TW201612814A - Method of realizing virtual-name-in-frontend and real-name-in-backend identity authorization by means of anonymous secondary certificate combined with proxy authorization mechanism - Google Patents

Method of realizing virtual-name-in-frontend and real-name-in-backend identity authorization by means of anonymous secondary certificate combined with proxy authorization mechanism

Info

Publication number
TW201612814A
TW201612814A TW103132703A TW103132703A TW201612814A TW 201612814 A TW201612814 A TW 201612814A TW 103132703 A TW103132703 A TW 103132703A TW 103132703 A TW103132703 A TW 103132703A TW 201612814 A TW201612814 A TW 201612814A
Authority
TW
Taiwan
Prior art keywords
real
name
identity
anonymous
frontend
Prior art date
Application number
TW103132703A
Other languages
Chinese (zh)
Other versions
TWI649707B (en
Inventor
Chun-Wei Lee
Tzu-Hua Chen
Original Assignee
Chunghwa Telecom Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chunghwa Telecom Co Ltd filed Critical Chunghwa Telecom Co Ltd
Priority to TW103132703A priority Critical patent/TWI649707B/en
Publication of TW201612814A publication Critical patent/TW201612814A/en
Application granted granted Critical
Publication of TWI649707B publication Critical patent/TWI649707B/en

Links

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention is to achieve an object of virtual-name-in-frontend and real-name-in-backend in application service identity authentication via an anonymous secondary certificate, and to grant a designated and exclusive application scope by combining with a proxy authorization mechanism. A general subject certificate is used for real identity recognition. However, this is not an ideal way for a subject that does not want to use its real identity to execute an application service. Therefore, in the present invention, a certification authority issues an anonymous secondary certificate, wherein this type of certificate is recorded with an arbitrary virtual identity, as a different type of clone of the real McCoy, rather than a real identity. Via a physical carrier, using the virtual identity to log in and execute a designated application system and service platform, wherein only the certification authority can query for the real identity corresponding to the subject. The present invention has extremely high security with the aid of PKI technique. By means of combining with the proxy authorization mechanism and being associated with the physical carrier, the present invention allows multiple different virtual identities to execute different applications according to different types, wherein the frontend operates in an anonymous way and the backend performs real name verification via the certification authority.
TW103132703A 2014-09-23 2014-09-23 Anonymous subsidiary certificate combined with proxy authorization mechanism to realize the method of virtual identity authentication TWI649707B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW103132703A TWI649707B (en) 2014-09-23 2014-09-23 Anonymous subsidiary certificate combined with proxy authorization mechanism to realize the method of virtual identity authentication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW103132703A TWI649707B (en) 2014-09-23 2014-09-23 Anonymous subsidiary certificate combined with proxy authorization mechanism to realize the method of virtual identity authentication

Publications (2)

Publication Number Publication Date
TW201612814A true TW201612814A (en) 2016-04-01
TWI649707B TWI649707B (en) 2019-02-01

Family

ID=56360901

Family Applications (1)

Application Number Title Priority Date Filing Date
TW103132703A TWI649707B (en) 2014-09-23 2014-09-23 Anonymous subsidiary certificate combined with proxy authorization mechanism to realize the method of virtual identity authentication

Country Status (1)

Country Link
TW (1) TWI649707B (en)

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7996888B2 (en) * 2002-01-11 2011-08-09 Nokia Corporation Virtual identity apparatus and method for using same
US8365293B2 (en) * 2005-01-25 2013-01-29 Redphone Security, Inc. Securing computer network interactions between entities with authorization assurances
TWI426762B (en) * 2008-08-04 2014-02-11 Ind Tech Res Inst Method and system for managing network identity
CN103916267B (en) * 2014-03-14 2019-04-12 兴唐通信科技有限公司 The cyberspace identity management system of three-decker

Also Published As

Publication number Publication date
TWI649707B (en) 2019-02-01

Similar Documents

Publication Publication Date Title
PH12018502087A1 (en) Systems and methdos for providing block chain-based multifactor personal identity verification
MX2017000430A (en) Networked access control system.
GB2566874A (en) Method for obtaining vetted certificates by microservices in elastic cloud environments
WO2016175914A3 (en) Transaction signing utilizing asymmetric cryptography
AU2018256568A1 (en) Systems and methods for software based encryption
BR112017020724A2 (en) method and communication device
WO2015023341A3 (en) Secure authorization systems and methods
SG10201901366WA (en) Key exchange through partially trusted third party
GB2542290A (en) Wireless local area network access
NZ740305A (en) Enabling emergency access to secure wireless communications networks
WO2016118206A3 (en) Neural networks for encrypted data
PH12018502584A1 (en) Method and device for identity authentication
MX2016014461A (en) Provisioning drm credentials on a client device using an update server.
WO2015147945A3 (en) System and method for biometric protocol standards
CU20170033A7 (en) METHODS AND APPLIANCE FOR THE AUTHENTICATION OF A SEVICIO NETWORK BY A USER TEAM (EU) USING CREDENTIALS OF A DOMESTIC NETWORK
MX361983B (en) Electronic credental management system.
PH12016501866A1 (en) Systems and methods for identity validation and verification
WO2016077017A3 (en) Trusted platform module certification and attestation utilizing an anonymous key system
GB201213279D0 (en) Identity generation mechanism
MX345061B (en) Method, one or more computer-readable non-transitory storage media and a device, in particular relating to computing resources and/or mobile-device-based trust computing.
SG10201810422SA (en) Dual channel identity authentication
GB2533727A (en) Registry apparatus, agent device, application providing apparatus and corresponding methods
GB2564624A (en) Configuration for multi-factor event authorization
NZ722177A (en) System and method for communicating credentials
MX2018002190A (en) System and method for biometric protocol standards.