CN106100836B - A kind of method and system of industrial user's authentication and encryption - Google Patents

A kind of method and system of industrial user's authentication and encryption Download PDF

Info

Publication number
CN106100836B
CN106100836B CN201610647319.2A CN201610647319A CN106100836B CN 106100836 B CN106100836 B CN 106100836B CN 201610647319 A CN201610647319 A CN 201610647319A CN 106100836 B CN106100836 B CN 106100836B
Authority
CN
China
Prior art keywords
encryption
user
industry control
authentication
certificate
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610647319.2A
Other languages
Chinese (zh)
Other versions
CN106100836A (en
Inventor
晏培
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Tianyu Technology (beijing) Co Ltd
Original Assignee
Beijing Tianyu Technology (beijing) Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Tianyu Technology (beijing) Co Ltd filed Critical Beijing Tianyu Technology (beijing) Co Ltd
Priority to CN201610647319.2A priority Critical patent/CN106100836B/en
Publication of CN106100836A publication Critical patent/CN106100836A/en
Application granted granted Critical
Publication of CN106100836B publication Critical patent/CN106100836B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/0876Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Abstract

The present invention relates to industrial information security technology areas, in particular to the method and system of a kind of industrial user's authentication and encryption.This method comprises: by electron key by USB interface access user terminal equipment, and client is logged in by subscriber terminal equipment;Client compares the hardware characteristics code of subscriber terminal equipment and the hardware characteristics code of electron key binding, if consistent, and certificate server verifying user certificate has legitimacy, then client obtains industry control command information and is encrypted, encapsulation process, the data packet encrypted;The data packet is transferred to encryption gateway by client;Encryption gateway unpacked the data packet, decryption processing, the industry control command information decrypted, and is transmitted to opc server.Solves at this stage the problem of safety of industrial information system data transmission is low, not can guarantee the authenticity of data packet.

Description

A kind of method and system of industrial user's authentication and encryption
Technical field
The present invention relates to industrial information security technology areas, in particular to a kind of industrial user's authentication and add Close method and system.
Background technique
With information technology and network technology applied in industrial system it is universal, open, interconnection and standardization at For the inexorable trend of industrial information System Development, industrial system is also increasingly stronger to the dependence of information system, so industry letter The safety problem of breath system also increasingly attracts people's attention, existing computer system, information network, operation system and people Awareness of safety had certain foundation for security, but for industrial information grid at present also in fast-developing rank Section, existing safety product such as firewall, VPN (Virtual Private Network, Virtual Private Network) also can not be direct For industrial information system, although also thering is Industry Control firewall to be controlled specifically for industrial protocol currently on the market, Industry Control firewall solves only filtering and control to data packet, not can guarantee the authenticity of data packet, industrial information system There is presently no the security solutions of comparative maturity for system.
Industrial information demand for security is extremely urgent, present invention combination conventional security the relevant technologies, for industrial information The characteristics of system, invents a kind of industrial user's authentication and encryption system, solves industrial information system data transmission and asks safely Topic.
Summary of the invention
The purpose of the present invention is to provide the method and system of a kind of industrial user's authentication and encryption, to solve existing rank The problem of section industrial information system data transmission safety is low, not can guarantee the authenticity of data packet.
The present invention provides the methods of a kind of industrial user's authentication and encryption comprising:
Step 1: obtaining electron key, the electron key includes user certificate, the first hardware characteristics code;
Step 2: electron key starts client by USB interface access user terminal equipment;
Step 3: client obtains the second hardware characteristics of the first hardware characteristics code and the subscriber terminal equipment Code compares the first hardware characteristics code, the second hardware characteristics code, if unanimously, carrying out step 4;Otherwise it terminates;
Step 4: client obtains the user certificate, and the user certificate is transferred to certificate server;
Step 5: certificate server verifies the legitimacy of the user certificate, if certification passes through, and will be sent by information To client, step 6 is carried out;Otherwise it terminates;
Step 6: industry control command information is encrypted client, the industry control command information encrypted;
Step 7: the industry control command information of the encryption is carried out tunnel encapsulation processing by client, obtains data packet;
Step 8: the data packet is transferred to encryption gateway by client;
Step 9: the encryption gateway unpacked the data packet, decryption processing, the industry control instruction letter decrypted Breath;
Step 10: the industry control command information of the decryption is transferred to opc server by the encryption gateway.
In some embodiments, preferably, the electron key is managed collectively by certificate authority.
In some embodiments, preferably, the electron key further include: the encryption of national Password Management office approval is calculated Method, user basic information, the user basic information include user name, unit, department, telephone number and email address.
In some embodiments, preferably, the first hardware characteristics code is hard with unique user terminal apparatus bound Part condition code.
In some embodiments, preferably, the certificate server includes OCSP certificate server and ldap authentication service Device.
In some embodiments, preferably, in the step 9 further include: encryption gateway instructs the industry control of the decryption Information memory filtration treatment.
In some embodiments, preferably, the encryption gateway includes Industry Control firewall box.
The present invention also provides the systems of a kind of industrial user's authentication and encryption comprising: claim 1-6 is any Client, certificate server, encryption gateway and opc server described in;
The client includes: read module, authentication module, encrypting module, package module and transmission module, the reading Module is for reading the user certificate in electron key, the first hardware characteristics code information;The authentication module is for comparing first Second hardware characteristics code of hardware characteristics code and subscriber terminal equipment;The encrypting module is for adding industry control command information Close processing, the industry control command information encrypted;The package module is used to carry out tunnel to the industry control command information of the encryption Road encapsulation process, obtains data packet;The transmission module is used to the data packet being transferred to encryption gateway;
The certificate server is for verifying user certificate legitimacy;
The encryption gateway for the data packet is unpacked, decryption processing, the industry control command information decrypted;
The opc server receives the industry control command information of the decryption, and according to the industry control command information of the decryption Execute relevant operation.
For above system, further, in some embodiments, preferably, the certificate server includes OCSP certification Server and ldap authentication server.
Further, in some embodiments, preferably, the encryption gateway includes Industry Control firewall box.
The method and system of industrial user's authentication and encryption provided in an embodiment of the present invention, compared with prior art, By obtaining electron key, wherein electron key and terminal device hardware are bound, as long as the terminal device by authorization just has behaviour Make right, prevents the illegal operation of unauthorized user and equipment.So the hardware that subscriber terminal equipment is compared in client is special The hardware characteristics code of code and electron key binding is levied, and can also verify the legal of the user certificate by certificate server Property, double verification processing, it is ensured that the safety and operating rights of equipment in fact in data transmission procedure.In addition, client is being incited somebody to action Encryption and package process can be carried out to it before the transmission of industry control command information, take notice of the safety that ensure that data transmission.Therefore, originally The method effective solution of industrial user's authentication and the encryption of disclosure of the invention industrial information system data transmission at this stage The problem of safety is low, not can guarantee the authenticity of data packet.
Detailed description of the invention
Fig. 1 is the method and step schematic diagram of industrial user's authentication and encryption in one embodiment of the invention;
Fig. 2 is the system structure diagram of industrial user's authentication and encryption in one embodiment of the invention.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention In attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is A part of the embodiments of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, ordinary skill people Member's every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
For the problem that the safety of industrial information system data transmission is low at this stage, the authenticity of data packet not can guarantee, The invention proposes the method and system of a kind of industrial user's authentication and encryption.
As shown in Figs. 1-2, it specifically includes:
Step 1: obtaining electron key, electron key includes user certificate, the first hardware characteristics code.
Electron key is managed collectively by certificate authority, is collected simultaneously inside each electron key comprising a user certificate The associated encryption algorithm ratified at national Password Management office;User certificate is issued by certificate granting CA centre punch one.User certificate The inside includes user basic information, and user basic information includes user name, unit, department, telephone number and email address;Each It also include the hardware characteristics code of a terminal device inside electron key.Electron key and terminal device hardware are bound, as long as through The terminal device for crossing authorization just has operational rights, prevents the illegal operation of unauthorized user and equipment.
Step 2: electron key passes through USB interface access user terminal equipment and starts client software.
Client software is mounted on subscriber terminal equipment, and user need to be inserted into electron key when using client software, Each electron key can only be bound with a terminal device, and subscriber terminal equipment can read data from electron key;Gateway is set It is standby to carry out two-way information interaction with subscriber terminal equipment;Family terminal device and certificate server carry out two-way information interaction.Client Integrated Simulation industry control protocol engine is held, the only data packet of industrial control protocols just carries out safety encryption and data encapsulation, other Data guarantee that the data for being transferred to server end only have the data packet of industrial control protocols not into tunnel, and Encryption Algorithm makes Use national secret algorithm.
Step 3: client obtains the second hardware characteristics code of the first hardware characteristics code and subscriber terminal equipment, compares the One hardware characteristics code, the second hardware characteristics code, if unanimously, carrying out step 4;Otherwise it terminates.
Step 4: client obtains user certificate, and user certificate is transferred to certificate server.
Step 5: certificate server verifies the legitimacy of user certificate, if certification passes through, and will be sent to visitor by information Family end carries out step 6;Otherwise it terminates.
Step 6: industry control command information is encrypted client, the industry control command information encrypted.
Step 7: the industry control command information of encryption is carried out tunnel encapsulation processing by client, obtains data packet.
Step 8: data packet is transferred to encryption gateway by client.
Step 9: encryption gateway unpacked data packet, decryption processing, the industry control command information decrypted, densification network Close the industry control command information memory filtration treatment to decryption.
Therefore, encryption gateway is also responsible in addition to responsible data deciphering and forwarding to the industrial control protocols data after decryption Depth-type filtration, effectively control the execution illegally instructed.
Step 10: the industry control command information of decryption is transferred to opc server by encryption gateway, and opc server receives correlation Relevant operation is executed after command information, so far an Industry Control instruction is completed by dedicated tunnel safe transmission.
The major function of client software is: the 1. hardware characteristics code of computing terminal equipment;It is tied up 2. reading in electron key Fixed hardware characteristics code is simultaneously compared with calculated hardware characteristics code;3. reading the certificate inside electron key and passing through certification Server carries out certificate verification;4. the industry control protocol data sent by the real-time monitor terminal equipment of industry control protocol engine module Packet;5. data packet is encrypted and is encapsulated by the hardware encryption algorithm provided in electron key;6. sending encrypted data packet.
The user certificate that certificate server is used to uniformly issue certificate authority carries out subscriber authentication, certification clothes Business device include OCSP (Online Certificate Status Protocol, online certificate status protocol) certificate server and LDAP (Lightweight Directory Access Protocol, Light Directory Access Protocol) certificate server.
Encryption gateway includes: Industry Control firewall box.Gateway software is mounted in encryption gateway equipment, main function It can be: 1. receive the industry control protocol data packet after encryption encapsulation from subscriber terminal equipment;2. decrypted data packet;3. searching industry control plan Slightly;4. search strategy routes;5. forwarding data packet to opc server.
For the above method, the present invention provides the systems of industrial user's authentication and encryption comprising: claim Client, certificate server, encryption gateway and the opc server of any one of 1-6.Client includes: read module, verifying mould Block, encrypting module, package module and transmission module, read module are used to read user certificate, the first hardware in electron key Condition code information;Authentication module is used to compare the second hardware characteristics code of the first hardware characteristics code and subscriber terminal equipment;Encryption Module is for being encrypted industry control command information, the industry control command information encrypted;Package module is used for encryption Industry control command information carry out tunnel encapsulation processing, obtain data packet;Transmission module is used to data packet being transferred to encryption gateway. Certificate server is for verifying user certificate legitimacy.Encryption gateway for data packet is unpacked, decryption processing, solved Close industry control command information.The industry control command information of opc server receiving and deciphering, and executed according to the industry control command information of decryption Relevant operation.
Within the system, certificate server includes OCSP certificate server and ldap authentication server.Encryption gateway includes Industry Control firewall box.Its concrete principle is identical with the principle of method of above-mentioned industrial user's authentication and encryption, therefore It does not state in detail.
For the method and system of above-mentioned industrial user's authentication and encryption, two specific embodiments are provided:
Embodiment 1:
Realization industrial user authentication and encryption system in embodiment 1 include hardware device and related software.Hardware Equipment includes: encryption gateway, electron key, subscriber terminal equipment, certificate server;Related software include: client software and Gateway software.
Client software is mounted on subscriber terminal equipment, and user need to be inserted into electron key when using client software, Each electron key can only be bound with a terminal device, and subscriber terminal equipment can read data from electron key;Gateway is set It is standby to carry out two-way information interaction with subscriber terminal equipment;Family terminal device and certificate server carry out two-way information interaction.
Electron key is managed collectively by certificate authority, is collected simultaneously inside each electron key comprising a user certificate The associated encryption algorithm ratified at national Password Management office;User certificate is uniformly issued by certificate authority;In user certificate Bread contains user basic information, and the user basic information includes user name, unit, department, telephone number and email address;Often It also include the hardware characteristics code of a terminal device inside a electron key.
The major function of client software is: the 1. hardware characteristics code of computing terminal equipment;It is tied up 2. reading in electron key Fixed hardware characteristics code is simultaneously compared with calculated hardware characteristics code;3. reading the certificate inside electron key and passing through certification Server carries out certificate verification;4. the industry control protocol data sent by the real-time monitor terminal equipment of industry control protocol engine module Packet;5. data packet is encrypted and is encapsulated by the hardware encryption algorithm provided in electron key;6. sending encrypted data packet.
The user certificate that the certificate server is used to uniformly issue certificate authority carries out subscriber authentication, recognizes Demonstrate,proving server includes OCSP certificate server and ldap authentication server.
The encryption gateway is Industry Control firewall, and certificate server is ldap server.
Gateway software is mounted in encryption gateway equipment, and major function is: 1. receiving encryption envelope from subscriber terminal equipment Industry control protocol data packet after dress;2. decrypted data packet;3. searching industry control strategy;4. search strategy routes;5. forwarding data packet To opc server.
Using industrial user's authentication and encryption system carry out information transmission process as shown in Fig. 2, specifically:
Step 1: subscriber terminal equipment sends an Industry Control instruction;
Step 2: client software obtains industry control by using the industry control protocol engine being integrated in client software and instructs Information;
Step 3: client software calculates the hardware encoding of subscriber terminal equipment, then binds in reading electron key hard Part coding is compared, if unanimously, executing step 4 operation;Otherwise, current operation is terminated;
Step 4: client software reads the user certificate in electron key, then legal to certificate by certificate server Property authenticated, certification passes through, then execute step 5 operation;Otherwise, current operation is terminated;
Step 5: client software carries out encryption and tunnel to industry control command information using national Password Management office assignment algorithm Road encapsulation;
Step 6: the industry control command information after encapsulation is sent to encryption gateway by client software;
Step 7: encryption gateway receives encrypted industry control command information and is transmitted to opc server after decrypting, OPC service Device executes relevant operation after receiving relevant instruction information, and so far an Industry Control instruction is complete by dedicated tunnel safe transmission At.
Embodiment 2:
Realization industrial user's authentication and encryption system structure in embodiment 2 is identical as the system in embodiment 1, area Be not only that: certificate server is OCSP certificate server, and user certificate uses on-line authentication mode.
Using industrial user's authentication and encryption system carry out information transmission process as shown in Fig. 2, specifically:
Step 1: subscriber terminal equipment sends an Industry Control instruction;
Step 2: client software obtains industry control by using the industry control protocol engine being integrated in client software and instructs Information;
Step 3: client software calculates the hardware encoding of subscriber terminal equipment, then binds in reading electron key hard Part coding is compared, if unanimously, executing step 4 operation;Otherwise, current operation is terminated;
Step 4: client software reads the user certificate in electron key, then legal to certificate by certificate server Property authenticated, certification passes through, then execute step 5 operation;Otherwise, current operation is terminated;
Step 5: client software carries out encryption and tunnel to industry control command information using national Password Management office assignment algorithm Road encapsulation;
Step 6: the industry control command information after encapsulation is sent to encryption gateway by client software;
Step 7: encryption gateway receives encrypted industry control command information and is transmitted to opc server after decrypting, OPC service Device executes relevant operation after receiving relevant instruction information, and so far an Industry Control instruction is complete by dedicated tunnel safe transmission At.
These are only the preferred embodiment of the present invention, is not intended to restrict the invention, for those skilled in the art For member, the invention may be variously modified and varied.All within the spirits and principles of the present invention, it is made it is any modification, Equivalent replacement, improvement etc., should all be included in the protection scope of the present invention.

Claims (8)

1. a kind of method of industrial user's authentication and encryption characterized by comprising
Step 1: obtaining electron key, the electron key includes user certificate, the first hardware characteristics code;
Step 2: electron key starts client by USB interface access user terminal equipment;
Step 3: client obtains the second hardware characteristics code of the first hardware characteristics code and the subscriber terminal equipment, than To the first hardware characteristics code, the second hardware characteristics code, if unanimously, carrying out step 4;Otherwise it terminates;
Step 4: client obtains the user certificate, and the user certificate is transferred to certificate server;
Step 5: certificate server verifies the legitimacy of the user certificate, if certification passes through, and will be sent to visitor by information Family end carries out step 6;Otherwise it terminates;
Step 6: industry control command information is encrypted client, the industry control command information encrypted;
Step 7: the industry control command information of the encryption is carried out tunnel encapsulation processing by client, obtains data packet;Client is soft Part integrates industry control protocol engine, and the only data packet of industrial control protocols just carries out safety encryption and data encapsulation, other data Not into tunnel, guarantee that the data for being transferred to server end only have the data packet of industrial control protocols, and Encryption Algorithm uses state Close algorithm;
Step 8: the data packet is transferred to encryption gateway by client;
Step 9: the encryption gateway unpacked the data packet, decryption processing, the industry control command information decrypted;Together When, the encryption gateway is filtered processing to the industry control command information of the decryption;
Step 10: the industry control command information of the decryption is transferred to opc server by the encryption gateway.
2. a kind of method of industrial user's authentication and encryption as described in claim 1, which is characterized in that the electronics key Spoon is managed collectively by certificate authority;And/or
The electron key further include: Encryption Algorithm, the user basic information of national Password Management office approval, the user are basic Information includes user name, unit, department, telephone number and email address.
3. a kind of method of industrial user's authentication and encryption as described in claim 1, which is characterized in that described first is hard Part condition code is the hardware characteristics code with unique user terminal apparatus bound.
4. a kind of method of industrial user's authentication and encryption as described in claim 1, which is characterized in that the certification clothes Business device includes OCSP certificate server and ldap authentication server.
5. a kind of method of industrial user's authentication and encryption as described in claim 1, which is characterized in that the densification network Closing includes Industry Control firewall box.
6. a kind of system of industrial user's authentication and encryption characterized by comprising described in claim any one of 1-5 Client, certificate server, encryption gateway and opc server;
The client includes: read module, authentication module, encrypting module, package module and transmission module, the read module For reading the user certificate in electron key, the first hardware characteristics code information;The authentication module is for comparing the first hardware Second hardware characteristics code of condition code and subscriber terminal equipment;The encrypting module is for carrying out at encryption industry control command information Reason, the industry control command information encrypted;The package module is used to carry out tunnel envelope to the industry control command information of the encryption Dress processing, obtains data packet;The transmission module is used to the data packet being transferred to encryption gateway;
In addition, client software integrate industry control protocol engine, only the data packet of industrial control protocols just carries out safety encryption with Data encapsulation, other data guarantee that the data for being transferred to server end only have the data packet of industrial control protocols not into tunnel, and And Encryption Algorithm uses national secret algorithm;
The certificate server is for verifying user certificate legitimacy;
The encryption gateway for the data packet is unpacked, decryption processing, the industry control command information decrypted;This Outside, the encryption gateway is also used to be filtered processing to the industry control command information of the decryption;
The opc server receives the industry control command information of the decryption, and is executed according to the industry control command information of the decryption Relevant operation.
7. a kind of system of industrial user's authentication and encryption as claimed in claim 6, which is characterized in that the certification clothes Business device includes OCSP certificate server and ldap authentication server.
8. a kind of system of industrial user's authentication and encryption as claimed in claim 6, which is characterized in that the densification network Closing includes Industry Control firewall box.
CN201610647319.2A 2016-08-09 2016-08-09 A kind of method and system of industrial user's authentication and encryption Active CN106100836B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610647319.2A CN106100836B (en) 2016-08-09 2016-08-09 A kind of method and system of industrial user's authentication and encryption

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610647319.2A CN106100836B (en) 2016-08-09 2016-08-09 A kind of method and system of industrial user's authentication and encryption

Publications (2)

Publication Number Publication Date
CN106100836A CN106100836A (en) 2016-11-09
CN106100836B true CN106100836B (en) 2019-02-12

Family

ID=57456014

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610647319.2A Active CN106100836B (en) 2016-08-09 2016-08-09 A kind of method and system of industrial user's authentication and encryption

Country Status (1)

Country Link
CN (1) CN106100836B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107508852A (en) * 2017-07-07 2017-12-22 杰为软件系统(深圳)有限公司 A kind of industrial control equipment identification and management system and method based on Internet of Things
CN108076051A (en) * 2017-11-16 2018-05-25 北京润信恒达科技有限公司 A kind of internet of things equipment means of defence and device
CN109214221A (en) * 2018-08-23 2019-01-15 武汉普利商用机器有限公司 A kind of identity card reader verification method, host computer and identity card reader
CN110502909B (en) * 2019-08-06 2021-06-01 北京北信源软件股份有限公司 File encryption method and device and file decryption method and device
CN112731897B (en) * 2021-04-06 2021-06-22 浙江中控技术股份有限公司 Industrial control system communication method and system based on tunnel encryption and decryption

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101247391B (en) * 2007-12-28 2013-03-06 上海电力学院 OPC safety proxy system and proxy method thereof
CN201266949Y (en) * 2008-09-10 2009-07-01 北京科东电力控制系统有限责任公司 System for implementing digital certificate identification verification and sensitive data encipher
CN104268742A (en) * 2014-10-20 2015-01-07 陕西万宇电子信息科技有限公司 Official seal fake detection method and device based on network digital certificate and network lookup
CN104460657B (en) * 2014-11-14 2017-09-19 北京网御星云信息技术有限公司 A kind of method for realizing industrial control system movement O&M protection, apparatus and system
CN105243314B (en) * 2015-09-14 2018-01-02 成都金安卓创科技有限公司 A kind of security system and its application method based on USB key

Also Published As

Publication number Publication date
CN106100836A (en) 2016-11-09

Similar Documents

Publication Publication Date Title
CN106100836B (en) A kind of method and system of industrial user's authentication and encryption
JP6941146B2 (en) Data security service
CN106452782B (en) Method and system for generating secure communication channel for terminal device
CN108684041B (en) System and method for login authentication
EP2442204B1 (en) System and method for privilege delegation and control
JP2005196776A (en) Safe data communication method and its system between communication terminal and communication equipment
CN105162797B (en) A kind of mutual authentication method based on video monitoring system
CN105027493A (en) Secure mobile app connection bus
CA2899027C (en) Data security service
CN106888084B (en) Quantum fort machine system and authentication method thereof
CN106789024B (en) A kind of remote de-locking method, device and system
CN105872848B (en) A kind of credible mutual authentication method suitable for asymmetric resource environment
CN101661599A (en) Method for authenticating validity of self-contained software of equipment system
CN106027251A (en) Identity card reading terminal and cloud authentication platform data transmission method and system
CN108881304A (en) A kind of pair of internet of things equipment carries out the method and system of safety management
CN109088848A (en) A kind of intelligent network connection automobile information method for security protection
CN109361668A (en) A kind of data trusted transmission method
CN109787988A (en) A kind of identity reinforces certification and method for authenticating and device
CN109474431A (en) Client certificate method and computer readable storage medium
CN111080858A (en) Bluetooth key logout method and device
CN111224965A (en) Information interaction method and device
CN109462572B (en) Multi-factor authentication method, system, storage medium and security gateway based on encryption card and UsbKey
CN110929231A (en) Digital asset authorization method and device and server
CN106027473A (en) Identity card reading terminal and cloud authentication platform data transmission method and system
CN208400132U (en) A kind of Multi-domain security access terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant