National cryptographic office certificate authentication method, device and equipment

An authentication method and technology of an authentication device, which are applied in secure communication devices, user identity/authority verification, digital transmission systems, etc., can solve problems such as inability to perform national secret certificate authentication.

Active Publication Date: 2019-02-19
BEIJING TOPSEC NETWORK SECURITY TECH +2
View PDF10 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] The embodiment of the present invention provides a national secret certificate authentication method, device and equipment to solve the problem in the prior art that the national secret certificate cannot be authenticated

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • National cryptographic office certificate authentication method, device and equipment
  • National cryptographic office certificate authentication method, device and equipment
  • National cryptographic office certificate authentication method, device and equipment

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0073] The first embodiment of the present invention provides a national secret certificate authentication method for the client, such as figure 1 shown, including the following specific steps:

[0074] Step S101: sending an SSL connection request, thereby establishing a one-way SSL connection;

[0075] The client sends an SSL connection request to the server, thereby establishing a one-way SSL connection between the client and the server. A one-way SSL connection means that the client sends SSL data to the server in one direction.

[0076] In a specific application scenario, establishing an SSL connection is accomplished by calling an interface in the openssl library in the prior art.

[0077] Step S102: sending a national secret authentication request through the SSL connection;

[0078] After the one-way SSL connection is established between the client and the server, the client sends a national secret authentication request to the server through the one-way SSL connectio...

Embodiment 2

[0090] Such as figure 2 As shown, the embodiment of the present invention provides a national secret certificate authentication method for the server, including:

[0091] Step S201: receiving an SSL connection request, thereby establishing a one-way SSL connection;

[0092] Step S202: receiving the national secret authentication request sent through the SSL connection;

[0093] Step S203: Generate a challenge code based on the national secret authentication request, and send the challenge code;

[0094] Step S204: Receive the signature information and the national secret certificate generated by signing the challenge code;

[0095] Step S205: Verify the signature information and the national secret certificate, and send the verification result.

[0096] As a specific implementation of the present invention, such as image 3 As shown, step S203: said generating a challenge code based on said national secret authentication request and sending said challenge code includes: ...

Embodiment 3

[0107] Such as Figure 5 As shown, the embodiment of the present invention provides a method for national secret certificate authentication, including:

[0108] The client sends an SSL connection request to the server to establish a one-way SSL connection;

[0109] The client sends a national secret authentication request to the server through the SSL connection

[0110] The server generates a challenge code based on the national secret authentication request, and sends the challenge code to the client;

[0111] The client receives the challenge code;

[0112] The client signs the challenge code;

[0113] The client sends the signature information and the national secret certificate to the server;

[0114] The server verifies the signature information and the national secret certificate, and sends the verification result to the client;

[0115] The client receives the verification result.

[0116] This technical solution is mainly described by combining the client and th...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a national cryptographic office certificate authentication method, device and equipment. The national cryptographic office certificate authentication method is applied to a client, and comprises the following steps: sending an SSL (Security Socket Layer) connection request to establish one-way SSL connection; sending a national cryptographic office authentication request through the SSL connection; receiving a challenge code returned on the basis of the national cryptographic office authentication request; signing the challenge code; sending signature information and anational cryptographic office certificate; and receiving a verification result for the signature information and the national cryptographic office certificate. On the basis of establishing the SSL connection, the national cryptographic office authentication is sent, and the generated challenge code is signed, and then the signature information and the national cryptographic office certificate areverified, so that the authentication of the national cryptographic office certificate is completed by adopting an authentication challenging mode. Therefore, the problem that the national cryptographic office certificate cannot be authenticated is solved.

Description

technical field [0001] The invention relates to the field of mobile network security, in particular to a national secret certificate authentication method, device and equipment. Background technique [0002] There are two ways of SSL certificate authentication: international certificate authentication and national secret certificate authentication. The international certificate authentication method adopts an international protocol, and an international algorithm is used to complete the authentication during the SSL connection process. The national secret certificate authentication method adopts the national secret agreement, which is a set of standards using Chinese commercial encryption algorithms, including four algorithms: SM1, SM2, SM3 and SM4. [0003] In the existing SSL certificate authentication, the system libraries of Apple and Android can only support international protocols, and do not support national encryption algorithms. Therefore, the national secret cert...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08H04L9/32
CPCH04L9/3247H04L9/3268H04L9/3271H04L63/0823H04L63/166H04L67/14
Inventor 姜超陈天凯罗元
Owner BEIJING TOPSEC NETWORK SECURITY TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap