, and the exploration that can be prevented effectively from unauthorized user equipment connects, and owing to being only capable of setting up link with credit user, the use for user data and bluetooth shield provides dual safety guarantee.For being further ensured that safety and health low-power consumption, the bluetooth shield of the present invention can close bluetooth shield power supply immediately after completing one-time identity authentication.It is highly preferred that can actively delete when power supply closed by bluetooth shield or point out user to delete the Bluetooth address retained in subscriber equipment, to avoid this subscriber equipment illegally to be used by unauthorized user, it is further ensured that the safety of this bluetooth shield.
By the way, the invention provides one utilizes bluetooth to carry out identity authentication method and system, it is invisible pattern by arranging the bluetooth of authenticating device, solve the safety problem of conventional Bluetooth equipment, by server can be gone to fetch Bluetooth address, it is not necessary to search, reduce user and get involved number of times, optimize Consumer's Experience, also can be greatly shortened the working time of authenticating device simultaneously, reduce power consumption.So, present invention is especially suited for the identity authentication service of mobile equipment such as mobile phone, panel computer, to promoting, mobile e-business is significant.
Embodiment of above is merely to illustrate the present invention; and it is not limitation of the present invention; those of ordinary skill about technical field; without departing from the spirit and scope of the present invention; can also make a variety of changes and modification; therefore all equivalent technical schemes fall within scope of the invention, and the scope of patent protection of the present invention should be defined by the claims.
Claims (8)
1. one kind utilizes bluetooth to carry out identity authentication method, it is characterised in that described method includes step:
It is invisible mode that bluetooth shield arranges its state when dispatching from the factory;
Record at server end after providing bluetooth shield and while providing, user profile being bound with described Bluetooth address;
User inputs described user profile by subscriber equipment and accesses server, is extracted in described subscriber equipment by described Bluetooth address;
Described subscriber equipment uses described Bluetooth address active request to connect described bluetooth shield;
After described request received by described bluetooth shield, setting up the Bluetooth link with described subscriber equipment, provide authentication for user data, described authentication is the digital signature, coded communication or both combinations that provide for user data.
2. method according to claim 1, it is characterised in that described subscriber equipment just extracts described Bluetooth address from server when initiating certification request.
3. method according to claim 2, it is characterised in that its Bluetooth function just opened by described subscriber equipment after extracting described Bluetooth address, opens the power supply of described bluetooth shield while initiating connection request.
4. method according to claim 1, it is characterised in that described bluetooth shield automatically shuts power off immediately after completing one-time identity authentication.
5. method according to claim 4, it is characterised in that described bluetooth shield can actively delete when closing power supply or prompting user deletes the described Bluetooth address retained in described subscriber equipment.
6. one kind utilizes the system that bluetooth carries out authentication, it is characterised in that described system includes: server, subscriber equipment and bluetooth shield;Wherein,
Described server includes memory element and network controller, and described unit records has user profile and the Bluetooth address of the bluetooth shield corresponding with described user profile;Described network controller and described subscriber equipment, by wired or wireless link communication, receive user profile and verify, send to the user by verifying the Bluetooth address of the bluetooth shield of correspondence, receive user data and authentication information and perform;Wherein, record at server end after user profile being bound with described Bluetooth address while bluetooth shield granting;
Described subscriber equipment includes input block, communication unit and bluetooth unit, and described input block is for receiving the user profile of user's input;Described user profile, by described wired or wireless link and described server communication, is mail to described server, receives the Bluetooth address of the bluetooth shield that server is sent, user data and authentication information is mail to server by described communication unit;Described bluetooth unit is communicated with described bluetooth shield by Bluetooth link, sends the connection request containing Bluetooth address to described bluetooth shield, receives the described bluetooth shield authentication information to user data;
Described bluetooth shield includes bluetooth module and authentication ' unit, and described bluetooth module acquiescence is in invisible mode, only just sets up Bluetooth link with described subscriber equipment when receiving described subscriber equipment and sending the connection request comprising correct Bluetooth address;Described authentication ' unit sends the authentication information to user data by described bluetooth module to described subscriber equipment, and authentication is the digital signature, coded communication or both combinations that provide for user data.
7. system according to claim 6, it is characterised in that described bluetooth shield also includes energy supply control module, for completing to be automatically switched off the power supply of described bluetooth shield after one-time identity authentication.
8. system according to claim 7, it is characterised in that the energy supply control module of described bluetooth shield can actively delete when closing power supply or prompting user deletes the described Bluetooth address retained in described subscriber equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310049864.8A CN103152329B (en) | 2013-02-07 | 2013-02-07 | Bluetooth is utilized to carry out identity authentication method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310049864.8A CN103152329B (en) | 2013-02-07 | 2013-02-07 | Bluetooth is utilized to carry out identity authentication method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103152329A CN103152329A (en) | 2013-06-12 |
| CN103152329B true CN103152329B (en) | 2016-07-06 |
Family
ID=48550192
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310049864.8A Active CN103152329B (en) | 2013-02-07 | 2013-02-07 | Bluetooth is utilized to carry out identity authentication method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103152329B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103873973A (en) * | 2014-02-27 | 2014-06-18 | 深圳市文鼎创数据科技有限公司 | Method of realizing shield function and earphone function and Bluetooth shield |
| CN103905200B (en) * | 2014-03-21 | 2017-11-14 | 北京中金国信科技有限公司 | A kind of identity identifying method and system based on sound wave communication |
| CN104320254B (en) * | 2014-09-29 | 2017-11-28 | 飞天诚信科技股份有限公司 | A kind of method of work for the intelligent cipher key equipment for supporting expansion interface |
| CN105306452A (en) * | 2015-09-30 | 2016-02-03 | 成都信汇聚源科技有限公司 | Bluetooth dynamic password security authentication method avoiding device password transmission and based on cloud computing platform |
| CN105141639A (en) * | 2015-09-30 | 2015-12-09 | 成都信汇聚源科技有限公司 | Cloud-computing-platform-based bluetooth dynamic password security certificate method |
| CN106411524B (en) * | 2016-08-31 | 2019-07-12 | 广州世安信息技术股份有限公司 | The method of mobile terminal trust computing based on bluetooth |
| CN108650664B (en) * | 2018-04-18 | 2022-02-01 | 北京华大智宝电子系统有限公司 | Bluetooth connection control method, terminal and Bluetooth SIM card |
| CN110084022A (en) * | 2019-05-28 | 2019-08-02 | 咪付(深圳)网络技术有限公司 | A kind of method for identifying ID and system based on bluetooth auxiliary |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1638303A (en) * | 2004-01-05 | 2005-07-13 | 日本电气株式会社 | Information delivery system, information delivery method, mobile unit, server, and information delivery terminal |
| CN101378269A (en) * | 2007-08-29 | 2009-03-04 | 广州盛华信息技术有限公司 | Medium information play apparatus, user terminal, and medium information transmission method and system |
| CN102315942A (en) * | 2011-09-30 | 2012-01-11 | 福源立信(北京)科技有限公司 | Security terminal with Bluetooth and communication method thereof of security terminal and client end |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JPWO2005083941A1 (en) * | 2004-03-02 | 2007-11-29 | 松下電器産業株式会社 | Communication system and communication method |
-
2013
- 2013-02-07 CN CN201310049864.8A patent/CN103152329B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1638303A (en) * | 2004-01-05 | 2005-07-13 | 日本电气株式会社 | Information delivery system, information delivery method, mobile unit, server, and information delivery terminal |
| CN101378269A (en) * | 2007-08-29 | 2009-03-04 | 广州盛华信息技术有限公司 | Medium information play apparatus, user terminal, and medium information transmission method and system |
| CN102315942A (en) * | 2011-09-30 | 2012-01-11 | 福源立信(北京)科技有限公司 | Security terminal with Bluetooth and communication method thereof of security terminal and client end |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103152329A (en) | 2013-06-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103152329B (en) | Bluetooth is utilized to carry out identity authentication method and system | |
| CN103905200B (en) | A kind of identity identifying method and system based on sound wave communication | |
| JP2018088292A (en) | System and method for secure transaction process by mobile equipment | |
| CN103929748B (en) | A kind of Internet of Things wireless terminal and its collocation method and wireless network access point | |
| CN104243461B (en) | A kind of method of mobile terminal network safety certification, SD blocks entirely and mobile terminal | |
| CN104202299A (en) | System and method of identity authentication based on Bluetooth | |
| CN103886661B (en) | Access control management method and system | |
| CN105933888B (en) | A kind of eSIM card method for burn-recording and device based on NFC | |
| JP5739008B2 (en) | Method, apparatus, and system for verifying a communication session | |
| CN101668288B (en) | Identity authenticating method, identity authenticating system and terminal | |
| CN102255730A (en) | Digital certificate safety lock device and digital certificate authentication system and method | |
| CN103826226A (en) | Method and device for controlling wireless internet access | |
| CN104008325A (en) | Mobile phone Wi-Fi network-connecting real name identity authentication platform and method based on two-dimension codes | |
| CN101795196A (en) | Authentication method and authentication system for logging in to online banks | |
| CN102298683A (en) | Authentication device, system and method for short-distance radio-frequency communication authentication | |
| CN106488453A (en) | A kind of method and system of portal certification | |
| CN107113613A (en) | Server, mobile terminal, real-name network authentication system and method | |
| CN103259664A (en) | Nfc dynamic password chip and working method thereof | |
| CN103780620A (en) | Network security method and network security system | |
| CN102413146B (en) | Client authorized logon method based on dynamic codes | |
| CN103179564B (en) | Based on the network application login method of mobile terminal authentication | |
| CN202026332U (en) | Information authentication system of client end for mobile telephone banking and mobile terminal | |
| CN105678143A (en) | Methods and devices for setting and acquiring electronic business card | |
| CN103281186B (en) | A kind of dynamic token based on Android system, transaction system and method | |
| CN104270342B (en) | The access method and system of virtual desktop |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |