32results about How to "Avoid the risk of being leaked" patented technology

An embodiment of the invention provides an authentication method, a server and an access control device. The method comprises the following steps: receiving a resource access request and a first signature which are transmitted by the access control device by using the server, wherein the first signature is generated by encrypting the resource access request through the access control device by using a stored temporary key; acquiring the stored temporary key distributed for the access control device by using the server, and encrypting the resource access request by using the temporary key to generate first verification data; if the first signature is consistent to the first verification data, carrying out authentication on the resource access request by using the server; and if an authentication result of the resource access request is authentication passing, processing the resource access request by using the server. By the method, the signature is generated by the temporary key to carry out authentication, the risk of leaking of an intrinsic private key can be avoided, and the safety of the intrinsic private key is guaranteed.

The invention provides a login authentication method and device, and belongs to the technical field of the network. The method comprises the following steps: acquiring ciphertext corresponding to a user identifier from ciphertext information when receiving a login request carrying the user identifier and use password, thereby obtaining the first ciphertext; performing login authentication based onthe first ciphertext and the user password by using a first encryption algorithm; when the first encryption algorithm authenticates that the login request is not passed, performing the login authentication on the login request based on the first ciphertext and the user password by adopting a second encryption algorithm; when the second encryption algorithm authenticates that the login request ispassed, replacing the first ciphertext in the ciphertext information with the second ciphertext; and performing the login authentication on the login request received again based on the second ciphertext in the ciphertext information when receiving the login request carrying the use identifier again. Based on the login authentication scheme provided by the invention, the current service is unnecessary to interrupt when upgrading the encryption algorithm.

The embodiment of the invention discloses a digital signature processing method and device, computer equipment and a storage medium. The digital signature processing method comprises the steps that asignature node acquires consumption voucher information for a first voucher user and acquires the first digital signature of the consumption voucher information; the signature node adopts a private key of a second voucher user having an association relationship with the first voucher user to sign the consumption voucher information to obtain a second digital signature; and the signature node sendsthe consumption voucher information, the first digital signature and the second digital signature to a consensus node, instructs the consensus node to verify the first digital signature and the second digital signature, and enables the consensus node to add the consumption voucher information to the service block chain after the first digital signature and the second digital signature pass the verification. According to the invention, the security of the private key of the user can be enhanced.

The invention relates to a website security vulnerability detection method and device, a medium and electronic equipment, and the method comprises the steps: responding to a vulnerability detection starting instruction, obtaining interaction data of a website currently accessed by a user based on a browser plug-in; determining a to-be-tested request according to the interaction data, wherein the to-be-tested request is a request initiated in a website access process of the user; determining a detection rule corresponding to the to-be-tested request; and performing security vulnerability detection according to the detection rule and the to-be-tested request. Therefore, the security of the user information data can be improved; the manual workload required for obtaining the request list canbe reduced; the security vulnerability detection method can be applied to a scene of business updating iteration, the application range of the security vulnerability detection method is widened, and the method can be applied to a browser plug-in, so that the security vulnerability detection method can be operated under the condition that a browser is installed, other detection software does not need to be installed, and cross-operating system platform detection can be supported.

The invention aims to provide a database access method and device. The method comprises the steps of creating a slave account of a database and presetting an access permission of the slave account; when a user needs to access the database through the slave account, receiving an access request used for accessing the database through the slave account and sent by user equipment; performing analysis and filtration processing on the access request based on the access permission to obtain a filtered SQL statement, and sending the filtered SQL statement to a database service device; and receiving data information returned by the database service device based on the filtered SQL statement, and sending the data information to the user equipment. By utilizing the created slave account of the database and the access permission of the slave account, access requests of different users are met, the risk of leakage of the data information of the database possibly caused by sharing or changing a master account of the database is avoided, the security and high efficiency of accessing the data information of the database are ensured, and the security of the master account of the database is further ensured.

The invention provides an identity authentication method for security information interaction. The method comprises the following steps: a user acquiring security equipment containing a security chip from a service provider and executing an initialization operation to activate the security equipment; the user initiating and finishing the security information interaction process in virtue of the activated security equipment. The identity authentication method for security information interaction disclosed by the invention is high in security and convenient for use.

The invention brings forward a security information interaction method based on a customizable browser. The method comprises the steps that a user logs in a service provider server via an internet terminal and applies for a customized browser which is related to one or multiple security carriers possessed by the user; the customized browser is generated by the service provider server based on the application of the user; the user downloads the customized browser and installs the customized browser in a trusted processor; and the user performs the related security information interaction process via the customized browser installed in the trusted processor. The security information interaction method based on the customizable browser has enhanced security and is convenient to use.

The invention discloses a mobile terminal?payment password?transmission system and a method, and relates to the field of mobile payment. The payment password?transmission system comprises a mobile payment?module,?a payment platform, a safety payment?module, and a password keyboard module for inputting a payment password. According to the payment password?transmission method, the safety payment?module and the payment platform are mutually authenticated and an authentication key is generated; the payment password is inputted via the password keyboard module and uses the authentication key for encryption; decryption and encryption again are carried out via the safety payment?module, a payment password ciphertext is formed to be transmitted to the password keyboard module, and the password keyboard module transmits the payment password ciphertext to the mobile payment?module for use. During the payment password use process, the mobile payment?module can not touch a payment password plaintext, and the risk that the payment password is leaked can thus avoided.

A print processing method and apparatus and a printing system are provided, wherein the system includes a user terminal for transmitting print information to a printing terminal; Wherein the print information is used for indicating a print job to be executed and a user account for initiating the print job; The recognition end is used for acquiring print information sent from the user end to the print end, collecting user images, and performing face recognition on the user images according to the face features corresponding to the user accounts indicated by the print information to determine whether the face features match the user images; a notification message is sent to the printing end if the face feature matches the user image; The printing end is configured to determine a print job tobe executed according to the print information sent by the user end, and execute the print job initiated by the user account indicated by the notification message when the notification message sent by the identification end is received. The system completes the printing task by face recognition, which can simplify the user's operation and ensure the security of the printed document.

The invention discloses a fingerprint unlocking control method and device, terminal equipment and a storage medium, and the method comprises the steps: obtaining touch information, and determining a touch track according to the touch information; determining virtual fingerprint information according to the touch track, and matching the virtual fingerprint information with preset fingerprint information to obtain a matching result; and performing unlocking control according to the matching result. The fingerprint touch information for unlocking can be determined as the virtual fingerprint information, and the virtual fingerprint information is matched with the preset fingerprint information, so that unlocking control can be realized without using real fingerprint information, and the risk that the information of the terminal equipment is leaked due to the leakage of the fingerprint information of the user is effectively avoided.

The invention relates to the technical field of network security, in particular to a decentralized multi-digital signature/electronic signature method, which comprises the following steps of: acquiring a PDF file and a signature picture to be signed of any version, a digital certificate and a corresponding certificate password by a client; obtaining an abstract data template of the new signature information; calculating a corresponding byte range and carrying out abstract calculation to obtain an object number where a new signature is located; calculating the certificate to obtain a digital certificate; calculating and combining new signature data according to the object number in the cross table; packaging the latest signature data and writing the packaged signature data into a result ofthe PDF signature field; according to the method, cross-version and cross-platform compatibility of multiple signatures can be realized, offline signature of the to-be-signed data at the local terminal is ensured, and the risk that the to-be-signed data is leaked in transmission and the risk that the digital identity is illegally used and stolen are avoided. Therefore, the development process is more convenient, the electronic signature cannot be tampered, and the data privacy is fully guaranteed.

The invention relates to the technical field of communication, and provides a method for preventing message leakage, a server, a device and electronic equipment. The method comprises the steps that a first message sent by a terminal device logged in by a first object and a first identifier corresponding to the first message are acquired, the first identifier refers to an identifier of a terminal device logged in by a second object having authority to access the first message, and the terminal device comprises at least one of a mobile terminal device and a computer terminal device; based on the first message and a first identifier corresponding to the first message, performing preset processing on the first message to obtain a second message corresponding to the first message; and the first message and the second message are respectively sent to different terminal devices logged in by the second object, so that the risk that the transmission message is leaked can be avoided, and the security of the transmission message is improved.

The invention discloses a high-strength encryption system and method based on user privacy information protection. The high-strength encryption system comprises an express parcel information data storage module, an express parcel classification module, a courier positioning module, a distribution service distribution module, a user delivery address information processing module, a delivery site selection module, an express parcel arrival notification module and a courier service management module. The beneficial effects of the invention are that the express parcels are classified according to the split address information by splitting the receiving address of the user, so that the risk that the address of the user is leaked is avoided, and the privacy security of the user is guaranteed; and, in addition, the delivery completion progress of the courier is analyzed and the real-time position information of the courier is acquired, so that task allocation is further performed on the courier according to the real-time position information, the delivery completion progress and the express classification, and the express delivery efficiency is improved.

The invention discloses an encrypted radiation imaging system based on a random thickness liquid mask, which comprises an X-ray source, an object to be detected, a liquid metal mask, a mask internal thickness control array and an X-ray detector. According to the invention, the thickness of the liquid mask is randomly adjusted through the mask internal thickness control array, the X-ray passing through the mask is attenuated randomly, sensitive information carried in X-ray imaging is encrypted, the sensitive information of a to-be-detected object is effectively protected, physical shielding encryption measures are adopted for energy and position information of emitted particles, the proposed security check technology encrypts information carried by the emergent X-rays from the physical field, the risk that privacy information is leaked is avoided, any privacy information of the to-be-checked article is not exposed, whether the to-be-checked article contains contraband articles or not is conveniently confirmed by adopting a template comparison method, and the security check is carried out on the basis of protecting the sensitive information of the checked article.