Password protection method applied to plaintext protocol proxy in operation and maintenance auditing system

A password protection and protocol technology, applied in the field of password protection of plaintext protocol agents, can solve problems such as uncontrollability, and achieve the effect of protecting passwords, protecting system security, and not changing operating habits

Inactive Publication Date: 2019-03-08
CHENGDU DBAPP SECURITY
View PDF6 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

The traditional plaintext protocol operation and maintenance is to protect the password by manually setting the login password, but the complexity, repetition and validity period of the password are completely controlled by humans, which will cause uncontrollable and great risks

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Password protection method applied to plaintext protocol proxy in operation and maintenance auditing system
  • Password protection method applied to plaintext protocol proxy in operation and maintenance auditing system
  • Password protection method applied to plaintext protocol proxy in operation and maintenance auditing system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0046] The present invention is realized through the following technical solutions, as Figure 1-Figure 3 As shown, a password protection method applied to plaintext protocol agents in the operation and maintenance audit system, the operation and maintenance device login terminal initiates the identity authentication of the operation and maintenance audit system user to the operation and maintenance device server through the SSH encryption protocol, and establishes an SSH encrypted channel ;The operation and maintenance device server generates a one-time password and returns it to the operation and maintenance device login terminal. Clear text protocol server.

[0047] It should be noted that, through the above improvements, the present invention discloses a password protection method applied to plaintext protocol agents in the operation and maintenance audit system. The present invention includes a plaintext protocol operation and maintenance device login terminal and a plain...

Embodiment 2

[0052] This embodiment is further optimized on the basis of the above embodiments, such as Figure 1-Figure 3 As shown, it specifically includes the following steps:

[0053] Step F1: The operation and maintenance device login terminal uses the SSH encryption protocol to initiate a user identity authentication request to the operation and maintenance device server, and establishes an SSH encrypted channel;

[0054] Step F2: The password generator at the server side of the operation and maintenance device generates a one-time password, and transmits the one-time password to the login terminal of the operation and maintenance device;

[0055] Step F3: The operation and maintenance device login terminal starts the client calling module, calls the plaintext protocol client according to the plaintext protocol selected by the user in the protocol option, and transmits the user login information to the plaintext protocol client;

[0056] Step F4: Log in to the plaintext protocol ope...

Embodiment 3

[0062] This embodiment is further optimized on the basis of the above embodiments, such as Figure 1-Figure 3 As shown, the step F1 specifically includes the following steps:

[0063] Step F11: The operation and maintenance device login terminal uses the SSH encryption protocol to initiate a user identity authentication request to the operation and maintenance device server;

[0064] Step F12: Between the authentication module of the operation and maintenance device server and the operation and maintenance device login terminal, the two parties negotiate to establish an SSH encrypted channel;

[0065] Step F13: The operation and maintenance device login terminal transmits the IP and user identity information of the operation and maintenance audit system to the operation and maintenance device server through the SSH encrypted channel;

[0066] Step F14: The operation and maintenance device server receives the user identity information and performs authentication; if the identi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a password protection method applied to a plaintext protocol proxy in an operation and maintenance auditing system. The login end of an operation and maintenance device initiates identity authentication of an operation and maintenance auditting system user to the service end of the operation and maintenance device through an SSH encryption protocol, and establishes an SSH encryption channel; the service end of the operation and maintenance device generates a one-time password and returns the password to the login end of the operation and maintenance device; and the login end of the operation and maintenance device calls a plaintext protocol client, logs in the operation and maintenance auditing system with the one-time password, and then logs in to a plaintext protocol server from the operation and maintenance auditing system. The invention transmits user identity information through the SSH encryption channel, and the encryption feature of the SSH encryption protocol ensures that the user identity information is not leaked; the plaintext protocol client and the plaintext protocol server are logged in by using the one-time password; although the plaintext protocol does not perform data encryption, the purpose of protecting the plaintext protocol from being disclosed is achieved as well; passwords generated automatically are different each time, and the password is invalid when used, so that the phenomenon of randomly logging in the plaintext protocol server with an old password or a stolen password is avoided.

Description

technical field [0001] The invention relates to the technical field of plaintext protocol protection, in particular to a password protection method applied to plaintext protocol agency in an operation and maintenance audit system. Background technique [0002] The operation and maintenance audit system, also known as the bastion host, is a security product that isolates and protects servers from external intrusions and supervises operation and maintenance operations. It mainly provides two functions of operation and maintenance and auditing: [0003] Operation and maintenance: The operation and maintenance audit system acts as the access terminal for accessing the server, and serves as a springboard between the client and the server. Users must first log in to the operation and maintenance audit system through the client before logging in to the server; [0004] Audit: The operation and maintenance audit system performs audit operations such as screen recording on the server...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/0281H04L63/0428H04L63/0815H04L63/0838H04L63/168H04L67/14
Inventor 王茜刘韬范渊吴永越郑学新
Owner CHENGDU DBAPP SECURITY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap