CN104253801A - Method, device and system for realizing login authentication - Google Patents
Method, device and system for realizing login authentication Download PDFInfo
- Publication number
- CN104253801A CN104253801A CN201310267903.1A CN201310267903A CN104253801A CN 104253801 A CN104253801 A CN 104253801A CN 201310267903 A CN201310267903 A CN 201310267903A CN 104253801 A CN104253801 A CN 104253801A
- Authority
- CN
- China
- Prior art keywords
- mobile terminal
- information
- described mobile
- key
- current
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Abstract
The invention discloses a method, a device and a system for realizing login authentication. The method includes: when a user initiates a login request, acquiring terminal identification information of a mobile terminal, acquiring current location information of the mobile terminal, and sending the current location information of the mobile terminal to an authentication server; generating an encryption key by the aid of the current position information of the mobile terminal and the terminal identification information, encrypting user login information by the aid of the encryption key to obtain encrypted login information, sending the encrypted login information to the authentication server so as to enable the authentication server to decrypt the encrypted login information with a decryption key, and authenticating the obtained login information after succeeding in decryption. By combination of the identification information and the location information of the terminal, the problem about safety in login authentication of the mobile terminal is solved.
Description
Technical field
The present invention relates to the communications field, particularly a kind of methods, devices and systems realizing login authentication.
Background technology
Client logs authentication techniques are the important barriers ensureing its safety.At present, mobile phone client software login authentication, the main username and password relying on user's input, certificate server carries out authentication processing to the username and password that mobile phone provides.Because username and password is easily stolen and pretended to be, therefore this method can not meet the requirement of user customer software security.
Summary of the invention
The technical problem to be solved in the present invention is to provide a kind of methods, devices and systems realizing login authentication.By generating encryption key in conjunction with the current positional information of mobile terminal and terminal identification information, thus improve the fail safe of login authentication.。
According to an aspect of the present invention, a kind of method realizing login authentication is provided, comprises:
When user initiates logging request, obtain the terminal identification information of mobile terminal;
Obtain the positional information that described mobile terminal is current;
Positional information current for described mobile terminal is sent to certificate server, so that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key;
The positional information utilizing described mobile terminal current and terminal identification information generate encryption key;
Encryption key is utilized to be encrypted user login information, to obtain encrypted login information;
Encrypted login information is sent to certificate server, so that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained.
Preferably, the step utilizing the current positional information of described mobile terminal and terminal identification information to generate encryption key comprises:
Utilize described current positional information and terminal identification information, generate PKI by asymmetric encryption mode, and using PKI as encryption key;
Wherein decruption key is the private key corresponding with encryption key.
According to a further aspect in the invention, a kind of method realizing login authentication is provided, comprises:
When the positional information that the described mobile terminal receiving mobile terminal transmission is current, inquire about the identification information be associated with described mobile terminal; Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server;
The identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire;
When receiving the encrypted login information that mobile terminal sends, decruption key is utilized to be decrypted encrypted login information; Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
When successful decryption, certification is carried out to the log-on message obtained.
Preferably, the current positional information of described mobile terminal and the step of the identification information generating solution decryption key be associated with described mobile terminal that inquires is utilized to comprise:
The identification information be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire, generates private key by asymmetric encryption mode, and using private key as decruption key;
Wherein encryption key is the PKI corresponding with decruption key.
According to a further aspect in the invention, provide a kind of mobile terminal realizing login authentication, comprise the first acquiring unit, second acquisition unit, transmitting element, the first Key generating unit and ciphering unit, wherein:
First acquiring unit, for when user initiates logging request, obtains the terminal identification information of mobile terminal;
Second acquisition unit, for obtaining the current positional information of described mobile terminal;
Transmitting element, for positional information current for described mobile terminal is sent to certificate server, so that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key; According to the instruction of ciphering unit, encrypted login information is sent to certificate server, so that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained;
First Key generating unit, generates encryption key for the positional information that utilizes described mobile terminal current and terminal identification information;
Ciphering unit, for utilizing encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information is sent to certificate server by instruction transmitting element.
Preferably, the first Key generating unit specifically utilizes described current positional information and terminal identification information, generates PKI by asymmetric encryption mode, and using PKI as encryption key, wherein decruption key is the private key corresponding with encryption key.
According to the opposing party aspect of the present invention, provide a kind of certificate server realizing login authentication, comprise receiving element, query unit, the second Key generating unit, decryption unit and authentication ' unit, wherein:
Receiving element, for the information that mobile terminal receive sends;
Query unit, during for receiving the current positional information of described mobile terminal that mobile terminal sends when receiving element, inquires about the identification information be associated with described mobile terminal; Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server;
Second Key generating unit, for the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire;
Decryption unit, for receive when receiving element mobile terminal send encrypted login information time, utilize decruption key to be decrypted encrypted login information; Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
Authentication ' unit, for when successful decryption, carries out certification to the log-on message obtained.
Preferably, the identification information be associated with described mobile terminal that second Key generating unit specifically utilizes the current positional information of described mobile terminal and inquires, private key is generated by asymmetric encryption mode, and using private key as decruption key, wherein encryption key is the PKI corresponding with decruption key.
According to a further aspect in the invention, a kind of system realizing login authentication is provided, comprises mobile terminal and certificate server, wherein:
Mobile terminal, for when user initiates logging request, obtains the terminal identification information of mobile terminal, obtains the positional information that described mobile terminal is current, positional information current for described mobile terminal is sent to certificate server; The positional information utilizing described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
Certificate server, during for the positional information current when the described mobile terminal receiving mobile terminal transmission, inquire about the identification information be associated with described mobile terminal, the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire; When receiving the encrypted login information that mobile terminal sends, utilizing decruption key to be decrypted encrypted login information, when successful decryption, certification being carried out to the log-on message obtained.
Preferably, mobile terminal is the mobile terminal that above-mentioned any embodiment relates to, and certificate server is the certificate server that above-mentioned any embodiment relates to.
The present invention is by conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solved the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
Description of the invention provides in order to example with for the purpose of describing, and is not exhaustively or limit the invention to disclosed form.Many modifications and variations are obvious for the ordinary skill in the art.Selecting and describing embodiment is in order to principle of the present invention and practical application are better described, and enables those of ordinary skill in the art understand the present invention thus design the various embodiments with various amendment being suitable for special-purpose.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, be briefly described to the accompanying drawing used required in embodiment or description of the prior art below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the schematic diagram that the present invention realizes a login authentication method embodiment.
Fig. 2 is the schematic diagram that the present invention realizes another embodiment of login authentication method.
Fig. 3 is the schematic diagram of a mobile terminal of the present invention embodiment.
Fig. 4 is the schematic diagram of a certificate server of the present invention embodiment.
Fig. 5 is the schematic diagram that the present invention realizes an accession authorization system embodiment.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Illustrative to the description only actually of at least one exemplary embodiment below, never as any restriction to the present invention and application or use.Based on the embodiment in the present invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to the scope of protection of the invention.
Unless specifically stated otherwise, otherwise positioned opposite, the numerical expression of the parts of setting forth in these embodiments and step and numerical value do not limit the scope of the invention.
Meanwhile, it should be understood that for convenience of description, the size of the various piece shown in accompanying drawing is not draw according to the proportionate relationship of reality.
May not discuss in detail for the known technology of person of ordinary skill in the relevant, method and apparatus, but in the appropriate case, described technology, method and apparatus should be regarded as a part of authorizing specification.
In all examples with discussing shown here, any occurrence should be construed as merely exemplary, instead of as restriction.Therefore, other example of exemplary embodiment can have different values.
It should be noted that: represent similar terms in similar label and letter accompanying drawing below, therefore, once be defined in an a certain Xiang Yi accompanying drawing, then do not need to be further discussed it in accompanying drawing subsequently.
Fig. 1 is the schematic diagram that the present invention realizes a login authentication method embodiment.Preferably, the method step of the present embodiment can be performed by mobile terminal.
Step 101, when user initiates logging request, obtains the terminal identification information of mobile terminal.
Step 102, obtains the positional information that described mobile terminal is current.
Step 103, sends to certificate server by positional information current for described mobile terminal.
So that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key.
Step 104, the positional information utilizing described mobile terminal current and terminal identification information generate encryption key.
Step 105, utilizes encryption key to be encrypted user login information, to obtain encrypted login information.
Step 106, sends to certificate server by encrypted login information.
So that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained.
Based on the method realizing login authentication that the above embodiment of the present invention provides, by in conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solve the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
Such as, the terminal identification information of mobile terminal can be GUID(Globally Unique Identifier, GUID), IMEI(International Mobile Equipment Identity, International Mobile Station Equipment Identification code), mobile terminal number etc.
Preferably, mobile terminal can receive GPS(Global Positioning System, global positioning system) signal time, GPS or the GPSOne positioning function can calling self obtains the current geographical location information of mobile terminal.When mobile terminal cannot receive gps signal, by calling third-party stationkeeping ability platform, utilize base station or WiFi(Wireless Fidelity, Wireless Fidelity) signal realization location.
Preferably, the above-mentioned step utilizing the current positional information of described mobile terminal and terminal identification information to generate encryption key comprises:
Utilize described current positional information and terminal identification information, generate PKI by asymmetric encryption mode, and using PKI as encryption key.
The decruption key that wherein certificate server generates is the private key corresponding with encryption key.
Owing to no matter being symmetric cryptography mode or asymmetric encryption mode, be all that those skilled in the art understand, therefore do not launch here to describe.
In the present invention, PKI can be utilized to be encrypted log-on message at mobile terminal side, corresponding private key correspondingly only can be used in certificate server side to be just decrypted.
Preferably, log-on message can comprise the information such as user name, password, GUID, IMEI and mobile terminal number.
Preferably, the log-on message after encryption is uploaded to certificate server by 2G, 3G or WiFi wireless network by mobile terminal.
Fig. 2 is the schematic diagram that the present invention realizes another embodiment of login authentication method.Preferably, the method step of the present embodiment can be performed by certificate server.
Step 201, when the positional information that the described mobile terminal receiving mobile terminal transmission is current, inquires about the identification information be associated with described mobile terminal.
Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server.
Step 202, the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire.
Step 203, when receiving the encrypted login information that mobile terminal sends, utilizes decruption key to be decrypted encrypted login information.
Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server.
Step 204, when successful decryption, carries out certification to the log-on message obtained.
Based on the method realizing login authentication that the above embodiment of the present invention provides, by in conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solve the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
Preferably, when successful decryption, the log-on message stored in the log-on message obtained after deciphering and data block compared, if the match is successful, then certification is passed through; If mate unsuccessful, then authentification failure.
Preferably, the above-mentioned current positional information of described mobile terminal and the step of the identification information generating solution decryption key be associated with described mobile terminal that inquires of utilizing comprises:
The identification information be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire, generates private key by asymmetric encryption mode, and using private key as decruption key, wherein encryption key is the PKI corresponding with decruption key.
Thus, utilize the PKI and private key that are associated, the safeguard protection to log-on message can be realized.
Fig. 3 is the schematic diagram of a mobile terminal of the present invention embodiment.As shown in Figure 3, mobile terminal comprises the first acquiring unit 301, second acquisition unit 302, transmitting element 303, first Key generating unit 304 and ciphering unit 305.Wherein:
First acquiring unit 301, for when user initiates logging request, obtains the terminal identification information of mobile terminal.
Second acquisition unit 302, for obtaining the current positional information of described mobile terminal.
Transmitting element 303, for positional information current for described mobile terminal is sent to certificate server, so that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key.According to the instruction of ciphering unit 305, encrypted login information is sent to certificate server, so that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained.
First Key generating unit 304, generates encryption key for the positional information that utilizes described mobile terminal current and terminal identification information.
Ciphering unit 305, for utilizing encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information is sent to certificate server by instruction transmitting element 303.
Based on the mobile terminal realizing login authentication that the above embodiment of the present invention provides, by in conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solve the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
Preferably, the first Key generating unit 304 specifically utilizes described current positional information and terminal identification information, generates PKI by asymmetric encryption mode, and using PKI as encryption key, wherein decruption key is the private key corresponding with encryption key.
Fig. 4 is the schematic diagram of a certificate server of the present invention embodiment.As shown in Figure 4, certificate server comprises receiving element 401, query unit 402, second Key generating unit 403, decryption unit 404 and authentication ' unit 405.Wherein:
Receiving element 401, for the information that mobile terminal receive sends.
Query unit 402, during for receiving the current positional information of described mobile terminal that mobile terminal sends when receiving element 401, inquires about the identification information be associated with described mobile terminal.
Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server.
Second Key generating unit 403, for the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire.
Decryption unit 404, for receive when receiving element 401 mobile terminal send encrypted login information time, utilize decruption key to be decrypted encrypted login information.
Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server.
Authentication ' unit 405, for when successful decryption, carries out certification to the log-on message obtained.
Based on the certificate server realizing login authentication that the above embodiment of the present invention provides, by in conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solve the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
Preferably, the identification information be associated with described mobile terminal that second Key generating unit 403 specifically utilizes the current positional information of described mobile terminal and inquires, private key is generated by asymmetric encryption mode, and using private key as decruption key, wherein encryption key is the PKI corresponding with decruption key.
Fig. 5 is the schematic diagram that the present invention realizes an accession authorization system embodiment.As shown in Figure 5, this system comprises mobile terminal 501 and certificate server 502.Wherein:
Mobile terminal 501, for when user initiates logging request, obtains the terminal identification information of mobile terminal, obtains the positional information that described mobile terminal is current, positional information current for described mobile terminal is sent to certificate server 502.The positional information utilizing described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server 502.
Certificate server 502, during for the positional information current when the described mobile terminal receiving mobile terminal 501 transmission, inquire about the identification information be associated with described mobile terminal, the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire; When receiving the encrypted login information that mobile terminal 501 sends, utilizing decruption key to be decrypted encrypted login information, when successful decryption, certification being carried out to the log-on message obtained.
Based on the system realizing login authentication that the above embodiment of the present invention provides, by in conjunction with the identification information of mobile terminal and positional information, under the prerequisite of not adding users Operating Complexity, enrich login authentication information, efficiently solve the safety issue of mobile terminal login authentication, improve the fail safe of cell-phone customer terminal application.
For brevity, only give a mobile terminal in Figure 5, those skilled in the art are scrutable, and multiple mobile terminal and certificate server can be had to carry out alternately.
Preferably, mobile terminal is the mobile terminal that in Fig. 3, any embodiment relates to, and certificate server is the certificate server that in Fig. 4, any embodiment relates to.
One of ordinary skill in the art will appreciate that all or part of step realizing above-described embodiment can have been come by hardware, the hardware that also can carry out instruction relevant by program completes, described program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium mentioned can be read-only memory, disk or CD etc.
Claims (10)
1. realize a method for login authentication, it is characterized in that, comprising:
When user initiates logging request, obtain the terminal identification information of mobile terminal;
Obtain the positional information that described mobile terminal is current;
Positional information current for described mobile terminal is sent to certificate server, so that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key;
The positional information utilizing described mobile terminal current and terminal identification information generate encryption key;
Encryption key is utilized to be encrypted user login information, to obtain encrypted login information;
Encrypted login information is sent to certificate server, so that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained.
2. method according to claim 1, is characterized in that,
The step utilizing the current positional information of described mobile terminal and terminal identification information to generate encryption key comprises:
Utilize described current positional information and terminal identification information, generate PKI by asymmetric encryption mode, and using PKI as encryption key;
Wherein decruption key is the private key corresponding with encryption key.
3. realize a method for login authentication, it is characterized in that, comprising:
When the positional information that the described mobile terminal receiving mobile terminal transmission is current, inquire about the identification information be associated with described mobile terminal; Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server;
The identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire;
When receiving the encrypted login information that mobile terminal sends, decruption key is utilized to be decrypted encrypted login information; Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
When successful decryption, certification is carried out to the log-on message obtained.
4. method according to claim 3, is characterized in that,
The current positional information of described mobile terminal and the step of the identification information generating solution decryption key be associated with described mobile terminal that inquires is utilized to comprise:
The identification information be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire, generates private key by asymmetric encryption mode, and using private key as decruption key;
Wherein encryption key is the PKI corresponding with decruption key.
5. realize a mobile terminal for login authentication, it is characterized in that, comprise the first acquiring unit, second acquisition unit, transmitting element, the first Key generating unit and ciphering unit, wherein:
First acquiring unit, for when user initiates logging request, obtains the terminal identification information of mobile terminal;
Second acquisition unit, for obtaining the current positional information of described mobile terminal;
Transmitting element, for positional information current for described mobile terminal is sent to certificate server, so that the positional information that certificate server utilizes described mobile terminal current, and the identification information be associated with described mobile terminal inquired, generating solution decryption key; According to the instruction of ciphering unit, encrypted login information is sent to certificate server, so that certificate server utilizes decruption key to be decrypted encrypted login information, after successful decryption, certification is carried out to the log-on message obtained;
First Key generating unit, generates encryption key for the positional information that utilizes described mobile terminal current and terminal identification information;
Ciphering unit, for utilizing encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information is sent to certificate server by instruction transmitting element.
6. mobile terminal according to claim 5, is characterized in that,
First Key generating unit specifically utilizes described current positional information and terminal identification information, generates PKI by asymmetric encryption mode, and using PKI as encryption key, wherein decruption key is the private key corresponding with encryption key.
7. realize a certificate server for login authentication, it is characterized in that, comprise receiving element, query unit, the second Key generating unit, decryption unit and authentication ' unit, wherein:
Receiving element, for the information that mobile terminal receive sends;
Query unit, during for receiving the current positional information of described mobile terminal that mobile terminal sends when receiving element, inquires about the identification information be associated with described mobile terminal; Wherein said mobile terminal, when user initiates logging request, obtains the terminal identification information of described mobile terminal, obtains the positional information that described mobile terminal is current, and positional information current for described mobile terminal is sent to certificate server;
Second Key generating unit, for the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire;
Decryption unit, for receive when receiving element mobile terminal send encrypted login information time, utilize decruption key to be decrypted encrypted login information; Wherein the mobile terminal positional information that utilizes described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
Authentication ' unit, for when successful decryption, carries out certification to the log-on message obtained.
8. certificate server according to claim 7, is characterized in that,
The identification information be associated with described mobile terminal that second Key generating unit specifically utilizes the current positional information of described mobile terminal and inquires, private key is generated by asymmetric encryption mode, and using private key as decruption key, wherein encryption key is the PKI corresponding with decruption key.
9. realize a system for login authentication, it is characterized in that, comprise mobile terminal and certificate server, wherein:
Mobile terminal, for when user initiates logging request, obtains the terminal identification information of mobile terminal, obtains the positional information that described mobile terminal is current, positional information current for described mobile terminal is sent to certificate server; The positional information utilizing described mobile terminal current and terminal identification information generate encryption key, utilize encryption key to be encrypted user login information, to obtain encrypted login information, encrypted login information are sent to certificate server;
Certificate server, during for the positional information current when the described mobile terminal receiving mobile terminal transmission, inquire about the identification information be associated with described mobile terminal, the identification information generating solution decryption key be associated with described mobile terminal utilizing the current positional information of described mobile terminal and inquire; When receiving the encrypted login information that mobile terminal sends, utilizing decruption key to be decrypted encrypted login information, when successful decryption, certification being carried out to the log-on message obtained.
10. system according to claim 9, is characterized in that,
Mobile terminal is the mobile terminal related in claim 5 or 6;
Certificate server is the certificate server related in claim 7 or 8.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310267903.1A CN104253801B (en) | 2013-06-28 | 2013-06-28 | Realize the methods, devices and systems of login authentication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310267903.1A CN104253801B (en) | 2013-06-28 | 2013-06-28 | Realize the methods, devices and systems of login authentication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104253801A true CN104253801A (en) | 2014-12-31 |
| CN104253801B CN104253801B (en) | 2017-09-22 |
Family
ID=52188340
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310267903.1A Active CN104253801B (en) | 2013-06-28 | 2013-06-28 | Realize the methods, devices and systems of login authentication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104253801B (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106453327A (en) * | 2016-10-18 | 2017-02-22 | 北京深思数盾科技股份有限公司 | Method and mobile terminal for logging in computer application with demand for identity authentication |
| CN106470201A (en) * | 2015-08-21 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of user authen method and device |
| CN106603510A (en) * | 2016-11-28 | 2017-04-26 | 深圳市金立通信设备有限公司 | Data processing method and terminal |
| CN106686527A (en) * | 2016-12-20 | 2017-05-17 | 腾讯科技(深圳)有限公司 | WIFI information identification method and terminal |
| CN107819569A (en) * | 2017-12-14 | 2018-03-20 | 平安科技(深圳)有限公司 | The encryption method and terminal device of log-on message |
| CN108985040A (en) * | 2018-06-29 | 2018-12-11 | 北京海泰方圆科技股份有限公司 | Method and apparatus, storage medium and the processor logged in using cipher key |
| CN110768796A (en) * | 2019-10-31 | 2020-02-07 | 广东美的制冷设备有限公司 | Control method and control device of air conditioner, air conditioner and readable storage medium |
| CN111865962A (en) * | 2020-07-16 | 2020-10-30 | 国网山东省电力公司青岛供电公司 | WiFi (Wireless Fidelity) secure login authentication system and method |
| WO2021114361A1 (en) * | 2019-12-12 | 2021-06-17 | 泰斗微电子科技有限公司 | Data processing method and apparatus, and terminal device and server |
| US20220207189A1 (en) * | 2020-12-30 | 2022-06-30 | Derry Technological Services, Inc. | Secure storage device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020089960A1 (en) * | 2000-08-23 | 2002-07-11 | Shuster Gary Stephen | Method for verifying geographical location of wide area network users |
| CN1474966A (en) * | 2000-10-30 | 2004-02-11 | �ܿƵ¿�˹��˾ | System and method for using location identity to control access to digital information |
| CN101299663A (en) * | 2008-06-23 | 2008-11-05 | 山东大学 | Distributed GNSS space division ciphering communication method |
| CN101442411A (en) * | 2008-12-23 | 2009-05-27 | 中国科学院计算技术研究所 | Identification authentication method between peer-to-peer user nodes in P2P network |
| CN101872399A (en) * | 2010-07-01 | 2010-10-27 | 武汉理工大学 | Dynamic digital copyright protection method based on dual identity authentication |
| CN102333308A (en) * | 2011-09-28 | 2012-01-25 | 辽宁国兴科技有限公司 | Positional-information-based encrypted authentication method |
-
2013
- 2013-06-28 CN CN201310267903.1A patent/CN104253801B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020089960A1 (en) * | 2000-08-23 | 2002-07-11 | Shuster Gary Stephen | Method for verifying geographical location of wide area network users |
| CN1474966A (en) * | 2000-10-30 | 2004-02-11 | �ܿƵ¿�˹��˾ | System and method for using location identity to control access to digital information |
| CN101299663A (en) * | 2008-06-23 | 2008-11-05 | 山东大学 | Distributed GNSS space division ciphering communication method |
| CN101442411A (en) * | 2008-12-23 | 2009-05-27 | 中国科学院计算技术研究所 | Identification authentication method between peer-to-peer user nodes in P2P network |
| CN101872399A (en) * | 2010-07-01 | 2010-10-27 | 武汉理工大学 | Dynamic digital copyright protection method based on dual identity authentication |
| CN102333308A (en) * | 2011-09-28 | 2012-01-25 | 辽宁国兴科技有限公司 | Positional-information-based encrypted authentication method |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106470201A (en) * | 2015-08-21 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of user authen method and device |
| CN106453327A (en) * | 2016-10-18 | 2017-02-22 | 北京深思数盾科技股份有限公司 | Method and mobile terminal for logging in computer application with demand for identity authentication |
| CN106603510A (en) * | 2016-11-28 | 2017-04-26 | 深圳市金立通信设备有限公司 | Data processing method and terminal |
| CN106686527B (en) * | 2016-12-20 | 2020-03-17 | 腾讯科技(深圳)有限公司 | WIFI information identification method and terminal |
| CN106686527A (en) * | 2016-12-20 | 2017-05-17 | 腾讯科技(深圳)有限公司 | WIFI information identification method and terminal |
| CN107819569A (en) * | 2017-12-14 | 2018-03-20 | 平安科技(深圳)有限公司 | The encryption method and terminal device of log-on message |
| CN107819569B (en) * | 2017-12-14 | 2018-09-11 | 平安科技(深圳)有限公司 | The encryption method and terminal device of log-on message |
| WO2019114122A1 (en) * | 2017-12-14 | 2019-06-20 | 平安科技(深圳)有限公司 | Encryption method for login information, device, electronic device, and medium |
| CN108985040A (en) * | 2018-06-29 | 2018-12-11 | 北京海泰方圆科技股份有限公司 | Method and apparatus, storage medium and the processor logged in using cipher key |
| CN110768796A (en) * | 2019-10-31 | 2020-02-07 | 广东美的制冷设备有限公司 | Control method and control device of air conditioner, air conditioner and readable storage medium |
| WO2021114361A1 (en) * | 2019-12-12 | 2021-06-17 | 泰斗微电子科技有限公司 | Data processing method and apparatus, and terminal device and server |
| CN111865962A (en) * | 2020-07-16 | 2020-10-30 | 国网山东省电力公司青岛供电公司 | WiFi (Wireless Fidelity) secure login authentication system and method |
| CN111865962B (en) * | 2020-07-16 | 2022-04-08 | 国网山东省电力公司青岛供电公司 | WiFi (Wireless Fidelity) secure login authentication system and method |
| US20220207189A1 (en) * | 2020-12-30 | 2022-06-30 | Derry Technological Services, Inc. | Secure storage device |
| US11956631B2 (en) | 2020-12-30 | 2024-04-09 | Derry Technological Services, Inc. | Secure storage pass-through device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104253801B (en) | 2017-09-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106603485B (en) | Key agreement method and device | |
| CN104253801A (en) | Method, device and system for realizing login authentication | |
| KR101786177B1 (en) | Method and apparatus for performing secure bluetooth communication | |
| CN107317674B (en) | Key distribution and authentication method, device and system | |
| WO2018040758A1 (en) | Authentication method, authentication apparatus and authentication system | |
| CN103973736A (en) | Data sharing method and device | |
| US9716591B2 (en) | Method for setting up a secure connection between clients | |
| CN103812871A (en) | Development method and system based on mobile terminal application program security application | |
| TWI581599B (en) | Key generation system, data signature and encryption system and method | |
| CA2879910C (en) | Terminal identity verification and service authentication method, system and terminal | |
| KR20180095873A (en) | Wireless network access method and apparatus, and storage medium | |
| JP6471112B2 (en) | COMMUNICATION SYSTEM, TERMINAL DEVICE, COMMUNICATION METHOD, AND PROGRAM | |
| CN105634737B (en) | Data transmission method, terminal and system | |
| CN103297403A (en) | Method and system for achieving dynamic password authentication | |
| KR20140066230A (en) | Systems and methods for encoding exchanges with a set of shared ephemeral key data | |
| CN102739642A (en) | Permitting access to a network | |
| US10133861B2 (en) | Method for controlling access to a production system of a computer system not connected to an information system of said computer system | |
| CN109150507B (en) | Equipment credential distribution method and system, user equipment and management entity | |
| EP1530315A1 (en) | System and method for authentication of applications in a non-trusted network environment | |
| CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
| CN107026823B (en) | Access authentication method and terminal applied to Wireless Local Area Network (WLAN) | |
| CN105391734A (en) | Secure login system, secure login method, login server and authentication server | |
| CN103812651A (en) | Password authentication method, device and system | |
| CN102404337A (en) | Data encryption method and device | |
| CN105142134A (en) | Parameter obtaining and transmission methods/devices |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |