WO2011097849A1 - Procédé d'authentification, système, terminal, serveur, procédé et dispositif permettant un téléchargement de données - Google Patents

Procédé d'authentification, système, terminal, serveur, procédé et dispositif permettant un téléchargement de données Download PDF

Info

Publication number
WO2011097849A1
WO2011097849A1 PCT/CN2010/073137 CN2010073137W WO2011097849A1 WO 2011097849 A1 WO2011097849 A1 WO 2011097849A1 CN 2010073137 W CN2010073137 W CN 2010073137W WO 2011097849 A1 WO2011097849 A1 WO 2011097849A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
user terminal
server
information
backup data
Prior art date
Application number
PCT/CN2010/073137
Other languages
English (en)
Chinese (zh)
Inventor
蒲竞春
鞠飞
谢鑫
陈程
付丽琴
练煜
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011097849A1 publication Critical patent/WO2011097849A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to an authentication method and system, a user terminal and a server, and a method and an apparatus for downloading backup data.
  • personal data (including business card holder data, short message data, schedule data, email data, etc.) stored in a user terminal (such as a mobile phone) can be backed up to a server on the network side, thereby replacing the user terminal or user at the user.
  • the backup data in the server can be conveniently downloaded to the user terminal. Since the data backed up by the user in the server is often important, when the subsequent user terminal downloads the backup data from the server, it is necessary to use security and effective measures to prevent the illegal user terminal from obtaining the backup data backed up by the customer on the server.
  • the user terminal is generally used to authenticate the user terminal to ensure that the backup data can be securely provided to the corresponding legal user terminal.
  • the three existing authentication methods are as follows:
  • the server-level authentication mode that is, the user terminal needs to provide the server with the first authentication information (which may be user name information and password information) of the user terminal before establishing a connection with the server, and the server determines the first authentication according to the first authentication.
  • the information determines that the user terminal has the right to establish a connection with the server, and then establishes a connection with the user terminal and allows the user terminal to download the corresponding backup data;
  • the authentication mode at the database level that is, when the user terminal establishes a connection with the server, and needs to download the backup data from the database of the server, the second authentication information of the user terminal needs to be provided to the server, and the server is configured according to the second The right information determines that the user terminal has the right to download the backup data from the database of the server, and then allows the user terminal to download the corresponding backup data;
  • Data object level authentication mode that is, the user terminal establishes a connection with the server, and needs to download the specified backup data from the server database (the specified backup data here is generally some special backup data, such as the user's secret.
  • the third authentication information of the user terminal needs to be provided to the server, and the server determines, according to the third authentication information, that the user terminal has the next When the permission of the specified backup data is carried, the user terminal is allowed to download the specified backup data.
  • the authentication mode used by the user is set by the server according to the type of the user. For example, if the server allocates the first authentication information to the ordinary user, the security level is higher.
  • the user assigns the second or third authentication information, and the defect that the above-mentioned server sets the authentication information according to the type of the user is that the user cannot flexibly set the authentication mode according to his own needs, for example, the ordinary user cannot follow the authentication method. Set your own requirements to set a higher security level of authentication.
  • the embodiments of the present invention provide an authentication method and system, which are used to solve the problem that the authentication mode setting scheme provided by the prior art enables the user to flexibly set the authentication mode according to his own needs.
  • the embodiment of the invention further provides a user terminal and a server.
  • the embodiment of the invention further provides a backup data downloading method and device.
  • An authentication method includes: the user terminal selects a preset authentication mode information that matches different authentication modes; and sends the selected authentication mode information to a server on the network side; and the server selection and location Determining the authentication information matched by the authentication mode information sent by the user terminal, and sending the selected authentication information to the user terminal; when the user terminal needs to be authenticated, the user terminal will receive the authentication The right information is sent to the server; the server completes the authentication of the user terminal based on the authentication information sent by the user terminal.
  • the step of the user terminal selecting a preset authentication mode information that matches different authentication modes includes: selecting at least one profile from a webpage provided by the server for selecting authentication mode information matching different authentication modes.
  • the method further includes: the user terminal sending the identifier of the specified backup data to the server And the identifier of the designated backup data by the server and the third The correspondence of the rights information is stored.
  • a backup data downloading method includes:
  • the server on the network side receives the identifier of the specified backup data sent by the user terminal, and stores the correspondence between the third authentication information corresponding to the authentication mode of the data object level and the identifier that is sent to the user terminal in advance.
  • the server receives a backup data download request message that is sent by the user terminal and includes an identifier of the backup data.
  • the server searches for the identifier of the backup data included in the request message from the stored correspondence relationship.
  • Corresponding third authentication information when the search result is no, the server sends the backup data indicated by the identifier of the backup data included in the request message to the user terminal; and when the search result is yes, The server instructs the user terminal to provide the third authentication information, and compares the third authentication information provided by the user terminal with the identifier of the backup data included in the request message stored by the server. When the three authentication information matches are consistent, the identifier of the backup data included in the request message is Backup data sending indication to the user terminal.
  • An authentication system includes a user terminal and a server on the network side, where the user terminal is configured to: select a preset authentication mode information that matches different authentication modes; and select the selected authentication mode information. Sending to the server; receiving the authentication information sent by the server, and sending the authentication information to the server when the user terminal needs to be authenticated; the server is configured to: receive the user terminal Sending authentication mode information, selecting authentication information matching the authentication mode information sent by the user terminal, and transmitting the selected authentication information to the user terminal; and authenticating based on the user terminal Information, completing authentication of the user terminal.
  • the user terminal is configured to select a preset authentication mode information that matches different authentication modes in the following manner:
  • At least one authentication mode information is selected from the authentication mode information that is previously stored in the user terminal and matched to different authentication modes.
  • the authentication information selected by the server is corresponding to the authentication mode of the data object level
  • the third authentication information is
  • the user terminal is further configured to: send an identifier of the specified backup data to the server; the server is further configured to: store a correspondence between the identifier of the specified backup data and the third authentication information.
  • a user terminal comprising: a selecting unit, configured to select a preset authentication mode information that matches different authentication modes; and an authentication mode information sending unit configured to provide the authentication mode information selected by the selecting unit to a server on the network side; and a receiving unit, configured to: receive the authentication information fed back by the server according to the authentication mode information sent by the authentication mode information sending unit.
  • a server comprising: a receiving unit, configured to: receive authentication mode information sent by a user terminal; a selecting unit configured to: select authentication information that matches an authentication mode information received by the receiving unit; and a sending unit And setting: sending the authentication information selected by the selection unit to the user terminal.
  • the selection unit is set to:
  • At least one authentication mode information is selected from the authentication mode information that is pre-stored in the user terminal and matched to different authentication modes.
  • the authentication information is the third authentication information corresponding to the authentication mode of the data object level
  • the user terminal further includes:
  • a data identification transmitting unit is configured to: send an identifier specifying the backup data to the server.
  • a backup data downloading device comprising: an identifier receiving unit, configured to: receive an identifier of the specified backup data sent by the user terminal; and a storage unit configured to: send the data object level to the user terminal in advance The corresponding relationship between the third authentication information corresponding to the authentication mode and the identifier received by the identifier receiving unit is stored; the request message receiving unit is configured to: receive the backup data download request that is sent by the user terminal and includes the identifier of the backup data.
  • a search unit configured to: from the correspondence stored in the storage unit, find whether there is a request message The third authentication information corresponding to the identifier of the backup data included in the request message received by the receiving unit; the first sending unit is configured to: when the search result obtained by the searching unit is no, the backup included in the request message The backup data indicated by the identifier of the data is sent to the user terminal, and the indication unit is configured to: when the search result obtained by the search unit is yes, instruct the user terminal to provide the third authentication information; the authentication information receiving unit
  • the setting is: receiving the third authentication information that is provided by the user terminal according to the indication of the indication unit; and the comparing unit, configured to: compare the third authentication information received by the authentication information receiving unit with the storage stored by the storage unit Whether the third authentication information corresponding to the identifier of the backup data included in the request message matches; and the second sending unit is configured to: when the comparison result obtained by the comparing unit is yes, the backup included in the request message
  • the backup data indicated by the identification of the data is
  • the user terminal selects a preset authentication mode information that matches different authentication modes, and provides the selected authentication mode information to the server on the network side, and after receiving the authentication mode information, the server according to the The authentication mode information selects the matching authentication information, and sends the selected authentication information to the user terminal, thereby realizing the purpose that the user can flexibly implement the authentication mode according to his own needs by using the user terminal.
  • FIG. 1 is a schematic flowchart of a method for authenticating an authentication method according to an embodiment of the present disclosure
  • FIG. 2 is a schematic flowchart of a backup data downloading method according to an embodiment of the present invention
  • FIG. 3 is a schematic diagram of an application flow of a backup data downloading method according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of another application flow of a backup data downloading method according to an embodiment of the present invention.
  • FIG. 5 is a schematic structural diagram of an authentication system according to an embodiment of the present disclosure.
  • FIG. 6 is a schematic structural diagram of a user terminal according to an embodiment of the present disclosure.
  • FIG. 7 is a schematic structural diagram of a server according to an embodiment of the present disclosure.
  • FIG. 8 is a schematic structural diagram of a backup data downloading apparatus according to an embodiment of the present invention. Preferred embodiment of the invention
  • the user terminal selects a preset authentication mode information that matches different authentication modes, and provides the selected authentication mode information to the server on the network side, and then the receiving server sends the information according to the authentication mode information.
  • the authentication information solves the problem that the user existing in the prior art cannot flexibly implement the authentication mode according to his own needs.
  • the embodiment of the present invention first provides a method for obtaining authentication information.
  • the specific process diagram of the method is shown in FIG. 1 and includes the following steps:
  • Step 11 The user terminal selects a preset authentication mode information that is matched with different authentication modes.
  • the user terminal may provide information about the authentication mode that is matched by the different authentication modes from the server under the control of the user. Selecting at least one authentication mode information in the webpage, or the user terminal may select at least one authentication mode information from the authentication mode information that is pre-stored in the user terminal and matched with different authentication modes, where the authentication mode information may be Different identification information is matched with the three authentication methods mentioned in the background, respectively.
  • the user can control the user terminal to select an authentication mode information matched by an authentication mode according to its own needs, or select multiple templates. Information about the authentication method matched by the right mode;
  • Step 12 The user terminal sends the selected authentication mode information to the server on the network side, and the user terminal provides the selected authentication mode information to the network side to obtain the authentication matched by the server and matched with the authentication mode information.
  • Step 13 The server selects the authentication information that matches the authentication mode information according to the authentication mode information provided by the user terminal, and sends the selected authentication information to the user terminal.
  • the server may determine the authentication mode sent by the user terminal from the correspondence between the pre-stored authentication mode information and the authentication information.
  • the first authentication information corresponding to the information is sent to the user terminal, and if the user selects the authentication information corresponding to the authentication mode of the data object level introduced in the background art, the server may And determining the third authentication information corresponding to the authentication mode information sent by the user terminal, and transmitting the third authentication information to the user terminal, where the authentication information is sent to the user terminal.
  • the server selects the authentication information that matches the authentication mode information sent by the user terminal. After that, the corresponding relationship between the selected authentication information and the user terminal identifier may be stored. Since the server may have previously assigned the default authentication mode information and the authentication information according to the type of the user, the server is in the pair. Before the selected authentication information is stored, the method may further include the following steps:
  • the server compares the authentication mode information sent by the user terminal with the default authentication mode information previously allocated to the user according to the type of the user;
  • the server stores the correspondence between the authentication information assigned to the user terminal by default and the user terminal identifier, and when the comparison result is inconsistent, the server further determines whether the user terminal can be provided by using the user terminal. Specifically, the server may determine, from the identifier of the preset user terminal and the authentication mode information that can be used by the user terminal, the authentication mode information that can be used by the user terminal, and determine the user terminal.
  • the provided authentication mode information is the authentication mode information that can be used by the user terminal
  • the correspondence between the authentication information of the selected user terminal and the user terminal identifier is stored, and the authentication mode provided by the user terminal is determined.
  • the information is not the authentication mode information that can be used by the user terminal
  • the correspondence between the authentication information of the user terminal and the user terminal identifier is not stored, and the notification message that the authentication mode setting is unsuccessful is sent to the user terminal, so that User terminal can know the user Set times for authentication methods fail;
  • Step 14 When the user terminal needs to be authenticated, the user terminal sends the received authentication information to the server.
  • the embodiment of the present invention further provides a backup data downloading method.
  • the specific process of the method is as shown in FIG. 2, and includes the following steps:
  • Step 21 The server on the network side receives the identifier of the specified backup data sent by the user terminal, and the third authentication information corresponding to the authentication mode of the data object level and the identifier of the designated backup data that are sent to the user terminal in advance. Corresponding relationship is stored;
  • Step 22 The server on the network side receives a backup data download request message that is sent by the user terminal and includes an identifier of the backup data.
  • Step 23 The server searches for a third authentication corresponding to the identifier of the backup data included in the backup data download request message sent by the user terminal, from the stored correspondence between the identifier of the specified backup data and the third authentication information. Information, and when the search result is no, step 24 is performed, and when the search result is yes, step 25 is performed;
  • Step 24 The server sends the backup data indicated by the identifier of the backup data included in the backup data download request message to the user terminal.
  • Step 25 The server instructs the user terminal to provide the third authentication information, and compares the third authentication information provided by the user terminal with the third authentication corresponding to the identifier of the backup data included in the backup data download request message stored by the server. When the information matching is consistent, the backup data indicated by the identifier of the backup data included in the backup data download request message is sent to the user terminal.
  • the method for downloading the backup data provided by the embodiment of the present invention may be implemented based on the method for obtaining authentication information provided by the embodiment of the present invention, or may be implemented independently.
  • Step 31 The user terminal sends a connection establishment request message to the server, where the request message includes an identifier of the user terminal.
  • Step 32 The server receives the connection establishment request message, and according to the identifier of the user terminal, the identifier of the user terminal and the first authentication information corresponding to the authentication mode of the server level are determined according to the identifier of the user terminal. In the corresponding relationship, determining whether there is first authentication information corresponding to the identifier of the user terminal, and when the determination result is yes, performing step 33; otherwise, the server directly establishes a connection with the user terminal, and allows the user terminal to access the server. And sending a connection establishment confirmation message to the user terminal, and jumping to step 37;
  • Step 33 The server sends a notification message to the user terminal indicating that the user terminal provides the first authentication information.
  • Step 34 The user terminal sends the first authentication information to the server.
  • Step 35 The server determines, according to the identifier of the user terminal, the first authentication information corresponding to the user terminal from the correspondence between the identifier of the pre-stored user terminal and the first authentication information, and determines the sent by the user terminal. If the first authentication information is consistent with the determined first authentication information, if the determination result is yes, step 36 is performed; otherwise, the server does not allow the user terminal to access the server, and feeds back the connection failure notification message to the user terminal, thereby ending Process;
  • Step 36 The server establishes a connection with the user terminal, allows the user terminal to access the server, and sends a connection establishment confirmation message to the user terminal.
  • Step 37 Assuming that the user terminal needs to download the backup data from the database of the server, the user terminal sends a backup data download request message containing the identifier of the backup data to the server, where the request message includes the identifier of the user terminal and the backup to be downloaded. Identification of the data;
  • Step 38 After receiving the backup data download request message sent by the user terminal, the server parses the identifier of the user terminal and the identifier of the backup data to be downloaded from the request message, and parses the user terminal according to the request message. And determining, by the correspondence between the identifier of the preset user terminal and the second authentication information corresponding to the authentication mode of the database level, whether there is second authentication information corresponding to the identifier of the user terminal, when If the result of the determination is yes, step 39 is performed; otherwise, the server allows the user terminal to access the database, and sends a notification message to the user terminal to allow access to the database, and jumps to step 312; Step 39: The server sends a notification message to the user terminal indicating that the user terminal provides the second authentication information.
  • Step 310 The user terminal sends second authentication information to the server.
  • Step 311 The server determines, according to the identifier of the user terminal, the second authentication information corresponding to the user terminal from the pre-stored correspondence between the identifier of the user terminal and the second authentication information, and determines the sending by the user terminal. If the second authentication information is consistent with the determined second authentication information, if the determination result is yes, step 312 is performed; otherwise, the server does not allow the user terminal to access the database, and accesses the database failure notification message to the user terminal, thereby End the process;
  • Step 312 The server determines, according to the identifier of the user terminal, the identifier of the backup data corresponding to the identifier of the user terminal from the correspondence between the identifier of the user terminal and the identifier of the backup data, and further, according to the needs of the analysis.
  • the identifier of the downloaded backup data from the correspondence between the identifier of the preset backup data and the third authentication information, whether there is a third authentication information corresponding to the identifier of the backup data to be downloaded, when the search result is If yes, go to step 313. Otherwise, the server sends the backup data corresponding to the identifier of the backup data to be downloaded to the user terminal, and the process of downloading the backup data by the user terminal ends;
  • Step 313 The server sends a notification message to the user terminal indicating that the user terminal provides the third authentication information.
  • Step 314 The user terminal sends third authentication information to the server.
  • Step 315 The server compares the received third authentication information with the third authentication information corresponding to the identifier of the backup data to be downloaded. If the comparison result is consistent, go to step 316. Otherwise, send the backup to the user terminal. The notification message of the data failure, the process ends;
  • Step 316 The server sends the backup data corresponding to the identifier of the backup data to be downloaded to the user terminal, and the process of downloading the backup data by the user terminal ends.
  • the user terminal passively provides the corresponding authentication information to the server after receiving the notification message sent by the server indicating that the user terminal provides the authentication information, but actually, the user
  • the terminal may also actively provide authentication information to the server while transmitting a request message such as downloading backup data to the server.
  • a request message such as downloading backup data to the server.
  • the foregoing backup data downloading method provided by the embodiment of the present invention is another in practice.
  • An application flow diagram is shown in Figure 4, including the following steps:
  • Step 41 The user terminal sends a connection establishment request message to the server, where the request message includes an identifier of the user terminal and first authentication information corresponding to an authentication mode of the server level.
  • Step 42 The server receives the connection establishment request message, and obtains the identifier of the user terminal and the first authentication information included in the request message by parsing the request message.
  • Step 43 The server determines, according to the identifier of the user terminal, the first authentication information corresponding to the user terminal from the correspondence between the identifier of the pre-stored user terminal and the first authentication information.
  • Step 44 The server determines to establish a connection. Whether the first authentication information included in the request message matches the first authentication information determined above, and if the determination result is yes, step 45 is performed; otherwise, the server does not allow the user terminal to access the server, and feeds back the connection to the user terminal.
  • the failure notification message ends the process;
  • Step 45 The server establishes a connection with the user terminal, allows the user terminal to access the server, and sends a connection establishment confirmation message to the user terminal.
  • Step 46 assuming that the user terminal needs to download the backup data from the database of the server, the user terminal sends a backup data download request message containing the identifier of the backup data to the server, where the request message includes the identifier of the user terminal and the backup to be downloaded.
  • Step 47 After receiving the backup data download request message sent by the user terminal, the server parses the identifier of the user terminal, the identifier of the backup data to be downloaded, and the second authentication information from the request message, and according to the user terminal. Identifying, from the corresponding relationship between the identifier of the stored user terminal and the second authentication information, determining second authentication information corresponding to the identifier of the user terminal, and comparing the determined second authentication information with the parsed second Whether the authentication information is consistent, and when the comparison result is consistent, step 48 is performed. Otherwise, the server does not allow the user terminal to download the backup data from the database, and feeds back to the user terminal a notification message for accessing the database failure, and ends the process;
  • Step 48 The server determines, according to the identifier of the user terminal, the identifier of the backup data corresponding to the identifier of the user terminal from the correspondence between the identifier of the user terminal and the identifier of the backup data, and further, according to the needs of the analysis.
  • the identifier of the downloaded backup data from the correspondence between the identifier of the preset backup data and the third authentication information, whether there is a backup to be downloaded
  • the third authentication information corresponding to the identifier of the data when the search result is yes, step 49 is performed. Otherwise, the server sends the backup data corresponding to the identifier of the backup data to be downloaded to the user terminal, and the user terminal downloads the backup data. End;
  • Step 49 The server sends a notification message to the user terminal indicating that the user terminal provides the third authentication information.
  • Step 410 The user terminal sends third authentication information to the server.
  • Step 411 The server compares the received third authentication information with the third authentication information corresponding to the identifier of the backup data to be downloaded. If the comparison result is consistent, go to step 412. Otherwise, send the backup to the user terminal. The notification message of the data failure, the process ends;
  • Step 412 The server sends the backup data corresponding to the identifier of the backup data to be downloaded to the user terminal, and the process of downloading the backup data by the user terminal ends.
  • the embodiment of the present invention further provides an authentication system for solving the problem that the authentication mode setting scheme provided by the prior art enables the user to flexibly set the authentication mode according to his own needs.
  • FIG. 5 A schematic diagram of a specific structure is shown in FIG. 5, including a user terminal 51 and a server 52 on the network side, where:
  • the user terminal 51 is configured to select preset authentication mode information that matches different authentication modes; and send the selected authentication mode information to the server 52; and receive the authentication information sent by the server 52, and need to use the user terminal.
  • the authentication information is sent to the server 52, where the user terminal 51 can select at least one authentication mode information from the webpage provided by the server 52 for selecting the authentication mode information that matches the different authentication modes.
  • the user terminal 51 may also select at least one authentication mode information from the authentication mode information matched in different authentication modes stored in the user terminal 51 in advance;
  • the server 52 is configured to receive the authentication mode information sent by the user terminal 51, and select the authentication information that matches the authentication mode information sent by the user terminal 51, and send the selected authentication information to the user terminal 51; The authentication information sent by the terminal 51 completes the authentication of the 51 user terminal.
  • the user terminal 51 should also send the identifier of the specified backup data to the identifier. After the server 52 receives the identifier of the specified backup data, the server 52 also needs to store the correspondence between the identifier of the specified backup data and the third authentication information.
  • the embodiment of the present invention further provides a user terminal as shown in FIG. 6, and the user terminal includes the following functional units:
  • the selecting unit 61 is configured to select a preset authentication mode information that is matched with different authentication modes, where the selecting unit 61 may specifically select the authentication mode information from the webpage provided by the server for selecting the authentication mode information, or The at least one authentication mode information may be selected from the authentication mode information pre-stored in the user terminal;
  • the authentication mode information sending unit 62 is configured to send the authentication mode information selected by the selecting unit 61 to the server on the network side;
  • the receiving unit 63 is configured to receive the authentication information fed back by the server according to the authentication mode information sent by the authentication mode information sending unit 62.
  • the user terminal provided by the embodiment of the present invention may further include a data identifier sending unit, where The data identification sending unit is configured to send the identifier of the specified backup data to the server.
  • the embodiment of the present invention further provides a server.
  • the specific structure of the server is shown in FIG. 7, and includes the following functional units:
  • the receiving unit 71 is configured to receive authentication mode information sent by the user terminal.
  • the selecting unit 72 is configured to select authentication information that matches the authentication mode information received by the receiving unit 71;
  • the sending unit 73 is configured to send the authentication information selected by the selecting unit 72 to the user terminal.
  • a backup data downloading method is provided in the embodiment of the present invention.
  • the embodiment of the present invention further provides a backup data downloading apparatus.
  • the specific structure of the apparatus is as shown in FIG. 8, and includes the following functional units:
  • the identifier receiving unit 81 is configured to receive the identifier of the specified backup data sent by the user terminal, and the storage unit 82 is configured to receive the third authentication information and the identifier that is corresponding to the data object level authentication manner that is sent to the user terminal in advance.
  • the correspondence between the identifiers received by the unit 81 is stored;
  • a request message receiving unit 83 configured to receive a backup data download request message that is sent by the user terminal and includes an identifier of the backup data;
  • the searching unit 84 is configured to search, from the correspondence relationship stored by the storage unit 82, whether there is third authentication information corresponding to the identifier of the backup data included in the request message received by the request message receiving unit 83;
  • the first sending unit 85 is configured to: when the search result obtained by the searching unit 84 is negative, send the backup data indicated by the identifier of the backup data included in the request message to the user terminal;
  • the indicating unit 86 is configured to: when the search result obtained by the searching unit 84 is YES, instruct the user terminal to provide the third authentication information;
  • the authentication information receiving unit 87 is configured to receive third authentication information that is provided by the user terminal according to the indication of the indication unit 86;
  • the comparing unit 88 is configured to compare the third authentication information received by the authentication information receiving unit 87 with the third authentication information corresponding to the identifier of the backup data included in the request message stored by the storage unit 82;
  • the second sending unit 89 is configured to: when the comparison result obtained by the comparing unit 88 is YES, send the backup data indicated by the identifier of the backup data included in the request message to the user terminal.
  • the function of the backup data downloading device can be implemented based on the authentication system provided by the embodiment of the present invention, but the implementation of the function of the backup data downloading device can also be independent of the function of the authentication system.
  • a user can flexibly realize setting of an authentication method according to his/her own needs by using a user terminal.

Abstract

La présente invention se rapporte à un procédé d'authentification, à un système, à un terminal, à un serveur et à un procédé et à un dispositif permettant un téléchargement de données. Le procédé d'authentification comprend les étapes suivantes : un terminal utilisateur sélectionne des informations de mode d'authentification prédéterminées qui correspondent à différents modes d'authentification, et envoie les informations de mode d'authentification sélectionnées à un serveur d'un réseau ; le serveur sélectionne les informations d'authentification qui correspondent aux informations de mode d'authentification envoyées par le terminal utilisateur, et envoie les informations d'authentification sélectionnées au terminal utilisateur ; le terminal utilisateur envoie les informations d'authentification reçues au serveur lorsqu'il a besoin d'authentifier le terminal utilisateur ; et le serveur termine l'authentification du terminal utilisateur sur la base des informations d'authentification envoyées par le terminal utilisateur. Le procédé permet à l'utilisateur de déterminer le mode d'authentification selon des exigences personnelles.
PCT/CN2010/073137 2010-02-10 2010-05-24 Procédé d'authentification, système, terminal, serveur, procédé et dispositif permettant un téléchargement de données WO2011097849A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010112377.8A CN101800985B (zh) 2010-02-10 2010-02-10 鉴权方法及系统、终端、服务器与数据下载方法及装置
CN201010112377.8 2010-02-10

Publications (1)

Publication Number Publication Date
WO2011097849A1 true WO2011097849A1 (fr) 2011-08-18

Family

ID=42596418

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/073137 WO2011097849A1 (fr) 2010-02-10 2010-05-24 Procédé d'authentification, système, terminal, serveur, procédé et dispositif permettant un téléchargement de données

Country Status (2)

Country Link
CN (1) CN101800985B (fr)
WO (1) WO2011097849A1 (fr)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015143596A1 (fr) 2014-03-24 2015-10-01 华为技术有限公司 Procédé, appareil et système de téléchargement de fichier
CN104954371A (zh) * 2015-06-09 2015-09-30 小米科技有限责任公司 设备信息显示方法及装置
CN106934511A (zh) * 2015-12-30 2017-07-07 海能达通信股份有限公司 任务调度方法及系统、服务器、用户终端
CN106453278B (zh) * 2016-09-23 2019-04-30 财付通支付科技有限公司 信息验证方法及验证平台
CN109391686B (zh) * 2018-09-27 2022-04-12 网宿科技股份有限公司 访问请求的处理方法及cdn节点服务器

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101083838A (zh) * 2007-06-29 2007-12-05 中兴通讯股份有限公司 Ip多媒体子系统中的http摘要鉴权方法
CN101106457A (zh) * 2006-07-10 2008-01-16 华为技术有限公司 Ip多媒体子系统网络中确定用户终端鉴权方式的方法
WO2008058144A2 (fr) * 2006-11-07 2008-05-15 Fmr Llc Systeme d'authentification de prestation de services

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101106457A (zh) * 2006-07-10 2008-01-16 华为技术有限公司 Ip多媒体子系统网络中确定用户终端鉴权方式的方法
WO2008058144A2 (fr) * 2006-11-07 2008-05-15 Fmr Llc Systeme d'authentification de prestation de services
CN101083838A (zh) * 2007-06-29 2007-12-05 中兴通讯股份有限公司 Ip多媒体子系统中的http摘要鉴权方法

Also Published As

Publication number Publication date
CN101800985A (zh) 2010-08-11
CN101800985B (zh) 2014-12-17

Similar Documents

Publication Publication Date Title
US9736131B2 (en) Secure login for subscriber devices
US8238555B2 (en) Management server, communication apparatus and program implementing key allocation system for encrypted communication
US9451454B2 (en) Mobile device identification for secure device access
WO2011106956A1 (fr) Terminal mobile et procédé de partage de données pour le terminal mobile
US9942763B2 (en) Method and apparatus of triggering applications in a wireless environment
US20070286376A1 (en) Device authentication techniques
WO2014194731A1 (fr) Procédé de distribution et procédé d'obtention de données d'identification d'utilisateur virtuel, et dispositifs
CN107086979B (zh) 一种用户终端验证登录方法及装置
WO2014032612A1 (fr) Procédé, dispositif, serveur, système, et appareil pour empêcher la divulgation de données
CN101155212A (zh) 一种限制移动终端使用的方法
EP3610603A1 (fr) Partage de mot de passe sécurisé pour réseaux sans fil
CN110336870B (zh) 远程办公运维通道的建立方法、装置、系统及存储介质
WO2017076216A1 (fr) Serveur, terminal mobile et procédé et système d'authentification de nom réel sur internet
WO2017088548A1 (fr) Procédé de communication basé sur une identité sociale, et serveur
WO2011097849A1 (fr) Procédé d'authentification, système, terminal, serveur, procédé et dispositif permettant un téléchargement de données
WO2017084456A1 (fr) Procédé, dispositif et système de traitement de point d'accès wi-fi
WO2015113351A1 (fr) Procédé, terminal et serveur de traitement d'informations, et procédé et système de communication
CN102685090B (zh) 一种登录系统的方法
WO2018099407A1 (fr) Procédé et dispositif de connexion basée sur une authentification de compte
JP2004021686A (ja) 認証処理システム、認証処理装置、プログラム及び認証処理方法
WO2020029841A1 (fr) Procédé de connexion à un réseau, dispositif et support de stockage
WO2017219976A1 (fr) Procédé et appareil de connexion à un serveur en nuage
CN109460647B (zh) 一种多设备安全登录的方法
CN110896399A (zh) 认证方法和装置、无注册登录方法和装置
KR20100053703A (ko) Otp 클라이언트기반의 공중 무선랜 서비스망 사용자 인증 시스템 및 방법

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10845521

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10845521

Country of ref document: EP

Kind code of ref document: A1