CN103209158A - Third-party verification method and system - Google Patents
Third-party verification method and system Download PDFInfo
- Publication number
- CN103209158A CN103209158A CN2012100086982A CN201210008698A CN103209158A CN 103209158 A CN103209158 A CN 103209158A CN 2012100086982 A CN2012100086982 A CN 2012100086982A CN 201210008698 A CN201210008698 A CN 201210008698A CN 103209158 A CN103209158 A CN 103209158A
- Authority
- CN
- China
- Prior art keywords
- identifying code
- server
- result
- user browser
- website
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
An embodiment of the invention discloses a third-party verification method and system. The third-party verification method includes that a user browser sends request information to a web server according to a request of a user; the user browser receives page data which carry scripts and are returned by the web server and executes the scripts to obtain a verification parameter; the user browser performs third-party verification on a verification code server according to the verification parameter; the verification code server sends verified results to the web server through the user browser; and the web server processes the request information of the user browser according to the verified results. The third-party verification method and system has the advantages of being capable of effectively reducing loads of the web server, improving the data transmission speed can and meanwhile improving the user experience.
Description
Technical field
The present invention relates to the communications field, relate in particular to a kind of third-party authentication method and system.
Background technology
The user is when landing network operation such as the website is registered, visits, posted, download, and tending to need be according to prompting input validation sign indicating number, uses instrument such as illegal register machine to carry out repeatedly operation at short notice to avoid the user.
Existing a kind of verification method is to be chosen an identifying code and carried out showing the user after the scrambling from accidental validation sign indicating number storehouse by accessed website, and after the user had imported correct pass code, the website then can be carried out next step operation according to user's demand.
But producing identifying code by the server self of accessed website can increase the structure difficulty of website itself, and needs website self to reserve memory space and processing resource carrying out proof procedure, thereby has influenced network performance.
For this reason, propose a kind of system of third-party authentication in the prior art again, specifically see also Fig. 1, third-party authentication process of the prior art is roughly as follows:
101, the user asks to fill in the page of identifying code;
102, Website server is to identifying code server requests verification sign indicating number information;
103, the identifying code server returns identifying code and identifying code pictorial information to Website server;
104, Website server loads the identifying code generator, and identifying code is saved as session;
105, Website server turns back to user browser with the identifying code picture;
106, submission information was to Website server after the user imported other information and identifying code;
107, after the success such as website checking user name password again with session judge identifying code import whether correct, as correctly then successfully landing;
108, Website server sends the verification code information of user's input to the identifying code server;
109, the verification code information of identifying code server reception Website server transmission deposits database in.
From above-mentioned flow process as can be seen, in the third-party authentication method of prior art, mainly be with the transfer of Website server as data, any exchanges data between identifying code server and the user browser all must be carried out transfer via Website server, so just cause great burden to Website server, influenced the transmission speed of data;
Simultaneously, such mode also makes data lose in the transfer process easily, thereby causes identifying code can't bring into play its due function, has reduced user's experience, has influenced the overall image of website.
Summary of the invention
The embodiment of the invention provides a kind of third-party authentication method and system, can effectively reduce the burden of Website server, improves data transmission bauds, improves the user simultaneously and experiences.
The third-party authentication method that the embodiment of the invention provides comprises:
User browser sends a request message to Website server according to user's request;
Described user browser receives the page data that carries script that described Website server returns, and carries out described script and be verified parameter;
Described user browser carries out third-party authentication according to described certificate parameter to the identifying code server;
Described identifying code server will verify that the result is sent to described Website server by described user browser;
Described Website server is handled the request message of described user browser according to described checking result.
Alternatively, described user browser carries out third-party authentication according to described certificate parameter to the identifying code server and comprises:
Described user browser sends the checking request that comprises described certificate parameter to described identifying code server, and described certificate parameter comprises website logo;
Described user browser receives the identifying code assembly that described identifying code server returns, and the user is resolved and showed to described identifying code assembly;
Described user browser receives the identifying code of user's input, and described identifying code and session sequence number are sent to described identifying code server;
Described identifying code server obtains correct pass code according to described session sequence number and described website logo, and uses the identifying code of described correct pass code and described user input to compare to draw the checking result.
Alternatively, described checking assembly comprises for the displaying of carrying out identifying code at described user browser, refreshes, parameter is preserved, send authentication function text, picture, video, flash, browser script, comprise the html code of website links.
Alternatively, described method also comprises:
Described Website server and described identifying code server negotiate cryptographic algorithm and key;
Described identifying code server will verify that the result is sent to described Website server by described user browser and comprises:
The checking result that described identifying code server will draw is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext;
Described identifying code server is sent to described user browser with described ciphertext;
Described user browser is sent to described Website server with described ciphertext;
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and is verified the result.
Alternatively, described method also comprises:
Described Website server and described identifying code server negotiate format parameter;
The checking result that described identifying code server will draw is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext and comprise:
Described identifying code server is carried on character string as a result according to the format parameter of consulting with described checking result;
Described identifying code server is encrypted according to the cryptographic algorithm of described negotiation and key described character string as a result and obtains ciphertext;
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and is verified the result and comprises:
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and obtains character string as a result;
Described Website server is isolated the checking result according to the format parameter of consulting from described character string as a result.
Alternatively, described Website server is handled the request message of described user browser according to described checking result and is comprised:
If the checking result is for passing through checking, then described Website server is accepted user's request, and carries out corresponding operation;
If the checking result verifies for not passing through, the then request of described Website server refusing user's, and return the identifying code page.
The third-party authentication system that the embodiment of the invention provides comprises:
User browser, identifying code server, and Website server;
Described user browser is used for sending a request message to Website server according to user's request, receive the page data that carries script that described Website server returns, and carry out described script and be verified parameter, carry out third-party authentication according to described certificate parameter to the identifying code server;
Described identifying code server is used for described user browser is carried out third-party authentication, and will verify that the result is sent to described Website server by described user browser;
Described Website server is used for receiving the request message of described user browser, return the page data that carries script to described user browser, receive described identifying code server by the checking result that described user browser sends, according to described checking result the request message of described user browser is handled.
Alternatively, described Website server and described identifying code server also are used for consulted encryption algorithm and key;
Described identifying code server specifically is used for the checking result that will draw and is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext, described ciphertext is sent to described user browser, makes described user browser that described ciphertext is sent to described Website server;
Described website service implement body is used for according to the cryptographic algorithm of described negotiation and key described ciphertext being decrypted and is verified the result.
Alternatively, described Website server and described identifying code server also are used for consulting format parameter;
Described identifying code server specifically is used for according to the format parameter of consulting described checking result being carried on character string as a result, described character string as a result is encrypted according to the cryptographic algorithm of described negotiation and key obtains ciphertext;
Described website service implement body is used for according to the cryptographic algorithm of described negotiation and key described ciphertext being decrypted and obtains character string as a result, isolates the checking result according to the format parameter of consulting from described character string as a result.
As can be seen from the above technical solutions, the embodiment of the invention has the following advantages:
In the embodiment of the invention, user browser is after Website server is verified parameter, carry out third-party authentication according to this certificate parameter to the identifying code server, and the checking result is sent to Website server by user browser, and in this programme, the transfer of data is mainly finished by user browser, reduced the direct communication between authentication server and the Website server, so can effectively reduce the burden of Website server, improve data transmission bauds, improve the user simultaneously and experience.
Description of drawings
Fig. 1 is third-party authentication process schematic diagram of the prior art;
Fig. 2 is third-party authentication method embodiment schematic diagram of the present invention;
Fig. 3 is third-party authentication method data flow schematic diagram of the present invention;
Fig. 4 is third-party authentication system schematic of the present invention.
Embodiment
The embodiment of the invention provides a kind of third-party authentication method and system, can effectively reduce the burden of Website server, improves data transmission bauds, improves the user simultaneously and experiences.
See also Fig. 2, embodiment of third-party authentication method of the present invention comprises:
201, user browser sends a request message to Website server according to user's request;
When the user need be in the website during enterprising line operate (for example register, post, visit, download etc.), user browser can send a request message according to user's the request Website server to correspondence.
202, user browser receives the page data that carries script that Website server returns, and the execution script is verified parameter;
Website server is after receiving the request message of user browser, and the page data of the page that user browser can be asked is sent to user browser, carries script in this page data.
User browser receives after the page data, therefrom extracts script, and this script resolved can be verified parameter.
203, user browser carries out third-party authentication according to certificate parameter to the identifying code server;
User browser obtains after the certificate parameter, then can know information such as the address of identifying code server and port, and carries out third-party authentication according to this certificate parameter to the identifying code server.
In the present embodiment, concrete third-party authentication process can for:
(1), user browser sends the checking request comprise certificate parameter to the identifying code server, this certificate parameter comprises website logo;
This website logo can be website ID, web site name, website domain name addresses, identifying code position etc. in the website of Website server, such as forum's registration, login, comment, identifying code when portal website's news information is commented on etc. position is not specifically done restriction herein.
Can send by the HTTP request when user browser sends request, also can send by other similar agreements, specifically not do restriction herein.
(2), the identifying code server receives after the checking request that user browser sends, and returns the identifying code assembly to user browser;
Checking assembly in the present embodiment can comprise for the displaying of carrying out identifying code at user browser, refreshes, parameter is preserved, send functions such as checking text, picture, video, flash, browser script, comprise the contents such as html code of website links.
(3), the identifying code assembly that returns of user browser Receipt Validation sign indicating number server, the user is resolved and showed to the identifying code assembly;
(4), user browser receives the identifying code that the user imports, and identifying code and session sequence number is sent to the identifying code server;
(5), the identifying code server obtains correct pass code according to session sequence number and this website logo, and the identifying code that uses correct pass code and user to import compares and draws the checking result.
With an embodiment user browser carries out process from third-party authentication to the identifying code server has been described above, be understandable that, in actual applications, third-party authentication process between user browser and the identifying code server can also adopt other mode to realize, does not specifically do restriction herein.
204, the identifying code server will verify that the result is sent to Website server by user browser;
The identifying code server is verified by contrast after the result, can this result be sent to Website server by user browser.
Need to prove, in order to improve safety of data transmission, can also be encrypted consulted encryption algorithm and key in advance between Website server and the identifying code server to the checking result, when the needs transmission is verified as a result, can adopt following mode to transmit:
(1), the identifying code server checking result that will draw is encrypted according to the cryptographic algorithm of consulting and key and obtains ciphertext;
The identifying code server has drawn after the checking result, can be encrypted this checking result according to the cryptographic algorithm that consults in advance and key and obtain ciphertext, concrete cryptographic algorithm can be symmetric encipherment algorithm, also can be rivest, shamir, adelman, does not do restriction herein.
(2), the identifying code server is sent to user browser with ciphertext;
When the identifying code server to the checking result be encrypted obtain ciphertext after, this ciphertext can be included in the browser script and send to user browser, perhaps also can send to user browser in other way.
(3), user browser is sent to Website server with ciphertext;
After user browser receives ciphertext, this ciphertext can be sent to Website server, for example when ciphertext is included in the browser script, after user browser is carried out this script, the form of ciphertext with text can be kept in the page info, when the user submitted page info to, ciphertext can be sent to Website server.
(4), Website server is decrypted this ciphertext according to the cryptographic algorithm of consulting and key and is verified the result.
Website server receives after the ciphertext that user browser sends, thereby can be verified the result according to the cryptographic algorithm of identifying code server negotiate and key ciphertext being decrypted in advance.
Need to prove that top cipher mode can effectively improve reliability and the fail safe of checking result in transmission course.
In addition, in order further to improve checking result's fail safe, the checking result can be lain in certain a string character string, concrete, Website server can also with identifying code server negotiate format parameter, this format parameter is used to indicate the checking position of result in character string.
When the needs transmission is verified as a result, can adopt following mode to transmit:
(1), the identifying code server will verify that according to the format parameter of consulting the result is carried on character string as a result;
The identifying code server has drawn after the checking result, can should verify that the result was carried on as a result in the character string according to the format parameter that consults in advance.
(2), the identifying code server is encrypted according to the cryptographic algorithm of consulting and key character string as a result and obtains ciphertext;
The identifying code server will verify that the result is carried on as a result after the character string, can according to the cryptographic algorithm that consults in advance and key to this as a result character string be encrypted and obtain ciphertext, concrete cryptographic algorithm can be symmetric encipherment algorithm, also can be rivest, shamir, adelman, not do restriction herein.
(3), the identifying code server is sent to user browser with ciphertext;
When the identifying code server character string as a result is encrypted obtain ciphertext after, this ciphertext can be included in the browser script and send to user browser, perhaps also can send to user browser in other way.
(4), user browser is sent to Website server with ciphertext;
After user browser receives ciphertext, this ciphertext can be sent to Website server, for example when ciphertext is included in the browser script, after user browser is carried out this script, the form of ciphertext with text can be kept in the page info, when the user submitted page info to, ciphertext can be sent to Website server.
(5), Website server is decrypted this ciphertext according to the cryptographic algorithm of consulting and key and obtains character string as a result;
Website server receives after the ciphertext that user browser sends, thereby can obtain character string as a result according to the cryptographic algorithm of identifying code server negotiate and key ciphertext being decrypted in advance.
(6), Website server according to the format parameter of consulting from isolating the checking result the character string as a result.
Website server decrypts as a result after the character string, can be according to extracting the checking result the character string with the format parameter of identifying code server negotiate as a result from this in advance.
By above-mentioned transmission means, can effectively improve reliability and the fail safe of checking result in transmission course.
205, Website server is handled the request message of user browser according to the checking result.
Website server gets access to after the checking result, can handle the request message of user browser according to the checking result, and is concrete:
If the checking result is for by checking, then Website server is accepted user's request, and carries out corresponding operation, for example allows that the user registers, posts, visits, download etc.;
If the checking result verifies for not passing through, the then request of Website server refusing user's, and return the identifying code page.
In the present embodiment, user browser is after Website server is verified parameter, carry out third-party authentication according to this certificate parameter to the identifying code server, and the checking result is sent to Website server by user browser, and in this programme, the transfer of data is mainly finished by user browser, reduced the direct communication between authentication server and the Website server, so can effectively reduce the burden of Website server, improve data transmission bauds, improve the user simultaneously and experience.
For ease of understanding, below in conjunction with an instantiation third-party authentication method of the present invention is described in detail, see also Fig. 3, third-party authentication method of the present invention comprises:
301, the identifying code server is consulted format parameter with Website server in advance, and for cryptographic algorithm and the key of verifying that the result is encrypted and deciphers;
In the present embodiment, format parameter can be regarded as checking result's form, and concrete cryptographic algorithm can be symmetrical enciphering and deciphering algorithm, perhaps is rivest, shamir, adelman.
Be that example describes with the symmetric encipherment algorithm in the present embodiment, encryption key and decruption key are key.
302, the user by user browser to the Website server requests for page;
In the present embodiment, comprise the identifying code script in this page of user browser request, this script is used for making user browser to identifying code server requests verification Code Element.
303, the Website server return data is to user browser, and user browser is carried out this script;
304, the HTTP of the subsidiary website logo parameter of browser transmission asks to the identifying code server;
User browser sends the HTTP request with the requests verification Code Element to the identifying code server.
305, the identifying code server returns the identifying code assembly to user browser;
The identifying code server receives after the request of user browser, return the identifying code assembly to user browser, this assembly comprises for the displaying of carrying out identifying code at browser end, refreshes, parameter is preserved, send functions such as checking text, picture, video, flash, browser script, comprise the information such as html code of website links.Browser-interpreted is also carried out this assembly and is given the user to show the identifying code interface.
306, the user is according to the prompting input validation sign indicating number of identifying code;
User browser receives after the identifying code that the user imports, and authorization information is sent to the identifying code server with the form of HTTP required parameter, comprises identifying code and the session sequence number of user's input in this authorization information.
Except carrying above-mentioned two parameters, also can attach a little other optional parameters such as the sign of website etc. in the authorization information in the present embodiment, specifically not do restriction herein.
307, after the identifying code server receives request, obtain this session correct pass code according to session sequence number and website logo searching database, and make judgement after comparing with the identifying code of user input;
In the present embodiment, after the identifying code server receives request, can obtain this session correct pass code according to the session sequence number that gets access in the step 305 and website logo searching database, and make judgement after comparing with the identifying code of user input.
If correctly be 1, mistake is 0, need to prove, correct or wrong expression way also adopts other mode, does not do restriction herein.
The result that will judge shows with the form of consulting in the step 301 then.Such as the result_string of character string as a result (this character string of 15 is not changeless pattern, only is an example) that judged result and current time is combined into 15 herein, such as " 120111216143128 ".First is judged result, and back 14 is time on date (form is yyyymmddhhmmss).
This result_string of character string as a result of 15 is encrypted with cryptographic algorithm and the key of as offered in the step 301, such as encrypting result_string with DES algorithm and key key, obtains ciphertext secret_string.The identifying code server is included in secret_string in one section browser script and is back to user browser.
308, user browser is sent to Website server with ciphertext;
User browser receives this script and carries out, and secret_string is kept in this page with the form of text, and the user has imported all information click on submission button afterwards, and secret_string is submitted to Website server together with other information;
309, Website server is resolved ciphertext and is verified the result, and carries out respective handling.
Website server is deciphered the secret_string that receives and is obtained result_string with the algorithm of consulting in the step 301 and decruption key, result_string is separated with the form of consulting in the step 301, be verified yard server to the judged result of the identifying code of this session subscriber input, if correctly checking pass through, if mistake then do not pass through.
In the present embodiment, user browser is after Website server is verified parameter, carry out third-party authentication according to this certificate parameter to the identifying code server, and the checking result is sent to Website server by user browser, and in this programme, the transfer of data is mainly finished by user browser, reduced the direct communication between authentication server and the Website server, so can effectively reduce the burden of Website server, improve data transmission bauds, improve the user simultaneously and experience.
Introduced third-party authentication method of the present invention above, below third-party authentication of the present invention system has been described, seen also Fig. 4, third-party authentication of the present invention system comprises:
Identifying code server 402 is used for user browser 401 is carried out third-party authentication, and will verify that the result is sent to Website server 403 by user browser 401;
The identifying code server 402 concrete checking results that are used for drawing are encrypted according to the cryptographic algorithm of consulting and key and obtain ciphertext, and this ciphertext is sent to user browser 401, make user browser 401 that this ciphertext is sent to Website server 403;
Identifying code server 402 concrete being used for will verify that according to the format parameter of consulting the result is carried on character string as a result, to this as a result character string be encrypted according to the cryptographic algorithm of negotiation and key and obtain ciphertext;
The content class of describing among reciprocal process between each device in the present embodiment third-party authentication system and the preceding method embodiment seemingly repeats no more herein.
In the present embodiment, user browser 401 is after Website server 403 is verified parameter, carry out third-party authentication according to this certificate parameter to identifying code server 402, and the checking result is sent to Website server 403 by user browser 401, in this programme, the transfer of data is mainly finished by user browser 401, reduced the direct communication between authentication server 402 and the Website server 403, so can effectively reduce the burden of Website server 403, improve data transmission bauds, improve the user simultaneously and experience.
The those skilled in the art can be well understood to, and is the convenience described and succinct, the system of foregoing description, and the concrete course of work of device and unit can not repeat them here with reference to the corresponding process among the preceding method embodiment.
In several embodiment that the application provides, should be understood that, disclosed system, apparatus and method can realize by other mode.For example, device embodiment described above only is schematic, for example, the division of described unit, only be that a kind of logic function is divided, during actual the realization other dividing mode can be arranged, for example a plurality of unit or assembly can in conjunction with or can be integrated into another system, or some features can ignore, or do not carry out.Another point, the shown or coupling each other discussed or directly to be coupled or to communicate to connect can be by some interfaces, the indirect coupling of device or unit or communicate to connect can be electrically, machinery or other form.
Described unit as separating component explanation can or can not be physically to separate also, and the parts that show as the unit can be or can not be physical locations also, namely can be positioned at a place, perhaps also can be distributed on a plurality of network element.Can select wherein some or all of unit to realize the purpose of present embodiment scheme according to the actual needs.
In addition, each functional unit in each embodiment of the present invention can be integrated in the processing unit, also can be that the independent physics in each unit exists, and also can be integrated in the unit two or more unit.Above-mentioned integrated unit both can adopt the form of hardware to realize, also can adopt the form of SFU software functional unit to realize.
If described integrated unit is realized with the form of SFU software functional unit and during as independently production marketing or use, can be stored in the computer read/write memory medium.Based on such understanding, part or all or part of of this technical scheme that technical scheme of the present invention contributes to prior art in essence in other words can embody with the form of software product, this computer software product is stored in the storage medium, comprise that some instructions are with so that a computer equipment (can be personal computer, server, the perhaps network equipment etc.) carry out all or part of step of the described method of each embodiment of the present invention.And aforesaid storage medium comprises: various media that can be program code stored such as USB flash disk, portable hard drive, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CD.
The above, above embodiment only in order to technical scheme of the present invention to be described, is not intended to limit; Although with reference to previous embodiment the present invention is had been described in detail, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment puts down in writing, and perhaps part technical characterictic wherein is equal to replacement; And these modifications or replacement do not make the essence of appropriate technical solution break away from the spirit and scope of various embodiments of the present invention technical scheme.
Claims (9)
1. a third-party authentication method is characterized in that, comprising:
User browser sends a request message to Website server according to user's request;
Described user browser receives the page data that carries script that described Website server returns, and carries out described script and be verified parameter;
Described user browser carries out third-party authentication according to described certificate parameter to the identifying code server;
Described identifying code server will verify that the result is sent to described Website server by described user browser;
Described Website server is handled the request message of described user browser according to described checking result.
2. method according to claim 1 is characterized in that, described user browser carries out third-party authentication according to described certificate parameter to the identifying code server and comprises:
Described user browser sends the checking request that comprises described certificate parameter to described identifying code server, and described certificate parameter comprises website logo;
Described user browser receives the identifying code assembly that described identifying code server returns, and the user is resolved and showed to described identifying code assembly;
Described user browser receives the identifying code of user's input, and described identifying code and session sequence number are sent to described identifying code server;
Described identifying code server obtains correct pass code according to described session sequence number and described website logo, and uses the identifying code of described correct pass code and described user input to compare to draw the checking result.
3. method according to claim 2 is characterized in that,
Described checking assembly comprises for the displaying of carrying out identifying code at described user browser, refreshes, parameter is preserved, send authentication function text, picture, video, flash, browser script, comprise the html code of website links.
4. according to each described method in the claim 1 to 3, it is characterized in that described method also comprises:
Described Website server and described identifying code server negotiate cryptographic algorithm and key;
Described identifying code server will verify that the result is sent to described Website server by described user browser and comprises:
The checking result that described identifying code server will draw is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext;
Described identifying code server is sent to described user browser with described ciphertext;
Described user browser is sent to described Website server with described ciphertext;
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and is verified the result.
5. method according to claim 4 is characterized in that, described method also comprises:
Described Website server and described identifying code server negotiate format parameter;
The checking result that described identifying code server will draw is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext and comprise:
Described identifying code server is carried on character string as a result according to the format parameter of consulting with described checking result;
Described identifying code server is encrypted according to the cryptographic algorithm of described negotiation and key described character string as a result and obtains ciphertext;
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and is verified the result and comprises:
Described Website server is decrypted described ciphertext according to the cryptographic algorithm of described negotiation and key and obtains character string as a result;
Described Website server is isolated the checking result according to the format parameter of consulting from described character string as a result.
6. according to each described method in the claim 1 to 3, it is characterized in that described Website server is handled the request message of described user browser according to described checking result and comprised:
If the checking result is for passing through checking, then described Website server is accepted user's request, and carries out corresponding operation;
If the checking result verifies for not passing through, the then request of described Website server refusing user's, and return the identifying code page.
7. a third-party authentication system is characterized in that, comprising:
User browser, identifying code server, and Website server;
Described user browser is used for sending a request message to Website server according to user's request, receive the page data that carries script that described Website server returns, and carry out described script and be verified parameter, carry out third-party authentication according to described certificate parameter to the identifying code server;
Described identifying code server is used for described user browser is carried out third-party authentication, and will verify that the result is sent to described Website server by described user browser;
Described Website server is used for receiving the request message of described user browser, return the page data that carries script to described user browser, receive described identifying code server by the checking result that described user browser sends, according to described checking result the request message of described user browser is handled.
8. system according to claim 7 is characterized in that, described Website server and described identifying code server also are used for consulted encryption algorithm and key;
Described identifying code server specifically is used for the checking result that will draw and is encrypted according to the cryptographic algorithm of described negotiation and key and obtains ciphertext, described ciphertext is sent to described user browser, makes described user browser that described ciphertext is sent to described Website server;
Described website service implement body is used for according to the cryptographic algorithm of described negotiation and key described ciphertext being decrypted and is verified the result.
9. system according to claim 8 is characterized in that, described Website server and described identifying code server also are used for consulting format parameter;
Described identifying code server specifically is used for according to the format parameter of consulting described checking result being carried on character string as a result, described character string as a result is encrypted according to the cryptographic algorithm of described negotiation and key obtains ciphertext;
Described website service implement body is used for according to the cryptographic algorithm of described negotiation and key described ciphertext being decrypted and obtains character string as a result, isolates the checking result according to the format parameter of consulting from described character string as a result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100086982A CN103209158A (en) | 2012-01-12 | 2012-01-12 | Third-party verification method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012100086982A CN103209158A (en) | 2012-01-12 | 2012-01-12 | Third-party verification method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103209158A true CN103209158A (en) | 2013-07-17 |
Family
ID=48756244
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012100086982A Pending CN103209158A (en) | 2012-01-12 | 2012-01-12 | Third-party verification method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103209158A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104468599A (en) * | 2014-12-18 | 2015-03-25 | 浪潮(北京)电子信息产业有限公司 | Method and system for achieving session sharing among multiple applications |
| CN104796889A (en) * | 2015-01-08 | 2015-07-22 | 北京思普崚技术有限公司 | Community network authentication method |
| CN106162062A (en) * | 2015-04-10 | 2016-11-23 | 深圳市视高电子技术有限公司 | Obtain the method and system of monitor video |
| CN106850225A (en) * | 2015-12-04 | 2017-06-13 | 中国电信股份有限公司 | Identifying code transfer approach and system |
| CN106899610A (en) * | 2017-03-22 | 2017-06-27 | 世纪恒通科技股份有限公司 | A kind of checking code verification method without storage |
| CN107094261A (en) * | 2017-03-17 | 2017-08-25 | 武汉斗鱼网络科技有限公司 | The authorization check method and device of video playback |
| CN107454041A (en) * | 2016-05-31 | 2017-12-08 | 阿里巴巴集团控股有限公司 | Prevent the method and device that server is attacked |
| CN108306937A (en) * | 2017-12-29 | 2018-07-20 | 五八有限公司 | Sending method, acquisition methods, server and the storage medium of short message verification code |
| CN111200579A (en) * | 2018-11-16 | 2020-05-26 | 北京奇虎科技有限公司 | User login method, client and system |
| CN111931232A (en) * | 2020-08-11 | 2020-11-13 | 福建天晴在线互动科技有限公司 | Method and system for verifying safety of background data interface |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060206932A1 (en) * | 2005-03-14 | 2006-09-14 | Microsoft Corporation | Trusted third party authentication for web services |
| CN1980128A (en) * | 2005-12-01 | 2007-06-13 | 王继华 | Method and system for identifying internet user |
| CN101047504A (en) * | 2006-03-29 | 2007-10-03 | 腾讯科技(深圳)有限公司 | Network log-in authorization method and authorization system |
| US20080244700A1 (en) * | 2006-05-24 | 2008-10-02 | Osborn Steven L | Methods and systems for graphical image authentication |
| CN101651719A (en) * | 2009-09-11 | 2010-02-17 | 广东宇天信通通信科技有限公司 | Communication system, equalization server and data verification method |
| CN101977194A (en) * | 2010-10-29 | 2011-02-16 | 赵俊平 | Third-party verification code system and third-party verification code provision method |
-
2012
- 2012-01-12 CN CN2012100086982A patent/CN103209158A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20060206932A1 (en) * | 2005-03-14 | 2006-09-14 | Microsoft Corporation | Trusted third party authentication for web services |
| CN1980128A (en) * | 2005-12-01 | 2007-06-13 | 王继华 | Method and system for identifying internet user |
| CN101047504A (en) * | 2006-03-29 | 2007-10-03 | 腾讯科技(深圳)有限公司 | Network log-in authorization method and authorization system |
| US20080244700A1 (en) * | 2006-05-24 | 2008-10-02 | Osborn Steven L | Methods and systems for graphical image authentication |
| CN101651719A (en) * | 2009-09-11 | 2010-02-17 | 广东宇天信通通信科技有限公司 | Communication system, equalization server and data verification method |
| CN101977194A (en) * | 2010-10-29 | 2011-02-16 | 赵俊平 | Third-party verification code system and third-party verification code provision method |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104468599A (en) * | 2014-12-18 | 2015-03-25 | 浪潮(北京)电子信息产业有限公司 | Method and system for achieving session sharing among multiple applications |
| CN104796889A (en) * | 2015-01-08 | 2015-07-22 | 北京思普崚技术有限公司 | Community network authentication method |
| CN104796889B (en) * | 2015-01-08 | 2018-03-13 | 北京思普崚技术有限公司 | A kind of method of community network checking |
| CN106162062A (en) * | 2015-04-10 | 2016-11-23 | 深圳市视高电子技术有限公司 | Obtain the method and system of monitor video |
| CN106162062B (en) * | 2015-04-10 | 2019-05-31 | 深圳市视高电子技术有限公司 | Obtain the method and system of monitor video |
| CN106850225A (en) * | 2015-12-04 | 2017-06-13 | 中国电信股份有限公司 | Identifying code transfer approach and system |
| CN106850225B (en) * | 2015-12-04 | 2019-10-01 | 中国电信股份有限公司 | Identifying code transfer approach and system |
| CN107454041B (en) * | 2016-05-31 | 2020-06-02 | 阿里巴巴集团控股有限公司 | Method and device for preventing server from being attacked |
| CN107454041A (en) * | 2016-05-31 | 2017-12-08 | 阿里巴巴集团控股有限公司 | Prevent the method and device that server is attacked |
| US10986101B2 (en) | 2016-05-31 | 2021-04-20 | Advanced New Technologies Co., Ltd. | Method and device for preventing server from being attacked |
| US10965689B2 (en) | 2016-05-31 | 2021-03-30 | Advanced New Technologies Co., Ltd. | Method and device for preventing server from being attacked |
| CN107094261A (en) * | 2017-03-17 | 2017-08-25 | 武汉斗鱼网络科技有限公司 | The authorization check method and device of video playback |
| CN106899610A (en) * | 2017-03-22 | 2017-06-27 | 世纪恒通科技股份有限公司 | A kind of checking code verification method without storage |
| CN108306937A (en) * | 2017-12-29 | 2018-07-20 | 五八有限公司 | Sending method, acquisition methods, server and the storage medium of short message verification code |
| CN108306937B (en) * | 2017-12-29 | 2022-02-25 | 五八有限公司 | Sending method and obtaining method of short message verification code, server and storage medium |
| CN111200579A (en) * | 2018-11-16 | 2020-05-26 | 北京奇虎科技有限公司 | User login method, client and system |
| CN111200579B (en) * | 2018-11-16 | 2023-10-31 | 北京奇虎科技有限公司 | User login method, client and system |
| CN111931232A (en) * | 2020-08-11 | 2020-11-13 | 福建天晴在线互动科技有限公司 | Method and system for verifying safety of background data interface |
| CN111931232B (en) * | 2020-08-11 | 2022-12-09 | 福建天晴在线互动科技有限公司 | Method and system for verifying safety of background data interface |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103209158A (en) | Third-party verification method and system | |
| CN103685282B (en) | A kind of identity identifying method based on single-sign-on | |
| CN106878245B (en) | Graphic code information providing and obtaining method, device and terminal | |
| CN102595213B (en) | Security certificate method and system of credible TV terminal | |
| CN105007577B (en) | A kind of virtual SIM card parameter management method, mobile terminal and server | |
| CN101051904B (en) | Method for landing by account number cipher for protecting network application sequence | |
| KR101381789B1 (en) | Method for web service user authentication | |
| CN105072125B (en) | A kind of http communication system and method | |
| CN108347419A (en) | Data transmission method and device | |
| CN101631305B (en) | Encryption method and system | |
| CN107800675A (en) | A kind of data transmission method, terminal and server | |
| CN104463040A (en) | Secure input method and system for password | |
| CN108809633B (en) | Identity authentication method, device and system | |
| CN102694782B (en) | Security information exchange device based on internet and method | |
| CN109618341A (en) | A kind of digital signature authentication method, system, device and storage medium | |
| CN101738516A (en) | Electronic electric energy meter and data secure transmission method thereof | |
| CN102970676B (en) | A kind of method handled initial data, Internet of things system and terminal | |
| CN106411926A (en) | Data encryption communication method and system | |
| CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
| CN108199847B (en) | Digital security processing method, computer device, and storage medium | |
| CN105491073B (en) | Data downloading method, device and system | |
| CN113868672B (en) | Module wireless firmware upgrading method, security chip and wireless firmware upgrading platform | |
| CN108509787A (en) | A kind of program authentication method | |
| CN107920060A (en) | Data access method and device based on account | |
| CN105657699A (en) | Safe data transmission method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| AD01 | Patent right deemed abandoned |
Effective date of abandoning: 20170822 |
|
| AD01 | Patent right deemed abandoned |