Information system data interface authentication method under HTTP stateless protocol based on token

A stateless protocol and data interface technology, applied in transmission systems, electrical components, etc., can solve the problems of reducing system operation efficiency and occupying large resources of information systems, and achieve the effects of reducing occupation, improving safety, and reasonable design

Inactive Publication Date: 2019-04-16
BEIJING UNIV OF TECH
View PDF4 Cites 17 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

In this case, when the access is very frequent, the information system needs to perform frequent database access to complete the matching authentication of the ...

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Information system data interface authentication method under HTTP stateless protocol based on token
  • Information system data interface authentication method under HTTP stateless protocol based on token

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0017] Referring to the accompanying drawings and specific embodiments, the token-based HTTP stateless protocol information system data interface authentication method of the present invention will be described in detail below.

[0018] The concrete steps of this method are as follows:

[0019] Step 1: Under the HTTP stateless protocol environment, the client first accesses the data interface of the server, and the client accesses the system data interface by sending an HTTP request (such as a POST request, adding authentication information in the body) including account password and other authentication information. In subsequent visits, the client can access the data interface by sending an HTTP request containing the token (for example, directly adding token information to the URL).

[0020] Step 2: The server receives the HTTP request from the client. For the authentication information, if the authentication information is a token, proceed to step 3; if the authentication ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an information system data interface authentication method under an HTTP stateless protocol based on a token, and belongs to the field of Web application privacy communication.The main characteristic of the method is that when a client accesses a data interface for multiple times, authentication information including an account and a password needs to be provided only forfirst access. A server performs identity authentication through access to a database and transmits token information to the client. In the subsequent access, the client only needs to provide the tokeninformation obtained in the first access, and the server only verifies the token information without access to the database. Access authentication of the data interface is realized based on the token, the possibility of leakage of identity information including the account and the password in an access process is reduced, and the system security is improved. Besides, the server does not need to perform frequent access operations on the database during authentication of the same request source, and the occupation of system resources is reduced.

Description

technical field [0001] The invention relates to a token-based information system data interface authentication method under the HTTP stateless protocol, which belongs to the field of secure communication of Web applications. Background technique [0002] The HTTP stateless protocol means that the HTTP protocol has no memory ability for transaction processing and access connections, that is, each request is independent, and its execution and results are not directly related to the previous request and subsequent requests. It will not be directly affected by the previous request response situation, nor will it directly affect the subsequent request response situation. The access to the data interface of the information management system under the traditional B / S architecture is based on the HTTP protocol. When the client accesses the server, it carries the authentication information to complete the identity authentication, such as matching the account password with the informa...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/0807H04L63/108H04L67/142
Inventor 王建华田光烁刘志峰
Owner BEIJING UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap