[go: up one dir, main page]

CN111859369A - A system and method for automatic unified management of passwords - Google Patents

A system and method for automatic unified management of passwords Download PDF

Info

Publication number
CN111859369A
CN111859369A CN202010741674.2A CN202010741674A CN111859369A CN 111859369 A CN111859369 A CN 111859369A CN 202010741674 A CN202010741674 A CN 202010741674A CN 111859369 A CN111859369 A CN 111859369A
Authority
CN
China
Prior art keywords
module
password
passwords
control module
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010741674.2A
Other languages
Chinese (zh)
Inventor
姜昱鹏
齐光鹏
徐士强
陈初兴
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Inspur Cloud Information Technology Co Ltd
Original Assignee
Inspur Cloud Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Inspur Cloud Information Technology Co Ltd filed Critical Inspur Cloud Information Technology Co Ltd
Priority to CN202010741674.2A priority Critical patent/CN111859369A/en
Publication of CN111859369A publication Critical patent/CN111859369A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • G06F21/46Structures or tools for the administration of authentication by designing passwords or checking the strength of passwords
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/06Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
    • H04L9/0643Hash functions, e.g. MD5, SHA, HMAC or f9 MAC

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Power Engineering (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)

Abstract

本发明提供一种密码自动化统一管理的系统及方法,属于python自动化脚本与加密算法技术领域,本发明包含五个模块:主控模块、密码生成模块、密码规则制约模块、数据备份与迁移模块、数据存储模块。使用python自动化脚本开发,基于json格式进行存储管理,通过命令行的方式操作账号密码存储、查询、删除和修改等多种功能;通过MD5加盐加密算法生成密码,同时也支持用户密码自定义;使用pdf文件为载体,通过对其加密/解密的方式,对数据进行备份迁移。这种应用为用户提供了方便、透明的统一密码管理,保证了密码的安全性、唯一性。

Figure 202010741674

The invention provides a system and method for automated unified management of passwords, belonging to the technical field of python automation scripts and encryption algorithms. The invention includes five modules: a main control module, a password generation module, a password rule control module, a data backup and migration module, Data storage module. Using python automated script development, storage management based on json format, operating account password storage, query, deletion and modification and other functions through the command line; passwords are generated through MD5 salt encryption algorithm, and user password customization is also supported; Using the pdf file as the carrier, the data is backed up and migrated by encrypting/decrypting it. This application provides users with convenient and transparent unified password management, and ensures the security and uniqueness of passwords.

Figure 202010741674

Description

一种密码自动化统一管理的系统及方法A system and method for automatic unified management of passwords

技术领域technical field

本发明涉及python自动化脚本与加密算法技术,尤其涉及一种密码自动化统一管理的系统及方法。The invention relates to python automation script and encryption algorithm technology, in particular to a system and method for password automation and unified management.

背景技术Background technique

在互联网发达的当今世界,每个人都会涉及到许多的账号密码信息,邮箱账户、网站账户、数据库账户等等,尤其是互联网行业,使用到的账号密码数量非常繁多,这同时也导致了信息难以管理,记录查询耗时耗力等问题;同时也存在多个账号共用同一密码的现象,如果这些网站中任何一个有安全漏洞,其他的账号就会处于危险状态。目前也有许多软件可以进行此类信息的管理,但也只是单纯的记录管理,而密码内容依靠人为编造,无法稳定维持密码较高的安全强度。只靠人为思考,难以想出数量繁多,同时又具有唯一性、安全性的密码,这时就需要一种结合管理与密码加密等多种特性于一体的应用。In today's world where the Internet is developed, everyone will be involved in a lot of account and password information, such as email accounts, website accounts, database accounts, etc., especially in the Internet industry, the number of account passwords used is very large, which also leads to information difficulties. Management, record and query are time-consuming and labor-intensive; at the same time, there is also the phenomenon that multiple accounts share the same password. If any one of these websites has a security hole, other accounts will be in a dangerous state. At present, there are many softwares that can manage such information, but they are only simple record management, and the content of passwords depends on artificial fabrication, which cannot stably maintain the high security strength of passwords. It is difficult to come up with a large number of passwords that are unique and secure only by human thinking. At this time, an application that combines management and password encryption and other characteristics is required.

发明内容SUMMARY OF THE INVENTION

本发明提供了一种密码自动化统一管理的系统,主要解决两类问题:一是通过脚本自动化,统一管理多类账户密码,并允许用户自定义管理且安全的进行数据迁移;二是通过加密算法自动生成安全性更高的强密码,保证不同账号密码的安全性与唯一性。The invention provides a system for automatic and unified management of passwords, which mainly solves two types of problems: one is to manage multiple account passwords in a unified manner through script automation, and allows users to customize management and safely migrate data; the other is to use encryption algorithms Automatically generate stronger passwords with higher security to ensure the security and uniqueness of different account passwords.

本发明的技术方案是:The technical scheme of the present invention is:

一种密码自动化统一管理的系统,使用python自动化脚本开发,基于json格式进行存储管理,通过命令行的方式操作账号密码存储、查询、删除和修改等多种功能;通过MD5加盐加密算法生成密码,同时也支持用户密码自定义;使用pdf文件为载体,通过对其加密/解密的方式,对数据进行备份迁移。这种应用为用户提供了方便、透明的统一密码管理,保证了密码的安全性、唯一性。A system for automated and unified management of passwords, developed with python automated scripts, based on json format for storage management, and operates multiple functions such as account password storage, query, deletion, and modification through command lines; passwords are generated through MD5 salt encryption algorithm , and also supports user password customization; using the pdf file as the carrier, the data is backed up and migrated by encrypting/decrypting it. This application provides users with convenient and transparent unified password management, and ensures the security and uniqueness of passwords.

共包含五个模块:主控模块、密码生成模块、密码规则制约模块、数据存储模块、数据备份与迁移模块;其中It consists of five modules: main control module, password generation module, password rule control module, data storage module, data backup and migration module;

主控模块:处理终端的命令输入与核心功能,控制整体功能调度;Main control module: process the command input and core functions of the terminal, and control the overall function scheduling;

密码生成模块:通过MD5加盐加密算法生成强密码;Password generation module: generate strong passwords through MD5 salt encryption algorithm;

密码规则制约模块:接入制约脚本,二次封装密码生成模块输出的密码值;Password rule control module: access the control script, and encapsulate the password value output by the password generation module twice;

数据备份与迁移模块:使用pdf加密解密技术迁移数据;Data backup and migration module: use pdf encryption and decryption technology to migrate data;

数据存储模块:用于存储数据。Data storage module: used to store data.

进一步的,further,

所述主控模块,又包括命令控制模块和操作集模块;The main control module further includes a command control module and an operation set module;

命令控制模块负责接收系统终端命令参数,识别并分发命令映射到操作集模块;The command control module is responsible for receiving system terminal command parameters, identifying and distributing commands mapped to the operation set module;

操作集模块包含所有功能函数,同时与密码生成模块和数据存储模块交互。根据命令控制模块传来的不同映射值,响应与之对应的功能操作,主要功能包括查看所有描述值(key)、根据描述值取对应的账号(user_name)和密码(password)、自定义存入密码、使用MD5加盐加密算法存入密码、修改描述值或账号或密码、删除指定数据。The operation set module contains all functional functions and interacts with the password generation module and the data storage module at the same time. According to the different mapping values sent from the command control module, respond to the corresponding functional operations. The main functions include viewing all description values (key), obtaining the corresponding account (user_name) and password (password) according to the description values, and customizing the storage. Password, use the MD5 salt encryption algorithm to store the password, modify the description value or account or password, delete the specified data.

当用户根据描述值取对应账号密码时,主控模块在终端中显示信息的同时,会将密码输出到系统剪切板,用户直接粘贴使用即可。When the user selects the corresponding account password according to the description value, the main control module will output the password to the system clipboard while displaying the information in the terminal, and the user can paste it directly.

进一步的,further,

所述密码生成模块包括:The password generation module includes:

使用MD5加盐加密算法生成的强密码,确保密码具有安全性和唯一性;Use strong passwords generated by the MD5 salt encryption algorithm to ensure the security and uniqueness of passwords;

可对接密码规则制约模块,丰富密码格式。It can be connected to the password rule control module to enrich password formats.

进一步的,further,

所述密码规则制约模块为可选模块,包括:The password rule restriction module is an optional module, including:

用于对密码生成模块输出的密码进行二次封装;It is used for secondary encapsulation of the password output by the password generation module;

该模块的开启可通过开关自由控制;The opening of the module can be freely controlled by the switch;

用户可通过接入自定义的脚本,定制不同的制约规则。Users can customize different restriction rules by accessing customized scripts.

再进一步的,Going further,

密码规则制约模块内设控制开关,默认情况下为关闭状态,即不进行密码规则制约;输入对应的命令行参数即可通过主控模块打开密码规则制约模块,为密码生成模块输出的密码进行规则制约。The password rule control module has a built-in control switch, which is off by default, that is, the password rule control is not performed; input the corresponding command line parameters to open the password rule control module through the main control module, and conduct rules for the password output by the password generation module. Constraints.

进一步的,further,

所述数据备份与迁移模块,包括:The data backup and migration module includes:

只对数据存储模块进行操作,由命令单独控制,不依赖主模块;Only operate on the data storage module, which is controlled by the command independently, and does not depend on the main module;

将json文件转换成pdf文件,便于不同PC端或移动端的查阅;Convert json files to pdf files for easy viewing on different PC or mobile terminals;

通过对pdf文件使用加密解密技术,加强数据迁移的安全性。Enhance the security of data migration by using encryption and decryption technology for pdf files.

进一步的,further,

所述数据存储模块,当数据量小的时候,使用json文件存储于本地;以键值对的格式进行存储,描述信息作为key值,用户名(user_name)和密码(password)以集合的形式作为value值;默认情况下,密码字段为非空值,必须赋值,用户名字段若不赋值则默认为NULL。The data storage module, when the amount of data is small, uses a json file to store it locally; it is stored in the format of key-value pairs, the description information is used as the key value, and the user name (user_name) and password (password) are in the form of a set as value value; by default, the password field is a non-null value and must be assigned a value. If the username field is not assigned a value, it defaults to NULL.

此外,本发明还提供了一种密码自动化统一管理方法,In addition, the present invention also provides a password automatic unified management method,

工作步骤如下:The working steps are as follows:

步骤一:系统终端中输入相关命令,主控模块的命令控制模块接收命令参数,识别判断并映射到操作集模块中的具体功能函数;Step 1: input relevant commands in the system terminal, the command control module of the main control module receives the command parameters, identifies, judges and maps to the specific function functions in the operation set module;

步骤二:主控模块的操作集模块进行指定的功能响应,对接数据存储模块和密码生成模块;Step 2: the operation set module of the main control module responds to the specified function, and connects the data storage module and the password generation module;

步骤三:操作集模块的所有功能在响应前,都会先判断同目录中是否存在json文件,不存在则新建,存在则继续读写;Step 3: Before responding to all functions of the operation set module, it will first determine whether there is a json file in the same directory. If it does not exist, create a new one, and if it exists, continue to read and write;

步骤四:针对操作集模块中的存入功能,若用户不需要自定义密码,则会调用密码生成模块,自动生成经过MD5加盐加密算法生成的强密码;Step 4: For the storage function in the operation set module, if the user does not need a custom password, the password generation module will be called to automatically generate a strong password generated by the MD5 salt encryption algorithm;

步骤五:步骤一中,若命令行参数未控制打开密码规则制约模块,则忽略此步骤,否则密码制约模块会在密码生成模块输出后进行二次封装,然后将封装值返回操作集模块;Step 5: In Step 1, if the command line parameter does not control the opening of the password rule control module, this step is ignored, otherwise the password control module will perform secondary encapsulation after the output of the password generation module, and then return the encapsulated value to the operation set module;

步骤六:操作集模块会向终端控制台输出交互数据,包含描述值、用户名、密码,同时将密码值输出到系统剪切板,留待用户直接使用;Step 6: The operation set module will output interactive data to the terminal console, including the description value, user name, and password, and output the password value to the system clipboard for the user to use directly;

步骤七:若需进行数据备份和迁移,则单独执行数据备份迁移模块的脚本,该模块针对json文件进行操作,输出加密后的pdf文件。Step 7: If data backup and migration are required, execute the script of the data backup and migration module separately, which operates on the json file and outputs the encrypted pdf file.

本发明的有益效果是The beneficial effects of the present invention are

(1)为用户提供了方便、透明的统一密码管理,省时省力,只需在系统终端通过命令即可轻松操作;(1) It provides users with a convenient and transparent unified password management, which saves time and effort, and can be easily operated by commands at the system terminal;

(2)实现了密码的自动化管理与生成,保证了密码的安全性、唯一性。(2) The automatic management and generation of passwords are realized, and the security and uniqueness of passwords are guaranteed.

附图说明Description of drawings

图1是主控模块结构与交互流程示意图;Fig. 1 is a schematic diagram of the main control module structure and interaction flow;

图2是整体架构示意图。Figure 2 is a schematic diagram of the overall architecture.

具体实施方式Detailed ways

为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例,基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动的前提下所获得的所有其他实施例,都属于本发明保护的范围。In order to make the purposes, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments It is a part of the embodiments of the present invention, not all of the embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative work are protected by the present invention. scope.

本发明基于MD5(Message-Digest Algorithm)加盐加密算法,共包含五个模块:主控模块、密码生成模块、密码规则制约模块、数据存储模块、数据备份与迁移模块。主控模块又包含命令控制模块和操作集模块,命令控制模块接收命令行参数,将其映射到操作集模块,调用对应的功能方法;同时主控模块整合其他四个模块,进行总体功能调度。密码生成模块通过MD5加盐加密算法,生成唯一的128位散列值,同时也允许用户自定义密码。密码规则制约模块为“可插拔”的脚本,针对密码生成模块的输出值进行二次封装,可自由控制该模块的使用。数据存储模块负责本地化存储数据。数据备份与迁移模块负责将数据库文件转换成pdf格式并通过加密/解密方式实现数据备份与转移。The present invention is based on the MD5 (Message-Digest Algorithm) salt encryption algorithm, and includes five modules: a main control module, a password generation module, a password rule control module, a data storage module, and a data backup and migration module. The main control module also includes a command control module and an operation set module. The command control module receives command line parameters, maps them to the operation set module, and invokes the corresponding function method; at the same time, the main control module integrates the other four modules to perform overall function scheduling. The password generation module generates a unique 128-bit hash value through the MD5 salt encryption algorithm, and also allows users to customize the password. The password rule control module is a "pluggable" script, and the output value of the password generation module is encapsulated twice, and the use of the module can be freely controlled. The data storage module is responsible for storing data locally. The data backup and migration module is responsible for converting database files into pdf format and implementing data backup and transfer through encryption/decryption.

各模块主要负责功能如下:The main functions of each module are as follows:

主控模块:包含命令控制模块和操作集模块。命令控制模块负责接收终端的命令行参数,将其映射到操作集模块;操作集模块根据命令控制模块传来的不同映射值,响应与之对应的功能操作,主要功能包括查看所有描述值(key)、根据描述值取对应的账号(user_name)和密码(password)、自定义存入密码、使用MD5加盐加密算法存入密码、修改描述值或账号或密码、删除指定数据。当用户根据描述值取对应账号密码时,主控模块在终端中显示信息的同时,会将密码输出到系统剪切板,用户直接粘贴使用即可。Main control module: contains command control module and operation set module. The command control module is responsible for receiving the command line parameters of the terminal and mapping them to the operation set module; the operation set module responds to the corresponding functional operations according to the different mapping values transmitted from the command control module, and the main functions include viewing all description values (key ), select the corresponding account (user_name) and password (password) according to the description value, customize the save password, use the MD5 salt encryption algorithm to save the password, modify the description value or account or password, and delete the specified data. When the user selects the corresponding account password according to the description value, the main control module will output the password to the system clipboard while displaying the information in the terminal, and the user can paste it directly.

密码生成模块:该模块主要负责通过MD5加盐加密算法输出强密码。MD5算法会对输入的字符串生成唯一的128位散列值(16字节),输入的字符串即便只有一个字符发生变化,其输出的散列值也会大大不同,具有较好的安全性与不可逆性。为了获得更高安全强度的密码,在MD5算法的基础上使用“加盐”加密操作,使用字母、数字、特殊符号作为原生字符串,对其打乱排列顺序,然后随机选取指定范围长度的字符组成新的字符串,然后再通过MD5算法对其进行加密,该过程即为加盐加密操作。这种方式为MD5算法的每次调用提供了长度不同、内容不同、排序不同的输入字符串,使生成的散列值规律性达到最低。Password generation module: This module is mainly responsible for outputting strong passwords through the MD5 salt encryption algorithm. The MD5 algorithm will generate a unique 128-bit hash value (16 bytes) for the input string. Even if only one character of the input string changes, the output hash value will be greatly different, with better security. and irreversibility. In order to obtain a password with higher security strength, the "salt" encryption operation is used on the basis of the MD5 algorithm, using letters, numbers, and special symbols as the native strings, shuffling the order, and then randomly selecting characters with a specified range of lengths. A new string is formed, and then encrypted by the MD5 algorithm. This process is the salt encryption operation. This method provides input strings with different lengths, different contents, and different orders for each invocation of the MD5 algorithm, so that the generated hash value has the lowest regularity.

密码规则制约模块:该模块为可选模块,主要负责对密码生成模块的输出值进行二次封装。MD5加盐加密算法输出值总是16个字符,为字母和数字的组合。不同网站的登录密码会有不同的规定,比如长度的限制,或是开头字符不允许是数字等等。该模块为“可插拔”模块,内设控制开关,默认情况下为关闭状态,即不进行密码规则制约。输入对应的命令行参数即可通过主控模块打开密码规则制约模块,为密码生成模块输出的密码进行规则制约。制约规则可自由定义,通过编写脚本接入该模块即可,灵活度较高。Password rule control module: This module is an optional module, which is mainly responsible for the secondary encapsulation of the output value of the password generation module. The output value of the MD5 salt encryption algorithm is always 16 characters, which are a combination of letters and numbers. The login passwords of different websites will have different regulations, such as length restrictions, or the characters at the beginning are not allowed to be numbers, etc. This module is a "pluggable" module with a built-in control switch, which is turned off by default, that is, it is not restricted by password rules. Enter the corresponding command line parameters to open the password rule control module through the main control module, and perform rule control for the password output by the password generation module. The restriction rules can be freely defined, and the module can be accessed by writing a script, which is highly flexible.

数据存储模块:该模块主要用于存储数据。数据量小的时候,可以使用json文件存储于本地。以键值对的格式进行存储,描述信息作为key值,用户名(user_name)和密码(password)以集合的形式作为value值。默认情况下,密码字段为非空值,必须赋值,用户名字段若不赋值则默认为NULL。Data storage module: This module is mainly used to store data. When the amount of data is small, you can use a json file to store it locally. It is stored in the format of key-value pairs, the description information is used as the key value, and the user name (user_name) and the password (password) are used as the value value in the form of a set. By default, the password field is a non-null value and must be assigned a value. If the username field is not assigned a value, it defaults to NULL.

数据备份与迁移模块:该模块负责将json文件转换成pdf文件,用于数据备份或迁移。转换成pdf文件的目的是方便在其他PC端或移动端进行查阅,但当我们通过网络传输密码文件的过程中,会存在被截获的危险,尤其是文件中存有重要密码的情况下,这时就需要发送端对pdf进行加密传送,接收端通过密令解密pdf文件,即便中间被截获,pdf文件内容也不会暴露。Data backup and migration module: This module is responsible for converting json files into pdf files for data backup or migration. The purpose of converting to pdf files is to facilitate viewing on other PCs or mobiles, but when we transmit password files over the network, there is a danger of being intercepted, especially if there are important passwords in the file. At this time, the sender needs to encrypt and transmit the pdf, and the receiver decrypts the pdf file through the password. Even if it is intercepted in the middle, the content of the pdf file will not be exposed.

五种模块整体合作步骤如下:The overall cooperation steps of the five modules are as follows:

步骤一:系统终端中输入相关命令,主控模块的命令控制模块接收命令参数,识别判断并映射到操作集模块中的具体功能函数;Step 1: input relevant commands in the system terminal, the command control module of the main control module receives the command parameters, identifies, judges and maps to the specific function functions in the operation set module;

步骤二:主控模块的操作集模块进行指定的功能响应,对接数据存储模块和密码生成模块;Step 2: the operation set module of the main control module responds to the specified function, and connects the data storage module and the password generation module;

步骤三:操作集模块的所有功能在响应前,都会先判断同目录中是否存在json文件,不存在则新建,存在则继续读写;Step 3: Before responding to all functions of the operation set module, it will first determine whether there is a json file in the same directory. If it does not exist, create a new one, and if it exists, continue to read and write;

步骤四:针对操作集模块中的存入功能,若用户不需要自定义密码,则会调用密码生成模块,自动生成经过MD5加盐加密算法生成的强密码;Step 4: For the storage function in the operation set module, if the user does not need a custom password, the password generation module will be called to automatically generate a strong password generated by the MD5 salt encryption algorithm;

步骤五:步骤一中,若命令行参数未控制打开密码规则制约模块,则忽略此步骤,否则密码制约模块会在密码生成模块输出后进行二次封装,然后将封装值返回操作集模块;Step 5: In Step 1, if the command line parameter does not control the opening of the password rule control module, this step is ignored, otherwise the password control module will perform secondary encapsulation after the output of the password generation module, and then return the encapsulated value to the operation set module;

步骤六:操作集模块会向终端控制台输出交互数据,包含描述值、用户名、密码,同时将密码值输出到系统剪切板,留待用户直接使用;Step 6: The operation set module will output interactive data to the terminal console, including the description value, user name, and password, and output the password value to the system clipboard for the user to use directly;

步骤七:若需进行数据备份和迁移,则单独执行数据备份迁移模块的脚本,该模块针对json文件进行操作,输出加密后的pdf文件。Step 7: If data backup and migration are required, execute the script of the data backup and migration module separately, which operates on the json file and outputs the encrypted pdf file.

以上所述仅为本发明的较佳实施例,仅用于说明本发明的技术方案,并非用于限定本发明的保护范围。凡在本发明的精神和原则之内所做的任何修改、等同替换、改进等,均包含在本发明的保护范围内。The above descriptions are only preferred embodiments of the present invention, and are only used to illustrate the technical solutions of the present invention, but not to limit the protection scope of the present invention. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present invention are included in the protection scope of the present invention.

Claims (10)

1. An automatic unified management system for passwords is characterized in that,
the system comprises five modules in total: the system comprises a main control module, a password generation module, a password rule restriction module, a data storage module and a data backup and migration module; wherein
The main control module: processing command input and core functions of the terminal, and controlling overall function scheduling;
a password generation module: generating a strong password by an MD5 salt encryption algorithm;
a cipher rule restriction module: accessing a restriction script, and secondarily packaging the password value output by the password generation module;
the data backup and migration module: migrating data using pdf encryption and decryption technology;
a data storage module: for storing data.
2. The system of claim 1,
the main control module also comprises a command control module and an operation set module;
the command control module is responsible for receiving system terminal command parameters, identifying and distributing commands to be mapped to the operation set module;
the operation set module comprises all function functions and interacts with the password generation module and the data storage module simultaneously.
3. The system of claim 2,
the operation set module responds to the corresponding functional operation according to different mapping values transmitted by the command control module, and the main functions comprise checking all description values (key), taking corresponding account numbers (user _ name) and passwords (password) according to the description values, storing the passwords in a user-defined mode, storing the passwords by using an MD5 salting encryption algorithm, modifying the description values or the account numbers or the passwords and deleting specified data.
4. The system of claim 3,
when the user takes the corresponding account password according to the description value, the main control module outputs the password to the system shear plate while displaying information in the terminal, and the user can directly paste the password for use.
5. The system of claim 2,
the password generation module comprises:
the strong password generated by using the MD5 salt-adding encryption algorithm ensures the security and uniqueness of the password;
the method can be used for connecting a password rule restriction module and enriching password formats.
6. The system of claim 2,
the cipher rule restriction module is an optional module and comprises:
the password generating module is used for generating a password;
the module can be freely controlled to be opened through a switch;
the user can customize different restriction rules by accessing the self-defined script.
7. The system of claim 6,
a control switch is arranged in the password rule restriction module, and the password rule restriction module is in an off state under the default condition, namely the password rule restriction is not carried out; and when the corresponding command line parameters are input, the password rule restriction module can be opened through the main control module, and the rule restriction is performed on the password output by the password generation module.
8. The system of claim 2,
the data backup and migration module comprises:
only the data storage module is operated and is independently controlled by a command without depending on the main module;
converting the json file into a pdf file, so that different PC terminals or mobile terminals can look up the pdf file conveniently;
the security of data migration is enhanced by using encryption and decryption technology for the pdf file.
9. The system of claim 2,
the data storage module is stored locally by using a json file; storing in a key value pair format, wherein the description information is used as a key value, and a user name (user _ name) and a password (password) are used as value values in a set form; and under the default condition, the password field is a non-NULL value and must be assigned, and if the user name field is not assigned, the default value is NULL.
10. An automatic unified management method for passwords is characterized in that,
the working steps are as follows:
the method comprises the following steps: inputting related commands in the system terminal, receiving command parameters by a command control module of the main control module, and identifying, judging and mapping specific function functions in the operation set module;
step two: the operation set module of the main control module performs appointed function response, and is connected with the data storage module and the password generation module;
step three: before all functions of the operation set module respond, judging whether json files exist in the same directory or not, if yes, creating new files, and if yes, continuing reading and writing;
step four: aiming at the storage function in the operation set module, if the user does not need to define the password by self, the password generation module is called to automatically generate a strong password generated by an MD5 salt-adding encryption algorithm;
step five: in the first step, if the command line parameter does not control to open the password rule restriction module, the step is omitted, otherwise, the password restriction module performs secondary packaging after the password generation module outputs, and then returns a packaging value to the operation set module;
step six: the operation set module outputs interactive data to the terminal console, wherein the interactive data comprises description values, user names and passwords, and the password values are output to a system shear plate to be used by a user directly;
step seven: and if data backup and migration are needed, independently executing the script of the data backup and migration module, operating the module aiming at the json file, and outputting the encrypted pdf file.
CN202010741674.2A 2020-07-29 2020-07-29 A system and method for automatic unified management of passwords Pending CN111859369A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010741674.2A CN111859369A (en) 2020-07-29 2020-07-29 A system and method for automatic unified management of passwords

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010741674.2A CN111859369A (en) 2020-07-29 2020-07-29 A system and method for automatic unified management of passwords

Publications (1)

Publication Number Publication Date
CN111859369A true CN111859369A (en) 2020-10-30

Family

ID=72948236

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010741674.2A Pending CN111859369A (en) 2020-07-29 2020-07-29 A system and method for automatic unified management of passwords

Country Status (1)

Country Link
CN (1) CN111859369A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115733666A (en) * 2022-10-28 2023-03-03 苏州浪潮智能科技有限公司 Password management method and device, electronic equipment and readable storage medium
CN117041443A (en) * 2023-10-09 2023-11-10 人力资源和社会保障部人事考试中心 Offline photo processing method, device and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140013452A1 (en) * 2012-07-03 2014-01-09 Selim Aissi Data protection hub
CN104348609A (en) * 2014-09-18 2015-02-11 成都西山居互动娱乐科技有限公司 Non-stored password management algorithm
CN105897412A (en) * 2015-12-15 2016-08-24 乐视网信息技术(北京)股份有限公司 Website password generation method and device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140013452A1 (en) * 2012-07-03 2014-01-09 Selim Aissi Data protection hub
CN104348609A (en) * 2014-09-18 2015-02-11 成都西山居互动娱乐科技有限公司 Non-stored password management algorithm
CN105897412A (en) * 2015-12-15 2016-08-24 乐视网信息技术(北京)股份有限公司 Website password generation method and device

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115733666A (en) * 2022-10-28 2023-03-03 苏州浪潮智能科技有限公司 Password management method and device, electronic equipment and readable storage medium
CN115733666B (en) * 2022-10-28 2025-08-01 苏州浪潮智能科技有限公司 Password management method and device, electronic equipment and readable storage medium
CN117041443A (en) * 2023-10-09 2023-11-10 人力资源和社会保障部人事考试中心 Offline photo processing method, device and storage medium
CN117041443B (en) * 2023-10-09 2023-12-08 人力资源和社会保障部人事考试中心 Offline photo processing method, device and storage medium

Similar Documents

Publication Publication Date Title
JP7417677B2 (en) Technology for file sharing
US11595477B2 (en) Cloud storage methods and systems
AU2023204296B2 (en) Encrypted userdata transit and storage
CN111970236B (en) Cross-network data transmission method and device
CA3173624A1 (en) Nuts: flexible hierarchy object graphs
US20020129054A1 (en) Method and system for integrating network-based functionality into productivity applications employing spreadsheets
CN108512666A (en) Encryption method, data interactive method and the system of API request
CN112860777A (en) Data processing method, device and equipment
CN111859426B (en) Universal encrypted database connector and setting method thereof
CN112988887B (en) Foundation system based on block chain
WO2023011140A1 (en) Forest resource one-graph quality inspection logic rule update method, system and cloud platform
CN111858611B (en) Data access method, device, computer equipment and storage medium
CN111859369A (en) A system and method for automatic unified management of passwords
CN114676418A (en) Operation request processing method, device, equipment, storage medium and program product
CN113360473A (en) Cloud storage computing system for medical inspection image big data
JP6366457B2 (en) Information sharing apparatus and information sharing method
CN112464255A (en) Data processing method and device, storage medium and electronic equipment
CN118332592A (en) Data desensitization method, device, non-volatile storage medium and electronic device
US20240054236A1 (en) Selective encryption while loading from network attached storage system
Kumar et al. Data security and encryption technique for cloud storage
CN111352910B (en) A method and device for online preview of data
CN115033852A (en) Credential processing method, device and device for realizing IA for RPA and AI process
HK40048389A (en) Data processing method and apparatus, and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20201030

RJ01 Rejection of invention patent application after publication