A web authentication method based on oauth2.0 password service middleware

A technology of password service and authentication method, applied in electrical components, user identity/authority verification, digital transmission system, etc., can solve the problems of poor compatibility, balance of authorization login authentication security, etc., and achieve the effect of strict process

Active Publication Date: 2021-06-25
成都三零瑞通移动通信有限公司
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] When accessing resources across domains, webpage plug-ins for different browsers are different, involving permissions and certificate-related issues, exposing defects such as poor compatibility, and the security of authorized login authentication.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A web authentication method based on oauth2.0 password service middleware
  • A web authentication method based on oauth2.0 password service middleware

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047] The technical solutions of the present invention will be described in detail below with reference to the accompanying drawings, but the scope of the invention is not limited to the following.

[0048] Such as figure 1 As shown, a web authentication method based on OAUTH2.0 password service middleware, including:

[0049] Step 1, password service middleware application authorization certification;

[0050] Step 2, perform DES encryption for the user information and the smart password key PIN, subsequently sent to the verification server;

[0051] Step 3: Verify the server to receive request information, verify the password service middleware information;

[0052] Step 4, verify the server to verify the decrypted user information and PIN code, log in to the server-side Subject, send the encrypted licensing license credential to the middleware;

[0053] Step 5, after the middleware receives the license certificate, the middleware subject is logged in, and then the authorizatio...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention provides a WEB authentication method based on OAuth2.0 cryptographic service middleware. First, the cryptographic service middleware applies to the authentication server for authorization authentication; the cryptographic service middleware performs DES on the user information and the smart cryptographic key PIN code submitted by the browser. Encrypted, and then sent to the authentication server; after receiving the request, the authentication server verifies the password service middleware information; the authentication server verifies the decrypted user information and PIN code, and after passing through, the server performs Subject login, encrypts the authorization certificate and returns it to the middleware ; After the middleware receives the authorization certificate, the middleware Subject logs in, and then requests to the authorization server; the authorization server verifies the decrypted authorization certificate, and issues an access token to the password service middleware after passing the verification. The invention combines the user password with the intelligent password key to further solve the problem of weak verification security of the single password of the OAuth2.0 protocol, the process is more rigorous, and the security guarantee of the authorization authentication process is strengthened.

Description

Technical field [0001] The present invention relates to a web authentication method based on OAUTH2.0 password service intermediate. Background technique [0002] OAuth (Open Authorization) is an open-authorized network standard that is widely used in the world. The current version is version 2.0. OAUTH2.0 is now widely used in the "Third Party" certification authorization login, which has received attention as the standard protocol of the open platform certification authorization system. OAuth 2.0 protocol is higher, less intersession, fundamentally simplifies the protocol process, and reduces development difficulty. [0003] In cross-domain access resources, different browser's web plug-ins, related issues related to programs, exposure to deficiency, authorize login authentication security, etc. The OAUTH 2.0 protocol is combined with the smart password key to enhance the security in the authorized login process, which reduces the risk of disclosure of server-side user informat...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L9/32H04L29/08
CPCH04L9/3213H04L9/3226H04L63/0435H04L63/0807H04L63/0876H04L67/02H04L67/2871
Inventor 潘俊臣杨旸
Owner 成都三零瑞通移动通信有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap