CN103532961A - Method and system for authenticating identity of power grid website based on trusted crypto modules - Google Patents
Method and system for authenticating identity of power grid website based on trusted crypto modules Download PDFInfo
- Publication number
- CN103532961A CN103532961A CN201310494975.XA CN201310494975A CN103532961A CN 103532961 A CN103532961 A CN 103532961A CN 201310494975 A CN201310494975 A CN 201310494975A CN 103532961 A CN103532961 A CN 103532961A
- Authority
- CN
- China
- Prior art keywords
- identity
- password module
- credible password
- letter
- website
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a method and a system for authenticating the identity of a power grid website based on trusted crypto modules. The method comprises the following steps: producing an identity certificate request and sending the identity certificate request to a digital authentication center unit by a website service-side through a PIK function which is provided by a first trusted crypto module; issuing a digital certificate to the website service-side by the digital authentication center unit; sending the self identity certificate to a client-side by the website service-side, and identifying the identity certificate of the website service-side by the client-side; identifying the identity certificate of the website service-side by a second trusted crypto module after the identity certificate which is sent by the website service-side is received by the client-side. The system comprises the digital authentication center unit, the website service-side, the first trusted crypto module, the client-side and the second trusted crypto module. The identity authentication of the website and the protection over user sensitive information are realized through the provision of a reliable user certificate issuing and identity authenticating method under the condition of realizing the bidirectional identity authentication of the power grid website and the client-side user.
Description
Technical field
The invention belongs to field of information security technology, relate in particular to a kind of method and system based on the website authentication of credible password module electrical network.
Background technology
The service-user of 95598 electrical network interactive web sites is mainly the public, the public accesses 95598 electrical network interactive web sites by the Internet and understands the relevant information of power grid enterprises' issue, carries out the interactive operations such as online power purchase, Smart Home control, 95598 electrical network interactive web sites are mainly comprised of client terminal, transmission network and main station system, and 95598 electrical network interactive web site client terminals mainly comprise computer terminal, PDA, mobile phone etc.; 95598 electrical network interactive web site main station systems are used for providing application service and core business to process; 95598 electrical network interactive web sites provide electrical network service by Internet technology to the public.
In the routine use of 95598 electrical network websites, that first will do differentiates user identity exactly, and the first step of carrying out identity discriminating is to be stored in the memory device of website with regard to sensitive informations such as user identity; When user's access websites application related service, website first can be to user authenticating identity, only have after authentication is passed through, user could operate in the extent of competence of oneself, website provides corresponding service for user, the namely registration in user and website interacting activity of these two steps and log in behavior.
Yet at present in website user's registration and logon operation process, many unsafe factors have been remained, roughly can be summarized as following some: in the process that (1) user identity certificate is issued, conventionally just by website service end, gone to identify client user's identity, and less than the proof of identification of self is not provided to client, client can not prove that whether the identity of website service end is effectively legal, easily there is disguise oneself as website service end steal the situation of client user's identity information of malicious persons, cause the infringement of client rights and interests; (2) while carrying out authenticating user identification operation, the transmission not encrypted of user's relevant sensitization information on network, malicious persons is easy to just energy intercepted data; (3) user's sensitive data is stored among the memory device that website service end provides, and encrypts storage if do not use, and also has the risk of initiatively divulging a secret or being stolen by malicious persons.
Summary of the invention
The object of the embodiment of the present invention is to provide a kind of method and system based on the website authentication of credible password module electrical network, be intended to solve existing electrical network website user's registration and website that logon operation exists user identity is authenticated, prevent that assailant from stealing website identity information and pretending to be legitimate site and the problem of the dangerous transmission of user's sensitive data and storage.
The embodiment of the present invention is achieved in that a kind of method based on the website authentication of credible password module electrical network, should the method based on the website authentication of credible password module electrical network comprise the following steps:
The PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
Digital authenticating center cell is to website service end issuing digital certificate;
Website service end sends to client by the letter of identity of self, and client is differentiated the letter of identity of website service end;
Client, after receiving the letter of identity of website service end transmission, is handed over certificate to the second credible password module, by the second credible password module, is responsible for the letter of identity of website service end to differentiate.
Further, the identity identifying method of website service end comprises the following steps:
Step 1, the PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
Step 2, digital authenticating center cell is to website service end issuing digital certificate;
Step 4, client is differentiated the letter of identity of website service end by the second credible password module, thus the authentication of real website.
Further, the letter of identity that client sends website service end is differentiated, determines that the step of website identity is:
Step 1, client is submitted to the second credible password module by the service end letter of identity receiving from website service end place;
Step 2, the second credible password module is differentiated service end letter of identity, realizes website authentication.
Further, the step that the second credible password module is issued client user's letter of identity is:
Step 1, the sensitive data information that the second credible password module is used the PKI of PEK that user is inputted is encrypted, and generates client user's identity information;
Step 2, the second credible password module sends to the first credible password module by client user's identity information;
Step 4, the first credible password module is used the storage key encrypting user certificate of self, and is stored in this locality, then client user's letter of identity is back to the second credible password module, completes issue.
Further, in step 1, client user's sensitive data information comprises: user name, address name, identification card number, coding of accounts, Bank Account Number, encrypted message.
Further, in step 2, the step that the second credible password module is sent to the first credible password module by client user's identity information comprises:
The first step, the second credible password module is sent to website service end by client user's identity information by client;
Second step, website service end is committed to the first credible password module by the client user's identity information receiving.
Further, in step 3, the step that the first credible password module is differentiated client user's letter of identity comprises:
The first step, the first credible password module is used PEK private key to be decrypted client user's letter of identity;
Second step, the first credible password module is used storage key to be encrypted deciphering the client user's who obtains letter of identity;
The 3rd step, the first credible password module, by the client user's letter of identity after encrypting and local comparing of storing, if the same, completes authentication, by checking.
Further, in step 4, the concrete steps that the second credible password module is issued client user's letter of identity comprise:
The first step, the first credible password module is back to client by website service end by client user's letter of identity;
Second step, client stores client user's letter of identity.
Another object of the embodiment of the present invention is to provide a kind of system based on the website authentication of credible password module electrical network, should the system based on the website authentication of credible password module electrical network comprise: digital authenticating center cell, website service end, the first credible password module, client, the second credible password module;
Digital authenticating center cell, for issuing letter of identity, receives website service end and submits letter of identity request to by the PIK function of the first credible password module;
Website service end, is connected with digital authenticating center cell, receives the letter of identity that digital authenticating center cell issues, for providing letter of identity to client credible password module;
The first credible password module, is connected with website service end, for generate the request of submitting letter of identity to by PIK function;
Client, is connected with website service end, for receiving the letter of identity of website service end;
The second credible password module, is arranged in client, for the letter of identity of website service end is identified.
Method and system based on the website authentication of credible password module electrical network provided by the invention, by when realizing electrical network website and client user's bidirectional identity authentication, sensitive information has been carried out to encrypted transmission and storage, strengthened the fail safe in reciprocal process between website and user; The key using in business procedure adopts hardware store, stopped key stolen after, the hidden danger that information is stolen, has solved website user identity has been authenticated, and prevents that assailant from stealing website identity information and pretending to be legitimate site and the problem of the dangerous transmission of user's sensitive data and storage.The present invention has improved the fail safe of electrical network website; protected user's the privacies such as identity information not invaded; user certificate dissemination method and identity identifying method based on credible password module chip is reliably provided, realized the authentication of website and the protection to user sensitive information.
Accompanying drawing explanation
Fig. 1 is the method flow diagram based on the website authentication of credible password module electrical network that the embodiment of the present invention provides;
Fig. 2 is the structural representation of the system based on the website authentication of credible password module electrical network that provides of the embodiment of the present invention;
In figure: 1, digital authenticating center cell; 2, website service end; 2-1, the first credible password module; 3, client; 3-1, the second credible password module.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearer, below in conjunction with embodiment, the present invention is further elaborated.Should be appreciated that specific embodiment described herein, only in order to explain the present invention, is not intended to limit the present invention.
As a prioritization scheme of the embodiment of the present invention,
Below in conjunction with drawings and the specific embodiments, application principle of the present invention is further described.
As shown in Figure 1, the method based on the website authentication of credible password module electrical network of the embodiment of the present invention comprises the following steps:
S101: the PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
S102: digital authenticating center cell is to website service end issuing digital certificate;
S103: website service end sends to client by the letter of identity of self, client is differentiated the letter of identity of website service end;
S104: client, after receiving the letter of identity of website service end transmission, is handed over certificate to the second credible password module, is responsible for the letter of identity of website service end to differentiate by the second credible password module;
The identity identifying method of the website service end of the embodiment of the present invention comprises following steps:
Step 1, the PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
Step 2, digital authenticating center cell is to website service end issuing digital certificate;
Step 4, client is differentiated the letter of identity of website service end, thus the authentication of real website;
The letter of identity that the client of the embodiment of the present invention sends website service end is differentiated, determines that the step of website identity is:
Step 1, client is submitted to the second credible password module by the service end letter of identity receiving from website service end place;
Step 2, the second credible password module is differentiated service end letter of identity, realizes website authentication;
The second credible password module of the present invention is issued client user's letter of identity;
The step that the second credible password module is issued client user's letter of identity comprises: the sensitive data information that client user inputs, and concrete steps are:
Step 1, the sensitive data information that the second credible password module is used the PKI of PEK that user is inputted is encrypted, and generates client user's identity information;
Step 2, the second credible password module sends to the first credible password module by client user's identity information;
Step 4, the first credible password module is used the storage key encrypting user certificate of self, and is stored in this locality, then client user's letter of identity is back to the second credible password module, completes issue;
In step 2, the step that the second credible password module is sent to the first credible password module by client user's identity information comprises:
The first step,, the second credible password module is sent to website service end by client user's identity information by client;
Second step, website service end is committed to the first credible password module by the client user's identity information receiving;
In step 3, the step that the first credible password module is differentiated client user's letter of identity comprises:
The first step, the first credible password module is used PEK private key to be decrypted client user's letter of identity;
Second step, the first credible password module is used storage key to be encrypted deciphering the client user's who obtains letter of identity;
The 3rd step, the first credible password module, by the client user's letter of identity after encrypting and local comparing of storing, if the same, completes authentication, by checking;
In step 4, the concrete steps that the second credible password module is issued client user's letter of identity comprise:
The first step, the first credible password module is back to client by website service end by client user's letter of identity;
Second step, client stores client user's letter of identity, client user's sensitive data information comprises: user name, address name, identification card number, coding of accounts, Bank Account Number, encrypted message etc.;
As shown in Figure 2, the system based on the website authentication of credible password module electrical network of the embodiment of the present invention is mainly comprised of digital authenticating center cell 1, website service end 2, the first credible password module 2-1, client 3, the second credible password module 3-1;
Digital authenticating center cell 1, for issuing letter of identity, receives website service end 2 and submits letter of identity request to by the PIK function of the first credible password module;
Website service end 2, is connected with digital authenticating center cell 1, receives the letter of identity that digital authenticating center cell 1 issues, for providing letter of identity to client credible password module;
The first credible password module 2-1, is connected with website service end 2, for generate the request of submitting letter of identity to by PIK function;
The second credible password module 3-1, is arranged in client 3, for the letter of identity of website service end 2 is identified.
Operation principle of the present invention:
Credible password module TCM(Trusted Cryptography Module) major function of chip comprises: platform tolerance, platform identity authentication and crypto-operation etc., in the electrical network 95598 website identity identifying methods based on credible password module, the PIK function of using credible password module TCM chip to provide is carried out website service end proof of identification, use PEK PKI to carry out client user's sensitive data information encryption transmission, use PEK private key to be decrypted client user's sensitive data, carry out validity judgement, the storage key that uses credible password module TCM to provide is encrypted storage to the client user's sensitive data judging by validity.
The present invention is described further in conjunction with specific embodiments:
The electrical network website identity authorization system of the embodiment of the present invention comprises: digital certificate authentication center unit CA(Certificate Authority), the website service end of the first credible password module and the client that the second credible password module is installed are installed, the PIK function that website service end provides by the first credible password module is submitted letter of identity request to digital authenticating center cell, and digital authenticating center cell issues letter of identity to website service end; Website service end offers client by the letter of identity of self, and the second credible password module that client is installed is responsible for the letter of identity of website service end to identify, has realized the discriminating authentication of client to website service end identity;
The concrete steps that the client of the embodiment of the present invention authenticates website service end identity are as follows:
1. the PIK function that website service end provides by the first credible password module generates letter of identity request, and this request is sent to digital authenticating center cell;
2. digital authenticating center cell issues letter of identity to website service end;
3. website service end sends to client by self letter of identity;
4. the second credible password module among client is differentiated the letter of identity of website service end, completes the authentication to website service end identity,
Client user's letter of identity issue flow process based on creditable calculation modules of the embodiment of the present invention:
1. client is differentiated the identity of website service end;
2. client user's filling registration information;
3. client is submitted user's sensitive data information to;
4. the second credible password module being connected with client is encrypted client user's sensitive data information with PEK PKI, and send to the first credible password module of website service end, the first credible password module is processed client user's identity information, generates client identity certificate;
5. the first credible password module of website service end is used PEK private key to be decrypted client user's letter of identity;
6. the letter of identity of the client user after the first credible password module of website service end is used storage key to deciphering is encrypted and exports;
7. website client end is stored the client user's letter of identity after encrypting;
8. return to the client information that succeeds in registration,
The flow process that the website service end of the embodiment of the present invention authenticates client user's identity:
1. client user inputs the sensitive datas such as user name and password, logins;
2. the sensitive datas such as the user name that client user inputs, password are encrypted by the PEK PKI of the second credible password module of client, generate user's identity information, send to the first credible password module of website service end;
3. the first credible password module of website service end is processed client user's identity information, generates client user's letter of identity; The first credible password module is decrypted client user's letter of identity, and uses the storage key of oneself to be encrypted;
4. the first credible password module of website service end carries out authentication to the client user's letter of identity after encrypting;
5. authentication is passed through, client user's authentication success, and client user can operate accordingly,
The concrete grammar of the client user's letter of identity issue based on credible password module of the embodiment of the present invention:
1. client activates client encrypt key PEK1 to website service end transmission Tspi_TCM_Activate order;
2. website service end returns to the PKI Pub_PEK1 of encryption key to client, and client is stored;
3. client user's filling registration information, as: user name, address name, identification card number, coding of accounts, the information such as password, the second credible password module of client is used Tspi_Data_Encrypt order, the Pub_PEK1 that uses public-key is encrypted, and generates the first credible password module that subscriber identity information is sent to website service end;
4. the first credible password module of website service end is processed the subscriber identity information receiving, generate user identity certificate, the first credible password module sends order Tsp_TCM_Decrypt and uses private key Pri_PEK1 to be decrypted, generate client user's letter of identity, and use self storage key StorKey1, sending order Tspi_Data_Encrypt is encrypted client user's letter of identity by storage key StorKey1, and be stored in this locality, return to client user's message that succeeds in registration
The concrete grammar of the client user's authentication based on credible password module of the embodiment of the present invention:
1. user inputs user name in client, the sensitive informations such as password, the second credible password module is by Tspi_Data_Encrypt order, and the Pub_PEK1 that uses public-key is encrypted, generate client user's identity information, identity information is sent to the second credible password module of website service end;
2. the first credible password module of website service end is processed the subscriber identity information receiving, generate user identity certificate, the first credible password module sends order Tsp_TCM_Decrypt and uses private key Pri_PEK1 to be decrypted, and generates client user's letter of identity;
Website service end the first credible password module use self storage key StorKey1, by Tspi_Data_Encrypt order, client user's letter of identity is encrypted;
4. the first credible password module is compared client user's letter of identity and local storing value after encrypting, if consistent, passes through authentication, and return to client user and login successfully information, if inconsistent, failed authentication,
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any modifications of doing within the spirit and principles in the present invention, be equal to and replace and improvement etc., within all should being included in protection scope of the present invention.
Claims (9)
1. the method based on the website authentication of credible password module electrical network, is characterized in that, should the method based on the website authentication of credible password module electrical network comprise the following steps:
The PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
Digital authenticating center cell is to website service end issuing digital certificate;
Website service end sends to client by the letter of identity of self, and client is differentiated the letter of identity of website service end;
Client, after receiving the letter of identity of website service end transmission, is handed over certificate to the second credible password module, by the second credible password module, is responsible for the letter of identity of website service end to differentiate.
2. the method based on the website authentication of credible password module electrical network as claimed in claim 1, is characterized in that, the identity identifying method of website service end comprises the following steps:
Step 1, the PIK function that website service end provides by the first credible password module generates letter of identity request Concurrency and delivers to digital authenticating center cell;
Step 2, digital authenticating center cell is to website service end issuing digital certificate;
Step 3, website service end provides the letter of identity of self to client;
Step 4, client is differentiated the letter of identity of website service end by the second credible password module, thus the authentication of real website.
3. the method based on the website authentication of credible password module electrical network as claimed in claim 1, is characterized in that, the letter of identity that client sends website service end is differentiated, determines that the step of website identity is:
Step 1, client is submitted to the second credible password module by the service end letter of identity receiving from website service end place;
Step 2, the second credible password module is differentiated service end letter of identity, realizes website authentication.
4. the method based on the website authentication of credible password module electrical network as claimed in claim 1, is characterized in that, the step that the second credible password module is issued client user's letter of identity is:
Step 1, the sensitive data information that the second credible password module is used the PKI of PEK that user is inputted is encrypted, and generates client user's identity information;
Step 2, the second credible password module sends to the first credible password module by client user's identity information;
Step 3, the first credible password module is processed the client user's identity information receiving, and generates client user's letter of identity;
Step 4, the first credible password module is used the storage key encrypting user certificate of self, and is stored in this locality, then client user's letter of identity is back to the second credible password module, completes issue.
5. the method based on the website authentication of credible password module electrical network as claimed in claim 4, is characterized in that, in step 1, client user's sensitive data information comprises: user name, address name, identification card number, coding of accounts, Bank Account Number, encrypted message.
6. the method based on the website authentication of credible password module electrical network as claimed in claim 4, is characterized in that, in step 2, the step that the second credible password module is sent to the first credible password module by client user's identity information comprises:
The first step, the second credible password module is sent to website service end by client user's identity information by client;
Second step, website service end is committed to the first credible password module by the client user's identity information receiving.
7. the method based on the website authentication of credible password module electrical network as claimed in claim 4, is characterized in that, in step 3, the step that the first credible password module is differentiated client user's letter of identity comprises:
The first step, the first credible password module is used PEK private key to be decrypted client user's letter of identity;
Second step, the first credible password module is used storage key to be encrypted deciphering the client user's who obtains letter of identity;
The 3rd step, the first credible password module, by the client user's letter of identity after encrypting and local comparing of storing, if the same, completes authentication, by checking.
8. the method based on the website authentication of credible password module electrical network as claimed in claim 4, is characterized in that, in step 4, the concrete steps that the second credible password module is issued client user's letter of identity comprise:
The first step, the first credible password module is back to client by website service end by client user's letter of identity;
Second step, client stores client user's letter of identity.
9. the system based on the website authentication of credible password module electrical network, it is characterized in that, should the system based on the website authentication of credible password module electrical network comprise: digital authenticating center cell, website service end, the first credible password module, client, the second credible password module;
Digital authenticating center cell, for issuing letter of identity, receives website service end and submits letter of identity request to by the PIK function of the first credible password module;
Website service end, is connected with digital authenticating center cell, receives the letter of identity that digital authenticating center cell issues, for providing letter of identity to client credible password module;
The first credible password module, is connected with website service end, for generate the request of submitting letter of identity to by PIK function;
Client, is connected with website service end, for receiving the letter of identity of website service end;
The second credible password module, is arranged in client, for the letter of identity of website service end is identified.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310494975.XA CN103532961A (en) | 2013-10-21 | 2013-10-21 | Method and system for authenticating identity of power grid website based on trusted crypto modules |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310494975.XA CN103532961A (en) | 2013-10-21 | 2013-10-21 | Method and system for authenticating identity of power grid website based on trusted crypto modules |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103532961A true CN103532961A (en) | 2014-01-22 |
Family
ID=49934640
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310494975.XA Pending CN103532961A (en) | 2013-10-21 | 2013-10-21 | Method and system for authenticating identity of power grid website based on trusted crypto modules |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103532961A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104636777A (en) * | 2015-01-15 | 2015-05-20 | 李明 | Identity card information obtaining system |
| CN106790173A (en) * | 2016-12-29 | 2017-05-31 | 浙江中控技术股份有限公司 | A kind of method and system of SCADA system and its RTU controller bidirectional identity authentications |
| CN103795719B (en) * | 2014-01-23 | 2017-09-19 | 广东电网公司电力科学研究院 | Terminal security equipment simplify configuration management method and system |
| CN107360167A (en) * | 2017-07-17 | 2017-11-17 | 浪潮(北京)电子信息产业有限公司 | A kind of authentication method and device |
| CN113542198A (en) * | 2020-04-17 | 2021-10-22 | 国电南瑞科技股份有限公司 | High-availability data interaction system and method based on Internet |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103312672A (en) * | 2012-03-12 | 2013-09-18 | 西安西电捷通无线网络通信股份有限公司 | Identity authentication method and system |
| CN103338448A (en) * | 2013-06-07 | 2013-10-02 | 国家电网公司 | Wireless local area network security communication method based on quantum key distribution |
-
2013
- 2013-10-21 CN CN201310494975.XA patent/CN103532961A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103312672A (en) * | 2012-03-12 | 2013-09-18 | 西安西电捷通无线网络通信股份有限公司 | Identity authentication method and system |
| CN103338448A (en) * | 2013-06-07 | 2013-10-02 | 国家电网公司 | Wireless local area network security communication method based on quantum key distribution |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103795719B (en) * | 2014-01-23 | 2017-09-19 | 广东电网公司电力科学研究院 | Terminal security equipment simplify configuration management method and system |
| CN104636777A (en) * | 2015-01-15 | 2015-05-20 | 李明 | Identity card information obtaining system |
| CN104636777B (en) * | 2015-01-15 | 2018-03-20 | 李明 | ID card information obtains system |
| CN106790173A (en) * | 2016-12-29 | 2017-05-31 | 浙江中控技术股份有限公司 | A kind of method and system of SCADA system and its RTU controller bidirectional identity authentications |
| CN106790173B (en) * | 2016-12-29 | 2019-10-18 | 浙江中控技术股份有限公司 | A kind of method and system of SCADA system and its RTU controller bidirectional identity authentication |
| CN107360167A (en) * | 2017-07-17 | 2017-11-17 | 浪潮(北京)电子信息产业有限公司 | A kind of authentication method and device |
| CN107360167B (en) * | 2017-07-17 | 2020-07-07 | 浪潮(北京)电子信息产业有限公司 | Authentication method and device |
| CN113542198A (en) * | 2020-04-17 | 2021-10-22 | 国电南瑞科技股份有限公司 | High-availability data interaction system and method based on Internet |
| CN113542198B (en) * | 2020-04-17 | 2023-05-09 | 国电南瑞科技股份有限公司 | High-availability data interaction system and method based on Internet |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102098317B (en) | Data transmitting method and system applied to cloud system | |
| CN105427099A (en) | Network authentication method for secure electronic transactions | |
| CN108989346A (en) | The effective identity trustship agility of third party based on account concealment authenticates access module | |
| CN112861089B (en) | Authorization authentication method, resource server, resource user, equipment and medium | |
| RU2011153984A (en) | TRUSTED AUTHORITY ADMINISTRATOR (TIM) | |
| CN103051453A (en) | Digital certificate-based mobile terminal network security trading system and digital certificate-based mobile terminal network security trading method | |
| CN101005361A (en) | Server and software protection method and system | |
| CN103297437A (en) | Safety server access method for mobile intelligent terminal | |
| CN101192926A (en) | Account protection method and system | |
| CN104660605A (en) | Multi-factor identity authentication method and system | |
| CN101527634B (en) | System and method for binding account information with certificates | |
| CN103856468A (en) | Authentication system and method | |
| CN103853950A (en) | Authentication method based on mobile terminal and mobile terminal | |
| Jaidhar | Enhanced mutual authentication scheme for cloud architecture | |
| CN103701787A (en) | User name password authentication method implemented on basis of public key algorithm | |
| JP2019525691A (en) | Permission granting method and system for acquiring terminal attack warning message log | |
| CN104426659A (en) | Dynamic password generating method, authentication method, authentication system and corresponding equipment | |
| CN103532961A (en) | Method and system for authenticating identity of power grid website based on trusted crypto modules | |
| CN110505055A (en) | Based on unsymmetrical key pond to and key card outer net access identity authentication method and system | |
| CN104486087A (en) | Digital signature method based on remote hardware security modules | |
| CN102468962A (en) | Method for personal identity authentication utilizing a personal cryptographic device | |
| US20190007218A1 (en) | Second dynamic authentication of an electronic signature using a secure hardware module | |
| KR20150098595A (en) | Smart card, smart authentication server and smart card authentication method | |
| KR101348079B1 (en) | System for digital signing using portable terminal | |
| CN104301288A (en) | Method and system for online identity authentication, online transaction certification, and online certification protection |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140122 |
|
| RJ01 | Rejection of invention patent application after publication |