CN103441856A - Dynamic password authentication method and device - Google Patents
Dynamic password authentication method and device Download PDFInfo
- Publication number
- CN103441856A CN103441856A CN2013104043891A CN201310404389A CN103441856A CN 103441856 A CN103441856 A CN 103441856A CN 2013104043891 A CN2013104043891 A CN 2013104043891A CN 201310404389 A CN201310404389 A CN 201310404389A CN 103441856 A CN103441856 A CN 103441856A
- Authority
- CN
- China
- Prior art keywords
- dynamic
- time factor
- dynamic password
- server
- token
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses a dynamic password authentication method, a dynamic token and a server. The method comprises: the dynamic token generates a dynamic identifying code carrying time factor indication information and a dynamic password, and sends to the server an authentication request carrying the dynamic identifying code through a client; the server receives the authentication request sent by the client from the dynamic token; the server extracts the time factor indication information from the dynamic identifying code in the authentication request, and determines the time factor of the dynamic password generated by the dynamic token according to the time factor indication information; and the server carries out authentication on the dynamic password according to the determined time factor. By using the technical scheme provided by the invention, the problems of long authentication time and low efficiency during the authentication of the dynamic password by the server can be solved.
Description
Technical field
The present invention relates to the secure authentication technology field, particularly relate to a kind of dynamic password authentication method and equipment.
Background technology
Dynamic password is the uncertain random digit combination generated according to special algorithm, is widely used at present the applications such as Net silver, network game, telecom operators, E-Government, enterprise.Use and generate comparatively widely the dynamic password terminal for dynamic token at present.In actual applications, dynamic token can be divided into again a variety of according to the technology of using, and wherein application is the token of challenging/reply type more widely, multiplex in operational line.
Challenging/reply the type dynamic token adopts challenge code, seed key, the token of the manual input of user to identify (for the information of a token of unique identification, such as token serial number), time factor, generate dynamic password, the real-time time that described time factor is the dynamic token internal clocking according to special algorithm.Dynamic token need to send authentication request by user end to server after generating dynamic password, and the user is input to client by dynamic password, sends authentication request by user end to server, so that server determines whether to allow the user to carry out operational line.Concrete, server calculates dynamic password according to user profile and the server local zone time of database storage, if the dynamic password generated with dynamic token is consistent, allows this operational line to carry out, otherwise interrupts this operational line.
And the time factor of dynamic token and server local zone time have certain error, such as, the time of the time factor indication of dynamic token is 8:00, the server local zone time is 9:00, there is the error of hour, because server is not known the time factor of dynamic token, so when being authenticated, adopt that time window is experimental to be authenticated, such as, if the select time window is 10 minutes, server calculates all authentication dynamic passwords that generate between 8:50-9:10, then the dynamic password of all authentication dynamic passwords of generation and dynamic token generation being carried out to consistency compares, due to 8:00 not within server calculates the time of authentication dynamic password, so the dynamic password become can not be by authentication.Server can be adjusted the size of time window and proceed verification process, this kind of mode increased the fussy degree of dynamic password comparison, and that time window is adjusted is larger, and the computation burden of server is heavier, make the authenticated time of dynamic password longer, efficiency is lower.
Summary of the invention
For solving the problems of the technologies described above, the embodiment of the present invention provides a kind of dynamic password authentication method and equipment, and to solve when server carries out the consistency comparison to dynamic password, the technical problem that process is loaded down with trivial details, improve business authentication efficiency.The invention provides technical scheme as follows:
A kind of dynamic password authentication method comprises:
Dynamic token generates and carries the dynamic verification code of time factor indication information and dynamic password, and sends the authentication request of carrying described dynamic verification code by user end to server;
Server receives the authentication request of the dynamic token of client transmission;
The dynamic verification code of server from described authentication request extracts the time factor indication information, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password;
Server is authenticated described dynamic password according to definite time factor.
Preferably, dynamic token generates the dynamic verification code that carries time factor indication information and dynamic password, comprising:
Dynamic token generates dynamic password according to the challenge code of input and the fix information of dynamic token storage, and described fix information comprises time factor, seed key and token sign;
Dynamic token is inserted into the time factor indication information in dynamic password and generates the dynamic verification code that carries the time factor indication information.
Preferably, described method also comprises:
To the dynamic password that has inserted the time factor indication information, adopt cryptographic algorithm to be encrypted.
Preferably, described time factor indication information is [T
0/ T
1] %T
2, T wherein
0for the time factor that the UTC form means, T
1for dynamic password period of change, T
2for positive integer, [T
0/ T
1] mean to get T
0/ T
1integer part, % means modulo operation.
Preferably, the time factor indication information is [T
0/ T
1] %T
2the time, T
2be 1,60 or 100.
Preferably, server is authenticated described dynamic password according to definite time factor, comprising:
Generate the authentication dynamic password according to described definite time factor and the fix information of the local described dynamic token of storing of server;
Whether the authentication dynamic password that judgement generates is consistent with dynamic password, if consistent, authenticate and pass through, if inconsistent, authentification failure.
Preferably, also comprise:
Whether the error that judges definite time factor and server local zone time exceeds predetermined threshold value, if do not exceed, carries out the step that the definite time factor of described basis is authenticated described dynamic password;
If exceed, stop the authentication to described dynamic password.
The embodiment of the present invention also provides a kind of dynamic token, and described token comprises:
Memory module, for storing the fix information of dynamic token, described fix information comprises token sign, seed key and time factor;
Acquisition module, for obtaining the challenge code of user's input;
The first generation module, for the fix information generation dynamic password of the challenge code according to obtaining and dynamic token;
The second generation module, for according to dynamic password and time factor, generating the dynamic verification code that carries the time factor indication information, comprise the time factor indication information be inserted in dynamic password.
Preferably, described token comprises:
Encrypting module, adopt cryptographic algorithm to be encrypted for the dynamic password to having inserted the time factor indication information.
The embodiment of the present invention provides a kind of certificate server, and described server comprises:
Receiver module, for receiving the authentication request of the dynamic token that client sends;
The first determination module, extract the time factor indication information for the dynamic verification code from described authentication request, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password;
Authentication module, authenticated described dynamic password for the time factor according to definite.
Preferably, described authentication module comprises:
The authenticate password generation module, for generating the authentication dynamic password according to described definite time factor and the fix information of the local described dynamic token of storing of server;
The first judge module, whether consistent with the dynamic password that dynamic token generates for the authentication dynamic password that judges generation;
Determination module, when consistent with dynamic password for the authentication dynamic password generated, judge to authenticate and pass through as a result, when inconsistent, judges authentification failure.
Preferably, described server also comprises:
Whether the second judge module, exceed predetermined threshold value for the error that judges definite time factor and server local zone time;
Select module, while for the error of definite time factor and server local zone time, not exceeding predetermined threshold value, the step of selecting the definite time factor of the described basis of execution to be authenticated described dynamic password; While exceeding described predetermined threshold value, select to stop the authentication to described dynamic password.
The technical scheme provided from the above embodiment of the present invention, dynamic token is generating the dynamic verification code that comprises time factor indication information and dynamic password, receive the authentication request that contains above-mentioned dynamic verification code of client transmission at server after, server can get by the time factor indication information in authentication request the time factor (real-time time) that dynamic token generates dynamic password, server is when carrying out the authentication of dynamic password, authenticate and get final product according to described time factor, process is simple.Because server can obtain the time factor that dynamic token generates dynamic password, can unlike prior art, choose the authentication that different time windows carries out dynamic password, effectively shortened the dynamic password comparison time, improved business authentication efficiency.
The accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, below will the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described, apparently, the accompanying drawing the following describes is only some embodiment that put down in writing in the present invention, for those of ordinary skills, can also obtain according to these accompanying drawings other accompanying drawing.
Fig. 1 is the flow chart that dynamic token carries out operational line;
The flow chart that the dynamic password that Fig. 2 is corresponding diagram 1 generates;
Fig. 3 is the flow chart that in prior art, server carries out dynamic password authentication;
The flow chart that Fig. 4 is a kind of dynamic password authentication method embodiment 1 of the embodiment of the present invention;
The flow chart of a kind of dynamic password authentication method embodiment 2 that Fig. 5 provides for the embodiment of the present invention;
The structural representation of a kind of dynamic token embodiment that Fig. 6 provides for the embodiment of the present invention;
The structural representation of a kind of certificate server embodiment 1 that Fig. 7 provides for the embodiment of the present invention;
The structural representation of a kind of certificate server embodiment 2 that Fig. 8 provides for the embodiment of the present invention.
Embodiment
In the prior art, when server is authenticated dynamic password, need to adopt the mode of time window, different time points in time window is authenticated dynamic password, if it is too little that time window is chosen, authentification failure probably, then adjust time window and proceed authentication; If it is larger that time window is chosen, the server computation burden is heavier, and the authenticated time of dynamic password is long, and efficiency is low.A kind of dynamic password authentication method provided by the invention, dynamic token and server, dynamic token generates the dynamic verification code that carries time factor indication information and dynamic password, and send the authentication request of carrying described dynamic verification code by user end to server, after server receives this request, can determine the time factor that dynamic password generates, and then according to this time factor, dynamic password is authenticated, effectively reduced the amount of calculation of server, improved authentication efficiency.Below, at first to a kind of dynamic password authentication method provided by the invention, describe in detail.
The method comprises:
Dynamic token generates and carries the dynamic verification code of time factor indication information and dynamic password, and sends the authentication request of carrying described dynamic verification code by user end to server;
Server receives the authentication request of the dynamic token of client transmission;
The dynamic verification code of server from described authentication request extracts the time factor indication information, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password;
Server is authenticated described dynamic password according to definite time factor.
In scheme provided by the present invention, dynamic token is generating the dynamic verification code that comprises time factor indication information and dynamic password, receive the authentication request that contains above-mentioned dynamic verification code of client transmission at server after, can get by the time factor indication information in authentication request the time factor (real-time time) that dynamic token generates dynamic password, server is when carrying out the authentication of dynamic password, authenticate and get final product according to described time factor, process is simple.Because server can obtain the time factor that dynamic token generates dynamic password, can unlike prior art, choose the authentication that different time windows carries out dynamic password, effectively shortened the dynamic password comparison time, improved business authentication efficiency.
In order to make those skilled in the art person understand better the technical scheme in the present invention, below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Embodiment based in the present invention, the every other embodiment that those of ordinary skills obtain, should belong to the scope of protection of the invention.
Shown in figure 1, for dynamic token carries out the flow process of operational line, for the step 1 shown in Fig. 1 and step 2, not emphasis of the present invention, can, with reference to prior art, not do too much introduction here.Wherein the generation of the dynamic password of step 3 correspondence can be with further reference to the detailed process shown in Fig. 2, and the dynamic password authentication of step 6 correspondence can be with further reference to the detailed process shown in Fig. 3.In Fig. 2, digest value is dynamic token according to time factor, seed key, token sign, challenge code, by specific digest algorithm, carries out the Hash calculation generation, and concrete can, with reference to prior art, repeat no more here.6 to 8 passwords that the digest value of the regular length that generates is carried out to produce after cut position, modulo operation are the dynamic password that dynamic token generates.
On the basis of the above, shown in figure 4, the flow chart of a kind of dynamic password authentication method embodiment 1 provided for the embodiment of the present invention, the present embodiment specifically can comprise the steps:
S401: dynamic token generates and carries the dynamic verification code of time factor indication information and dynamic password, and sends the authentication request of carrying described dynamic verification code by user end to server.
In this step, the generation of dynamic password can be with reference to the detailed process shown in figure 2, in practical operation, described time factor indication information can directly be inserted in dynamic password and form dynamic verification code, such as, be inserted into front, centre position or the end position of dynamic password, also can be inserted in dynamic password again after order change.
Preferably, calculating and processing for the ease of data, the time factor of dynamic token adopts the UTC time format (integral multiple with second means) of national Password Management office regulation, if take 8: 0: 0 on the 1st January in 1970, it is the timing benchmark, 2013 the 8 UTC time formats corresponding with month 69: 24: 11 morning are the 0x5200503B(hexadecimal number), 1375752251 seconds of meaning of corresponding decimal number, from 8: 00 second to 2013 8 on the 1st January in 1970 with the time difference 9: 24: 11 6 morning of the moon, be 1375752251 seconds.Based on this, the time factor indication information is set to [T
0/ T
1] %T
2, T wherein
0for the time factor of UTC time representation in seconds, T
1for dynamic password period of change in seconds, described period of change is generally 60 seconds, T
2can according to the practical application scene setting of token, be a positive integer by the user, % be modulo operation, two counts the remainder number that is divided by.Preferably, T
2be set to 1,60 or 100, when being set to 1, the time factor indication information is exactly time factor, after dynamic token generation dynamic password, dynamic password to be shown by display screen, then the user is input to client by the dynamic password of demonstration, generates authentication request by client and sends to server, directly using time factor as indication information, is inserted in dynamic password, the time factor figure place is more, and the display screen display space of dynamic token is limited, preferred, T is set
2be 60, take described 0x5200503B as example, due to the UTC time with hexadecimal representation, so T
0/ T
1integer part be that the 0x15DDF34(decimal representation is 22929204), the number of minutes that is the standard date time format to 60 deliverys is the 24(decimal format); In addition, T can be set
2be 100, persond eixis information is UTC form time factor with position and ten bit positions (0~99) of minute cumulative decimal system numerical value, if T
0/ T
1integer part be 0x15DDF34, adopting the method is 04 to 100 deliverys.
S402: server receives the authentication request of the dynamic token of client transmission.
S403: the dynamic verification code of server from described authentication request extracts the time factor indication information, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password.
If the time factor indication information is time factor itself, server can directly extract time factor from dynamic verification code, with reference to the example in S401, if the number of minutes that the time factor indication information is the standard date time format is 24, certificate server was determined time factor in for example, before and after the local current time (2013 8 and month 69: 34 morning) 30 minutes, was 2013 8 and 69: 24 morning of the moon.
If being the UTC time, the time factor indication information is 04 by the low two bits of decimal format after minute cumulative, certificate server in conjunction with the local current time (for example 2013 8 with month 69: 34 morning, should be 22929214 by the UTC time decimal format minute meaned) before and after determine time factor in 50 minutes, be 22929204.Because the T in the time factor indication information
2can be taken as positive integer, except several integers of listing in step 403, for other integer value, authentication principles is similar, repeats no more herein.
S404: server is authenticated described dynamic password according to definite time factor.
After extraction time factor indication information, can from remaining information, get the dynamic password that dynamic token generates at server from dynamic verification code.Unlike the prior art, in the present embodiment, server carries out the authentication of dynamic password without ETAD expected time of arrival and departure window again, but can directly take the time factor determined as according to dynamic password is authenticated, be specifically as follows server and generate the authentication dynamic password according to described definite time factor and the fix information of the local described dynamic token of storing of server, whether the authentication dynamic password that then the server judgement generates is consistent with dynamic password, if consistent, authentication is passed through, allow the carrying out of user's follow-up business, if inconsistent, authentification failure.The user can regenerate dynamic password and again be authenticated.
The technical scheme of the present embodiment, dynamic token is generating the dynamic verification code that comprises time factor indication information and dynamic password, the time factor indication information can be time factor itself or the indication information obtained according to time factor, receive the authentication request that contains above-mentioned dynamic verification code of client transmission at server after, server can get by the time factor indication information in authentication request the time factor (real-time time) that dynamic token generates dynamic password, and then can obtain dynamic password, server is when carrying out the authentication of dynamic password, authenticate and get final product according to described time factor, process is simple.Because server can obtain the time factor that dynamic token generates dynamic password, can unlike prior art, choose the authentication that different time windows carries out dynamic password, effectively shortened the dynamic password comparison time, improved business authentication efficiency.
On the basis of embodiment 1, shown in figure 5, the flow chart of a kind of dynamic password authentication method embodiment 2 provided for the embodiment of the present invention, wherein the implementation reference example 1 of step in the same manner as in Example 1, here repeat no more, the present embodiment specifically can comprise the following steps:
S501: dynamic token generates and carries the dynamic verification code of time factor indication information and dynamic password, and sends the authentication request of carrying described dynamic verification code by user end to server.
It should be noted that, in the present embodiment, when implementation step S501, on the basis of embodiment 1, to the dynamic password that inserts the time factor indication information, further adopt default algorithm to be encrypted, such as being shifted, XOR or adopt AES or DES scheduling algorithm to be processed.
S502: server receives the authentication request of the dynamic token of client transmission.
S503: the dynamic verification code of server from described authentication request extracts the time factor indication information, and then determines that according to the time factor indication information dynamic token generates the time factor of dynamic password.
S504: whether the error that judges definite time factor and server local zone time exceeds predetermined threshold value, if do not exceed, enters S505, if exceed, enters S506.
When dynamic password being authenticated at every turn, time factor in the time of can considering to record each authentication, be used for judging that whether the error of time factor and server local zone time is excessive, for dynamic token, time error is excessive, dynamic token is whole can not be used invalid, and the method while needing to adopt dynamic token to dispatch from the factory is written to correct time factor in token or at certificate server and carries out time synchronizing.
S505: server is authenticated described dynamic password according to definite time factor.
S506: stop the authentication to described dynamic password.
The present embodiment, except the beneficial effect that can bring embodiment 1, further, has carried out encryption to dynamic verification code, makes customer transaction safer; Secondly, all do the time error judgement at every turn before being authenticated, guarantee to authenticate and make in the effective situation of token, further increased validity and the fail safe of authentication.
Corresponding to top embodiment of the method, the present invention also provides a kind of dynamic token, and as shown in Figure 6, this dynamic token comprises:
The first generation module 630, generate dynamic password for the fix information of the dynamic token of the challenge code that obtains according to acquisition module 620 and memory module 610 storages;
The second generation module 640, for according to dynamic password and time factor, generating the dynamic verification code that carries the time factor indication information, comprise the time factor indication information be inserted in dynamic password.
Further, on the basis shown in Fig. 6, this dynamic token can also comprise encrypting module 650, for the dynamic password to having inserted the time factor indication information, adopts arbitrary cryptographic algorithm to be encrypted.
Shown in figure 7, be the structural representation of a kind of certificate server embodiment 1 provided by the invention, this server comprises:
The first determination module 720, determine that for the time factor indication information according to described authentication request dynamic token generates the time factor of dynamic password;
Preferably, described authentication module 730 can comprise: the authenticate password generation module, for according to described definite time factor and the fix information of the local described dynamic token of storing of server, generating the authentication dynamic password;
The first judge module, whether consistent with the dynamic password that dynamic token generates for the authentication dynamic password that judges generation;
Determination module, when consistent with dynamic password for the authentication dynamic password generated, judge to authenticate and pass through as a result, when inconsistent, judges authentification failure.
Further, shown in figure 8, except the module shown in Fig. 7, described server can also comprise the second judge module 801 and select module 802;
Whether the second judge module 801, exceed predetermined threshold value for the error that judges definite time factor and server local zone time;
Select module 802 to select modules, while for the error of definite time factor and server local zone time, not exceeding predetermined threshold value, the step of selecting the definite time factor of the described basis of execution to be authenticated described dynamic password; While exceeding described predetermined threshold value, select to stop the authentication to described dynamic password.
Being divided into various unit with function while for convenience of description, describing above device describes respectively.Certainly, when enforcement is of the present invention, can realize the function of each unit in same or a plurality of software and/or hardware.
Each embodiment in this specification all adopts the mode of going forward one by one to describe, and between each embodiment, identical similar part is mutually referring to getting final product, and each embodiment stresses is the difference with other embodiment.Especially, for system embodiment, due to it, substantially similar in appearance to embodiment of the method, so describe fairly simplely, relevant part gets final product referring to the part explanation of embodiment of the method.System embodiment described above is only schematic, the wherein said unit as the separating component explanation can or can not be also physically to separate, the parts that show as unit can be or can not be also physical locations, can be positioned at a place, or also can be distributed on a plurality of network element.Can select according to the actual needs some or all of module wherein to realize the purpose of the present embodiment scheme.Those of ordinary skills in the situation that do not pay creative work, can understand and implement.
The above is only the specific embodiment of the present invention; it should be pointed out that for those skilled in the art, under the premise without departing from the principles of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.
Claims (12)
1. a dynamic password authentication method, is characterized in that, comprising:
Dynamic token generates and carries the dynamic verification code of time factor indication information and dynamic password, and sends the authentication request of carrying described dynamic verification code by user end to server;
Server receives the authentication request of the dynamic token of client transmission;
The dynamic verification code of server from described authentication request extracts the time factor indication information, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password;
Server is authenticated described dynamic password according to definite time factor.
2. method according to claim 1, is characterized in that, dynamic token generates the dynamic verification code that carries time factor indication information and dynamic password, comprising:
Dynamic token generates dynamic password according to the challenge code of input and the fix information of dynamic token storage, and described fix information comprises time factor, seed key and token sign;
Dynamic token is inserted into the time factor indication information in dynamic password and generates the dynamic verification code that carries the time factor indication information.
3. method according to claim 2, is characterized in that, described method also comprises:
To the dynamic password that has inserted the time factor indication information, adopt cryptographic algorithm to be encrypted.
4. according to the described method of claim 1-3 any one, it is characterized in that, described time factor indication information is [T
0/ T
1] %T
2, T wherein
0for the time factor that the UTC form means, T
1for dynamic password period of change, T
2for positive integer, [T
0/ T
1] mean to get T
0/ T
1integer part, % means modulo operation.
5. method according to claim 4, is characterized in that, the time factor indication information is [T
0/ T
1] %T
2the time, T
2be 1,60 or 100.
6. method according to claim 1, is characterized in that, server is authenticated described dynamic password according to definite time factor, comprising:
Generate the authentication dynamic password according to described definite time factor and the fix information of the local described dynamic token of storing of server;
Whether the authentication dynamic password that judgement generates is consistent with dynamic password, if consistent, authenticate and pass through, if inconsistent, authentification failure.
7. method according to claim 1, is characterized in that, also comprises:
Whether the error that judges definite time factor and server local zone time exceeds predetermined threshold value, if do not exceed, carries out the step that the definite time factor of described basis is authenticated described dynamic password;
If exceed, stop the authentication to described dynamic password.
8. a dynamic token, is characterized in that, described token comprises:
Memory module, for storing the fix information of dynamic token, described fix information comprises token sign, seed key and time factor;
Acquisition module, for obtaining the challenge code of user's input;
The first generation module, for the fix information generation dynamic password of the challenge code according to obtaining and dynamic token;
The second generation module, for according to dynamic password and time factor, generating the dynamic verification code that carries the time factor indication information, comprise the time factor indication information be inserted in dynamic password.
9. dynamic token according to claim 8, is characterized in that, described token comprises:
Encrypting module, adopt cryptographic algorithm to be encrypted for the dynamic password to having inserted the time factor indication information.
10. a certificate server, is characterized in that, described server comprises:
Receiver module, for receiving the authentication request of the dynamic token that client sends;
The first determination module, extract the time factor indication information for the dynamic verification code from described authentication request, according to the time factor indication information, determines that dynamic token generates the time factor of dynamic password;
Authentication module, authenticated described dynamic password for the time factor according to definite.
11. server according to claim 10, is characterized in that, described authentication module comprises:
The authenticate password generation module, for generating the authentication dynamic password according to described definite time factor and the fix information of the local described dynamic token of storing of server;
The first judge module, whether consistent with the dynamic password that dynamic token generates for the authentication dynamic password that judges generation;
Determination module, when consistent with dynamic password for the authentication dynamic password generated, judge to authenticate and pass through as a result, when inconsistent, judges authentification failure.
12. server according to claim 10, is characterized in that, described server also comprises:
Whether the second judge module, exceed predetermined threshold value for the error that judges definite time factor and server local zone time;
Select module, while for the error of definite time factor and server local zone time, not exceeding predetermined threshold value, the step of selecting the definite time factor of the described basis of execution to be authenticated described dynamic password; While exceeding described predetermined threshold value, select to stop the authentication to described dynamic password.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013104043891A CN103441856A (en) | 2013-09-06 | 2013-09-06 | Dynamic password authentication method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013104043891A CN103441856A (en) | 2013-09-06 | 2013-09-06 | Dynamic password authentication method and device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103441856A true CN103441856A (en) | 2013-12-11 |
Family
ID=49695525
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013104043891A Pending CN103441856A (en) | 2013-09-06 | 2013-09-06 | Dynamic password authentication method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103441856A (en) |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103888470A (en) * | 2014-04-02 | 2014-06-25 | 飞天诚信科技股份有限公司 | Dynamic token synchronizing method and system |
| CN103944720A (en) * | 2014-04-08 | 2014-07-23 | 武汉信安珞珈科技有限公司 | Method for synchronizing time of dynamic token |
| CN104378204A (en) * | 2014-04-21 | 2015-02-25 | 无锡北斗星通信息科技有限公司 | Dynamic password generating method based on composite modes |
| CN104683356A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Dynamic password authentication method and system based on software token |
| CN104683358A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Anti-repudiation dynamic password generating method and dynamic password verification system |
| CN104683357A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Dynamic password authentication method and system based on software token |
| CN104683355A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Anti-repudiation dynamic password generating method and dynamic password verification system |
| CN104935555A (en) * | 2014-03-20 | 2015-09-23 | 华为技术有限公司 | Client certificate authentication method, server, client and system |
| CN105357185A (en) * | 2015-10-08 | 2016-02-24 | Tcl集团股份有限公司 | Shared account login verification method, device and system |
| CN105656635A (en) * | 2016-03-04 | 2016-06-08 | 赫季芬 | Dynamic password generation method and device and authentication method and system |
| CN105788007A (en) * | 2016-02-25 | 2016-07-20 | 上海众人网络安全技术有限公司 | Parking management system and method based on dynamic tokens |
| CN108769059A (en) * | 2018-06-21 | 2018-11-06 | 网易宝有限公司 | Method of calibration, device, medium and computing device |
| CN109214164A (en) * | 2018-09-07 | 2019-01-15 | 河北地质大学 | Computer communication security login method Internet-based and system |
| CN110602700A (en) * | 2019-09-23 | 2019-12-20 | 飞天诚信科技股份有限公司 | Seed key processing method and device and electronic equipment |
| WO2020048351A1 (en) * | 2018-09-07 | 2020-03-12 | 飞天诚信科技股份有限公司 | Personalization method and system for financial ic card having dynamic verification code |
| CN110890958A (en) * | 2019-10-16 | 2020-03-17 | 蔚复来(浙江)科技股份有限公司 | Method for generating and verifying offline remote temporary password |
| CN112104456A (en) * | 2020-08-14 | 2020-12-18 | 广州江南科友科技股份有限公司 | Token activation method and device, storage medium and computer equipment |
| CN113541962A (en) * | 2021-07-16 | 2021-10-22 | 无锡安可芯信息技术有限公司 | Solar energy network silver dynamic token |
| CN114513350A (en) * | 2022-02-08 | 2022-05-17 | 中国农业银行股份有限公司 | Identity verification method, system and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101163014A (en) * | 2007-11-30 | 2008-04-16 | 中国电信股份有限公司 | Dynamic password identification authenticating system and method |
| CN101197667A (en) * | 2007-12-26 | 2008-06-11 | 北京飞天诚信科技有限公司 | Dynamic password authentication method |
| CN101197665A (en) * | 2007-12-24 | 2008-06-11 | 北京飞天诚信科技有限公司 | Dynamic password generation method and device thereof |
| CN101741567A (en) * | 2009-12-31 | 2010-06-16 | 北京飞天诚信科技有限公司 | Dynamic password-based authentication method and device |
| CN102123148A (en) * | 2011-03-02 | 2011-07-13 | 北京天地融科技有限公司 | Authentication method, system and device based on dynamic password |
| CN102148837A (en) * | 2011-05-11 | 2011-08-10 | 上海时代亿信信息科技有限公司 | Bidirectional authentication method and system for dynamic token |
| CN102185838A (en) * | 2011-04-21 | 2011-09-14 | 杭州驭强科技有限公司 | Driving dynamic code generating and authenticating system and method based on time factors |
| CN102761419A (en) * | 2012-07-24 | 2012-10-31 | 天地融科技股份有限公司 | Electronic signature tool and authentication system and authentication method using tool |
-
2013
- 2013-09-06 CN CN2013104043891A patent/CN103441856A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101163014A (en) * | 2007-11-30 | 2008-04-16 | 中国电信股份有限公司 | Dynamic password identification authenticating system and method |
| CN101197665A (en) * | 2007-12-24 | 2008-06-11 | 北京飞天诚信科技有限公司 | Dynamic password generation method and device thereof |
| CN101197667A (en) * | 2007-12-26 | 2008-06-11 | 北京飞天诚信科技有限公司 | Dynamic password authentication method |
| CN101741567A (en) * | 2009-12-31 | 2010-06-16 | 北京飞天诚信科技有限公司 | Dynamic password-based authentication method and device |
| CN102123148A (en) * | 2011-03-02 | 2011-07-13 | 北京天地融科技有限公司 | Authentication method, system and device based on dynamic password |
| CN102185838A (en) * | 2011-04-21 | 2011-09-14 | 杭州驭强科技有限公司 | Driving dynamic code generating and authenticating system and method based on time factors |
| CN102148837A (en) * | 2011-05-11 | 2011-08-10 | 上海时代亿信信息科技有限公司 | Bidirectional authentication method and system for dynamic token |
| CN102761419A (en) * | 2012-07-24 | 2012-10-31 | 天地融科技股份有限公司 | Electronic signature tool and authentication system and authentication method using tool |
Cited By (28)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104935555A (en) * | 2014-03-20 | 2015-09-23 | 华为技术有限公司 | Client certificate authentication method, server, client and system |
| CN104935555B (en) * | 2014-03-20 | 2018-06-15 | 华为技术有限公司 | client certificate authentication method, server, client and system |
| CN103888470A (en) * | 2014-04-02 | 2014-06-25 | 飞天诚信科技股份有限公司 | Dynamic token synchronizing method and system |
| CN103944720A (en) * | 2014-04-08 | 2014-07-23 | 武汉信安珞珈科技有限公司 | Method for synchronizing time of dynamic token |
| CN103944720B (en) * | 2014-04-08 | 2018-03-16 | 武汉信安珞珈科技有限公司 | A kind of method for making dynamic token time synchronized |
| CN104378204A (en) * | 2014-04-21 | 2015-02-25 | 无锡北斗星通信息科技有限公司 | Dynamic password generating method based on composite modes |
| CN104378204B (en) * | 2014-04-21 | 2017-09-15 | 平顶山学院 | Dynamic password formation method based on integrated mode |
| CN104683357B (en) * | 2015-03-26 | 2018-09-14 | 上海众人网络安全技术有限公司 | A kind of dynamic password authentication method and system based on software token |
| CN104683356A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Dynamic password authentication method and system based on software token |
| CN104683356B (en) * | 2015-03-26 | 2018-12-28 | 上海众人网络安全技术有限公司 | Dynamic password authentication method and system based on software token |
| CN104683358A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Anti-repudiation dynamic password generating method and dynamic password verification system |
| CN104683355A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Anti-repudiation dynamic password generating method and dynamic password verification system |
| CN104683357A (en) * | 2015-03-26 | 2015-06-03 | 上海众人网络安全技术有限公司 | Dynamic password authentication method and system based on software token |
| CN105357185A (en) * | 2015-10-08 | 2016-02-24 | Tcl集团股份有限公司 | Shared account login verification method, device and system |
| CN105357185B (en) * | 2015-10-08 | 2020-01-24 | Tcl集团股份有限公司 | Shared account login verification method, device and system |
| CN105788007A (en) * | 2016-02-25 | 2016-07-20 | 上海众人网络安全技术有限公司 | Parking management system and method based on dynamic tokens |
| CN105656635A (en) * | 2016-03-04 | 2016-06-08 | 赫季芬 | Dynamic password generation method and device and authentication method and system |
| CN108769059B (en) * | 2018-06-21 | 2021-11-23 | 网易宝有限公司 | Verification method, device, medium and computing equipment |
| CN108769059A (en) * | 2018-06-21 | 2018-11-06 | 网易宝有限公司 | Method of calibration, device, medium and computing device |
| CN109214164A (en) * | 2018-09-07 | 2019-01-15 | 河北地质大学 | Computer communication security login method Internet-based and system |
| WO2020048351A1 (en) * | 2018-09-07 | 2020-03-12 | 飞天诚信科技股份有限公司 | Personalization method and system for financial ic card having dynamic verification code |
| CN110602700A (en) * | 2019-09-23 | 2019-12-20 | 飞天诚信科技股份有限公司 | Seed key processing method and device and electronic equipment |
| CN110602700B (en) * | 2019-09-23 | 2023-01-17 | 飞天诚信科技股份有限公司 | Seed key processing method and device and electronic equipment |
| CN110890958A (en) * | 2019-10-16 | 2020-03-17 | 蔚复来(浙江)科技股份有限公司 | Method for generating and verifying offline remote temporary password |
| CN110890958B (en) * | 2019-10-16 | 2023-09-12 | 蔚复来(浙江)科技股份有限公司 | Offline remote temporary password generation method and verification method |
| CN112104456A (en) * | 2020-08-14 | 2020-12-18 | 广州江南科友科技股份有限公司 | Token activation method and device, storage medium and computer equipment |
| CN113541962A (en) * | 2021-07-16 | 2021-10-22 | 无锡安可芯信息技术有限公司 | Solar energy network silver dynamic token |
| CN114513350A (en) * | 2022-02-08 | 2022-05-17 | 中国农业银行股份有限公司 | Identity verification method, system and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103441856A (en) | Dynamic password authentication method and device | |
| US6904526B1 (en) | System and method of authenticating individuals | |
| CN101282222B (en) | Digital signature method based on CSK | |
| EP3289723B1 (en) | Encryption system, encryption key wallet and method | |
| CN108985100B (en) | Block chain-based element security certification method, device, equipment and medium | |
| EP3761203A1 (en) | Information processing method, blockchain node, and electronic apparatus | |
| EP3149886B1 (en) | Controlling access to a resource via a computing device | |
| CN103078863B (en) | The method of login authentication, Apparatus and system | |
| CN112288434B (en) | Privacy transaction method, device, zero knowledge proof system and privacy transaction architecture model | |
| CN101022337A (en) | Network identification card realizing method | |
| CN109936552B (en) | Key authentication method, server and system | |
| CN106779705B (en) | Dynamic payment method and system | |
| CN113656775B (en) | Offline password verification method and system with validity period and intelligent lock | |
| CN103186850A (en) | Method, equipment and system for acquiring payment document | |
| CN110059458A (en) | A kind of user password encryption and authentication method, apparatus and system | |
| CN109644137B (en) | Method for token-based authentication with signed messages | |
| CN101777984B (en) | Method and system for secure transaction | |
| CN109302425B (en) | Identity authentication method and terminal equipment | |
| CN105516210A (en) | System and method for terminal security access authentication | |
| CN117014223B (en) | Concentrator, data transmission method and device thereof and storage medium | |
| CN108848089B (en) | Data encryption method and data transmission system | |
| CN103595535A (en) | Cloud key of cloud computing identity authentication system | |
| CN111586024B (en) | Authentication method, authentication equipment and storage medium | |
| CN108599936A (en) | A kind of OpenStack increases income the safety certifying method of cloud user | |
| US9398005B1 (en) | Managing seed provisioning |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20131211 |