CN107888538A - A kind of identity identifying method and system based on Bluetooth terminal - Google Patents
A kind of identity identifying method and system based on Bluetooth terminal Download PDFInfo
- Publication number
- CN107888538A CN107888538A CN201610863172.0A CN201610863172A CN107888538A CN 107888538 A CN107888538 A CN 107888538A CN 201610863172 A CN201610863172 A CN 201610863172A CN 107888538 A CN107888538 A CN 107888538A
- Authority
- CN
- China
- Prior art keywords
- security module
- authentication
- bluetooth
- certification
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention relates to internet and mobile Internet applied technical field, there is provided and it is a kind of suitable for identity identifying method and system based on bluetooth on internet and mobile Internet terminal, including:Identification service system obtains the data in security module, row information of going forward side by side interaction, so as to carry out subscriber authentication by Authentication Client to the Bluetooth identities certification terminal for embedding security module.The information that the present invention transmits does not include individual subscriber privacy, will not cause the leakage of privacy;The use of Bluetooth technology adds the applicable situation of authentication.
Description
Technical field
The present invention relates to internet and mobile Internet applied technical field, more particularly to a kind of identity based on bluetooth is recognized
Demonstrate,prove method and system.
Background technology
With the fast development of internet and mobile Internet, huge difficulty that the certification of user identity faces into industry
Topic.Traditional mobile phone identifying code because pseudo-base station, Malware presence and become no longer safe.For these problems, public security
Portion is proposed network electronic identity card eID, ensures the authenticity of user identity and unique by network identifier and digital certificate
Property.
However, eID, at present using smart card as carrier, personal computer, mobile phone, which generally require installation peripheral hardware, to be read
Smart card is write, realizes subscriber authentication.Prior art proposes method and the shifting of a kind of inquiry smart card information based on NFC
EID identity authentication methods in dynamic terminal, but these methods are required for using NFC mobile phone, NFC mobile phone is not enough in the market
It is more, meanwhile, part NFC mobile phone does not support read write line mode of operation, and the application to these technologies brings difficulty.
The content of the invention
(One)Technical problems to be solved
The technical problem to be solved in the present invention is a kind of identity identifying method and system based on Bluetooth terminal, uses Bluetooth communication
Technology reads the information in the identity authentication terminal of embedded security module, realizes safety on line authentication.
(Two)Technical scheme
To achieve these goals, the invention provides following technical scheme:
A kind of identity authorization system based on Bluetooth terminal, including:The Bluetooth identities certification terminal of embedded security module, certification clothes
Business client and certificate server, certificate server are recognized by authentication service client terminal from the Bluetooth identities of embedded security module
Demonstrate,prove the identity information in terminal acquisition security module, row information of going forward side by side interaction, so as to carry out subscriber authentication.
Further, wherein the Bluetooth identities certification terminal of embedded security module includes:
Security module module for reading and writing, is used for and the security module that embeds communicates and reads and writes data;
Bluetooth communication, for being communicated with Authentication Client.
Further, the security module is the safety chip based on the standards of ISO/IEC 7816, can using eID cards,
The chip programming based on GlobalPlatform technologies can also be used to complete.
Further, described authentication service client terminal includes independent two kinds of forms of application program and plug-in unit, described
Authentication service client terminal includes:
Bluetooth communication, it is used for and embeds the Bluetooth identities certification terminal communication of security module, to read and write in security module
Data;
Certification callback module, for handling the result of identification service system return and notifying certification promoter by adjusting back;
Logger module, record authentication information, including certification promoter, authenticated time, authentication result.
A kind of identity identifying method based on Bluetooth terminal, comprises the following steps:
ID authentication request is proposed based on the application program of internet or mobile Internet, with embedded certification in the application
Service client plug-in unit or external authentication service client terminal program interact, and apply for authentication, and application program will obtain
Ask token;
Authentication service client terminal communicates with the Bluetooth identities certification terminal of embedded security module, and is communicated with certificate server, makes
Security module in Bluetooth identities certification terminal can exchange information with certificate server, verify the legitimacy of user identity;
Authentication result is returned to client by certificate server, while adjusts back application server, notice application server checking knot
Fruit;
Authentication result is returned to application program by authentication service client terminal, and application program is by asking token to application server two
Secondary confirmation authentication result.
Further, authentication service client terminal when the Bluetooth identities certification terminal with embedded security module communicates, it is necessary to
The PIN code of input security module is required to user, after PIN code is verified, client-side can pass through Bluetooth terminal and safe mould
Block communicates.
(Three)Beneficial effect
A kind of identity identifying method and system based on bluetooth provided by the invention, the information of transmission do not include the personal hidden of user
Private, leakage of the user profile in transmitting procedure will not be caused;The use of Bluetooth technology adds the applicable situation of authentication.
Brief description of the drawings
Fig. 1 is the system framework figure of the authentication based on bluetooth in embodiments of the invention.
Embodiment
In order that present invention solves the technical problem that, embodiment, advantage become apparent from, with reference to system example and
Above-mentioned accompanying drawing is described in detail.
The embodiment of identity authorization system provided by the invention based on bluetooth is as shown in figure 1, identity authorization system includes
Bluetooth terminal 101, Authentication Client 102 and certificate server 104.Bluetooth terminal includes security module module for reading and writing 111, bluetooth
113 3 modules of communication module 112 and security module.Authentication Client includes bluetooth communication 121, certification callback module
122 and logger module 123.The part of user mutual includes application program 103 and application server 105.
Wherein, security module, is the safety chip based on the standards of ISO/IEC 7816, the identity mark of storage inside user
Knowledge, private key and PIN code.
Wherein, security module module for reading and writing, the protocol communications of ISO/IEC 7816 are used with security module.
Wherein, bluetooth communication, data are exchanged by bluetooth with Authentication Client.
Specific identity identifying method comprises the following steps:
Step 1. is when user selects to carry out authentication using this identity authorization system in the application, application program meeting
Authentication client is called, proposes ID authentication request, while take request token.
After step 2. client receives request, prompt user to input PIN code, and PIN code is sent to Bluetooth terminal, by
Security module checking PIN code correctness in Bluetooth terminal.
After step 3. PIN code is verified, Authentication Client initiates certification request to certificate server, whole by bluetooth
Security module module for reading and writing in end reads the relevant information of security module, sends relevant information to certificate server and carries out just
Step is demonstrate,proved.
Step 4. server authentication one group of data of generation, by Authentication Client, is given in terminal tentatively by rear
Security module carries out secondary checking, and the result of re-authentication is sent to certificate server, confirmed by Authentication Client.
After step 5. server confirms that re-authentication is errorless, authentication result is sent to application server, and notifies that certification is objective
Family end authentication result.
Step 6. Authentication Client adjusts back application program, and authentication result is sent into application program.
Step 7.(It is nonessential)If certification success, application program inquires about certification using request token to application server
As a result.
Finally it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although
The present invention is described in detail with reference to the foregoing embodiments, it will be understood by those within the art that:It still may be used
To be modified to the technical scheme described in foregoing embodiments, or equivalent substitution is carried out to which part technical characteristic;
And these modification or replace, do not make appropriate technical solution essence depart from various embodiments of the present invention technical scheme spirit and
Scope.
Claims (6)
1. a kind of identity authorization system based on Bluetooth terminal, including:The Bluetooth identities certification terminal of embedded security module, certification
Service client and certificate server, certificate server is by authentication service client terminal, from the Bluetooth identities of embedded security module
Certification terminal obtains the identity information in security module, row information of going forward side by side interaction, so as to carry out subscriber authentication.
2. the system as claimed in claim 1, the Bluetooth identities certification terminal of described embedded security module includes:Security module
Module for reading and writing, is used for and the security module that embeds communicates and reads and writes data;Bluetooth communication, for leading to Authentication Client
Letter.
3. system as claimed in claim 2, described security module is the safety chip based on the agreements of ISO/IEC 7816, can
To be done directly using eID cards, the chip programming based on GlobalPlatform technologies can also be used to complete.
4. the system as claimed in claim 1, described authentication service client terminal includes two kinds independent of application program and plug-in unit
Form, described authentication service client terminal include:Information communication module, the Bluetooth identities certification for being used for and embedding security module are whole
End communication, to read and write the data in security module;Certification callback module, for handling the result of identification service system return and leading to
Cross readjustment notice certification promoter;Logger module, record authentication information, including certification promoter, authenticated time, certification knot
Fruit.
5. a kind of identity identifying method based on bluetooth, it is characterised in that comprise the following steps:
ID authentication request is proposed based on the application program of internet or mobile Internet, with embedded certification in the application
Service client plug-in unit or external authentication service client terminal program interact, and apply for authentication, and application program will obtain
Ask token;
Authentication service client terminal communicates with the Bluetooth identities certification terminal of embedded security module, and is communicated with certificate server, makes
Security module in Bluetooth identities certification terminal can exchange information with certificate server, verify the legitimacy of user identity;
Authentication result is returned to client by certificate server, while adjusts back application server, notice application server checking knot
Fruit;
Authentication result is returned to application program by authentication service client terminal, and application program is by asking token to application server two
Secondary confirmation authentication result.
6. method as claimed in claim 5, authentication service client terminal is in the Bluetooth identities certification terminal with embedded security module
, it is necessary to require the PIN code of input security module to user during communication, after PIN code is verified, client-side can be whole by bluetooth
End communicates with security module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610863172.0A CN107888538A (en) | 2016-09-29 | 2016-09-29 | A kind of identity identifying method and system based on Bluetooth terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610863172.0A CN107888538A (en) | 2016-09-29 | 2016-09-29 | A kind of identity identifying method and system based on Bluetooth terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107888538A true CN107888538A (en) | 2018-04-06 |
Family
ID=61769854
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610863172.0A Pending CN107888538A (en) | 2016-09-29 | 2016-09-29 | A kind of identity identifying method and system based on Bluetooth terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107888538A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109102050A (en) * | 2018-08-20 | 2018-12-28 | 北京旷视科技有限公司 | Checking method, device and server, application server, system of real name verifying system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005036822A1 (en) * | 2003-09-24 | 2005-04-21 | France Telecom | Method and device for exchanging data between a terminal connected to a network, and a sim card placed inside a mobile terminal |
| CN103259667A (en) * | 2013-06-07 | 2013-08-21 | 北京邮电大学 | Method and system for eID authentication on mobile terminal |
| CN104202299A (en) * | 2014-08-06 | 2014-12-10 | 北京中金国信科技有限公司 | System and method of identity authentication based on Bluetooth |
| CN104243461A (en) * | 2014-09-04 | 2014-12-24 | 大唐微电子技术有限公司 | Mobile terminal network security authentication method, whole SD card and mobile terminal |
| CN104601593A (en) * | 2015-02-04 | 2015-05-06 | 公安部第三研究所 | Anti-tracking method in network electronic identity authentication process based on challenge modes |
-
2016
- 2016-09-29 CN CN201610863172.0A patent/CN107888538A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005036822A1 (en) * | 2003-09-24 | 2005-04-21 | France Telecom | Method and device for exchanging data between a terminal connected to a network, and a sim card placed inside a mobile terminal |
| CN103259667A (en) * | 2013-06-07 | 2013-08-21 | 北京邮电大学 | Method and system for eID authentication on mobile terminal |
| CN104202299A (en) * | 2014-08-06 | 2014-12-10 | 北京中金国信科技有限公司 | System and method of identity authentication based on Bluetooth |
| CN104243461A (en) * | 2014-09-04 | 2014-12-24 | 大唐微电子技术有限公司 | Mobile terminal network security authentication method, whole SD card and mobile terminal |
| CN104601593A (en) * | 2015-02-04 | 2015-05-06 | 公安部第三研究所 | Anti-tracking method in network electronic identity authentication process based on challenge modes |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109102050A (en) * | 2018-08-20 | 2018-12-28 | 北京旷视科技有限公司 | Checking method, device and server, application server, system of real name verifying system |
| CN109102050B (en) * | 2018-08-20 | 2021-08-10 | 北京旷视科技有限公司 | Verification method and device, server, application server and real-name verification system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103841560B (en) | Strengthen the method and apparatus of SIM card reliability | |
| KR101504855B1 (en) | Method for exporting on a secure server data comprised on a uicc comprised in a terminal | |
| CN103259667B (en) | The method and system of eID authentication on mobile terminal | |
| CN104486343B (en) | A kind of method and system of double factor two-way authentication | |
| CN104243461B (en) | A kind of method of mobile terminal network safety certification, SD blocks entirely and mobile terminal | |
| US20190165947A1 (en) | Signatures for near field communications | |
| CN102202306B (en) | Mobile security authentication terminal and method | |
| CN101841525A (en) | Secure access method, system and client | |
| CN106936792A (en) | Safety certifying method and system and the mobile terminal for safety certification | |
| TWI632798B (en) | Server, mobile terminal, and network real-name authentication system and method | |
| JP2012530311A (en) | How to log into a mobile radio network | |
| CN103905194B (en) | Identity traceability authentication method and system | |
| CN102026180A (en) | M2M transmission control method, device and system | |
| CN103037366B (en) | Mobile phone users authentication method based on asymmetric cryptographic technique and mobile terminal | |
| CN104424676A (en) | Identity information sending method, identity information sending device, access control card reader and access control system | |
| CN101588573B (en) | Safety verifying method, system and mobile terminal, server | |
| KR101926020B1 (en) | System for Operating a Payment by using Dynamic Determined Authentication Number | |
| US20230216688A1 (en) | Call center web-based authentication using a contactless card | |
| CN104660401A (en) | Authentication method, authentication system and terminal | |
| CN105704092A (en) | User identity authentication method, device and system | |
| CN105743651B (en) | The card in chip secure domain is using method, apparatus and application terminal | |
| CN102665208B (en) | Mobile terminal, terminal banking safety certifying method and system | |
| CN106656507A (en) | Method and device for electronic authentication based on mobile terminal | |
| US20180234412A1 (en) | Online authentication method based on smart card, smart card and authentication server | |
| CN104918245B (en) | A kind of identity identifying method, device, server and client |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20180406 |
|
| WD01 | Invention patent application deemed withdrawn after publication |