CN103812651B - Method of password authentication, apparatus and system - Google Patents

Method of password authentication, apparatus and system Download PDF

Info

Publication number
CN103812651B
CN103812651B CN201210453453.0A CN201210453453A CN103812651B CN 103812651 B CN103812651 B CN 103812651B CN 201210453453 A CN201210453453 A CN 201210453453A CN 103812651 B CN103812651 B CN 103812651B
Authority
CN
China
Prior art keywords
password
module
bill
verification
authentication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210453453.0A
Other languages
Chinese (zh)
Other versions
CN103812651A (en
Inventor
向坤
秦雷
郭计伟
袁丽娜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Tencent Computer Systems Co Ltd
Original Assignee
Shenzhen Tencent Computer Systems Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Tencent Computer Systems Co Ltd filed Critical Shenzhen Tencent Computer Systems Co Ltd
Priority to CN201210453453.0A priority Critical patent/CN103812651B/en
Publication of CN103812651A publication Critical patent/CN103812651A/en
Application granted granted Critical
Publication of CN103812651B publication Critical patent/CN103812651B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Storage Device Security (AREA)

Abstract

The invention discloses a kind of method of password authentication, apparatus and systems, belong to internet terminal field.The method includes:Verification bill is received, the verification bill includes user identifier, service identifiers and password corresponding with the combination of both the user identifier and service identifiers;Pre-stored password is inquired according to the user identifier and the service identifiers;Whether the password for detecting the password in the verification bill and inquiring is identical;If detecting, two passwords are identical, are verified.The present invention completes password verification process by using a user identifier and multiple passwords corresponding from different service systems, it solves multinomial service and shares safety issue caused by one group of username and password, even if the password leakage of user is reached, also only it can carry out security risk to the safety belt of one of which service, without other service bands is given to carry out the effect of security risk.

Description

Method of password authentication, apparatus and system
Technical field
The present invention relates to internet terminal field, more particularly to a kind of method of password authentication, apparatus and system.
Background technology
Internet provides service greatly both for user.When needing to carry out authentication to user, user name is used It is one of most popular means with password.
Since present the Internet, applications are in diversified development, same Internet Service Provider may provide more simultaneously The different Internet service of kind, such as:Synchronous with cloud etc. the service of mailbox, search, instant messaging, notes.In order to simplify user Operation improves user experience, and existing Internet Service Provider is when providing a variety of services, it is only necessary to which user uses one group of phase Same username and password can use all services.That is, when user a certain Internet Service Provider into After row registration, this group of username and password of registration can be used arbitrarily to log in and carried using the Internet Service Provider All services supplied.
In the implementation of the present invention, inventor has found that the prior art has at least the following problems:Although multinomial service It shares one group of username and password to provide users with the convenient, but is very easy to safety issue occur, once this group of user Name and password are leaked, and all services that user uses all can there are security risks.
Invention content
Safety issue caused by one group of username and password is shared in order to solve multinomial service, the embodiment of the present invention carries A kind of method of password authentication, apparatus and system are supplied.The technical solution is as follows:
According to an aspect of the invention, there is provided a kind of method of password authentication, the method includes:
Receive verification bill, it is described verification bill include user identifier, service identifiers and with the user identifier and service Identify the corresponding password of combination of the two;
Pre-stored password is inquired according to the user identifier and the service identifiers;
Whether the password for detecting the password in the verification bill and inquiring is identical;
If detecting, two passwords are identical, are verified.
Further, further included in the verification bill timestamp, user's current IP address and one kind in identifying code or Person is a variety of,
If described detect that two passwords are identical, before being verified, further include:
Whether timestamp, user's current IP address and/or the identifying code detected in the verification bill meets predetermined item Part, the predetermined condition meets predetermined amount of time including the timestamp, user's current IP address meets last verification When IP address, the identifying code be the identifying code being provided previously;
If described detect that two passwords are identical, it is verified, specifically includes:
If detect two passwords it is identical and it is described verification bill in timestamp, user's current IP address and/or verification When code conforms to a predetermined condition, then it is verified.
Further, timestamp, user's current IP address and/or the identifying code in the verification bill are using described close Code carries out the ciphertext after reversible encryption, the timestamp detected in the verification bill, user's current IP address as key And/or it before whether identifying code conforms to a predetermined condition, further includes:
It is decrypted, obtained by the use of other data in verification bill described in the password as key pair in the verification bill Obtain the timestamp, user's current IP address and/or identifying code.
Further, the password in the verification bill and the pre-stored password are by irreversible encryption side The encrypted ciphertext of formula, it is described to receive before verifying bill, it further includes:
Receive user identifier and service identifiers;
Whether corresponding password and cipher mode are previously stored with according to the user identifier and service identifiers inquiry;
Inquire be previously stored with corresponding password and cipher mode when, feed back the cipher mode.
Further, it if described detect that two passwords are identical, after being verified, further includes:
First password management request is received, the first password management request includes deleting instruction or modification instruction;
The password is deleted or changed according to first password management request.
Further, it is described to receive before verifying bill, it further includes:
Store user identifier, service identifiers and password corresponding with the combination of both the user identifier and service identifiers it Between correspondence;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two The number of the corresponding password of combination of person is identical with the number of the service identifiers.
Further, the correspondence is also stored with authentication bill corresponding with the user identifier, the body Part certification bill includes mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode institute The authentication information of generation, the method further include:
User identifier, authentication bill and the second Password Management request are received, the second Password Management request includes A kind of instruction in service identifiers and deletion instruction and modification instruction;
Inquiry authentication bill corresponding with the user identifier;
It detects the authentication bill received and whether the authentication bill inquired is identical;
It is corresponding with the service identifiers according to second Password Management request pair if two authentication bills are identical Password deleted or changed.
According to another aspect of the present invention, a kind of password authentication device is provided, described device includes:
Verify receiving module, for receive verify bill, it is described verification bill include user identifier, service identifiers and with institute State the corresponding password of combination of both user identifier and service identifiers;
Cipher inquiry module, user identifier and service identifiers for being received according to the verification receiving module are inquired pre- The password first stored;
Password detection module, for detecting the password and described close in the verification bill that the verification receiving module receives Whether the password that code enquiry module inquires is identical;
Password authentication module if detecting that two passwords are identical for the password detection module, is verified.
Further, in the verification bill that the verification receiving module receives with further including timestamp, the current IP of user One or more of location and identifying code,
Described device further includes:Additional detected module;
The additional detected module, for detecting the timestamp in the verification bill, user's current IP address and/or testing Whether card code conforms to a predetermined condition, and it is current that the predetermined condition including the timestamp meets predetermined amount of time, the user IP address, the identifying code when IP address meets last verification are the identifying code being provided previously;
The password authentication module, if specifically for detect two passwords it is identical and it is described verification bill in time When stamp, user's current IP address and/or identifying code conform to a predetermined condition, then it is verified.
Further, it is described verification receiving module receive verification bill in timestamp, user's current IP address and/ Or identifying code is to carry out the ciphertext after reversible encryption as key using the password;
Described device further includes:Verify deciphering module;
The verification deciphering module, for by the use of it is described verification bill in password as key pair described in verify bill in Other data be decrypted, obtain the timestamp, user's current IP address and/or identifying code.
Further, password and the pre-stored password in the verification bill that the verification receiving module receives It is by the encrypted ciphertext of irreversible encryption mode;
Described device further includes:Identify receiving module, encrypted query module and encryption feedback module;
The mark receiving module, for receiving user identifier and service identifiers;
The encrypted query module, user identifier and service identifiers for being received according to the mark receiving module are looked into Whether inquiry is previously stored with corresponding password and cipher mode;
The encryption feedback module, for the encrypted query module polls to be previously stored with corresponding password and plus During close mode, the cipher mode is fed back.
Further, described device further includes:First request receiving module and first password management module;
First request receiving module, for receiving first password management request, the first password manages request bag Include deletion instruction or modification instruction;
The first password management module, for the first password management received according to first request receiving module Request is deleted or is changed to the password.
Further, described device further includes:Relationship storage module;
The relationship storage module, for store user identifier, service identifiers and with the user identifier and service identifiers Correspondence between the corresponding password of combination of the two;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two The number of the corresponding password of combination of person is identical with the number of the service identifiers.
Further, the correspondence is also stored with authentication bill corresponding with the user identifier, the body Part certification bill includes mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode institute The authentication information of generation, described device further include:Second request receiving module, bill enquiry module, bill detection module With the second Password Management module;
Second request receiving module, for receiving user identifier, authentication bill and the second Password Management request, The second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module, it is corresponding with the user identifier that second request receiving module receives for inquiring Authentication bill;
The bill detection module, for detecting authentication bill and the institute that second request receiving module receives Whether identical state the authentication bill that bill enquiry module inquires;
The second Password Management module, if identical for two authentication bills, according to the second password pipe A reason request pair password corresponding with the service identifiers is deleted or is changed.
In accordance with a further aspect of the present invention, a kind of service system is provided, including:
Password acquisition module, for obtaining user identifier and password of the user under current serving system;
Verify sending module, for password authentication device send verification bill, it is described verification bill include user identifier, For the service identifiers that identify current serving system and corresponding with the combination of both the user identifier and service identifiers described Password, so that the password authentication device carries out password authentification according to the verification bill.
Further, the system also includes:
Data obtaining module;
Described information acquisition module, for obtaining the one or more of timestamp, user's current IP address and identifying code;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device Further include timestamp, user's current IP address and/or identifying code that described information acquisition module is got.
Further, the system also includes:
Bill encrypting module;
The bill encrypting module, for by the use of the password that the password acquisition module obtains as key pair described information Timestamp, user's current IP address and/or the identifying code that acquisition module is got carry out reversible encryption, after obtaining reversible encryption Ciphertext;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device It further includes using the password as timestamp, user's current IP address and/or identifying code progress reversible encryption described in key pair Ciphertext afterwards.
Further, the system, further includes:
Identify sending module, encryption receiving module and cryptographic module;
The mark sending module, for sending user identifier and service identifiers to the password authentication device;
The encryption receiving module is looked into for receiving the password authentication device according to the user identifier and service identifiers The cipher mode fed back after inquiry;
The cryptographic module, the cipher mode for being received according to the encryption receiving module obtain the password The password that modulus block is got carries out irreversible encryption;
The verification sending module, specifically for sending verification bill, the verification bill to the password authentication device Including the encrypted password of the cryptographic module.
Further, the system also includes:First command reception module and the first request sending module;
First command reception module, for receiving the deletion of user instruction or modification instruction;
First request sending module, it is described for sending first password management request to the password authentication device First password management request includes described delete and instructs or change instruction.
Further, the system also includes:Authentication module and the second request sending module;
The authentication module, for obtaining the user identifier of user and authentication bill, the authentication ticket According to including body caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode Part authentication information;
Second request sending module, for sending the user identifier, authentication to the password authentication device Bill and the second Password Management request, the second Password Management request include service identifiers and delete instruction and modification instruction In a kind of instruction.
Further aspect according to the present invention provides a kind of password validation system, including one as described in another aspect Password authentication device and at least one service system as described in another further aspect.
The advantageous effect that technical solution provided in an embodiment of the present invention is brought is:
Password authentification is completed by using a user identifier and multiple passwords corresponding from different service systems Process solves multinomial service and shares safety issue caused by one group of username and password, even if having reached the one of user A password leakage, also only can carry out security risk to the safety belt of one of which service, hidden without other service bands is given to carry out safety The effect of trouble.
Description of the drawings
To describe the technical solutions in the embodiments of the present invention more clearly, make required in being described below to embodiment Attached drawing is briefly described, it should be apparent that, the accompanying drawings in the following description is only some embodiments of the present invention, for For those of ordinary skill in the art, without creative efforts, other are can also be obtained according to these attached drawings Attached drawing.
Fig. 1 is a kind of structure diagram of implementation environment involved by the embodiment of the present invention;
Fig. 2 is the method flow diagram for the method for password authentication that the embodiment of the present invention one provides;
Fig. 3 is the method flow diagram of method of password authentication provided by Embodiment 2 of the present invention;
Fig. 4 is the block diagram for the password validation system that the embodiment of the present invention three provides;
Fig. 5 is the block diagram for the password validation system that the embodiment of the present invention four provides;
Fig. 6 is the block diagram for the password validation system that the embodiment of the present invention five provides;
Fig. 7 is the block diagram for the password validation system that the embodiment of the present invention six provides.
Specific embodiment
To make the object, technical solutions and advantages of the present invention clearer, below in conjunction with attached drawing to embodiment party of the present invention Formula is described in further detail.
It please refers to Fig.1, it illustrates a kind of structure diagrams of implementation environment involved by the embodiment of the present invention.The implementation Environment includes a password authentication device 120 and multiple service systems 140.
Multiple passwords can be safeguarded, manage and be verified to password authentication device 120.In particular, password authentication device 120 can To separately maintain a user identifier to each user, then corresponding to different service systems 140, all respectively maintenance one is close Code, for example, service system 140 has 5, if user has used whole 5 services, user can have 1 user identifier and 5 A password corresponding to different service systems 140;If user has only used 2 services, user has 1 user identifier and 2 A password corresponding to different service systems 140.
Service system 140 can be two or more, and the service that each service system 140 provides is different, For example, first service system 140 provides mailbox service;Second service system 140 provides instant messaging service;Third takes Business system 140 provides microblogging service,,, and so on, it repeats no more.
Embodiment one
It please refers to Fig.2, it illustrates the method flow diagrams for the method for password authentication that the embodiment of the present invention one provides.The password Verification method can be used in password authentication device as shown in Figure 1, the method for password authentication, including:
Step 202, receive verification bill, verification bill include user identifier, service identifiers and with user identifier and service Identify the corresponding password of combination of the two;
Wherein, service identifiers are the mark corresponding to service system.
Step 204, pre-stored password is inquired according to user identifier and service identifiers;
Step 206, whether the password in detection verification bill and the password inquired are identical;
Step 208, if detecting, two passwords are identical, are verified.
In conclusion method of password authentication provided in this embodiment, by using a user identifier and from different services The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service Security risk, without other service bands is given to carry out the effect of security risk.
Embodiment two
It please refers to Fig.3, it illustrates the method flow diagrams of method of password authentication provided by Embodiment 2 of the present invention.The password Verification method can be used in implementation environment as shown in Figure 1, the method for password authentication, including:
Step 301, password authentication device storage user identifier, service identifiers and with both user identifier and service identifiers Combine the correspondence between corresponding password;
Password authentication device can prestore user identifier, service identifiers and with both user identifier and service identifiers The correspondence between corresponding password is combined, wherein, a user identifier corresponds to one or more service identifiers, with user identifier It is identical with the number of service identifiers with the number of the corresponding password of combination of both service identifiers.The storing process can be in user Registration process carries out, and database may be used and stored.As an example, above-mentioned correspondence can be divided into two tables Storage, it is specific as follows:
User identifier Service identifiers 1 Service identifiers 2 Service identifiers 3
User1 App1 App2 App3
User2 App2 App4
User3 App5
Table 1
User identifier Service identifiers Cipher mode Cryptographic secret Creation time
User1 App1 md5^2 enc_passwd1 2012/3/21
User1 App2 md5^2salt enc_passwd2 2012/3/21
User1 App3 md5^3 enc_passwd3 2012/3/21
User2 App2 md5^3salt enc_passwd4 2012/4/01
User2 App4 md5^3 enc_passwd5 2012/5/12
User3 App5 md5^3 enc_passwd6 2012/11/11
Table 2
Wherein, table 1 is USI user service information table, is stored with the user identifier of user and service system used by a user institute Corresponding service identifiers, for example, the user identifier of user 1 is 1, the service system used includes service system 1, service system 2 and service system 3, correspond respectively to service identifiers App1, App2 and App3.Table 2 is then user password information table, and storage is useful User identifier, service identifiers, cipher mode, password corresponding with the combination of both user identifier and service identifiers and the establishment at family Time.
Preferably, in order to ensure that user data also can not reversely decrypt original password after being stolen, original password is adopted It is stored after being encrypted with irreversible encryption mode, corresponding irreversible encryption mode is the cipher mode stored in table 2, no Different cipher modes may be used in password corresponding to same service identifiers.
Under other implement scene, which can also be stored with authentication ticket corresponding with user identifier According to authentication bill is recognized including such as mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem Authentication information caused by other Verification Systems of card mode etc.
Step 302, service system obtains user identifier and password of the user under current serving system;
When user use certain service system when, service system can obtain user inputted under current serving system or The user identifier and password of preservation, for example, the user identifier that service system 1 is got is User1, password enc_passwd1.
Then, service system can send user identifier to password authentication device first and represent the service identifiers of itself.
Step 303, password authentication device receives user identifier and service identifiers;
Password authentication device can receive the user identifier and service identifiers of service system transmission, for example, the use received Family is identified as User1, service identifiers App1.
Step 304, whether password authentication device is previously stored with corresponding close according to user identifier and service identifiers inquiry Code and cipher mode;
Whether password authentication device can be previously stored with encryption according to user identifier and the service identifiers inquiry received Mode and corresponding password, for example, the user identifier that receives of password authentication device is User1, service identifiers App1 is then close Code verification device can inquire that there are corresponding cipher mode md5^2 and password enc_passwd1.
Step 305, password authentication device inquire be previously stored with corresponding password and cipher mode when, feedback encryption Mode;
Password authentication device feeds back the cipher mode when inquiring corresponding cipher mode, to service system, for example, close Code verification device feeds back cipher mode md5^2 to service system 1.
If it should be noted that in step 304 password authentication device inquiry less than cipher mode and corresponding password, than Such as, the user identifier that password authentication device receives be User3, service identifiers App1, then password authentication device inquiry less than Cipher mode and corresponding password;At this point, password authentication device can receive this with feedback query failure information, service system After query failure message, user can be triggered and registered under current serving system.
Step 306, service system carries out irreversible encryption according to the cipher mode received to password;
It, can be to being got in step 302 after the cipher mode for receiving password authentication device feedback in service system The password of user carry out irreversible encryption according to the cipher mode that receives.
After the processing of this step, service system is close after irreversible encryption by what is transmitted to password authentication device Code ciphertext, even if transmission process is monitored or intercepts, other people also can not reversely decrypt the password of user.
Step 307, service system obtains the one or more of timestamp, user's current IP address and identifying code;
In order to more accurately complete password verification process, service system can also obtain the additional basic letter of active user Breath, the additional essential information can include timestamp, one or more of user's current IP address and identifying code.
Step 308, service system by the use of password as key pair timestamp, user's current IP address and/or identifying code into Row reversible encryption obtains the ciphertext after reversible encryption;
Service system can also use in step 306 encrypted password as key, to got in step 307 when Between stamp, user's current IP address and/or identifying code carry out reversible encryption, obtain the ciphertext after reversible encryption.The reversible encryption side Formula can be the cipher mode that service system is arranged in advance with password authentication device.
Later, the password in step 306 after irreversible encryption, the timestamp in this step after reversible encryption, user are current IP address and/or identifying code, it will collectively as verifying the verification bill of user identity.
Service system sends the verification bill to password authentication device.
Step 309, password authentication device receives verification bill;
Password authentication device can receive the verification bill of service system transmission.Include user's mark in the verification bill Knowledge, service identifiers, the password after irreversible encryption and by the use of the password after the irreversible encryption as the key pair time Stamp, user's current IP address and/or identifying code carry out the ciphertext after reversible encryption.
Step 310, password authentication device inquires pre-stored password according to user identifier and service identifiers;
Password authentication device inquires itself stored password in step 301 according to user identifier and service identifiers.
Step 311, whether the password in password authentication device detection verification bill and the password inquired are identical;
Whether the password that password authentication device can detect the password in verification bill and inquire is identical.
While step 310 and step 311 is performed, on the other hand:
Step 312, password authentication device verifies other numbers in bill by the use of the password verified in bill as key pair According to being decrypted, timestamp, user's current IP address and/or identifying code are obtained;
Password authentication device can also be verified in bill by the use of the password verified in bill as key pair in addition to password Other data be decrypted, obtain timestamp, user's current IP address and/or identifying code.
Step 313, timestamp, user's current IP address and/or the identifying code in password authentication device detection verification bill Whether conform to a predetermined condition,
Wherein, when predetermined condition meets predetermined amount of time including timestamp, user's current IP address meets last verification IP address, identifying code be the identifying code being provided previously.
Password authentication device carries out the timestamp after decryption, each in user's current IP address and/or identifying code single Solely judge, judge whether it conforms to a predetermined condition.
Step 314, if detect two passwords it is identical and verification bill in timestamp, user's current IP address and/or When identifying code conforms to a predetermined condition, then it is verified;
Detect that two passwords are identical in password authentication device, and with verifying the current IP of the timestamp in bill, user When location and/or identifying code conform to a predetermined condition, then it is verified;Do not pass through conversely, then verifying.Password authentication device can incite somebody to action Verification result is sent to service system.
After being verified, the service function of service system offer can be used normally in user.
Easy full of beard and, if user needs to delete password or changed, then user can after normal log in Instruction or modification instruction are deleted to be triggered in service system.At this point, service system receives the deletion instruction of user or repaiies Change instruction;And send first password management request to password authentication device, first password management request include deleting instruct or Person changes instruction.
Step 315, password authentication device receives first password management request, and is asked according to first password management to password It is deleted or is changed;
Password authentication device can receive the first password management request of service system transmission, and according to first password pipe Reason request carries out password to delete or change accordingly.
It should be noted that authentication has only been carried out under the service system since user is current, therefore first password pipe Reason request is merely able to that the password corresponding to the service system is deleted or changed.
When user uses service system and password authentication device, it is also possible to which a kind of situation occur is:User has forgotten certain Password under one or more service system.At this point, the present embodiment, which additionally provides additional mechanism, to carry out pipe to password Reason.It is specific as follows:
Step 316, service system obtains the user identifier of user and authentication bill, and authentication bill includes mailbox Authentication mode, certificate verification mode, dynamic password authentication mode or authentication information caused by default problem authentication mode;
Under the scene for having forgotten the password under some or multiple service systems in user, service system can obtain use The user identifier at family and authentication bill, authentication bill include mailbox authentication mode, certificate verification mode, dynamic password Authentication information caused by authentication mode or default problem authentication mode.The process needs service system and corresponding mailbox Verification System, certificate authentication system, dynamic password authentication system or default problem Verification System are individually completed.Recognize in the identity After the success of card process, service system can obtain authentication information corresponding with the user identifier.
After service system obtains authentication information corresponding with the user identifier, service system can be tested to password Card device sends user identifier, authentication bill and the second Password Management request, and the second Password Management request includes service mark Know and delete instruction and change a kind of instruction in instruction.
Step 317, password authentication device receives user identifier, authentication bill and the second Password Management request;
Password authentication device can receive user identifier, authentication bill and the second password pipe of service system transmission Reason request.
Step 318, password authentication device inquires authentication bill corresponding with user identifier;
Password authentication device can inquire pre-stored authentication ticket corresponding with user identifier in step 301 According to.
Step 319, the password authentication device detection authentication bill received and the authentication bill inquired are It is no identical;
Whether the password authentication device detection authentication bill received and the authentication bill inquired are identical, such as Two authentication bills of fruit are identical, then can also represent that the authentication of user passes through.
It step 320, please according to the second Password Management if password authentication device detects that two authentication bills are identical A pair password corresponding with service identifiers is asked to be deleted or changed.
Under the identical scene of two authentication bills, password authentication device can be according to the second Password Management request pair Password delete or change accordingly.
It should be noted that due to actually having got around normal verification approach in such cases, other certification systems of converting It unites to carry out authentication, so user, after authentication in such cases is completed, the second Password Management request can be right Any password corresponding to the user identifier is deleted or is changed.
In conclusion method of password authentication provided in this embodiment, by using a user identifier and from different services The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service Security risk, without other service bands is given to carry out the effect of security risk.Also by optional irreversible encryption mode, ensure that Safety of the password when storing and transmitting;Essential information is also verified by increase so that verification process is more accurate;Also pass through Optional reversible encryption mode ensure that safety of the verification essential information in transmission;Also by increasing other Verification Systems Support, ensure that the availability of entire password validation system when password passes into silence.
Embodiment three
It please refers to Fig.4, it illustrates the block diagrams for the password validation system that the embodiment of the present invention three provides.The password Verification system includes service system 400 and password authentication device 500.Wherein:
On one side, service system 400 includes password acquisition module 420 and verification sending module 440.
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute State user identifier that password acquisition module 420 gets, for the service identifiers that identify current serving system and with the user The mark password corresponding with the combination of both service identifiers, so that the password authentication device 500 is according to the verification ticket According to carrying out password authentification.
On the other hand, password authentication device 500, including verification receiving module 520, cipher inquiry module 540, password detection Module 560 and password authentication module 580.
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and Password corresponding with the combination of both the user identifier and service identifiers;
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520 Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and Whether the password that the cipher inquiry module 540 inquires is identical;
Password authentication module 580, if detecting that two passwords are identical for the password detection module 560, verification is logical It crosses.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service Security risk, without other service bands is given to carry out the effect of security risk.
Example IV
Fig. 5 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention four provides.The password Verification system includes service system 400 and password authentication device 500.
On one side, service system 400 includes password acquisition module 420, data obtaining module 438 and verification sending module 440。
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Data obtaining module 438, for obtaining the one or more of timestamp, user's current IP address and identifying code;
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute State user identifier that password acquisition module 420 gets, for the service identifiers that identify current serving system and with the user The mark password corresponding with the combination of both service identifiers.The verification bill further includes described information acquisition module 438 Timestamp, user's current IP address and/or the identifying code got.
On the other hand, password authentication device 500, including verification receiving module 520, cipher inquiry module 540, password detection Module 560, additional detected module 570 and password authentication module 580.
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and Password corresponding with the combination of both the user identifier and service identifiers;The verification that the verification receiving module 520 receives One or more of timestamp, user's current IP address and identifying code are further included in bill.
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520 Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and Whether the password that the cipher inquiry module 540 inquires is identical;
Additional detected module 570, for detecting the time verified in bill that the verification receiving module 520 receives Whether stamp, user's current IP address and/or identifying code conform to a predetermined condition, and the predetermined condition meets including the timestamp IP address, the identifying code when predetermined amount of time, user's current IP address meet last verification are provided previously Identifying code;
The password authentication module 580, if detecting that two passwords are identical and described for the password detection module 560 Additional detected module 570 detects that timestamp, user's current IP address and/or identifying code in verification bill meet predetermined item During part, then it is verified.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service Security risk, without other service bands is given to carry out the effect of security risk.Essential information is also verified by increase so that authenticated Cheng Gengjia is accurate.
Embodiment five
Fig. 6 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention five provides.The password Verification system includes service system 400 and password authentication device 500.
On one side, service system 400 includes password acquisition module 420, mark sending module 432, encryption receiving module 434th, cryptographic module 436, data obtaining module 438, bill encrypting module 439 and verification sending module 440.
Password acquisition module 420, for obtaining user identifier and password of the user under current serving system;
Sending module 432 is identified, for sending user identifier and service identifiers to the password authentication device 500;
Receiving module 434 is encrypted, for receiving the password authentication device 500 according to the user identifier and service identifiers The cipher mode fed back after inquiry;
The cryptographic module 436, for according to the cipher mode that receives of encryption receiving module 434 to described The password that password acquisition module 420 is got carries out irreversible encryption;
Data obtaining module 438, for obtaining the one or more of timestamp, user's current IP address and identifying code;
Bill encrypting module 439, for by the use of the 436 encrypted password of cryptographic module as described in key pair Timestamp, user's current IP address and/or the identifying code that data obtaining module 438 is got carry out reversible encryption, obtain reversible Encrypted ciphertext.
Verify sending module 440, for sending verification bill to password authentication device 500, the verification bill includes institute It states user identifier that password acquisition module 420 gets, add for identifying the service identifiers of current serving system and the password The close encrypted password corresponding with the combination of both the user identifier and service identifiers of module 436.The verification ticket It is current by the use of the encrypted password as timestamp, user described in key pair according to the bill encrypting module 439 is further included IP address and/or identifying code carry out the ciphertext after reversible encryption.
On the other hand, password authentication device 500, including mark receiving module 512, the encryption feedback of encrypted query module 514 Module 516, cipher inquiry module 540, password detection module 560, verification deciphering module 565, is added verification receiving module 520 Detection module 570 and password authentication module 580.
Receiving module 512 is identified, for receiving user identifier and service identifiers;
Encrypted query module 514, for the user identifier and service identifiers received according to the mark receiving module 512 Whether inquiry is previously stored with corresponding password and cipher mode;
Encrypt feedback module 516, for the encrypted query module 514 inquire be previously stored with corresponding password and During cipher mode, the cipher mode is fed back;
Verify receiving module 520, for receive verify bill, it is described verification bill include user identifier, service identifiers and Password corresponding with the combination of both the user identifier and service identifiers;The verification that the verification receiving module 520 receives Also included timestamp, user's current IP address and/or identifying code are reversible as key progress using the password in bill Encrypted ciphertext.The password is passes through the encrypted ciphertext of irreversible encryption mode.
Cipher inquiry module 540, for the user identifier and service identifiers received according to the verification receiving module 520 Inquire pre-stored password;
Password detection module 560, for detect it is described verification receiving module 520 receive verification bill in password and Whether the password that the cipher inquiry module 540 inquires is identical;
Verify deciphering module 565, for using it is described verification receiving module 520 receive verify bill in password as Verify that other data in bill are decrypted, and obtain the timestamp, user's current IP address and/or verification described in key pair Code;
Additional detected module 570, for detecting the time in the verification bill after the verification deciphering module 565 is decrypted Whether stamp, user's current IP address and/or identifying code conform to a predetermined condition, and the predetermined condition meets including the timestamp IP address, the identifying code when predetermined amount of time, user's current IP address meet last verification are provided previously Identifying code;
The password authentication module 580, if detecting that two passwords are identical and described for the password detection module 560 Additional detected module 570 detects that timestamp, user's current IP address and/or identifying code in verification bill meet predetermined item During part, then it is verified.
In conclusion password authentication device provided in this embodiment, by using a user identifier and from different services The corresponding multiple passwords of system complete password verification process, solve multinomial service and share one group of username and password institute Caused safety issue even if having reached the password leakage of user, also can only be come to the safety belt of one of which service Security risk, without other service bands is given to carry out the effect of security risk.Also by optional irreversible encryption mode, ensure that Safety of the password when storing and transmitting;Essential information is also verified by increase so that verification process is more accurate;Also pass through Optional reversible encryption mode ensure that safety of the verification essential information in transmission.
It should be noted that employing irreversible encryption mode in the present embodiment, reversible encryption mode is also used, such as Fruit can form new embodiment only with irreversible encryption mode or only with reversible encryption mode.
Embodiment six
Fig. 7 is please referred to, it illustrates the block diagrams for the password validation system that the embodiment of the present invention six provides.The password Verification system includes service system 400 and password authentication device 500.
Compared with above-mentioned several embodiments, service system 400 can also include:First command reception module 460, first please Ask sending module 470,480 and second request sending module 490 of authentication module;
First command reception module 460, for receiving the deletion of user instruction or modification instruction;
First request sending module 470, please for sending first password management to the password authentication device 500 It asks, first password management request includes the deletion instruction that first command reception module 460 receives or change to refer to It enables.
The authentication module 480, for obtaining the user identifier of user and authentication bill, the authentication Bill is included caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode Authentication information;
Second request sending module 490, for sending the authentication module to the password authentication device 500 480 user identifiers obtained, authentication bill and the second Password Management request, the second Password Management request include service A kind of instruction in mark and deletion instruction and modification instruction.
Compared with above-described embodiment, password authentication device 500 can also include:The request of relationship storage module 591, first connects Receive module 592, first password management module 593, the second request receiving module 594, bill enquiry module 595, bill detection mould 596 and second Password Management module 597 of block.
The relationship storage module 591, for storing user identifier, service identifiers and being marked with the user identifier and service Know the correspondence between the corresponding password of combination of the two;
Wherein, a user identifier corresponds to one or more service identifiers, described and the user identifier and service identifiers two The number of the corresponding password of combination of person is identical with the number of the service identifiers.
The correspondence is also stored with authentication bill corresponding with the user identifier, the authentication bill Including identity caused by mailbox authentication mode, certificate verification mode, dynamic password authentication mode or default problem authentication mode Authentication information.
First request receiving module 592, for receiving first password management request, the first password management request Including deleting instruction or modification instruction;
The first password management module 593, it is first close for what is received according to first request receiving module 592 The password that code management request stores the relationship storage module 591 is deleted or is changed.
Second request receiving module 594, please for receiving user identifier, authentication bill and the second Password Management It asks, the second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module 595, for inquiry in the data that are stored in the relationship storage module 591 and described the The corresponding authentication bill of user identifier that two request receiving modules 594 receive;
The bill detection module 596, for detecting the authentication ticket that second request receiving module 594 receives It is whether identical according to the authentication bill inquired with the bill enquiry module 595;
The second Password Management module 597, if identical for two authentication bills, according to second password A management request pair password corresponding with the service identifiers is deleted or is changed.
In conclusion password authentication device provided in this embodiment, compared with above-mentioned several embodiments, also by increasing it The support of his Verification System ensure that the availability of entire password validation system when password passes into silence.
It should be noted that employ the first request receiving module 592 and first password management module in the present embodiment 593, also use the second request receiving module 594, bill enquiry module 595,596 and second Password Management of bill detection module Module 597, if only with the first request receiving module 592 and first password management module 593 or only with the second request Receiving module 594, bill enquiry module 595,596 and second Password Management module 597 of bill detection module, can form new Embodiment.
It should be noted that:The password validation system and device that above-described embodiment provides are when verifying password, only with above-mentioned The division progress of each function module, can be as needed and by above-mentioned function distribution by different for example, in practical application Function module is completed, i.e., the internal structure of equipment is divided into different function modules, with complete it is described above whole or Partial function.In addition, password validation system and device that above-described embodiment provides belong to same with method of password authentication embodiment Design, specific implementation process refer to embodiment of the method, and which is not described herein again.
The embodiments of the present invention are for illustration only, do not represent the quality of embodiment.
One of ordinary skill in the art will appreciate that hardware can be passed through by realizing all or part of step of above-described embodiment It completes, relevant hardware can also be instructed to complete by program, the program can be stored in a kind of computer-readable In storage medium, storage medium mentioned above can be read-only memory, disk or CD etc..
The foregoing is merely presently preferred embodiments of the present invention, is not intended to limit the invention, it is all the present invention spirit and Within principle, any modification, equivalent replacement, improvement and so on should all be included in the protection scope of the present invention.

Claims (19)

1. a kind of method of password authentication, which is characterized in that the method includes:
Receive user identifier and service identifiers;
Whether corresponding password and cipher mode, different clothes are previously stored with according to the user identifier and service identifiers inquiry Business identifies corresponding password and uses different cipher modes;
Inquire be previously stored with corresponding password and cipher mode when, feed back the cipher mode;
Receive verification bill, it is described verification bill include the user identifier, the service identifiers and with the user identifier and The corresponding password of combination of both service identifiers, the user identifier correspond to one or more service identifiers, the service mark Know for the mark corresponding to service system, with the number of the corresponding password of combination of both the user identifier and service identifiers with The number of the service identifiers is identical, and the password and the pre-stored password in the verification bill are by irreversible The encrypted ciphertext of cipher mode;
Pre-stored password is inquired according to the user identifier and the service identifiers;
Whether the password for detecting the password in the verification bill and inquiring is identical;
If detecting, two passwords are identical, are verified, the service function that service system described in normal use provides.
2. according to the method described in claim 1, it is characterized in that, to further include timestamp, user in the verification bill current One or more of IP address and identifying code,
If described detect that two passwords are identical, before being verified, further include:
Whether timestamp, user's current IP address and/or the identifying code detected in the verification bill conforms to a predetermined condition, institute State IP when predetermined condition meets predetermined amount of time including the timestamp, user's current IP address meets last verification Address, the identifying code are the identifying code being provided previously;
If described detect that two passwords are identical, it is verified, specifically includes:
If detect two passwords it is identical and it is described verification bill in timestamp, user's current IP address and/or identifying code it is equal When conforming to a predetermined condition, then it is verified.
3. according to the method described in claim 2, it is characterized in that, timestamp, user current IP in the verification bill Location and/or identifying code are to carry out the ciphertext after reversible encryption, the detection verification bill as key using the password In timestamp, user's current IP address and/or identifying code whether conform to a predetermined condition before, further include:
It is decrypted by the use of other data in verification bill described in the password as key pair in the verification bill, obtains institute State timestamp, user's current IP address and/or identifying code.
4. method according to any one of claims 1 to 3, which is characterized in that if described detect that two passwords are identical, test After card passes through, further include:
First password management request is received, the first password management request includes deleting instruction or modification instruction;
The password is deleted or changed according to first password management request.
5. method according to any one of claims 1 to 3, which is characterized in that it is described to receive before verifying bill, it further includes:
Store user identifier, service identifiers and between the corresponding password of combination of both the user identifier and service identifiers Correspondence.
6. according to the method described in claim 5, it is characterized in that, the correspondence is also stored with and the user identifier pair The authentication bill answered, the authentication bill include mailbox authentication mode, certificate verification mode, dynamic password authentication side Authentication information caused by formula or default problem authentication mode, the method further include:
User identifier, authentication bill and the second Password Management request are received, the second Password Management request includes service A kind of instruction in mark and deletion instruction and modification instruction;
Inquiry authentication bill corresponding with the user identifier;
It detects the authentication bill received and whether the authentication bill inquired is identical;
It is corresponding with the service identifiers close according to second Password Management request pair if two authentication bills are identical Code is deleted or is changed.
7. a kind of password authentication device, which is characterized in that described device includes:
Receiving module is identified, for receiving user identifier and service identifiers;
Whether encrypted query module, user identifier and service identifiers for being received according to the mark receiving module inquire pre- Corresponding password and cipher mode are first stored with, the corresponding password of different service identifiers uses different cipher modes;
Encrypt feedback module, in the encrypted query module polls to being previously stored with corresponding password and cipher mode When, feed back the cipher mode;
Verify receiving module, for receive verify bill, it is described verification bill include the user identifier, the service identifiers and Password corresponding with the combination of both the user identifier and service identifiers, the user identifier correspond to one or more service Mark, the service identifiers is the marks corresponding to service system, the combination pair with both the user identifier and service identifiers The number for the password answered is identical with the number of the service identifiers, the password and described pre-stored close in the verification bill Code is by the encrypted ciphertext of irreversible encryption mode;
Cipher inquiry module, user identifier and service identifiers inquiry for being received according to the verification receiving module are deposited in advance The password of storage;
Password detection module is looked into for detecting password in the verification bill that receives of verification receiving module and the password Whether identical ask the password that module polls arrive;
Password authentication module if detecting that two passwords are identical for the password detection module, is verified, normal use The service function that the service system provides.
8. device according to claim 7, which is characterized in that in the verification bill that the verification receiving module receives also Including one or more of timestamp, user's current IP address and identifying code,
Described device further includes:Additional detected module;
The additional detected module, for detecting timestamp, user's current IP address and/or identifying code in the verification bill Whether conform to a predetermined condition, the predetermined condition including the timestamp with meeting predetermined amount of time, the current IP of the user IP address, the identifying code when location meets last verification are the identifying code being provided previously;
The password authentication module, if specifically for detect two passwords it is identical and it is described verification bill in timestamp, use When family current IP address and/or identifying code conform to a predetermined condition, then it is verified.
9. device according to claim 8, which is characterized in that in the verification bill that the verification receiving module receives Timestamp, user's current IP address and/or identifying code are to carry out the ciphertext after reversible encryption as key using the password;
Described device further includes:Verify deciphering module;
The verification deciphering module, for by the use of it is described verification bill in password as key pair described in verify bill in its Its data is decrypted, and obtains the timestamp, user's current IP address and/or identifying code.
10. according to any device of claim 7 to 9, which is characterized in that described device further includes:First request receives Module and first password management module;
First request receiving module, for receiving first password management request, the first password management request includes deleting Except instruction or modification instruction;
The first password management module, for the first password management request received according to first request receiving module The password is deleted or changed.
11. according to any device of claim 7 to 9, which is characterized in that described device further includes:Relationship stores mould Block;
The relationship storage module, for storing user identifier, service identifiers and both with the user identifier and service identifiers The corresponding password of combination between correspondence;
Wherein, a user identifier corresponds to both one or more service identifiers, described and the user identifier and service identifiers The number for combining corresponding password is identical with the number of the service identifiers.
12. according to the devices described in claim 11, which is characterized in that the correspondence is also stored with and the user identifier Corresponding authentication bill, the authentication bill include mailbox authentication mode, certificate verification mode, dynamic password authentication Authentication information caused by mode or default problem authentication mode, described device further include:Second request receiving module, Bill enquiry module, bill detection module and the second Password Management module;
Second request receiving module, it is described for receiving user identifier, authentication bill and the second Password Management request Second Password Management request includes service identifiers and deletes a kind of instruction in instruction and modification instruction;
The bill enquiry module, for inquiring identity corresponding with the user identifier that second request receiving module receives Certification bill;
The bill detection module, for detecting authentication bill and the ticket that second request receiving module receives Whether it is investigated that it is identical to ask the authentication bill that module polls arrive;
The second Password Management module, please according to second Password Management if identical for two authentication bills A pair password corresponding with the service identifiers is asked to be deleted or changed.
13. a kind of service system, which is characterized in that including:
Sending module is identified, for sending user identifier and service identifiers to password authentication device;
Receiving module is encrypted, is fed back for receiving after the password authentication device is inquired according to the user identifier and service identifiers Cipher mode, the corresponding password of different service identifiers use different cipher modes;
Cryptographic module, the cipher mode for being received according to the encryption receiving module obtain the password acquisition module The password got carries out irreversible encryption;
Verify sending module, specifically for sending verification bill to the password authentication device, the verification bill includes described The encrypted password of cryptographic module;
Password acquisition module, for obtaining user identifier and password of the user under current serving system;
Verify sending module, for the password authentication device send verification bill, it is described verification bill include user identifier, For the service identifiers that identify current serving system and corresponding with the combination of both the user identifier and service identifiers described Password, so that the password authentication device carries out password authentification according to the verification bill, if being verified, normal use institute The service function of service system offer is stated, the user identifier corresponds to one or more service identifiers, and the service identifiers are Corresponding to the mark of service system, with the number of the corresponding password of combination of both the user identifier and service identifiers with it is described The number of service identifiers is identical.
14. service system according to claim 13, which is characterized in that the system also includes:
Data obtaining module;
Described information acquisition module, for obtaining the one or more of timestamp, user's current IP address and identifying code;
The verification sending module, specifically for sending verification bill to the password authentication device, the verification bill also wraps Include timestamp, user's current IP address and/or identifying code that described information acquisition module is got.
15. service system according to claim 14, which is characterized in that the system also includes:
Bill encrypting module;
The bill encrypting module, for being obtained by the use of the password that the password acquisition module obtains as key pair described information Timestamp, user's current IP address and/or the identifying code that module is got carry out reversible encryption, obtain close after reversible encryption Text;
The verification sending module, specifically for sending verification bill to the password authentication device, the verification bill also wraps It includes after carrying out reversible encryption as timestamp described in key pair, user's current IP address and/or identifying code using the password Ciphertext.
16. according to any service system of claim 13 to 15, which is characterized in that the system also includes:First refers to Enable receiving module and the first request sending module;
First command reception module, for receiving the deletion of user instruction or modification instruction;
First request sending module is asked, described first for sending first password management to the password authentication device Password Management request includes described delete and instructs or change instruction.
17. according to any service system of claim 13 to 15, which is characterized in that the system also includes:Identity is tested Demonstrate,prove module and the second request sending module;
The authentication module, for obtaining the user identifier of user and authentication bill, the authentication bill packet Mailbox authentication mode, certificate verification mode, dynamic password authentication mode or identity caused by default problem authentication mode is included to recognize Demonstrate,prove information;
Second request sending module, for sending the user identifier, authentication bill to the password authentication device It is asked with the second Password Management, the second Password Management request includes service identifiers and deletes in instruction and modification instruction A kind of instruction.
18. a kind of password validation system, which is characterized in that including the password authentification one as described in claim 7 to 12 is any Device and at least one service system as described in claim 13 to 17 is any.
19. a kind of computer readable storage medium, which is characterized in that it has program stored therein in the computer readable storage medium, Described program is loaded by processor and is performed to realize such as claim 1 to 6 any one of them method of password authentication.
CN201210453453.0A 2012-11-13 2012-11-13 Method of password authentication, apparatus and system Active CN103812651B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210453453.0A CN103812651B (en) 2012-11-13 2012-11-13 Method of password authentication, apparatus and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210453453.0A CN103812651B (en) 2012-11-13 2012-11-13 Method of password authentication, apparatus and system

Publications (2)

Publication Number Publication Date
CN103812651A CN103812651A (en) 2014-05-21
CN103812651B true CN103812651B (en) 2018-06-22

Family

ID=50708899

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210453453.0A Active CN103812651B (en) 2012-11-13 2012-11-13 Method of password authentication, apparatus and system

Country Status (1)

Country Link
CN (1) CN103812651B (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105024819B (en) * 2015-05-29 2019-02-12 北京中亦安图科技股份有限公司 A kind of multiple-factor authentication method and system based on mobile terminal
CN107395644B (en) * 2017-09-01 2020-05-12 北京知道创宇信息技术股份有限公司 Multi-protocol authentication system and method
CN107612904A (en) * 2017-09-13 2018-01-19 浙江电力建设监理有限公司 Identity identifying method and system for intelligent monitoring management
CN107888656B (en) * 2017-10-09 2020-11-20 北京京东尚科信息技术有限公司 Calling method and calling device of server-side interface
CN107645514B (en) * 2017-10-26 2020-03-17 北京知道创宇信息技术股份有限公司 Authentication protocol conversion method and device
CN108737431B (en) * 2018-05-28 2020-09-15 深圳职业技术学院 Confusion-based hierarchical distributed authentication method, device and system in IoT (Internet of things) scene
CN108600278A (en) * 2018-07-05 2018-09-28 湖州贝格信息安全科技有限公司 Asymmet-ric encryption method and Related product
CN110796798A (en) * 2018-08-01 2020-02-14 北京思源理想控股集团有限公司 Intelligent inbox system and method
CN112929188B (en) * 2019-12-05 2022-06-14 中国电信股份有限公司 Device connection method, system, apparatus and computer readable storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101051934A (en) * 2006-04-05 2007-10-10 大唐移动通信设备有限公司 Power control method in network managing system
CN101359410A (en) * 2007-08-03 2009-02-04 陶正钰 Bank account and bank card password wall technology
CN101441734A (en) * 2007-11-19 2009-05-27 上海久隆电力科技有限公司 Unite identification authentication system
CN101478471A (en) * 2009-02-04 2009-07-08 中兴通讯股份有限公司 Deployment method and system for MPLS/BGP three-layer virtual private network

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101599951A (en) * 2008-06-06 2009-12-09 阿里巴巴集团控股有限公司 A kind of method of releasing website information, Apparatus and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101051934A (en) * 2006-04-05 2007-10-10 大唐移动通信设备有限公司 Power control method in network managing system
CN101359410A (en) * 2007-08-03 2009-02-04 陶正钰 Bank account and bank card password wall technology
CN101441734A (en) * 2007-11-19 2009-05-27 上海久隆电力科技有限公司 Unite identification authentication system
CN101478471A (en) * 2009-02-04 2009-07-08 中兴通讯股份有限公司 Deployment method and system for MPLS/BGP three-layer virtual private network

Also Published As

Publication number Publication date
CN103812651A (en) 2014-05-21

Similar Documents

Publication Publication Date Title
CN103812651B (en) Method of password authentication, apparatus and system
CN101641976B (en) An authentication method
CN105050081B (en) Method, device and system for connecting network access device to wireless network access point
KR101508360B1 (en) Apparatus and method for transmitting data, and recording medium storing program for executing method of the same in computer
CN103812871B (en) Development method and system based on mobile terminal application program security application
CN101605137B (en) Safe distribution file system
CN102420821B (en) Method and system for improving transmission security of file
CN101720071B (en) Short message two-stage encryption transmission and secure storage method based on safety SIM card
CN101815091A (en) Cipher providing equipment, cipher authentication system and cipher authentication method
CN101621794A (en) Method for realizing safe authentication of wireless application service system
CN102761870B (en) Terminal authentication and service authentication method, system and terminal
CN103297437A (en) Safety server access method for mobile intelligent terminal
CN107026824A (en) A kind of message encryption, decryption method and device
CN108809633B (en) Identity authentication method, device and system
Nyamtiga et al. Enhanced security model for mobile banking systems in Tanzania
CN106452770A (en) Data encryption method and apparatus, data decryption method and apparatus, and system
CN105656920A (en) Method and system for encryption and decryption of mailing data based on expressage
CN108769029B (en) Authentication device, method and system for application system
CN104247485B (en) Network application function authorization in Generic Bootstrapping Architecture
CN107483429B (en) A kind of data ciphering method and device
CN106161444A (en) Secure storage method of data and subscriber equipment
CN104243452B (en) A kind of cloud computing access control method and system
CN102404337A (en) Data encryption method and device
CN103916834A (en) Short message encryption method and system allowing user to have exclusive secret key
CN107888548A (en) A kind of Information Authentication method and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant