CN115001752B - Identity authentication method and device - Google Patents
Identity authentication method and device Download PDFInfo
- Publication number
- CN115001752B CN115001752B CN202210509725.8A CN202210509725A CN115001752B CN 115001752 B CN115001752 B CN 115001752B CN 202210509725 A CN202210509725 A CN 202210509725A CN 115001752 B CN115001752 B CN 115001752B
- Authority
- CN
- China
- Prior art keywords
- authentication
- identity authentication
- pairing
- identity
- component
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S40/00—Systems for electrical power generation, transmission, distribution or end-user application management characterised by the use of communication or information technologies, or communication or information technology specific aspects supporting them
- Y04S40/20—Information technology specific aspects, e.g. CAD, simulation, modelling, system security
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses an identity authentication method and device, wherein the method comprises the following steps: step S1, a data component acquires identity authentication information input by a user, step S2, a pairing component sends a pairing request message corresponding to the identity authentication information to an exchange, when the exchange agrees to the pairing request, the pairing component obtains a matching determination message, step S3, an authentication chip sends an identity authentication request corresponding to the matching determination message to an identity authentication secrecy machine, when the identity authentication secrecy machine agrees to the identity authentication request, the authentication chip obtains an identity confirmation code, and step S4, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data direct forwarding function is started. The method is beneficial to solving the technical problem that the existing identity authentication method influences the performance index of the power distribution network protection system by adopting a data encryption safety mode, and improves the safety and reliability of the power distribution network protection system.
Description
Technical Field
The invention relates to the technical field of identity authentication of a power distribution network protection system, in particular to an identity authentication method and device.
Background
At present, due to the fact that the number of cascaded switches in the power distribution network is large, the traditional overcurrent, distance and other protection modes are adopted, setting and matching of protection are very difficult, protection action selectivity is poor, and action time is long. The existing power distribution network protection system data transmission uses Ethernet transmission, and control cannot be realized more quickly and accurately. The domain type rapid protection system of the power distribution website is a power distribution network protection system which aims to solve the problems. Along with the industrial safety concept, the power distribution network system serving as an important infrastructure also has a certain safety mechanism in China. The utility model provides an identity authentication system of distribution website domain formula quick protection is the prerequisite of guaranteeing distribution website domain formula quick protection and not reducing technical index, accomplishes safe identity authentication.
The existing scheme is that a data encryption chip is integrated on an existing device, data of a CPU of the device are firstly sent to the data encryption chip, the encryption chip encrypts the data through a national encryption algorithm, the encrypted data is returned to the CPU, and the CPU sends out the encrypted data. The decryption mode is similar, after the CPU receives the data, the data needs to be sent to the encryption chip, and after the encryption chip decrypts, the data is returned to the CPU again. The data encryption ensures that the inside of the domain type rapid protection system of the power distribution website has certain security capability, however, the data is required to be sent to the encryption chip, and then returned to the CPU after being encrypted, and finally the data can be sent out. The set of flow increases the delay of data transmission, and the performance of the current encryption chip is considered. Each device needs 300-500 ms delay for transmitting data, and the corresponding delay is increased for receiving data. In the domain type rapid protection system of the power distribution website, the index of the rapid protection action is that faults are judged and tripping actions are executed within 60ms, and obviously, the performance index of the system is influenced by adopting a data encryption safety mode. Therefore, a system similar to a power distribution website domain type rapid protection system needs rapid data exchange, and a system which needs a certain security mechanism is not suitable for adopting a full data encryption chip.
Therefore, in order to improve the safety and reliability of the power distribution network protection system, the technical problem that the existing identity authentication method influences the performance index of the power distribution network protection system by adopting a data encryption safety mode is solved, and the construction of the identity authentication method is needed.
Disclosure of Invention
The invention provides an identity authentication method and an identity authentication device, which solve the technical problem that the existing identity authentication method at present affects the performance index of a power distribution network protection system by adopting a data encryption safety mode.
In a first aspect, the invention provides an identity authentication method which is applied to a power distribution network website domain type rapid protection system; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the method comprises the following steps:
step S1, the data component acquires identity authentication information input by a user;
step S2, the pairing component sends a pairing request message corresponding to the identity authentication information to a switch, and when the switch agrees to the pairing request, the pairing component obtains a matching determination message;
step S3, the authentication chip sends an identity authentication request corresponding to the matching determination message to an identity authentication secrecy machine, and when the identity authentication secrecy machine agrees with the identity authentication request, the authentication chip obtains an identity confirmation code;
and S4, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data through forwarding function is started.
Optionally, the step S2 includes:
step S21, the pairing component sends a pairing request message corresponding to the identity authentication information to the switch;
step S22, when the switch does not agree with the pairing request, the pairing component deletes all the data uploaded by the data component and re-executes step S1;
step S23, when the switch agrees to the pairing request, the switch sends the pairing determination message to the pairing component.
Optionally, after the step S2, the method further includes:
step S24, the pairing component sends the pairing request message to the switch according to a preset period, and when the pairing component does not receive the matching determination message for a plurality of times, the pairing component deletes all data uploaded by the data component,
optionally, the step S3 includes:
step S31, the authentication chip sends an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine;
step S32, when the identity authentication secrecy machine agrees to the authentication request, the authentication chip generates an identity confirmation code;
step S33, when the identity authentication secrecy machine does not agree with the authentication request, the data component executes a data blocking action, deletes any data entering the data component, and re-executes step S1.
Optionally, the step S32 includes:
step S321, when the identity authentication secrecy machine agrees with the authentication request, the identity authentication secrecy machine sends an identity confirmation message to the authentication chip;
step S322, the authentication chip generates an identity confirmation code corresponding to the identity confirmation message.
In a second aspect, the invention provides an identity authentication device which is applied to a power distribution network website domain type rapid protection system; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the device comprises:
the acquisition module is used for acquiring the identity authentication information input by the user through the data component;
the matching module is used for sending a matching request message corresponding to the identity authentication information to the switch by the matching component, and when the switch agrees to the matching request, the matching component obtains a matching determination message;
the authentication module is used for sending an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine by the authentication chip, and when the identity authentication secrecy machine agrees with the identity authentication request, the authentication chip obtains an identity confirmation code;
and the starting module is used for confirming that the user identity authentication is successful based on the identity confirmation code by the data component and starting a data direct forwarding function.
Optionally, the matching module includes:
the pairing sub-module is used for sending a pairing request message corresponding to the identity authentication information to the switch by the pairing component;
the deleting sub-module is used for deleting all data uploaded by the data component by the pairing component when the switch does not agree with the pairing request, and re-executing the obtaining module;
and the agreement sub-module is used for sending the matching determination message to the matching component by the switch when the switch agrees to the matching request.
Optionally, the apparatus further comprises:
and the continuous module is used for sending the pairing request message to the switch by the pairing assembly according to a preset period, deleting all data uploaded by the data assembly by the pairing assembly when the pairing assembly does not receive the matching determination message for a plurality of times, and re-executing the acquisition module.
Optionally, the authentication module includes:
the authentication sub-module is used for sending an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine by the authentication chip;
the verification sub-module is used for generating an identity verification code by the authentication chip when the identity authentication secrecy machine agrees to the authentication request;
and the stopper module is used for executing data blocking action by the data component when the identity authentication secrecy machine does not agree with the authentication request, deleting any data entering the data component and executing the acquisition module again.
Optionally, the acknowledgement submodule includes:
the confirmation unit is used for sending an identity confirmation message to the authentication chip by the identity authentication secrecy machine when the identity authentication secrecy machine agrees to the authentication request;
and the generating unit is used for generating an identity confirmation code corresponding to the identity confirmation message by the authentication chip.
From the above technical scheme, the invention has the following advantages: the invention provides an identity authentication method, which comprises the steps of S1, acquiring identity authentication information input by a user through a data component, S2, sending a pairing request message corresponding to the identity authentication information to an exchange by a pairing component, when the exchange agrees to the pairing request, obtaining a matching determination message by the pairing component, S3, sending an identity authentication request corresponding to the matching determination message to an identity authentication secrecy machine by an authentication chip, when the identity authentication secrecy machine agrees to the identity authentication request, obtaining an identity confirmation code by the authentication chip, and S4, confirming that the user identity authentication is successful based on the identity confirmation code by the data component, starting a data straight-through forwarding function, and solving the technical problem that the performance index of a distribution network protection system is influenced by the existing identity authentication method by adopting a data encryption safety mode by the current identity authentication method, thereby improving the safety and reliability of the distribution network protection system.
Drawings
In order to more clearly illustrate the embodiments of the invention or the technical solutions of the prior art, the drawings which are used in the description of the embodiments or the prior art will be briefly described, it being obvious that the drawings in the description below are only some embodiments of the invention, and that other drawings can be obtained from these drawings without inventive faculty for a person skilled in the art.
FIG. 1 is a flowchart illustrating a first embodiment of an authentication method according to the present invention;
FIG. 2 is a flowchart illustrating a second embodiment of an authentication method according to the present invention;
FIG. 3 is a block diagram of a network site domain type fast protection system for a power distribution network according to the present invention;
fig. 4 is a block diagram illustrating an embodiment of an authentication device according to the present invention.
Detailed Description
The embodiment of the invention provides an identity authentication method and an identity authentication device, which are used for solving the technical problem that the existing identity authentication method at present influences the performance index of a power distribution network protection system by adopting a data encryption safety mode.
In order to make the objects, features and advantages of the present invention more comprehensible, the technical solutions in the embodiments of the present invention are described in detail below with reference to the accompanying drawings, and it is apparent that the embodiments described below are only some embodiments of the present invention, but not all embodiments of the present invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
Referring to fig. 1, fig. 1 is a flowchart illustrating a first embodiment of an identity authentication method according to the present invention, where the method is applied to a website domain type rapid protection system of a power distribution network; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the method comprises the following steps:
step S1, the data component acquires identity authentication information input by a user;
step S2, the pairing component sends a pairing request message corresponding to the identity authentication information to a switch, and when the switch agrees to the pairing request, the pairing component obtains a matching determination message;
in the embodiment of the invention, the pairing component sends a pairing request message corresponding to the identity authentication information to the switch, when the switch does not agree on a pairing request, the pairing component deletes all data uploaded by the data component and re-executes the step S1, and when the switch agrees on the pairing request, the switch sends the matching determination message to the pairing component.
Starting from the first successful acquisition of the matching determination message, the pairing component periodically sends a pairing request message to the switch, and when the pairing component continuously receives no matching determination message for a plurality of times, the pairing component deletes all data uploaded by the data component.
Step S3, the authentication chip sends an identity authentication request corresponding to the matching determination message to an identity authentication secrecy machine, and when the identity authentication secrecy machine agrees with the identity authentication request, the authentication chip obtains an identity confirmation code;
in the embodiment of the invention, the authentication chip sends an identity authentication request corresponding to the matching determination message to the identity authentication security machine, when the identity authentication security machine agrees with the authentication request, the authentication chip generates an identity confirmation code, when the identity authentication security machine does not agree with the authentication request, the data component executes a data blocking action, deletes any data entering the data component, and re-executes step S1.
Step S4, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data direct forwarding function is started;
in the embodiment of the invention, the data component confirms that the user identity authentication is successful through the identity confirmation code, executes the data through forwarding action and starts the data through forwarding function.
According to the identity authentication method provided by the embodiment of the invention, through the step S1, the data component acquires the identity authentication information input by a user, the step S2, the pairing component sends a pairing request message corresponding to the identity authentication information to the switch, when the switch agrees to the pairing request, the pairing component obtains a matching determination message, the step S3, the authentication chip sends an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine, when the identity authentication secrecy machine agrees to the identity authentication request, the authentication chip obtains an identity confirmation code, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data straight-through forwarding function is started, so that the technical problem that the existing identity authentication method influences the performance index of a power distribution network protection system by adopting a data encryption safety mode is solved, and the safety reliability of the power distribution network protection system is improved.
Referring to fig. 2, fig. 2 is a flowchart illustrating an identity authentication method according to the present invention, where the method is applied to a network site domain type rapid protection system of a power distribution network; referring to fig. 3, fig. 3 is a structural block diagram of a domain type rapid protection system for a power distribution network, where the domain type rapid protection system for a power distribution network is applied to an identity authentication terminal, 301 is the domain type rapid protection system for a power distribution network (identity authentication terminal), 302 is a data component, 303 is a pairing component, 304 is an authentication chip, 305 is an uplink interface, 306 is a local access port, 307 is a switch, and 308 is a domain type rapid protection system protection terminal; the switch 307, the uplink interface 305, the pairing component 303, the data component 302, the local access port 306 are sequentially connected with the station domain type rapid protection system protection terminal 308, and the data component 302 is connected with the pairing component 303;
the method comprises the following steps:
step S201, the data component 302 acquires identity authentication information input by a user;
in the embodiment of the invention, the identity authentication information input by the user is acquired through the data component of the power distribution network website domain type rapid protection system.
Step S202, the pairing component 303 sends a pairing request message corresponding to the identity authentication information to the switch 307;
step S203, when the switch 307 does not agree with the pairing request, the pairing component 303 deletes all the data uploaded by the data component 302, and re-executes step S201;
in the embodiment of the present invention, when the pairing module 303 does not obtain the switch 307 matching determination message, all data of the pairing module 303 issued from the upper link port 305 or uploaded by the data module 302 is discarded, and step S201 is re-executed.
Step S204, when the switch 307 agrees to the pairing request, the switch 307 sends a pairing match determination message to the pairing component 303;
in an alternative embodiment, when the switch 307 agrees to the pairing request, after sending a pairing match determination message to the pairing component 303, the method further includes:
the pairing module 303 sends a pairing request message to the switch 307 according to a preset period, and when the pairing module 303 does not receive the matching determination message for multiple times, the pairing module deletes all the data uploaded by the data module, and re-executes step S201.
In the embodiment of the present invention, after the pairing module 303 obtains the matching determination message sent by the switch 307, the data forwarding function is started, and when the matching determination message is successfully obtained for the first time, the pairing module 303 sends a pairing request message to the switch 307 in a period of 5 seconds, if the matching determination message is not received for 3 consecutive times, the pairing module 303 discards all data of the pairing module 303 sent from the upper connection port 305 or uploaded by the data module 302, and then the step S201 is re-executed.
Step S205, the authentication chip 304 sends an authentication request corresponding to the matching determination message to the authentication secrecy machine;
step S206, when the identity authentication secrecy machine agrees to the authentication request, the authentication chip 304 generates an identity confirmation code;
in an alternative embodiment, when the authentication secrecy machine agrees to the authentication request, the authentication chip 304 generates an identity confirmation code, including:
step S2061, when the identity authentication secrecy machine agrees to the authentication request, the identity authentication secrecy machine sends an identity confirmation message to the authentication chip 304;
in step S2062, the authentication chip 304 generates an identity confirmation code corresponding to the identity confirmation message.
In the embodiment of the present invention, when the identity authentication security machine agrees to the authentication request, an identity confirmation message is sent to the authentication chip 304, and the authentication chip 304 generates an identity confirmation code corresponding to the identity confirmation message.
Step S207, when the identity authentication secrecy machine does not agree with the authentication request, the data component 302 executes a data blocking action, deletes any data entering the data component, and re-executes step S201;
in an embodiment of the present invention, when the data component 302 does not obtain the identity confirmation code of the authentication chip 304, a data blocking action is performed and any data entering the data component 302 is discarded.
Step S208, the data component 302 confirms that the user authentication is successful based on the identity confirmation code, and starts a data through forwarding function;
in the embodiment of the present invention, after the data component 302 obtains the identity confirmation code of the authentication chip 304, a data direct forwarding action is performed, the data issued by the pairing component 303 is directly forwarded to the local access port 306, and the data uploaded by the local access port 306 is directly forwarded to the pairing component 303.
In a specific implementation, when the identity authentication terminal 301 (the power distribution network website domain type rapid protection system) is powered down and restarted, the data component 302 clears the identity confirmation code, and the identity authentication process is carried out again from the initial state.
According to the identity authentication method provided by the embodiment of the invention, through the step S1, the data component acquires the identity authentication information input by a user, the step S2, the pairing component sends a pairing request message corresponding to the identity authentication information to the switch, when the switch agrees to the pairing request, the pairing component obtains a matching determination message, the step S3, the authentication chip sends an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine, when the identity authentication secrecy machine agrees to the identity authentication request, the authentication chip obtains an identity confirmation code, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data straight-through forwarding function is started, so that the technical problem that the existing identity authentication method influences the performance index of a power distribution network protection system by adopting a data encryption safety mode is solved, and the safety reliability of the power distribution network protection system is improved.
Referring to fig. 4, fig. 4 is a block diagram illustrating an embodiment of an identity authentication device according to the present invention, where the device is applied to a website domain type rapid protection system of a power distribution network; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the device comprises:
an acquisition module 401, configured to acquire identity authentication information input by a user by using the data component;
the matching module 402 is configured to send, by the pairing module, a pairing request packet corresponding to the identity authentication information to a switch, where when the switch agrees to the pairing request, the pairing module obtains a matching determination packet;
the authentication module 403 is configured to send an identity authentication request corresponding to the matching determination message to an identity authentication security machine by using the authentication chip, where the authentication chip obtains an identity confirmation code when the identity authentication security machine agrees to the identity authentication request;
and the opening module 404 is configured to confirm that the user authentication is successful based on the identity confirmation code by the data component, and open a data through forwarding function.
In an alternative embodiment, the matching module 402 includes:
the pairing sub-module is used for sending a pairing request message corresponding to the identity authentication information to the switch by the pairing component;
the deleting sub-module is used for deleting all data uploaded by the data component by the pairing component when the switch does not agree with the pairing request, and re-executing the obtaining module;
and the agreement sub-module is used for sending the matching determination message to the matching component by the switch when the switch agrees to the matching request.
In an alternative embodiment, the apparatus further comprises:
and the continuous module is used for sending the pairing request message to the switch by the pairing assembly according to a preset period, deleting all data uploaded by the data assembly by the pairing assembly when the pairing assembly does not receive the matching determination message for a plurality of times, and re-executing the acquisition module.
In an alternative embodiment, the authentication module 403 includes:
the authentication sub-module is used for sending an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine by the authentication chip;
the verification sub-module is used for generating an identity verification code by the authentication chip when the identity authentication secrecy machine agrees to the authentication request;
and the stopper module is used for executing data blocking action by the data component when the identity authentication secrecy machine does not agree with the authentication request, deleting any data entering the data component and executing the acquisition module again.
In an alternative embodiment, the acknowledgment submodule includes:
the confirmation unit is used for sending an identity confirmation message to the authentication chip by the identity authentication secrecy machine when the identity authentication secrecy machine agrees to the authentication request;
and the generating unit is used for generating an identity confirmation code corresponding to the identity confirmation message by the authentication chip.
It will be clear to those skilled in the art that, for convenience and brevity of description, specific working procedures of the above-described systems, apparatuses and units may refer to corresponding procedures in the foregoing method embodiments, which are not repeated herein.
In the embodiments provided in the present application, it should be understood that the methods and apparatuses disclosed in the present application may be implemented in other manners. For example, the apparatus embodiments described above are merely illustrative, e.g., the division of the units is merely a logical function division, and there may be additional divisions when actually implemented, e.g., multiple units or components may be combined or integrated into another system, or some features may be omitted or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be an indirect coupling or communication connection via some interfaces, devices or units, which may be in electrical, mechanical or other form.
The units described as separate units may or may not be physically separate, and units shown as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied essentially or in part or all of the technical solution or in part in the form of a software product stored in a readable storage medium, including instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned readable storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a magnetic disk, or an optical disk, or other various media capable of storing program codes.
The above embodiments are only for illustrating the technical solution of the present invention, and not for limiting the same; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (10)
1. The identity authentication method is characterized by being applied to a power distribution network website domain type rapid protection system; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the method comprises the following steps:
step S1, the data component acquires identity authentication information input by a user;
step S2, the pairing component sends a pairing request message corresponding to the identity authentication information to a switch, and when the switch agrees to the pairing request, the pairing component obtains a matching determination message;
step S3, the authentication chip sends an identity authentication request corresponding to the matching determination message to an identity authentication secrecy machine, and when the identity authentication secrecy machine agrees with the identity authentication request, the authentication chip obtains an identity confirmation code;
and S4, the data component confirms that the user identity authentication is successful based on the identity confirmation code, and a data through forwarding function is started.
2. The identity authentication method according to claim 1, wherein the step S2 includes:
step S21, the pairing component sends a pairing request message corresponding to the identity authentication information to the switch;
step S22, when the switch does not agree with the pairing request, the pairing component deletes all the data uploaded by the data component and re-executes step S1;
step S23, when the switch agrees to the pairing request, the switch sends the pairing determination message to the pairing component.
3. The identity authentication method according to claim 1, further comprising, after the step S2:
step S24, the pairing component sends the pairing request message to the switch according to a preset period, and when the pairing component does not receive the matching determination message for a plurality of times, the pairing component deletes all data uploaded by the data component.
4. A method of identity authentication according to any one of claims 1-3, wherein step S3 comprises:
step S31, the authentication chip sends an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine;
step S32, when the identity authentication secrecy machine agrees to the authentication request, the authentication chip generates an identity confirmation code;
step S33, when the identity authentication secrecy machine does not agree with the authentication request, the data component executes a data blocking action, deletes any data entering the data component, and re-executes step S1.
5. The identity authentication method according to claim 4, wherein the step S32 includes:
step S321, when the identity authentication secrecy machine agrees with the authentication request, the identity authentication secrecy machine sends an identity confirmation message to the authentication chip;
step S322, the authentication chip generates an identity confirmation code corresponding to the identity confirmation message.
6. The identity authentication device is characterized by being applied to a power distribution network website domain type rapid protection system; the system comprises a data component, a pairing component and an authentication chip, wherein the pairing component and the authentication chip are respectively connected with the data component; the device comprises:
the acquisition module is used for acquiring the identity authentication information input by the user through the data component;
the matching module is used for sending a matching request message corresponding to the identity authentication information to the switch by the matching component, and when the switch agrees to the matching request, the matching component obtains a matching determination message;
the authentication module is used for sending an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine by the authentication chip, and when the identity authentication secrecy machine agrees with the identity authentication request, the authentication chip obtains an identity confirmation code;
and the starting module is used for confirming that the user identity authentication is successful based on the identity confirmation code by the data component and starting a data direct forwarding function.
7. The identity authentication device of claim 6, wherein the matching module comprises:
the pairing sub-module is used for sending a pairing request message corresponding to the identity authentication information to the switch by the pairing component;
the deleting sub-module is used for deleting all data uploaded by the data component by the pairing component when the switch does not agree with the pairing request, and re-executing the obtaining module;
and the agreement sub-module is used for sending the matching determination message to the matching component by the switch when the switch agrees to the matching request.
8. The identity authentication device of claim 6, wherein the device further comprises:
and the continuous module is used for sending the pairing request message to the switch by the pairing assembly according to a preset period, deleting all data uploaded by the data assembly by the pairing assembly when the pairing assembly does not receive the matching determination message for a plurality of times, and re-executing the acquisition module.
9. An identity authentication device according to any one of claims 6 to 8, wherein the authentication module comprises:
the authentication sub-module is used for sending an identity authentication request corresponding to the matching determination message to the identity authentication secrecy machine by the authentication chip;
the verification sub-module is used for generating an identity verification code by the authentication chip when the identity authentication secrecy machine agrees to the authentication request;
and the stopper module is used for executing data blocking action by the data component when the identity authentication secrecy machine does not agree with the authentication request, deleting any data entering the data component and executing the acquisition module again.
10. The identity authentication device of claim 9, wherein the validation submodule comprises:
the confirmation unit is used for sending an identity confirmation message to the authentication chip by the identity authentication secrecy machine when the identity authentication secrecy machine agrees to the authentication request;
and the generating unit is used for generating an identity confirmation code corresponding to the identity confirmation message by the authentication chip.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210509725.8A CN115001752B (en) | 2022-05-11 | 2022-05-11 | Identity authentication method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210509725.8A CN115001752B (en) | 2022-05-11 | 2022-05-11 | Identity authentication method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115001752A CN115001752A (en) | 2022-09-02 |
| CN115001752B true CN115001752B (en) | 2023-06-27 |
Family
ID=83026831
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210509725.8A Active CN115001752B (en) | 2022-05-11 | 2022-05-11 | Identity authentication method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115001752B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101924636A (en) * | 2010-08-16 | 2010-12-22 | 北京星网锐捷网络技术有限公司 | Relevant authentication information issuing method, device and network equipment |
| CN105790951A (en) * | 2016-02-26 | 2016-07-20 | 浙江维尔科技股份有限公司 | Identity authentication device and intelligent terminal |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11665161B2 (en) * | 2019-06-18 | 2023-05-30 | Cisco Technology, Inc. | Identity services for passwordless authentication |
-
2022
- 2022-05-11 CN CN202210509725.8A patent/CN115001752B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101924636A (en) * | 2010-08-16 | 2010-12-22 | 北京星网锐捷网络技术有限公司 | Relevant authentication information issuing method, device and network equipment |
| CN105790951A (en) * | 2016-02-26 | 2016-07-20 | 浙江维尔科技股份有限公司 | Identity authentication device and intelligent terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN115001752A (en) | 2022-09-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106161032B (en) | A kind of identity authentication method and device | |
| EP2590356B1 (en) | Method, device and system for authenticating gateway, node and server | |
| CN102111265B (en) | Method for encrypting secure chip of power system acquisition terminal | |
| CN102594555B (en) | Security protection method for data, entity on network side and communication terminal | |
| CN109729000B (en) | Instant messaging method and device | |
| CN113569267B (en) | Privacy safety data set intersection method, device, equipment and storage medium | |
| CN110213247B (en) | Method and system for improving safety of pushed information | |
| CN112672342B (en) | Data transmission method, device, equipment, system and storage medium | |
| CN114531254A (en) | Authentication information acquisition method and device, related equipment and storage medium | |
| KR101055843B1 (en) | Method for encryption and decryption of transaction in power network and system thereof | |
| CN111464306A (en) | Authentication processing method, authentication processing device, storage medium, and electronic device | |
| CN115001752B (en) | Identity authentication method and device | |
| CN111835691B (en) | Authentication information processing method, terminal and network equipment | |
| CN104639330A (en) | GOOSE (Generic Object Oriented Substation Event) message integrity authentication method | |
| CN110087338B (en) | Method and equipment for authenticating narrowband Internet of things | |
| TWI728212B (en) | Authentication method based on ciphertext | |
| CN112995140B (en) | Safety management system and method | |
| CN111836260A (en) | Authentication information processing method, terminal and network equipment | |
| CN113449286B (en) | Method, system and equipment for safety check of S-NSSAI (S-NSSAI) sent by UE (user equipment) | |
| WO2022078058A1 (en) | Decryption method, server and storage medium | |
| CN114095277A (en) | Power distribution network secure communication method, secure access device and readable storage medium | |
| CN113765900A (en) | Protocol interaction information output transmission method, adapter device and storage medium | |
| CN112995210A (en) | Data transmission method and device and electronic equipment | |
| CN105681279A (en) | Application data transmission method and mobile terminal | |
| CN111093169A (en) | Communication establishing method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |