CN100409138C - Cipher identification device and method - Google Patents
Cipher identification device and method Download PDFInfo
- Publication number
- CN100409138C CN100409138C CNB2005100851476A CN200510085147A CN100409138C CN 100409138 C CN100409138 C CN 100409138C CN B2005100851476 A CNB2005100851476 A CN B2005100851476A CN 200510085147 A CN200510085147 A CN 200510085147A CN 100409138 C CN100409138 C CN 100409138C
- Authority
- CN
- China
- Prior art keywords
- input
- password
- log
- consistent
- authentication device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims description 9
- 238000012795 verification Methods 0.000 claims abstract description 22
- 230000008676 import Effects 0.000 claims description 31
- 238000010586 diagram Methods 0.000 description 3
- 230000015572 biosynthetic process Effects 0.000 description 1
- 230000003750 conditioning effect Effects 0.000 description 1
- 230000002950 deficient Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The present invention discloses a password verification device. When a password is input, the password verification device verifies whether the passwords from the beginning to the input position are consistent with registration passwords; if not consistent, whether the next password can be input is set to be random, so as to make the inference of the registration passwords quite difficult. The password verification device is used for personal verification while digital equipment is used, including a verification unit and whether a setting unit can be input. The verification unit verifies the input passwords according to the contrast between the input passwords from the input unit and the registration passwords that are registered in advance. Simultaneously, when a password is input, the device can judge whether the input passwords from the beginning to the input position are consistent with the registration passwords. As for whether the setting unit can be input, the next password can be input from the input unit when the judgment of the verification unit is consistent; and if not consistent, whether the next password can be input is set to be random.
Description
Technical field
The present invention relates to a kind of password authentication device, password authentication device and the verification method of the personal verification during in particular for the use digital device.
Background technology
Usually, in password authentication device, come to give authority, register, give management such as authority owing to each user is carried out the user, so quite bother according to these two contents to each user by inputing these two contents of user name and password.
Therefore, all be just can carry out each different user of authority intensity management according to content of password all the time.So-called authority intensity difference is meant: the difference of the authority intensity of other authority of supervisor level of other authority of domestic consumer's level, management domestic consumer etc. for example.As the different password of this authority intensity, user cipher and administrator's password can be arranged for example.
But, in above-mentioned password authentication device, by accident will be when the administrator's password of registered in advance constitutes identical password and registers as user cipher in domestic consumer, because password is identical, can't know that when checking as keeper's registration still be as domestic consumer's registration, so may give keeper's authority to domestic consumer mistakenly.
Therefore, take place in order to prevent the problems referred to above, propose following scheme in following patent documentation 1,2: as administrator's password, it uses the figure place of the figure place user cipher more registrable than the user many.
Patent documentation 1: TOHKEMY 2003-8801 communique
Patent documentation 2: TOHKEMY 2002-365980 communique
But, in above-mentioned patent documentation,, in input block, must be able to be input to the figure place of administrator's password for energy input manager person password, therefore, domestic consumer can know easily that also administrator's password is more than the password figure place of oneself.
Summary of the invention
In view of the prior art defective, the object of the present invention is to provide a kind of password authentication device, verification method, during password of every input, just to by the input password of input position with judge by whether the log-in password of this input consistent, when inconsistent, then can import next bit and be made as at random, thereby be difficult to infer log-in password.
The personal verification of password authentication device of the present invention when being used to use digital device password authentication device comprises authentication unit and could import setup unit.
Authentication unit, contrast is from the input password of input block input and the log-in password of registered in advance, in the checking of inputing password, during password of every input, just to by the input password of this input position with judge by whether the log-in password of this input consistent.Could import setup unit, when the result of determination in the authentication unit is consistent, can import the input of the next bit of position,, could import next bit from input block and be decided to be at random when result of determination when being inconsistent from input block.
Like this, whenever input during a password, just to by the input password of this input position with judge by whether the log-in password of this input consistent, when inconsistent, just could import next bit and be made as at random, thereby make the deduction of log-in password very difficult.
And, could import setup unit and also can whenever later everybody of regulation figure place of input log-in password the time, start.
Like this, could import setup unit and when later everybody of input regulation figure place (for example figure place of user cipher), just start, so the unusual difficulty of the deduction that can make the bigger log-in password of authority.
And, can also comprise the input determining unit, be used for measuring everybody back from input input password to the input time the input next bit, when input time during, just think the end of input of input password more than or equal to predefined time.
Like this, owing to, just think that input finishes, so the operability height when password is imported when input time during more than or equal to predefined time.And, for example import determining unit and also can whenever later everybody of regulation figure place of input log-in password the time, start, also can whenever password of input the time, start.
And whether authentication unit can also reach the predefined maximum number of digits of importing to the figure place of input position is judged.
And, can register a plurality of log-in passwords and its authority intensity is different, and log-in password also can be respectively be made of with second password that is additional to the other regulation figure place of first password first password of regulation figure place.
Like this, can distinguish is to be used to specify the checking of domestic consumer, still to be used to specify the bigger people of authority (for example keeper's) checking.
Verification method of the present invention is the verification method of being implemented on the password authentication device of the personal verification when being used to use digital device, comprises verification step and could import the setting step.Verification step, contrast is inputed the checking of password, simultaneously from the input password of the input block input of digital device and the log-in password of registered in advance, whenever input during a password, just to by the input password of this input with judge by whether the log-in password of this input consistent; Could import the setting step, when the result of determination in the authentication unit is consistent, can import the input of the next bit of position,, could be decided to be at random from the input that input block carries out next bit when result of determination when being inconsistent from input block.
Whenever input during a password, just to by the input password of this input position with judge by whether the log-in password of this input consistent, when inconsistent, just could import next bit and be made as at random, thereby can make the deduction of log-in password very difficult.
Description of drawings
Fig. 1 is the functional block diagram of password authentication device according to an embodiment of the invention;
Fig. 2 represents the process flow diagram of password authentication device work according to an embodiment of the invention;
Fig. 3 is the basic function module figure that has adopted image processing system of the present invention; And
Fig. 4 is the concrete exemplary plot of log-in password.
Embodiment
Fig. 1 is the basic function module figure according to the password authentication device 10 of the embodiment of the invention, and Fig. 2 is the process flow diagram of password authentication device 10 work of the expression embodiment of the invention.
For example, as shown in Figure 3, when being built in image processing systems 20 such as duplicating machine at password authentication device 10, the user carries out the password input from the input block 1 that is made of operating key or touch panel etc., if about being proved to be successful of input password of input, then by input block 1 to image forming part 21 notice photocopying conditions, carry out and duplicate indication etc.
In password authentication device 10, the log-in password that will be used for specifying the user by input block 1 is stored in authentication unit 2 in advance.In the present embodiment, shown in Fig. 4 (a),, registered a plurality of n position password as user cipher, and, shown in Fig. 4 (b), also registered a plurality of adding (n+N) position of obtaining behind the regulation figure place N on this n position and administrator's password that authority is bigger.And, ceaselessly carry out in order to prevent the password input, in authentication unit 2, also preestablished the maximum number of digits M that can import.At this, (n+N)<M.
The user carries out the password input by input block 1.In the present embodiment, for example, shown in Fig. 4 (c), current input figure place is A (A≤M).
Every value of input is stored in the authentication unit 2, and allows the user discern the input password by the display unit 3 that is made of touch panel.And second later every stipulated time that input allowed (for example 1 second) that the user will input password from input block 1 preestablishes the timer that is built in input determining unit 4.
Below, with reference to Fig. 2 the work of password authentication device 10 of the present invention is elaborated.
Display password input picture on display unit 3, and in the time can carrying out the password input, judge by authentication unit 2 whether input block 1 has input (S1) by the user.
When being judged to be in determination processing S1 when not having input and being in primary input state, promptly during A=0, under the state of display unit 3 display passwords input picture, password authentication device 10 standbies are up to primary input (S2 → S1) is arranged.
And when determining first later everybody's input in determination processing S1, authentication unit 2 judges whether the input figure place A of this moment have reached the maximum number of digits M (S3) that can import.
In determination processing S3, when having reached the maximum number of digits M that can import, judge the whether consistent (S3 → S10) of each mutual corresponding bit value of input password and user cipher by authentication unit 2.
When result of determination is consistent in determination processing S10,, thereby can carry out the processing (S11) that the user of image processing system 20 uses as being proved to be successful of user.
On the other hand, when result of determination in determination processing S10 when being inconsistent, judge the whether consistent (S10 → S12) of each mutual corresponding bit value of input passwords and administrator's password by authentication unit 2.
When result of determination in determination processing S12 when being consistent,, thereby can carry out the processing (S13) that the keeper of image processing system 20 uses as being proved to be successful of keeper.
And, when result of determination in determination processing S12 when being inconsistent, finish password authentification and handle.
On the other hand, when in determination processing S3, not reaching the maximum number of digits that to import, because can continue input, so, by input determining unit 4, when first later everybody's input is arranged, just will be built in the timer of importing determining unit 4 and reset (S4), and remeasure time by the input of next bit.
Reset when carrying out above-mentioned timer, judge that by authentication unit 2 input figure place A are whether less than the figure place n (S5) of user cipher.
In determination processing S5, as input figure place A during, then shift to determination processing S1 less than the figure place n of user cipher, judge whether input block 1 has input (S5 → S1).
On the other hand, in determination processing S5,, then judge by mutual corresponding every numerical value of the input password of A position, input position and the preceding A position of administrator's password whether consistent (S6) by authentication unit 2 as the figure place n of input figure place A more than or equal to user cipher.
When the result of determination among the determination processing S6 when being consistent, shift to determination processing S1, judge whether input block 1 has input (S6 → S1).
When the result of determination in determination processing S6 when being inconsistent, could import setup unit 5 startings, could import next bit and be set at random (for example, the probability that can import is 50%) (S7).
Be set at random if in treatment S 7, could import next bit, then judge and to import next bit (S8),, then whether have the determination processing S1 of input to shift to input block 1 if can import next bit the time by authentication unit 2; In the time that if next bit can not being imported, judge then whether input figure place A equates (S9) with the figure place n of user cipher.
When in determination processing S9, determining input figure place A when equating, then judge mutual corresponding every numerical value whether consistent (S10) of importing password and user cipher with the figure place n of user cipher.
When the result of determination of determination processing S10 when being consistent,, thereby can carry out the processing (S11) that the user of image processing system 20 uses then as being proved to be successful of user.
And, when the result of determination of determination processing S10 when being inconsistent, then judge the whether consistent (S10 → S12) of mutual corresponding every numerical value of input passwords and administrator's password by authentication unit 2.
In determination processing S12, when mutual corresponding everybody's of input password and administrator's password numerical value is consistent,, thereby can carry out the processing (S13) of keeper's use of image processing system 20 as being proved to be successful of keeper.
When the result of determination of determination processing S12 when being inconsistent, then finish password authentification and handle.
And, result of determination is not equal at 0 o'clock for having input and A in determination processing S1, when promptly not inputing later everybody's of second of password input, then judges whether surpassed the stipulated time (S14) that is pre-set in the timer of importing determining unit 4 at any time by input determining unit 4.
When the result of determination of determination processing S14 when not exceeding schedule time, then whether have the determination processing S1 of input to shift to input block 1 once more; When exceeding schedule time, then shift to determination processing S10, carry out and above-mentioned same processing.
And, in above embodiment, to input determining unit 4 when first later everybody of input just the structure of starting be illustrated, replace this structure but also can adopt when later everybody of the figure place of input user cipher with regard to the structure of starting.
Like this, when importing a password, just whether judgement is consistent with mutual corresponding every numerical value of the log-in password of importing the position by this by the input password of this input position, when inconsistent, then could import next bit and be set at random, thereby can make the deduction of log-in password very difficult.
In the foregoing description, also can in authentication unit, only store a log-in password.And for example for five log-in password, when the regulation figure place is three and when having carried out the 4th later input, could import setup unit and input determining unit also can just starting when whenever carrying out an input.
And digital device is not limited to image processing system, also can be the signal conditioning package of personal computer and so on for example.At this moment, keyboard is for example arranged, monitor is for example arranged as output unit as input block.
In addition, above-mentioned only is the preferred embodiments of the present invention, does not limit technical scope of the present invention.In the scope that can reach effect of the present invention, can adopt any formation.
Utilizability on the industry
Whenever input during a password, just judge by the input password of this input position with by Whether the log-in password of input position is consistent, if inconsistent, then could import next bit and establish For at random, thereby can make the deduction of log-in password very difficult, therefore, the present invention has valency Value.
Symbol description
1 input block
2 authentication units
4 input determining units
5 could import setup unit
10 password authentication devices
Claims (8)
1. password authentication device, the personal verification when being used to use digital device comprises:
Authentication unit, contrast is from the input password of input block input and the log-in password of registered in advance, when carrying out the checking of described input password, password of every input, just to by the described input password of this input position with judge by whether the described log-in password of described input consistent; And
Could import setup unit, when the result of determination in the described authentication unit is consistent, can carry out the input of the next bit of described input position from described input block, when described result of determination is inconsistent, could imports described next bit from described input block and be decided to be at random.
2. password authentication device according to claim 1 describedly could be imported setup unit just starting when later everybody of regulation figure place of the described log-in password of input.
3. password authentication device according to claim 1, also comprise the input determining unit, be used to measure from every beginning of inputing described input password to the input time of importing described next bit, when described input time during, then think the end of input of described input password more than or equal to predefined time.
4. password authentication device according to claim 3, the just starting when later everybody of regulation figure place of the described log-in password of input of described input determining unit.
5. password authentication device according to claim 3, just starting during password of the every input of described input determining unit.
6. password authentication device according to claim 1, described authentication unit can also judge whether the figure place of described input position has reached the predefined maximum number of digits of importing.
7. password authentication device according to claim 1, registration has a plurality of described log-in passwords, and the intensity of authority is different, and described log-in password is made of with second password that is additional to the other regulation figure place of described first password first password of regulation figure place respectively.
8. verification method, the password authentication device that is used for the personal verification when using digital device is verified, comprising:
Verification step, contrast is from the input password of the input block input of described digital device and the log-in password of registered in advance, in the checking of carrying out described input password, during password of every input, just to by the described input password of this input position with judge by whether the described log-in password of described input consistent; And
Could import the setting step, when the result of determination in the described verification step is consistent, can be from the next bit of the described input of described input block input position, when described result of determination when being inconsistent, could import described next bit from described input block and be decided to be at random.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| JP2004212967 | 2004-07-21 | ||
| JP2004212967 | 2004-07-21 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1725143A CN1725143A (en) | 2006-01-25 |
| CN100409138C true CN100409138C (en) | 2008-08-06 |
Family
ID=35924643
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005100851476A Expired - Fee Related CN100409138C (en) | 2004-07-21 | 2005-07-21 | Cipher identification device and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100409138C (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101799857A (en) * | 2010-03-19 | 2010-08-11 | 深圳市奔凯生物识别技术有限公司 | Password authentication method |
| JP6579387B2 (en) * | 2016-11-25 | 2019-09-25 | 京セラドキュメントソリューションズ株式会社 | Electronics |
| JP7073755B2 (en) * | 2018-02-01 | 2022-05-24 | 京セラドキュメントソリューションズ株式会社 | Password authentication device |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1138927A (en) * | 1994-01-13 | 1996-12-25 | 银行家信托公司 | Cryptographic system and method with key escrow feature |
| CN1221507A (en) * | 1996-06-05 | 1999-06-30 | 德国电信股份有限公司 | Method and device for loading input data into algorithm during authentication |
| CN2526907Y (en) * | 2001-12-05 | 2002-12-18 | 武汉瑞达电子有限公司 | Information safety computer |
-
2005
- 2005-07-21 CN CNB2005100851476A patent/CN100409138C/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1138927A (en) * | 1994-01-13 | 1996-12-25 | 银行家信托公司 | Cryptographic system and method with key escrow feature |
| CN1221507A (en) * | 1996-06-05 | 1999-06-30 | 德国电信股份有限公司 | Method and device for loading input data into algorithm during authentication |
| CN2526907Y (en) * | 2001-12-05 | 2002-12-18 | 武汉瑞达电子有限公司 | Information safety computer |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1725143A (en) | 2006-01-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP5764203B2 (en) | Password safe input system using password key movement value and password safe input method | |
| US7409705B2 (en) | System and method for user authentication | |
| US5233655A (en) | Data access verification system | |
| US12271874B2 (en) | Security key input system and method using one-time keypad | |
| CN104427081B (en) | A kind of unlocking method and device of mobile terminal | |
| US20130042318A1 (en) | Authentication System and Method Using Arrays | |
| CN103297391A (en) | Graphical dynamic password inputting and verifying method | |
| CN107871075A (en) | password authentication device | |
| JP6628116B2 (en) | Electronics | |
| CN100409138C (en) | Cipher identification device and method | |
| CN109118551A (en) | A kind of image processing method, terminal and storage medium | |
| JP4688597B2 (en) | Password authentication apparatus and authentication method | |
| JP2013218489A (en) | Password authentication system and method without identifier (id) and only with one-time password | |
| CN113672886A (en) | Prompt method and device | |
| JP5996912B2 (en) | Password authentication system and method using only one-time password without using identifier (ID) | |
| CN101763473A (en) | Variable cipher device and method | |
| JP2005078251A (en) | Character inputting method | |
| JP6290846B2 (en) | Authentication apparatus, method, and program | |
| KR20020034379A (en) | General Purpose Time-differential Electronic/Mechanical Password Locking/Security System Equipped with Internal Hacking Protection Program using Time-interval Checking Device between Password Input Key Strokes | |
| JP2017037541A (en) | User authentication system, user authentication method and control program | |
| GB2510895A (en) | A method and system for generation of dynamic password | |
| KR20050022576A (en) | Password input method for preventing password from being exposing | |
| JP6442093B2 (en) | Authentication device | |
| JP4679045B2 (en) | Passcode input method and electronic device to which this method is applied | |
| JP2005242706A (en) | User authentication and collation apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080806 Termination date: 20140721 |
|
| EXPY | Termination of patent right or utility model |