[go: up one dir, main page]

CN104320473A - Far-end browser management system log-in method - Google Patents

Far-end browser management system log-in method Download PDF

Info

Publication number
CN104320473A
CN104320473A CN201410598641.1A CN201410598641A CN104320473A CN 104320473 A CN104320473 A CN 104320473A CN 201410598641 A CN201410598641 A CN 201410598641A CN 104320473 A CN104320473 A CN 104320473A
Authority
CN
China
Prior art keywords
management system
plug
far
usbkey
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201410598641.1A
Other languages
Chinese (zh)
Inventor
李保来
孙振
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Chaoyue Numerical Control Electronics Co Ltd
Original Assignee
Shandong Chaoyue Numerical Control Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Chaoyue Numerical Control Electronics Co Ltd filed Critical Shandong Chaoyue Numerical Control Electronics Co Ltd
Priority to CN201410598641.1A priority Critical patent/CN104320473A/en
Publication of CN104320473A publication Critical patent/CN104320473A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • H04L67/025Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/305Authentication, i.e. establishing the identity or authorisation of security principals by remotely controlling device operation

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)

Abstract

The invention provides a far-end browser management system log-in method. Based on a USBKey technique and a Firebreath plug-in technique, a management system of a far-end domestic server can be logged in under a domestic operation system by means of the method. The method includes the steps that (1) initialization is carried out after a computer is started, and a safe and credible plug-in is downloaded and installed locally; (2) a USBKey device is inserted locally, the safe and credible plug-in is operated, the USBKey device is detected, if detection is successful, the USBKey device is connected and otherwise, it is prompted that no device is detected; (3) after the device is successfully connected, the management system of the far-end server is logged in, and the plug-in is executed to verify a user password function; (4) a user password is input according to notes, the management system of the server is successfully logged in if verification is passed, and otherwise, the management system of the far-end server cannot be logged in.

Description

A kind of remote browser management system login method
Technical field
The present invention relates to Computer Applied Technology field, specifically a kind of remote browser management system login method.
Background technology
Along with the development of computer technology, the Internet Transmission of some key messages faces the risk be illegally accessed, secrets disclosed by net event also frequently occurs, and particularly illegal game server carries out the safety of illegally checking the key message that threaten every profession and trade with duplication technology of data.Current, the server of domestic processor is applied to domestic key sector gradually, and adapt to production domesticization trend, the secure and trusted plug-in part technology based on domestic operating system develops rapidly.
USB Key is a kind of hardware device of USB interface.Its built-in single-chip microcomputer or intelligent card chip, has certain memory space, can store private key and the digital certificate of user, and the public key algorithm utilizing USB Key built-in realizes the certification to user identity.Because private key for user is kept in coded lock, make in theory all cannot read in any way, therefore ensure that the fail safe of user authentication.
FireBreath aims to provide the browser plug-in architectural framework of a cross-platform support, towards:
1, NPAPI browser (windows, mac, and linux): Gecko/Firefox, Google Chrome, Apple Safari;
2, ActiveX framework: Microsoft Internet Explorer.
Safety insert technology of the present invention carries out password authentication based on USBKey equipment, realize the password authentication before user logs in, password code certification is passed through user afterwards and is just allowed to access far-end server system, thus the control achieved for illegal logon server, consider the cross-platform of plug-in unit and browser-cross characteristic, we adopt Firebreath plug-in part technology to develop plug-in unit simultaneously.Because domestic server is in Rapid development stage, also there is the immature aspect of technology, so we pay particular attention to the exploitation of secure and trusted technology in the process used, so the secure and trusted browser plug-in technology controlling user login services device becomes a kind of trend.
Summary of the invention
The object of this invention is to provide a kind of remote browser management system login method.
The object of the invention is to realize in the following manner, based on domestic operating system server, safety is credible, and plug-in part technology specific implementation method is as follows:
I. opening initialization, this locality downloads and installs plug-in unit;
Ii. locally insert USBKey equipment, security of operation is credible plug-in unit, detect USBKey equipment, detects successfully then connection USBKey equipment, otherwise point out and equipment do not detected;
Iii. after connection device success, log in the domestic server management system of far-end, perform plug-in unit authentication of users password function;
Iv. according to prompting input user password, be verified then successful log server management system, otherwise far-end server management system cannot be logged in.
The invention has the beneficial effects as follows: total system is formed mainly based on USBKey technology and Firebreath plug-in part technology, log in the management system of the domestic server of far-end under carrying out domestic operating system, achieve a kind of safe and reliable management system of remote browser being applied to domestic operating system and log in technology.
accompanying drawing explanation
Fig. 1 is plug-in unit password authentication flow chart.
Embodiment
With reference to Figure of description, method of the present invention is described in detail below.
Main purpose of the present invention improves the secure and trusted performance of domestic server system, based on domestic server platform, achieves the secure and trusted technology that a kind of domestic frame server management system logs in.This domestic server product structure as shown in Figure 1.Based on domestic acceptance of the bid kylin operating system, adopt encryption USBKey equipment, exploitation relevant device drives, and adopts firebreath plug-in part technology to carry out plug-in unit realization, and tests under red fox browser and pass through.
This technology platform processor adopts domestic processor FT1000A, operating frequency >=900MHz.Implementation method of the present invention is as follows:
I. opening initialization, insert USBKey equipment, open any browser, logs in remote management system;
Ii. first monitor this locality and whether safety insert is installed, otherwise download plug-in installing;
Iii. run plug-in unit, detect USBKey equipment, after finding equipment, connection device, then prompting input user password;
Iv. verify that password is correct, then normally log in, otherwise prompting continues input validation password, Verification System flow process.
Except the technical characteristic described in specification, be the known technology of those skilled in the art.

Claims (1)

1. a remote browser management system login method, is characterized in that, based on USBKey technology and Firebreath plug-in part technology, log in the management system of the domestic server of far-end under carrying out domestic operating system, step is as follows:
1) opening initialization, this locality downloads and installs secure and trusted plug-in unit;
2) locally insert USBKey equipment, security of operation is credible plug-in unit, detect USBKey equipment, detects successfully then connection USBKey equipment, otherwise point out and equipment do not detected;
3) after connection device success, log in far-end server management system, perform plug-in unit authentication of users password function;
4) according to prompting input user password, be verified then successful log server management system, otherwise far-end server management system cannot be logged in.
CN201410598641.1A 2014-10-31 2014-10-31 Far-end browser management system log-in method Pending CN104320473A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410598641.1A CN104320473A (en) 2014-10-31 2014-10-31 Far-end browser management system log-in method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410598641.1A CN104320473A (en) 2014-10-31 2014-10-31 Far-end browser management system log-in method

Publications (1)

Publication Number Publication Date
CN104320473A true CN104320473A (en) 2015-01-28

Family

ID=52375641

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410598641.1A Pending CN104320473A (en) 2014-10-31 2014-10-31 Far-end browser management system log-in method

Country Status (1)

Country Link
CN (1) CN104320473A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104735082A (en) * 2015-04-10 2015-06-24 山东中孚信息产业股份有限公司 Login authentication method based on linux system
CN104796404A (en) * 2015-03-17 2015-07-22 浪潮集团有限公司 Domestic server web login method based on USB device binding

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1556449A (en) * 2004-01-08 2004-12-22 中国工商银行 Device and method for proceeding encryption and identification of network bank data
CN103064886A (en) * 2012-12-07 2013-04-24 百度在线网络技术(北京)有限公司 Method for supporting multiple browsers and plug-in
US20130124421A1 (en) * 2011-11-04 2013-05-16 Alibaba Group Holding Limited Secure authentication method and system for online transactions
CN103685277A (en) * 2013-12-17 2014-03-26 南京大学 Safety protection system and method for webpage access through browser
CN104021332A (en) * 2014-06-23 2014-09-03 浪潮电子信息产业股份有限公司 Method for performing identity authentication and file encryption and decryption based on fingerprint UsbKey

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1556449A (en) * 2004-01-08 2004-12-22 中国工商银行 Device and method for proceeding encryption and identification of network bank data
US20130124421A1 (en) * 2011-11-04 2013-05-16 Alibaba Group Holding Limited Secure authentication method and system for online transactions
CN103064886A (en) * 2012-12-07 2013-04-24 百度在线网络技术(北京)有限公司 Method for supporting multiple browsers and plug-in
CN103685277A (en) * 2013-12-17 2014-03-26 南京大学 Safety protection system and method for webpage access through browser
CN104021332A (en) * 2014-06-23 2014-09-03 浪潮电子信息产业股份有限公司 Method for performing identity authentication and file encryption and decryption based on fingerprint UsbKey

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104796404A (en) * 2015-03-17 2015-07-22 浪潮集团有限公司 Domestic server web login method based on USB device binding
CN104735082A (en) * 2015-04-10 2015-06-24 山东中孚信息产业股份有限公司 Login authentication method based on linux system

Similar Documents

Publication Publication Date Title
US10635809B2 (en) Authenticating application legitimacy
EP3840329B1 (en) Detecting and preventing man-in-the-middle attacks on an encrypted connection
CN101662364B (en) Method and system for safe login
US8584225B1 (en) Push channel authentication for mobile computing devices
KR101569753B1 (en) System, Method and Apparatus for Secure Login
CN104010044A (en) Application limitation installing method, manager and terminal based on trusted execution environment technology
CN102855274A (en) Method and device for detecting suspicious progresses
CN112084472B (en) Real-time dynamic authentication method for multi-user secure storage
CN103473498B (en) Application security verification method and terminal
CN106789855A (en) The method and device of user login validation
CN105243314A (en) USB-key based security system and usage method therefor
CN104023032A (en) Application limited unloading method based on dependable execution environment technology, server and terminal
CN104837159B (en) Android platform OAuth agreements misapply safety detection method
CN104182695A (en) System and methods for ensuring confidentiality of information used during authentication and authorization operations
CN106973054B (en) Trusted platform based operating system login authentication method and system
CN105404812A (en) Safety certification method and device of smart POS (Point Of Sale) machine
CN103902880A (en) Windows system two-factor authentication method based on challenge responding type dynamic passwords
CN104735085A (en) Terminal two-factor secure login protection method
CN110135149A (en) A kind of method and relevant apparatus of application installation
CN104320473A (en) Far-end browser management system log-in method
KR101436404B1 (en) User authenticating method and apparatus
CN107770150B (en) Terminal protection method and device
CN109657454A (en) A kind of Android application trust authentication method based on TF crypto module
CN103455358A (en) Upgrading method of electric energy meter program
CN113132310A (en) Safe access method and system for power distribution terminal and power distribution master station

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20150128

WD01 Invention patent application deemed withdrawn after publication