CN106612180B - 实现会话标识同步的方法及装置 - Google Patents

实现会话标识同步的方法及装置 Download PDF

Info

Publication number
CN106612180B
CN106612180B CN201510702527.3A CN201510702527A CN106612180B CN 106612180 B CN106612180 B CN 106612180B CN 201510702527 A CN201510702527 A CN 201510702527A CN 106612180 B CN106612180 B CN 106612180B
Authority
CN
China
Prior art keywords
terminal
server
session identifier
module
application program
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201510702527.3A
Other languages
English (en)
Chinese (zh)
Other versions
CN106612180A (zh
Inventor
方强
段超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Alibaba Group Holding Ltd
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Priority to CN201510702527.3A priority Critical patent/CN106612180B/zh
Priority to PCT/CN2016/102323 priority patent/WO2017071496A1/zh
Priority to KR1020187011624A priority patent/KR102689195B1/ko
Priority to EP16858931.5A priority patent/EP3373510B1/en
Priority to JP2018521402A priority patent/JP6921066B2/ja
Publication of CN106612180A publication Critical patent/CN106612180A/zh
Priority to US15/963,028 priority patent/US10719602B2/en
Application granted granted Critical
Publication of CN106612180B publication Critical patent/CN106612180B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/146Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Theoretical Computer Science (AREA)
  • Power Engineering (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Medical Informatics (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)
CN201510702527.3A 2015-10-26 2015-10-26 实现会话标识同步的方法及装置 Active CN106612180B (zh)

Priority Applications (6)

Application Number Priority Date Filing Date Title
CN201510702527.3A CN106612180B (zh) 2015-10-26 2015-10-26 实现会话标识同步的方法及装置
PCT/CN2016/102323 WO2017071496A1 (zh) 2015-10-26 2016-10-18 实现会话标识同步的方法及装置
KR1020187011624A KR102689195B1 (ko) 2015-10-26 2016-10-18 세션 식별자 동기화를 실현하는 방법 및 장치
EP16858931.5A EP3373510B1 (en) 2015-10-26 2016-10-18 Method and device for realizing session identifier synchronization
JP2018521402A JP6921066B2 (ja) 2015-10-26 2016-10-18 セッション識別子同期を実現する方法及びデバイス
US15/963,028 US10719602B2 (en) 2015-10-26 2018-04-25 Method and device for realizing session identifier synchronization

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510702527.3A CN106612180B (zh) 2015-10-26 2015-10-26 实现会话标识同步的方法及装置

Publications (2)

Publication Number Publication Date
CN106612180A CN106612180A (zh) 2017-05-03
CN106612180B true CN106612180B (zh) 2020-06-09

Family

ID=58612861

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510702527.3A Active CN106612180B (zh) 2015-10-26 2015-10-26 实现会话标识同步的方法及装置

Country Status (6)

Country Link
US (1) US10719602B2 (enExample)
EP (1) EP3373510B1 (enExample)
JP (1) JP6921066B2 (enExample)
KR (1) KR102689195B1 (enExample)
CN (1) CN106612180B (enExample)
WO (1) WO2017071496A1 (enExample)

Families Citing this family (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10218698B2 (en) * 2015-10-29 2019-02-26 Verizon Patent And Licensing Inc. Using a mobile device number (MDN) service in multifactor authentication
US11218319B2 (en) * 2017-02-22 2022-01-04 Fingerprint Cards Anacatum Ip Ab Biometrics-based remote login
US11144620B2 (en) * 2018-06-26 2021-10-12 Counseling and Development, Inc. Systems and methods for establishing connections in a network following secure verification of interested parties
CN110851526B (zh) * 2018-08-02 2023-04-11 阿里巴巴集团控股有限公司 数据同步方法、装置及系统
CN111181900B (zh) * 2018-11-13 2022-04-22 深圳光启高等理工研究院 一种数据报文发送和接收方法、存储介质及处理器
US10389708B1 (en) * 2019-01-03 2019-08-20 Capital One Services, Llc Secure authentication of a user associated with communication with a service representative
CN112291182B (zh) * 2019-07-23 2022-06-21 腾讯科技(深圳)有限公司 保持用户账户登录态的方法、装置、电子设备及存储介质
WO2021061942A1 (en) 2019-09-25 2021-04-01 Valimail, Inc. Centralized session key issuance and rotation
CN110912901A (zh) * 2019-11-27 2020-03-24 中国银行股份有限公司 应用登录验证方法、装置及系统
CN111327675B (zh) * 2020-01-19 2022-05-17 支付宝实验室(新加坡)有限公司 会话建立方法、跨境支付方法、装置及系统
US11030299B1 (en) * 2020-01-27 2021-06-08 Capital One Services, Llc Systems and methods for password managers
CN111581616B (zh) * 2020-05-11 2023-05-12 青岛聚好联科技有限公司 一种多端登录控制的方法及装置
CN111814133A (zh) * 2020-05-27 2020-10-23 平安国际智慧城市科技股份有限公司 移动应用统一登录方法及装置
CN112260997B (zh) * 2020-09-23 2023-05-26 曙光信息产业(北京)有限公司 数据访问方法、装置、计算机设备和存储介质
US10972436B1 (en) * 2020-10-24 2021-04-06 360 It, Uab System and method for session affinity in proxy media routing
CN114697055B (zh) * 2020-12-28 2024-07-16 中国移动通信集团终端有限公司 一种业务访问的方法、装置、设备及系统
CN113051585B (zh) * 2021-03-10 2022-05-13 宁波小遛共享信息科技有限公司 一种数据校验方法、装置、电子设备和存储介质
CN112965955B (zh) * 2021-03-17 2024-01-12 北京奇艺世纪科技有限公司 数据迁移方法、装置、计算机设备和存储介质
AU2021461303A1 (en) * 2021-08-25 2024-03-07 Xero Limited Systems and methods for managing access credential requests
CN114697084B (zh) * 2022-03-14 2024-03-26 浙江大豪科技有限公司 缝纫设备数据访问方法
CN114866335A (zh) * 2022-06-09 2022-08-05 三星电子(中国)研发中心 密码同步方法以及用于密码同步的电子设备和服务器
CN115733672B (zh) * 2022-11-03 2024-08-27 支付宝(杭州)信息技术有限公司 数据处理方法、装置及设备
CN116150731B (zh) * 2022-11-28 2023-09-15 深圳市富临通实业股份有限公司 一种基于uid的mcu内部程序防抄袭的方法
CN116566662A (zh) * 2023-04-24 2023-08-08 北京邮电大学 通信网络的身份认证方法、会话加密方法及相关设备
CN117909957B (zh) * 2023-12-18 2024-07-19 海南榕树家信息科技有限公司 登录请求处理方法、装置、电子设备和计算机可读介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101316169A (zh) * 2008-07-18 2008-12-03 张曌 基于互联网第三方生物特征验证的网络身份验证方法
CN101583112A (zh) * 2008-08-12 2009-11-18 中兴通讯股份有限公司 会话信息的标识方法及装置
CN102469074A (zh) * 2010-11-03 2012-05-23 腾讯科技(深圳)有限公司 一种网站的访问方法和系统
CN102882903A (zh) * 2011-07-12 2013-01-16 腾讯科技(深圳)有限公司 一种多网站应用信息获取方法及系统
CN103618604A (zh) * 2013-11-26 2014-03-05 中国联合网络通信集团有限公司 身份认证方法及系统

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6609198B1 (en) * 1999-08-05 2003-08-19 Sun Microsystems, Inc. Log-on service providing credential level change without loss of session continuity
JP4863777B2 (ja) * 2006-06-07 2012-01-25 富士通株式会社 通信処理方法及びコンピュータ・システム
US8365245B2 (en) * 2008-02-19 2013-01-29 International Business Machines Corporation Previous password based authentication
CN101594350A (zh) * 2008-05-26 2009-12-02 鸿富锦精密工业(深圳)有限公司 电子邮箱密码验证系统及方法
US8973113B1 (en) * 2010-04-15 2015-03-03 Crimson Corporation Systems and methods for automatically resetting a password
JP5613596B2 (ja) * 2011-03-08 2014-10-29 Kddi株式会社 認証システム、端末装置、認証サーバ、およびプログラム
US9166969B2 (en) * 2012-12-06 2015-10-20 Cisco Technology, Inc. Session certificates
US9098687B2 (en) * 2013-05-03 2015-08-04 Citrix Systems, Inc. User and device authentication in enterprise systems
WO2014190542A1 (zh) * 2013-05-31 2014-12-04 华为技术有限公司 转账信息处理方法及设备
US10491580B2 (en) * 2014-06-23 2019-11-26 Telefonaktiebolaget Lm Ericsson (Publ) Methods and apparatuses for enabling an establishment of a second secure session over a communication network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101316169A (zh) * 2008-07-18 2008-12-03 张曌 基于互联网第三方生物特征验证的网络身份验证方法
CN101583112A (zh) * 2008-08-12 2009-11-18 中兴通讯股份有限公司 会话信息的标识方法及装置
CN102469074A (zh) * 2010-11-03 2012-05-23 腾讯科技(深圳)有限公司 一种网站的访问方法和系统
CN102882903A (zh) * 2011-07-12 2013-01-16 腾讯科技(深圳)有限公司 一种多网站应用信息获取方法及系统
CN103618604A (zh) * 2013-11-26 2014-03-05 中国联合网络通信集团有限公司 身份认证方法及系统

Also Published As

Publication number Publication date
WO2017071496A1 (zh) 2017-05-04
EP3373510A4 (en) 2019-06-26
JP2019502189A (ja) 2019-01-24
JP6921066B2 (ja) 2021-08-18
CN106612180A (zh) 2017-05-03
US20180247049A1 (en) 2018-08-30
KR102689195B1 (ko) 2024-07-29
EP3373510B1 (en) 2021-08-04
KR20180075513A (ko) 2018-07-04
US10719602B2 (en) 2020-07-21
EP3373510A1 (en) 2018-09-12

Similar Documents

Publication Publication Date Title
CN106612180B (zh) 实现会话标识同步的方法及装置
CN108768664B (zh) 密钥管理方法、装置、系统、存储介质和计算机设备
US10797879B2 (en) Methods and systems to facilitate authentication of a user
KR102514429B1 (ko) 생체인식 데이터 템플레이트의 업데이트
CN110990827A (zh) 一种身份信息验证方法、服务器及存储介质
WO2007094165A1 (ja) 本人確認システムおよびプログラム、並びに、本人確認方法
CN105915338B (zh) 生成密钥的方法和系统
CN101777983B (zh) 交易签名方法、认证服务器及系统
CN107920052B (zh) 一种加密方法及智能装置
EP2628133B1 (en) Authenticate a fingerprint image
EP3206329B1 (en) Security check method, device, terminal and server
CN113472793A (zh) 一种基于硬件密码设备的个人数据保护系统
JP2019506789A (ja) パスコード検証のためのフォワードセキュア型暗号技術を使用した方法、システム、及び装置。
CN110941809A (zh) 文件加解密方法、装置、指纹密码装置及可读存储介质
CN115834077B (zh) 控制方法、控制系统、电子设备及存储介质
CN114070571B (zh) 一种建立连接的方法、装置、终端及存储介质
US8806216B2 (en) Implementation process for the use of cryptographic data of a user stored in a data base
CN110868415A (zh) 远程身份验证方法及装置
CN108900595B (zh) 访问云存储服务器数据的方法、装置、设备及计算介质
CN109891823A (zh) 凭证加密
CN116866093B (zh) 身份认证方法、身份认证设备以及可读存储介质
CN110445774B (zh) IoT设备的安全防护方法、装置及设备
TWI746504B (zh) 實現會話標識同步的方法及裝置
Kumari et al. Hacking resistance protocol for securing passwords using personal device
EP4485237A1 (en) Method for securely verifying a password dedicated to a client application on a client device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant