Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Bidirectional authentication method and device

A technology of two-way authentication and authentication request, applied in the field of network security, can solve the problems of server performance degradation, server attack, frequent access by malicious clients, etc., and achieve the effect of improving communication security.

Active Publication Date: 2021-11-02
中电金信软件有限公司
View PDF4 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, in this authentication method, the client uses the Https protocol to perform one-way authentication for secure access to the server. Since the server does not authenticate the client, some malicious clients will frequently access the server and launch malicious web attacks on the server, reducing The security of the server is compromised, and the performance of the server is also degraded.

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Bidirectional authentication method and device
  • Bidirectional authentication method and device
  • Bidirectional authentication method and device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0055] In order to make the purpose, technical solutions and advantages of the embodiments of the present application clearer, the technical solutions in the embodiments of the present application will be clearly and completely described below in conjunction with the drawings in the embodiments of the present application. Obviously, the described embodiments are only It is a part of the embodiments of this application, not all of them. The components of the embodiments of the application generally described and illustrated in the figures herein may be arranged and designed in a variety of different configurations. Accordingly, the following detailed description of the embodiments of the application provided in the accompanying drawings is not intended to limit the scope of the claimed application, but merely represents selected embodiments of the application. Based on the embodiments of the present application, all other embodiments obtained by those skilled in the art without...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a bidirectional authentication method and device. The method comprises the steps: receiving a server certificate, a second random number, a target password suite and a server public key which are sent by a server in response to an authentication request, obtaining data in the server certificate if the server certificate is checked to be signed and issued by a preset signing and issuing mechanism; and if the data are consistent with the data provided by the server, generating a third random number, and generating a first main communication password through a preset key exchange algorithm; encrypting the third random number by using the server public key to obtain an encrypted third random number, and generating a client communication ciphertext by using the first main communication password and the target password suite; sending the encrypted third random number, the client certificate and the client communication ciphertext to the server; and after a server-side communication ciphertext returned by the server side is received, the server-side communication ciphertext is decrypted according to the first main communication password and the target password suite, and if data carried in the server-side communication ciphertext is not tampered, the bidirectional authentication is confirmed to pass.

Description

technical field [0001] This application relates to the field of network security, in particular, to a two-way authentication method and device. Background technique [0002] Nginx (enginex) is a high-performance, lightweight HTTP and reverse proxy web server. It also provides IMAP / POP3 / SMTP services and is issued under the BSD-like protocol. It is characterized by less memory and strong concurrency, and uses OpenSSL to generate server-side certificates. [0003] When the client accesses Nginx, it sends an authentication request to Nginx, and Nginx transmits the server certificate to the client. After verifying the server certificate, the client connects to Nginx and communicates with Nginx. However, in this authentication method, the client uses the Https protocol to perform one-way authentication for secure access to the server. Since the server does not authenticate the client, some malicious clients will frequently access the server and launch malicious web attacks on th...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L29/08
CPCH04L63/0869H04L63/0823H04L67/02
Inventor 李治
Owner 中电金信软件有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com