KR102689195B1 - 세션 식별자 동기화를 실현하는 방법 및 장치 - Google Patents

세션 식별자 동기화를 실현하는 방법 및 장치 Download PDF

Info

Publication number
KR102689195B1
KR102689195B1 KR1020187011624A KR20187011624A KR102689195B1 KR 102689195 B1 KR102689195 B1 KR 102689195B1 KR 1020187011624 A KR1020187011624 A KR 1020187011624A KR 20187011624 A KR20187011624 A KR 20187011624A KR 102689195 B1 KR102689195 B1 KR 102689195B1
Authority
KR
South Korea
Prior art keywords
session identifier
terminal
server
verification
password
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
KR1020187011624A
Other languages
English (en)
Korean (ko)
Other versions
KR20180075513A (ko
Inventor
키앙 팡
차오 두안
Original Assignee
알리바바 그룹 홀딩 리미티드
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 알리바바 그룹 홀딩 리미티드 filed Critical 알리바바 그룹 홀딩 리미티드
Publication of KR20180075513A publication Critical patent/KR20180075513A/ko
Application granted granted Critical
Publication of KR102689195B1 publication Critical patent/KR102689195B1/ko
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/146Markers for unambiguous identification of a particular session, e.g. session cookie or URL-encoding
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0631Substitution permutation network [SPN], i.e. cipher composed of a number of stages or rounds each involving linear and nonlinear transformations, e.g. AES algorithms
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • H04L9/3231Biological data, e.g. fingerprint, voice or retina
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2137Time limited access, e.g. to a computer or data

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Life Sciences & Earth Sciences (AREA)
  • Biodiversity & Conservation Biology (AREA)
  • Theoretical Computer Science (AREA)
  • Power Engineering (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Medical Informatics (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)
KR1020187011624A 2015-10-26 2016-10-18 세션 식별자 동기화를 실현하는 방법 및 장치 Active KR102689195B1 (ko)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
CN201510702527.3A CN106612180B (zh) 2015-10-26 2015-10-26 实现会话标识同步的方法及装置
CN201510702527.3 2015-10-26
PCT/CN2016/102323 WO2017071496A1 (zh) 2015-10-26 2016-10-18 实现会话标识同步的方法及装置

Publications (2)

Publication Number Publication Date
KR20180075513A KR20180075513A (ko) 2018-07-04
KR102689195B1 true KR102689195B1 (ko) 2024-07-29

Family

ID=58612861

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020187011624A Active KR102689195B1 (ko) 2015-10-26 2016-10-18 세션 식별자 동기화를 실현하는 방법 및 장치

Country Status (6)

Country Link
US (1) US10719602B2 (enExample)
EP (1) EP3373510B1 (enExample)
JP (1) JP6921066B2 (enExample)
KR (1) KR102689195B1 (enExample)
CN (1) CN106612180B (enExample)
WO (1) WO2017071496A1 (enExample)

Families Citing this family (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10218698B2 (en) * 2015-10-29 2019-02-26 Verizon Patent And Licensing Inc. Using a mobile device number (MDN) service in multifactor authentication
EP3586257B1 (en) * 2017-02-22 2022-10-26 Fingerprint Cards Anacatum IP AB Biometrics-based remote login
US11144620B2 (en) * 2018-06-26 2021-10-12 Counseling and Development, Inc. Systems and methods for establishing connections in a network following secure verification of interested parties
CN110851526B (zh) * 2018-08-02 2023-04-11 阿里巴巴集团控股有限公司 数据同步方法、装置及系统
CN111181900B (zh) * 2018-11-13 2022-04-22 深圳光启高等理工研究院 一种数据报文发送和接收方法、存储介质及处理器
US10389708B1 (en) 2019-01-03 2019-08-20 Capital One Services, Llc Secure authentication of a user associated with communication with a service representative
CN112291182B (zh) * 2019-07-23 2022-06-21 腾讯科技(深圳)有限公司 保持用户账户登录态的方法、装置、电子设备及存储介质
US11063763B2 (en) * 2019-09-25 2021-07-13 Valimail Inc. Centralized session key issuance and rotation
CN110912901A (zh) * 2019-11-27 2020-03-24 中国银行股份有限公司 应用登录验证方法、装置及系统
CN114945037B (zh) * 2020-01-19 2024-05-07 先进新星技术(新加坡)控股有限公司 会话建立方法、跨境支付方法、装置及系统
US11030299B1 (en) * 2020-01-27 2021-06-08 Capital One Services, Llc Systems and methods for password managers
CN111581616B (zh) * 2020-05-11 2023-05-12 青岛聚好联科技有限公司 一种多端登录控制的方法及装置
CN111814133A (zh) * 2020-05-27 2020-10-23 平安国际智慧城市科技股份有限公司 移动应用统一登录方法及装置
CN112260997B (zh) * 2020-09-23 2023-05-26 曙光信息产业(北京)有限公司 数据访问方法、装置、计算机设备和存储介质
US10972436B1 (en) * 2020-10-24 2021-04-06 360 It, Uab System and method for session affinity in proxy media routing
CN114697055B (zh) * 2020-12-28 2024-07-16 中国移动通信集团终端有限公司 一种业务访问的方法、装置、设备及系统
CN113051585B (zh) * 2021-03-10 2022-05-13 宁波小遛共享信息科技有限公司 一种数据校验方法、装置、电子设备和存储介质
CN112965955B (zh) * 2021-03-17 2024-01-12 北京奇艺世纪科技有限公司 数据迁移方法、装置、计算机设备和存储介质
EP4392885A4 (en) * 2021-08-25 2024-10-16 Xero Limited SYSTEMS AND PROCEDURES FOR MANAGING ACCESS AUTHORIZATION REQUESTS
CN114697084B (zh) * 2022-03-14 2024-03-26 浙江大豪科技有限公司 缝纫设备数据访问方法
CN114866335A (zh) * 2022-06-09 2022-08-05 三星电子(中国)研发中心 密码同步方法以及用于密码同步的电子设备和服务器
CN115733672B (zh) * 2022-11-03 2024-08-27 支付宝(杭州)信息技术有限公司 数据处理方法、装置及设备
CN116150731B (zh) * 2022-11-28 2023-09-15 深圳市富临通实业股份有限公司 一种基于uid的mcu内部程序防抄袭的方法
CN116566662A (zh) * 2023-04-24 2023-08-08 北京邮电大学 通信网络的身份认证方法、会话加密方法及相关设备
CN117909957B (zh) * 2023-12-18 2024-07-19 海南榕树家信息科技有限公司 登录请求处理方法、装置、电子设备和计算机可读介质

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060070114A1 (en) 1999-08-05 2006-03-30 Sun Microsystems, Inc. Log-on service providing credential level change without loss of session continuity
US20090210938A1 (en) 2008-02-19 2009-08-20 International Business Machines Corporation Utilizing Previous Password to Determine Authenticity to Enable Speedier User Access
CN101594350A (zh) 2008-05-26 2009-12-02 鸿富锦精密工业(深圳)有限公司 电子邮箱密码验证系统及方法
CN103618604A (zh) 2013-11-26 2014-03-05 中国联合网络通信集团有限公司 身份认证方法及系统
US20140165147A1 (en) 2012-12-06 2014-06-12 Cisco Technology, Inc. Session Certificates

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4863777B2 (ja) * 2006-06-07 2012-01-25 富士通株式会社 通信処理方法及びコンピュータ・システム
CN101316169B (zh) * 2008-07-18 2010-11-03 张曌 基于互联网第三方生物特征验证的网络身份验证方法
CN101583112B (zh) * 2008-08-12 2011-09-21 中兴通讯股份有限公司 会话信息的标识方法及装置
US8973113B1 (en) * 2010-04-15 2015-03-03 Crimson Corporation Systems and methods for automatically resetting a password
CN102469074A (zh) * 2010-11-03 2012-05-23 腾讯科技(深圳)有限公司 一种网站的访问方法和系统
JP5613596B2 (ja) * 2011-03-08 2014-10-29 Kddi株式会社 認証システム、端末装置、認証サーバ、およびプログラム
CN102882903B (zh) * 2011-07-12 2017-07-28 腾讯科技(深圳)有限公司 一种多网站应用信息获取方法及系统
US9098687B2 (en) * 2013-05-03 2015-08-04 Citrix Systems, Inc. User and device authentication in enterprise systems
WO2014190542A1 (zh) * 2013-05-31 2014-12-04 华为技术有限公司 转账信息处理方法及设备
WO2015199586A1 (en) * 2014-06-23 2015-12-30 Telefonaktiebolaget L M Ericsson (Publ) Methods and apparatuses for enabling an establishment of a second secure session over a communication network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060070114A1 (en) 1999-08-05 2006-03-30 Sun Microsystems, Inc. Log-on service providing credential level change without loss of session continuity
US20090210938A1 (en) 2008-02-19 2009-08-20 International Business Machines Corporation Utilizing Previous Password to Determine Authenticity to Enable Speedier User Access
CN101594350A (zh) 2008-05-26 2009-12-02 鸿富锦精密工业(深圳)有限公司 电子邮箱密码验证系统及方法
US20140165147A1 (en) 2012-12-06 2014-06-12 Cisco Technology, Inc. Session Certificates
CN103618604A (zh) 2013-11-26 2014-03-05 中国联合网络通信集团有限公司 身份认证方法及系统

Also Published As

Publication number Publication date
CN106612180A (zh) 2017-05-03
EP3373510A4 (en) 2019-06-26
EP3373510B1 (en) 2021-08-04
WO2017071496A1 (zh) 2017-05-04
EP3373510A1 (en) 2018-09-12
JP2019502189A (ja) 2019-01-24
US20180247049A1 (en) 2018-08-30
US10719602B2 (en) 2020-07-21
CN106612180B (zh) 2020-06-09
KR20180075513A (ko) 2018-07-04
JP6921066B2 (ja) 2021-08-18

Similar Documents

Publication Publication Date Title
KR102689195B1 (ko) 세션 식별자 동기화를 실현하는 방법 및 장치
US11544365B2 (en) Authentication system using a visual representation of an authentication challenge
US20180082050A1 (en) Method and a system for secure login to a computer, computer network, and computer website using biometrics and a mobile computing wireless electronic communication device
US8775794B2 (en) System and method for end to end encryption
CN109005155B (zh) 身份认证方法及装置
US12261957B2 (en) Systems and methods for enhanced mobile device authentication
WO2018014760A1 (zh) 图形码信息提供、获取方法、装置及终端
KR20190122655A (ko) 생체인식 데이터 템플레이트의 업데이트
EP2628133B1 (en) Authenticate a fingerprint image
CN110659467A (zh) 一种远程用户身份认证方法、装置、系统、终端及服务器
US10333707B1 (en) Systems and methods for user authentication
CN110941809A (zh) 文件加解密方法、装置、指纹密码装置及可读存储介质
CN115834077B (zh) 控制方法、控制系统、电子设备及存储介质
KR102012262B1 (ko) 키 관리 방법 및 fido 소프트웨어 인증장치
CN110445774B (zh) IoT设备的安全防护方法、装置及设备
CN107846276B (zh) 开放环境中通信数据加密方法及系统
WO2024139347A1 (zh) 敏感信息安全获取方法、系统、装置及电子设备
CN112688949B (zh) 一种访问方法、装置、设备及计算机可读存储介质
TWI746504B (zh) 實現會話標識同步的方法及裝置
KR101924610B1 (ko) 개인 사용자 장치를 이용한 안전한 2채널 인증 방법 및 시스템
EP4485237A1 (en) Method for securely verifying a password dedicated to a client application on a client device
Horsch et al. TrustID: Trustworthy identities for untrusted mobile devices
US20220052838A1 (en) Reinitialization of an application secret by way of the terminal
KR101737925B1 (ko) 도전-응답 기반의 사용자 인증 방법 및 시스템
CN106992976B (zh) 网络安全管理方法及服务器

Legal Events

Date Code Title Description
PA0105 International application

Patent event date: 20180424

Patent event code: PA01051R01D

Comment text: International Patent Application

PG1501 Laying open of application
A201 Request for examination
PA0201 Request for examination

Patent event code: PA02012R01D

Patent event date: 20211014

Comment text: Request for Examination of Application

E902 Notification of reason for refusal
PE0902 Notice of grounds for rejection

Comment text: Notification of reason for refusal

Patent event date: 20230831

Patent event code: PE09021S01D

E701 Decision to grant or registration of patent right
PE0701 Decision of registration

Patent event code: PE07011S01D

Comment text: Decision to Grant Registration

Patent event date: 20240530

GRNT Written decision to grant
PR0701 Registration of establishment

Comment text: Registration of Establishment

Patent event date: 20240724

Patent event code: PR07011E01D

PR1002 Payment of registration fee

Payment date: 20240725

End annual number: 3

Start annual number: 1

PG1601 Publication of registration