Single-point login method under point-to-point model

A single-sign-on, point-to-point technology, applied to the public key of secure communication, user identity/authority verification, electrical components, etc., can solve problems such as reducing security, and achieve the effect of increasing security, reducing burden, and improving efficiency

Active Publication Date: 2008-10-15
江西省电力信息通讯有限公司
View PDF0 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

CAS requires the application system to trust the identity authentication server, reducing security

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Single-point login method under point-to-point model

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0019] see figure 1 , the application system A1 has been connected to the portal P. When the client C needs to access the application system A1, the client C first visits the identity authentication server S to obtain the corresponding certificate. The client C passes the certificate to the portal P, and the portal P sends the certificate to Application system A1, application system A1 authorizes the user according to the customer role marked in the certificate, portal P and application system A1 judge whether the certificate held by the user is valid according to the start time and end time of the certificate mark, and manage the user's life cycle.

[0020] The complete login process is divided into 8 steps:

[0021] Step 1. Client C uses the public key of the authentication server S to encrypt the client's identity C, client name, password, application system A1 and random number N CS , and then send the encrypted message to the authentication server.

[0022] EK S {S, Us...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention relates to a single sign-on method in a point to point mode. Being different from the existing single sign-on method based on a customer server mode, the method manages the single sign-on life cycle of a customer by using valid period of certificate of the customer, and the customer can sign on for a plurality of times with single certification. The method completes the cross-certification of an application system and an identity certification server; the shared encryption key of communication parties is initialized, and a safe channel between the customer and the application system is established. Through the the identity certification server and the cross-certification of the application system, any application system can independently carry out identity certification, thus weakening the status of a central identity certification server, avoiding the defect of single-point failure in traditional customer/ service mode and being characterized by low cost for system operation, high efficiency and good safety performance.

Description

technical field [0001] The invention relates to a single sign-on method in a point-to-point mode. Background technique [0002] At present, there are more and more application systems built by enterprises, and each application system includes independent user authentication and authorization modules. First of all, there may be great differences in the maintenance of user information by modules of various application systems, which hinders the sharing of user information. Secondly, users need to memorize the login passwords of different application systems, and regularly update the passwords of all accessible application systems. Finally, developing separate authentication and authorization modules for each system leads to waste of investment and delays in construction. Unified management of authentication and authorization of application systems to achieve single sign-on has become the development trend of enterprise information construction. [0003] The development of s...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L9/30H04L9/32H04L29/06
Inventor 马勇梁文
Owner 江西省电力信息通讯有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap