CN114244628A - Authorization method and system - Google Patents

Authorization method and system Download PDF

Info

Publication number
CN114244628A
CN114244628A CN202210001890.2A CN202210001890A CN114244628A CN 114244628 A CN114244628 A CN 114244628A CN 202210001890 A CN202210001890 A CN 202210001890A CN 114244628 A CN114244628 A CN 114244628A
Authority
CN
China
Prior art keywords
terminal
information
authorized
authentication
digital token
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202210001890.2A
Other languages
Chinese (zh)
Other versions
CN114244628B (en
Inventor
周景盛
周晟
王云松
杨武
季晟琦
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Hsic Application System Co ltd
Original Assignee
Shanghai Hsic Application System Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Hsic Application System Co ltd filed Critical Shanghai Hsic Application System Co ltd
Priority to CN202210001890.2A priority Critical patent/CN114244628B/en
Publication of CN114244628A publication Critical patent/CN114244628A/en
Application granted granted Critical
Publication of CN114244628B publication Critical patent/CN114244628B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07GREGISTERING THE RECEIPT OF CASH, VALUABLES, OR TOKENS
    • G07G1/00Cash registers
    • G07G1/12Cash registers electronically operated
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07GREGISTERING THE RECEIPT OF CASH, VALUABLES, OR TOKENS
    • G07G1/00Cash registers
    • G07G1/12Cash registers electronically operated
    • G07G1/14Systems including one or more distant stations co-operating with a central processing unit
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides an authorization method and an authorization system, wherein the authorization method comprises the following steps: the mobile terminal submits registration information to a registration end to complete a registration process; the terminal to be authorized submits registration information to a registration end to complete a registration process; the mobile terminal sends login information to the authentication terminal to apply for the digital token; the authentication end returns the digital token A to the mobile terminal; the terminal to be authorized sends login information and order information to the authentication terminal and applies for a digital token; the authentication terminal binds the digital token B with the order information and returns the digital token B to the terminal to be authorized; the terminal to be authorized scans the two-dimensional code displayed on the mobile terminal and applies for authentication; the authentication end returns the authorization result information. The scheme reduces the hardware cost of the terminal to be authorized. The terminal to be authorized and the mobile terminal can complete authorization operation only by scanning the two-dimension codes face to face, and convenience of authorization operation is improved. Meanwhile, the requirement of field management and control of authorized personnel is also reserved. Through triple verification, the authorization security is improved.

Description

Authorization method and system
Technical Field
The present invention relates to the field of computer network technologies, and in particular, to an authorization method and system.
Background
In a store with a large business trip or a chain of business, the authority management of the POS machine is a complicated task. When a new POS machine is deployed, the POS machine needs to be set to be in a network, and when goods returning and changing situations occur, temporary authorization needs to be carried out on the POS machine. The existing operation mode is that a specific person goes to the side of the POS machine and authorizes the POS machine through a fingerprint module or a smart card module for authorization. However, the hardware cost of the current authorization system is high, and the operation is cumbersome.
Disclosure of Invention
The invention provides an authorization method and an authorization system, which aim to solve the technical problems of higher hardware cost and more complicated operation of the conventional authorization system.
In order to solve the technical problem, the invention provides an authorization method, which comprises the following steps:
s1, the mobile terminal submits registration information to a registration end, and the registration end completes the registration process of the mobile terminal;
s2, the terminal to be authorized submits registration information to the registration end, and the registration end completes the registration process of the terminal to be authorized;
s3, the mobile terminal sends login information to an authentication terminal and applies for a digital token to the authentication terminal;
s4, the authentication terminal sends the login information of the mobile terminal to the registration terminal, and the registration terminal is applied to check the login information of the mobile terminal;
s5, the login information of the mobile terminal is checked by the registration terminal, and the checking result of the mobile terminal is returned to the authentication terminal;
s6, if the mobile terminal passes the audit result, the authentication terminal generates a digital token A and returns the digital token A to the mobile terminal; if the audit result of the mobile terminal is not passed, the authorization process is terminated;
s7, the mobile terminal displays the digital token A in a two-dimensional code form;
s8, the terminal to be authorized sends login information and order information to the authentication terminal and applies for a digital token from the authentication terminal;
s9, the authentication end sends login information of the terminal to be authorized to the registration end, and the registration end is applied to check the login information of the terminal to be authorized;
s10, the login information of the terminal to be authorized is checked by the registration terminal, and the check result of the terminal to be authorized is returned to the authentication terminal;
s11, if the audit result of the terminal to be authorized is passed, the authentication terminal generates a digital token B, binds the digital token B with the order information, and returns the digital token B to the terminal to be authorized; if the audit result of the terminal to be authorized is not passed, the authorization process is terminated;
s12, the terminal to be authorized scans the two-dimensional code displayed on the mobile terminal and extracts the digital token A;
s13, the terminal to be authorized sends the digital token A and the digital token B to the authentication terminal to apply authentication to the authentication terminal;
s14, the authentication end verifies the validity and timeliness of the digital token A and the digital token B, and verifies whether the authority range of the digital token A covers the digital token B and the order information; if the verification is passed, the authentication end returns authorization success information to the terminal to be authorized; and if the verification is not passed, the authentication end returns the authorization refusing information to the terminal to be authorized.
Optionally, step S14 is followed by the following steps: and repeating the steps S3-S14 to complete the authorization process corresponding to another order information.
Optionally, the digital token a includes three pieces of information, where the first piece of information carries an encryption algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the mobile terminal, the valid period starting time of the digital token A, the valid period ending time of the digital token A and the unique identity of the digital token A; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64.
Optionally, the digital token B includes three pieces of information, and the first piece of information carries an encryption algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the terminal to be authorized, the valid period starting time of the digital token B, the valid period ending time of the digital token B and the unique identity of the digital token B; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64.
Optionally, the digital token a is refreshed according to a preset time.
Optionally, the registration end is disposed in a first server, and the authentication end is disposed in a second server.
Optionally, in step S1, the mobile terminal is connected to the registration end through an intranet; in step S2, the terminal to be authorized is connected to the registration terminal through an intranet; in steps S3 to S14, the mobile terminal is connected to the authentication terminal through a public network, the terminal to be authorized is connected to the authentication terminal through a public network or an intranet, and the authentication terminal is connected to the registration terminal through an intranet.
Optionally, one second server is connected to the plurality of first servers, the plurality of mobile terminals, and the plurality of terminals to be authorized, respectively.
Optionally, the terminal to be authorized is a desktop POS machine, a tablet POS machine, a handheld POS machine, or an automatic cash register.
The invention also provides an authorization system, which comprises a registration end, an authentication end, a mobile terminal and a terminal to be authorized, wherein the authorization system is used for executing any one of the authorization methods.
The authorization method and the authorization system provided by the invention have the following beneficial effects:
1. the hardware cost of the terminal to be authorized is reduced, for example, the hardware cost of the cash register terminal is reduced. The authorization method provided by the invention can replace a fingerprint module or an intelligent card module in the prior art to verify the identity information of an authorizer, and the cost of the two-dimensional code in the invention is far lower than that of the fingerprint module or the intelligent card module.
2. The terminal to be authorized and the mobile terminal can complete authorization operation only by scanning the two-dimension codes face to face, and convenience of authorization operation is improved. Meanwhile, the requirement of field management and control of authorized personnel is also reserved.
3. Through triple verification, the authorization security is improved. The registration terminal verifies the registration information of the mobile terminal and the terminal to be authorized; the authentication end verifies the validity, timeliness and correctness of the digital token; and the authentication terminal verifies the consistency of the order information bound by the digital token.
Drawings
Fig. 1 is a flowchart illustrating an authorization method according to an embodiment of the present invention.
Fig. 2 is a schematic network topology diagram of a system for authorization during registration according to an embodiment of the present invention.
Fig. 3 is a schematic network topology diagram of an authorization system during authentication according to an embodiment of the present invention.
Detailed Description
To make the objects, advantages and features of the present invention more apparent, an authorization method and system according to the present invention will be described in detail with reference to the accompanying drawings. It is to be noted that the drawings are in a very simplified form and are not to precise scale, which is merely for the purpose of facilitating and distinctly claiming the embodiments of the present invention.
In the description of the present invention, the terms "first", "second", etc. are used for convenience of description and reference, but are not to be construed as indicating or implying relative importance or implying any number of technical features indicated. Thus, a feature defined by a qualifier such as "first," "second," etc., may explicitly or implicitly include one or more of that feature.
As shown in fig. 1, fig. 2 and fig. 3, the present embodiment provides an authorization method, which includes the following steps:
s1, the mobile terminal submits registration information to a registration end, and the registration end completes the registration process of the mobile terminal; the registration information may include information such as a user name, a password, and a number of the mobile terminal;
s2, the terminal to be authorized submits registration information to the registration end, and the registration end completes the registration process of the terminal to be authorized; the terminal to be authorized can be a POS machine or other equipment needing authorization; the registration information may include information such as a user name, a password, and a number of the terminal to be authorized;
s3, the mobile terminal sends login information to an authentication terminal and applies for a digital token to the authentication terminal; the login information may include information such as a user name and a password;
s4, the authentication terminal sends the login information of the mobile terminal to the registration terminal, and the registration terminal is applied to check the login information of the mobile terminal;
s5, the login information of the mobile terminal is checked by the registration terminal, and the checking result of the mobile terminal is returned to the authentication terminal; the registration terminal can compare whether the login information of the mobile terminal is the same as the related information submitted during registration, if so, the audit is passed, and if not, the audit is not passed;
s6, if the mobile terminal passes the audit result, the authentication terminal generates a digital token A and returns the digital token A to the mobile terminal; if the audit result of the mobile terminal is not passed, the authorization process is terminated;
s7, the mobile terminal displays the digital token A in a two-dimensional code form;
s8, the terminal to be authorized sends login information and order information to the authentication terminal and applies for a digital token from the authentication terminal; the login information may include information such as a user name and a password; the order information may include a list of contents to be authorized, including, for example, the name, quantity, and price of the goods to be returned;
s9, the authentication end sends login information of the terminal to be authorized to the registration end, and the registration end is applied to check the login information of the terminal to be authorized;
s10, the login information of the terminal to be authorized is checked by the registration terminal, and the check result of the terminal to be authorized is returned to the authentication terminal;
s11, if the audit result of the terminal to be authorized is passed, the authentication terminal generates a digital token B, binds the digital token B with the order information, and returns the digital token B to the terminal to be authorized; if the audit result of the terminal to be authorized is not passed, the authorization process is terminated;
s12, the terminal to be authorized scans the two-dimensional code displayed on the mobile terminal and extracts the digital token A;
s13, the terminal to be authorized sends the digital token A and the digital token B to the authentication terminal to apply authentication to the authentication terminal;
s14, the authentication end verifies the validity and timeliness of the digital token A and the digital token B, and verifies whether the authority range of the digital token A covers the digital token B and the order information; if the verification is passed, the authentication end returns authorization success information to the terminal to be authorized; and if the verification is not passed, the authentication end returns the authorization refusing information to the terminal to be authorized.
Steps S1 to S14 may or may not be sequentially executed in the order from step S1 to step S14, and for example, steps S1 and S2 of the registration step may be executed simultaneously, or step S2 may be executed before step S1.
The authorization method provided by the embodiment has the following beneficial effects:
1. the hardware cost of the terminal to be authorized is reduced, for example, the hardware cost of the cash register terminal is reduced. The authorization method provided by the embodiment can replace a fingerprint module or a smart card module in the prior art to verify the identity information of an authorizer, and the cost of the two-dimensional code in the embodiment is far lower than that of the fingerprint module or the smart card module.
2. The terminal to be authorized and the mobile terminal can complete authorization operation only by scanning the two-dimension codes face to face, and convenience of authorization operation is improved. Meanwhile, the requirement of field management and control of authorized personnel is also reserved.
3. Through triple verification, the authorization security is improved. The registration terminal verifies the registration information of the mobile terminal and the terminal to be authorized; the authentication end verifies the validity, timeliness and correctness of the digital token; and the authentication terminal verifies the consistency of the order information bound by the digital token.
Optionally, as shown in fig. 1 and fig. 3, the step S14 is further followed by the following steps: and repeating the steps S3-S14 to complete the authorization process corresponding to another order information. The registration steps S1-S2 generally need only be performed once; the steps S3-S14 are repeated, so that the authorization process can be completed for different order information.
Optionally, the digital token a includes three pieces of information, where the first piece of information carries an encryption algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the mobile terminal, the valid period starting time of the digital token A, the valid period ending time of the digital token A and the unique identity of the digital token A; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64. The unique identity is a one-time identity, thereby circumventing replay attacks. The key is stored in the authentication end. The digital token provided by the embodiment can prevent the counterfeits or the falsifications of attackers.
Optionally, the digital token B includes three pieces of information, and the first piece of information carries an encryption algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the terminal to be authorized, the valid period starting time of the digital token B, the valid period ending time of the digital token B and the unique identity of the digital token B; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64. The unique identity is a one-time identity, thereby circumventing replay attacks. The key is stored in the authentication end. The digital token provided by the embodiment can prevent the counterfeits or the falsifications of attackers.
Optionally, the digital token a is refreshed according to a preset time. The preset time can be one minute, the digital token A is refreshed in real time, and the same digital token A can be prevented from being repeatedly used for many times.
Optionally, the registration end is disposed in a first server, and the authentication end is disposed in a second server. The registration end and the authentication end are respectively arranged in a server, so that the operation efficiency of the first server and the second server can be improved. In other embodiments, the registration end and the human dispute end may be located in the same server.
Optionally, as shown in fig. 2 and 3, in step S1, the mobile terminal is connected to the registration end through an intranet; in step S2, the terminal to be authorized is connected to the registration terminal through an intranet; in steps S3 to S14, the mobile terminal is connected to the authentication terminal through a public network, the terminal to be authorized is connected to the authentication terminal through a public network or an intranet, and the authentication terminal is connected to the registration terminal through an intranet. The registration terminal is not exposed in the public network, so that the information in the registration terminal can be prevented from being attacked.
Optionally, one second server is connected to the plurality of first servers, the plurality of mobile terminals, and the plurality of terminals to be authorized, respectively. Therefore, one authentication end can authenticate a plurality of terminals to be authorized at the same time, and the authentication efficiency is improved.
Optionally, the terminal to be authorized is a desktop POS machine, a tablet POS machine, a handheld POS machine, or an automatic cash register. The authorization method provided by the implementation can be applied to various cash register devices such as desktop POS machines, tablet POS machines, handheld POS machines or automatic cash registers, for example, to authorize the return authority of the POS machines.
When the authorization method is used specifically, the registration terminal may be a central control computer 1 of a merchant; the authentication end is a central control computer 2 of a merchant; the terminal to be authorized is a POS machine in a retail store, and a cash register APP is installed in the POS machine; the mobile terminal is a smart phone, a goods return authorization APP is installed in the smart phone, and the mobile terminal is controlled by authorization personnel. After the cashier of POS machine has proposed the oral request of interim authorization, start the authorization APP of returning goods by the personnel of authorizing, click the authorization code button that shows in the authorization APP of returning goods, show the authorization two-dimensional code of returning goods, this two-dimensional code is automatic dynamic refreshing every minute. The cashier scans the code face to face, the cashier APP can verify the validity of the authorization code and the authority range of the authorization code to the central control computer 2, if the verification is passed, the authorization is successful, and the next goods return process can be carried out; failure to verify represents denial of authorization. The identity authentication during the authorization is completed by the central control computer 1 of the merchant, and the information encryption, decryption and authentication work are all completed by the central control computer 2 of the merchant.
The passive authorization method based on the two-dimension code can utilize a face-to-face information exchange mode of the two-dimension code, is convenient to use, can improve the working efficiency, and can save more hardware cost. The invention provides a good solution for managing the authority of the POS machine by the vast merchants.
As shown in fig. 1, fig. 2 and fig. 3, based on the same technical concept as the above authorization method, this embodiment further provides an authorization system, where the authorization system includes a registration end, an authentication end, a mobile terminal and a terminal to be authorized, and is configured to execute any one of the above authorization methods.
In summary, the authorization method and system provided by the present invention have the following beneficial effects:
1. the hardware cost of the terminal to be authorized is reduced, for example, the hardware cost of the cash register terminal is reduced. The authorization method provided by the invention can replace a fingerprint module or an intelligent card module in the prior art to verify the identity information of an authorizer, and the cost of the two-dimensional code in the invention is far lower than that of the fingerprint module or the intelligent card module.
2. The terminal to be authorized and the mobile terminal can complete authorization operation only by scanning the two-dimension codes face to face, and convenience of authorization operation is improved. Meanwhile, the requirement of field management and control of authorized personnel is also reserved.
3. Through triple verification, the authorization security is improved. The registration terminal verifies the registration information of the mobile terminal and the terminal to be authorized; the authentication end verifies the validity, timeliness and correctness of the digital token; and the authentication terminal verifies the consistency of the order information bound by the digital token.
The above description is only for the purpose of describing the preferred embodiments of the present invention, and is not intended to limit the scope of the present invention, and any variations and modifications made by those skilled in the art based on the above disclosure are within the scope of the present invention.

Claims (10)

1. An authorization method, characterized in that the authorization method comprises the steps of:
s1, the mobile terminal submits registration information to a registration end, and the registration end completes the registration process of the mobile terminal;
s2, the terminal to be authorized submits registration information to the registration end, and the registration end completes the registration process of the terminal to be authorized;
s3, the mobile terminal sends login information to an authentication terminal and applies for a digital token to the authentication terminal;
s4, the authentication terminal sends the login information of the mobile terminal to the registration terminal, and the registration terminal is applied to check the login information of the mobile terminal;
s5, the login information of the mobile terminal is checked by the registration terminal, and the checking result of the mobile terminal is returned to the authentication terminal;
s6, if the mobile terminal passes the audit result, the authentication terminal generates a digital token A and returns the digital token A to the mobile terminal; if the audit result of the mobile terminal is not passed, the authorization process is terminated;
s7, the mobile terminal displays the digital token A in a two-dimensional code form;
s8, the terminal to be authorized sends login information and order information to the authentication terminal and applies for a digital token from the authentication terminal;
s9, the authentication end sends login information of the terminal to be authorized to the registration end, and the registration end is applied to check the login information of the terminal to be authorized;
s10, the login information of the terminal to be authorized is checked by the registration terminal, and the check result of the terminal to be authorized is returned to the authentication terminal;
s11, if the audit result of the terminal to be authorized is passed, the authentication terminal generates a digital token B, binds the digital token B with the order information, and returns the digital token B to the terminal to be authorized; if the audit result of the terminal to be authorized is not passed, the authorization process is terminated;
s12, the terminal to be authorized scans the two-dimensional code displayed on the mobile terminal and extracts the digital token A;
s13, the terminal to be authorized sends the digital token A and the digital token B to the authentication terminal to apply authentication to the authentication terminal;
s14, the authentication end verifies the validity and timeliness of the digital token A and the digital token B, and verifies whether the authority range of the digital token A covers the digital token B and the order information; if the verification is passed, the authentication end returns authorization success information to the terminal to be authorized; and if the verification is not passed, the authentication end returns the authorization refusing information to the terminal to be authorized.
2. An authorization method according to claim 1, characterized in that step S14 is followed by the following steps: and repeating the steps S3-S14 to complete the authorization process corresponding to another order information.
3. An authorization method according to claim 1, characterized in that the digital token A comprises three pieces of information, a first piece of information carrying a cryptographic algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the mobile terminal, the valid period starting time of the digital token A, the valid period ending time of the digital token A and the unique identity of the digital token A; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64.
4. An authorization method according to claim 1, characterized in that the digital token B comprises three pieces of information, a first piece of information carrying a cryptographic algorithm; the second section of information carries the name of the registration end, the name of the authentication end, the name of the terminal to be authorized, the valid period starting time of the digital token B, the valid period ending time of the digital token B and the unique identity of the digital token B; the third section of information carries signature information, and the signature information uses the first section of information coded by BASE64 and the second section of information coded by BASE 64.
5. An authorisation method according to claim 1, in which the digital token A is refreshed at predetermined times.
6. An authorization method according to claim 1, wherein the registration end is provided in a first server and the authentication end is provided in a second server.
7. An authorization method according to claim 6, characterized in that in step S1, the mobile terminal is connected to the registration terminal through intranet; in step S2, the terminal to be authorized is connected to the registration terminal through an intranet; in steps S3 to S14, the mobile terminal is connected to the authentication terminal through a public network, the terminal to be authorized is connected to the authentication terminal through a public network or an intranet, and the authentication terminal is connected to the registration terminal through an intranet.
8. An authorization method according to claim 7, wherein one of said second servers is connected to a plurality of said first servers, a plurality of said mobile terminals and a plurality of said terminals to be authorized, respectively.
9. An authorization method according to claim 1, wherein the terminal to be authorized is a desktop POS machine, a tablet POS machine, a handheld POS machine or an automatic cash register.
10. An authorization system, characterized in that the authorization system comprises a registration end, an authentication end, a mobile terminal and a terminal to be authorized, and the authorization system is used for executing the authorization method of any one of claims 1 to 9.
CN202210001890.2A 2022-01-04 2022-01-04 Authorization method and system Active CN114244628B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210001890.2A CN114244628B (en) 2022-01-04 2022-01-04 Authorization method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210001890.2A CN114244628B (en) 2022-01-04 2022-01-04 Authorization method and system

Publications (2)

Publication Number Publication Date
CN114244628A true CN114244628A (en) 2022-03-25
CN114244628B CN114244628B (en) 2023-12-26

Family

ID=80745690

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210001890.2A Active CN114244628B (en) 2022-01-04 2022-01-04 Authorization method and system

Country Status (1)

Country Link
CN (1) CN114244628B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104573547A (en) * 2014-10-21 2015-04-29 江苏通付盾信息科技有限公司 Information interaction safety protection system and operation realization method thereof
CN106910063A (en) * 2015-12-22 2017-06-30 卓望数码技术(深圳)有限公司 A kind of offline payment method and system
CN111371805A (en) * 2020-03-17 2020-07-03 北京工业大学 Token-based unified identity authentication interface and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104573547A (en) * 2014-10-21 2015-04-29 江苏通付盾信息科技有限公司 Information interaction safety protection system and operation realization method thereof
CN106910063A (en) * 2015-12-22 2017-06-30 卓望数码技术(深圳)有限公司 A kind of offline payment method and system
CN111371805A (en) * 2020-03-17 2020-07-03 北京工业大学 Token-based unified identity authentication interface and method

Also Published As

Publication number Publication date
CN114244628B (en) 2023-12-26

Similar Documents

Publication Publication Date Title
CA2591968C (en) Authentication device and/or method
US6908030B2 (en) One-time credit card number generator and single round-trip authentication
JP4388039B2 (en) Internet payment system
US8151364B2 (en) Authentication device and/or method
EP2643787B1 (en) Handling encoded information
US7577616B2 (en) Method and apparatus of secure authentication and electronic payment through mobile communication tool
US8079082B2 (en) Verification of software application authenticity
US20120191615A1 (en) Secure Credit Transactions
US20110142234A1 (en) Multi-Factor Authentication Using a Mobile Phone
US20140250016A1 (en) Method and System for Controlling Risk in a Payment Transaction
US11568387B2 (en) Method and device for implementing password-free EMV contact transaction
WO2010003202A2 (en) System, method and device to authenticate relationships by electronic means
US20150339670A1 (en) System and method for authenticating a transaction over a data network
CN101383709A (en) System and method enhancing safety of network account and cipher
KR20120070079A (en) User authenication system by using personal identification number, user terminal device, inquiry apparatus, authenication server, and user authenication method therefor
JP2009212733A (en) Authentication server in credit card settlement, authentication system, and authentication method
CN106330888B (en) The method and device of payment safety in a kind of guarantee the Internet line
KR101002010B1 (en) Payment system using smart card and method thereof
CN114244627B (en) Authorization method and system
CN114244628B (en) Authorization method and system
TW202025051A (en) System for assisting a financial card holder in setting password for the first time and method thereof
TWM578411U (en) System for assisting a financial card holder in setting password for the first time
EP4254859A1 (en) Method for enrolling a public key on a server
JP2009259297A (en) Network settlement auxiliary equipment
TW202022761A (en) System for assisting a financial card holder in setting password for the first time and method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant