WO2022042198A1 - Procédé et appareil d'authentification d'identité, dispositif informatique et support d'enregistrement - Google Patents
Procédé et appareil d'authentification d'identité, dispositif informatique et support d'enregistrement Download PDFInfo
- Publication number
- WO2022042198A1 WO2022042198A1 PCT/CN2021/109292 CN2021109292W WO2022042198A1 WO 2022042198 A1 WO2022042198 A1 WO 2022042198A1 CN 2021109292 W CN2021109292 W CN 2021109292W WO 2022042198 A1 WO2022042198 A1 WO 2022042198A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- counter
- client
- user
- verification
- service counter
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
Abstract
Des modes de réalisation de la présente demande concernent un procédé et un appareil d'authentification, un dispositif informatique et un support d'enregistrement. Le procédé comprend : la réception d'une demande d'authentification envoyée par un client, la demande d'authentification comprenant un nom d'utilisateur, des informations de condensé d'authentification et un compteur d'utilisateur ; la consultation de paramètres d'enregistrement enregistrés lorsque le client est enregistré et associé au nom d'utilisateur, les paramètres d'enregistrement comprenant un compteur de service et un cryptogramme standard ; la mise en correspondance du compteur d'utilisateur avec le compteur de service pour détecter la cohérence entre une valeur réduite du compteur d'utilisateur et une valeur réduite du compteur de service pendant l'authentification d'identité ; et en réponse à une mise en correspondance réussie entre le compteur d'utilisateur et le compteur de service, l'authentification de l'identité du client en fonction d'une différence entre le cryptogramme standard et les informations de condensé d'authentification.
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202010895360.8A CN112055008B (zh) | 2020-08-31 | 2020-08-31 | 一种身份验证方法、装置、计算机设备和存储介质 |
CN202010895360.8 | 2020-08-31 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2022042198A1 true WO2022042198A1 (fr) | 2022-03-03 |
Family
ID=73608104
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2021/109292 WO2022042198A1 (fr) | 2020-08-31 | 2021-07-29 | Procédé et appareil d'authentification d'identité, dispositif informatique et support d'enregistrement |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN112055008B (fr) |
WO (1) | WO2022042198A1 (fr) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN117118757A (zh) * | 2023-10-24 | 2023-11-24 | 长扬科技(北京)股份有限公司 | 工控环境下的终端登录方法、装置、设备及介质 |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN112055008B (zh) * | 2020-08-31 | 2022-10-14 | 广州市百果园信息技术有限公司 | 一种身份验证方法、装置、计算机设备和存储介质 |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102045349A (zh) * | 2010-12-03 | 2011-05-04 | 北京航空航天大学 | 一种基于时间和事件的一次性口令生成和验证方法 |
CN107395627A (zh) * | 2017-08-22 | 2017-11-24 | 河海大学 | 一种基于单向函数的轻量级认证协议 |
CN108833109A (zh) * | 2018-05-28 | 2018-11-16 | 苏州科达科技股份有限公司 | 身份认证方法、装置以及电子设备 |
US20190104123A1 (en) * | 2017-10-02 | 2019-04-04 | Blackberry Limited | Authenticating for a software service |
US20200162451A1 (en) * | 2018-11-20 | 2020-05-21 | Imam Abdulrahman Bin Faisal University | Methods, computer readable media, and systems for authentication using a text file and a one-time password |
CN111586023A (zh) * | 2020-04-30 | 2020-08-25 | 广州市百果园信息技术有限公司 | 一种认证方法、设备和存储介质 |
CN112055008A (zh) * | 2020-08-31 | 2020-12-08 | 广州市百果园信息技术有限公司 | 一种身份验证方法、装置、计算机设备和存储介质 |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101931530B (zh) * | 2009-12-14 | 2012-11-28 | 北京神州付电子支付科技有限公司 | 动态口令生成方法、认证方法和装置及网络系统 |
US9015489B2 (en) * | 2010-04-07 | 2015-04-21 | Microsoft Technology Licensing, Llc | Securing passwords against dictionary attacks |
CN109088890A (zh) * | 2018-10-18 | 2018-12-25 | 国网电子商务有限公司 | 一种身份认证方法、相关装置及系统 |
CN109815666B (zh) * | 2018-12-26 | 2020-12-25 | 航天信息股份有限公司 | 基于fido协议的身份认证方法、装置、存储介质和电子设备 |
-
2020
- 2020-08-31 CN CN202010895360.8A patent/CN112055008B/zh active Active
-
2021
- 2021-07-29 WO PCT/CN2021/109292 patent/WO2022042198A1/fr active Application Filing
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102045349A (zh) * | 2010-12-03 | 2011-05-04 | 北京航空航天大学 | 一种基于时间和事件的一次性口令生成和验证方法 |
CN107395627A (zh) * | 2017-08-22 | 2017-11-24 | 河海大学 | 一种基于单向函数的轻量级认证协议 |
US20190104123A1 (en) * | 2017-10-02 | 2019-04-04 | Blackberry Limited | Authenticating for a software service |
CN108833109A (zh) * | 2018-05-28 | 2018-11-16 | 苏州科达科技股份有限公司 | 身份认证方法、装置以及电子设备 |
US20200162451A1 (en) * | 2018-11-20 | 2020-05-21 | Imam Abdulrahman Bin Faisal University | Methods, computer readable media, and systems for authentication using a text file and a one-time password |
CN111586023A (zh) * | 2020-04-30 | 2020-08-25 | 广州市百果园信息技术有限公司 | 一种认证方法、设备和存储介质 |
CN112055008A (zh) * | 2020-08-31 | 2020-12-08 | 广州市百果园信息技术有限公司 | 一种身份验证方法、装置、计算机设备和存储介质 |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN117118757A (zh) * | 2023-10-24 | 2023-11-24 | 长扬科技(北京)股份有限公司 | 工控环境下的终端登录方法、装置、设备及介质 |
CN117118757B (zh) * | 2023-10-24 | 2024-01-09 | 长扬科技(北京)股份有限公司 | 工控环境下的终端登录方法、装置、设备及介质 |
Also Published As
Publication number | Publication date |
---|---|
CN112055008B (zh) | 2022-10-14 |
CN112055008A (zh) | 2020-12-08 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP7215684B2 (ja) | 部分的に信頼できる第三者機関を通しての鍵交換 | |
US11089032B2 (en) | Signed envelope encryption | |
US10263969B2 (en) | Method and apparatus for authenticated key exchange using password and identity-based signature | |
US10999272B2 (en) | Authenticating and authorizing users with JWT and tokenization | |
EP1577736B1 (fr) | Authentification efficace et sécurisée de systèmes informatisés | |
US11336641B2 (en) | Security enhanced technique of authentication protocol based on trusted execution environment | |
CN112637131B (zh) | 用户身份认证方法、装置、设备和存储介质 | |
US11018866B2 (en) | Dynamic second factor authentication for cookie-based authentication | |
WO2021047012A1 (fr) | Procédé de vérification d'identité sur la base d'un jeton et dispositif associé | |
US9942042B1 (en) | Key containers for securely asserting user authentication | |
WO2022042198A1 (fr) | Procédé et appareil d'authentification d'identité, dispositif informatique et support d'enregistrement | |
CN112968910B (zh) | 一种防重放攻击方法和装置 | |
US9503442B1 (en) | Credential-based application programming interface keys | |
CN112689014A (zh) | 一种双全工通信方法、装置、计算机设备和存储介质 | |
JP2022534677A (ja) | ブロックチェーンを使用するオンラインアプリケーションおよびウェブページの保護 | |
CN115473655B (zh) | 接入网络的终端认证方法、装置及存储介质 | |
CN111901116B (zh) | 一种基于eap-md5改进协议的身份认证方法及系统 | |
CN116527261A (zh) | 密钥恢复方法、电子设备、存储介质 | |
US20240007272A1 (en) | Secure device pairing | |
Yevseiev et al. | Mathematical models of hybrid crypto-code constructions on damaged codes | |
Staeuble | Mitigating Impersonation Attacks on Single Sign-On with Secure Hardware | |
CN117336092A (zh) | 一种客户端登录方法、装置、电子设备和存储介质 | |
CN115150176A (zh) | 防重放攻击方法、装置、电子设备及存储介质 | |
CN108306883A (zh) | 一种身份验证方法和装置 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 21860038 Country of ref document: EP Kind code of ref document: A1 |