Authority control method and device based on sm1/sm2 algorithm

Abstract

The invention discloses an authority control method and an authority control device based on a signed message 1 (SM1) / SM2 algorithm. The method comprises the following steps of: consulting with a background management module through user identity equipment to obtain a session key; signing private information of the user by adopting an SM2 private key to obtain a signature character string, performing SM1 encryption, and sending an encryption result to a data acquisition module; sending the encryption result to the background management module through the data acquisition module, and decrypting the encryption result according to the session key to obtain a character string; inquiring a database according to the ID to obtain corresponding first user private information and a user public key, and decrypting the signature character string according to an SM2 public key to obtain the private information of the user; checking whether the private information of the user is consistent with second user private information, if not, refusing a user request, otherwise, judging whether the user has the authority in accessing a certain resource in the database according to the second user private information; and if the user has the authority in accessing a certain resource, allowing the user to access the resource, otherwise, refusing the request.

Description

technical field [0001] The present invention relates to the field of security control, in particular to an authority control method and device based on the SM1 / SM2 algorithm. Background technique [0002] The National Secret SM1 algorithm is a commercial cipher block standard symmetric algorithm compiled by the State Cryptography Administration. This algorithm is an SM1 block cipher algorithm approved by the State Cryptography Management Department. The block length and key length are both 128 bits. The security and confidentiality of the algorithm and the performance of related software and hardware are comparable to AES. The SM2 algorithm is a commercial cipher compiled by the State Cryptography Administration. The standard public key algorithm standard, the SM2 algorithm adopts the ECC elliptic curve principle, and the algorithm key has two types: 192 bits and 256 bits. The SM2 algorithm is superior to the RSA algorithm in terms of security strength and operation speed. ...

AI Technical Summary

Problems solved by technology

However, the existing rights management systems, or the M1 cards and other devices widely used now, all have the disadvantages of being easy to crack or other low security. In addition, how to effectively manage rights is not an easy problem to solve in each system.

[0006] In many rights management systems, the encryption-authentication algorithm often adopts the DES-RSA mode, and the core parts of encryption algorithms such as DES and RSA are mastered by foreign countries. The daily operation and decision-making of some countries' core secrecy departments pose a great threat

Images