One-time pad bidirectional authentication safe logging technology for internet bank

Abstract

The invention relates to one-time pad bidirectional authentication safe logging technology for an internet bank. The technology ensures that a user safely logs in a personal e-bank, and the account capital security of the user is protected. A character table disclosed in the technology has electronic and substantial double characteristics and has huge information space. Because all used authentication information is hashed values in the bidirectional authentication process, it is difficult to calculate the character table back through the hashed values, and various network eavesdropping and Trojan horse programs can be sufficiently resisted. An input password must be subjected to bidirectional authentication of the internet bank and the user in a one-time pad mode, and in the process, any failures can prevent the password of the user himself or herself from being divulged. Any ordinary people can easily master the one-time pad bidirectional authentication safe logging technology for the internet bank, and extra auxiliary authentication hardware devices and authentication cost are not needed. The technology can ensure that an ordinary user frequently conducts the operation of logging in a personal e-bank account and an ATM in a long term without reducing the safety of a system.

Description

technical field [0001] The present invention relates to network information security in the field of computer technology, and in particular to the use of information security technology to implement one-time, one-pass, two-way identity authentication when online banking users log in to bank online banking. Personal account funds are safe. Background technique [0002] The security threats faced by online banking users when logging into their personal online banking accounts mainly come from two aspects: one is the authenticity of the online banking website they visit; the other is various hacking software and network environment that may exist in the personal computer or smartphone used by the user. possible malicious attackers. In view of the security threats faced by online banking, the bank mainly uses multiple identity authentication technologies such as U disk digital certificates, smart IC cards, multi-factor password verification methods, batch passwords, dynamic acc...

AI Technical Summary

Problems solved by technology

[0005] Although the two-way authentication between online banking and users can greatly improve security while confirming the legitimacy of each other's identities, it is very difficult to implement in practice.

The main reason is that the authentication method adopted by online banking must be easy to use for users, and any ordinary person can easily grasp it. It is best not to require additional authentication auxiliary hardware equipment and authentication costs. Smartphones can perform frequent mutual authentication for a long time without reducing the security of the authentication system

For example, some users may log in to the online banking account multiple times a day because of work needs, which will increase the risk of authentication information being recorded and analyzed by malicious attackers. Authentication technology must be able to resist this security threat

Images