CN103812651B - Method of password authentication, apparatus and system - Google Patents
Method of password authentication, apparatus and system Download PDFInfo
- Publication number
- CN103812651B CN103812651B CN201210453453.0A CN201210453453A CN103812651B CN 103812651 B CN103812651 B CN 103812651B CN 201210453453 A CN201210453453 A CN 201210453453A CN 103812651 B CN103812651 B CN 103812651B
- Authority
- CN
- China
- Prior art keywords
- password
- module
- bill
- verification
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of method of password authentication, apparatus and systems, belong to internet terminal field.The method includes:Verification bill is received, the verification bill includes user identifier, service identifiers and password corresponding with the combination of both the user identifier and service identifiers;Pre-stored password is inquired according to the user identifier and the service identifiers;Whether the password for detecting the password in the verification bill and inquiring is identical;If detecting, two passwords are identical, are verified.The present invention completes password verification process by using a user identifier and multiple passwords corresponding from different service systems, it solves multinomial service and shares safety issue caused by one group of username and password, even if the password leakage of user is reached, also only it can carry out security risk to the safety belt of one of which service, without other service bands is given to carry out the effect of security risk.
Description
Technical field
The present invention relates to internet terminal field, more particularly to a kind of method of password authentication, apparatus and system.
Background technology
Internet provides service greatly both for user.When needing to carry out authentication to user, user name is used
It is one of most popular means with password.
Since present the Internet, applications are in diversified development, same Internet Service Provider may provide more simultaneously
The different Internet service of kind, such as:Synchronous with cloud etc. the service of mailbox, search, instant messaging, notes.In order to simplify user
Operation improves user experience, and existing Internet Service Provider is when providing a variety of services, it is only necessary to which user uses one group of phase
Same username and password can use all services.That is, when user a certain Internet Service Provider into
After row registration, this group of username and password of registration can be used arbitrarily to log in and carried using the Internet Service Provider
All services supplied.
In the implementation of the present invention, inventor has found that the prior art has at least the following problems:Although multinomial service
It shares one group of username and password to provide users with the convenient, but is very easy to safety issue occur, once this group of user
Name and password are leaked, and all services that user uses all can there are security risks.
Invention content
Safety issue caused by one group of username and password is shared in order to solve multinomial service, the embodiment of the present invention carries
A kind of method of password authentication, apparatus and system are supplied.The technical solution is as follows:
According to an aspect of the invention, there is provided a kind of method of password authentication, the method includes:
Receive verification bill, it is described verification bill include user identifier, service identifiers and with the user identifier and service
Identify the corresponding password of combination of the two;
Pre-stored password is inquired according to the user identifier and the service identifiers;
Whether the password for detecting the password in the verification bill and inquiring is identical;
If detecting, two passwords are identical, are verified.
Further, further included in the verification bill timestamp, user's current IP address and one kind in identifying code or
Person is a variety of,
If described detect that two passwords are identical, before being verified, further include:
Whether timestamp, user's current IP address and/or the identifying code detected in the verification bill meets predetermined item
Part, the predetermined condition meets predetermined amount of time including the timestamp, user's current IP address meets last verification
When IP address, the identifying code be the identifying code being provided previously;
If described detect that two passwords are identical, it is verified, specifically includes:
If detect two passwords it is identical and it is described verification bill in timestamp, user's current IP address and/or verification
When code conforms to a predetermined condition, then it is verified.
Further, timestamp, user's current IP address and/or the identifying code in the verification bill are using described close
Code carries out the ciphertext after reversible encryption, the timestamp detected in the verification bill, user's current IP address as key
And/or it before whether identifying code conforms to a predetermined condition, further includes:
It is decrypted, obtained by the use of other data in verification bill described in the password as key pair in the verification bill
Obtain the timestamp, user's current IP address and/or identifying code.
Further, the password in the verification bill and the pre-stored password are by irreversible encryption side
The encrypted ciphertext of formula, it is described to receive before verifying bill, it further includes:
Receive user identifier and service identifiers;
Whether corresponding password and cipher mode are previously stored with according to the user identifier and service identifiers inquiry;
Inquire be previously stored with corresponding password and cipher mode when, feed back the cipher mode.
Further, it if described detect that two passwords are identical, after being verified, further includes:
First password management request is received, the first password management request includes deleting instruction or modification instruction;
The password is deleted or changed according to first password management request.
Further, it is described to receive before verifying bill, it further includes:
Store user identifier, service identifiers and password corresponding with the combination of both the user identifier and service identifiers it
Between correspondence;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two
The number of the corresponding password of combination of person is identical with the number of the service identifiers.
Further, the correspondence is also stored with authentication bill corresponding with the user identifier, the body
Part certification bill includes mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode institute
The authentication information of generation, the method further include:
User identifier, authentication bill and the second Password Management request are received, the second Password Management request includes
A kind of instruction in service identifiers and deletion instruction and modification instruction;
Inquiry authentication bill corresponding with the user identifier;
It detects the authentication bill received and whether the authentication bill inquired is identical;
It is corresponding with the service identifiers according to second Password Management request pair if two authentication bills are identical
Password deleted or changed.
According to another aspect of the present invention, a kind of password authentication device is provided, described device includes:
Verify receiving module, for receive verify bill, it is described verification bill include user identifier, service identifiers and with institute
State the corresponding password of combination of both user identifier and service identifiers;
Cipher inquiry module, user identifier and service identifiers for being received according to the verification receiving module are inquired pre-
The password first stored;
Password detection module, for detecting the password and described close in the verification bill that the verification receiving module receives
Whether the password that code enquiry module inquires is identical;
Password authentication module if detecting that two passwords are identical for the password detection module, is verified.
Further, in the verification bill that the verification receiving module receives with further including timestamp, the current IP of user
One or more of location and identifying code,
Described device further includes:Additional detected module;
The additional detected module, for detecting the timestamp in the verification bill, user's current IP address and/or testing
Whether card code conforms to a predetermined condition, and it is current that the predetermined condition including the timestamp meets predetermined amount of time, the user
IP address, the identifying code when IP address meets last verification are the identifying code being provided previously;
The password authentication module, if specifically for detect two passwords it is identical and it is described verification bill in time
When stamp, user's current IP address and/or identifying code conform to a predetermined condition, then it is verified.
Further, it is described verification receiving module receive verification bill in timestamp, user's current IP address and/
Or identifying code is to carry out the ciphertext after reversible encryption as key using the password;
Described device further includes:Verify deciphering module;
The verification deciphering module, for by the use of it is described verification bill in password as key pair described in verify bill in
Other data be decrypted, obtain the timestamp, user's current IP address and/or identifying code.
Further, password and the pre-stored password in the verification bill that the verification receiving module receives
It is by the encrypted ciphertext of irreversible encryption mode;
Described device further includes:Identify receiving module, encrypted query module and encryption feedback module;
The mark receiving module, for receiving user identifier and service identifiers;
The encrypted query module, user identifier and service identifiers for being received according to the mark receiving module are looked into
Whether inquiry is previously stored with corresponding password and cipher mode;
The encryption feedback module, for the encrypted query module polls to be previously stored with corresponding password and plus
During close mode, the cipher mode is fed back.
Further, described device further includes:First request receiving module and first password management module;
First request receiving module, for receiving first password management request, the first password manages request bag
Include deletion instruction or modification instruction;
The first password management module, for the first password management received according to first request receiving module
Request is deleted or is changed to the password.
Further, described device further includes:Relationship storage module;
The relationship storage module, for store user identifier, service identifiers and with the user identifier and service identifiers
Correspondence between the corresponding password of combination of the two;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two
The number of the corresponding password of combination of person is identical with the number of the service identifiers.
Further, the correspondence is also stored with authentication bill corresponding with the user identifier, the body
Part certification bill includes mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode institute
The authentication information of generation, described device further include:Second request receiving module, bill enquiry module, bill detection module
With the second Password Management module;
Second request receiving module, for receiving user identifier, authentication bill and the second Password Management request,
The second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module, it is corresponding with the user identifier that second request receiving module receives for inquiring
Authentication bill;
The bill detection module, for detecting authentication bill and the institute that second request receiving module receives
Whether identical state the authentication bill that bill enquiry module inquires;
The second Password Management module, if identical for two authentication bills, according to the second password pipe
A reason request pair password corresponding with the service identifiers is deleted or is changed.
In accordance with a further aspect of the present invention, a kind of service system is provided, including:
Password acquisition module, for obtaining user identifier and password of the user under current serving system;
Verify sending module, for password authentication device send verification bill, it is described verification bill include user identifier,
For the service identifiers that identify current serving system and corresponding with the combination of both the user identifier and service identifiers described
Password, so that the password authentication device carries out password authentification according to the verification bill.
Further, the system also includes:
Data obtaining module;
Described information acquisition module, for obtaining the one or more of timestamp, user's current IP address and identifying code;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device
Further include timestamp, user's current IP address and/or identifying code that described information acquisition module is got.
Further, the system also includes:
Bill encrypting module;
The bill encrypting module, for by the use of the password that the password acquisition module obtains as key pair described information
Timestamp, user's current IP address and/or the identifying code that acquisition module is got carry out reversible encryption, after obtaining reversible encryption
Ciphertext;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device
It further includes using the password as timestamp, user's current IP address and/or identifying code progress reversible encryption described in key pair
Ciphertext afterwards.
Further, the system, further includes:
Identify sending module, encryption receiving module and cryptographic module;
The mark sending module, for sending user identifier and service identifiers to the password authentication device;
The encryption receiving module is looked into for receiving the password authentication device according to the user identifier and service identifiers
The cipher mode fed back after inquiry;
The cryptographic module, the cipher mode for being received according to the encryption receiving module obtain the password
The password that modulus block is got carries out irreversible encryption;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device
Including the encrypted password of the cryptographic module.
Further, the system also includes:First command reception module and the first request sending module;
First command reception module, for receiving the deletion of user instruction or modification instruction;
First request sending module, it is described for sending first password management request to the password authentication device
First password management request includes described delete and instructs or change instruction.
Further, the system also includes:Authentication module and the second request sending module;
The authentication module, for obtaining the user identifier of user and authentication bill, the authentication ticket
According to including body caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode
Part authentication information;
Second request sending module, for sending the user identifier, authentication to the password authentication device
Bill and the second Password Management request, the second Password Management request include service identifiers and delete instruction and modification instruction
In a kind of instruction.
Further aspect according to the present invention provides a kind of password validation system, including one as described in another aspect
Password authentication device and at least one service system as described in another further aspect.
The advantageous effect that technical solution provided in an embodiment of the present invention is brought is:
Password authentification is completed by using a user identifier and multiple passwords corresponding from different service systems
Process solves multinomial service and shares safety issue caused by one group of username and password, even if having reached the one of user
A password leakage, also only can carry out security risk to the safety belt of one of which service, hidden without other service bands is given to carry out safety
The effect of trouble.
Description of the drawings
To describe the technical solutions in the embodiments of the present invention more clearly, make required in being described below to embodiment
Attached drawing is briefly described, it should be apparent that, the accompanying drawings in the following description is only some embodiments of the present invention, for
For those of ordinary skill in the art, without creative efforts, other are can also be obtained according to these attached drawings
Attached drawing.
Fig. 1 is a kind of structure diagram of implementation environment involved by the embodiment of the present invention;
Fig. 2 is the method flow diagram for the method for password authentication that the embodiment of the present invention one provides;
Fig. 3 is the method flow diagram of method of password authentication provided by Embodiment 2 of the present invention;
Fig. 4 is the block diagram for the password validation system that the embodiment of the present invention three provides;
Fig. 5 is the block diagram for the password validation system that the embodiment of the present invention four provides;
Fig. 6 is the block diagram for the password validation system that the embodiment of the present invention five provides;
Fig. 7 is the block diagram for the password validation system that the embodiment of the present invention six provides.
Specific embodiment
To make the object, technical solutions and advantages of the present invention clearer, below in conjunction with attached drawing to embodiment party of the present invention
Formula is described in further detail.
It please refers to Fig.1, it illustrates a kind of structure diagrams of implementation environment involved by the embodiment of the present invention.The implementation
Environment includes a password authentication device 120 and multiple service systems 140.
Multiple passwords can be safeguarded, manage and be verified to password authentication device 120.In particular, password authentication device 120 can
To separately maintain a user identifier to each user, then corresponding to different service systems 140, all respectively maintenance one is close
Code, for example, service system 140 has 5, if user has used whole 5 services, user can have 1 user identifier and 5
A password corresponding to different service systems 140;If user has only used 2 services, user has 1 user identifier and 2
A password corresponding to different service systems 140.
Service system 140 can be two or more, and the service that each service system 140 provides is different,
For example, first service system 140 provides mailbox service;Second service system 140 provides instant messaging service;Third takes
Business system 140 provides microblogging service,,, and so on, it repeats no more.
Embodiment one
It please refers to Fig.2, it illustrates the method flow diagrams for the method for password authentication that the embodiment of the present invention one provides.The password
Verification method can be used in password authentication device as shown in Figure 1, the method for password authentication, including:
Step 202, receive verification bill, verification bill include user identifier, service identifiers and with user identifier and service
Identify the corresponding password of combination of the two;
Wherein, service identifiers are the mark corresponding to service system.
Step 204, pre-stored password is inquired according to user identifier and service identifiers;
Step 206, whether the password in detection verification bill and the password inquired are identical;
Step 208, if detecting, two passwords are identical, are verified.
In conclusion method of password authentication provided in this embodiment, by using a user identifier and from different services
The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute
Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service
Security risk, without other service bands is given to carry out the effect of security risk.
Embodiment two
It please refers to Fig.3, it illustrates the method flow diagrams of method of password authentication provided by Embodiment 2 of the present invention.The password
Verification method can be used in implementation environment as shown in Figure 1, the method for password authentication, including:
Step 301, password authentication device storage user identifier, service identifiers and with both user identifier and service identifiers
Combine the correspondence between corresponding password;
Password authentication device can prestore user identifier, service identifiers and with both user identifier and service identifiers
The correspondence between corresponding password is combined, wherein, a user identifier corresponds to one or more service identifiers, with user identifier
It is identical with the number of service identifiers with the number of the corresponding password of combination of both service identifiers.The storing process can be in user
Registration process carries out, and database may be used and stored.As an example, above-mentioned correspondence can be divided into two tables
Storage, it is specific as follows:
User identifier | Service identifiers 1 | Service identifiers 2 | Service identifiers 3 |
User1 | App1 | App2 | App3 |
User2 | App2 | App4 | |
User3 | App5 |
Table 1
User identifier | Service identifiers | Cipher mode | Cryptographic secret | Creation time |
User1 | App1 | md5^2 | enc_passwd1 | 2012/3/21 |
User1 | App2 | md5^2salt | enc_passwd2 | 2012/3/21 |
User1 | App3 | md5^3 | enc_passwd3 | 2012/3/21 |
User2 | App2 | md5^3salt | enc_passwd4 | 2012/4/01 |
User2 | App4 | md5^3 | enc_passwd5 | 2012/5/12 |
User3 | App5 | md5^3 | enc_passwd6 | 2012/11/11 |
Table 2
Wherein, table 1 is USI user service information table, is stored with the user identifier of user and service system used by a user institute
Corresponding service identifiers, for example, the user identifier of user 1 is 1, the service system used includes service system 1, service system
2 and service system 3, correspond respectively to service identifiers App1, App2 and App3.Table 2 is then user password information table, and storage is useful
User identifier, service identifiers, cipher mode, password corresponding with the combination of both user identifier and service identifiers and the establishment at family
Time.
Preferably, in order to ensure that user data also can not reversely decrypt original password after being stolen, original password is adopted
It is stored after being encrypted with irreversible encryption mode, corresponding irreversible encryption mode is the cipher mode stored in table 2, no
Different cipher modes may be used in password corresponding to same service identifiers.
Under other implement scene, which can also be stored with authentication ticket corresponding with user identifier
According to authentication bill is recognized including such as mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem
Authentication information caused by other Verification Systems of card mode etc.
Step 302, service system obtains user identifier and password of the user under current serving system;
When user use certain service system when, service system can obtain user inputted under current serving system or
The user identifier and password of preservation, for example, the user identifier that service system 1 is got is User1, password enc_passwd1.
Then, service system can send user identifier to password authentication device first and represent the service identifiers of itself.
Step 303, password authentication device receives user identifier and service identifiers;
Password authentication device can receive the user identifier and service identifiers of service system transmission, for example, the use received
Family is identified as User1, service identifiers App1.
Step 304, whether password authentication device is previously stored with corresponding close according to user identifier and service identifiers inquiry
Code and cipher mode;
Whether password authentication device can be previously stored with encryption according to user identifier and the service identifiers inquiry received
Mode and corresponding password, for example, the user identifier that receives of password authentication device is User1, service identifiers App1 is then close
Code verification device can inquire that there are corresponding cipher mode md5^2 and password enc_passwd1.
Step 305, password authentication device inquire be previously stored with corresponding password and cipher mode when, feedback encryption
Mode;
Password authentication device feeds back the cipher mode when inquiring corresponding cipher mode, to service system, for example, close
Code verification device feeds back cipher mode md5^2 to service system 1.
If it should be noted that in step 304 password authentication device inquiry less than cipher mode and corresponding password, than
Such as, the user identifier that password authentication device receives be User3, service identifiers App1, then password authentication device inquiry less than
Cipher mode and corresponding password;At this point, password authentication device can receive this with feedback query failure information, service system
After query failure message, user can be triggered and registered under current serving system.
Step 306, service system carries out irreversible encryption according to the cipher mode received to password;
It, can be to being got in step 302 after the cipher mode for receiving password authentication device feedback in service system
The password of user carry out irreversible encryption according to the cipher mode that receives.
After the processing of this step, service system is close after irreversible encryption by what is transmitted to password authentication device
Code ciphertext, even if transmission process is monitored or intercepts, other people also can not reversely decrypt the password of user.
Step 307, service system obtains the one or more of timestamp, user's current IP address and identifying code;
In order to more accurately complete password verification process, service system can also obtain the additional basic letter of active user
Breath, the additional essential information can include timestamp, one or more of user's current IP address and identifying code.
Step 308, service system by the use of password as key pair timestamp, user's current IP address and/or identifying code into
Row reversible encryption obtains the ciphertext after reversible encryption;
Service system can also use in step 306 encrypted password as key, to got in step 307 when
Between stamp, user's current IP address and/or identifying code carry out reversible encryption, obtain the ciphertext after reversible encryption.The reversible encryption side
Formula can be the cipher mode that service system is arranged in advance with password authentication device.
Later, the password in step 306 after irreversible encryption, the timestamp in this step after reversible encryption, user are current
IP address and/or identifying code, it will collectively as verifying the verification bill of user identity.
Service system sends the verification bill to password authentication device.
Step 309, password authentication device receives verification bill;
Password authentication device can receive the verification bill of service system transmission.Include user's mark in the verification bill
Knowledge, service identifiers, the password after irreversible encryption and by the use of the password after the irreversible encryption as the key pair time
Stamp, user's current IP address and/or identifying code carry out the ciphertext after reversible encryption.
Step 310, password authentication device inquires pre-stored password according to user identifier and service identifiers;
Password authentication device inquires itself stored password in step 301 according to user identifier and service identifiers.
Step 311, whether the password in password authentication device detection verification bill and the password inquired are identical;
Whether the password that password authentication device can detect the password in verification bill and inquire is identical.
While step 310 and step 311 is performed, on the other hand:
Step 312, password authentication device verifies other numbers in bill by the use of the password verified in bill as key pair
According to being decrypted, timestamp, user's current IP address and/or identifying code are obtained;
Password authentication device can also be verified in bill by the use of the password verified in bill as key pair in addition to password
Other data be decrypted, obtain timestamp, user's current IP address and/or identifying code.
Step 313, timestamp, user's current IP address and/or the identifying code in password authentication device detection verification bill
Whether conform to a predetermined condition,
Wherein, when predetermined condition meets predetermined amount of time including timestamp, user's current IP address meets last verification
IP address, identifying code be the identifying code being provided previously.
Password authentication device carries out the timestamp after decryption, each in user's current IP address and/or identifying code single
Solely judge, judge whether it conforms to a predetermined condition.
Step 314, if detect two passwords it is identical and verification bill in timestamp, user's current IP address and/or
When identifying code conforms to a predetermined condition, then it is verified;
Detect that two passwords are identical in password authentication device, and with verifying the current IP of the timestamp in bill, user
When location and/or identifying code conform to a predetermined condition, then it is verified;Do not pass through conversely, then verifying.Password authentication device can incite somebody to action
Verification result is sent to service system.
After being verified, the service function of service system offer can be used normally in user.
Easy full of beard and, if user needs to delete password or changed, then user can after normal log in
Instruction or modification instruction are deleted to be triggered in service system.At this point, service system receives the deletion instruction of user or repaiies
Change instruction;And send first password management request to password authentication device, first password management request include deleting instruct or
Person changes instruction.
Step 315, password authentication device receives first password management request, and is asked according to first password management to password
It is deleted or is changed;
Password authentication device can receive the first password management request of service system transmission, and according to first password pipe
Reason request carries out password to delete or change accordingly.
It should be noted that authentication has only been carried out under the service system since user is current, therefore first password pipe
Reason request is merely able to that the password corresponding to the service system is deleted or changed.
When user uses service system and password authentication device, it is also possible to which a kind of situation occur is:User has forgotten certain
Password under one or more service system.At this point, the present embodiment, which additionally provides additional mechanism, to carry out pipe to password
Reason.It is specific as follows:
Step 316, service system obtains the user identifier of user and authentication bill, and authentication bill includes mailbox
Authentication mode, certificate verification mode, dynamic password authentication mode or authentication information caused by default problem authentication mode;
Under the scene for having forgotten the password under some or multiple service systems in user, service system can obtain use
The user identifier at family and authentication bill, authentication bill include mailbox authentication mode, certificate verification mode, dynamic password
Authentication information caused by authentication mode or default problem authentication mode.The process needs service system and corresponding mailbox
Verification System, certificate authentication system, dynamic password authentication system or default problem Verification System are individually completed.Recognize in the identity
After the success of card process, service system can obtain authentication information corresponding with the user identifier.
After service system obtains authentication information corresponding with the user identifier, service system can be tested to password
Card device sends user identifier, authentication bill and the second Password Management request, and the second Password Management request includes service mark
Know and delete instruction and change a kind of instruction in instruction.
Step 317, password authentication device receives user identifier, authentication bill and the second Password Management request;
Password authentication device can receive user identifier, authentication bill and the second password pipe of service system transmission
Reason request.
Step 318, password authentication device inquires authentication bill corresponding with user identifier;
Password authentication device can inquire pre-stored authentication ticket corresponding with user identifier in step 301
According to.
Step 319, the password authentication device detection authentication bill received and the authentication bill inquired are
It is no identical;
Whether the password authentication device detection authentication bill received and the authentication bill inquired are identical, such as
Two authentication bills of fruit are identical, then can also represent that the authentication of user passes through.
It step 320, please according to the second Password Management if password authentication device detects that two authentication bills are identical
A pair password corresponding with service identifiers is asked to be deleted or changed.
Under the identical scene of two authentication bills, password authentication device can be according to the second Password Management request pair
Password delete or change accordingly.
It should be noted that due to actually having got around normal verification approach in such cases, other certification systems of converting
It unites to carry out authentication, so user, after authentication in such cases is completed, the second Password Management request can be right
Any password corresponding to the user identifier is deleted or is changed.
In conclusion method of password authentication provided in this embodiment, by using a user identifier and from different services
The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute
Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service
Security risk, without other service bands is given to carry out the effect of security risk.Also by optional irreversible encryption mode, ensure that
Safety of the password when storing and transmitting;Essential information is also verified by increase so that verification process is more accurate;Also pass through
Optional reversible encryption mode ensure that safety of the verification essential information in transmission;Also by increasing other Verification Systems
Support, ensure that the availability of entire password validation system when password passes into silence.
Embodiment three
It please refers to Fig.4, it illustrates the block diagrams for the password validation system that the embodiment of the present invention three provides.The password
Verification system includes service system 400 and password authentication device 500.Wherein:
On one side, service system 400 includes password acquisition module 420 and verification sending module 440.
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute
State user identifier that password acquisition module 420 gets, for the service identifiers that identify current serving system and with the user
The mark password corresponding with the combination of both service identifiers, so that the password authentication device 500 is according to the verification ticket
According to carrying out password authentification.
On the other hand, password authentication device 500, including verification receiving module 520, cipher inquiry module 540, password detection
Module 560 and password authentication module 580.
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and
Password corresponding with the combination of both the user identifier and service identifiers;
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520
Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and
Whether the password that the cipher inquiry module 540 inquires is identical;
Password authentication module 580, if detecting that two passwords are identical for the password detection module 560, verification is logical
It crosses.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services
The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute
Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service
Security risk, without other service bands is given to carry out the effect of security risk.
Example IV
Fig. 5 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention four provides.The password
Verification system includes service system 400 and password authentication device 500.
On one side, service system 400 includes password acquisition module 420, data obtaining module 438 and verification sending module
440。
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Data obtaining module 438, for obtaining the one or more of timestamp, user's current IP address and identifying code;
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute
State user identifier that password acquisition module 420 gets, for the service identifiers that identify current serving system and with the user
The mark password corresponding with the combination of both service identifiers.The verification bill further includes described information acquisition module 438
Timestamp, user's current IP address and/or the identifying code got.
On the other hand, password authentication device 500, including verification receiving module 520, cipher inquiry module 540, password detection
Module 560, additional detected module 570 and password authentication module 580.
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and
Password corresponding with the combination of both the user identifier and service identifiers;The verification that the verification receiving module 520 receives
One or more of timestamp, user's current IP address and identifying code are further included in bill.
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520
Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and
Whether the password that the cipher inquiry module 540 inquires is identical;
Additional detected module 570, for detecting the time verified in bill that the verification receiving module 520 receives
Whether stamp, user's current IP address and/or identifying code conform to a predetermined condition, and the predetermined condition meets including the timestamp
IP address, the identifying code when predetermined amount of time, user's current IP address meet last verification are provided previously
Identifying code;
The password authentication module 580, if detecting that two passwords are identical and described for the password detection module 560
Additional detected module 570 detects that timestamp, user's current IP address and/or identifying code in verification bill meet predetermined item
During part, then it is verified.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services
The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute
Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service
Security risk, without other service bands is given to carry out the effect of security risk.Essential information is also verified by increase so that authenticated
Cheng Gengjia is accurate.
Embodiment five
Fig. 6 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention five provides.The password
Verification system includes service system 400 and password authentication device 500.
On one side, service system 400 includes password acquisition module 420, mark sending module 432, encryption receiving module
434th, cryptographic module 436, data obtaining module 438, bill encrypting module 439 and verification sending module 440.
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Sending module 432 is identified, for sending user identifier and service identifiers to the password authentication device 500;
Receiving module 434 is encrypted, for receiving the password authentication device 500 according to the user identifier and service identifiers
The cipher mode fed back after inquiry;
The cryptographic module 436, for according to the cipher mode that receives of encryption receiving module 434 to described
The password that password acquisition module 420 is got carries out irreversible encryption;
Data obtaining module 438, for obtaining the one or more of timestamp, user's current IP address and identifying code;
Bill encrypting module 439, for by the use of the 436 encrypted password of cryptographic module as described in key pair
Timestamp, user's current IP address and/or the identifying code that data obtaining module 438 is got carry out reversible encryption, obtain reversible
Encrypted ciphertext.
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute
It states user identifier that password acquisition module 420 gets, add for identifying the service identifiers of current serving system and the password
The close encrypted password corresponding with the combination of both the user identifier and service identifiers of module 436.The verification ticket
It is current by the use of the encrypted password as timestamp, user described in key pair according to the bill encrypting module 439 is further included
IP address and/or identifying code carry out the ciphertext after reversible encryption.
On the other hand, password authentication device 500, including mark receiving module 512, the encryption feedback of encrypted query module 514
Module 516, cipher inquiry module 540, password detection module 560, verification deciphering module 565, is added verification receiving module 520
Detection module 570 and password authentication module 580.
Receiving module 512 is identified, for receiving user identifier and service identifiers;
Encrypted query module 514, for the user identifier and service identifiers received according to the mark receiving module 512
Whether inquiry is previously stored with corresponding password and cipher mode;
Encrypt feedback module 516, for the encrypted query module 514 inquire be previously stored with corresponding password and
During cipher mode, the cipher mode is fed back;
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and
Password corresponding with the combination of both the user identifier and service identifiers;The verification that the verification receiving module 520 receives
Also included timestamp, user's current IP address and/or identifying code are reversible as key progress using the password in bill
Encrypted ciphertext.The password is passes through the encrypted ciphertext of irreversible encryption mode.
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520
Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and
Whether the password that the cipher inquiry module 540 inquires is identical;
Verify deciphering module 565, for using it is described verification receiving module 520 receive verify bill in password as
Verify that other data in bill are decrypted, and obtain the timestamp, user's current IP address and/or verification described in key pair
Code;
Additional detected module 570, for detecting the time in the verification bill after the verification deciphering module 565 is decrypted
Whether stamp, user's current IP address and/or identifying code conform to a predetermined condition, and the predetermined condition meets including the timestamp
IP address, the identifying code when predetermined amount of time, user's current IP address meet last verification are provided previously
Identifying code;
The password authentication module 580, if detecting that two passwords are identical and described for the password detection module 560
Additional detected module 570 detects that timestamp, user's current IP address and/or identifying code in verification bill meet predetermined item
During part, then it is verified.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services
The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute
Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service
Security risk, without other service bands is given to carry out the effect of security risk.Also by optional irreversible encryption mode, ensure that
Safety of the password when storing and transmitting;Essential information is also verified by increase so that verification process is more accurate;Also pass through
Optional reversible encryption mode ensure that safety of the verification essential information in transmission.
It should be noted that employing irreversible encryption mode in the present embodiment, reversible encryption mode is also used, such as
Fruit can form new embodiment only with irreversible encryption mode or only with reversible encryption mode.
Embodiment six
Fig. 7 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention six provides.The password
Verification system includes service system 400 and password authentication device 500.
Compared with above-mentioned several embodiments, service system 400 can also include:First command reception module 460, first please
Ask sending module 470,480 and second request sending module 490 of authentication module;
First command reception module 460, for receiving the deletion of user instruction or modification instruction;
First request sending module 470, please for sending first password management to the password authentication device 500
It asks, first password management request includes the deletion instruction that first command reception module 460 receives or change to refer to
It enables.
The authentication module 480, for obtaining the user identifier of user and authentication bill, the authentication
Bill is included caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode
Authentication information;
Second request sending module 490, for sending the authentication module to the password authentication device 500
480 user identifiers obtained, authentication bill and the second Password Management request, the second Password Management request include service
A kind of instruction in mark and deletion instruction and modification instruction.
Compared with above-described embodiment, password authentication device 500 can also include:The request of relationship storage module 591, first connects
Receive module 592, first password management module 593, the second request receiving module 594, bill enquiry module 595, bill detection mould
596 and second Password Management module 597 of block.
The relationship storage module 591, for storing user identifier, service identifiers and being marked with the user identifier and service
Know the correspondence between the corresponding password of combination of the two;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two
The number of the corresponding password of combination of person is identical with the number of the service identifiers.
The correspondence is also stored with authentication bill corresponding with the user identifier, the authentication bill
Including identity caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode
Authentication information.
First request receiving module 592, for receiving first password management request, the first password management request
Including deleting instruction or modification instruction;
The first password management module 593, it is first close for what is received according to first request receiving module 592
The password that code management request stores the relationship storage module 591 is deleted or is changed.
Second request receiving module 594, please for receiving user identifier, authentication bill and the second Password Management
It asks, the second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module 595, for inquiry in the data that are stored in the relationship storage module 591 and described the
The corresponding authentication bill of user identifier that two request receiving modules 594 receive;
The bill detection module 596, for detecting the authentication ticket that second request receiving module 594 receives
It is whether identical according to the authentication bill inquired with the bill enquiry module 595;
The second Password Management module 597, if identical for two authentication bills, according to second password
A management request pair password corresponding with the service identifiers is deleted or is changed.
In conclusion password authentication device provided in this embodiment, compared with above-mentioned several embodiments, also by increasing it
The support of his Verification System ensure that the availability of entire password validation system when password passes into silence.
It should be noted that employ the first request receiving module 592 and first password management module in the present embodiment
593, also use the second request receiving module 594, bill enquiry module 595,596 and second Password Management of bill detection module
Module 597, if only with the first request receiving module 592 and first password management module 593 or only with the second request
Receiving module 594, bill enquiry module 595,596 and second Password Management module 597 of bill detection module, can form new
Embodiment.
It should be noted that:The password validation system and device that above-described embodiment provides are when verifying password, only with above-mentioned
The division progress of each function module, can be as needed and by above-mentioned function distribution by different for example, in practical application
Function module is completed, i.e., the internal structure of equipment is divided into different function modules, with complete it is described above whole or
Partial function.In addition, password validation system and device that above-described embodiment provides belong to same with method of password authentication embodiment
Design, specific implementation process refer to embodiment of the method, and which is not described herein again.
The embodiments of the present invention are for illustration only, do not represent the quality of embodiment.
One of ordinary skill in the art will appreciate that hardware can be passed through by realizing all or part of step of above-described embodiment
It completes, relevant hardware can also be instructed to complete by program, the program can be stored in a kind of computer-readable
In storage medium, storage medium mentioned above can be read-only memory, disk or CD etc..
The foregoing is merely presently preferred embodiments of the present invention, is not intended to limit the invention, it is all the present invention spirit and
Within principle, any modification, equivalent replacement, improvement and so on should all be included in the protection scope of the present invention.
Claims (19)
1. a kind of method of password authentication, which is characterized in that the method includes:
Receive user identifier and service identifiers;
Whether corresponding password and cipher mode, different clothes are previously stored with according to the user identifier and service identifiers inquiry
Business identifies corresponding password and uses different cipher modes;
Inquire be previously stored with corresponding password and cipher mode when, feed back the cipher mode;
Receive verification bill, it is described verification bill include the user identifier, the service identifiers and with the user identifier and
The corresponding password of combination of both service identifiers, the user identifier correspond to one or more service identifiers, the service mark
Know for the mark corresponding to service system, with the number of the corresponding password of combination of both the user identifier and service identifiers with
The number of the service identifiers is identical, and the password and the pre-stored password in the verification bill are by irreversible
The encrypted ciphertext of cipher mode;
Pre-stored password is inquired according to the user identifier and the service identifiers;
Whether the password for detecting the password in the verification bill and inquiring is identical;
If detecting, two passwords are identical, are verified, the service function that service system described in normal use provides.
2. according to the method described in claim 1, it is characterized in that, to further include timestamp, user in the verification bill current
One or more of IP address and identifying code,
If described detect that two passwords are identical, before being verified, further include:
Whether timestamp, user's current IP address and/or the identifying code detected in the verification bill conforms to a predetermined condition, institute
State IP when predetermined condition meets predetermined amount of time including the timestamp, user's current IP address meets last verification
Address, the identifying code are the identifying code being provided previously;
If described detect that two passwords are identical, it is verified, specifically includes:
If detect two passwords it is identical and it is described verification bill in timestamp, user's current IP address and/or identifying code it is equal
When conforming to a predetermined condition, then it is verified.
3. according to the method described in claim 2, it is characterized in that, timestamp, user current IP in the verification bill
Location and/or identifying code are to carry out the ciphertext after reversible encryption, the detection verification bill as key using the password
In timestamp, user's current IP address and/or identifying code whether conform to a predetermined condition before, further include:
It is decrypted by the use of other data in verification bill described in the password as key pair in the verification bill, obtains institute
State timestamp, user's current IP address and/or identifying code.
4. method according to any one of claims 1 to 3, which is characterized in that if described detect that two passwords are identical, test
After card passes through, further include:
First password management request is received, the first password management request includes deleting instruction or modification instruction;
The password is deleted or changed according to first password management request.
5. method according to any one of claims 1 to 3, which is characterized in that it is described to receive before verifying bill, it further includes:
Store user identifier, service identifiers and between the corresponding password of combination of both the user identifier and service identifiers
Correspondence.
6. according to the method described in claim 5, it is characterized in that, the correspondence is also stored with and the user identifier pair
The authentication bill answered, the authentication bill include mailbox authentication mode, certificate verification mode, dynamic password authentication side
Authentication information caused by formula or default problem authentication mode, the method further include:
User identifier, authentication bill and the second Password Management request are received, the second Password Management request includes service
A kind of instruction in mark and deletion instruction and modification instruction;
Inquiry authentication bill corresponding with the user identifier;
It detects the authentication bill received and whether the authentication bill inquired is identical;
It is corresponding with the service identifiers close according to second Password Management request pair if two authentication bills are identical
Code is deleted or is changed.
7. a kind of password authentication device, which is characterized in that described device includes:
Receiving module is identified, for receiving user identifier and service identifiers;
Whether encrypted query module, user identifier and service identifiers for being received according to the mark receiving module inquire pre-
Corresponding password and cipher mode are first stored with, the corresponding password of different service identifiers uses different cipher modes;
Encrypt feedback module, in the encrypted query module polls to being previously stored with corresponding password and cipher mode
When, feed back the cipher mode;
Verify receiving module, for receive verify bill, it is described verification bill include the user identifier, the service identifiers and
Password corresponding with the combination of both the user identifier and service identifiers, the user identifier correspond to one or more service
Mark, the service identifiers is the marks corresponding to service system, the combination pair with both the user identifier and service identifiers
The number for the password answered is identical with the number of the service identifiers, the password and described pre-stored close in the verification bill
Code is by the encrypted ciphertext of irreversible encryption mode;
Cipher inquiry module, user identifier and service identifiers inquiry for being received according to the verification receiving module are deposited in advance
The password of storage;
Password detection module is looked into for detecting password in the verification bill that receives of verification receiving module and the password
Whether identical ask the password that module polls arrive;
Password authentication module if detecting that two passwords are identical for the password detection module, is verified, normal use
The service function that the service system provides.
8. device according to claim 7, which is characterized in that in the verification bill that the verification receiving module receives also
Including one or more of timestamp, user's current IP address and identifying code,
Described device further includes:Additional detected module;
The additional detected module, for detecting timestamp, user's current IP address and/or identifying code in the verification bill
Whether conform to a predetermined condition, the predetermined condition including the timestamp with meeting predetermined amount of time, the current IP of the user
IP address, the identifying code when location meets last verification are the identifying code being provided previously;
The password authentication module, if specifically for detect two passwords it is identical and it is described verification bill in timestamp, use
When family current IP address and/or identifying code conform to a predetermined condition, then it is verified.
9. device according to claim 8, which is characterized in that in the verification bill that the verification receiving module receives
Timestamp, user's current IP address and/or identifying code are to carry out the ciphertext after reversible encryption as key using the password;
Described device further includes:Verify deciphering module;
The verification deciphering module, for by the use of it is described verification bill in password as key pair described in verify bill in its
Its data is decrypted, and obtains the timestamp, user's current IP address and/or identifying code.
10. according to any device of claim 7 to 9, which is characterized in that described device further includes:First request receives
Module and first password management module;
First request receiving module, for receiving first password management request, the first password management request includes deleting
Except instruction or modification instruction;
The first password management module, for the first password management request received according to first request receiving module
The password is deleted or changed.
11. according to any device of claim 7 to 9, which is characterized in that described device further includes:Relationship stores mould
Block;
The relationship storage module, for storing user identifier, service identifiers and both with the user identifier and service identifiers
The corresponding password of combination between correspondence;
Wherein, a user identifier corresponds to both one or more service identifiers, described and the user identifier and service identifiers
The number for combining corresponding password is identical with the number of the service identifiers.
12. according to the devices described in claim 11, which is characterized in that the correspondence is also stored with and the user identifier
Corresponding authentication bill, the authentication bill include mailbox authentication mode, certificate verification mode, dynamic password authentication
Authentication information caused by mode or default problem authentication mode, described device further include:Second request receiving module,
Bill enquiry module, bill detection module and the second Password Management module;
Second request receiving module, it is described for receiving user identifier, authentication bill and the second Password Management request
Second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module, for inquiring identity corresponding with the user identifier that second request receiving module receives
Certification bill;
The bill detection module, for detecting authentication bill and the ticket that second request receiving module receives
Whether it is investigated that it is identical to ask the authentication bill that module polls arrive;
The second Password Management module, please according to second Password Management if identical for two authentication bills
A pair password corresponding with the service identifiers is asked to be deleted or changed.
13. a kind of service system, which is characterized in that including:
Sending module is identified, for sending user identifier and service identifiers to password authentication device;
Receiving module is encrypted, is fed back for receiving after the password authentication device is inquired according to the user identifier and service identifiers
Cipher mode, the corresponding password of different service identifiers use different cipher modes;
Cryptographic module, the cipher mode for being received according to the encryption receiving module obtain the password acquisition module
The password got carries out irreversible encryption;
Verify sending module, specifically for sending verification bill to the password authentication device, the verification bill includes described
The encrypted password of cryptographic module;
Password acquisition module, for obtaining user identifier and password of the user under current serving system;
Verify sending module, for the password authentication device send verification bill, it is described verification bill include user identifier,
For the service identifiers that identify current serving system and corresponding with the combination of both the user identifier and service identifiers described
Password, so that the password authentication device carries out password authentification according to the verification bill, if being verified, normal use institute
The service function of service system offer is stated, the user identifier corresponds to one or more service identifiers, and the service identifiers are
Corresponding to the mark of service system, with the number of the corresponding password of combination of both the user identifier and service identifiers with it is described
The number of service identifiers is identical.
14. service system according to claim 13, which is characterized in that the system also includes:
Data obtaining module;
Described information acquisition module, for obtaining the one or more of timestamp, user's current IP address and identifying code;
The verification sending module, specifically for sending verification bill to the password authentication device, the verification bill also wraps
Include timestamp, user's current IP address and/or identifying code that described information acquisition module is got.
15. service system according to claim 14, which is characterized in that the system also includes:
Bill encrypting module;
The bill encrypting module, for being obtained by the use of the password that the password acquisition module obtains as key pair described information
Timestamp, user's current IP address and/or the identifying code that module is got carry out reversible encryption, obtain close after reversible encryption
Text;
The verification sending module, specifically for sending verification bill to the password authentication device, the verification bill also wraps
It includes after carrying out reversible encryption as timestamp described in key pair, user's current IP address and/or identifying code using the password
Ciphertext.
16. according to any service system of claim 13 to 15, which is characterized in that the system also includes:First refers to
Enable receiving module and the first request sending module;
First command reception module, for receiving the deletion of user instruction or modification instruction;
First request sending module is asked, described first for sending first password management to the password authentication device
Password Management request includes described delete and instructs or change instruction.
17. according to any service system of claim 13 to 15, which is characterized in that the system also includes:Identity is tested
Demonstrate,prove module and the second request sending module;
The authentication module, for obtaining the user identifier of user and authentication bill, the authentication bill packet
Mailbox authentication mode, certificate verification mode, dynamic password authentication mode or identity caused by default problem authentication mode is included to recognize
Demonstrate,prove information;
Second request sending module, for sending the user identifier, authentication bill to the password authentication device
It is asked with the second Password Management, the second Password Management request includes service identifiers and deletes in instruction and modification instruction
A kind of instruction.
18. a kind of password validation system, which is characterized in that including the password authentification one as described in claim 7 to 12 is any
Device and at least one service system as described in claim 13 to 17 is any.
19. a kind of computer readable storage medium, which is characterized in that it has program stored therein in the computer readable storage medium,
Described program is loaded by processor and is performed to realize such as claim 1 to 6 any one of them method of password authentication.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210453453.0A CN103812651B (en) | 2012-11-13 | 2012-11-13 | Method of password authentication, apparatus and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210453453.0A CN103812651B (en) | 2012-11-13 | 2012-11-13 | Method of password authentication, apparatus and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103812651A CN103812651A (en) | 2014-05-21 |
CN103812651B true CN103812651B (en) | 2018-06-22 |
Family
ID=50708899
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210453453.0A Active CN103812651B (en) | 2012-11-13 | 2012-11-13 | Method of password authentication, apparatus and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103812651B (en) |
Families Citing this family (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105024819B (en) * | 2015-05-29 | 2019-02-12 | 北京中亦安图科技股份有限公司 | A kind of multiple-factor authentication method and system based on mobile terminal |
CN107395644B (en) * | 2017-09-01 | 2020-05-12 | 北京知道创宇信息技术股份有限公司 | Multi-protocol authentication system and method |
CN107612904A (en) * | 2017-09-13 | 2018-01-19 | 浙江电力建设监理有限公司 | Identity identifying method and system for intelligent monitoring management |
CN107888656B (en) * | 2017-10-09 | 2020-11-20 | 北京京东尚科信息技术有限公司 | Calling method and calling device of server-side interface |
CN107645514B (en) * | 2017-10-26 | 2020-03-17 | 北京知道创宇信息技术股份有限公司 | Authentication protocol conversion method and device |
CN108737431B (en) * | 2018-05-28 | 2020-09-15 | 深圳职业技术学院 | Confusion-based hierarchical distributed authentication method, device and system in IoT (Internet of things) scene |
CN108600278A (en) * | 2018-07-05 | 2018-09-28 | 湖州贝格信息安全科技有限公司 | Asymmet-ric encryption method and Related product |
CN110796798A (en) * | 2018-08-01 | 2020-02-14 | 北京思源理想控股集团有限公司 | Intelligent inbox system and method |
CN112929188B (en) * | 2019-12-05 | 2022-06-14 | 中国电信股份有限公司 | Device connection method, system, apparatus and computer readable storage medium |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101051934A (en) * | 2006-04-05 | 2007-10-10 | 大唐移动通信设备有限公司 | Power control method in network managing system |
CN101359410A (en) * | 2007-08-03 | 2009-02-04 | 陶正钰 | Bank account and bank card password wall technology |
CN101441734A (en) * | 2007-11-19 | 2009-05-27 | 上海久隆电力科技有限公司 | Unite identification authentication system |
CN101478471A (en) * | 2009-02-04 | 2009-07-08 | 中兴通讯股份有限公司 | Deployment method and system for MPLS/BGP three-layer virtual private network |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101599951A (en) * | 2008-06-06 | 2009-12-09 | 阿里巴巴集团控股有限公司 | A kind of method of releasing website information, Apparatus and system |
-
2012
- 2012-11-13 CN CN201210453453.0A patent/CN103812651B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101051934A (en) * | 2006-04-05 | 2007-10-10 | 大唐移动通信设备有限公司 | Power control method in network managing system |
CN101359410A (en) * | 2007-08-03 | 2009-02-04 | 陶正钰 | Bank account and bank card password wall technology |
CN101441734A (en) * | 2007-11-19 | 2009-05-27 | 上海久隆电力科技有限公司 | Unite identification authentication system |
CN101478471A (en) * | 2009-02-04 | 2009-07-08 | 中兴通讯股份有限公司 | Deployment method and system for MPLS/BGP three-layer virtual private network |
Also Published As
Publication number | Publication date |
---|---|
CN103812651A (en) | 2014-05-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103812651B (en) | Method of password authentication, apparatus and system | |
CN101641976B (en) | An authentication method | |
CN105050081B (en) | Method, device and system for connecting network access device to wireless network access point | |
KR101508360B1 (en) | Apparatus and method for transmitting data, and recording medium storing program for executing method of the same in computer | |
CN103812871B (en) | Development method and system based on mobile terminal application program security application | |
CN101605137B (en) | Safe distribution file system | |
CN102420821B (en) | Method and system for improving transmission security of file | |
CN101720071B (en) | Short message two-stage encryption transmission and secure storage method based on safety SIM card | |
CN101815091A (en) | Cipher providing equipment, cipher authentication system and cipher authentication method | |
CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
CN102761870B (en) | Terminal authentication and service authentication method, system and terminal | |
CN103297437A (en) | Safety server access method for mobile intelligent terminal | |
CN107026824A (en) | A kind of message encryption, decryption method and device | |
CN108809633B (en) | Identity authentication method, device and system | |
Nyamtiga et al. | Enhanced security model for mobile banking systems in Tanzania | |
CN106452770A (en) | Data encryption method and apparatus, data decryption method and apparatus, and system | |
CN105656920A (en) | Method and system for encryption and decryption of mailing data based on expressage | |
CN108769029B (en) | Authentication device, method and system for application system | |
CN104247485B (en) | Network application function authorization in Generic Bootstrapping Architecture | |
CN107483429B (en) | A kind of data ciphering method and device | |
CN106161444A (en) | Secure storage method of data and subscriber equipment | |
CN104243452B (en) | A kind of cloud computing access control method and system | |
CN102404337A (en) | Data encryption method and device | |
CN103916834A (en) | Short message encryption method and system allowing user to have exclusive secret key | |
CN107888548A (en) | A kind of Information Authentication method and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |