INFORMATION PROCESSING METHOD AND SYSTEM

US 20160057125A1
Filed: 04/01/2014
Published: 02/25/2016
Est. Priority Date: 04/03/2013
Status: Active Grant

First Claim

Patent Images

1. An information processing method, comprising:

detecting by a first terminal an operation request, and sending by the first terminal operation request information to an electronic signature token;

receiving by the electronic signature token the operation request information output from the first terminal, storing by the electronic signature token the operation request information, generating by the electronic signature token a joint password according to a password generation strategy pre-stored locally, generating by the electronic signature token a signature message according to the operation request information and the joint password, adjusting by the electronic signature token a content of the joint password according to a pre-stored joint password adjustment strategy to obtain an adjusted joint password, using by the electronic signature token the adjusted joint password as a first processing password, and sending by the electronic signature token the first processing password and the signature message to the first terminal;

receiving by the first terminal the first processing password and the signature message, notifying a first verification device by the first terminal to verify the signature message according to the first processing password and the operation request information;

notifying a background system server by the first verification device to preprocess the operation request information if the signature message passes verification;

preprocessing by the background system server the operation request information according to a preset preprocessing strategy to obtain preprocessed information;

outputting by the electronic signature token prompt information about the joint password;

obtaining by a second terminal the joint password according to the prompt information, and using by the second terminal the joint password as a password to be verified;

notifying a second verification device by the second terminal to verify the password to be verified;

triggering the background system server by the second verification device to perform a response process of the operation request information according to the preprocessed information if the password to be verified passes verification.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed are an information processing method and system. The first terminal sends operation request information to an electronic signature token. The electronic signature token generates a joint password and a signature message, adjusts the joint password to obtain a first processing password, and sends the signature message and the first processing password to the first terminal. The first terminal notifies a first verification device to verify the signature message, and if the verification is successful, the first verification device notifies a background system server to preprocess the operation request information for obtaining preprocessed information. The electronic signature token outputs prompt information. A second terminal obtains the joint password according to the prompt information and notifies a second verification device to verify the joint password, and if the verification is successful, the second verification device triggers the background system server to perform a response process of the operation request information.

11 Citations

View as Search Results

20 Claims

1. An information processing method, comprising:
- detecting by a first terminal an operation request, and sending by the first terminal operation request information to an electronic signature token;
  
  receiving by the electronic signature token the operation request information output from the first terminal, storing by the electronic signature token the operation request information, generating by the electronic signature token a joint password according to a password generation strategy pre-stored locally, generating by the electronic signature token a signature message according to the operation request information and the joint password, adjusting by the electronic signature token a content of the joint password according to a pre-stored joint password adjustment strategy to obtain an adjusted joint password, using by the electronic signature token the adjusted joint password as a first processing password, and sending by the electronic signature token the first processing password and the signature message to the first terminal;
  
  receiving by the first terminal the first processing password and the signature message, notifying a first verification device by the first terminal to verify the signature message according to the first processing password and the operation request information;
  
  notifying a background system server by the first verification device to preprocess the operation request information if the signature message passes verification;
  
  preprocessing by the background system server the operation request information according to a preset preprocessing strategy to obtain preprocessed information;
  
  outputting by the electronic signature token prompt information about the joint password;
  
  obtaining by a second terminal the joint password according to the prompt information, and using by the second terminal the joint password as a password to be verified;
  
  notifying a second verification device by the second terminal to verify the password to be verified;
  
  triggering the background system server by the second verification device to perform a response process of the operation request information according to the preprocessed information if the password to be verified passes verification.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 19, 20)
- - 2. The method according to claim 1, wherein generating by the electronic signature token a signature message according to the operation request information and the joint password comprises:
    - obtaining by the electronic signature token a content adjustment strategy of the operation request information, and processing by the electronic signature token a content of the operation request information according to the content adjustment strategy of the operation request information to obtain adjusted operation request information; and
      
      /or obtaining by the electronic signature token a content adjustment strategy of the joint password, adjusting by the electronic signature token the content of the joint password according to the content adjustment strategy of the joint password to obtain an adjusted joint password, and using the adjusted joint password as a second processing password;
      
      obtaining the signature message by signing any one of following combinations;
      
      the adjusted operation request information and the joint password;
      
      the operation request information and the second processing password;
      
      the adjusted operation request information and the second processing password.
  - 3. The method according to claim 2, further comprising:
    - notifying the first terminal the content adjustment strategy used for adjusting the operation request information;
      
      ornotifying the first terminal the content adjustment strategy used for the second processing password;
      
      ornotifying the first terminal the content adjustment strategy used for adjusting the operation request information and the content adjustment strategy used for the second processing password.
  - 4. The method according to claim 2, wherein notifying a first verification device by the first terminal to verify the signature message according to the first processing password and the operation request information further comprises:
    - notifying the first verification device by the first terminal the content adjustment strategy used for adjusting the operation request information;
      
      ornotifying the first verification device by the first terminal the content adjustment strategy used for the second processing password;
      
      ornotifying the first verification device by the first terminal the content adjustment strategy used for adjusting the operation request information and the content adjustment strategy used for the second processing password.
  - 5. The method according to claim 2, wherein processing a content of the operation request information according to the content adjustment strategy of the operation request information to obtain adjusted operation request information comprises:
    - if the content adjustment strategy of the operation request information is encrypting the operation request information, then obtaining an encryption algorithm corresponding to the operation request information according to a pre-stored encryption algorithm allocation strategy, encrypting the operation request information according to the encryption algorithm to obtain an encrypted operation request information, and using the encrypted operation request information as the adjusted operation request information.
  - 6. The method according to claim 2, wherein the first processing password and/or the second processing password are obtained by any of following ways:
    - if the content adjustment strategy of the joint password is encrypting the joint password, then obtaining an encryption algorithm corresponding to the joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the joint password according to the encryption algorithm to obtain an encrypted joint password, and outputting the encrypted joint password as the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is adding a random number to the joint password, then obtaining the random number according to a preset random number generation strategy, obtaining a random number combination strategy corresponding to the joint password according to preset random number combination strategies, processing the joint password according to the random number and the random number combination strategy to obtain a processed joint password, outputting the processed joint password as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is adding a random number to the joint password and encrypting the joint password added with the random number, then obtaining the random number according to a preset random number generation strategy, obtaining a random number combination strategy corresponding to the joint password according to preset random number combination strategies, processing the joint password according to the random number and the random number combination strategy to obtain a processed joint password, obtaining an encryption algorithm corresponding to the processed joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the processed joint password according to the encryption algorithm, outputting the joint password processed by adding the random number and encrypting as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is encrypting the joint password and adding a random number to an encrypted joint password, then obtaining an encryption algorithm corresponding to the joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the joint password according to the encryption algorithm to obtain an encrypted joint password, obtaining the random number according to a preset random number generation strategy, obtaining a random number combination strategy corresponding to the encrypted joint password according to preset random number combination strategies, processing the encrypted joint password according to the random number and the random number combination strategy, outputting the joint password processed by encrypting and adding the random number as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password.
  - 7. The method according to claim 1, before outputting by the electronic signature token prompt information about the joint password, further comprising:
    - verifying an identity of a requester requesting for outputting the joint password according to a preset identity verification strategy;
      
      outputting the joint password if the verification is successful.
  - 8. The method according to claim 1, wherein the password to be verified is obtained in any of following ways:
    - detecting information input via an input device of the second terminal, and obtaining the password to be verified according to a detection result;
      
      scanning barcode information or graphic information of the joint password displayed on a display screen of the electronic signature token to obtain the password to be verified;
      
      establishing a contactless communication connection with the electronic signature token, receiving the joint password sent by the electronic signature token via the contactless communication connection, in which the joint password received is used as the password to be verified.
  - 19. The method according to claim 3, wherein notifying a first verification device by the first terminal to verify the signature message according to the first processing password and the operation request information further comprises:
    - notifying the first verification device by the first terminal the content adjustment strategy used for adjusting the operation request information;
      
      ornotifying the first verification device by the first terminal the content adjustment strategy used for the second processing password;
      
      ornotifying the first verification device by the first terminal the content adjustment strategy used for adjusting the operation request information and the content adjustment strategy used for the second processing password.
  - 20. The method according to claim 3, wherein processing a content of the operation request information according to the content adjustment strategy of the operation request information to obtain adjusted operation request information comprises:
    - if the content adjustment strategy of the operation request information is encrypting the operation request information, then obtaining an encryption algorithm corresponding to the operation request information according to a pre-stored encryption algorithm allocation strategy, encrypting the operation request information according to the encryption algorithm to obtain an encrypted operation request information, and using the encrypted operation request information as the adjusted operation request information.

9. An information processing system, comprising a first terminal, an electronic signature token, a first verification device, a background system server, a second terminal and a second verification device, wherein the first terminal comprises a first sending module and a first notifying module, the electronic signature token comprises a storage module, a first generating module, a second generating module, an adjusting module, a second sending module and an outputting module, the background system server comprises a preprocessing module, the first verification device comprises a second notifying module, the second terminal comprises an obtaining module and a third notifying module, the second verification device comprises a triggering module, in which,the first sending module is configured to send operation request information to the electronic signature token after detecting an operation request;
- the storage module is configured to store the operation request information after receiving the operation request information output from the first terminal;
  
  the first generating module is connected with the storage module and configured to generate a joint password according to a password generation strategy pre-stored locally;
  
  the second generating module is connected with the first generating module and configured to generate a signature message according to the operation request information and the joint password after obtaining the joint password;
  
  the adjusting module is connected with the first generating module and configured to adjust a content of the joint password according to a pre-stored joint password adjustment strategy to obtain an adjusted joint password, and to use the adjusted joint password as a first processing password;
  
  the second sending module is connected with the second generating module and the adjusting module respectively and configured to send the first processing password together with the signature message to the first terminal;
  
  the first notifying module is connected with the second sending module and configured to notify the first verification device to verify the signature message according to the first processing password and the operation request information after receiving the first processing password and the signature message;
  
  the second notifying module is connected with the first notifying module and configured to notify the background system server to preprocess the operation request information if the signature message passes verification;
  
  the preprocessing module is connected with the second notifying module and configured to preprocess the operation request information according to a preset preprocessing strategy to obtain preprocessed information;
  
  the outputting module is configured to output prompt information of the joint password;
  
  the obtaining module is configured to obtain the joint password according to the prompt information and to use the joint password as a password to be verified;
  
  the third notifying module is connected with the obtaining module and configured to notify the second verification device to verify the password to be verified;
  
  the triggering module is connected with the third notifying module and configured to trigger the background system server to perform a response process of the operation request information according to the preprocessed information if the password to be verified passes verification.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18)
- - 10. The system according to claim 9, wherein the second generating module comprises a generating sub-module and at least one of a first processing sub-module and a second processing sub-module, in whichthe first processing sub-module comprises:
    - a first obtaining unit, configured to obtain a content adjustment strategy of the operation request information;
      
      a first processing unit, configured to process a content of the operation request information according to the content adjustment strategy of the operation request information to obtain adjusted operation request information;
      
      the second processing sub-module comprises;
      
      a second obtaining unit, configured to obtain a content adjustment strategy of the joint password;
      
      a second processing unit, configured to adjust the content of the joint password according to the content adjustment strategy of the joint password to obtain an adjusted joint password, and to use the adjusted joint password as a second processing password;
      
      the generating sub-module is configured to obtain the signature message by signing any one of following combinations;
      
      the adjusted operation request information and the joint password;
      
      the operation request information and the second processing password;
      
      the adjusted operation request information and the second processing password.
  - 11. The system according to claim 10, wherein the second generating module further comprises:
    - a notifying sub-module, configured to notify the first terminal the content adjustment strategy used for adjusting the operation request information;
      
      or notify the first terminal the content adjustment strategy used for the second processing password;
      
      or notify the first terminal the content adjustment strategy used for adjusting the operation request information and the content adjustment strategy used for the second processing password.
  - 12. The system according to claim 10, wherein the first terminal further comprises:
    - a fourth notifying module, connected with the first notifying module, and configured to notify the first verification device the content adjustment strategy used for adjusting the operation request information;
      
      or notify the first verification device the content adjustment strategy used for the second processing password;
      
      or notify the first verification device the content adjustment strategy used for adjusting the operation request information and the content adjustment strategy used for the second processing password.
  - 13. The system according to claim 10, whereinthe first processing sub-module is configured to obtain an encryption algorithm corresponding to the operation request information according to a pre-stored encryption algorithm allocation strategy, to encrypt the operation request information according to the encryption algorithm to obtain an encrypted operation request information, and to use the encrypted operation request information as the adjusted operation request information, if the content adjustment strategy of the operation request information is encrypting the operation request information.
  - 14. The system according to claim 10, wherein the adjusting module is configured to obtain the first processing password and/or the second processing sub-module is configured to obtain the second processing password in any of following ways:
    - if the content adjustment strategy of the joint password is encrypting the joint password, then obtaining an encryption algorithm corresponding to the joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the joint password according to the encryption algorithm to obtain an encrypted joint password, and outputting the encrypted joint password as the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is adding a random number to the joint password, then obtaining a random number according to a preset random number generation strategy, obtaining the random number combination strategy corresponding to the joint password according to preset random number combination strategies, processing the joint password according to the random number and the random number combination strategy to obtain a processed joint password, outputting the processed joint password as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is adding a random number to the joint password and encrypting the joint password added with the random number, then obtaining the random number according to a preset random number generation strategy, obtaining a random number combination strategy corresponding to the joint password according to preset random number combination strategies, processing the joint password according to the random number and the random number combination strategy to obtain a processed joint password, obtaining an encryption algorithm corresponding to the processed joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the processed joint password according to the encryption algorithm, outputting the joint password processed by adding the random number and encrypting as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password;
      
      if the content adjustment strategy of the joint password is encrypting the joint password and adding a random number to an encrypted joint password, then obtaining an encryption algorithm corresponding to the joint password according to a pre-stored encryption algorithm allocation strategy, encrypting the joint password according to the encryption algorithm to obtain an encrypted joint password, obtaining the random number according to a preset random number generation strategy, obtaining a random number combination strategy corresponding to the encrypted joint password according to preset random number combination strategies, processing the encrypted joint password according to the random number and the random number combination strategy, outputting the joint password processed by encrypting and adding the random number as the first processing password and/or the second processing password, and notifying the first terminal the random number and the random number combination strategy used for the first processing password and/or the second processing password.
  - 15. The system according to claim 9, wherein the outputting module comprises:
    - a verification unit, configured to verify an identity of a requester requesting for outputting the joint password according to a preset identity verification strategy;
      
      an outputting unit, configured to output the joint password if the verification is successful.
  - 16. The system according to claim 9, wherein the obtaining module is configured to obtain the password to be verified by any one of following ways:
    - detecting information input via an input device of the second terminal, and obtaining the password to be verified according to a detection result;
      
      scanning barcode information or graphic information of the joint password displayed on a display screen of the electronic signature token to obtain the password to be verified;
      
      establishing a contactless communication connection with the electronic signature token, receiving the joint password sent by the electronic signature token via the contactless communication connection in which the joint password received is used as the password to be verified.
  - 17. The system according to claim 9, wherein the first verification device is built into the first terminal or the background system server, and/or the second verification device is built into the second terminal or the background system server.
  - 18. The system according to claim 9, wherein the electronic signature token is a smartcard or an electronic signature token having a signature function.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Tendyron Corporation
Original Assignee
Tendyron Corporation
Inventors
LI, Dongsheng

Granted Patent

US 9,369,463 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/31   User authentication

G06F 21/34   involving the use of extern...

H04L 63/08   for authentication of entit...

H04L 63/083   using passwords cryptograph...

H04L 63/0853   using an additional device,...

H04L 63/12   Applying verification of th...

H04L 63/123   received data contents, e.g...

H04L 9/3226   using a predetermined code,...

H04L 9/40   Network security protocols

INFORMATION PROCESSING METHOD AND SYSTEM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

11 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

INFORMATION PROCESSING METHOD AND SYSTEM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links