Account number cipher certification is concentrated to generate system

Account number cipher certification is concentrated to generate system

  • CN 102,170,354 B
  • Filed: 04/11/2011
  • Issued: 07/06/2016
  • Est. Priority Date: 04/11/2011
  • Status: Active Grant
First Claim
Patent Images

1. concentrate account number cipher certification to generate system for one kind, it is characterized in that to adopt identical account name in different websites, there is an authentication center, its system can generate the different passwords of different web sites, but these keys do not reveal information mutually, and password is by a master key, in conjunction with website ID, if report the loss and report the loss number of times and other additional information adopts one-way function to generate;

  • User at the register flow path of authentication center is;

    user submits the information of oneself to, and authentication center is by various modes, and various data and information to user are authenticated, and after certification, adopts the link of safety, shares a master key K with user;

    Website at the register flow path of authentication center is;

    user submits the information of oneself to, and authentication center, by various modes, examines the verity of website, and relevant information is put on record, after examining the identity of website, it is thus achieved that the PKI of website, authorizing its unique ID, authentication center is open by website Id;

    User'"'"'s register flow path in website is;

    as long as user A and website B both passes through legal certification, when user first time registration of website B, if selecting the account of website independence, then unrelated with native system;

    If selecting the account mode of authentication center, then user submits the unified account of oneself to, user first checks the ID of the website B announced in authentication center website, then user side is according to master key, the ID of website and some other additional informations, additional information includes a regular length and is used to identify and reports the loss number of times, when registration, its value is set to 0, one-way function is adopted to generate password, information is submitted to website by user, website forwards the information to authentication center, website with the account of the public key encryption user of authentication center and password to authentication center, after authentication center receives information, decipher with the private key of oneself, the result examined is told website by authentication center, if identity is examined, website gets final product account and the password of authorised user, if hereafter user needs Modify password, directly oneself is revised in website.

View all claims
    ×
    ×

    Thank you for your feedback

    ×
    ×