A mobile phone offline authentication method

Abstract

A mobile phone offline authentication method is to insert an SD card into the user's mobile phone, use a symmetric cryptographic algorithm to establish an encryption system, and use a combined symmetric key generation algorithm to generate a symmetric key in real time, one change at a time, to realize key security. Real-time update and effective management. In each user's mobile phone, the "key seed" corresponding to the "circle of friends" user is encrypted into ciphertext storage in advance, which ensures the storage security of the "key seed" of the "circle of friends" user. At the same time, By establishing a user identity information center on the network, the "key seed" of all users is encrypted into ciphertext and stored in the user identity information center to ensure the storage security of the "key seed" of all users, and to ensure the "key seed" of the mobile phone terminal The download of the "Seed Key" of the "Moments" user is safe, thereby realizing offline authentication between mobile phone users.

Description

Technical field: [0001] The invention relates to the field of wireless network communication security. Background technique: [0002] At present, at home and abroad, based on identity authentication between mobile phones, the security framework of PKI technology is adopted. PKI technology completes the online identity authentication of user mobile phones by establishing a CA certification center, and cannot realize offline authentication between user mobile phones. CA certification center The construction cost is relatively high, and the PKI technology adopts the public key system, and the operation speed is relatively slow. In addition, if the user certificates stored in the certificate database of the CA certification center are stored in plain text, they are vulnerable to hackers, and the security is low. If the certificate is stored in ciphertext, it will further reduce the operating efficiency of the CA certification center, causing the CA certification center to double...

AI Technical Summary

Problems solved by technology

[0002] At present, at home and abroad, based on identity authentication between mobile phones, the security framework of PKI technology is adopted. PKI technology completes the online identity authentication of user mobile phones by establishing a CA certification center, and cannot realize offline authentication between user mobile phones. CA certification center The construction cost is relatively high, and the PKI technology adopts the public key system, and the operation speed is relatively slow. In addition, if the user certificates stored in the certificate database of the CA certification center are stored in plain text, they are vulnerable to hackers, and the security is low. If the certificate is stored in ciphertext, it will further reduce the operating efficiency of the CA certification center, causing the CA certification center to double the investment in equipment. In short, the existing technology products for mutual identity authentication between mobile phones of users cannot meet the needs of the market

Images