Certificate authentication device as well as access method and certificate update method thereof

Abstract

The invention discloses a certificate authentication device which comprises a normal storage module, a storage control module and an interface module, wherein the normal storage module is connected with the storage control module, and the storage control module and the interface module are connected. The certificate authentication device further comprises a safety storage module, an operation processing module and a safety control module, wherein the safety storage module is respectively connected with the operation processing module and the safety control module and used for storing private information for certificate authentication; the operation processing module is used for performing hardware acceleration on an encryption algorithm; and the safety control module is connected with the storage control module and used for scheduling the operation processing module to perform operation and controlling the safety storage module to perform data storage and output. The certificate authentication device disclosed by the invention can have a higher certificate authentication speed under the condition of ensuring the safety. The invention further discloses an access method and a certificate update method based on the certificate authentication device so as to realize the access of the certificate authentication device and the update of the certificate.

Description

technical field [0001] The invention relates to the technical field of authentication, in particular to a certificate authentication device and an access and certificate update method of the device. Background technique [0002] USBKey is a certificate authentication device with a Universal Serial Bus (USB) interface. It has a built-in single-chip microcomputer or smart card chip, has a certain storage space, and can store the user's private key and digital certificate. Authentication of identity. [0003] USBKey is widely used in current online banking, government OA and virtual private network (VPN). USBKey provides an environment for safe storage of digital certificates in the terminal; through hardware coprocessor processing operations, the efficiency of authentication is improved, and it is currently a better solution for certificate authentication. [0004] With the rise of mobile payment and mobile office, there are more and more requirements for certificate authent...

AI Technical Summary

Problems solved by technology

[0013] The storage space of the SIM card is very small. If the digital certificate and private key are stored on the SIM card, it will affect the storage of other data, such as occupying the storage space of the address book and other data.

Moreover, the communication rate of the SIM card is very low. Most SIM cards use the International Organization for Standardization (ISO) 7816 interface. Compared with the transmission rate of the general memory card interface, the speed gap is large, which affects the authentication speed.

In addition, since the SIM card cannot be used directly on the PC, it cannot be compatible with the current certificate authentication method on the PC, and its scope of application is limited

Images