一种基于手机令牌和NFC技术的身份认证系统
发布时间:2019-01-09 11:07
【摘要】:针对目前Web站点的身份认证安全问题,提出了一种基于手机令牌和近距离无线通信(NFC,near field communication)技术的身份认证方法,并在Android平台上实现了该系统.该系统利用手机使用手机令牌实现了USBKey的主要功能,当用户访问站点进行注册时,将获得惟一的手机令牌并存于带有加解密功能的手机中.在下次访问站点进行身份认证时,用户可通过手机直接在Web站点进行身份认证,也可通过NFC技术将手机令牌传于PC机,使得用户可在PC机上利用手机进行身份认证.该系统将手机作为类USBKey设备,在增强Web站点身份认证安全的同时,省去了为用户颁发USBKey的流程和成本,具有较强的实用价值.
[Abstract]:Aiming at the problem of authentication security of Web site, this paper presents an authentication method based on mobile phone token and NFC,near field communication) technology, and implements the system on Android platform. The system uses the mobile phone token to realize the main function of USBKey. When the user visits the site for registration, the unique mobile phone token will coexist in the mobile phone with encryption and decryption function. In the next visit to the site for identity authentication, the user can authenticate directly in the Web site through the mobile phone, or pass the mobile phone token to the PC machine through the NFC technology, so that the user can use the mobile phone to authenticate the identity on the PC machine. The system takes the mobile phone as a USBKey like device, which not only enhances the security of Web site identity authentication, but also saves the process and cost of issuing USBKey to the user. It has strong practical value.
【作者单位】: 武汉大学计算机学院;空天信息安全与可信计算教育部重点实验室;
【基金】:国家自然科学基金(61003268) 湖北省自然基金(2010CDB08601) 中央高校基本科研业务费专项基金(211274629)资助项目
【分类号】:TP393.08
[Abstract]:Aiming at the problem of authentication security of Web site, this paper presents an authentication method based on mobile phone token and NFC,near field communication) technology, and implements the system on Android platform. The system uses the mobile phone token to realize the main function of USBKey. When the user visits the site for registration, the unique mobile phone token will coexist in the mobile phone with encryption and decryption function. In the next visit to the site for identity authentication, the user can authenticate directly in the Web site through the mobile phone, or pass the mobile phone token to the PC machine through the NFC technology, so that the user can use the mobile phone to authenticate the identity on the PC machine. The system takes the mobile phone as a USBKey like device, which not only enhances the security of Web site identity authentication, but also saves the process and cost of issuing USBKey to the user. It has strong practical value.
【作者单位】: 武汉大学计算机学院;空天信息安全与可信计算教育部重点实验室;
【基金】:国家自然科学基金(61003268) 湖北省自然基金(2010CDB08601) 中央高校基本科研业务费专项基金(211274629)资助项目
【分类号】:TP393.08
【参考文献】
相关期刊论文 前3条
1 张虎强;洪佩琳;李津生;黄冠尧;;用户名密码认证方案的安全性分析及解决方案[J];计算机工程与应用;2006年33期
2 曹U,
本文编号:2405540
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2405540.html
