[go: up one dir, main page]

CN109005154A - One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method - Google Patents

One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method Download PDF

Info

Publication number
CN109005154A
CN109005154A CN201810705255.6A CN201810705255A CN109005154A CN 109005154 A CN109005154 A CN 109005154A CN 201810705255 A CN201810705255 A CN 201810705255A CN 109005154 A CN109005154 A CN 109005154A
Authority
CN
China
Prior art keywords
aaa
network access
access authentication
decryption method
3des algorithm
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810705255.6A
Other languages
Chinese (zh)
Inventor
刘磊
李�荣
张新岩
田苗苗
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
GANSU WANWEI INFORMATION TECHNOLOGY CO LTD
Original Assignee
GANSU WANWEI INFORMATION TECHNOLOGY CO LTD
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by GANSU WANWEI INFORMATION TECHNOLOGY CO LTD filed Critical GANSU WANWEI INFORMATION TECHNOLOGY CO LTD
Priority to CN201810705255.6A priority Critical patent/CN109005154A/en
Publication of CN109005154A publication Critical patent/CN109005154A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0892Network architectures or network communication protocols for network security for authentication of entities by using authentication-authorization-accounting [AAA] servers or protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0618Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
    • H04L9/0625Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Computer And Data Communications (AREA)

Abstract

The present invention relates to computer communication technology fields, especially a kind of to be based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method.The present invention is intended to provide a kind of algorithm security, decryption is accurate, error free, can run on AIX system, the method completely docked with aaa authentication module.Safety in utilization is improved by way of encrypting and credit accesses.3DES is the encryption standard of national standard association approval.By various targeted attacks since open, long-term test experienced.3DES algorithm for encryption and AIX operating system have been carried out credit access control by the present invention.Increase Web vector graphic safety.Security performance reaches 98% or more during actual test this method is run, and accuracy reaches 100%.

Description

One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method
Technical field
The present invention relates to computer communication technology fields, especially a kind of to be recognized based on 3DES algorithm telecommunications broadband AAA online Demonstrate,prove decryption method.
Background technique
Demand of the development of computer communication network to Information Security is growing, and many sensitive and confidential information are all It is required that there is cryptoguard.But campus network frequency of use is high, and so many people all knows password after a period of use, does not modify close Code just will increase Network Security Vulnerabilities, but frequently replacement password increases management and docking difficulty again.
Summary of the invention
The present invention solves prior art deficiency and provides one kind based on 3DES algorithm telecommunications broadband AAA network access authentication decryption side Method.In order to solve the secrecy of the data communication between campus broadband access network client and aaa server, effectively solved using 3DES encryption Certainly problem.
The technical solution adopted by the present invention to solve the technical problems are as follows:
One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method, includes the following steps:
A, online client in campus is logged in by username and password using mobile phone or computer;
B, online client in campus is connect by portal server with aaa authentication server, portal server to user name, Password and campus online client identification code carry out Java code verification encryption, it is sent to aaa authentication server;
C, aaa authentication server carries out network access authentication after just receiving the data deciphering of encryption, returns to network access authentication result.
Java code verification encryption or decryption method use 3DES algorithm in the step B and C.
Aaa authentication server is AIX operating system in the step C, is awarded by campus online client identification code setting Believe equipment.
The present invention is intended to provide a kind of algorithm security, decryption is accurate, error free, can run on AIX system, with AAA The method that authentication module completely docks.Safety in utilization is improved by way of encrypting and credit accesses.3DES is national standard Learn the encryption standard of approval.By various targeted attacks since open, long-term test experienced.The present invention will 3DES algorithm for encryption and AIX operating system have carried out credit access control.Increase Web vector graphic safety.The actual test party Security performance reaches 98% or more during method is run, and accuracy reaches 100%.
Detailed description of the invention
Fig. 1 is the certification decryption flow chart of invention.
Specific embodiment
One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method, includes the following steps:
A, online client in campus is logged in by username and password using mobile phone or computer;
B, online client in campus is connect by portal server with aaa authentication server, portal server to user name, Password and campus online client identification code carry out Java code verification encryption, it is sent to aaa authentication server;
C, aaa authentication server carries out network access authentication after just receiving the data deciphering of encryption, returns to network access authentication result.
Java code verification encryption or decryption method use 3DES algorithm in the step B and C.
Aaa authentication server is AIX operating system in the step C, is awarded by campus online client identification code setting Believe equipment.
Using effect explanation:
1, decipherment algorithm uses 3DES, and the encrypted code that can be realized with Java code is error free to be matched;
2, it is realized, can be realized with the AIX platform intergration of aaa authentication system completely compatible using C++ code;
3, security performance reaches 98% or more during this method operation, and accuracy reaches 100%;
Noun explanation:
AAA (verifying, authorization and accounting): AAA is the server program for being capable of handling user access request, provides verifying Authorization and account service, main purpose are management customer access network servers, provide service to the user with access right.
AIX:AIX is a set of class UNIX operating system that IBM is developed based on AT&T Unix System V, operates in IBM On the minicomputer hardware system of proprietary Power family chip design.

Claims (3)

1. one kind is based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method, it is characterised in that include the following steps:
A, online client in campus is logged in by username and password using mobile phone or computer;
B, online client in campus is connect by portal server with aaa authentication server, portal server to user name, Password and campus online client identification code carry out Java code verification encryption, it is sent to aaa authentication server;
C, aaa authentication server carries out network access authentication after just receiving the data deciphering of encryption, returns to network access authentication result.
2. a kind of according to claim 1 be based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method, it is characterised in that Java code verification encryption or decryption method use 3DES algorithm in the step B and C.
3. a kind of according to claim 1 be based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method, it is characterised in that Aaa authentication server is AIX operating system in the step C, and credit equipment is arranged by campus online client identification code.
CN201810705255.6A 2018-07-01 2018-07-01 One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method Pending CN109005154A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810705255.6A CN109005154A (en) 2018-07-01 2018-07-01 One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810705255.6A CN109005154A (en) 2018-07-01 2018-07-01 One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method

Publications (1)

Publication Number Publication Date
CN109005154A true CN109005154A (en) 2018-12-14

Family

ID=64600521

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810705255.6A Pending CN109005154A (en) 2018-07-01 2018-07-01 One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method

Country Status (1)

Country Link
CN (1) CN109005154A (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1416072A (en) * 2002-07-31 2003-05-07 华为技术有限公司 Method for realizing portal authentication based on protocols of authentication, charging and authorization
US20100169648A1 (en) * 2008-12-26 2010-07-01 Kabushiki Kaisha Toshiba Communication terminal apparatus and information communication method
CN102307099A (en) * 2011-09-06 2012-01-04 北京星网锐捷网络技术有限公司 Authentication method and system as well as authentication server
CN102571344A (en) * 2010-12-08 2012-07-11 中国电信股份有限公司 Single point authentication method and system thereof
CN105282740A (en) * 2014-06-17 2016-01-27 中国移动通信集团公司 Portal authentication method, mobile terminal, authentication server and Portal authentication system
CN106603491A (en) * 2016-11-10 2017-04-26 上海斐讯数据通信技术有限公司 Portal authentication method based on https protocol, and router

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1416072A (en) * 2002-07-31 2003-05-07 华为技术有限公司 Method for realizing portal authentication based on protocols of authentication, charging and authorization
US20100169648A1 (en) * 2008-12-26 2010-07-01 Kabushiki Kaisha Toshiba Communication terminal apparatus and information communication method
CN102571344A (en) * 2010-12-08 2012-07-11 中国电信股份有限公司 Single point authentication method and system thereof
CN102307099A (en) * 2011-09-06 2012-01-04 北京星网锐捷网络技术有限公司 Authentication method and system as well as authentication server
CN105282740A (en) * 2014-06-17 2016-01-27 中国移动通信集团公司 Portal authentication method, mobile terminal, authentication server and Portal authentication system
CN106603491A (en) * 2016-11-10 2017-04-26 上海斐讯数据通信技术有限公司 Portal authentication method based on https protocol, and router

Similar Documents

Publication Publication Date Title
CN110784491B (en) Internet of things safety management system
CN114553568B (en) Resource access control method based on zero-trust single-package authentication and authorization
US7373509B2 (en) Multi-authentication for a computing device connecting to a network
US8724819B2 (en) Credential provisioning
RU2434352C2 (en) Reliable authentication method and device
US8438631B1 (en) Security enclave device to extend a virtual secure processing environment to a client device
US7155616B1 (en) Computer network comprising network authentication facilities implemented in a disk drive
WO2015192670A1 (en) User identity authentication method, terminal and service terminal
CN111512608B (en) Trusted execution environment based authentication protocol
WO2019075234A1 (en) Attestation with embedded encryption keys
CN109257328B (en) A method and device for safe interaction of on-site operation and maintenance data
CN102065148A (en) Memory system access authorizing method based on communication network
CN108989290A (en) A kind of control method and control device for realizing server network access limitation in outer net
CN108683498A (en) A kind of cloud terminal management-control method based on changeable key national secret algorithm
CN106936588A (en) A kind of trustship method, the apparatus and system of hardware controls lock
KR20120080283A (en) Otp certification device
CN102468962A (en) Personal identity verification method using personal password device and personal password device
KR20180087543A (en) Key management method and fido authenticator software authenticator
CN104901967A (en) Registration method for trusted device
CN102594564B (en) Equipment for traffic guidance information security management
US20220182229A1 (en) Protected protocol for industrial control systems that fits large organizations
CN117118759B (en) Method for reliable use of user control server terminal key
CN109005154A (en) One kind being based on 3DES algorithm telecommunications broadband AAA network access authentication decryption method
US11972419B2 (en) Method for authenticating payment data, corresponding devices and programs
KR20170109126A (en) Encryption system providing user cognition-based encryption protocol and method for processing on-line settlement, security apparatus and transaction approval server using thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20181214

RJ01 Rejection of invention patent application after publication