CN106656952A - Authentication method, device and system for registration equipment - Google Patents

Authentication method, device and system for registration equipment Download PDF

Info

Publication number
CN106656952A
CN106656952A CN201610839700.9A CN201610839700A CN106656952A CN 106656952 A CN106656952 A CN 106656952A CN 201610839700 A CN201610839700 A CN 201610839700A CN 106656952 A CN106656952 A CN 106656952A
Authority
CN
China
Prior art keywords
authentication
network device
identification information
intermediary network
equipment identification
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610839700.9A
Other languages
Chinese (zh)
Other versions
CN106656952B (en
Inventor
高峰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nsfocus Technologies Inc
Nsfocus Technologies Group Co Ltd
Original Assignee
NSFOCUS Information Technology Co Ltd
Beijing NSFocus Information Security Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by NSFOCUS Information Technology Co Ltd, Beijing NSFocus Information Security Technology Co Ltd filed Critical NSFOCUS Information Technology Co Ltd
Priority to CN201610839700.9A priority Critical patent/CN106656952B/en
Publication of CN106656952A publication Critical patent/CN106656952A/en
Application granted granted Critical
Publication of CN106656952B publication Critical patent/CN106656952B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses an authentication method, device and system for registration equipment. The method comprises steps of sending a first identity verification request to a cloud management platform for registration authentication, wherein the first identity verification request carries equipment identification information; receiving an identity verification result sent by the cloud management platform, wherein the identity verification result is obtained in a way that after receiving the first identity verification request, the cloud management platform sends a second identity verification request to a client registering a corresponding cloud account according to the cloud account information corresponding to the equipment identity information, wherein the second identity verification request comprises a fingerprint verification request; and carrying out registration authentication to the user according to the identity verification result. After the registration authentication to the user is successful, the user achieve configuration of the intermediate network equipment without the password, so that the user does not need to remember the complicated password, and the safety of the configuration of the intermediate network equipment is ensured at the same time.

Description

A kind of authentication method of logging device, device and system
Technical field
The present invention relates to internet security technical field, more particularly to a kind of authentication method of logging device, device and it is System.
Background technology
Along with the development of Internet technology, internet security problem is also increasingly paid close attention to by people, network security Attendant ensures the safety of network by increasing various intermediary network devices such as fire wall, enables a user to more Plus safely with network.In actual application, it is allowed to which user is using clients such as browsers to go-betweens such as fire walls Equipment is configured, and before configuration, in order to ensure the safety that intermediary network device is used, user is being first logged into such as 1a institutes Password can be modified behind the interface for showing, afterwards user is carried out related using user name and amended password entry device Configuration.Username and password length has certain restriction, and password arranges too short, too simple, is easily cracked, and password sets The complexity put is higher, and safety is higher, and user usually can be close using upper and lower case letter, the combined composition of numbers and symbols Code, such as Acf46898ab&#11, password complexity is higher, and the memory tape of user is greatly challenged, on the other hand, due to simultaneously It is not to be required for daily that intermediary network device is carried out configuring to cause the cycle of User logs in intermediary network device longer, usual one Need only sign on for several times in year, therefore, user is easier the password for forgetting to log in the intermediary network device.And, user name and Password is easily stolen when by input through keyboard by the malicious code in terminal unit, matches somebody with somebody so as to reduce intermediary network device The safety put.
To sum up, in order to avoid because of password leakage or personal key leakage of private information (such as personal finger print information) institute's band The generation of the unsafe problems come, while and the burden of the complicated password of user's memory can be mitigated, it is right how conveniently and efficiently to realize The certification of logging device is a problem demanding prompt solution.
The content of the invention
A kind of authentication method of logging device provided in an embodiment of the present invention, device and system, to solve prior art Present in logging device verification process in, the burden weight of the complicated password of user's memory and because password is revealed or personal is closed The unsafe problems that key leakage of private information (such as personal finger print information) is brought.
The embodiment of the present invention provides a kind of authentication method of intermediary network device side logging device, including:
When login authentication is carried out, the first authentication request is sent to cloud management platform, first authentication please Equipment identification information is carried in asking;
The authentication result that cloud management platform sends is received, the authentication result is connecing for the cloud management platform After receiving first authentication request, according to the corresponding cloud account of the equipment identification information, to the corresponding cloud of login The client of account number sends what the second authentication request was obtained, wherein, the cloud account is the cloud management platform root Find from the corresponding relation between the cloud account and equipment identification information of storage according to the equipment identification information, institute State the second authentication request to ask including fingerprint authentication;
Login authentication is carried out to the user according to the authentication result.
The embodiment of the present invention provides a kind of authentication method of cloud management platform side logging device, including:
During intermediary network device is logged in, the first authentication for receiving the intermediary network device transmission please Ask, the equipment identification information of the intermediary network device is carried in first authentication request;
According to the corresponding cloud account of the equipment identification information, to the client for logging in corresponding cloud account number second is sent Authentication request, wherein, the cloud account be according to the equipment identification information from storage cloud account with set Find in corresponding relation between standby identification information, second authentication request is asked including fingerprint authentication;
Receive the authentication result that the client is returned;
The authentication result for receiving is returned to the intermediary network device, the authentication result is used to indicate institute State intermediary network device carries out login authentication to the user.
The embodiment of the present invention provides a kind of authentication device of intermediary network device side logging device, including:
Transmitting element, for when login authentication is carried out, to cloud management platform the first authentication request is sent, and described the Equipment identification information is carried in one authentication request;
Receiving unit, for receiving the authentication result of cloud management platform transmission, the authentication result is described Cloud management platform is believed after first authentication request is received according to the corresponding cloud account number of the equipment identification information Breath, sends what the second authentication request was obtained to the client for logging in corresponding cloud account number, wherein, the cloud account is institute Cloud management platform is stated according to the equipment identification information from the corresponding pass between the cloud account and equipment identification information of storage Find in system, second authentication request is asked including fingerprint authentication;
Authentication ' unit, for carrying out login authentication to the user according to the authentication result.
The embodiment of the present invention provides a kind of authentication device of cloud management platform side logging device, including:
First receiving unit, sends for during intermediary network device is logged in, receiving the intermediary network device The first authentication request, carry in first authentication request intermediary network device device identification letter Breath;
First transmitting element, for according to the corresponding cloud account of the equipment identification information, to the corresponding cloud account of login Number client send the second authentication request, wherein, the cloud account is from depositing according to the equipment identification information Find in corresponding relation between the cloud account of storage and equipment identification information, second authentication request includes Fingerprint authentication is asked;
Second receiving unit, for receiving the authentication result that the client is returned;
Second transmitting element, for returning the authentication result for receiving, the identity to the intermediary network device The result is used to indicate that the intermediary network device carries out login authentication to the user.
The embodiment of the present invention provides a kind of Verification System of logging device, including cloud management platform, intermediary network device and Mobile terminal, wherein:
The intermediary network device, for when login authentication is carried out, sending the first authentication to cloud management platform please Ask, the equipment identification information of the intermediary network device is carried in first authentication request;And the reception cloud The authentication result that management platform is returned, login authentication is carried out according to the authentication result to the user;
The cloud management platform, for according to the corresponding cloud account of the equipment identification information, to the corresponding cloud of login The client of account number sends the second authentication request, wherein, the cloud account be according to the equipment identification information from Find in corresponding relation between the cloud account of storage and equipment identification information, the second authentication request bag Include fingerprint authentication request;And the authentication result that the reception client is returned;
The client is installed, the client is used to receive second authentication in the mobile terminal After request, to the mobile terminal fingerprint authentication is initiated;The mobile terminal is used to obtain the finger print information of the user and goes forward side by side Row checking is obtained after authentication result, and the authentication result is sent to the cloud management platform by the client.
Beneficial effects of the present invention:
The authentication method of logging device provided in an embodiment of the present invention, device and system, first, intermediary network device is connecing Receive when carrying out login authentication, to cloud management platform the first authentication request is sent, take in first authentication request With equipment identification information;The cloud management platform is receiving the first authentication request that the intermediary network device sends Afterwards, according to the corresponding cloud account of equipment identification information carried in first authentication request, to the corresponding cloud of login The client of account number sends the second authentication request, wherein, the cloud account be according to the equipment identification information from Find in corresponding relation between the cloud account of storage and equipment identification information, the second authentication request bag Include fingerprint authentication request;The client is installed in the terminal, for after second authentication request is received, Fingerprint authentication is initiated to the mobile terminal;The mobile terminal is used to obtain the finger print information of the user and carry out verifying To after authentication result, the authentication result, the cloud pipe are sent to the cloud management platform by the client Platform returns the body for receiving to the intermediary network device after the authentication result that the client is returned is received Part the result, after the authentication result that the intermediary network device receives the transmission of cloud management platform, to the user Login authentication is carried out, using user log-in authentication method provided in an embodiment of the present invention so that user is without the need for being input into again complicated difficult The password of memory, while it also avoid because password reveals brought intermediary network device configuration unsafe problems.
In the second authentication process itself, due to whole checking flow process all in the terminal, so personal key privacy Where information fingerprint will not be sent to beyond mobile terminal, including cloud management center and intermediary network device, so both protect The verity of subscriber authentication is demonstrate,proved, while in turn ensure that the confidentiality of personal finger print information, it is to avoid because individual privacy The various severe safety problems that information leakage is brought.
Other features and advantages of the present invention will be illustrated in the following description, also, the partly change from description Obtain it is clear that or being understood by implementing the present invention.The purpose of the present invention and other advantages can be by the explanations write Specifically noted structure is realizing and obtain in book, claims and accompanying drawing.
Description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes the part of the present invention, this Bright schematic description and description does not constitute inappropriate limitation of the present invention for explaining the present invention.In the accompanying drawings:
Fig. 1 a are the login interface of the browser logging device for carrying out login authentication in prior art to user;
Fig. 1 b are the application scenarios schematic diagram of the authentication method of logging device provided in an embodiment of the present invention;
Fig. 2 a are the structural representation of the Verification System of logging device provided in an embodiment of the present invention;
Fig. 2 b are the execution identifying procedure schematic diagram of the Verification System of logging device provided in an embodiment of the present invention;
Fig. 2 c set up corresponding between cloud account and equipment identification information closing for cloud management platform provided in an embodiment of the present invention The implementation process diagram of system;
Fig. 3 is that the implementing procedure of the authentication method of intermediary network device side provided in an embodiment of the present invention logging device is illustrated Figure;
Fig. 4 is that the implementing procedure of the authentication method of cloud management platform side logging device provided in an embodiment of the present invention is illustrated Figure;
Fig. 5 is the structural representation of the authentication device of intermediary network device side provided in an embodiment of the present invention logging device;
Fig. 6 is the structural representation of the authentication device of cloud management platform side logging device provided in an embodiment of the present invention.
Specific embodiment
The authentication method of logging device provided in an embodiment of the present invention, device and system, in logging device, user need not The password of complicated difficult memory is again input, is capable of achieving to pass through user log-in authentication using the fingerprint of user, it is to avoid because of password Reveal brought intermediary network device configuration unsafe problems.
The preferred embodiments of the present invention are illustrated below in conjunction with Figure of description, it will be appreciated that described herein Preferred embodiment is merely to illustrate and explains the present invention, is not intended to limit the present invention, and in the case where not conflicting, this The feature in embodiment and embodiment in bright can be mutually combined.
With reference to Fig. 1 b, it is the application scenarios schematic diagram of the authentication method of logging device in the present invention, including user 10, eventually End 11 and mobile terminal 12, intermediary network device 13 and cloud management platform 14, wherein terminal 11 and mobile terminal 12 and cloud management Platform 14 is set up by the Internet and is communicated to connect.
In the embodiment of the present invention, user 10 can first registration obtains cloud account on cloud management platform 14, obtains cloud account number Afterwards, user 10 logs in intermediary network device by the client installed in terminal 11 or mobile terminal 12 using username and password 13, wherein, client can be the browser of webpage, or mobile terminal 12 is installed on, such as mobile phone, in panel computer etc. Client, after logining successfully, by the Internet to cloud management platform 14 send bind request, carry in the bind request The equipment identification information and cloud account information of the intermediary network device 13, wherein the cloud account information is provided for the user 10 To cloud management platform 14, cloud management platform 14 is after the bind request is received, you can set up what is carried in the bind request Corresponding relation between the equipment identification information and cloud account information of intermediary network device 13, and store and cloud management platform 14 In.
After having bound cloud account and equipment identification information, intermediary network device 13 is in user 10 by being installed on end When browser or the client that is installed in mobile terminal 12 in end 11 carries out login authentication, to cloud management platform 14 the is sent One authentication request, wherein, user can send the first identity and test using WEB modes by terminal 11 to cloud management platform 14 Card request.Cloud management platform 14 is carried after first authentication request is received according in first authentication request The intermediary network device 13 equipment identification information from storage cloud account information and equipment identification information between it is corresponding Cloud account information corresponding with the equipment identification information of the intermediary network device 13 is found in relation, then to the login cloud account The client of number information sends the second authentication request, and second authentication request includes fingerprint authentication request, wherein, The client is installed in mobile terminal 12, and client is whole to the movement after second authentication request is received Fingerprint authentication is initiated at end 12, and user 10 carries out fingerprint identification on the interface of mobile terminal 12, and mobile terminal 12 is entered according to user 10 Capable fingerprint identification obtains the finger print information of user 10, and to obtaining from the finger print information storehouse being stored in advance in mobile terminal 12 The finger print information of the user 10 for taking verified, obtains authentication result, and by the client to cloud management platform 14 Send the authentication result, cloud management platform 14 receives the authentication result that the client is returned, and by the authentication As a result intermediary network device 13 is sent to, intermediary network device 13 carries out login and recognizes according to the authentication result to user 10 Card.
Specifically, intermediary network device 13 to cloud management platform 14 send the first authentication request when, described first The equipment identification information of the intermediary network device carried in authentication request is uniquely to identify in a network Intermediary network device 13, it can be IP (Internet Protocol, the Internet protocol) address of intermediary network device 13, Can also be some characteristic informations (such as the MAC Address of intermediary network device) of intermediary network device 13, in can also being utilization Between some characteristic informations of the network equipment 13 be calculated using certain computation rule, as long as ensure that the device identification exists It is unique in network.
It should be noted that can be, but not limited between terminal 11 and cloud management platform 14 using in following host-host protocol Any one:HTTP (Hypertext transfer protocol, HTML (Hypertext Markup Language)), FTP (File Transfer Protocol, file transfer protocol (FTP)), P2P (Peer to Peer, peer-to-peer network), P2SP (Peer to Server&Peer, point To server and point) etc..
Terminal 11 can be traditional PC (Personal Computer, PC) machine;Mobile terminal 12 can be as The mobile terminal devices such as mobile phone, panel computer, the embodiment of the present invention is not defined to this.
With reference to the application scenarios of Fig. 1 b, stepping on according to exemplary embodiment of the invention is described with reference to Fig. 2 a- Fig. 6 The authentication method of recording apparatus.It should be noted that above-mentioned application scenarios are for only for ease of and understand spirit and principles of the present invention And illustrate, embodiments of the present invention are unrestricted in this regard.Conversely, embodiments of the present invention can apply to fit Any scene.
Embodiment one,
As shown in Figure 2 a, be logging device provided in an embodiment of the present invention Verification System structural representation, including shifting Dynamic terminal 12, intermediary network device 13 and cloud management platform 14, wherein:
The intermediary network device 13, for when login authentication is carried out, sending the first identity to cloud management platform 14 and testing Card request, carries the equipment identification information of the intermediary network device in first authentication request;And reception institute The authentication result of cloud management platform return is stated, login authentication is carried out to the user according to the authentication result;
The cloud management platform 14, it is corresponding to logging in for according to the corresponding cloud account of the equipment identification information The client of cloud account number sends the second authentication request, wherein, the cloud account is according to the equipment identification information Find from the corresponding relation between the cloud account and equipment identification information of storage, second authentication request Including fingerprint authentication request;And the authentication result that the reception client is returned;
The client is installed, the client is used to test receiving second identity in the mobile terminal 12 After card request, to the mobile terminal 12 fingerprint authentication is initiated;The mobile terminal 12 is used to obtain the fingerprint letter of the user Cease and carry out checking to obtain after authentication result, the identity is sent to the cloud management platform 14 by the client and is tested Card result.
When being embodied as, system provided in an embodiment of the present invention can complete login and set according to the implementation procedure shown in Fig. 2 b Standby certification, the implementation procedure may comprise steps of:
S21, intermediary network device 13 receive the certification request of logging device.
When being embodied as, after login authentication request is received, intermediary network device 13 can pass through intermediary network device 13 Browser or client present to the corresponding configured information of user, and the configured information is used for instruction user using chartered cloud account Number information logs in cloud management platform 14 by the client in mobile terminal 12, such as the cloud account information of the user can for " Three ", user just can log in cloud management platform 14 with Zhang San, and for convenience, the embodiment of the present invention is with the cloud account of user Information is to illustrate as a example by " Zhang San ".
S22, intermediary network device 13 to cloud management platform 14 sends the first authentication request, first authentication Equipment identification information is carried in request.
When being embodied as, user was needed by carrying out login authentication, user before configuring to intermediary network device The input equipment account information on the login interface shown in similar Fig. 1 a is needed, it is accordingly close that prior art also needs to user input Code, and embodiment of the present invention user need to only be input into the equipment account information, user clicks on login button, and triggering authentication is asked, in Between the network equipment receive user triggering certification request after, to cloud management platform send the first authentication request, wherein First authentication request carries equipment identification information, waits cloud management platform to perform subsequent operation.
It is preferred that the equipment identification information can be, but not limited to include following at least one information:Equipment account, IP address, equipment eigenvalue etc., it should be noted that the equipment account information is user's sets itself, the equipment is special Value indicative can be the MAC Address of intermediary network device, or other are used for the feature of the unique mark intermediary network device Value, the present invention is not defined to this.
It is preferred that in order to prevent multiple users all using same equipment account information, causing intermediary network device to respond Multiple equipment account information identical customer problem, can also carry the first identifying code in first authentication request, use In further verifying to User logs in, wherein first identifying code can be that intermediary network device is generated using random algorithm Random code, it can be any several random digits, or other forms, the embodiment of the present invention is not limited this It is fixed.
S23, cloud management platform 14 according to the corresponding cloud account information of equipment identification information that intermediary network device 13 sends, The second authentication request is sent to the client for logging in corresponding cloud account, the authentication request please including fingerprint authentication Ask.
Specifically, cloud management platform 14 receive intermediary network device 13 transmission the first authentication request after, root According to the equipment identification information carried in first authentication request, from the cloud account information that is stored in cloud management platform 14 with The corresponding cloud account letter of the equipment identification information of intermediary network device 13 is found in corresponding relation between equipment identification information Breath, such as " Zhang San ", then cloud management platform 14 can send the second authentication request to the client for logging in cloud account " Zhang San ", Wherein second authentication request can be asked for fingerprint authentication, additionally, logging in cloud management platform 14 using Zhang San's cloud account Client be installed in mobile terminal 12.If carrying the first identifying code in the first authentication request, cloud management is put down Platform 14 can carry first identifying code in the second authentication request.
It should be noted that during being authenticated to User logs in equipment, cloud management platform 14 need to be according to Fig. 2 c institutes The corresponding relation that the flow process shown is set up between cloud account information and facility information, may comprise steps of:
S231, the bind request for receiving intermediary network device or the transmission of the client on mobile terminal, the bind request In carry the equipment identification information and cloud account of intermediary network device.
When being embodied as, cloud management platform 14 is searched and it in the equipment identification information sent according to intermediary network device 13 Before corresponding cloud account information, need to set up between the equipment identification information of each intermediary network device 13 and cloud account information Corresponding relation, because each intermediary network device 13 can be with its equipment identification information unique mark.Cloud management platform 14 exists After receiving the bind request that intermediary network device 13 or the client in mobile terminal 12 send, using taking in the bind request The device identification of the intermediary network device 13 of band and cloud account information, you can set up equipment identification information and cloud account information it Between corresponding relation, and be stored in cloud management platform 14.
Further, cloud management platform 14 receive intermediary network device 13 transmission the first authentication request after, Using the equipment identification information of the intermediary network device 13 carried in first authentication request, can put down from cloud management is stored in The cloud account corresponding with the equipment identification information is found in corresponding relation between the cloud account and equipment identification information of platform 14 Number information.
S232, the corresponding relation set up between the equipment identification information and cloud account carried in the bind request.
Cloud management platform 14 please in the binding that the client for receiving intermediary network device 13 or in mobile terminal 12 sends Device identification and cloud account information after asking, using the intermediary network device 13 carried in the bind request, you can foundation sets Standby corresponding relation between identification information and cloud account information, and be stored in cloud management platform 14.
Further, cloud management platform 14 receive intermediary network device 13 transmission the first authentication request after, Using the equipment identification information of the intermediary network device 13 carried in first authentication request, can put down from cloud management is stored in The cloud account corresponding with the equipment identification information is found in corresponding relation between the cloud account and equipment identification information of platform 14 Number information.
S24, the client in mobile terminal 12 to mobile terminal 12 initiates fingerprint authentication request.
Client is received after the fingerprint authentication request of the transmission of cloud management platform 14, and to mobile terminal 12 fingerprint authentication is initiated Request, mobile terminal 12 is received after the fingerprint authentication request, points out user corresponding in mobile terminal using its default fingerprint Place's scanning fingerprint, after scanning input fingerprint, mobile terminal 12 obtains the finger print information of user, and utilization is stored in mobile terminal Finger print information storehouse in 12 is verified to the fingerprint of user, and obtains authentication result, if mobile terminal 12 is to user Fingerprint authentication success, then the authentication result being proved to be successful is returned to into cloud management platform 14 by client, otherwise will The authentication result of authentication failed returns to cloud management platform 14 by client.
When being embodied as, the finger of the validated user typing of the mobile terminal that is stored with the finger print information storehouse of mobile terminal 12 Stricture of vagina information, so, mobile terminal after scanning input fingerprint obtains corresponding finger print information, with the typing in finger print information storehouse Finger print information be compared, if unanimously, can determine the authentication result being proved to be successful, otherwise can determine checking The authentication result of failure.
It is preferred that the authentication result can also carry identifying code, generally, the identifying code should be from the second identity and test The first identifying code obtained in card request, for the ease of description in the embodiment of the present invention, by testing for carrying in authentication result Card code is referred to as the second identifying code.
S25, client receive the authentication result that mobile terminal 12 sends.
S26, client to cloud management platform 14 sends authentication result.
S27, cloud management platform 14 to intermediary network device 13 returns authentication result.
S28, intermediary network device 13 carry out login authentication according to the authentication result for receiving to user.
When being embodied as, intermediary network device 13 is carrying out login authentication according to the authentication result for receiving to user When, if the authentication result confirms to pass through this user log-in authentication to be proved to be successful;If the authentication knot Fruit is authentication failed, then confirm not pass through this user log-in authentication.
If it is preferred that carrying the first identifying code, institute in the first authentication request of the transmission of intermediary network device 13 The authentication result of client return is stated to be proved to be successful, and the second identifying code is also carried in the authentication result, then Before confirmation passes through to user log-in authentication, in addition it is also necessary to judge whether the first identifying code and the second identifying code are identical, if it is determined that Go out the first identifying code and the second identifying code is identical, then confirm to pass through user log-in authentication herein;If it is determined that the first checking Code and the second identifying code are differed, then confirm that user log-in authentication does not pass through, it is to avoid because several users are set using identical Cause some login authentication of intermediary network device 13 to other users to respond for account, improve go-between and set The safety of standby configuration.
After S29, intermediary network device 13 pass through to user log-in authentication, configuration circle of intermediary network device 13 is jumped to Face.
When being embodied as, after intermediary network device 13 passes through to user log-in authentication, can adopt what is refreshed automatically Mode, jumps to the configuration interface of intermediary network device 13, it is also possible to again taps on login page by user, then jumps to The configuration interface of intermediary network device 13, can also can realize successfully jumping to intermediary network device using other certainly The mode of 13 configuration interface, the embodiment of the present invention is not defined to this.
The Verification System of logging device provided in an embodiment of the present invention, intermediary network device is receiving recognizing for logging device During card request, the first authentication request is sent to cloud management platform, cloud management platform is tested according to first identity for receiving The equipment identification information of the intermediary network device in card request, the equipment identification information from storage with cloud management platform and cloud account Corresponding relation before number information finds the corresponding cloud account information of equipment identification information of the intermediary network device, Ran Houxiang The client for logging in the cloud account information sends the second authentication request, and client is received in second authentication request Fingerprint authentication request after, initiate fingerprint authentication to mobile terminal, standby communication terminal obtains the finger print information of user and simultaneously verifies To after authentication result, the authentication result is sent to cloud management platform by client, cloud management platform is again by the body Part the result returns to intermediary network device, and intermediary network device carries out login and recognizes according to the authentication result to user Card, so that user is capable of achieving user log-in authentication success without the need for the complicated password of memory by fingerprint authentication, while keeping away Exempt from because password reveals brought unsafe problems.
Embodiment two,
When being embodied as, the intermediary network device 13 can be completed according to the authentication method of the logging device shown in Fig. 3 Certification to logging device, may comprise steps of:
S31, when login authentication is carried out, to cloud management platform send the first authentication request, the first authentication please Equipment identification information is carried in asking.
The equipment identification information can be, but not limited to include following at least one information:Equipment account, IP address, Equipment eigenvalue etc., it should be noted that the equipment account information is for user's sets itself, the equipment eigenvalue can be with It is the MAC Address of intermediary network device, or other are used for the eigenvalue of the unique mark intermediary network device, the present invention This is not defined.
S32, the authentication result for receiving the transmission of cloud management platform, the authentication result is connecing for cloud management platform After receiving the first authentication request, according to the corresponding cloud account of equipment identification information, to the visitor for logging in corresponding cloud account number Family end sends what the second authentication request was obtained.
When being embodied as, the cloud account information is the cloud management platform according to the equipment identification information from storage Find in corresponding relation between cloud account and equipment identification information, second authentication request includes fingerprint Checking request.
S33, login authentication is carried out to the user according to authentication result.
When being embodied as, the authentication method of the logging device that intermediary network device side performs may be referred to be walked in embodiment one The corresponding implementation procedure of intermediary network device 13 in rapid S21~S29, will not be described here.
The authentication method of the logging device of intermediary network device side provided in an embodiment of the present invention, intermediary network device is connecing After receiving login authentication, the first authentication request is sent to cloud management platform, wherein, take in first authentication request With equipment identification information, respective handling, Ran Houjie are carried out to first authentication request for receiving by cloud management platform The authentication result that cloud management platform sends is received, wherein the authentication result is receiving the first body for cloud management platform After part the result, according to the corresponding cloud account information of the equipment identification information, send out to the client for logging in corresponding cloud account Send what the second authentication result was obtained, in intermediary network device the authentication result is received, the user is stepped on Record certification, so far, it is possible to achieve user exempts from password login intermediary network device, and realizes the configuration to intermediary network device.
Embodiment three,
When being embodied as, the cloud management platform 14 can complete cloud management platform side according to the authentication method shown in Fig. 4 Process to the certification of logging device, may comprise steps of:
S41, log in intermediary network device during, receive intermediary network device send the first authentication please Ask, the equipment identification information of intermediary network device is carried in the first authentication request.
The equipment identification information can be, but not limited to include following at least one information:Equipment account, IP address, Equipment eigenvalue etc., it should be noted that the equipment account information is for user's sets itself, the equipment eigenvalue can be with It is the MAC Address of intermediary network device, or other are used for the eigenvalue of the unique mark intermediary network device, the present invention This is not defined.
S42, according to the corresponding cloud account of the equipment identification information, send to the client for logging in corresponding cloud account number Second authentication request.
When being embodied as, the cloud account be according to the equipment identification information from storage cloud account with set Find in corresponding relation between standby identification information, second authentication request is asked including fingerprint authentication;
Cloud management platform is being searched with from the corresponding relation between the cloud account information and equipment identification information of storage Between the network equipment the corresponding cloud account of device identification before, cloud account need to be set up according to the implementation procedure of Fig. 2 c in embodiment one Corresponding relation between number equipment identification information, will not be described here.
S43, the authentication result for receiving the client return.
S44, the authentication result received to intermediary network device return, during the authentication result is used to indicate Between the network equipment login authentication is carried out to the user.
When being embodied as, the authentication method of the logging device that cloud management platform side is performed is referred to the step of embodiment one The user log-in authentication process that cloud management platform in S21~S29 is performed, will not be described here.
The authentication method of cloud management platform side logging device provided in an embodiment of the present invention, cloud management platform is in receiving Between the network equipment send the first authentication request after, using in first authentication request carry go-between set Standby equipment identification information, from the corresponding relation between the cloud account information and equipment identification information of storage the equipment is found Cloud account information corresponding to identification information, then sends the second authentication request to the client for logging in the cloud account information, After fingerprint authentication after client in second authentication request asks to verify the finger print information of user, receive The authentication result that client is returned, and the authentication result is returned to into intermediary network device so that go-between sets The standby certification completed to User logs in equipment.
Example IV,
Based on same inventive concept, the login implemented a kind of intermediary network device side is additionally provided in the embodiment of the present invention and is set Standby authentication device, due to the principle and the authenticating party of intermediary network device side logging device of said apparatus and equipment solve problem Method is similar, therefore the enforcement of said apparatus and equipment may refer to the enforcement of method, repeats part and repeats no more.
As shown in figure 5, the structure of the authentication device for intermediary network device side provided in an embodiment of the present invention logging device Schematic diagram, including transmitting element 51, receiving unit 52, authentication ' unit 53, wherein:
Transmitting element 51, it is described for when login authentication is carried out, to cloud management platform the first authentication request being sent Equipment identification information is carried in first authentication request;
Receiving unit 52, for receiving the authentication result of cloud management platform transmission, the authentication result is institute Cloud management platform is stated after first authentication request is received, according to the corresponding cloud account number letter of the equipment identification information Breath, sends what the second authentication request was obtained to the client for logging in corresponding cloud account number, wherein, the cloud account is institute Cloud management platform is stated according to the equipment identification information from the corresponding pass between the cloud account and equipment identification information of storage Find in system, second authentication request is asked including fingerprint authentication;
Authentication ' unit 53, for carrying out login authentication to the user according to the authentication result.
When being embodied as, the equipment identification information includes following at least one information:Equipment account, internet protocol View IP address, equipment eigenvalue.
The authentication ' unit 53, specifically includes the first confirmation subelement and second and confirms subelement, wherein:
First confirms subelement, if confirming to step on the user to be proved to be successful for the authentication result Record certification passes through;
Second confirms subelement, if being authentication failed for the authentication result, confirms to step on the user Record certification does not pass through.
It is preferred that the first identifying code is also carried in first authentication request, in the authentication result also Carry the second identifying code;And
Described device, also including determining unit 54, wherein:
Determining unit 54, it is described for determining before the described first confirmation subelement passes through to the user log-in authentication First identifying code and the second identifying code are identical;
Described first confirms subelement, if being additionally operable to the determining unit 54 determines first identifying code and second Identifying code is different, then confirm not pass through the user log-in authentication.
Preferably, described device, also including refresh unit 55, wherein:
Refresh unit 55, for confirming that subelement confirms to refresh the user log-in authentication by after described first Login interface, jumps to the configuration interface of intermediary network device.
For convenience of description, above each several part is divided by function and is described respectively for each module (or unit).Certainly, exist Implement the function of each module (or unit) can be realized in same or multiple softwares or hardware during the present invention.For example, originally The authentication device of the logging device that inventive embodiments four are provided can be arranged in intermediary network device, complete by intermediary network device Into the certification of User logs in equipment.
Embodiment five,
Based on same inventive concept, the logging device that a kind of cloud management platform side is implemented is additionally provided in the embodiment of the present invention Authentication device, due to the authentication method phase of principle and the cloud management platform side logging device of said apparatus and equipment solve problem Seemingly, therefore the enforcement of said apparatus and equipment may refer to the enforcement of method, repeat part and repeat no more.
As shown in fig. 6, the structure for the authentication device of cloud management platform side logging device provided in an embodiment of the present invention is shown It is intended to, including the first receiving unit 61, the first transmitting element 62, the second receiving unit 63 and the second transmitting element 64, wherein:
First receiving unit 61, sends out for during intermediary network device is logged in, receiving the intermediary network device The first authentication request sent, carries the device identification letter of the intermediary network device in first authentication request Breath;
First transmitting element 62, for according to the corresponding cloud account of the equipment identification information, to the corresponding cloud of login The client of account number sends the second authentication request, wherein, the cloud account be according to the equipment identification information from Find in corresponding relation between the cloud account of storage and equipment identification information, the second authentication request bag Include fingerprint authentication request;
Second receiving unit 63, for receiving the authentication result that the client is returned;
Second transmitting element 64, for returning the authentication result for receiving, the body to the intermediary network device Part the result is used to indicate that the intermediary network device carries out login authentication to the user.
When being embodied as, the authentication result is that the client is being received after the fingerprint authentication is asked to shifting Dynamic terminal initiates what is obtained after fingerprint authentication.
It is preferred that the equipment identification information includes following at least one information:Go-between described in the User logs in The equipment account of equipment, the internet protocol address of the intermediary network device, the equipment of the intermediary network device Eigenvalue.
When being embodied as, described device also including the 3rd receiving unit 65 and sets up unit 66, wherein:
3rd receiving unit, the binding that the client for receiving the intermediary network device or on mobile terminal sends please Ask, the equipment identification information and cloud account of the intermediary network device is carried in the bind request;
Set up unit, for setting up the bind request in carry equipment identification information and cloud account between it is right Should be related to.
For convenience of description, above each several part is divided by function and is described respectively for each module (or unit).Certainly, exist Implement the function of each module (or unit) can be realized in same or multiple softwares or hardware during the present invention.For example, originally The authentication device of the logging device that inventive embodiments five are provided can be arranged in cloud management platform.
The authentication device of the logging device that embodiments herein is provided can be realized by computer program.This area skill Art personnel it should be appreciated that above-mentioned Module Division mode is only the one kind in numerous Module Division modes, if be divided into Other modules or non-division module, as long as the authentication device of logging device has above-mentioned functions, all should be in the protection of the application Within the scope of.
The authentication method of logging device provided in an embodiment of the present invention, device and system, first, intermediary network device is connecing Receive when carrying out login authentication, to cloud management platform the first authentication request is sent, take in first authentication request With equipment identification information;Cloud management platform after the first authentication request that the intermediary network device sends is received, According to the corresponding cloud account of equipment identification information carried in first authentication request, to the corresponding cloud account number of login Client send the second authentication request, wherein, the cloud account is from storage according to the equipment identification information Cloud account and equipment identification information between corresponding relation in find, second authentication request includes referring to Stricture of vagina checking request;The client is installed in the terminal, for after second authentication request is received, to institute State mobile terminal and initiate fingerprint authentication;The mobile terminal is used to obtain the finger print information of the user and carry out checking to obtain body After part the result, the authentication result is sent to the cloud management platform by the client, the cloud management is put down Platform returns the identity for receiving to the intermediary network device and tests after the authentication result that the client is returned is received Card result, after the authentication result that the intermediary network device receives the transmission of cloud management platform, is carried out to the user Login authentication, using user log-in authentication method provided in an embodiment of the present invention so that user is without the need for being input into again complicated difficult memory Password, while it also avoid because password reveals brought intermediary network device configuration unsafe problems.
Those skilled in the art are it should be appreciated that embodiments of the invention can be provided as method, system or computer program Product.Therefore, the present invention can be using complete hardware embodiment, complete software embodiment or with reference to the reality in terms of software and hardware Apply the form of example.And, the present invention can be adopted and wherein include the computer of computer usable program code at one or more The computer program implemented in usable storage medium (including but not limited to disk memory, CD-ROM, optical memory etc.) is produced The form of product.
The present invention is the flow process with reference to method according to embodiments of the present invention, equipment (system) and computer program Figure and/or block diagram are describing.It should be understood that can be by computer program instructions flowchart and/or each stream in block diagram The combination of journey and/or square frame and flow chart and/or the flow process in block diagram and/or square frame.These computer programs can be provided The processor of general purpose computer, special-purpose computer, Embedded Processor or other programmable data processing devices is instructed to produce A raw machine so that produced for reality by the instruction of computer or the computing device of other programmable data processing devices The device of the function of specifying in present one flow process of flow chart or one square frame of multiple flow processs and/or block diagram or multiple square frames.
These computer program instructions may be alternatively stored in can guide computer or other programmable data processing devices with spy In determining the computer-readable memory that mode works so that the instruction being stored in the computer-readable memory is produced to be included referring to Make the manufacture of device, the command device realize in one flow process of flow chart or one square frame of multiple flow processs and/or block diagram or The function of specifying in multiple square frames.
These computer program instructions also can be loaded in computer or other programmable data processing devices so that in meter Series of operation steps is performed on calculation machine or other programmable devices to produce computer implemented process, so as in computer or The instruction performed on other programmable devices is provided for realizing in one flow process of flow chart or multiple flow processs and/or block diagram one The step of function of specifying in individual square frame or multiple square frames.
, but those skilled in the art once know basic creation although preferred embodiments of the present invention have been described Property concept, then can make other change and modification to these embodiments.So, claims are intended to be construed to include excellent Select embodiment and fall into having altered and changing for the scope of the invention.
Obviously, those skilled in the art can carry out the essence of various changes and modification without deviating from the present invention to the present invention God and scope.So, if these modifications of the present invention and modification belong to the scope of the claims in the present invention and its equivalent technologies Within, then the present invention is also intended to comprising these changes and modification.

Claims (21)

1. a kind of authentication method of logging device, it is characterised in that include:
When login authentication is carried out, the first authentication request is sent to cloud management platform, in first authentication request Carry equipment identification information;
The authentication result that cloud management platform sends is received, the authentication result is being received for the cloud management platform After first authentication request, according to the corresponding cloud account of the equipment identification information, to the corresponding cloud account number of login Client send the second authentication request obtain, wherein, the cloud account is the cloud management platform according to institute State equipment identification information to find from the corresponding relation between the cloud account and equipment identification information of storage, described the Two authentication requests are asked including fingerprint authentication;
Login authentication is carried out to the user according to the authentication result.
2. the method for claim 1, it is characterised in that the equipment identification information includes following at least one information: Equipment account, internet protocol address, equipment eigenvalue.
3. the method for claim 1, it is characterised in that the user is logged according to the authentication result Certification, specifically includes:
If the authentication result confirms to pass through the user log-in authentication to be proved to be successful;
If the authentication result is authentication failed, confirm not pass through the user log-in authentication.
4. method as claimed in claim 3, it is characterised in that also carry the first checking in first authentication request Code, in the authentication result the second identifying code is also carried;And
If the authentication result is to be proved to be successful, before confirming to pass through the user log-in authentication, also include:
Determine that first identifying code and the second identifying code are identical;
If first identifying code and the second identifying code are different, confirm not pass through the user log-in authentication.
5. method as claimed in claim 3, it is characterised in that after confirmation passes through to the user log-in authentication, the side Method, also includes:
Refresh login interface, jump to the configuration interface of intermediary network device.
6. a kind of authentication method of logging device, it is characterised in that include:
During intermediary network device is logged in, the first authentication request that the intermediary network device sends, institute are received State the equipment identification information that the intermediary network device is carried in the first authentication request;
According to the corresponding cloud account of the equipment identification information, to the client for logging in corresponding cloud account number the second identity is sent Checking request, wherein, the cloud account is the cloud account and equipment mark according to the equipment identification information from storage Find in corresponding relation between knowledge information, second authentication request is asked including fingerprint authentication;
Receive the authentication result that the client is returned;
Return the authentication result that receives to the intermediary network device, the authentication result be used to indicating it is described in Between the network equipment login authentication is carried out to the user.
7. method as claimed in claim 6, it is characterised in that the authentication result is the client receiving Stating fingerprint authentication asks backward mobile terminal to initiate what is obtained after fingerprint authentication.
8. method as claimed in claim 6, it is characterised in that the equipment identification information includes following at least one information: The equipment account of intermediary network device described in the User logs in, the Internet protocol IP ground of the intermediary network device Location, the equipment eigenvalue of the intermediary network device.
9. method as claimed in claim 6, it is characterised in that set up cloud account according to below scheme and believe with device identification Corresponding relation between breath:
The bind request that the intermediary network device or the client on mobile terminal send is received, is carried in the bind request There are the equipment identification information and cloud account of the intermediary network device;
The corresponding relation set up between the equipment identification information and cloud account carried in the bind request.
10. a kind of authentication device of logging device, it is characterised in that include:
Transmitting element, for when login authentication is carried out, to cloud management platform the first authentication request, first body being sent Equipment identification information is carried in part checking request;
Receiving unit, for receiving the authentication result of cloud management platform transmission, the authentication result is the cloud pipe Platform after first authentication request is received, according to the corresponding cloud account of the equipment identification information, to The client for logging in corresponding cloud account number sends what the second authentication request was obtained, wherein, the cloud account is the cloud Management platform is according to the equipment identification information from the corresponding relation between the cloud account and equipment identification information of storage Find, second authentication request is asked including fingerprint authentication;
Authentication ' unit, for carrying out login authentication to the user according to the authentication result.
11. devices as claimed in claim 10, it is characterised in that the equipment identification information includes following at least one letter Breath:Equipment account, internet protocol address, equipment eigenvalue.
12. devices as claimed in claim 10, it is characterised in that the authentication ' unit, specifically include:
First confirms subelement, if confirming to recognize the User logs in be proved to be successful for the authentication result Card passes through;
Second confirms subelement, if being authentication failed for the authentication result, confirms to recognize the User logs in Card does not pass through.
13. devices as claimed in claim 12, it is characterised in that also carry first in first authentication request and test Card code, in the authentication result the second identifying code is also carried;And
Described device, also including determining unit, wherein:
Determining unit, for determining that described first tested before the described first confirmation subelement passes through to the user log-in authentication Card code and the second identifying code are identical;
Described first confirms subelement, if being additionally operable to the determining unit determines first identifying code and the second identifying code Difference, then confirm not pass through the user log-in authentication.
14. devices as claimed in claim 12, it is characterised in that also including refresh unit, wherein:
Refresh unit, for confirming that subelement confirms to refresh the user log-in authentication by after described first boundary is logged in Face, jumps to the configuration interface of intermediary network device.
15. a kind of authentication devices of logging device, it is characterised in that include:
First receiving unit, for during intermediary network device is logged in, receive that the intermediary network device sends the One authentication request, carries the equipment identification information of the intermediary network device in first authentication request;
First transmitting element, for according to the corresponding cloud account of the equipment identification information, to the corresponding cloud account number of login Client sends the second authentication request, wherein, the cloud account is from storage according to the equipment identification information Find in corresponding relation between cloud account and equipment identification information, second authentication request includes fingerprint Checking request;
Second receiving unit, for receiving the authentication result that the client is returned;
Second transmitting element, for returning the authentication result for receiving, the authentication to the intermediary network device As a result it is used to indicate that the intermediary network device carries out login authentication to the user.
16. devices as claimed in claim 15, it is characterised in that the authentication result is being received for the client The fingerprint authentication asks backward mobile terminal to initiate what is obtained after fingerprint authentication.
17. devices as claimed in claim 15, it is characterised in that the equipment identification information includes following at least one letter Breath:The equipment account of intermediary network device described in the User logs in, the Internet protocol IP of the intermediary network device Address, the equipment eigenvalue of the intermediary network device.
18. devices as claimed in claim 15, it is characterised in that also include:
3rd receiving unit, the bind request that the client for receiving the intermediary network device or on mobile terminal sends, The equipment identification information and cloud account of the intermediary network device are carried in the bind request;
Set up unit, for setting up the bind request in carry equipment identification information and cloud account between it is corresponding close System.
19. a kind of Verification Systems of logging device, it is characterised in that including cloud management platform, intermediary network device and movement eventually End, wherein:
The intermediary network device, for when login authentication is carried out, to cloud management platform the first authentication request, institute being sent State the equipment identification information that the intermediary network device is carried in the first authentication request;And the reception cloud management is put down The authentication result that platform is returned, login authentication is carried out according to the authentication result to the user;
The cloud management platform, for according to the corresponding cloud account of the equipment identification information, to the corresponding cloud account number of login Client send the second authentication request, wherein, the cloud account is from storage according to the equipment identification information Cloud account and equipment identification information between corresponding relation in find, second authentication request includes referring to Stricture of vagina checking request;And the authentication result that the reception client is returned;
The client is installed, the client is used to receive second authentication request in the mobile terminal Afterwards, fingerprint authentication is initiated to the mobile terminal;The mobile terminal is used to obtain the finger print information of the user and be tested Card is obtained after authentication result, and the authentication result is sent to the cloud management platform by the client.
20. systems as claimed in claim 19, it is characterised in that
The intermediary network device, if confirmed to the user to be proved to be successful specifically for the authentication result Login authentication passes through;If the authentication result is authentication failed, confirm not pass through the user log-in authentication.
21. systems as claimed in claim 20, it is characterised in that also carry first in first authentication request and test Card code, first identifying code is that the intermediary network device is generated at random, and the is also carried in the authentication result Two identifying codes;And
The intermediary network device, if being additionally operable to the authentication result to be proved to be successful, is confirming to step on the user Before record certification passes through, determine that first identifying code and the second identifying code are identical;And if first identifying code and Two identifying codes are different, then confirm not pass through the user log-in authentication.
CN201610839700.9A 2016-09-21 2016-09-21 Authentication method, device and system for login equipment Active CN106656952B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610839700.9A CN106656952B (en) 2016-09-21 2016-09-21 Authentication method, device and system for login equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610839700.9A CN106656952B (en) 2016-09-21 2016-09-21 Authentication method, device and system for login equipment

Publications (2)

Publication Number Publication Date
CN106656952A true CN106656952A (en) 2017-05-10
CN106656952B CN106656952B (en) 2020-11-20

Family

ID=58852775

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610839700.9A Active CN106656952B (en) 2016-09-21 2016-09-21 Authentication method, device and system for login equipment

Country Status (1)

Country Link
CN (1) CN106656952B (en)

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107453872A (en) * 2017-06-27 2017-12-08 北京溢思得瑞智能科技研究院有限公司 A kind of unified safety authentication method and system based on Mesos container cloud platforms
CN108494795A (en) * 2018-04-11 2018-09-04 苏州锦佰安信息技术有限公司 A kind of auth method and device
CN108564688A (en) * 2018-03-21 2018-09-21 阿里巴巴集团控股有限公司 The method and device and electronic equipment of authentication
CN108768970A (en) * 2018-05-15 2018-11-06 腾讯科技(北京)有限公司 A kind of binding method of smart machine, identity authentication platform and storage medium
CN110061995A (en) * 2019-04-24 2019-07-26 上海互啊佑智能科技有限公司 A kind of mouse, identity authorization system, method, apparatus and storage medium
CN111083100A (en) * 2019-09-30 2020-04-28 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Linux operating system based on message pushing
CN111104657A (en) * 2018-10-25 2020-05-05 中国电信股份有限公司 Identity authentication method and system, authentication platform, user terminal and application terminal
CN111131140A (en) * 2019-09-30 2020-05-08 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Windows operating system based on message pushing
CN111784355A (en) * 2020-07-17 2020-10-16 支付宝(杭州)信息技术有限公司 Transaction security verification method and device based on edge calculation
CN113051623A (en) * 2021-03-11 2021-06-29 华控清交信息科技(北京)有限公司 Data processing method and device and electronic equipment
CN113726797A (en) * 2021-09-01 2021-11-30 世纪龙信息网络有限责任公司 Safe login method, system and account management device
CN114928840A (en) * 2022-06-16 2022-08-19 中国联合网络通信集团有限公司 Identity authentication method, device and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101588368A (en) * 2009-07-14 2009-11-25 中国联合网络通信集团有限公司 Service authentication method and system
EP2645664A1 (en) * 2012-03-30 2013-10-02 Stopic, Bojan Authentication system and method for operating an authentication system
CN103475476A (en) * 2013-09-02 2013-12-25 小米科技有限责任公司 Method and device for logging in server by multiple terminals
CN103532933A (en) * 2013-09-28 2014-01-22 刘琦 Method of realizing client operation authorization through fingerprint confirmation, and intelligent terminal
CN105099704A (en) * 2015-08-13 2015-11-25 上海博路信息技术有限公司 Biometric identification-based OAuth service

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101588368A (en) * 2009-07-14 2009-11-25 中国联合网络通信集团有限公司 Service authentication method and system
EP2645664A1 (en) * 2012-03-30 2013-10-02 Stopic, Bojan Authentication system and method for operating an authentication system
CN103475476A (en) * 2013-09-02 2013-12-25 小米科技有限责任公司 Method and device for logging in server by multiple terminals
CN103532933A (en) * 2013-09-28 2014-01-22 刘琦 Method of realizing client operation authorization through fingerprint confirmation, and intelligent terminal
CN105099704A (en) * 2015-08-13 2015-11-25 上海博路信息技术有限公司 Biometric identification-based OAuth service

Cited By (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107453872B (en) * 2017-06-27 2020-08-04 北京溢思得瑞智能科技研究院有限公司 Unified security authentication method and system based on Mesos container cloud platform
CN107453872A (en) * 2017-06-27 2017-12-08 北京溢思得瑞智能科技研究院有限公司 A kind of unified safety authentication method and system based on Mesos container cloud platforms
US11323430B2 (en) 2018-03-21 2022-05-03 Advanced New Technologies Co., Ltd. Identity verification method and device and electronic device
CN108564688A (en) * 2018-03-21 2018-09-21 阿里巴巴集团控股有限公司 The method and device and electronic equipment of authentication
CN108494795A (en) * 2018-04-11 2018-09-04 苏州锦佰安信息技术有限公司 A kind of auth method and device
CN108768970B (en) * 2018-05-15 2023-04-18 腾讯科技(北京)有限公司 Binding method of intelligent equipment, identity authentication platform and storage medium
CN108768970A (en) * 2018-05-15 2018-11-06 腾讯科技(北京)有限公司 A kind of binding method of smart machine, identity authentication platform and storage medium
CN111104657A (en) * 2018-10-25 2020-05-05 中国电信股份有限公司 Identity authentication method and system, authentication platform, user terminal and application terminal
CN110061995A (en) * 2019-04-24 2019-07-26 上海互啊佑智能科技有限公司 A kind of mouse, identity authorization system, method, apparatus and storage medium
CN111131140A (en) * 2019-09-30 2020-05-08 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Windows operating system based on message pushing
CN111083100A (en) * 2019-09-30 2020-04-28 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Linux operating system based on message pushing
CN111083100B (en) * 2019-09-30 2022-10-11 武汉信安珞珈科技有限公司 Method and system for enhancing login security of Linux operating system based on message pushing
CN111784355A (en) * 2020-07-17 2020-10-16 支付宝(杭州)信息技术有限公司 Transaction security verification method and device based on edge calculation
CN111784355B (en) * 2020-07-17 2023-03-10 支付宝(杭州)信息技术有限公司 Transaction security verification method and device based on edge calculation
CN113051623A (en) * 2021-03-11 2021-06-29 华控清交信息科技(北京)有限公司 Data processing method and device and electronic equipment
CN113726797A (en) * 2021-09-01 2021-11-30 世纪龙信息网络有限责任公司 Safe login method, system and account management device
CN114928840A (en) * 2022-06-16 2022-08-19 中国联合网络通信集团有限公司 Identity authentication method, device and storage medium
CN114928840B (en) * 2022-06-16 2023-10-13 中国联合网络通信集团有限公司 Identity verification method, device and storage medium

Also Published As

Publication number Publication date
CN106656952B (en) 2020-11-20

Similar Documents

Publication Publication Date Title
CN106656952A (en) Authentication method, device and system for registration equipment
US11405380B2 (en) Systems and methods for using imaging to authenticate online users
CN106716433B (en) The system and method for certificate management between electronic equipment
CN106233796B (en) Calculate the automatic subscriber registration and unlock of equipment
US9378345B2 (en) Authentication using device ID
US9419969B2 (en) Method and system for granting access to a secured website
CN102624720B (en) Method, device and system for identity authentication
US8875255B1 (en) Preventing user enumeration by an authentication server
CN104283886B (en) A kind of implementation method of the web secure access based on intelligent terminal local authentication
US9369286B2 (en) System and methods for facilitating authentication of an electronic device accessing plurality of mobile applications
EP3175367B1 (en) System and method for implementing a hosted authentication service
US9787689B2 (en) Network authentication of multiple profile accesses from a single remote device
CN106452738A (en) Authentication method, device and system for logging in equipment
EP3138232A1 (en) System and method for carrying strong authentication events over different channels
JP4960738B2 (en) Authentication system, authentication method, and authentication program
US11552798B2 (en) Method and system for authenticating a secure credential transfer to a device
CN107241306B (en) Man-machine identification method, server, client and man-machine identification system
Ye et al. Formal analysis of a single sign-on protocol implementation for android
US20070056024A1 (en) Method for remote server login
CN110175448A (en) A kind of credible equipment login authentication method and the application system with authentication function
CN106161475A (en) The implementation method of subscription authentication and device
CN110324307A (en) A kind of single sign-on authentication method and relevant device based on cloud
Gordin et al. Moving forward passwordless authentication: challenges and implementations for the private cloud
CN107294917A (en) One kind trusts login method and device
CN112653676B (en) Identity authentication method and equipment crossing authentication system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CP01 Change in the name or title of a patent holder

Address after: 100089 Beijing city Haidian District Road No. 4 North wa Yitai three storey building

Patentee after: NSFOCUS Technologies Group Co.,Ltd.

Patentee after: NSFOCUS TECHNOLOGIES Inc.

Address before: 100089 Beijing city Haidian District Road No. 4 North wa Yitai three storey building

Patentee before: NSFOCUS INFORMATION TECHNOLOGY Co.,Ltd.

Patentee before: NSFOCUS TECHNOLOGIES Inc.

CP01 Change in the name or title of a patent holder