40 results about "Collision attack" patented technology

The invention discloses a method, a system, a server and terminal equipment for authenticating identities on the basis of block chain networks. The method, the system, the server and the terminal equipment are used for authenticating the identities for nodes in the block chain networks. The method includes receiving login requests with user names; acquiring first block chain account addresses according to preliminarily stored corresponding relations between the user names and the first block chain account addresses; judging whether first transaction of payment from the first block chain account addresses to preset second block chain account addresses is available in block chains or not; determining that the identities of users are successfully authenticated if the first transaction is available in the block chains. The login requests are transmitted by the nodes. The first block chain account addresses are associated with the user names. The method, the system, the server and the terminal equipment have the advantages that transaction information stored in the block chains cannot be tampered and can be traced back and queried, and accordingly the authentication safety and the credibility of authentication procedures can be improved; the users do not need to input passwords during login and do not need to remember the passwords, accordingly, the convenience can be improved, and database collision attack due to the fact that other malicious personnel log in other websites by the aid of stolen user names and passwords can be prevented.

The invention discloses a base collision attack detecting method and system. The method includes the following steps: receiving a network access request of a user and analyzing the network access request to determine an source IP, a target IP, login attribute information and user information; configuring a preset login route and a login times threshold or preset format and a login times threshold of a system default built-in login route; conducting identification to determine whether to conduct login operation according to the target IP, the login attribute information and the preset format of the preset login route or the login route, on yes judgment, recording the source IP, the target IP and user information; recording the times of login that servers of the same target IP receives identical source IP but different user information in the preset time, judging if the times of login reach the login times threshold, on yes judgment, assuming the base collision attack behavior, on no judgment, assuming normal access behavior. The method and system can monitor the base collision attack behavior to improve user information safety and avoid poor result caused by user information leakage.

The invention discloses a WEB link dynamic hiding method capable of effectively preventing network attacks. The method comprises the following steps that firstly, a browser side sends a connecting request to a server side; secondly, the server side verifies whether it is needed to encrypt a responsive URI or not, the URI needing to be encrypted is encrypted for the first time, and the encrypted URI and a script file used for encrypting the browser side are sent to the browser side together; thirdly, after connection is established, the URI requested for revisiting is encrypted for the second time through the scrip file in the browser side, and the URI encrypted for the second time is sent, or the URI is sent directly; fourthly, the server side verifies the URI requested by the browser side again and carries out first-time decryption and second-time decryption after the URI passes the verification, and an error webpage is returned if the URI does not pass the verification or decryption fails. By means of the method, the safety of a WEB site can be improved, and various attacks such as library collision attacks and network crawlers can be defended. The invention further discloses a device applied to the method.

The invention provides a method and a device for detecting a database collision attack. The method comprises the steps of: acquiring source IP addresses and login information of login requests received within a predetermined time; determining a source IP address having high-frequency login behavior among the acquired source IP addresses according to the acquired source IP addresses and login information; and judging whether the login request initiated by the source IP address having high-frequency login behavior within the predetermined time is a database collision attack according to a proportion of passwords with semantic meanings in passwords used by the login request initiated by the source IP address, wherein the passwords with semantic meanings are passwords with the probability that the passwords have semantic meanings exceeding a predetermined probability threshold value. The method and the device provided by the invention improve the precision of database collision attack detection.

The invention relates to a defense method for database dragging and collision attack on a database layer. The method includes the steps that a backstage defense module for enticing attack is allocatedin a database, an SQL request is input, and the backstage defense module conducts judgement according to a feedback value of the SQL request; if an attack condition is satisfied, blockage is carriedout; otherwise, the the access is normal, the request is completed and data is returned back to finish the whole process. According to the method, by means of the backstage defense module for enticingthe attack, during actual operation, the input SQL request is responded, whether or not the current SQL is aggressive can be judged, the aggressive SQL is blocked, and data is returned back to normalaccess. According to the method, by setting a backdoor structure on the database directly, the database dragging and collision behaviors of an attacker can be dug out and found out more proactively,intelligently and efficiently to ensure safety of the database.

An HDFS-based safe storage system belongs to the technical field of cloud storage. Continuous development of network construction leads to explosive growth of data; currently network attack means emerge one after another; based on the above situation, how to store the data efficiently and safely is a problem that needs immediate solution. According to the HDFS-based safe storage system, an SHA256 algorithm is used for replacing CRC32 for data verification, and success rates of collision attacks can be greatly lowered; HDFS takes no measures regarding data safety; as for the issue of network data safety, the invention puts forward a method based on an AES algorithm and an RSA algorithm to ensure data confidentiality, the AES algorithm is used for enciphering the data, the RSA algorithm is used for enciphering secret keys of the AES algorithm, and therefore data safety is improved while enciphering operation does not take too much time. Experiment results show that safe transmission and storage of the data can be realized effectively via the method.

The embodiment of the invention discloses a database collision attack monitoring method. The method comprises the steps of obtaining login information of a user login behavior; calculating a databasecollision attack risk value corresponding to at least one user behavior factor according to the login information of the user login behavior; determining a database collision attack risk value of thecurrent login behavior of the user according to the database collision attack risk value corresponding to the at least one user behavior factor; and positioning a database collision attack risk type of the current login behavior of the user according to the database collision attack risk value of the current login behavior of the user. The embodiment of the invention further discloses a database collision attack monitoring device and system and a computer storage medium.

The invention discloses a weak command detection system, and a realization method and a WEB platform. The method comprises the following steps: acquiring user information; judging whether the acquired user information is encrypted; if the user information is unencrypted, regarding that the detected target has the weak command risk; if the user information is encrypted, judging an encryption way of the user information, and blasting the password of the user according to the encryption way, if the password of the user is successfully blasted by brute force, regarding that the detected target has the weak command risk; if the password of the user cannot be blasted by the brute force, enabling a detection engine module to call a collision attack module to perform the collision attack; regarding that the detected target has the weak command risk under the situation that the attack is successful. By using the method disclosed by the invention, the user can immediately find the weak command risk of the detected target and the brought potential hazard, thereby evading and solving the risk.

The invention discloses a construction method of a strong anti-collision chameleon hash function, which comprises the following steps of S1, inputting a security parameter n, and generating public andprivate key pairs (PK, SK) by a system, the public key PK being capable of specifying a message space M, a random space R and a chameleon hash function range Y; and S2, inputting the public key PK generated by the KGen and a message m Epsilon M, Hash algorithm outputting Hash y Epsilon Y and random r Epsilon R; and S3, inputting a public key PK, and outputting b belongs to {0, 1} through a Hash Epsilon Y of the message m Epsilon M and a random vector r Epsilon R check algorithm, if b = 1, then (y, r) is a valid hash of the message m, otherwise is invalid; and S4, inputting a private key SK, amessage m Epsilon M and a corresponding Hash random pair (y, r), and a new message m' Epsilon M to output a random vector r' satisfying HCheck (PK, m', y, r ') = 1. The invention also discloses a verification method of the strong anti-collision chameleon hash function. The method can resist strong anti-collision attacks and can be well applied to the scene of a high-security chameleon hash function.

The invention discloses a data tamper-proofing method comprising the following steps of after original data information is segmented before sending, hashing the segmented information by using a pre-stored hash function to acquire an original data information verification string; synchronously sending the original data and the original data information verification string when in sending, synchronously receiving the sent data information and original data information verification string when in receiving; after the data information and the original data information verification string are received, segmenting the received data information, and then hashing the segmented information by using the pre-stored hash function to acquire a received data information verification string; and judging whether the received data information verification string is accordant with the original data information verification string by comparison, if yes, determining that the received data information is not tampered, and otherwise, determining that the received data information is tampered. The invention also provides a data tamper-proofing system. According to the method and the system provided by the invention, the difficulty of tampering the data by a third party is greatly increased, a collision attack from the third party with the aid of a rainbow table is effectively prevented, data falsification of a user is prevented, and data transmission security is ensured.

The invention provides a random delay S-box-based high-speed AES encryption circuit capable of defending a collision attack. An AES encryption circuit is a fully-unfolded structure and consists of 10turns of round transformation units; circuit throughput rate is improved through a pipeline technique, and the circuit processing speed is accelerated, wherein a byte substituting unit in a round transformation unit is based on a parallel S-box structure; a random delay is respectively added to an input end and an output end of each S-box, thereby damaging the collision attach detecting conditionand achieving the purpose of defending the collision attack. Compared with the traditional collision attack defensive measure, the circuit in the invention can greatly reduce the circuit area.

The invention relates to a password verification method and system for preventing library collision attack, a middleware and a storage medium. The password verification method comprises the followingsteps of decomposing a user password PW into two mutually associated login random factors, and carrying out password verification on the two login random factors and the user registration informationgenerated by registration in combination with a user identity identifier IDu, wherein the user registration information comprises the user identity identifier IDu and two mutually associated registration random factors decomposed from the user password PW. The basic design idea of the password verification method is that a password inputted by a user is decomposed into two random factors, and thetwo random factors and the server are subjected to password verification, so that the risk that a user uses the same password on different application servers to suffer from library collision attacksis reduced, the trouble that the user uses different passwords to prevent library collision attacks is omitted, and therefore the method is more convenient, practical and safer.

The invention discloses a method for constructing a hash function with a secret key based on a chaotic neural network and an enhanced iterative structure. The method comprises the following steps of: coupling mapping grids to generate a chaotic sequence to fill a plaintext; the chaotic neural network serves as a compression function to process grouped data; the enhanced iterative structure processes each packet data to generate a hash value. The method has the beneficial effects that the capabilities of resisting intermediate meeting attacks, multi-collision attacks, length extension attacks and second primary image attacks aiming at long information of the hash function can be improved, so that the hash function has better collision resistance and mapping uniformity; the method can be applied to the password fields of digital signatures, key generation, hash-based message authentication codes, deterministic random bit generators and the like.

Embodiments of the invention provide a login behavior detection method and apparatus, a storage device and an electronic device. The method comprises the steps of at least obtaining target login data generated when any client logs in any server; by analyzing the target login data, login behavior characteristics of the any client are obtained, and the login behavior characteristics are at least used for representing the relation between all user names and all login passwords in the multiple login processes; a login behavior detection result is determined according to the login behavior characteristics, and the login behavior detection result is used for representing that any client has a blasting attack behavior, a spraying attack behavior, a library collision attack behavior or a weak password login risk behavior. According to the method provided by the embodiment of the invention, the security detection of the login behavior can be realized, and the universality is relatively high.