CN112632524A - Method and terminal for enhancing password security - Google Patents
Method and terminal for enhancing password security Download PDFInfo
- Publication number
- CN112632524A CN112632524A CN202011546411.2A CN202011546411A CN112632524A CN 112632524 A CN112632524 A CN 112632524A CN 202011546411 A CN202011546411 A CN 202011546411A CN 112632524 A CN112632524 A CN 112632524A
- Authority
- CN
- China
- Prior art keywords
- character string
- password
- database
- website
- login
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
- G06F21/46—Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Information Transfer Between Computers (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a method and a terminal for enhancing password security, which are characterized in that a character string is obtained by obtaining a password input by a user, a plurality of groups of character strings are obtained after all characters in the character string are arranged, and the plurality of groups of character strings and preset numbers corresponding to the character strings are stored in a local first database; when a user registers an account on a website, acquiring the website, randomly acquiring a serial number and a character string corresponding to the serial number from a first database, generating a password required by website registration, associating the website with the generated password, and storing the website and the generated password in a second database; when a user logs in a certain website, after passing the certification password, acquiring a password corresponding to the logged-in website from a database for logging in; the invention solves the problems that the user uses different passwords when registering on each website, the memory is difficult, and the passwords are easy to leak when the same password is used when registering on each website.
Description
Technical Field
The invention relates to the technical field of computers, in particular to a method and a terminal for enhancing password security.
Background
In the prior art, when each website registers a login account, a password input by a user is combined by any one or more of numbers, letters and special characters, and based on safety consideration, the longer the password is, the more complex the combination mode is, and the higher the security of the password is; however, most of the existing websites can only be accessed after login accounts are registered, if the password registered on each website by the user is complicated and the passwords registered on each website are different, the passwords input by most websites are wrong due to the problem of disordered memory of the user, and great trouble is brought to the user; if the passwords set by the user on each website are the same, when a website is hacked or the password of the user is leaked due to improper storage, the problem that the passwords of all websites are leaked is caused.
Disclosure of Invention
In view of the above, an object of the present invention is to provide a method and a terminal for enhancing password security, which solve the problems that passwords used by users during registration on each website are different and difficult to memorize, and when the passwords used during registration on each website are the same, the passwords are easy to leak.
In order to achieve the purpose, the invention adopts the technical scheme that:
the invention provides a method for enhancing password security, which comprises a step of registering an account number in a webpage and a step of logging in the account number:
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
The invention also provides a terminal for enhancing password security, which comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, wherein the steps realized when the processor executes the computer program comprise a step of registering an account number in a webpage and a step of logging in the account number:
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
The beneficial effects of the above technical scheme are:
according to the method and the terminal for enhancing the password security, a user only needs to input a password in advance before registering in each website, a character string is obtained by obtaining the input password, a plurality of groups of character strings are obtained after all characters in the character string are arranged completely, a plurality of preset numbers and a plurality of groups of character strings are stored in a local first database, and the numbers correspond to the character strings one by one; when a user registers an account on a website, acquiring the website, randomly acquiring a serial number and a character string corresponding to the serial number from a first database, generating a password required by website registration, associating the website with the generated password, and storing the website and the generated password in a local second database; when a user logs in a certain website, whether a password input by the user is consistent with a reserved password or not is verified, and after the password is verified, the password corresponding to the logged-in website is obtained from a database for logging in, so that the method is safe and reliable, the user only needs to set one password, automatic logging in of a plurality of websites can be realized, and when the password set by the user is leaked, other people cannot log in a registered account from other terminals; the invention solves the problems that the passwords used by the user during the registration on each website are different and difficult to memorize, and the passwords are easy to leak when the passwords used during the registration on each website are the same.
Drawings
Fig. 1 is a schematic diagram illustrating the main steps of a method for enhancing security of a password according to the present invention.
Fig. 2 is a schematic structural diagram of a terminal for enhancing password security according to the present invention.
The reference numbers illustrate:
1. a memory; 2. a processor.
Detailed Description
The invention is further described below with reference to the following figures and specific examples:
as shown in fig. 1, the present invention provides a method for enhancing password security, which includes a step of registering an account in a web page and a step of logging in an account:
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
As can be seen from the above description, according to the method for enhancing password security provided by the present invention, before registering in each website, a user only needs to input a password in advance, obtain a character string by obtaining the input password, obtain a plurality of groups of character strings after arranging all characters in the character string, store a plurality of preset numbers and a plurality of groups of character strings in a local first database, where the numbers correspond to the character strings one by one; when a user registers an account on a website, acquiring the website, randomly acquiring a serial number and a character string corresponding to the serial number from a first database, generating a password required by website registration, associating the website with the generated password, and storing the website and the generated password in a local second database; when a user logs in a certain website, whether a password input by the user is consistent with a reserved password or not is verified, and after the password is verified, the password corresponding to the logged-in website is obtained from a database for logging in, so that the method is safe and reliable, the user only needs to set one password, automatic logging in of a plurality of websites can be realized, and when the password set by the user is leaked, other people cannot log in a registered account from other terminals; the invention solves the problems that the passwords used by the user during the registration on each website are different and difficult to memorize, and the passwords are easy to leak when the passwords used during the registration on each website are the same.
Further, the S12 specifically includes:
fully arranging the character strings to obtain N groups of arranged character strings;
generating N random numbers to obtain N numbers;
and storing N numbers and N groups of character strings in a local first database, wherein the N numbers correspond to the N groups of character strings one by one.
As can be seen from the above description, after the character strings corresponding to the input password are arranged completely, N random numbers are generated to obtain N numbers, that is, each number is a random number; the N groups of fully arranged character strings correspond to the N generated numbers, and the N numbers and the N groups of character strings are stored in a local first database; the method can realize the password input when the input password completes the registration of a plurality of websites, and the input password is different when each website is registered, so that the safety of other websites cannot be influenced even if the password of one website is leaked.
Further, according to the first serial number and the first character string, a second character string is obtained, which specifically comprises:
and randomly taking a group of arranged character strings after full arrangement according to each digit of the first serial number and all characters of the second character string to obtain the second character string.
From the above description, through the above method, the security of using the password when registering the website is further improved, and malicious attack of logging in the account by inputting different passwords for many times by a person is prevented.
Further, the S12 is preceded by:
creating a local first database and a local second database;
encrypting the second database.
As can be seen from the above description, by the above method, the security of accessing the local second database is improved, and the risk of revealing the login password of each website stored therein is prevented.
Further, encrypting the second database specifically includes:
generating an encryption key according to a preset first password and a preset physical address; encrypting the second database by the encryption key; the preset physical address is the physical address of the user using terminal and is reserved for the user.
From the above description, it can be seen that the security of the encryption of the local second database is improved by the above method.
Further, before storing the second character string and the first website in a local second database after associating them, the method further includes:
acquiring a physical address of the terminal to obtain a first physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a second password;
generating a decryption key according to the second password and the first physical address;
decrypting the second database with the decryption key.
As can be seen from the above description, by the above method, it is ensured that only the user terminal can access the second database, that is, when the password registered and used by each website is stored in the second database, the access right is required; when the second character string is associated with the first website and then stored in a local second database, immediately encrypting the second database; by the method, the safety of the password is enhanced.
Further, between S22 and S23, there are:
acquiring a physical address of the terminal to obtain a second physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a third password;
generating a first decryption key according to the third password and the second physical address;
decrypting the second database with the first decryption key.
From the above description, when a user logs in a website and needs to acquire a corresponding login password in a second database, the user needs to decrypt the second database to access the website, so that the security of password storage is ensured; when the character string corresponding to the second website is obtained from a local second database, a fourth character string is obtained; the second database is immediately encrypted.
Further, the S12 is preceded by:
and establishing wireless local area network connection with the local server, the first database and the second database respectively.
From the above description, it can be known that, by the above method, the first database and the second database in the local are prevented from being directly accessed by the external network, and the security of the password is further ensured.
As shown in fig. 2, the present invention further provides a terminal for enhancing password security, including a memory 1, a processor 2, and a computer program stored in the memory 1 and operable on the processor 2, wherein the steps implemented when the processor executes the computer program include a step of registering an account in a web page and a step of logging in an account:
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
Further, in the terminal for enhancing password security, the S12 specifically is:
fully arranging the character strings to obtain N groups of arranged character strings;
generating N random numbers to obtain N numbers;
and storing N numbers and N groups of character strings in a local first database, wherein the N numbers correspond to the N groups of character strings one by one.
Further, the terminal for enhancing password security obtains a second character string according to the first number and the first character string, and specifically includes:
and randomly taking a group of arranged character strings after full arrangement according to each digit of the first serial number and all characters of the second character string to obtain the second character string.
Further, the terminal for enhancing password security further includes, before the S12:
creating a local first database and a local second database;
encrypting the second database.
Further, the encrypting the second database by the terminal for enhancing password security specifically includes:
generating an encryption key according to a preset first password and a preset physical address;
encrypting the second database by the encryption key.
Further, before the terminal for enhancing password security associates the second character string with the first website and stores the second character string in a local second database, the method further includes:
acquiring a physical address of the terminal to obtain a first physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a second password;
generating a decryption key according to the second password and the first physical address;
decrypting the second database with the decryption key.
Further, the terminal for enhancing password security further includes, between S22 and S23:
acquiring a physical address of the terminal to obtain a second physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a third password;
generating a first decryption key according to the third password and the second physical address;
decrypting the second database with the first decryption key.
Further, the terminal for enhancing password security further includes, before the S12:
and establishing wireless local area network connection with the local server, the first database and the second database respectively.
Some preferred embodiments or application examples are listed below to help those skilled in the art to better understand the technical content of the present invention and the technical contribution of the present invention with respect to the prior art:
the first preferred embodiment (or the first application embodiment) is:
the invention provides a method for enhancing password security, which comprises a step of registering an account number in a webpage and a step of logging in the account number:
the step of registering the account number by the webpage comprises the following steps:
s105: creating a local first database and a local second database; encrypting the second database;
wherein encrypting the second database specifically comprises:
generating an encryption key according to a preset first password and a preset physical address;
encrypting the second database by the encryption key;
the preset first password is a password reserved by a user; the preset physical address is a physical address of a user using terminal and is reserved for the user;
s106: establishing wireless local area network connection with a local server, a first database and a second database respectively;
s11: acquiring an input password to obtain a character string;
the character string comprises one or more of numbers, letters and special characters;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
the S12 specifically includes:
fully arranging the character strings to obtain N groups of arranged character strings; the N is m! (m order), and the m is the number of characters in the character string;
generating N random numbers to obtain N numbers; the number is the random number;
storing N serial numbers and N groups of character strings in a local first database, wherein the N serial numbers correspond to the N groups of character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s1041: acquiring a physical address of the terminal to obtain a first physical address; after prompting to input a password, acquiring the password input by the terminal to obtain a second password; generating a decryption key according to the second password and the first physical address; decrypting the second database by the decryption key;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
obtaining a second character string according to the first serial number and the first character string, specifically:
according to each digit of the first serial number and all characters of a second character string, after full arrangement, randomly selecting a group of arranged character strings to obtain the second character string;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s221: acquiring a physical address of the terminal to obtain a second physical address; after prompting to input a password, acquiring the password input by the terminal to obtain a third password; generating a first decryption key according to the third password and the second physical address; decrypting the second database by the first decryption key;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
The second preferred embodiment (or the second application embodiment) is:
the invention provides a terminal for enhancing password security, which comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, wherein the steps realized when the processor executes the computer program comprise a webpage account registration step and an account login step;
the step of registering the account number by the webpage comprises the following steps:
s105: creating a local first database and a local second database; encrypting the second database;
wherein encrypting the second database specifically comprises:
generating an encryption key according to a preset first password and a preset physical address;
encrypting the second database by the encryption key;
the preset first password is a password reserved by a user; the preset physical address is a physical address of a user using terminal and is reserved for the user;
s106: establishing wireless local area network connection with a local server, a first database and a second database respectively;
s11: acquiring an input password to obtain a character string;
the character string comprises one or more of numbers, letters and special characters;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
the S12 specifically includes:
fully arranging the character strings to obtain N groups of arranged character strings; the N is m! (m order), and the m is the number of characters in the character string;
generating N random numbers to obtain N numbers; the number is the random number;
storing N serial numbers and N groups of character strings in a local first database, wherein the N serial numbers correspond to the N groups of character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s1041: acquiring a physical address of the terminal to obtain a first physical address; after prompting to input a password, acquiring the password input by the terminal to obtain a second password; generating a decryption key according to the second password and the first physical address; decrypting the second database by the decryption key;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
obtaining a second character string according to the first serial number and the first character string, specifically:
according to each digit of the first serial number and all characters of a second character string, after full arrangement, randomly selecting a group of arranged character strings to obtain the second character string;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s221: acquiring a physical address of the terminal to obtain a second physical address; after prompting to input a password, acquiring the password input by the terminal to obtain a third password; generating a first decryption key according to the third password and the second physical address; decrypting the second database by the first decryption key;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
The present invention has been described with reference to the above embodiments and the accompanying drawings, however, the above embodiments are only examples for carrying out the present invention. It should be noted that the disclosed embodiments do not limit the scope of the invention. Rather, modifications and equivalent arrangements included within the spirit and scope of the claims are included within the scope of the invention.
Claims (10)
1. A method for enhancing password security is characterized by comprising a step of registering an account number in a webpage and a step of logging in the account number:
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string
S15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
2. The method for enhancing password security according to claim 1, wherein the S12 specifically includes:
fully arranging the character strings to obtain N groups of arranged character strings;
generating N random numbers to obtain N numbers;
and storing N numbers and N groups of character strings in a local first database, wherein the N numbers correspond to the N groups of character strings one by one.
3. The method for enhancing password security according to claim 2, wherein a second character string is obtained according to the first number and the first character string, and specifically:
and randomly taking a group of arranged character strings after full arrangement according to each digit of the first serial number and all characters of the second character string to obtain the second character string.
4. The method for enhancing cryptographic security of claim 1, said S12 being preceded by:
creating a local first database and a local second database;
encrypting the second database.
5. The method for enhancing cryptographic security according to claim 4, wherein encrypting the second database specifically includes:
generating an encryption key according to a preset first password and a preset physical address;
encrypting the second database by the encryption key.
6. The method of claim 5, wherein associating the second string with the first website before storing the second string in a local second database further comprises:
acquiring a physical address of the terminal to obtain a first physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a second password;
generating a decryption key according to the second password and the first physical address;
decrypting the second database with the decryption key.
7. The method of claim 4, further comprising between S22 and S23:
acquiring a physical address of the terminal to obtain a second physical address;
after prompting to input a password, acquiring the password input by the terminal to obtain a third password;
generating a first decryption key according to the third password and the second physical address;
decrypting the second database with the first decryption key.
8. The method for enhancing cryptographic security of claim 1, said S12 being preceded by:
and establishing wireless local area network connection with the local server, the first database and the second database respectively.
9. A terminal for enhancing password security comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, and is characterized in that the steps realized when the processor executes the computer program comprise a step of registering an account in a webpage and a step of logging in the account;
the step of registering the account number by the webpage comprises the following steps:
s11: acquiring an input password to obtain a character string;
s12: arranging all characters in the character strings to obtain a plurality of groups of arranged character strings; storing a plurality of preset serial numbers and a plurality of groups of character strings in a local first database, wherein the serial numbers correspond to the character strings one by one;
s13: when it is monitored that a terminal initiates a registration request on a first webpage, acquiring a website of a login page corresponding to the first webpage through a local server to obtain a first website;
s14: randomly taking out a serial number and a character string corresponding to the serial number from the first database to obtain a first serial number and a first character string;
s15: obtaining a second character string according to the first serial number and the first character string; storing the second character string and the first website after being associated in a local second database, and deleting a first serial number and a first character string stored in a first database;
s16: filling the second character string into a password input box of a registered account page corresponding to the first webpage so that the user can complete the registration of the first webpage login account;
the account login step comprises the following steps:
s21: when it is monitored that the terminal initiates a login request on a webpage, a login password input by the terminal is obtained, and a third character string is obtained;
s22: judging whether the third character string is consistent with the character string, if not, prompting to input the login password again; if the log-in page is consistent with the current log-in page, acquiring a website of the current log-in page to obtain a second website;
s23: acquiring a character string corresponding to the second website from a local second database to obtain a fourth character string;
s24: and filling the fourth character string into a password input box of the login page so as to enable the user to complete account login.
10. The terminal for enhancing password security according to claim 9, wherein the S12 specifically is:
fully arranging the character strings to obtain N groups of arranged character strings;
generating N random numbers to obtain N numbers;
and storing N numbers and N groups of character strings in a local first database, wherein the N numbers correspond to the N groups of character strings one by one.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011546411.2A CN112632524A (en) | 2020-12-24 | 2020-12-24 | Method and terminal for enhancing password security |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011546411.2A CN112632524A (en) | 2020-12-24 | 2020-12-24 | Method and terminal for enhancing password security |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112632524A true CN112632524A (en) | 2021-04-09 |
Family
ID=75324162
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011546411.2A Pending CN112632524A (en) | 2020-12-24 | 2020-12-24 | Method and terminal for enhancing password security |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112632524A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114120457A (en) * | 2021-09-07 | 2022-03-01 | 重庆畅停智慧停车服务有限公司 | Parking self-service payment method and vehicle query method based on mobile phone terminal |
| CN114499972A (en) * | 2021-12-28 | 2022-05-13 | 重庆医药高等专科学校 | Purchasing management login data working system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2003296282A (en) * | 2002-03-29 | 2003-10-17 | Fujitsu Ltd | Password conversion processor |
| CN103379113A (en) * | 2012-04-26 | 2013-10-30 | 徐金富 | Personal portal system and cross-platform single sign on method |
| CN103401869A (en) * | 2013-07-31 | 2013-11-20 | 常州北大众志网络计算机有限公司 | Automatic account logging method |
| CN107332837A (en) * | 2017-06-28 | 2017-11-07 | 青岛科技大学 | A kind of password generated and fill method based on page address |
| CN111884802A (en) * | 2020-08-25 | 2020-11-03 | 中移(杭州)信息技术有限公司 | Media stream encryption transmission method, system, terminal and electronic equipment |
-
2020
- 2020-12-24 CN CN202011546411.2A patent/CN112632524A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2003296282A (en) * | 2002-03-29 | 2003-10-17 | Fujitsu Ltd | Password conversion processor |
| CN103379113A (en) * | 2012-04-26 | 2013-10-30 | 徐金富 | Personal portal system and cross-platform single sign on method |
| CN103401869A (en) * | 2013-07-31 | 2013-11-20 | 常州北大众志网络计算机有限公司 | Automatic account logging method |
| CN107332837A (en) * | 2017-06-28 | 2017-11-07 | 青岛科技大学 | A kind of password generated and fill method based on page address |
| CN111884802A (en) * | 2020-08-25 | 2020-11-03 | 中移(杭州)信息技术有限公司 | Media stream encryption transmission method, system, terminal and electronic equipment |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114120457A (en) * | 2021-09-07 | 2022-03-01 | 重庆畅停智慧停车服务有限公司 | Parking self-service payment method and vehicle query method based on mobile phone terminal |
| CN114120457B (en) * | 2021-09-07 | 2024-05-14 | 重庆亿连信息科技有限公司 | Parking self-service payment method and vehicle inquiring method based on mobile phone end |
| CN114499972A (en) * | 2021-12-28 | 2022-05-13 | 重庆医药高等专科学校 | Purchasing management login data working system |
| CN114499972B (en) * | 2021-12-28 | 2023-09-05 | 重庆医药高等专科学校 | Purchasing management login data working system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107302539B (en) | Electronic identity registration and authentication login method and system | |
| CN103795731B (en) | A kind of user account login method | |
| US9026788B2 (en) | Managing credentials | |
| Bojinov et al. | Kamouflage: Loss-resistant password management | |
| CN103581105B (en) | Login validation method and login authentication system | |
| TWI587672B (en) | Login authentication method, client, server and system | |
| Kontaxis et al. | Sauth: Protecting user accounts from password database leaks | |
| CN107295011B (en) | Webpage security authentication method and device | |
| CN107864115A (en) | A kind of method that user account login authentication is carried out using portable terminal | |
| CN102685110B (en) | Universal method and system for user registration authentication based on fingerprint characteristics | |
| KR20130131682A (en) | Method for web service user authentication | |
| US9654466B1 (en) | Methods and systems for electronic transactions using dynamic password authentication | |
| CN107241184B (en) | Personal password generation and management method based on improved AES | |
| CN112131564A (en) | Encrypted data communication method, apparatus, device, and medium | |
| CN110059458A (en) | A kind of user password encryption and authentication method, apparatus and system | |
| CN106572076A (en) | Web service access method, client side and server side | |
| US9954853B2 (en) | Network security | |
| CN112632524A (en) | Method and terminal for enhancing password security | |
| WO2013170822A2 (en) | Method and device for processing password for logging into server | |
| CN116108416A (en) | Application program interface safety protection method and system | |
| KR20120087095A (en) | Apparatus and method for generating a realtime password and storage medium | |
| JP6910748B1 (en) | Password authentication system | |
| US10972286B2 (en) | Token-based authentication with signed message | |
| KR101372090B1 (en) | Log in system and method | |
| KR101221728B1 (en) | The certification process server and the method for graphic OTP certification |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20210409 |