WebService security certification access control method based on software digital certificate and timestamp

A technology of access control and digital certificate, applied in the field of computer and information security, to achieve the effect of ensuring the correctness of access, preventing replay attacks, and high authentication strength

Active Publication Date: 2015-07-01
KOAL SOFTWARE CO LTD
View PDF3 Cites 28 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0006] Aiming at the problems existing in the existing WebService access authentication, the object of the present invention is to provide a WebService unique authentication method based on software digital certificates and time stamps. The method uses software methods to realize application server authentication client and access control, effectively Solve the problem of convenient security authentication and access control from the WebService server to the client

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • WebService security certification access control method based on software digital certificate and timestamp
  • WebService security certification access control method based on software digital certificate and timestamp

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to make the technical means, creative features, goals and effects achieved by the present invention easy to understand, the present invention will be further described below in conjunction with specific illustrations.

[0037] see figure 1 , which is a schematic diagram of the WebService service corresponding to the WebService security authentication access control method based on software digital certificates and time stamps provided by the present invention. As can be seen from the figure, the entire security authentication access control process is as follows:

[0038] (1) The WebService client adds the installation certificate client, generates a certificate request based on the certificate device information, requests the CA certification center to issue a device certificate through the request, and imports the returned device certificate to the WebService client.

[0039] In this step, the WebService client controls the certificate generation mode throug...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a WebService security certification access control method based on a software digital certificate and a timestamp. The method specifically comprises the steps of (1) generating a client credit certificate through a WebService client; (2) creating a WebService request through the client, and signing the WebService request data through a device certificate; (3) calling the timestamp through the client, acquiring stand time from a time source through a timestamp server, and signing and issuing the timestamp to the WebService data through a timestamp server private key; (4) sending the original request text, the device certificate of the WebService client, a signature message and the timestamp information to the server side by the client through a WebService interface after packaging; (5) receiving the WebService request through the server side, sequentially verifying the client device certificate, the digital signature data and the timestamp information, then processing the WebService request, and returning the processing result to the WebService client. With the adoption of the method, the credible access control certification can be performed for all WebService services; in addition, the validity of the request can be determined through the time, and the time can be accessed.

Description

technical field [0001] The invention belongs to the technical field of computer and information security, and in particular relates to authentication of a Web Service server to a client and time access control technology. Background technique [0002] WebService has become the mainstream means of network interface services today, and security has always been concerned. WebService itself also has access authentication. There are currently several authentication methods: [0003] (1) Use the username and password method. Although this method is simple and easy to implement, it is weak in security, user name and password are easy to be stolen, and password-based access requires regular key replacement, which has a serious impact on security and ease of use. the [0004] (2) Although the certificate authentication that comes with WebService can use certificates, the scalability is not strong, SM2 certificates based on national secret algorithms cannot be used, and time authent...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L9/32
Inventor 黄福飞许俊任伟卫杰
Owner KOAL SOFTWARE CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap