Two-factor authentication-based identity authentication method
An identity authentication, two-factor technology, applied to user identity/authority verification and key distribution, can solve the problem of high maintenance costs, save enterprise management costs, simple to use, and high security.
Inactive Publication Date: 2019-01-29
SICHUAN CHANGHONG ELECTRIC CO LTD
View PDF4 Cites 5 Cited by
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
[0003] The purpose of the present invention is to provide an identity authentication method based on two-factor authentication, which is used to solve the problem of requiring additional hardware configuration and high maintenance cost in the prior art to realize remote access by hardware
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View moreImage
Smart Image Click on the blue labels to locate them in the text.
Smart ImageViewing Examples
Examples
Experimental program
Comparison scheme
Effect test
Embodiment 1
[0023] Attached figure 1 As shown, an identity authentication method based on two-factor authentication specifically includes: first, the user logs into the client App with the original account and password, that is, on the basis of the first layer of identity authentication, and adds a layer of dynamic password authentication to form a two-factor authentication. Authentication, the steps of dynamic password authentication include:
[0024] (1) The client App uses HTTPS GET to link to the authentication server in the security key management system, and submits the user ID (userId) and plaintext password (password);
[0025] (2) The authentication server verifies that the user ID and password are correct, generates a 32-bit random string as a request token (Request Token), returns it to the client App, and associates the RequestToken with the user ID in the authentication server;
[0026] (3) The client uses HTTP GET to link to the authorization server and submits the Request Token; ...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More PUM
Login to View More Abstract
The invention discloses a two-factor authentication-based identity authentication method. The method includes the following steps that: a user logins a client by using a registered account and password; and step B, the client adopts dynamic password authentication to perform user identity verification in a security key management system, wherein the step B further includes the following steps that: step B1, the client initiates a link to an authentication server, and submits a user ID and the password; step B2, the authentication server verifies the user ID and password, returns a request token to the client, and associates the request token with the user ID; step B3, the client links to an authorization server and submits the request token; step B4, the authorization server queries the authentication server with the request token, if the authorization server finds the user ID, the authorization server generates an access token corresponding to the user ID and returns the access tokento the client; and B5, with the access token adopted as a parameter, the client initiates a request to a website through a browser. With the two-factor authentication-based identity authentication method of the invention adopted, remote user login security is improved, and potential information leakage risks caused by weak identity authentication can be eliminated.
Description
Technical field [0001] The present invention relates to the technical field of computer security, specifically, an identity authentication method based on two-factor authentication. Background technique [0002] At present, with the development of information technology, there is an obvious development trend in the way of remotely logging into the company's intranet: from connection to wireless, from hardware to software, from heavy to light, and from complex to simple. At this stage, there are two remote access methods in this field: OATH Token and Activkey. However, these two methods are based on hardware, which will cause the following problems: 1. Activkey will require additional driver installation and occupy an additional USB slot; 2. Both need money to purchase and maintain; 3. They It is easy to lose and break. Summary of the invention [0003] The purpose of the present invention is to provide an identity authentication method based on two-factor authentication, which i...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More Application Information
Patent Timeline
Login to View More IPC IPC(8): H04L29/06H04L9/32H04L9/08
CPCH04L9/0863H04L9/0869H04L9/3213H04L63/06H04L63/083H04L63/0846H04L67/02H04M1/72403
Inventor 王松曾鹏幕瑞华
Owner SICHUAN CHANGHONG ELECTRIC CO LTD