804results about How to "Guaranteed legality" patented technology

The invention discloses a firmware upgrading method based on digital signatures, and a device thereof, wherein the upgrading method comprises the following steps: encapsulation is performed according to a predefined encapsulation structure so as to generate an upgrading file based on a digital signature; a product needing firmware upgrading obtains the upgrading file; a digital signature file is extracted from the upgrading file and decrypted, so as to obtain an XML file; the XML file is analyzed so as to screen out upgrading module files needing to be upgraded; the legitimacy and integrity of every upgrading module file needing to be upgraded are verified respectively, so as to generate an upgrading script for upgrading all the upgrading module files which pass verification; and the upgrading script is executed so as to upgrade the firmware. The invention discloses a firmware encapsulating method based on digital signatures, and a device thereof. The invention verifies the integrity and legitimacy of every upgrading module file in the upgrading file through the digital signature file, and generates the upgrading script to finish upgrading firmware, thereby improving the security and convenience of firmware upgrading.

The invention discloses a device networking authentication method based on a blockchain for solving the single point failure problem existing in the current networking authentication method. The technical scheme is to deploy a blockchain network comprising a client, a submission node and a consensus node. By means of the non-tampering property of the blockchain, a device firstly registers on the blockchain before accessing the network, when the device A needs to access the network, the device sends a networking request of a device B that has accessed to the network, the device B compares the information of the device A in the networking request with the information of the device A stored in the blockchain to judge whether the identity of the device A is legal, a smart contract issues a token to the device A, a timestamp in the token ensures that the device A is valid within a certain period of time, and after the token expires, the device A needs to pass the identity authentication toaccess the network again. By adoption of the device networking authentication method disclosed by the invention, the single point failure problem existing in the traditional networking authenticationmethod can be avoided, the legality of the identity of the device is ensured, and the security of the network is improved.

The invention discloses a remote video monitoring system for a vehicle. The remote video monitoring system for the vehicle comprises a vehicle-mounted video monitoring system, a remote video monitoring client side and a remote video monitoring center for the vehicle-mounted video monitoring system and the remote video monitoring client side to conduct data interaction. The vehicle-mounted video monitoring system receives environmental images inside and outside the vehicle, sends access addresses of the images to the remote video monitoring client side through the remote video monitoring center, and achieves real-time monitoring. In addition, under the situation of sensing the unusual conditions, the environmental images are stored, and the storage addresses of the environmental images are sent to the remote video monitoring center so as to achieve the alarm function. In addition, the remote video monitoring client side can send an angle adjustment command of a camera, and the angle of the camera is adjusted as needed. The invention further discloses a vehicle remote video monitoring method by utilizing the remote video monitoring system for the vehicle, under the situation that the sight of a user is far from the vehicle, the functions of real-time monitoring and alarm are achieved, and safety of the vehicle is improved.

The invention provides an intelligent display terminal firmware updating method. The firmware updating method includes the steps that two loading programs are set, and a terminal is guided and started through the different loading programs according to the current state of the terminal; the integrity of updating files is checked; the updating files are added with digital signatures; automatic updating and manual updating are selected alternatively to finish updating. According to the intelligent display terminal firmware updating method, the failure rate of the intelligent display terminal is reduced, and correctness of the updating files and security of updating are ensured.

The system includes a field working station and a remote service center. The field working station runs the OPC data collection module and the network data releasing module conforming to TCP/IP protocol by using the OPC data collection and network data releasing application program, and is connected to the field control center through OPC interface. The remote service center runs the network terminal module conforming to TCP/IP protocol, the remote OPC server module and the remote control module supporting OPC interface by using network terminal application program and the remote OPC service application program. The network communication terminal module receives the field data released by the network data releasing module, and then releases the received data to the remote OPC service module by which the data is transmitted to the remote monitoring module.

This invention discloses a network access control method and a system including: limiting the access extent of authority to users on-line by the web certification of a portal server to limit it to access the limited network resources only, a user downloads the safety UE by the Web, when the user accesses the protected network resources, the safety UE is used to certificate the safety of the UE and users passing through the safety certification access the protected network resources freely. The system includes: network access devices connected by network, a portal server and an AAA server.

The invention discloses an identity verification method and system. The method comprises: a cash collecting device receiving cash collecting information, according to the cash collecting information and payee identity information, obtaining payee electronic identification for outputting, and associating the payee identity information with a payee account, the payee electronic identification comprising an electronic identification expiration date; a payment device obtaining payee electronic identification, and verifying payee identity validity according to the payee electronic identification; the payment device, according to the payer identity information and current time information, obtaining a payer electronic identification for outputting, and associating the payer identity information with a payment account, the payer electronic identification comprising an electronic identification expiration date; and the cash collecting device obtaining the payer electronic identification, and verifying payer identity validity and according to the payer electronic identification. According to the invention, payee and/or payer identity validity are verified by use of a dynamic electronic identification, such that cheating of a phishing website is prevented; and each identity is bound with an account, and payment can be carried out without inputting a password and exposing an account medium, such that the security of the password and the account medium is ensured.

The invention relates to software security control technology and discloses a security control method of intelligent television application programs, wherein the security of application software is monitored from a plurality of levels, thereby ensuring the security of application software downloaded and installed in an intelligent television terminal. The key points of the technical scheme are summarized as that an application program developer signs for the first time when packing and uploading the application program to an application program store platform; signature of the second time is performed after the application program store platform verifies the application program; the intelligent television terminal hands over a public key of the intelligent television terminal to the platform through a network connection platform, the software is encrypted using the public key at the platform and transmitted to the intelligent television terminal, the intelligent television terminal performs security verification to the application program, and the application program is installed after the verification is accepted. Legitimacy and security of application of the application program is ensured with such method, and such method is applicable for security control of the application software.

The invention relates to a verification method and system for adoptability of electronic data evidence. The method includes: authenticating a forensics subject and a system user, embedding authentication results and data such as digital digest, timestamp and geographic location into a QR code through a QR code generating program, displaying the results and data in a generated authentication report, comparing the information recognized through the QR code to corresponding information collected by data verification during authentication to determine whether the information is consistent to the corresponding information or not; if yes, determining that identity of the forensics subject is correct and that the electronic data evidence remains not tampered; if not, determining that identity of the forensics subject is not correct or that the electronic data evidence remains tampered. The completeness of the electronic data evidence is proved by extracting the digital digest from the electronic data evidence; legality of the forensics subject is guaranteed through authentication and verification over the forensics subject; adoptability of the electronic data evidence is guaranteed in terms of both time and space by adding the timestamp and geographic location data information.

A right information management method for managing a right information of contents retained in a storage medium comprising an authenticated memory region accessible after a mutual authentication is obtained relative to a contents processing device and an ordinary memory region accessible without obtaining the mutual authentication, comprising a step of reading an encrypted right information retained in the authenticated memory region, a step of decoding the read encrypted right information and retrieving a plaintext right information, and a step of retaining the plaintext right information in the ordinary memory region. According to the right information management method, a user can be notified of the contents and the right information of the contents managed in the storage medium in a speedy manner via the contents processing device.

The present invention relates to a method for implementing dynamic password authentication based on digital certificate, belonging to the field of computer and information safety technology. On the basis of certificate authentication. It adopts the dynamic generation mechanism of password and utilizes the certificate authentication mechanism to acknowledge the user's identity, then utilizes the dynamic password mechanism to implement safe logging of various application systems.

The invention provides a secure fingerprint transaction paying method and system. The system comprises a paying terminal, a server and a mobile terminal which are in wireless communication connection. The method comprises the following steps: the paying terminal collects and obtains fingerprint image information; characteristic data of the fingerprint image information are extracted and sent to the server; the server judges whether the characteristic data are stored in a database, and if yes, identification is passed; the paying terminal submits a dynamic password identification request to the server, and the server sends a first random verification code to the mobile terminal legally registered by a paying party; the mobile terminal receives a second random verification code and inputs the code, if the server determines that the second random verification code has timeliness, and whether the second random code and the first random verification code are consistent is compared; and if the second random code and the first random verification code are consistent, verification is passed. At least double identification and verification are adopted to ensure that the paying party is a legal user, the characteristic of concise and convenient transaction flow is considered, and the security level of a financial transaction process is increased.

The invention discloses a blockchain-based micro node B cell communication management method and system and equipment. The method comprises the following steps: generating an authentication request data packet of a corresponding access node by a micro node B, and transmitting the authentication request data packet to a blockchain network through a current node; receiving an authentication result of the blockchain network generated after authentication by configuring a specified number of other nodes for the access node; and returning the authentication result to the micro node B through a current node. Through a blockchain technology, the validity and effectiveness of the access node are ensured; normal and effective transmission of data are ensured; the access node is enabled to effectively provide a service; distributed management of an access node communication system is realized; and the integrity of the whole blockchain network is maintained.

The invention discloses a non-contact CPU (Central Processing Unit) card entrance guard reader comprising a radio frequency part, a 485 communication part, a security module part, a Wigan output and external control part, a power supply part, an external connection part, a microcontroller part and other parts. The non-contact CPU card entrance guard reader is internally provided with a PSAM (Pilot Symbol Assisted Modulation) card and applies security certification read-write mechanisms of the PSAM card and a CPU card. The CPU card entrance guard reader builds an integral and strict key management system by adopting the security certification of the PSAM card and the CPU card, sufficiently uses the security characteristics of the CPU card and comprises key systems of the CPU card and the PSAM card; after a key is input into the PSAM card, the key cannot be externally read, the PSAM card is inserted into card reading equipment, two-way validation is carried out through the PSAM card and the CPU card, a verified message is calculated through the participation of random data, and a same card is different every time when swiped on one equipment, therefore a counterfeit card is thoroughly prevented.

The invention provides an electronic invoice generating system for an electronic commerce website. The electronic invoice generating system comprises an online transaction platform, a safety electronic invoice system and an electronic invoice information management platform, wherein the safety electronic invoice system is pre-stored with a goods and service code table, an electronic invoice template and digital certificates of electronic commerce enterprises and is used for receiving the payer information and transaction information from the online transaction platform, adding the payer information and transaction information into the electronic invoice template to generate a corresponding electronic invoice according to the goods and service code table and performing digital signature on the electronic invoice through the digital certificates of electronic commerce enterprises; and the electronic invoice information management platform comprises an access interface and is used for acquiring the electronic invoice from the safety electronic invoice system so as to put on records of the electronic invoice and providing the record information to a preset user through the access interface. According to the embodiment, the problems of fake invoice, no invoice and virtual invoice are effectively solved, the tax erosion is reduced, the whole process is paper-free, and the system has the advantages of high speed and energy conservation.

The invention discloses a smart grid information transmission safety protection device and a safety protection method, which relate to the technical field of smart grid information transmission safety. The device comprises a certificate server, an encryption and decryption module, a compliance check module and an exception handling module, wherein the encryption and decryption module is wholly serially connected between a station level and a bay level for carrying out encryption signature and signature verification decryption functions on original transparently-transmitted data; the compliance check module grabs a plaintext data packet in an offline or online mode and submits the plaintext data packet to the detection module for compliance check, and as for a compliance message, an analysis result is stored to a log database in a log format; and exception information is independently stored in an exception database through the exception handling module, and an administrator is notified. In the case of permissible delay in the smart grid, the encryption and decryption module together protects the internal information of the smart grid, behaviors that the internal data are tampered and destructed in the case of transmission are resisted, and the safety of the grid is further improved.

The disclosed filter and secret method for information in immediate communication comprises: using a filter engine to filter target information to send the healthy and inhibit the unhealthy; using a system to encipher the information. This invention adds a enciphering/deciphering machine on transmission/receiving end respectively.

The invention relates to the secret communication field of mobile communication technologies, and discloses a user identity protection method based on a public-key mechanism. The method comprises the following steps: an HSS (hierarchical service system) produces a pair of keys, namely, a public key PK and a secret key SK, then the public key PK is preset to a USIM (universal subscriber identity module) card of UE (user equipment) belonging to the public key PK in the form of a public key file PKF, and the secret key SK is stored in the HSS; a mobile phone sends the following information to anMME (mobility management entity), including HSS identification: HSS_ID, public-key PK version number: VER_PK; and data (IMSI || R|| VER_PK) encrypted by using an asymmetric encryption algorithm; after receiving the information, the MME sends the VER_PK and the (IMSI || R|| VER_PK) to the HSS according to the HSS_ID; and the HSS decrypts the VER_PK and the (IMSI || R|| VER_PK) by using the secret key SK. Because attackers do not know the secret key SK of the HSS, the attackers can not decrypt the (IMSI || R|| VER_PK).

The invention discloses a method for a traffic monitoring and business service quality guarantee strategy based on SDN. The method comprises the following steps: a. creating a network topology under the SDN architecture, configuring an Openflow switch, and establishing a connection between the switch and an SDN controller; b. providing an open northbound API interface on the SDN controller; c, obtaining, by an application system program, complete device information and link information; d, inputting the business to be guaranteed according to the business requirements; e, according to a sourcedestination address of the service flow, transmitting an algorithm class to calculate a scheduling path, and generating the optimal scheduling path of the current network; f. transmitting the scheduling path in e into a strategy generation class, generating a scheduling flow table in combination with the business guarantee strategy in d, and issuing the scheduling flow table into the switch; and g. adding a data transmission queue to a switch port according to the scheduling flow table in f. By adoption of the method disclosed by the invention, the stable operation of the network business, theefficient use of the link bandwidth and the maximum optimization of the whole network performance are maximally guaranteed.