CN201742438U - Bidirectional authentication type dynamic password token device and dynamic password authentication system - Google Patents
Bidirectional authentication type dynamic password token device and dynamic password authentication system Download PDFInfo
- Publication number
- CN201742438U CN201742438U CN2010202245250U CN201020224525U CN201742438U CN 201742438 U CN201742438 U CN 201742438U CN 2010202245250 U CN2010202245250 U CN 2010202245250U CN 201020224525 U CN201020224525 U CN 201020224525U CN 201742438 U CN201742438 U CN 201742438U
- Authority
- CN
- China
- Prior art keywords
- dynamic password
- module
- token device
- authentication
- dynamic
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Power Sources (AREA)
Abstract
The utility model discloses a bidirectional authentication type dynamic password token device and a dynamic password authentication system. The token device is connected with at least one server terminal for conducting dynamic password authentication. The token device comprises a display module for displaying dynamic passwords, a crystal oscillator for providing a timing signal source, an input module for inputting data, a dynamic password generating module, a power supply module and a challenge password verification module for verifying challenge passwords sent by the server terminal. The display module, the input module and the power supply module are connected with the dynamic password generating module. The challenge password verification module is connected with the dynamic password generating module. The authentication system comprises at least one dynamic password token device and at least one server terminal. The dynamic password token device is the bidirectional authentication type dynamic password token device. The utility model can better avoid phishing sites and man-in-the-middle attack.
Description
Technical field
The utility model relates to a kind of dynamic password token device, relates in particular to a kind of two-way authentication formula dynamic password token device and dynamic password authentication system.
Background technology
Along with Development of E-business, client's Account Security has become a major issue, the identity validation mode that single dependence static password is concluded the business, existing serious quilt to break gets, problems such as conjecture cracks, adopt dynamic password token mode to address the above problem, but present dynamic password token, on certification mode, there is certain defective, most password products adopt the unilateral authentication pattern, promptly when giving, only award the computing that random digit is carried out dynamic password, at fail safe and protection phishing attack with the client challenges sign indicating number by the traditional challenge response pattern of dynamic password token, be short of to some extent in the performance during man-in-the-middle attack.
The utility model content
Based on the problems referred to above, the utility model provides a kind of two-way authentication formula dynamic password token device and the dynamic password authentication system that can verify the challenge code that server end produces.
The technical solution adopted in the utility model is as follows:
A kind of two-way authentication formula dynamic password token device, carry out dynamic password authentication with at least one server end, comprise: the display module that is used to show dynamic sign indicating number, be used to provide the crystal oscillator in timing signal source, be used to import the input module of data, the dynamic password generation module, power module, be used to verify the challenge code authentication module of the challenge code that described server end sends, the described challenge code authentication module that is used to verify the challenge code that described server end sends, display module, input module, power module links to each other with described dynamic password generation module, and described challenge code authentication module links to each other with described dynamic password generation module.
A kind of dynamic password authentication system comprises at least one dynamic password token device and at least one server end, and described dynamic password token device is above-described two-way authentication formula dynamic password token device.
The beneficial effects of the utility model
The utility model has added the authentication of dynamic password token device to server end.The dynamic password cipher token device that the user hands can verify that this bidirectional authentication mechanism can better protect fishing website and man-in-the-middle attack to the challenge code that server end provides.
Description of drawings
Fig. 1 is the utility model composition frame chart.
Embodiment
Referring to accompanying drawing 1, a kind of two-way authentication formula dynamic password token device, carry out dynamic password authentication with at least one server end, comprise: the display module that is used to show dynamic sign indicating number, be used to provide the crystal oscillator in timing signal source, be used to import the input module of data, the dynamic password generation module, power module, be used to verify the challenge code authentication module of the challenge code that described server end sends, the described challenge code authentication module that is used to verify the challenge code that described server end sends, display module, input module, power module links to each other with described dynamic password generation module, and described challenge code authentication module links to each other with described dynamic password generation module.
During concrete the application, the dynamic password token device that the user hands can be verified the challenge code that server end provides, and does not just show dynamic password if not legal challenge code, and this bidirectional authentication mechanism can better protect fishing website and man-in-the-middle attack.
Claims (2)
1. two-way authentication formula dynamic password token device, carry out dynamic password authentication with at least one server end, comprise: the display module that is used to show dynamic sign indicating number, be used to provide the crystal oscillator in timing signal source, be used to import the input module of data, the dynamic password generation module, power module, described display module, input module, power module links to each other with described dynamic password generation module, it is characterized in that also comprising: be used to verify the challenge code authentication module of the challenge code that described server end sends, described challenge code authentication module links to each other with described dynamic password generation module.
2. a dynamic password authentication system comprises at least one dynamic password token device and at least one server end, it is characterized in that: described dynamic password token device is the described two-way authentication formula of claim 1 a dynamic password token device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010202245250U CN201742438U (en) | 2010-06-12 | 2010-06-12 | Bidirectional authentication type dynamic password token device and dynamic password authentication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010202245250U CN201742438U (en) | 2010-06-12 | 2010-06-12 | Bidirectional authentication type dynamic password token device and dynamic password authentication system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN201742438U true CN201742438U (en) | 2011-02-09 |
Family
ID=43557718
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010202245250U Expired - Fee Related CN201742438U (en) | 2010-06-12 | 2010-06-12 | Bidirectional authentication type dynamic password token device and dynamic password authentication system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN201742438U (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113806798A (en) * | 2021-08-13 | 2021-12-17 | 苏州浪潮智能科技有限公司 | User side verification method, system, equipment and medium |
-
2010
- 2010-06-12 CN CN2010202245250U patent/CN201742438U/en not_active Expired - Fee Related
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113806798A (en) * | 2021-08-13 | 2021-12-17 | 苏州浪潮智能科技有限公司 | User side verification method, system, equipment and medium |
| CN113806798B (en) * | 2021-08-13 | 2023-07-14 | 苏州浪潮智能科技有限公司 | User side verification method, system, equipment and medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9485102B2 (en) | Techniques for user-validated close-range mutual authentication | |
| CN101127603B (en) | A method for single point login of portal website and IMS client | |
| US9294479B1 (en) | Client-side authentication | |
| CN106209886B (en) | Web interface data encryption is endorsed method, apparatus and server | |
| CN102355459B (en) | TPM (Trusted Platform Module)-based trusted Web page realization method | |
| CN104967597A (en) | Third-party application message authentication method and system based on secure channel | |
| JP2009500913A5 (en) | ||
| CN102281137A (en) | Dynamic password authentication method of mutual-authentication challenge response mechanism | |
| CN103684797B (en) | User and the association authentication method and system of subscriber terminal equipment | |
| CN105162773A (en) | Mobile terminal based shortcut login method for Web system | |
| CN109362074A (en) | The method of h5 and server-side safety communication in a kind of mixed mode APP | |
| CN102684880A (en) | Method and system for authenticating USB (universal serial bus) challenge-response token | |
| CN105978994A (en) | Web system oriented logging-in method | |
| SG175860A1 (en) | Methods of robust multi-factor authentication and authorization and systems thereof | |
| CN201742438U (en) | Bidirectional authentication type dynamic password token device and dynamic password authentication system | |
| WO2007106566A3 (en) | A method and apparatus to provide authentication using an authentication card | |
| CN102412969B (en) | Method for carrying out authentication by remotely using certificate and secret key, apparatus and system thereof | |
| CN102098160A (en) | Dynamic password and digital certificate based double-factor authentication security token device | |
| CN103186745A (en) | Graphical dynamic password token | |
| CN204028917U (en) | A kind of Bluetooth encryption device and application for network payment | |
| CN104144054B (en) | Login system based on server, login server and verification method of login server | |
| CN202196552U (en) | Device and system for electronic display | |
| CN102082788A (en) | Equipment and system for preventing phishing | |
| CN102025504A (en) | Security authentication method and security authentication device | |
| CN103235910B (en) | IOS operating system realizes, based on smart card, the method that network account protection controls |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110209 Termination date: 20150612 |
|
| EXPY | Termination of patent right or utility model |