A login authentication method and system for web applications

A technology for login authentication and authentication information, applied in the Internet field, it can solve the problems of high SSL cost, large amount of calculation, easy to be guessed, etc., and achieve the effect of preventing data tampering, satisfying security authentication, and improving security.

Active Publication Date: 2019-04-16
ZICT TECH CO LTD
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the existing one-time password mechanism is increasingly exposed to vulnerabilities such as guessing, tampering and analysis.
For example, in the challenge / response mechanism, the password is statically stored on the server in some form, which is easy to be analyzed; additional protection measures such as Secure Sockets Layer (SSL, Secure Sockets Layer) need to be used for user login authentication, and SSL requires a relatively high cost. Fees are used to purchase, which brings economic burden to users and affects system authentication processing performance
[0006] The third is to use the password sequence mechanism, which is vulnerable to decimal attacks
In addition, the browser side of this mechanism needs to calculate the hash value multiple times, and the calculation amount is relatively large.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A login authentication method and system for web applications
  • A login authentication method and system for web applications

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0042] The basic idea of ​​the present invention is: after receiving the user's login request, the browser uses two random numbers provided by the web server to obtain authentication information, and sends the authentication information to the web server; The received authentication information is used for login authentication.

[0043] The present invention will be further described in detail below with reference to the accompanying drawings and specific embodiments.

[0044] The invention provides a login authentication system for web applications, figure 1 It is a schematic structural diagram of the login authentication system for implementing web applications in the present invention, such as figure 1 As shown, the system includes: a browser 10, a web server 20; wherein,

[0045] The browser 10 is configured to use two random numbers provided by the web server 20 to obtain authentication information after receiving the user's login request, and send the authentication in...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a log-in authentication method on web application. The method includes the following steps that after a log-in request of a user is received, a browser obtains authentication information by means of two random numbers provided by a web server and sends the authentication information to the web server; the web server carries out log-in authentication according to the stored user information and the received authentication information. The invention further provides a log-in authentication system on the web application. According to the technical scheme, data tampering, intercepting attract, decimal attract, dictionary attack, replay attract and denial of service attack can be prevented.

Description

technical field [0001] The invention relates to Internet technology, in particular to a login authentication method and system for web applications. Background technique [0002] With the rapid development of Internet technology and the continuous popularization of web applications, the security of user information becomes more and more important when implementing login authentication based on web applications. The login authentication of traditional web applications is to transmit the identity information and password entered by the user to the web server, and confirm the legitimacy of the user's identity by comparing it with the data stored in the web server. [0003] At present, there is a fatal flaw in this web application login authentication method, and identity information and passwords are easily stolen, thereby incurring replay attacks by attackers. For this defect, in the prior art, there are the following solutions: [0004] The first one uses certificate-based ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L29/08
Inventor 李勇
Owner ZICT TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap