KR101600474B1 - 솔티드 패스워드 인증방법 - Google Patents

솔티드 패스워드 인증방법 Download PDF

Info

Publication number
KR101600474B1
KR101600474B1 KR1020150122084A KR20150122084A KR101600474B1 KR 101600474 B1 KR101600474 B1 KR 101600474B1 KR 1020150122084 A KR1020150122084 A KR 1020150122084A KR 20150122084 A KR20150122084 A KR 20150122084A KR 101600474 B1 KR101600474 B1 KR 101600474B1
Authority
KR
South Korea
Prior art keywords
password
salt
variable
user
rule
Prior art date
Application number
KR1020150122084A
Other languages
English (en)
Korean (ko)
Inventor
김동현
Original Assignee
주식회사 엔터소프트
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 엔터소프트 filed Critical 주식회사 엔터소프트
Priority to KR1020150122084A priority Critical patent/KR101600474B1/ko
Application granted granted Critical
Publication of KR101600474B1 publication Critical patent/KR101600474B1/ko
Priority to PCT/KR2016/008316 priority patent/WO2017039156A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3228One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)
KR1020150122084A 2015-08-28 2015-08-28 솔티드 패스워드 인증방법 KR101600474B1 (ko)

Priority Applications (2)

Application Number Priority Date Filing Date Title
KR1020150122084A KR101600474B1 (ko) 2015-08-28 2015-08-28 솔티드 패스워드 인증방법
PCT/KR2016/008316 WO2017039156A1 (fr) 2015-08-28 2016-07-28 Procédé d'authentification par mot de passe salé

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020150122084A KR101600474B1 (ko) 2015-08-28 2015-08-28 솔티드 패스워드 인증방법

Publications (1)

Publication Number Publication Date
KR101600474B1 true KR101600474B1 (ko) 2016-03-07

Family

ID=55540381

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020150122084A KR101600474B1 (ko) 2015-08-28 2015-08-28 솔티드 패스워드 인증방법

Country Status (2)

Country Link
KR (1) KR101600474B1 (fr)
WO (1) WO2017039156A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112636910A (zh) * 2020-12-29 2021-04-09 北京深思数盾科技股份有限公司 临时密码的生成与验证方法、设备及系统

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10320774B2 (en) * 2016-08-05 2019-06-11 Route1 Inc. Method and system for issuing and using derived credentials
CN113078999A (zh) * 2021-04-13 2021-07-06 傲普(上海)新能源有限公司 一种密码安全加密保存方式

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005044054A (ja) * 2003-07-25 2005-02-17 Base Technology Inc 符号列の処理システム
JP2007310819A (ja) * 2006-05-22 2007-11-29 Sharp Corp パスワード解析への耐性を高めたパスワード生成方法及びこのパスワードを用いた認証装置
KR101221955B1 (ko) * 2010-11-02 2013-01-15 한국과학기술정보연구원 일회용 비밀번호 인증 방법 및 이에 적합한 인증 장치
JP2014029650A (ja) * 2012-07-31 2014-02-13 Kyocera Document Solutions Inc パスワード生成装置、及び電子機器

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101467247B1 (ko) * 2014-01-20 2014-12-02 성균관대학교산학협력단 그래픽 기반 일회성 패스워드 인증 시스템 및 방법

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005044054A (ja) * 2003-07-25 2005-02-17 Base Technology Inc 符号列の処理システム
JP2007310819A (ja) * 2006-05-22 2007-11-29 Sharp Corp パスワード解析への耐性を高めたパスワード生成方法及びこのパスワードを用いた認証装置
KR101221955B1 (ko) * 2010-11-02 2013-01-15 한국과학기술정보연구원 일회용 비밀번호 인증 방법 및 이에 적합한 인증 장치
JP2014029650A (ja) * 2012-07-31 2014-02-13 Kyocera Document Solutions Inc パスワード生成装置、及び電子機器

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112636910A (zh) * 2020-12-29 2021-04-09 北京深思数盾科技股份有限公司 临时密码的生成与验证方法、设备及系统
CN112636910B (zh) * 2020-12-29 2021-08-24 北京深思数盾科技股份有限公司 临时密码的生成与验证方法、设备及系统

Also Published As

Publication number Publication date
WO2017039156A1 (fr) 2017-03-09

Similar Documents

Publication Publication Date Title
US8041954B2 (en) Method and system for providing a secure login solution using one-time passwords
US9684780B2 (en) Dynamic interactive identity authentication method and system
US10848304B2 (en) Public-private key pair protected password manager
US8407762B2 (en) System for three level authentication of a user
US20140101744A1 (en) Dynamic interactive identity authentication method and system
US10909230B2 (en) Methods for user authentication
CZ2015473A3 (cs) Způsob zabezpečení autentizace při elektronické komunikaci
US11347831B2 (en) System and method for user recognition based on cognitive interactions
KR101600474B1 (ko) 솔티드 패스워드 인증방법
RU2730386C2 (ru) Система и способ аутентификации и шифрования с защитой от перехвата
Hossain et al. Implementing Biometric or Graphical Password Authentication in a Universal Three-Factor Authentication System
KR100927280B1 (ko) 페이크 라운드를 이용한 보안 문자열 노출 방지 방법
Kenneth et al. Web application authentication using visual cryptography and cued clicked point recall-based graphical password
Kansuwan et al. Authentication model using the bundled CAPTCHA OTP instead of traditional password
CA2611549C (fr) Methode et systeme permettant d'obtenir une ouverture de session protegee au moyen de mots de passe a usage unique
Nasiri et al. Using Combined One-Time Password for Prevention of Phishing Attacks.
US20160021102A1 (en) Method and device for authenticating persons
Edwards et al. FFDA: A novel four-factor distributed authentication mechanism
Shah et al. New factor of authentication: Something you process
KR101632582B1 (ko) 랜덤키가 포함된 패스워드를 이용한 사용자 인증 방법 및 시스템
Majdalawieh et al. Assessing the Attacks Against the Online Authentication Methods Using a Comparison Matrix: A Case of Online Banking
US20230057862A1 (en) Fraud resistant passcode entry system
Παπασπύρου A novel two-factor honey token authentication mechanism
KR20210141438A (ko) 보안성 있는 사용자 인증 시스템 및 방법
JP2008512765A (ja) ランダムな部分デジタル経路認識に基づく認証システム及び方法

Legal Events

Date Code Title Description
E902 Notification of reason for refusal
E701 Decision to grant or registration of patent right
GRNT Written decision to grant
LAPS Lapse due to unpaid annual fee