CN105554759A - Authentication method and authentication system - Google Patents
Authentication method and authentication system Download PDFInfo
- Publication number
- CN105554759A CN105554759A CN201610101956.XA CN201610101956A CN105554759A CN 105554759 A CN105554759 A CN 105554759A CN 201610101956 A CN201610101956 A CN 201610101956A CN 105554759 A CN105554759 A CN 105554759A
- Authority
- CN
- China
- Prior art keywords
- authentication
- internet
- things
- equipment
- platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/08—Access point devices
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides an authentication method and an authentication system. The authentication method comprises that: a device of the internet of things reads the address information of a platform of the internet of things from a USB authentication assist device and sends an authentication request to the platform of the internet of things; the USB authentication assist device assists the device of the internet of things to authenticate on the platform of the internet of things; the platform of the internet of things authenticates the device of the internet of things and sends authentication success information to the device of the internet of things after the authentication is successful. According to the authentication method, assisted authentication is carried out by the USB authentication assist device; a user only needs to insert the USB authentication assist device on the device of the internet of things, the device of the internet of things can be connected to and authenticated on the platform of the internet of things; the user does not need to carry out extra authentication operation; another mobile terminal or computer does not need to be used in the authentication process; the authentication operation complexity is simplified; the necessary devices in the authentication process are simplified; the authentication operation is more convenient and rapid; meanwhile, the authentication cost is reduced.
Description
Technical field
The present invention relates to communication technical field, particularly, relate to a kind of method for authenticating and mirror
Power system.
Background technology
Along with the development of technology of Internet of things, the kind of internet of things equipment also gets more and more, and when a large amount of internet of things equipments is connected to platform of internet of things, to connect and the step of authentication is a more loaded down with trivial details process.This will be a challenge for the user being unfamiliar with computer and internet of things service.
The method of existing internet of things equipment connection and authentication, generally sign in on smart machine with mobile terminal (as mobile phone) or computer, the WIFI access point of change smart machine is arranged, make equipment connection to network, if smart machine needs to sign in platform of internet of things carry out authentication, user is also needed to compare complicated setting by computer or mobile terminal input authentication information, after platform of internet of things returns the successful message of authentication, smart machine is in the authentication success of platform of internet of things.Not only step is more for the method for this connection and authentication, for the crowd being unfamiliar with Internet of Things and the Internet, this authentication mode is difficult to use, and this authentication mode must utilize the 3rd aid (i.e. mobile terminal or computer) to realize, the necessary equipment of authentication is more, the complexity that operates is higher, and authentication cost is high.
Summary of the invention
The present invention is directed to the above-mentioned technical problem existed in prior art, a kind of method for authenticating and right discriminating system are provided.This method for authenticating carries out secondary authentication by adopting USB authentication auxiliary equipment, not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
The invention provides a kind of method for authenticating, comprising:
Internet of things equipment reads the address information of platform of internet of things from USB authentication auxiliary equipment, and sends authentication request to described platform of internet of things;
Described USB authentication auxiliary equipment assists described internet of things equipment to carry out authentication at described platform of internet of things, and described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, sends authentication successful information to described internet of things equipment.
Preferably, described USB authentication auxiliary equipment adopts rivest, shamir, adelman to assist described internet of things equipment to carry out authentication at described platform of internet of things, described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, sends authentication successful information comprise to described internet of things equipment:
Described platform of internet of things receives described authentication request, returns random number to described internet of things equipment;
Described random number is sent to described USB authentication auxiliary equipment by described internet of things equipment;
Described USB authentication auxiliary equipment calculates the first authentication information according to the private key of its storage inside and described random number, and described first authentication information is sent to described internet of things equipment;
Described first authentication information is sent to described platform of internet of things by described internet of things equipment;
Described platform of internet of things calculates the second authentication information according to the PKI of its storage inside and described random number, and described first authentication information and described second authentication information are compared, when comparison result is consistent, send authentication successful information to described internet of things equipment.
Preferably, described USB authentication auxiliary equipment adopts symmetric encipherment algorithm to assist described internet of things equipment to carry out authentication at described platform of internet of things, described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, sends authentication successful information comprise to described internet of things equipment:
The described authentication request of encryption is sent to described internet of things equipment by described USB authentication auxiliary equipment;
Described internet of things equipment sends the described authentication request of encryption to described platform of internet of things;
Described platform of internet of things receives the described authentication request of encryption, and is decrypted described authentication request and legitimacy is checked, when legitimacy check by time, send authentication successful information to described internet of things equipment.
Preferably, also comprised before described internet of things equipment sends authentication request to described platform of internet of things:
For described USB authentication auxiliary equipment configuration WIFI access-in point information;
Described internet of things equipment reads described WIFI access-in point information from described USB authentication auxiliary equipment, and is connected to WIFI access point.
Preferably, also comprise: its identification code is sent to described USB authentication auxiliary equipment by described internet of things equipment;
While described internet of things equipment sends described authentication request to described platform of internet of things, the account information of user of the encryption of reading from described USB authentication auxiliary equipment and the identification code of described internet of things equipment are also sent to described platform of internet of things by described internet of things equipment.
The present invention also provides a kind of right discriminating system, comprising: internet of things equipment, USB authentication auxiliary equipment and platform of internet of things; Wherein,
Described internet of things equipment comprises read module and communication module, and described read module is used for the address information reading described platform of internet of things from described USB authentication auxiliary equipment; Described communication module is used for sending authentication request to described platform of internet of things, also for receiving the authentication successful information that described platform of internet of things sends;
Described USB authentication auxiliary equipment comprises authentication supplementary module, carries out authentication for auxiliary described internet of things equipment at described platform of internet of things;
Described platform of internet of things comprises authentication module, for receiving described authentication request, and carries out authentication to described internet of things equipment, also for after authentication success, sends authentication successful information to described internet of things equipment.
Preferably, described authentication module is also for sending random number to described communication module; Described communication module is also for sending to described authentication supplementary module by described random number;
Described authentication supplementary module comprises the first calculating sub module, the first sub module stored and first sends submodule, and described first calculating sub module is used for calculating the first authentication information according to the private key stored in described first sub module stored and described random number; Described first sends submodule is used for described first authentication information to send to described communication module; Described first sub module stored is for storing the address information of described private key and described platform of internet of things;
Described communication module is also for sending to described authentication module by described first authentication information;
Described authentication module comprises the second calculating sub module, the second sub module stored, comparer module and the second transmission submodule, and described second calculating sub module is used for calculating the second authentication information according to the PKI stored in described second sub module stored and described random number; Described second sub module stored is for storing described PKI; Described comparer module is used for described first authentication information and described second authentication information to compare; Described second sends submodule is used for when the comparison result of described comparer module is consistent, sends authentication successful information to described communication module.
Preferably, described authentication supplementary module comprises the first encryption submodule, first and sends submodule and the first sub module stored, and described first encryption submodule is used for being encrypted described authentication request; Described first sends submodule is used for the described authentication request of encryption to send to described communication module; Described first sub module stored is used for the password of storage encryption and the address information with described platform of internet of things;
Described communication module is used for the described authentication request of encryption to send to described authentication module;
Described authentication module comprises the first deciphering submodule, checks submodule, the second sub module stored and second sends submodule, and described first deciphering submodule for receiving the described authentication request of encryption, and is decrypted the described authentication request of encryption; Described submodule of checking is checked for carrying out legitimacy to the described authentication request after deciphering; Described second send submodule be used for the described legitimacy checking submodule check by time, send authentication successful information to described communication module; Described second sub module stored is used for the password of store decrypted.
Preferably, described first sub module stored is also for storing WIFI access-in point information; Described read module also for reading described WIFI access-in point information from described USB authentication auxiliary equipment.
Preferably, described communication module is also for sending to described USB authentication auxiliary equipment by the identification code of internet of things equipment; Described first sub module stored is also for the identification code of the account information and described internet of things equipment that store user;
Described authentication supplementary module also comprises the second encryption submodule, and described authentication module also comprises the second deciphering submodule; Described second encryption submodule is used for being encrypted the account information of described user and the identification code of described internet of things equipment; Described read module also for reading the account information of described user and the identification code of described internet of things equipment of encryption from described first sub module stored; Described communication module is also for sending to described second deciphering submodule by the account information of described user of encryption and the identification code of described internet of things equipment; Described second deciphering submodule is used for being decrypted the account information of described user and the identification code of described internet of things equipment; Described second sub module stored is also for the identification code of the account information and described internet of things equipment that store described user.
Beneficial effect of the present invention: method for authenticating provided by the present invention, secondary authentication is carried out by adopting USB authentication auxiliary equipment, user is made only to need on internet of things equipment, insert USB authentication auxiliary equipment, internet of things equipment can be realized in the connection of platform of internet of things and authentication, thus not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
Accompanying drawing explanation
Fig. 1 is the flow chart of method for authenticating in the embodiment of the present invention 1;
Fig. 2 is the authentication process schematic diagram of method for authenticating in the embodiment of the present invention 2;
Fig. 3 is the authentication process schematic diagram of method for authenticating in the embodiment of the present invention 3;
Fig. 4 is the theory diagram of right discriminating system in the embodiment of the present invention 4;
Fig. 5 is the theory diagram of right discriminating system in the embodiment of the present invention 5;
Fig. 6 is the theory diagram of right discriminating system in the embodiment of the present invention 6.
Description of reference numerals wherein:
1. internet of things equipment; 11. read modules; 12. communication modules; 2.USB authentication auxiliary equipment; 21. authentication supplementary modules; 211. first calculating sub module; 212. first sub module stored; 213. first send submodule; 214. second encryption submodules; 215. first encryption submodules; 3. platform of internet of things; 31. authentication module; 311. second calculating sub module; 312. second sub module stored; 313. comparer modules; 314. second send submodule; 315. second deciphering submodules; 316. first deciphering submodules; 317. check submodule.
Embodiment
For making those skilled in the art understand technical scheme of the present invention better, below in conjunction with the drawings and specific embodiments, a kind of method for authenticating provided by the present invention and right discriminating system are described in further detail.
Embodiment 1:
The present embodiment provides a kind of method for authenticating, as shown in Figure 1, comprising:
Step S1: internet of things equipment reads the address information of platform of internet of things from USB authentication auxiliary equipment, and send authentication request to platform of internet of things.
Step S2:USB authentication auxiliary equipment adminicle networked devices carries out authentication at platform of internet of things, and platform of internet of things carries out authentication to internet of things equipment, and after authentication success, sends authentication successful information to internet of things equipment.
Wherein, USB authentication auxiliary equipment inside is integrated with authentication ciphering algorithm.USB authentication auxiliary equipment, when platform of internet of things carries out authentication, only need be connected with internet of things equipment, be inserted into internet of things equipment, can realize the authentication of internet of things equipment at platform of internet of things by USB authentication auxiliary equipment by internet of things equipment.
This method for authenticating carries out secondary authentication by adopting USB authentication auxiliary equipment, user is made only to need on internet of things equipment, insert USB authentication auxiliary equipment, internet of things equipment can be realized in the connection of platform of internet of things and authentication, thus not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
Embodiment 2:
The present embodiment provides a kind of method for authenticating, as shown in Figure 2, comprising:
Step S1: internet of things equipment reads the address information of platform of internet of things from USB authentication auxiliary equipment, and send authentication request to platform of internet of things.
In this step, be first inserted on internet of things equipment by USB authentication auxiliary equipment, USB authentication auxiliary equipment can trigger networked devices.The address information of platform of internet of things is stored in USB authentication auxiliary equipment.Internet of things equipment, after getting the address information of platform of internet of things, could send authentication request to platform of internet of things.
Before this step, this method for authenticating also comprises:
Step S01: be USB authentication auxiliary equipment configuration WIFI access-in point information.
In this step, in USB authentication auxiliary equipment, be configured with networking interface, can by networking interface directly to USB authentication auxiliary equipment write WIFI access-in point information.In addition, also USB authentication auxiliary equipment and wireless router can be made to connect, USB authentication auxiliary equipment and wireless router carry out information interaction, thus obtain WIFI access-in point information, certainly, the prerequisite of a kind of rear method for USB authentication auxiliary equipment configuration WIFI access-in point information stores WIFI access-in point information in wireless router.
Preferably, this method for authenticating also comprises: after USB authentication auxiliary equipment is connected on internet of things equipment, and its identification code is sent to USB authentication auxiliary equipment by internet of things equipment; While internet of things equipment sends authentication request to platform of internet of things, the account information of user of the encryption of reading from USB authentication auxiliary equipment and the identification code of internet of things equipment are also sent to platform of internet of things by internet of things equipment, so that the account information of platform of internet of things to the internet of things equipment and user that require authentication manages.
Step S02: internet of things equipment reads WIFI access-in point information from USB authentication auxiliary equipment, and is connected to WIFI access point.
In this step, after internet of things equipment is connected to WIFI access point, could to platform of internet of things request authentication.
Step S2:USB authentication auxiliary equipment adopts rivest, shamir, adelman adminicle networked devices to carry out authentication at platform of internet of things, and platform of internet of things carries out authentication to internet of things equipment, and after authentication success, sends authentication successful information to internet of things equipment.
This step specifically comprises:
Step S21: platform of internet of things receives authentication request, returns random number to internet of things equipment.
Step S22: random number is sent to USB authentication auxiliary equipment by internet of things equipment.
Step S23:USB authentication auxiliary equipment calculates the first authentication information according to the private key of its storage inside and random number, and the first authentication information is sent to internet of things equipment.
Step S24: the first authentication information is sent to platform of internet of things by internet of things equipment.
Step S25: platform of internet of things calculates the second authentication information according to the PKI of its storage inside and random number, and the first authentication information and the second authentication information are compared, when comparison result is consistent, send authentication successful information to internet of things equipment.
So far, authentication process terminates.
USB authentication auxiliary equipment adopts rivest, shamir, adelman adminicle networked devices to carry out authentication at platform of internet of things, can guarantee that internet of things equipment is in the confidentiality of platform of internet of things authentication and fail safe further.
Embodiment 3:
The present embodiment provides a kind of method for authenticating, as different from Example 2, as shown in Figure 3, step S2:USB authentication auxiliary equipment adopts symmetric encipherment algorithm adminicle networked devices to carry out authentication at platform of internet of things, platform of internet of things carries out authentication to internet of things equipment, and after authentication success, send authentication successful information to internet of things equipment.
This step specifically comprises:
The authentication request of encryption is sent to internet of things equipment by step S21 ': USB authentication auxiliary equipment.
Step S22 ': internet of things equipment sends the authentication request of encryption to platform of internet of things.
Step S23 ': platform of internet of things receives the authentication request of encryption, and is decrypted authentication request and legitimacy is checked, when legitimacy check by time, send authentication successful information to internet of things equipment.
So far, authentication process terminates.
USB authentication auxiliary equipment adopts symmetric encipherment algorithm adminicle networked devices to carry out authentication at platform of internet of things, can improve the efficiency of internet of things equipment in platform of internet of things authentication.
In the present embodiment, other steps of method for authenticating are in the same manner as in Example 2, repeat no more herein.
The beneficial effect of embodiment 2-3: the method for authenticating provided in embodiment 2-3, secondary authentication is carried out by adopting USB authentication auxiliary equipment, user is made only to need on internet of things equipment, insert USB authentication auxiliary equipment, internet of things equipment can be realized in the connection of platform of internet of things and authentication, thus not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
Embodiment 4:
The present embodiment provides a kind of right discriminating system, as shown in Figure 4, comprising: internet of things equipment 1, USB authentication auxiliary equipment 2 and platform of internet of things 3; Wherein, internet of things equipment 1 comprises read module 11 and communication module 12, and read module 11 for reading the address information of platform of internet of things 3 from USB authentication auxiliary equipment 2.Communication module 12 for sending authentication request to platform of internet of things 3, also for receiver networked platforms 3 send authentication successful information.USB authentication auxiliary equipment 2 comprises authentication supplementary module 21, carries out authentication for adminicle networked devices 1 at platform of internet of things 3.Platform of internet of things 3 comprises authentication module 31, for receiving authentication request, and carries out authentication to internet of things equipment 1, also for after authentication success, sends authentication successful information to internet of things equipment 1.
This right discriminating system carries out secondary authentication by adopting USB authentication auxiliary equipment 2, user is made only to need on internet of things equipment 1, insert USB authentication auxiliary equipment 2, internet of things equipment 1 can be realized in the connection of platform of internet of things 3 and authentication, thus not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
Embodiment 5:
The present embodiment provides a kind of right discriminating system, and as shown in Figure 5, on the basis of right discriminating system provided in example 4, authentication module 31 is also for sending random number to communication module 12.Communication module 12 is also for sending to authentication supplementary module 21 by random number.Authentication supplementary module 21 comprises the first calculating sub module 211, first sub module stored 212 and first and sends submodule 213, first calculating sub module 211 for calculating the first authentication information according to the private key stored in the first sub module stored 212 and random number.First sends submodule 213 for the first authentication information is sent to communication module 12.First sub module stored 212 is for storing the address information of private key and platform of internet of things 3.Communication module 12 is also for sending to authentication module 31 by the first authentication information.Authentication module 31 comprises the second calculating sub module 311, second sub module stored 312, comparer module 313 and second sends submodule 314, second calculating sub module 311 for calculating the second authentication information according to the PKI stored in the second sub module stored 312 and random number.Second sub module stored 312 is for storage of public keys.Comparer module 313 is for comparing the first authentication information and the second authentication information.Second sends submodule 314 for when the comparison result of comparer module 313 is consistent, sends authentication successful information to communication module 12.
In the present embodiment, the first sub module stored 212 is also for storing WIFI access-in point information.Read module 11 also for reading WIFI access-in point information from USB authentication auxiliary equipment 2.
In the present embodiment, communication module 12 is also for sending to USB authentication auxiliary equipment 2 by the identification code of internet of things equipment 1.First sub module stored 212 is also for the identification code of the account information and internet of things equipment 1 that store user.Authentication supplementary module 21 also comprises the second encryption submodule 214, and authentication module 31 also comprises the second deciphering submodule 315; Second encryption submodule 214 is for being encrypted the account information of user and the identification code of internet of things equipment 1.Read module 11 also for reading the account information of the user of encryption and the identification code of internet of things equipment from the first sub module stored 212.Communication module 12 also sends to the second deciphering submodule 315 for the account information of the user by encryption and the identification code of internet of things equipment 1.Second deciphering submodule 315 is for being decrypted the account information of user and the identification code of internet of things equipment 1.Second sub module stored 312 is also for the identification code of the account information and internet of things equipment 1 that store user.
Embodiment 6:
The present embodiment provides a kind of right discriminating system, as shown in Figure 6, on the basis of right discriminating system provided in example 4, authentication supplementary module 21 comprises the first encryption submodule 215, first transmission submodule 213 and the first sub module stored 212, first encrypts submodule 215 for being encrypted authentication request.First sends submodule 213 for the authentication request of encryption is sent to communication module 12.First sub module stored 212 is for the password of storage encryption and the address information with platform of internet of things 3.Communication module 12 is for sending to authentication module 31 by the authentication request of encryption.Authentication module 31 comprises the first deciphering submodule 316, check submodule 317, second sub module stored 312 and second sends submodule 314, first and deciphers submodule 316 for receiving the authentication request of encryption, and is decrypted the authentication request of encryption.Check submodule 317 to check for carrying out legitimacy to the authentication request after deciphering.Second send submodule 314 for check in the legitimacy checking submodule 317 by time, send authentication successful information to communication module 12.Second sub module stored 312 is for the password of store decrypted.
In the present embodiment, the first sub module stored 212 is also for storing WIFI access-in point information.Read module 11 also for reading WIFI access-in point information from USB authentication auxiliary equipment 2.
In the present embodiment, communication module 12 is also for sending to USB authentication auxiliary equipment 2 by the identification code of internet of things equipment 1.First sub module stored 212 is also for the identification code of the account information and internet of things equipment 1 that store user.Authentication supplementary module 21 also comprises the second encryption submodule 214, and authentication module 31 also comprises the second deciphering submodule 315; Second encryption submodule 214 is for being encrypted the account information of user and the identification code of internet of things equipment 1.Read module 11 also for reading the account information of the user of encryption and the identification code of internet of things equipment from the first sub module stored 212.Communication module 12 also sends to the second deciphering submodule 315 for the account information of the user by encryption and the identification code of internet of things equipment 1.Second deciphering submodule 315 is for being decrypted the account information of user and the identification code of internet of things equipment 1.Second sub module stored 312 is also for the identification code of the account information and internet of things equipment 1 that store user.
The right discriminating system that the beneficial effect of embodiment 5-6: embodiment 5-6 provides, secondary authentication is carried out by adopting USB authentication auxiliary equipment, user is made only to need on internet of things equipment, insert USB authentication auxiliary equipment, internet of things equipment can be realized in the connection of platform of internet of things and authentication, thus not only make user without the need to carrying out other extra authentication operations again, and make authentication process without the need to adopting other mobile terminal or computer again, and then not only simplify the complexity of authentication operations, and the necessary equipment simplified in authentication process, make authentication operations more convenient, also reduce authentication cost simultaneously.
Be understandable that, the illustrative embodiments that above execution mode is only used to principle of the present invention is described and adopts, but the present invention is not limited thereto.For those skilled in the art, without departing from the spirit and substance in the present invention, can make various modification and improvement, these modification and improvement are also considered as protection scope of the present invention.
Claims (10)
1. a method for authenticating, is characterized in that, comprising:
Internet of things equipment reads the address information of platform of internet of things from USB authentication auxiliary equipment, and sends authentication request to described platform of internet of things;
Described USB authentication auxiliary equipment assists described internet of things equipment to carry out authentication at described platform of internet of things, and described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, sends authentication successful information to described internet of things equipment.
2. method for authenticating according to claim 1, it is characterized in that, described USB authentication auxiliary equipment adopts rivest, shamir, adelman to assist described internet of things equipment to carry out authentication at described platform of internet of things, described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, send authentication successful information to described internet of things equipment and comprise:
Described platform of internet of things receives described authentication request, returns random number to described internet of things equipment;
Described random number is sent to described USB authentication auxiliary equipment by described internet of things equipment;
Described USB authentication auxiliary equipment calculates the first authentication information according to the private key of its storage inside and described random number, and described first authentication information is sent to described internet of things equipment;
Described first authentication information is sent to described platform of internet of things by described internet of things equipment;
Described platform of internet of things calculates the second authentication information according to the PKI of its storage inside and described random number, and described first authentication information and described second authentication information are compared, when comparison result is consistent, send authentication successful information to described internet of things equipment.
3. method for authenticating according to claim 1, it is characterized in that, described USB authentication auxiliary equipment adopts symmetric encipherment algorithm to assist described internet of things equipment to carry out authentication at described platform of internet of things, described platform of internet of things carries out authentication to described internet of things equipment, and after authentication success, send authentication successful information to described internet of things equipment and comprise:
The described authentication request of encryption is sent to described internet of things equipment by described USB authentication auxiliary equipment;
Described internet of things equipment sends the described authentication request of encryption to described platform of internet of things;
Described platform of internet of things receives the described authentication request of encryption, and is decrypted described authentication request and legitimacy is checked, when legitimacy check by time, send authentication successful information to described internet of things equipment.
4. method for authenticating according to claim 1, is characterized in that, also comprises before described internet of things equipment sends authentication request to described platform of internet of things:
For described USB authentication auxiliary equipment configuration WIFI access-in point information;
Described internet of things equipment reads described WIFI access-in point information from described USB authentication auxiliary equipment, and is connected to WIFI access point.
5. the method for authenticating according to claim 1-4 any one, is characterized in that, also comprises: its identification code is sent to described USB authentication auxiliary equipment by described internet of things equipment;
While described internet of things equipment sends described authentication request to described platform of internet of things, the account information of user of the encryption of reading from described USB authentication auxiliary equipment and the identification code of described internet of things equipment are also sent to described platform of internet of things by described internet of things equipment.
6. a right discriminating system, is characterized in that, comprising: internet of things equipment, USB authentication auxiliary equipment and platform of internet of things; Wherein,
Described internet of things equipment comprises read module and communication module, and described read module is used for the address information reading described platform of internet of things from described USB authentication auxiliary equipment; Described communication module is used for sending authentication request to described platform of internet of things, also for receiving the authentication successful information that described platform of internet of things sends;
Described USB authentication auxiliary equipment comprises authentication supplementary module, carries out authentication for auxiliary described internet of things equipment at described platform of internet of things;
Described platform of internet of things comprises authentication module, for receiving described authentication request, and carries out authentication to described internet of things equipment, also for after authentication success, sends authentication successful information to described internet of things equipment.
7. right discriminating system according to claim 6, is characterized in that, described authentication module is also for sending random number to described communication module; Described communication module is also for sending to described authentication supplementary module by described random number;
Described authentication supplementary module comprises the first calculating sub module, the first sub module stored and first sends submodule, and described first calculating sub module is used for calculating the first authentication information according to the private key stored in described first sub module stored and described random number; Described first sends submodule is used for described first authentication information to send to described communication module; Described first sub module stored is for storing the address information of described private key and described platform of internet of things;
Described communication module is also for sending to described authentication module by described first authentication information;
Described authentication module comprises the second calculating sub module, the second sub module stored, comparer module and the second transmission submodule, and described second calculating sub module is used for calculating the second authentication information according to the PKI stored in described second sub module stored and described random number; Described second sub module stored is for storing described PKI; Described comparer module is used for described first authentication information and described second authentication information to compare; Described second sends submodule is used for when the comparison result of described comparer module is consistent, sends authentication successful information to described communication module.
8. right discriminating system according to claim 6, is characterized in that, described authentication supplementary module comprises the first encryption submodule, first and sends submodule and the first sub module stored, and described first encryption submodule is used for being encrypted described authentication request; Described first sends submodule is used for the described authentication request of encryption to send to described communication module; Described first sub module stored is used for the password of storage encryption and the address information with described platform of internet of things;
Described communication module is used for the described authentication request of encryption to send to described authentication module;
Described authentication module comprises the first deciphering submodule, checks submodule, the second sub module stored and second sends submodule, and described first deciphering submodule for receiving the described authentication request of encryption, and is decrypted the described authentication request of encryption; Described submodule of checking is checked for carrying out legitimacy to the described authentication request after deciphering; Described second send submodule be used for the described legitimacy checking submodule check by time, send authentication successful information to described communication module; Described second sub module stored is used for the password of store decrypted.
9. the right discriminating system according to claim 7 or 8, is characterized in that, described first sub module stored is also for storing WIFI access-in point information; Described read module also for reading described WIFI access-in point information from described USB authentication auxiliary equipment.
10. right discriminating system according to claim 9, is characterized in that, described communication module is also for sending to described USB authentication auxiliary equipment by the identification code of internet of things equipment; Described first sub module stored is also for the identification code of the account information and described internet of things equipment that store user;
Described authentication supplementary module also comprises the second encryption submodule, and described authentication module also comprises the second deciphering submodule; Described second encryption submodule is used for being encrypted the account information of described user and the identification code of described internet of things equipment; Described read module also for reading the account information of described user and the identification code of described internet of things equipment of encryption from described first sub module stored; Described communication module is also for sending to described second deciphering submodule by the account information of described user of encryption and the identification code of described internet of things equipment; Described second deciphering submodule is used for being decrypted the account information of described user and the identification code of described internet of things equipment; Described second sub module stored is also for the identification code of the account information and described internet of things equipment that store described user.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610101956.XA CN105554759A (en) | 2016-02-24 | 2016-02-24 | Authentication method and authentication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610101956.XA CN105554759A (en) | 2016-02-24 | 2016-02-24 | Authentication method and authentication system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105554759A true CN105554759A (en) | 2016-05-04 |
Family
ID=55833646
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610101956.XA Pending CN105554759A (en) | 2016-02-24 | 2016-02-24 | Authentication method and authentication system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105554759A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106535295A (en) * | 2016-10-31 | 2017-03-22 | 河源弘稼农业科技有限公司 | Information read/write method and device, binding method and device, terminal and planting device |
| CN109981360A (en) * | 2019-03-15 | 2019-07-05 | 深圳力维智联技术有限公司 | Internet of things equipment website activating method, device, system and storage medium |
| CN110210187A (en) * | 2019-04-24 | 2019-09-06 | 西安中力科技有限公司 | Have and prevents counterfeit APP weight discriminating method |
| CN110633172A (en) * | 2019-09-24 | 2019-12-31 | 爱国者安全科技(北京)有限公司 | USB flash disk and data synchronization method thereof |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521731A (en) * | 2011-12-04 | 2012-06-27 | 东华大学 | Electronic contract sealing method based on barter system |
| WO2013167615A1 (en) * | 2012-05-11 | 2013-11-14 | Emmanuel Thibaudeau | Method for automatically dispatching command lines for accessing an internet site and device implementing the method |
| CN103415008A (en) * | 2013-07-24 | 2013-11-27 | 牟大同 | Encryption communication method and encryption communication system |
| CN103427989A (en) * | 2012-05-16 | 2013-12-04 | 王志良 | Data encryption and identity authentication method oriented in environment of internet of things |
| CN105208627A (en) * | 2014-06-24 | 2015-12-30 | 振江传讯有限公司 | Method for automatically accessing wireless local area network |
-
2016
- 2016-02-24 CN CN201610101956.XA patent/CN105554759A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102521731A (en) * | 2011-12-04 | 2012-06-27 | 东华大学 | Electronic contract sealing method based on barter system |
| WO2013167615A1 (en) * | 2012-05-11 | 2013-11-14 | Emmanuel Thibaudeau | Method for automatically dispatching command lines for accessing an internet site and device implementing the method |
| CN103427989A (en) * | 2012-05-16 | 2013-12-04 | 王志良 | Data encryption and identity authentication method oriented in environment of internet of things |
| CN103415008A (en) * | 2013-07-24 | 2013-11-27 | 牟大同 | Encryption communication method and encryption communication system |
| CN105208627A (en) * | 2014-06-24 | 2015-12-30 | 振江传讯有限公司 | Method for automatically accessing wireless local area network |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106535295A (en) * | 2016-10-31 | 2017-03-22 | 河源弘稼农业科技有限公司 | Information read/write method and device, binding method and device, terminal and planting device |
| CN106535295B (en) * | 2016-10-31 | 2018-06-19 | 河源弘稼农业科技有限公司 | Card read/write method, binding method and its device, terminal and planting equipment |
| CN109981360A (en) * | 2019-03-15 | 2019-07-05 | 深圳力维智联技术有限公司 | Internet of things equipment website activating method, device, system and storage medium |
| CN110210187A (en) * | 2019-04-24 | 2019-09-06 | 西安中力科技有限公司 | Have and prevents counterfeit APP weight discriminating method |
| CN110633172A (en) * | 2019-09-24 | 2019-12-31 | 爱国者安全科技(北京)有限公司 | USB flash disk and data synchronization method thereof |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10708062B2 (en) | In-vehicle information communication system and authentication method | |
| CN108377190B (en) | Authentication equipment and working method thereof | |
| CN110192381B (en) | Key transmission method and device | |
| CN103152366B (en) | Obtain the method for terminal authorization, terminal and server | |
| ES2713390T3 (en) | Identity verification procedure of a user of a communicating terminal and associated system | |
| CN103415008A (en) | Encryption communication method and encryption communication system | |
| KR101706117B1 (en) | Apparatus and method for other portable terminal authentication in portable terminal | |
| US20150128243A1 (en) | Method of authenticating a device and encrypting data transmitted between the device and a server | |
| CN104821933A (en) | Device and method certificate generation | |
| CN101964805B (en) | Method, equipment and system for safely sending and receiving data | |
| WO2005091149A1 (en) | Backup device, backed-up device, backup intermediation device, backup system, backup method, data restoration method, program, and recording medium | |
| CN107733652B (en) | Unlocking method and system for shared vehicle and vehicle lock | |
| CN109690543B (en) | Security authentication method, integrated circuit and system | |
| CN104484596A (en) | Method and terminal for creating password in multi-operation system | |
| CN105554759A (en) | Authentication method and authentication system | |
| CN101527714A (en) | Method, device and system for accreditation | |
| CN102970676A (en) | Method for processing original data, internet of thing system and terminal | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN102264068B (en) | Shared key consultation method, system, network platform and terminal | |
| CN105554008A (en) | User terminal, authentication server, middle server, system and transmission method | |
| CN108881256B (en) | Secret key exchange method and device, hydroelectric pile and network equipment | |
| CN108259428B (en) | System and method for realizing data transmission | |
| CN109756451B (en) | Information interaction method and device | |
| CN115868189A (en) | Method, vehicle, terminal and system for establishing vehicle safety communication | |
| ES2926968T3 (en) | A first entity, a second entity, an intermediate node, methods for establishing a secure session between a first and a second entity, and software products |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160504 |