Unlock instant, AI-driven research and patent intelligence for your innovation.

Single-point certificate authentication system and method based on micro-service

A technology of an authentication system and an authentication method, which is applied in the field of computer security authentication and can solve problems such as inconvenient management of the certificate authentication system

Inactive Publication Date: 2019-12-20
INSPUR SUZHOU INTELLIGENT TECH CO LTD
View PDF5 Cites 12 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] This application provides a microservice-based single-point certificate authentication system and method to solve the problem that the certificate authentication system in the prior art is not easy to manage

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Single-point certificate authentication system and method based on micro-service
  • Single-point certificate authentication system and method based on micro-service
  • Single-point certificate authentication system and method based on micro-service

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0048] see figure 2 , figure 2 It is a schematic flow structure diagram of a microservice-based single-point certificate authentication system provided by the embodiment of this application. Depend on figure 2 It can be seen that the single-point certificate authentication system in this embodiment mainly includes: a certificate management module and a token management module, and both the certificate management module and the token management module provide a restful API interface for external communication. One end of the system is respectively connected to multiple clients, and the other end of the system is respectively connected to multiple server ends. Any client matches any server. Among them, the certificate management module is used to generate certificates, download certificates, authenticate certificates, delete certificates, and store files related to certificate authentication according to external requests obtained; the token management module is used to ge...

Embodiment 2

[0084] exist figure 2 and image 3 On the basis of the illustrated embodiment see Figure 4 , Figure 4It is a schematic flowchart of a microservice-based single-point certificate authentication method provided by the embodiment of the present application. Depend on Figure 4 It can be seen that the microservice-based single-point certificate authentication method in this embodiment mainly includes the following process:

[0085] S1: Obtain a certificate generation request from the client.

[0086] S2: Generate a corresponding certificate according to the certificate generation request, send the certificate to the client, and store the certificate.

[0087] S3: When the user accesses the server through the client, the server judges whether there is token information in the certificate generation request.

[0088] If there is token information in the certificate generation request, perform step S4: the server invokes the token verification interface of the single-point a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a single-point certificate authentication system and method based on micro-service, and the system comprises a certificate management module and a token management module, andthe certificate management module and the token management module both provide resful API interfaces. The certificate management module is used for generating a certificate, downloading the certificate, authenticating the certificate, deleting the certificate and storing a certificate file; and the token management module is used for generating a token according to the certificate information, authenticating the token and storing the token. The method comprises the following steps: acquiring a certificate generation request from a client; generating a corresponding certificate according to therequest and sending the certificate to the client for storage; judging whether token information exists in the certificate generation request or not; if so, authenticating the token information; otherwise, authenticating the certificate, generating encrypted token information after the certificate passes the authentication, returning the encrypted token information to the client, storing the encrypted token information, and accessing the server again by the client carrying the encrypted token information; and authentizing the encrypted token information. According to the invention, the management efficiency of the system can be improved, and the security of certificate authentication is improved.

Description

technical field [0001] This application relates to the technical field of computer security authentication, in particular to a microservice-based single-point certificate authentication system and method. Background technique [0002] The certificate authentication of business system is an important issue in the technical field of computer security authentication. For example, certificate authentication is usually used in web application systems to ensure the security of system operation. [0003] The currently commonly used certificate authentication system is usually: each set of business systems deploys a set of certificate servers for digital certificate management, and the digital certificate authentication process of each business system is completed inside the business system, which is a one-to-one authentication process . Specifically, the current certificate authentication system includes three parts: multiple clients, multiple certificate servers, and multiple se...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
CPCH04L63/0807H04L63/0815H04L63/0823
Inventor 霍文徐峥李俊昌
Owner INSPUR SUZHOU INTELLIGENT TECH CO LTD