CN102412969B - Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof - Google Patents
Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof Download PDFInfo
- Publication number
- CN102412969B CN102412969B CN201110359696.3A CN201110359696A CN102412969B CN 102412969 B CN102412969 B CN 102412969B CN 201110359696 A CN201110359696 A CN 201110359696A CN 102412969 B CN102412969 B CN 102412969B
- Authority
- CN
- China
- Prior art keywords
- certificate
- signature
- user
- server
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a method for carrying out authentication by remotely using a certificate and a secret key, an apparatus and a system thereof. The authentication method comprises the following steps that: a certificate authentication interception module intercepts request information of a user certificate and a signature transmitted by a certificate / dispersion key (Dkey) authentication module; a certificate authentication forwarding module forwards the request information to a certificate authentication response module; after receiving an authentication request, the certificate authentication response module carries out signature; the user certificate and a signature result are forwarded to the certificate authentication interception module through the certificate authentication forwarding module; the certificate authentication interception module returns the user certificate and the signature result to the certificate / Dkey authentication module. In the invention, a function hook technology is mainly used; a certificate operation which is originally needed to be executed on a remote application publishing server is transferred to be executed on a client of a personal computer (PC) of a user so that the user can directly use an office automatic (OA) system without perception; security of remote application publishing information, disposition convenience and easy maintenance of the terminal can be increased.
Description
Technical field
The present invention relates to field of computer technology, relate in particular to method, Apparatus and system that a kind of long-range use certificate and key authenticate.
Background technology
Remote application issue belongs to applying virtual technology, it is by the man-machine interaction logic (Application Program Interface of application program, the operation of keyboard and mouse, audio frequency input and output, card reader, printout etc.) keep apart with computational logic, when user accesses an application after server virtualization, subscriber terminal equipment only need to be sent to server end by RDPs such as RDP/ICA man-machine interaction logic, server end is offered independently session space for user, the computational logic of application program moves in this session space, man-machine interaction logic after changing is sent to subscriber terminal equipment, and display in the respective display apparatus of subscriber terminal equipment, thereby make user obtain the access impression as operation local application.
Along with the maturation gradually of Intel Virtualization Technology, remote application issuing function becomes a necessary functions of SSL VPN (Secure Sockets Layer Virtual Private Network, safe socket layer virtual private network) product gradually; Compare with traditional client-server mode, remote application issue has more Information Security, disposes convenience and terminal ease for maintenance.
At present, for various OA (Office Automatic, office automation) system, remote application issue all only supports that the mode of utilizing mouse, keyboard etc. to input authenticates, as note authentication, dynamic token, password etc., and the system that need to use certificate and Dkey (Dispersion Key, distributed key) authentication cannot be issued resource as remote application and uses.For certificate verification, can solve by importing corresponding user certificate for each windows (Windows) user account, but these certificates need to import or user is remotely logged into remote application publisher server and imports voluntarily in batches by keeper, therefore in fail safe and ease for use, all cannot meet customer need.For Dkey authenticated user, can not use OA system by the Dkey of insertion on publisher server oneself, so Dkey authentication also cannot be applied in the OA system of remote application issue now.
There is manufacturer to be directly USB (Universal Serial Bus, USB) scheme of mapping, this scheme is by user PC (Personal Computer, personal computer) USB interface is mapped to server, although user can directly insert Dkey and realize authentication in the USB interface of its PC like this, but user equally can be by using USB flash disk and other movable storage devices in the USB interface of its PC, the unrestricted upload and download that carries out file, this brings the danger of information leakage and virus infections to remote application server.
Summary of the invention
Main purpose of the present invention is to provide a kind of method that long-range use certificate and key authenticate, be intended to carry out by the former certificate verification flow process that need to carry out on remote application publisher server being transferred in the client of user PC, reach remote application and support the object of certificate, Dkey authentication, make the direct use OA system of user's unaware simultaneously.
The invention discloses a kind of method that long-range use certificate and key authenticate, comprise the following steps:
OA system client on remote application publisher server sends certificate verification request to OA server, when OA server sends the solicited message of user certificate and signature to remote application publisher server, the certificate verification blocking module of remote application publisher server is tackled described OA server to the user certificate of remote application publisher server transmission and the solicited message of signature, by certificate verification forwarding module, described request information is forwarded to the certificate verification responder module of PC;
Certificate verification responder module is signed after receiving authentication request, by certificate verification forwarding module, user certificate and signature result is forwarded to certificate verification blocking module;
Certificate verification blocking module returns to the result of user certificate and signature to described OA server.
Preferably, the certificate verification blocking module of described remote application publisher server is tackled user certificate that described OA server sends to remote application publisher server and the solicited message of signature further comprises:
Utilize function hook technology, by calling, meet CSP (Cryptographic Service Provider, encrypting module interface standard) and use each relevant function of certificate to link up with, the solicited message of described user certificate and signature is tackled.
Preferably, the result that described certificate verification blocking module returns to user certificate and signature to the step of described OA server is specially:
At described hook function, in the interruptions of carrying out the solicited message of interception user certificate and signature, the result of user certificate and signature is returned.
Preferably, described method also comprises step:
Described OA server, according to user certificate and signature result return authentication result, judges whether by authentication.
The invention also discloses the device that a kind of long-range use certificate and key authenticate, comprising:
Certificate verification blocking module, for the OA system client on remote application publisher server, to OA server, send certificate verification request, when OA server sends the solicited message of user certificate and signature to remote application publisher server, tackle described OA server to the user certificate of remote application publisher server transmission and the solicited message of signature, and described request information is handed down to certificate verification forwarding module; Also for the result of returning to user certificate and signature to described OA server;
Certificate verification forwarding module, is transmitted to the certificate verification responder module of PC for the solicited message that certificate verification blocking module is issued; Also for user certificate and the signature result that certificate verification responder module is sent, be forwarded to certificate verification blocking module;
Certificate verification responder module, for replying the solicited message of user certificate and signature, provides user certificate and signature.
Preferably, described certificate verification blocking module specifically for:
Utilize function hook technology, by calling, meet encrypting module interface standard CSP and use each relevant function of certificate to link up with, the solicited message of described user certificate and signature is tackled, and then send it to certificate verification forwarding module.
Preferably, described certificate verification blocking module specifically for:
At described hook function, carry out the interruptions of forwarding user certificate and signature request information and return to described user certificate and signature.
Preferably, described authenticate device also comprises:
Certificate/Dkey authentication module: for according to user certificate and signature result return authentication result, judge whether by authentication.
The invention also discloses the system that a kind of long-range use certificate and key authenticate, comprising:
OA server, comprise certificate/Dkey authentication module, while sending certificate verification request for the OA system client on remote application publisher server to OA server, to remote application publisher server request user certificate and signature, and the user certificate returning according to remote application publisher server and signature result, return to its authentication result, judge whether by authentication;
Remote application publisher server, comprise certificate verification blocking module, for when described OA server is to remote application publisher server request user certificate with while signing, the user certificate that interception OA server sends and the solicited message of signature, and described request information is handed down to remote application distribution technology environment; Also for user certificate and the signature result that remote application distribution technology environment is forwarded, return to OA server;
Remote application distribution technology environment, comprises certificate verification forwarding module, the user certificate and signature request information and user personal computer the PC user certificate sending and the result of signing that for forwarding remote application publisher server, issue;
User PC, comprises certificate verification responder module, for replying the solicited message of user certificate and signature, provides user certificate and signature.
Preferably, described remote application publisher server specifically for:
Utilize function hook technology, by calling, meet encrypting module interface standard CSP and use each relevant function of certificate to link up with, the solicited message of described user certificate and signature is tackled; And the interruptions of carrying out forwarding user certificate and signature request information at described hook function returns to OA server by user certificate and signature result.
Method, Apparatus and system that long-range use certificate disclosed by the invention and key authenticate, by identifying procedure is transferred to user PC from remote application publisher server, reached the object that long-range use certificate and Dkey authenticate, make the direct use OA system of user's unaware simultaneously, improved the ease for maintenance of remote application issue to the Information Security of OA system authentication, deployment convenience and terminal.
Accompanying drawing explanation
Fig. 1 is the schematic flow sheet of method the first embodiment of authenticating of the long-range use certificate of the present invention and key;
Fig. 2 is the schematic flow sheet of method the second embodiment of authenticating of the long-range use certificate of the present invention and key;
Fig. 3 is the schematic flow sheet of device the first embodiment of authenticating of the long-range use certificate of the present invention and key;
Fig. 4 is the schematic flow sheet of device the second embodiment of authenticating of the long-range use certificate of the present invention and key;
Fig. 5 is the schematic flow sheet of system one embodiment that authenticates of the long-range use certificate of the present invention and key;
Fig. 6 is the OA system user login interface of prior art medium-long range application issue;
Fig. 7 adopts after the method that the long-range use certificate of the present invention and key authenticate, the OA system user login interface that remote application is issued.
The realization of the object of the invention, functional characteristics and advantage, in connection with embodiment, are described further with reference to accompanying drawing.
Embodiment
Below in conjunction with Figure of description and specific embodiment, further illustrate technical scheme of the present invention.Should be appreciated that specific embodiment described herein, only in order to explain the present invention, is not intended to limit the present invention.
With reference to Fig. 1, Fig. 1 is the schematic flow sheet of method the first embodiment of authenticating of the long-range use certificate of the present invention and key, and the method that the long-range use certificate of the present invention and key authenticate comprises the following steps:
The user certificate that S01, certificate verification blocking module interception certificate/Dkey authentication module send and the solicited message of signature, be forwarded to certificate verification responder module by certificate verification forwarding module by described request information;
User clicks the certificate verification button of the OA system that remote application publisher server issues out on PC, and the OA system client being equivalent on remote application publisher server sends certificate verification request to OA server; When OA server is received the certificate verification request that remote application publisher server sends, OA server is to remote application publisher server request user certificate and signature; Certificate verification blocking module in remote application publisher server mainly utilizes function hook technology, as API Interception Technology, by the application program being distributed on application publisher server, by what it was called, meet CSP standard and use each relevant function of certificate to link up with, the user certificate that certificate/Dkey authentication module on OA server is sent remote application publisher server and the authentication request of signature are tackled, and by certificate verification forwarding module, the content of the request of user certificate and signature are forwarded to user PC.
Described remote application distribution technology environment mainly comprises SSL vpn environment, but is not limited to use SSL vpn environment, and the deployment way of certificate verification forwarding module is also applicable to use other environment of long-range distribution technology.
S02, certificate verification responder module are signed after receiving authentication request, by certificate verification forwarding module, user certificate and signature result are forwarded to certificate verification blocking module;
Certificate verification responder module on user PC receives after the user certificate of certificate verification forwarding module forwarding and the authentication request of signature, use the local private key for user that meets CSP standard to sign, and user certificate and signature result are passed to certificate verification forwarding module; Certificate verification forwarding module is forwarded to certificate verification blocking module by the user certificate of user PC and signature again;
S03, certificate verification blocking module return to the result of user certificate and signature to certificate/Dkey authentication module.
Certificate verification blocking module in remote application publisher server in the interruptions of carrying out the solicited message that forwards user certificate and signature, returns to the user certificate of user PC and signature result certificate/Dkey authentication module of OA server at the hook function described in step S01.
Utilize function hook technology, by being transferred to user PC from remote application publisher server, carries out identifying procedure, reached the object that long-range use certificate and key authenticate, make the direct use OA system of user's unaware simultaneously, promoted Information Security and deployment convenience that long-range use certificate and key authenticate.
With reference to Fig. 2, Fig. 2 is the schematic flow sheet of method the second embodiment of authenticating of the long-range use certificate of the present invention and key, and the method that the long-range use certificate of the present invention and key authenticate also comprises step:
S04, certificate/Dkey authentication module, according to user certificate and signature result return authentication result, judge whether by authentication.
OA server receives after the response message of remote application publisher server, and certificate/Dkey authentication module carries out authentication processing return authentication result simultaneously to the response message of user certificate and signature: by authentication, perform step S041; Otherwise, execution step S042.
Step S041, permission login;
Step S042, refusal log in.
With reference to Fig. 3, Fig. 3 is the schematic flow sheet of device the first embodiment of authenticating of the long-range use certificate of the present invention and key, and the device that the long-range use certificate of the present invention and key authenticate comprises:
Certificate verification blocking module 011, for tackling the user certificate of certificate/Dkey authentication module transmission and the solicited message of signature, and is handed down to certificate verification forwarding module; Also for the result of returning to user certificate and signature to certificate/Dkey authentication module;
Certificate verification forwarding module 021, is transmitted to certificate verification responder module for the solicited message that certificate verification blocking module is issued; Also for user certificate and the signature result that certificate verification responder module is sent, be forwarded to certificate verification blocking module;
Certificate verification responder module 031, for replying the solicited message of user certificate and signature, provides user certificate and signature.
When remote application publisher server receives after the request of user certificate that OA system sends and signature, certificate verification blocking module 011 utilizes function hook technology, by it is called, meet CSP standard and use each relevant function of certificate to link up with, the authentication request that certificate/Dkey authentication module on OA server is sent remote application publisher server is tackled, and request content is sent to certificate verification forwarding module 021;
Certificate verification forwarding module 021 receives after certificate verification blocking module 011 user certificate of transmission and the solicited message of signature, forwards it to certificate verification responder module 031;
Certificate verification responder module 031 receives after request, uses the local private key for user that meets CSP standard to sign, and user certificate and signature result are passed to certificate verification forwarding module 021;
Certificate verification forwarding module 021 is transmitted to certificate verification blocking module 011 by user certificate and signature result, certificate verification blocking module 011 is carried out the interruptions of the solicited message that forwards user certificate and signature at hook function, user certificate and signature result are returned to certificate/Dkey authentication module of OA server.
Utilize function hook technology, by being transferred to user PC from remote application publisher server, carries out identifying procedure, reached the object that long-range use certificate and key authenticate, make the direct use OA system of user's unaware, promoted Information Security and deployment convenience that long-range use certificate and key authenticate.
With reference to Fig. 4, Fig. 4 is the schematic flow sheet of device the second embodiment of authenticating of the long-range use certificate of the present invention and key, and the device that the long-range use certificate of the present invention and key authenticate also comprises:
Certificate/Dkey authentication module 041, for according to user certificate and signature result return authentication result, judges whether by authentication.
Certificate/Dkey authentication module 041 is received after the response message of user certificate that remote application publisher server returns and signature, and return authentication result judges whether by authentication: by authentication, allow login, otherwise refusal logs in.
With reference to Fig. 5, Fig. 5 is the schematic flow sheet of system one embodiment that authenticates of the long-range use certificate of the present invention and key, and the system that the long-range use certificate of the present invention and key authenticate comprises:
OA server 04, comprise certificate/Dkey authentication module 041, for to remote application publisher server 01 request user certificate and signature the user certificate returning according to remote application publisher server 01 and signature result, return to its authentication result, judge whether by authentication;
Remote application publisher server 01, comprises certificate verification blocking module 011, for tackling OA server 04 user certificate of transmission and the solicited message of signature and being handed down to remote application distribution technology environment 02; Also for user certificate and the signature result that remote application distribution technology environment 02 is forwarded, return to OA server 04;
Remote application distribution technology environment 02, comprises certificate verification forwarding module 021, the user certificate and signature request information and user the PC03 user certificate sending and the result of signing that for forwarding remote application publisher server 01, issue;
User PC03, comprises certificate verification responder module 031, for replying the solicited message of user certificate and signature, provides user certificate and signature.
At user's pc client, user clicks the certificate verification button of remote application publisher server 01 issue OA system out, and the OA system client being equivalent on remote application publisher server 01 sends certificate verification request to OA server 04; When OA server 04 is received the certificate verification request that remote application publisher server 01 sends, OA server 04 is to remote application publisher server 01 request user certificate and signature; Certificate verification blocking module in remote application publisher server 01 mainly utilizes function hook technology, as API Interception Technology, by the application program being distributed on application publisher server 01, by what it was called, meet CSP standard and use each relevant function of certificate to link up with, the authentication request of 04 pair of remote application publisher server 01 of OA server is tackled, and by remote application distribution technology environment 02, the content of the request of user certificate and signature is forwarded to user PC03.
User PC03 receives after remote application distribution technology environment 02 user certificate of forwarding and the authentication request of signature, uses the local private key for user that meets CSP standard to sign, and user certificate and signature result are passed to remote application distribution technology environment 02; Remote application distribution technology environment 02 is forwarded to remote application publisher server 01 by the user certificate of user PC03 and signature again.
Remote application publisher server 01 is carried out the interruptions of the solicited message that forwards user certificate and signature at described hook function, the user certificate of user PC03 and signature result are returned to OA server 04.
OA server 04 receives that, after the user certificate that remote application publisher server 01 sends and the response message of signing result, 04 pair of response message of OA server carries out authentication processing return authentication result simultaneously: by authentication, log in; Otherwise refusal logs in.
The method that the long-range use certificate of the present invention and key authenticate, the beneficial effect of Apparatus and system with reference to Fig. 6 and Fig. 7 to recently further illustrating.
With reference to Fig. 6, Fig. 6 is the OA system user login interface of prior art medium-long range application issue, in prior art, at user PC end, inserts Dkey, and the OA system of remote application issue cannot be chosen the user that will login in the user hurdle of login interface, and it is invalid to click.
With reference to Fig. 7, Fig. 7 adopts after the method that the long-range use certificate of the present invention and key authenticate, the OA system user login interface that remote application is issued; Use after the present invention, at user PC end, insert Dkey, the OA system of remote application issue shows user name in the user hurdle of login interface, clicks after login, and user can login smoothly OA system and conduct interviews.
Method, Apparatus and system that the long-range use certificate of the present invention and key authenticate, mainly utilize function hook technology, by the identifying procedure of certificate and key is transferred to user's pc client from remote application publisher server, reach remote application and supported the object that certificate, Dkey authenticate, make the direct use OA system of user's unaware simultaneously, improved the ease for maintenance of Information Security, deployment convenience and terminal.
The foregoing is only the preferred embodiments of the present invention; not thereby limit its scope of the claims; every equivalent structure or conversion of equivalent flow process that utilizes specification of the present invention and accompanying drawing content to do; directly or indirectly be used in other relevant technical fields, be all in like manner included in scope of patent protection of the present invention.
Claims (10)
1. the method that long-range use certificate and key authenticate, is characterized in that, comprises the following steps:
OA system client on remote application publisher server sends certificate verification request to OA server, when OA server sends the solicited message of user certificate and signature to remote application publisher server, the certificate verification blocking module of remote application publisher server is tackled described OA server to the user certificate of remote application publisher server transmission and the solicited message of signature, by certificate verification forwarding module, described request information is forwarded to the certificate verification responder module of PC;
After described certificate verification responder module receives authentication request, sign, by certificate verification forwarding module, user certificate and signature result are forwarded to certificate verification blocking module;
Certificate verification blocking module returns to the result of user certificate and signature to described OA server.
2. method according to claim 1, is characterized in that, the certificate verification blocking module of described remote application publisher server is tackled described OA server and further comprised to the user certificate of remote application publisher server transmission and the solicited message of signature:
Utilize function hook technology, by calling the encrypting module interface standard CSP function relevant to certificate, link up with, the solicited message of described user certificate and signature is tackled.
3. method according to claim 2, is characterized in that, the result that described certificate verification blocking module returns to user certificate and signature to the step of described OA server is specially:
At hook function, carrying out the interruptions of the solicited message of interception user certificate and signature returns to the result of user certificate and signature.
4. method according to claim 1, is characterized in that, described method also comprises step:
Described OA server, according to user certificate and signature result return authentication result, judges whether by authentication.
5. the device that long-range use certificate and key authenticate, is characterized in that, comprising:
Certificate verification blocking module, for the OA system client on remote application publisher server, to OA server, send certificate verification request, when OA server sends the solicited message of user certificate and signature to remote application publisher server, tackle described OA server to the user certificate of remote application publisher server transmission and the solicited message of signature, and described request information is handed down to certificate verification forwarding module; Also for the result of returning to user certificate and signature to described OA server;
Certificate verification forwarding module, is transmitted to the certificate verification responder module of PC for the solicited message that certificate verification blocking module is issued; Also for user certificate and the signature result that certificate verification responder module is sent, be forwarded to certificate verification blocking module;
Certificate verification responder module, for replying the solicited message of user certificate and signature, provides user certificate and signature.
6. device according to claim 5, is characterized in that, described certificate verification blocking module specifically for:
Utilize function hook technology, by calling the encrypting module interface standard CSP function relevant to certificate, link up with, the solicited message of described user certificate and signature is tackled, and then send it to certificate verification forwarding module.
7. device according to claim 6, is characterized in that, described certificate verification blocking module specifically for:
At hook function, carry out the interruptions of forwarding user certificate and signature request information and return to described user certificate and signature.
8. according to the device described in right request 5, it is characterized in that, described authenticate device also comprises:
Certificates/keys Dkey authentication module: for according to user certificate and signature result return authentication result, judge whether by authentication.
9. the system that long-range use certificate and key authenticate, is characterized in that, comprising:
OA server, comprise certificates/keys Dkey authentication module, while sending certificate verification request for the OA system client on remote application publisher server to OA server, to remote application publisher server request user certificate and signature, and the user certificate returning according to remote application publisher server and signature result, return to its authentication result, judge whether by authentication;
Remote application publisher server, comprise certificate verification blocking module, for when described OA server is to remote application publisher server request user certificate with while signing, the user certificate that interception OA server sends and the solicited message of signature, and described request information is handed down to remote application distribution technology environment; Also for user certificate and the signature result that remote application distribution technology environment is forwarded, return to OA server;
Remote application distribution technology environment, comprises certificate verification forwarding module, the user certificate and signature request information and user personal computer the PC user certificate sending and the result of signing that for forwarding remote application publisher server, issue;
User PC, comprises certificate verification responder module, for replying the solicited message of user certificate and signature, provides user certificate and signature.
10. Verification System according to claim 9, is characterized in that, described remote application publisher server specifically for:
Utilize function hook technology, by calling the encrypting module interface standard CSP function that certificate is relevant, link up with, the solicited message of described user certificate and signature is tackled; And the interruptions of carrying out forwarding user certificate and signature request information at hook function returns to OA server by user certificate and signature result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110359696.3A CN102412969B (en) | 2011-11-14 | 2011-11-14 | Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110359696.3A CN102412969B (en) | 2011-11-14 | 2011-11-14 | Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102412969A CN102412969A (en) | 2012-04-11 |
| CN102412969B true CN102412969B (en) | 2014-11-05 |
Family
ID=45914834
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110359696.3A Active CN102412969B (en) | 2011-11-14 | 2011-11-14 | Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102412969B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103888432A (en) * | 2012-12-21 | 2014-06-25 | 上海格尔软件股份有限公司 | Method for sharing safety device in virtualization environment |
| CN103279308B (en) * | 2013-05-06 | 2016-04-06 | 深圳市深信服电子科技有限公司 | The caching method of remote application interface and device |
| CN103425922B (en) * | 2013-08-14 | 2016-12-28 | 广州尚融网络科技有限公司 | The method and system of far-end encryption instruction are obtained based on CSP |
| RU2728506C2 (en) * | 2018-06-29 | 2020-07-29 | Акционерное общество "Лаборатория Касперского" | Method of blocking network connections |
| CN111143168B (en) * | 2019-12-25 | 2023-08-15 | 曙光信息产业(北京)有限公司 | Monitoring management method and system for cluster service |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1738241A (en) * | 2005-04-28 | 2006-02-22 | 上海交通大学 | Identity attestation safety control method based on remote distributed assembly |
| CN101908964A (en) * | 2010-08-17 | 2010-12-08 | 公安部第三研究所 | Method for authenticating remote virtual cryptographic equipment |
| CN102111378A (en) * | 2009-12-25 | 2011-06-29 | 上海格尔软件股份有限公司 | Signature verification system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8116453B2 (en) * | 2008-12-29 | 2012-02-14 | Bank Of America Corporation | Gaming console-specific user authentication |
-
2011
- 2011-11-14 CN CN201110359696.3A patent/CN102412969B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1738241A (en) * | 2005-04-28 | 2006-02-22 | 上海交通大学 | Identity attestation safety control method based on remote distributed assembly |
| CN102111378A (en) * | 2009-12-25 | 2011-06-29 | 上海格尔软件股份有限公司 | Signature verification system |
| CN101908964A (en) * | 2010-08-17 | 2010-12-08 | 公安部第三研究所 | Method for authenticating remote virtual cryptographic equipment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102412969A (en) | 2012-04-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2022206349A1 (en) | Information verification method, related apparatus, device, and storage medium | |
| CN102457507B (en) | Cloud computing resources secure sharing method, Apparatus and system | |
| CN104378210B (en) | Across the identity identifying method of trust domain | |
| CN102946314B (en) | A kind of client-side user identity authentication method based on browser plug-in | |
| CN102315945A (en) | Unified identity authentication method based on private agreement | |
| EP2391083B1 (en) | Method for realizing authentication center and authentication system | |
| CN112953970B (en) | Identity authentication method and identity authentication system | |
| CN106341429A (en) | Authentication method capable of protecting safety of server data | |
| CN101651666A (en) | Method and device for identity authentication and single sign-on based on virtual private network | |
| CN103347020B (en) | A kind of system and method across application authorization access | |
| CN102412969B (en) | Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof | |
| EP2839401A1 (en) | Secure password-based authentication for cloud computing services | |
| US10601809B2 (en) | System and method for providing a certificate by way of a browser extension | |
| CN102377788A (en) | Single sign-on (SSO) system and single sign-on (SSO) method | |
| CN109362074A (en) | The method of h5 and server-side safety communication in a kind of mixed mode APP | |
| CN111865882A (en) | Micro-service authentication method and system | |
| CN105075219A (en) | Network system comprising a security management server and a home network, and method for including a device in the network system | |
| CN108319857A (en) | Trusted application adds unlocking method and system | |
| CN104579657A (en) | Method and device for identity authentication | |
| CN103457736A (en) | System and method for receiving and sending official document based on WEB | |
| KR101348079B1 (en) | System for digital signing using portable terminal | |
| CN101064611B (en) | Application integration method based on register and call control | |
| CN202206419U (en) | Network security terminal and interactive system based on terminal | |
| CN105681350A (en) | Zero interaction double-factor authentication system and method | |
| CN102546168A (en) | Communication device for identity authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CP03 | Change of name, title or address |
Address after: Nanshan District Xueyuan Road in Shenzhen city of Guangdong province 518000 No. 1001 Nanshan Chi Park building A1 layer Patentee after: SINFOR Polytron Technologies Inc Address before: 518052 room 410-413, science and technology innovation service center, No. 1 Qilin Road, Shenzhen, Guangdong, China Patentee before: Shenxinfu Electronics Science and Technology Co., Ltd., Shenzhen |
|
| CP03 | Change of name, title or address |