CN107566396A - A kind of method based on dynamic password enhancing server VPN protocol securitys - Google Patents
A kind of method based on dynamic password enhancing server VPN protocol securitys Download PDFInfo
- Publication number
- CN107566396A CN107566396A CN201710901200.8A CN201710901200A CN107566396A CN 107566396 A CN107566396 A CN 107566396A CN 201710901200 A CN201710901200 A CN 201710901200A CN 107566396 A CN107566396 A CN 107566396A
- Authority
- CN
- China
- Prior art keywords
- server
- keeper
- dynamic password
- vpn
- logging request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Abstract
The present invention discloses a kind of method based on dynamic password enhancing server VPN protocol securitys, comprises the following steps:Server prestores Administrator Info;Keeper initiates logging request by VPN client to server;Server intercepts logging request, and generate dynamic password and be sent to keeper;Keeper initiates logging request to server again by VPN client;Server is verified the solicited message of reception, allows keeper to conduct interviews after being verified;If checking is by the way that refusal keeper logs in.Method provided by the invention based on dynamic password enhancing server VPN protocol securitys, increases verifying dynamic password mode when server VPN is logged in, improves protocol safety, reduce server log potential safety hazard.
Description
Technical field
The present invention relates to server log technical field, and in particular to one kind is based on dynamic password enhancing server VPN associations
The method for discussing safety.
Background technology
With the development of information technology, the continuous improvement of the level of informatization, information security increasingly receives significant attention, special
It is not the safety of server.Server is a kind of mode generally used during management, by remote management, but is existed at present
It is general only to be logged in by username and password in VPN login process, but larger potential safety hazard be present in this mode.
The content of the invention
To solve the above problems, the present invention provides a kind of method based on dynamic password enhancing server VPN protocol securitys.
The technical scheme is that:A kind of method based on dynamic password enhancing server VPN protocol securitys, including with
Lower step:
Server prestores Administrator Info;
Keeper initiates logging request by VPN client to server;
Server intercepts logging request, and generate dynamic password and be sent to keeper;
Keeper initiates logging request to server again by VPN client;
Server is verified the solicited message of reception, allows keeper to conduct interviews after being verified;If checking not by,
Then refuse keeper to log in.
Further, the Administrator Info that server prestores includes the phone number of keeper.
Further, the dynamic password of generation is sent to keeper by server by SMS platform.
Further, the logging request that keeper's first passage VPN client is initiated to server includes user name and close
Code.
Further, the logging request that keeper is initiated to server again by VPN client includes user name, password
And dynamic password.
Further, the login-timeout time of server is not less than 3 minutes.
Further, the login-timeout time of server is 5 minutes.
Method provided by the invention based on dynamic password enhancing server VPN protocol securitys, when server VPN is logged in
Increase verifying dynamic password mode, improve protocol safety, reduce server log potential safety hazard.
Brief description of the drawings
Fig. 1 is specific embodiment of the invention method flow diagram.
Embodiment
Below in conjunction with the accompanying drawings and the present invention will be described in detail by specific embodiment, and following examples are to the present invention
Explanation, and the invention is not limited in implementation below.
The method based on dynamic password enhancing server VPN protocol securitys that the present embodiment provides, its core concept are to increase
Add dynamic instruction verification mode, to improve protocol safety.
As shown in figure 1, it specifically includes following steps:
S1:Server prestores Administrator Info;
It should be noted that the Administrator Info to be prestored includes the phone number of keeper, to send dynamic password afterwards.
S2:Keeper initiates logging request by VPN client to server;
It should be noted that this logging request initiated includes username and password.
S3:Server intercepts logging request, and generate dynamic password and be sent to keeper;
It should be noted that the dynamic password that is generated of server is sent to keeper by SMS platform, SMS platform should be with
Server keeps normal communication.
S4:Keeper initiates logging request to server again by VPN client;
It should be noted that this logging request initiated includes the dynamic password that user name, password and keeper receive.
S5:Server is verified the solicited message of reception, allows keeper to conduct interviews after being verified;If checking
Not by then refusing keeper and logging in;
It should be noted that server is configured with operating system, keeper initiates logging request to sign in operating system.Service
Device is verified to solicited message, if being verified, illustrates to login successfully, and keeper may have access to operating system, if checking is not
By the way that then client can not sign in operating system.
In addition, because dynamic password is influenceed by network, communication and operation etc. are many, the response time will not be too fast, therefore
The time-out time logged in is adjusted, it is not less than 3 minutes, preferably may be configured as 5 minutes, can be configured in time-out time.
By above method management server, its security can be effectively improved.
Disclosed above is only the preferred embodiment of the present invention, but the present invention is not limited to this, any this area
What technical staff can think does not have creative change, and some improvement made without departing from the principles of the present invention and
Retouching, should all be within the scope of the present invention.
Claims (7)
- A kind of 1. method based on dynamic password enhancing server VPN protocol securitys, it is characterised in that comprise the following steps:Server prestores Administrator Info;Keeper initiates logging request by VPN client to server;Server intercepts logging request, and generate dynamic password and be sent to keeper;Keeper initiates logging request to server again by VPN client;Server is verified the solicited message of reception, allows keeper to conduct interviews after being verified;If checking not by, Then refuse keeper to log in.
- 2. the method according to claim 1 based on dynamic password enhancing server VPN protocol securitys, it is characterised in that The Administrator Info that server prestores includes the phone number of keeper.
- 3. the method according to claim 2 based on dynamic password enhancing server VPN protocol securitys, it is characterised in that The dynamic password of generation is sent to keeper by server by SMS platform.
- 4. the method based on dynamic password enhancing server VPN protocol securitys according to claim 1,2 or 3, its feature It is, the logging request that keeper's first passage VPN client is initiated to server includes username and password.
- 5. the method according to claim 4 based on dynamic password enhancing server VPN protocol securitys, it is characterised in that The logging request that keeper is initiated to server again by VPN client includes user name, password and dynamic password.
- 6. the method based on dynamic password enhancing server VPN protocol securitys according to claim 1,2,3 or 5, it is special Sign is that the login-timeout time of server is not less than 3 minutes.
- 7. the method according to claim 6 based on dynamic password enhancing server VPN protocol securitys, it is characterised in that The login-timeout time of server is 5 minutes.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710901200.8A CN107566396A (en) | 2017-09-28 | 2017-09-28 | A kind of method based on dynamic password enhancing server VPN protocol securitys |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710901200.8A CN107566396A (en) | 2017-09-28 | 2017-09-28 | A kind of method based on dynamic password enhancing server VPN protocol securitys |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107566396A true CN107566396A (en) | 2018-01-09 |
Family
ID=60984218
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710901200.8A Pending CN107566396A (en) | 2017-09-28 | 2017-09-28 | A kind of method based on dynamic password enhancing server VPN protocol securitys |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107566396A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108337258A (en) * | 2018-01-31 | 2018-07-27 | 中电福富信息科技有限公司 | A method of the remote control vehicle based on long-range actuating code |
| CN110290150A (en) * | 2019-07-17 | 2019-09-27 | 秒针信息技术有限公司 | A kind of login validation method and login authentication device of Virtual Private Network VPN |
| CN112019571B (en) * | 2020-10-22 | 2021-01-15 | 锱云(上海)物联网科技有限公司 | VPN connection implementation method and system |
| CN114640542A (en) * | 2022-04-22 | 2022-06-17 | 在线途游(北京)科技有限公司 | Method and system for ensuring security of enterprise login credentials |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005104509A2 (en) * | 2004-04-07 | 2005-11-03 | Sbc Knowledge Ventures, L.P. | Methods and systems for providing voice over internet protocol communications via an intranet |
| CN102098313A (en) * | 2011-03-01 | 2011-06-15 | 黄泽鑫 | Waterproof wall system and authentication method thereof |
| US20120271924A1 (en) * | 2011-04-19 | 2012-10-25 | Spitaels James S | System and method for automatically addressing devices in a multi-drop network |
| CN103209074A (en) * | 2012-01-16 | 2013-07-17 | 中国移动通信集团安徽有限公司 | Security authentication method and system and short message processor |
| CN105656862A (en) * | 2014-11-21 | 2016-06-08 | 航天恒星科技有限公司 | Authentication method and device |
| CN106790166A (en) * | 2016-12-29 | 2017-05-31 | 郑州云海信息技术有限公司 | A kind of method of safety certification, apparatus and system |
| CN106790267A (en) * | 2017-02-13 | 2017-05-31 | 郑州云海信息技术有限公司 | A kind of method and apparatus of access server operating system |
| CN107147661A (en) * | 2017-06-01 | 2017-09-08 | 郑州云海信息技术有限公司 | One kind strengthens File Transfer Protocol security system and method based on dynamic password |
-
2017
- 2017-09-28 CN CN201710901200.8A patent/CN107566396A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005104509A2 (en) * | 2004-04-07 | 2005-11-03 | Sbc Knowledge Ventures, L.P. | Methods and systems for providing voice over internet protocol communications via an intranet |
| CN102098313A (en) * | 2011-03-01 | 2011-06-15 | 黄泽鑫 | Waterproof wall system and authentication method thereof |
| US20120271924A1 (en) * | 2011-04-19 | 2012-10-25 | Spitaels James S | System and method for automatically addressing devices in a multi-drop network |
| CN103209074A (en) * | 2012-01-16 | 2013-07-17 | 中国移动通信集团安徽有限公司 | Security authentication method and system and short message processor |
| CN105656862A (en) * | 2014-11-21 | 2016-06-08 | 航天恒星科技有限公司 | Authentication method and device |
| CN106790166A (en) * | 2016-12-29 | 2017-05-31 | 郑州云海信息技术有限公司 | A kind of method of safety certification, apparatus and system |
| CN106790267A (en) * | 2017-02-13 | 2017-05-31 | 郑州云海信息技术有限公司 | A kind of method and apparatus of access server operating system |
| CN107147661A (en) * | 2017-06-01 | 2017-09-08 | 郑州云海信息技术有限公司 | One kind strengthens File Transfer Protocol security system and method based on dynamic password |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108337258A (en) * | 2018-01-31 | 2018-07-27 | 中电福富信息科技有限公司 | A method of the remote control vehicle based on long-range actuating code |
| CN110290150A (en) * | 2019-07-17 | 2019-09-27 | 秒针信息技术有限公司 | A kind of login validation method and login authentication device of Virtual Private Network VPN |
| CN112019571B (en) * | 2020-10-22 | 2021-01-15 | 锱云(上海)物联网科技有限公司 | VPN connection implementation method and system |
| CN114640542A (en) * | 2022-04-22 | 2022-06-17 | 在线途游(北京)科技有限公司 | Method and system for ensuring security of enterprise login credentials |
| CN114640542B (en) * | 2022-04-22 | 2024-02-27 | 在线途游(北京)科技有限公司 | Method and system for ensuring security of enterprise login credentials |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9118657B1 (en) | Extending secure single sign on to legacy applications | |
| US10848505B2 (en) | Cyberattack behavior detection method and apparatus | |
| US20100100950A1 (en) | Context-based adaptive authentication for data and services access in a network | |
| WO2017076214A1 (en) | A sms-based website login method and login system thereof | |
| CN107566396A (en) | A kind of method based on dynamic password enhancing server VPN protocol securitys | |
| CN105577662B (en) | Terminal environments method of controlling security and server | |
| CN105262774A (en) | Remote login method | |
| CN103986584A (en) | Double-factor identity verification method based on intelligent equipment | |
| CN102571808B (en) | Self-service tax terminal external network deployment method | |
| CN105721439A (en) | Method of improving safety performance of FTP server | |
| CN107864475A (en) | The quick authentication methods of WiFi based on Portal+ dynamic passwords | |
| CN104754009A (en) | Service acquisition and invocation method, device, client-side and server | |
| CN109067785A (en) | Cluster authentication method, device | |
| WO2023050524A1 (en) | Im-based user identity authentication method and apparatus, and server and storage medium | |
| CN109150800A (en) | Login access method, system and storage medium | |
| CN105354482A (en) | Single sign-on method and device | |
| CN103379093B (en) | A kind of method and device for realizing account intercommunication | |
| CN106657271A (en) | Method and device for calling local control | |
| CN103179564B (en) | Based on the network application login method of mobile terminal authentication | |
| CN107147661A (en) | One kind strengthens File Transfer Protocol security system and method based on dynamic password | |
| CN109104400A (en) | A kind of automatic register account number of high efficiency Internet of Things and automated log on mode | |
| CN102624724B (en) | Security gateway and method for securely logging in server by gateway | |
| CN103716325A (en) | Security control method, device and system for network access | |
| CN112532566A (en) | Internet and local area network cloud desktop user unified authentication method and system | |
| CN110012011A (en) | Method, apparatus, computer equipment and the storage medium for preventing malice from logging in |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20180109 |