[go: up one dir, main page]

CN114338071A - Network security identity authentication method based on wind power plant communication - Google Patents

Network security identity authentication method based on wind power plant communication Download PDF

Info

Publication number
CN114338071A
CN114338071A CN202111264312.XA CN202111264312A CN114338071A CN 114338071 A CN114338071 A CN 114338071A CN 202111264312 A CN202111264312 A CN 202111264312A CN 114338071 A CN114338071 A CN 114338071A
Authority
CN
China
Prior art keywords
value
user
wind farm
service provider
message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111264312.XA
Other languages
Chinese (zh)
Inventor
王其乐
钱坤
王寅生
朱志成
孟凯锋
王栋
高小钧
胡鹏
赵振飞
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhongneng Power Tech Development Co Ltd
Original Assignee
Zhongneng Power Tech Development Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhongneng Power Tech Development Co Ltd filed Critical Zhongneng Power Tech Development Co Ltd
Priority to CN202111264312.XA priority Critical patent/CN114338071A/en
Publication of CN114338071A publication Critical patent/CN114338071A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Selective Calling Equipment (AREA)

Abstract

本发明公开了一种基于风电场通信的网络安全身份认证方法,该方法可以包括用户注册以及互相认证两个阶段。本申请提供的基于风电场通信的网络安全身份认证方法,每一个风电场用户想要加入风电场通信网络中时都需要向服务提供商进行注册,服务提供商会给每一个注册的风电场用户预先共享一个互不相同的对称密钥,并为其计算两个实体之后相互验证的相关值,最终将计算好的相关值发送给风电场用户。在之后的登录和认证阶段去验证合法用户身份并与之产生会话密钥。通过该方法可以实现两个实体会话秘钥生成之前的互相认证,同时可以保证认证过程中的各个信息在通过公共信道传输时不会被篡改,进而达到提高网络通信安全性的目的。

Figure 202111264312

The invention discloses a network security identity authentication method based on wind farm communication. The method can include two stages of user registration and mutual authentication. In the network security identity authentication method based on wind farm communication provided by this application, each wind farm user needs to register with the service provider when he wants to join the wind farm communication network. Share a different symmetric key, and calculate the correlation value of the two entities after mutual verification, and finally send the calculated correlation value to the wind farm user. In the subsequent login and authentication phases, the identity of the legitimate user is verified and a session key is generated from it. The method can realize mutual authentication before the generation of session keys of two entities, and can ensure that each information in the authentication process will not be tampered with when transmitted through the public channel, thereby achieving the purpose of improving network communication security.

Figure 202111264312

Description

一种基于风电场通信的网络安全身份认证方法A network security identity authentication method based on wind farm communication

技术领域technical field

本发明涉及风电场通信网络安全技术领域,特别是涉及一种基于风电场通信的网络安全身份认证方法。The invention relates to the technical field of wind farm communication network security, in particular to a network security identity authentication method based on wind farm communication.

背景技术Background technique

身份认证技术是计算机网络中验证操作者身份的有效手段,网络系统中,用户身份信息可以用具体数据流表示出来,计算机能够通过对数据的认证实现用户数字身份认证,从而对用户进行授权。身份认证是保护网络资源安全的第一关,也是网络信息安全的关键所在。Identity authentication technology is an effective means to verify the operator's identity in the computer network. In the network system, the user identity information can be represented by a specific data stream, and the computer can realize the user's digital identity authentication through the authentication of the data, thereby authorizing the user. Identity authentication is the first step to protect the security of network resources, and it is also the key to network information security.

目前计算机信息技术已经得到广泛普及,使用的要求也随之提供,除了各种功能外,安全技术的研究至关重要,当下用户身份认证技术,能够针对风电场通信过程中的用户身份进行确认,大幅提高了风电场通信的安全性。相比传统的安全措施,需要用户记住大量的密码,而且在实际运用过程中复杂、安全性较低,所以身份认证技术无疑更加便利,而且安全系数要更高。At present, computer information technology has been widely popularized, and the requirements for use are also provided. In addition to various functions, the research of security technology is very important. The current user identity authentication technology can confirm the identity of users in the communication process of wind farms. The security of wind farm communication is greatly improved. Compared with traditional security measures, users need to remember a large number of passwords, and the actual application process is complicated and has low security. Therefore, the identity authentication technology is undoubtedly more convenient and has a higher security factor.

因此需要加大对身份认证技术的研究,并在重要的场所和领域中推广应用,以确保系统的计算机信息使用的安全。Therefore, it is necessary to increase the research on identity authentication technology, and promote its application in important places and fields to ensure the security of the system's computer information use.

发明内容SUMMARY OF THE INVENTION

本发明提供了一种基于风电场通信的网络安全身份认证方法。The invention provides a network security identity authentication method based on wind farm communication.

本发明提供了如下方案:The present invention provides following scheme:

一种基于风电场通信的网络安全身份认证方法,包括:A network security identity authentication method based on wind farm communication, comprising:

步骤1:用户注册Step 1: User Registration

风电场用户端将用户输入的用户身份值IDi与选定的随机数a通过安全信道发送给服务提供商端;The wind farm client sends the user identity value ID i input by the user and the selected random number a to the service provider through a secure channel;

服务提供商端通过所述用户身份值IDi、随机数a、服务身份值IDj以及服务提供商秘密值Ksp计算获得数值Mi、数值Gi以及数值Qi;将所述数值Mi、所述数值Gi通过安全信道发送给所述风电场用户端以便所述风电场用户端将所述数值Mi、所述数值Gi以及所述第一随机数a进行储存,所述服务提供商端将所述第三数值Qi存入自身数据库;The service provider side calculates and obtains numerical value Mi, numerical value G i and numerical value Qi through the user identity value ID i , random number a, service identity value ID j and service provider secret value K sp ; , the value Gi is sent to the wind farm client through a secure channel, so that the wind farm client stores the value Mi , the value Gi and the first random number a, and the service The provider side stores the third value Qi in its own database;

步骤2:相互认证Step 2: Mutual Authentication

通过所述风电场用户端完成登录操作后,选择随机数b,通过所述随机数a、所述随机数b以及风电场秘密值Ksm计算获得数值N;再计算获得数值L1,将计算得到的数值N、L1和时间值Ti与自身数据库里存储的数值Mi、Gi用提前分享的一个对称密钥s进行加密获得Es=[Mi,Gi,N,L1,Ti],将加密过后的消息Es=[Mi,Gi,N,L1,Ti]通过公开的信道发送给服务提供商端;After completing the login operation through the wind farm client, select the random number b, and obtain the value N through the random number a , the random number b and the wind farm secret value K sm ; The obtained values N, L 1 and time value Ti and the values Mi and G i stored in the database are encrypted with a symmetric key s shared in advance to obtain E s =[M i , G i , N,L 1 ,T i ], send the encrypted message E s =[M i ,G i ,N,L 1 ,T i ] to the service provider through an open channel;

服务提供商端接收到加密消息Es=[Mi,Gi,N,L1,Ti]后解密消息得到数值M′i、数值G′i、数值N′i、数值L'1、时间值Ti,计算消息刷新值ΔT,如果数值在范围之内就进行接下来的操作,否则就拒绝服务;After receiving the encrypted message E s =[M i ,G i ,N,L 1 ,T i ], the service provider side decrypts the message to obtain the value M′ i , the value G′ i , the value N′ i , the value L′ 1 , Time value T i , calculate the message refresh value ΔT, if the value is within the range, perform the next operation, otherwise reject the service;

服务提供商端采用对称密钥s解密得到数值Q′i,判断Q′i是否与储存在自身数据库中的Qi的值相等,用以判断消息是否来自完成注册的风电场用户端;The service provider uses the symmetric key s to decrypt to obtain the value Q' i , and judges whether the Q' i is equal to the value of Qi stored in its own database , so as to judge whether the message comes from the wind farm user that has completed the registration;

服务提供商端计算获得数值

Figure BDA0003326625480000021
判断数值
Figure BDA0003326625480000022
与数值L'1是否相等,用以判断经过加密接收到的消息里面的各项数值是否被篡改;The service provider calculates the value
Figure BDA0003326625480000021
Judgment value
Figure BDA0003326625480000022
Whether it is equal to the value L' 1 , it is used to judge whether the values in the message received through encryption have been tampered with;

服务提供商端选取随机数c和随机数d,并计算获得数值L2、数值U、时间值Ti,并将数值L2、数值U、时间值Ti用所述对称密钥s进行加密获得加密消息Es{L2,U,Ti},将加密消息Es{L2,U,Ti}发送给风电场用户端;The service provider side selects the random number c and the random number d, and calculates to obtain the value L 2 , the value U, and the time value T i , and encrypts the value L 2 , the value U, and the time value T i with the symmetric key s Obtain the encrypted message E s {L 2 ,U,T i }, and send the encrypted message E s {L 2 ,U,T i } to the wind farm client;

风电场用户端接收到加密消息Es{L2,U,Ti}后,对加密消息Es{L2,U,Ti}进行解密得到数值L'2、数值U'、时间值Ti,计算消息刷新值ΔT看数值是否在值域之内,计算获得数值L"2并验证是否L"2=L'2,用以判断加密消息Es{L2,U,Ti}是否来自服务提供商端且消息内容是否被篡改;After receiving the encrypted message E s {L 2 ,U,T i }, the wind farm user terminal decrypts the encrypted message E s {L 2 ,U,T i } to obtain the value L' 2 , the value U', and the time value T i , calculate the message refresh value ΔT to see if the value is within the range, obtain the value L" 2 and verify whether L" 2 =L' 2 , to judge whether the encrypted message Es {L 2 ,U,T i } From the service provider and whether the content of the message has been tampered with;

认证通过后得到会话密钥SK=h(IDi||a||N||U);所述会话密钥用于加密会话消息内容。After the authentication is passed, the session key SK=h(ID i ||a||N||U) is obtained; the session key is used to encrypt the content of the session message.

优选地:步骤1中风电场用户端采用用户输入的用户身份值IDi、密码值PWi以及选定的随机数a计算获得数值Ai并储存;Preferably: in step 1, the wind farm user terminal adopts the user identity value ID i input by the user, the password value PW i and the selected random number a to calculate and obtain the value A i and store it;

在步骤2之前风电场用户端采用数值Ai实现用户登录认证。Before step 2, the wind farm user terminal adopts the numerical value A i to realize user login authentication.

优选地:所述用户登录认证包括风电场用户端接收用户输入的身份值

Figure BDA0003326625480000031
和密码
Figure BDA0003326625480000032
风电场用户端计算获得数值
Figure BDA0003326625480000033
将计算得到的数值
Figure BDA0003326625480000034
与存储在自身数据库中的数值Ai进行比较,是否满足
Figure BDA0003326625480000035
如果满足条件则说明用户身份正确户登录认证通过。Preferably: the user login authentication includes the wind farm client receiving the identity value input by the user
Figure BDA0003326625480000031
and password
Figure BDA0003326625480000032
Wind farm user terminal calculates the value
Figure BDA0003326625480000033
the value that will be calculated
Figure BDA0003326625480000034
Compare it with the value A i stored in its own database, whether it satisfies
Figure BDA0003326625480000035
If the conditions are met, it means that the user identity is correct and the user login authentication has passed.

优选地:所述数值Ai=h(IDi||a||PWi),所述数值

Figure BDA0003326625480000036
Preferably: the numerical value A i =h(ID i ||a||PW i ), the numerical value
Figure BDA0003326625480000036

优选地:所述数值

Figure BDA0003326625480000037
所述数值
Figure BDA0003326625480000038
所述数值
Figure BDA0003326625480000039
Preferably: the numerical value
Figure BDA0003326625480000037
the value
Figure BDA0003326625480000038
the value
Figure BDA0003326625480000039

优选地:所述数值N=(Ksm*a)+b,所述数值L1=h(N||r),所述

Figure BDA00033266254800000310
Preferably: the numerical value N=(K sm *a)+b, the numerical value L 1 =h(N||r), the
Figure BDA00033266254800000310

优选地:服务提供商端采用对称密钥s解密M′i、G′i得到

Figure BDA00033266254800000311
Figure BDA00033266254800000312
所述数值
Figure BDA00033266254800000313
其中,
Figure BDA00033266254800000314
Preferably: the service provider uses the symmetric key s to decrypt M' i , G' i to obtain
Figure BDA00033266254800000311
Figure BDA00033266254800000312
the value
Figure BDA00033266254800000313
in,
Figure BDA00033266254800000314

优选地:所述数值

Figure BDA00033266254800000315
其中,所述r'=h(ID"i||a"||N')。Preferably: the numerical value
Figure BDA00033266254800000315
Wherein, the r'=h(ID" i ||a"||N').

优选地:所述数值U=h(Ksp*c)+d、所述数值L2=h(U||SK),其中,所述SK=h(ID"i||a"||N||U)。Preferably: the numerical value U=h(K sp *c)+d, the numerical value L 2 =h(U||SK), wherein the SK=h(ID" i ||a"||N ||U).

优选地:所述数值L"2=h(U'||SK'),其中,

Figure BDA00033266254800000316
Preferably: the numerical value L" 2 =h(U'||SK'), wherein,
Figure BDA00033266254800000316

根据本发明提供的具体实施例,本发明公开了以下技术效果:According to the specific embodiments provided by the present invention, the present invention discloses the following technical effects:

通过本发明,可以实现一种基于风电场通信的网络安全身份认证方法,在一种实现方式下,该方法可以包括用户注册以及互相认证两个阶段。本申请提供的基于风电场通信的网络安全身份认证方法,每一个风电场用户想要加入风电场通信网络中时都需要向服务提供商进行注册,服务提供商会给每一个注册的风电场用户预先共享一个互不相同的对称密钥,并为其计算两个实体之后相互验证的相关值,最终将计算好的相关值发送给风电场用户。在之后的登录和认证阶段去验证合法用户身份并与之产生会话密钥。通过该方法可以实现两个实体会话秘钥生成之前的互相认证,同时可以保证认证过程中的各个信息在通过公共信道传输时不会被篡改,进而达到提高网络通信安全性的目的。Through the present invention, a network security identity authentication method based on wind farm communication can be realized, and in an implementation manner, the method can include two stages of user registration and mutual authentication. In the network security identity authentication method based on wind farm communication provided by this application, each wind farm user needs to register with the service provider when he wants to join the wind farm communication network. Share a different symmetric key, and calculate the correlation value of the two entities after mutual verification, and finally send the calculated correlation value to the wind farm user. In the subsequent login and authentication phases, the identity of the legitimate user is verified and a session key is generated from it. The method can realize mutual authentication before the generation of session keys of two entities, and can ensure that each information in the authentication process will not be tampered with when transmitted through the public channel, thereby achieving the purpose of improving network communication security.

当然,实施本发明的任一产品并不一定需要同时达到以上所述的所有优点。Of course, it is not necessary for any product embodying the present invention to achieve all of the advantages described above simultaneously.

附图说明Description of drawings

为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the accompanying drawings required in the embodiments will be briefly introduced below. Obviously, the drawings in the following description are only some of the present invention. In the embodiments, for those of ordinary skill in the art, other drawings can also be obtained according to these drawings without any creative effort.

图1是本发明实施例提供的一种基于风电场通信的网络安全身份认证方法中用户注册阶段的流程图;1 is a flowchart of a user registration stage in a network security identity authentication method based on wind farm communication provided by an embodiment of the present invention;

图2是本发明实施例提供的一种基于风电场通信的网络安全身份认证方法中相互认证阶段的流程图。FIG. 2 is a flowchart of a mutual authentication stage in a network security identity authentication method based on wind farm communication provided by an embodiment of the present invention.

具体实施方式Detailed ways

下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only a part of the embodiments of the present invention, rather than all the embodiments. Based on the embodiments in the present invention, all other embodiments obtained by those of ordinary skill in the art fall within the protection scope of the present invention.

实施例Example

参见图1、图2,为本发明实施例提供的一种基于风电场通信的网络安全身份认证方法,如图1、图2所示,该方法包括以下步骤:Referring to FIG. 1 and FIG. 2 , a network security identity authentication method based on wind farm communication provided by an embodiment of the present invention, as shown in FIG. 1 and FIG. 2 , the method includes the following steps:

步骤1:用户注册Step 1: User Registration

风电场用户端将用户输入的用户身份值IDi与选定的随机数a通过安全信道发送给服务提供商端;The wind farm client sends the user identity value ID i input by the user and the selected random number a to the service provider through a secure channel;

服务提供商端通过所述用户身份值IDi、随机数a、服务身份值IDj以及服务提供商秘密值Ksp计算获得数值Mi、数值Gi以及数值Qi;将所述数值Mi、所述数值Gi通过安全信道发送给所述风电场用户端以便所述风电场用户端将所述数值Mi、所述数值Gi以及所述第一随机数a进行储存,所述服务提供商端将所述第三数值Qi存入自身数据库;The service provider side calculates and obtains numerical value Mi, numerical value G i and numerical value Qi through the user identity value ID i , random number a, service identity value ID j and service provider secret value K sp ; , the value Gi is sent to the wind farm client through a secure channel, so that the wind farm client stores the value Mi , the value Gi and the first random number a, and the service The provider side stores the third value Qi in its own database;

步骤2:相互认证Step 2: Mutual Authentication

通过所述风电场用户端完成登录操作后,选择随机数b,通过所述随机数a、所述随机数b以及风电场秘密值Ksm计算获得数值N;再计算获得数值L1,将计算得到的数值N、L1和时间值Ti与自身数据库里存储的数值Mi、Gi用提前分享的一个对称密钥s进行加密获得Es=[Mi,Gi,N,L1,Ti],将加密过后的消息Es=[Mi,Gi,N,L1,Ti]通过公开的信道发送给服务提供商端;After completing the login operation through the wind farm client, select the random number b, and obtain the value N through the random number a , the random number b and the wind farm secret value K sm ; The obtained values N, L 1 and time value Ti and the values Mi and G i stored in the database are encrypted with a symmetric key s shared in advance to obtain E s =[M i , G i , N,L 1 ,T i ], send the encrypted message E s =[M i ,G i ,N,L 1 ,T i ] to the service provider through an open channel;

服务提供商端接收到加密消息Es=[Mi,Gi,N,L1,Ti]后解密消息得到数值M′i、数值G′i、数值N′i、数值L'1、时间值Ti,计算消息刷新值ΔT,如果数值在范围之内就进行接下来的操作,否则就拒绝服务;After receiving the encrypted message E s =[M i ,G i ,N,L 1 ,T i ], the service provider side decrypts the message to obtain the value M′ i , the value G′ i , the value N′ i , the value L′ 1 , Time value T i , calculate the message refresh value ΔT, if the value is within the range, perform the next operation, otherwise reject the service;

服务提供商端采用对称密钥s解密得到数值Q′i,判断Q′i是否与储存在自身数据库中的Qi的值相等,用以判断消息是否来自完成注册的风电场用户端;The service provider uses the symmetric key s to decrypt to obtain the value Q' i , and judges whether the Q' i is equal to the value of Qi stored in its own database , so as to judge whether the message comes from the wind farm user that has completed the registration;

服务提供商端计算获得数值

Figure BDA0003326625480000051
判断数值
Figure BDA0003326625480000052
与数值L'1是否相等,用以判断经过加密接收到的消息里面的各项数值是否被篡改;The service provider calculates the value
Figure BDA0003326625480000051
Judgment value
Figure BDA0003326625480000052
Whether it is equal to the value L' 1 , it is used to judge whether the values in the message received through encryption have been tampered with;

服务提供商端选取随机数c和随机数d,并计算获得数值L2、数值U、时间值Ti,并将数值L2、数值U、时间值Ti用所述对称密钥s进行加密获得加密消息Es{L2,U,Ti},将加密消息Es{L2,U,Ti}发送给风电场用户端;The service provider side selects the random number c and the random number d, and calculates to obtain the value L 2 , the value U, and the time value T i , and encrypts the value L 2 , the value U, and the time value T i with the symmetric key s Obtain the encrypted message E s {L 2 ,U,T i }, and send the encrypted message E s {L 2 ,U,T i } to the wind farm client;

风电场用户端接收到加密消息Es{L2,U,Ti}后,对加密消息Es{L2,U,Ti}进行解密得到数值L'2、数值U'、时间值Ti,计算消息刷新值ΔT看数值是否在值域之内,计算获得数值L"2并验证是否L"2=L'2,用以判断加密消息Es{L2,U,Ti}是否来自服务提供商端且消息内容是否被篡改;After receiving the encrypted message E s {L 2 ,U,T i }, the wind farm user terminal decrypts the encrypted message E s {L 2 ,U,T i } to obtain the value L' 2 , the value U', and the time value T i , calculate the message refresh value ΔT to see if the value is within the range, obtain the value L" 2 and verify whether L" 2 =L' 2 , to judge whether the encrypted message Es {L 2 ,U,T i } From the service provider and whether the content of the message has been tampered with;

认证通过后得到会话密钥SK=h(IDi||a||N||U);所述会话密钥用于加密会话消息内容。After the authentication is passed, the session key SK=h(ID i ||a||N||U) is obtained; the session key is used to encrypt the content of the session message.

本申请实施例提供的基于风电场通信的网络安全身份认证方法,包含两个部分:注册和登录密钥协商。第一部分是注册部分,风电场用户通过安全信道或者线下注册的方式在服务提供商处进行注册备案。第二个部分是登录密钥协商风电场用户首先登录并验证,之后与服务提供商相互认证并与之生成会话密钥。The network security identity authentication method based on wind farm communication provided by the embodiment of the present application includes two parts: registration and login key negotiation. The first part is the registration part, where wind farm users register with service providers through secure channels or offline registration. The second part is login key negotiation. The wind farm user first logs in and authenticates, and then mutually authenticates with the service provider and generates a session key with it.

为了可以实现在用户通过风电场用户端进行登录时对用户的身份进行认证。本申请实施例可以提供步骤1中风电场用户端采用用户输入的用户身份值IDi、密码值PWi以及选定的随机数a计算获得数值Ai并储存;In order to realize the authentication of the user's identity when the user logs in through the wind farm client. The embodiment of the present application can provide that in step 1, the wind farm client uses the user identity value ID i input by the user, the password value PW i and the selected random number a to calculate and store the value A i ;

在步骤2之前风电场用户端采用数值Ai实现用户登录认证。Before step 2, the wind farm user terminal adopts the numerical value A i to realize user login authentication.

可以理解的是,本申请实施例提供的各个数值均可以采用相应的计算公式计算获得,例如,在一种实现方式下,本申请实施例提供的一部分数值可以采用的公开的哈希函数h()计算获得,一部分可以采用同态加密算法E()计算获得。具体的,所述数值Ai=h(IDi||a||PWi),所述数值

Figure BDA0003326625480000061
It can be understood that each value provided in the embodiment of the present application can be obtained by using a corresponding calculation formula. For example, in an implementation manner, a part of the numerical value provided by the embodiment of the present application can adopt the disclosed hash function h( ) is obtained by calculation, and a part of it can be obtained by using the homomorphic encryption algorithm E(). Specifically, the numerical value A i =h(ID i ||a||PW i ), the numerical value
Figure BDA0003326625480000061

所述数值

Figure BDA0003326625480000062
所述数值
Figure BDA0003326625480000063
所述数值
Figure BDA0003326625480000064
the value
Figure BDA0003326625480000062
the value
Figure BDA0003326625480000063
the value
Figure BDA0003326625480000064

所述数值N=(Ksm*a)+b,所述数值L1=h(N||r),所述

Figure BDA0003326625480000065
The numerical value N=(K sm *a)+b, the numerical value L 1 =h(N||r), the
Figure BDA0003326625480000065

服务提供商端采用对称密钥s解密M′i、G′i得到

Figure BDA0003326625480000066
Figure BDA0003326625480000067
所述数值
Figure BDA0003326625480000068
其中,
Figure BDA0003326625480000069
The service provider uses the symmetric key s to decrypt M' i , G' i to obtain
Figure BDA0003326625480000066
Figure BDA0003326625480000067
the value
Figure BDA0003326625480000068
in,
Figure BDA0003326625480000069

所述数值

Figure BDA00033266254800000610
其中,所述r'=h(ID"i||a"||N')。the value
Figure BDA00033266254800000610
Wherein, the r'=h(ID" i ||a"||N').

所述数值U=h(Ksp*c)+d、所述数值L2=h(U||SK),其中,所述SK=h(ID"i||a"||N||U)。The numerical value U=h(K sp *c)+d, the numerical value L 2 =h(U||SK), wherein the SK=h(ID" i ||a"||N||U ).

所述数值L"2=h(U'||SK'),其中,

Figure BDA00033266254800000611
The numerical value L" 2 =h(U'||SK'), wherein,
Figure BDA00033266254800000611

本申请实施例提供的基于风电场通信的网络安全身份认证方法,两个实体分别是风电场通信中的风电场用户(SMi)和服务提供商(SPj)。In the network security identity authentication method based on wind farm communication provided by the embodiments of the present application, the two entities are the wind farm user (SM i ) and the service provider (SP j ) in the wind farm communication, respectively.

风电场用户(SMi):最基础的用户单元,每当一个风电场用户想要加入风电场通信网络中时都需要向服务提供商进行注册,并将服务提供商为其计算的相关值存储进自身内存中。并最终与服务提供商达成会话密钥,以此来进行后续两个实体之间的加密通信。Wind farm user (SM i ): the most basic user unit. Whenever a wind farm user wants to join the wind farm communication network, it needs to register with the service provider and store the relevant value calculated by the service provider for it. into its own memory. And finally reach a session key with the service provider for subsequent encrypted communication between the two entities.

服务提供商(SPj):每当一个风电场用户想要加入风电场通信网络中时都需要向服务提供商进行注册,服务提供商会给每一个注册的风电场用户预先共享一个互不相同的对称密钥,并为其计算两个实体之后相互验证的相关值,最终将计算好的相关值发送给风电场用户。在之后的登录和认证阶段去验证合法用户身份并与之产生会话密钥。Service Provider (SP j ): Every time a wind farm user wants to join the wind farm communication network, it needs to register with the service provider. Symmetric key, and calculate the correlation value of the two entities after mutual verification, and finally send the calculated correlation value to the wind farm user. In the subsequent login and authentication phases, the identity of the legitimate user is verified and a session key is generated from it.

具体实施时:When implementing:

用户注册User registration

风电场用户(SMi)先输入身份值IDi和密码PWi,接着选择一个随机数a,然后计算出Ai=h(IDi||a||PWi),最后通过安全信道将身份值IDi和随机数a发送给服务提供商(SPj)。The wind farm user (SM i ) first inputs the identity value ID i and the password PW i , then selects a random number a, then calculates A i =h(ID i ||a||PW i ), and finally transfers the identity value through the secure channel. The value ID i and the random number a are sent to the service provider (SP j ).

服务提供商(SPj)收到信息之后计算

Figure BDA0003326625480000071
Figure BDA0003326625480000072
Ksp为服务提供商的一个秘密值。接着将计算出的数值Mi、Gi通过安全信道发送给SMi并将计算出的Qi存入自身数据库。Calculated after the service provider (SP j ) receives the information
Figure BDA0003326625480000071
Figure BDA0003326625480000072
K sp is a secret value of the service provider. Then, the calculated values Mi and Gi are sent to SM i through a secure channel and the calculated Qi is stored in its own database.

SMi接收到来自SPj发来的消息后就将Ai、Mi、Gi、a存入自身数据库中。After receiving the message from SP j , SM i stores A i , M i , G i , and a in its own database.

登录认证login authentication

风电场用户(SMi)首先进行登录操作,输入身份值

Figure BDA0003326625480000073
和密码
Figure BDA0003326625480000074
然后风电场计算
Figure BDA0003326625480000075
并将计算得到的值与存储在自身数据库中的值Ai进行比较,是否满足
Figure BDA0003326625480000076
如果满足条件则说明用户身份正确可以进行接下来的操作,反之则拒绝服务。The wind farm user (SM i ) first performs the login operation and enters the identity value
Figure BDA0003326625480000073
and password
Figure BDA0003326625480000074
Then the wind farm calculates
Figure BDA0003326625480000075
and compare the calculated value with the value A i stored in its own database, whether it satisfies
Figure BDA0003326625480000076
If the conditions are met, the user's identity is correct and the next operation can be performed; otherwise, the service is refused.

相互认证mutual authentication

接着风电场用户(SMi)选择一个随机数b,计算N=(Ksm*a)+b,其中Ksm是风电场的一个秘密值。再计算

Figure BDA0003326625480000081
L1=h(N||r),将计算得到的数值N、L1和时间值Ti与自身数据库里存储的数值Mi、Gi用提前分享的一个对称密钥s进行加密Es=[Mi,Gi,N,L1,Ti],最后将加密过后的消息通过公开的信道发送给服务提供商。The wind farm user (SM i ) then selects a random number b and calculates N=(K sm *a)+b, where K sm is a secret value of the wind farm. recalculate
Figure BDA0003326625480000081
L 1 =h(N||r), encrypt the calculated value N, L 1 and time value T i with the values Mi and G i stored in the database with a symmetric key s shared in advance E s =[M i ,G i ,N,L 1 ,T i ], and finally send the encrypted message to the service provider through an open channel.

当服务提供商(SPj)接收到加密消息后解密消息得到M′i、G′i、N′i、L'1、Ti,先计算消息刷新值ΔT,如果数值在范围之内就进行接下来的操作,否则就拒绝服务。When the service provider (SP j ) receives the encrypted message and decrypts the message to obtain M' i , G' i , N' i , L' 1 , and T i , first calculate the message refresh value ΔT, and if the value is within the range, proceed to the next action, otherwise it is a denial of service.

接着再解密M′i、G′i得到

Figure BDA0003326625480000082
并计算
Figure BDA0003326625480000083
Figure BDA0003326625480000084
然后验证计算得到的Q′i值是否与储存在自身数据库中的Qi的值相等即Q′i=Qi,如果两个值相等则能证明消息来自之前注册的风电场用户,否则就拒绝服务。Then decrypt M' i and G' i to get
Figure BDA0003326625480000082
and calculate
Figure BDA0003326625480000083
Figure BDA0003326625480000084
Then verify whether the calculated value of Q' i is equal to the value of Q i stored in its own database, that is, Q' i =Q i , if the two values are equal, it can prove that the message comes from the previously registered wind farm user, otherwise it is rejected Serve.

接下来服务提供商(SPj)计算r'=h(ID"i||a"||N')、

Figure BDA0003326625480000085
并验证
Figure BDA0003326625480000086
如果两个数值相等则能证明经过加密接收到的消息里面的各项数值没有进行过篡改,否则拒绝服务。Next, the service provider (SP j ) calculates r'=h(ID" i ||a"||N'),
Figure BDA0003326625480000085
and verify
Figure BDA0003326625480000086
If the two values are equal, it can prove that the values in the encrypted received message have not been tampered with, otherwise the service will be refused.

然后服务提供商(SPj)选取两个随机数c和d,并计算U=h(Ksp*c)+d、SK=h(ID"i||a"||N||U)、L2=h(U||SK),最后将L2、U、Ti用风电场与服务提供商预先分享的对称密钥s进行加密再发送给风电场Es{L2,U,Ti}。Then the service provider (SP j ) selects two random numbers c and d, and calculates U=h(K sp *c)+d, SK=h(ID" i ||a"||N||U), L 2 =h(U||SK), finally L 2 , U, T i are encrypted with the symmetric key s shared in advance by the wind farm and the service provider, and then sent to the wind farm E s {L 2 ,U,T i }.

当风电场用户接收到加密的消息后,先对消息进行解密得到L'2、U'、Ti,然后计算消息刷新值ΔT看数值是否在值域之内,接着计算

Figure BDA0003326625480000087
L"2=h(U'||SK')并去验证是否L"2=L'2,如果两数值相等则能证明消息来自服务提供商且消息内容没有被篡改,反之则拒绝服务。When the wind farm user receives the encrypted message, it first decrypts the message to obtain L' 2 , U' and T i , then calculates the message refresh value ΔT to see if the value is within the range, and then calculates
Figure BDA0003326625480000087
L" 2 =h(U'||SK') and verify whether L" 2 =L' 2 , if the two values are equal, it can prove that the message comes from the service provider and the message content has not been tampered with, otherwise, the service is rejected.

最终可得到SK=h(IDi||a||N||U)即为会话密钥之后的通信可用此密钥加密会话消息内容。Finally, SK=h(ID i ||a||N||U) can be obtained, that is, the session key can be used to encrypt the content of the session message after the communication.

总之,本申请提供的基于风电场通信的网络安全身份认证方法,每一个风电场用户想要加入风电场通信网络中时都需要向服务提供商进行注册,服务提供商会给每一个注册的风电场用户预先共享一个互不相同的对称密钥,并为其计算两个实体之后相互验证的相关值,最终将计算好的相关值发送给风电场用户。在之后的登录和认证阶段去验证合法用户身份并与之产生会话密钥。通过该方法可以实现两个实体会话秘钥生成之前的互相认证,同时可以保证认证过程中的各个信息在通过公共信道传输时不会被篡改,进而达到提高网络通信安全性的目的。In a word, in the network security identity authentication method based on wind farm communication provided by this application, each wind farm user needs to register with the service provider when he wants to join the wind farm communication network, and the service provider will give each registered wind farm Users share a different symmetric key in advance, and calculate the correlation value of the two entities after mutual verification, and finally send the calculated correlation value to the wind farm user. In the subsequent login and authentication phases, the identity of the legitimate user is verified and a session key is generated from it. The method can realize mutual authentication before the generation of session keys of two entities, and can ensure that each information in the authentication process will not be tampered with when transmitted through the public channel, thereby achieving the purpose of improving network communication security.

需要说明的是,在本文中,诸如第一和第二等之类的关系术语仅仅用来将一个实体或者操作与另一个实体或操作区分开来,而不一定要求或者暗示这些实体或操作之间存在任何这种实际的关系或者顺序。而且,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括所述要素的过程、方法、物品或者设备中还存在另外的相同要素。It should be noted that, in this document, relational terms such as first and second are used only to distinguish one entity or operation from another entity or operation, and do not necessarily require or imply any relationship between these entities or operations. any such actual relationship or sequence exists. Moreover, the terms "comprising", "comprising" or any other variation thereof are intended to encompass non-exclusive inclusion such that a process, method, article or device comprising a list of elements includes not only those elements, but also includes not explicitly listed or other elements inherent to such a process, method, article or apparatus. Without further limitation, an element qualified by the phrase "comprising a..." does not preclude the presence of additional identical elements in a process, method, article or apparatus that includes the element.

以上所述仅为本发明的较佳实施例而已,并非用于限定本发明的保护范围。凡在本发明的精神和原则之内所作的任何修改、等同替换、改进等,均包含在本发明的保护范围内。The above descriptions are only preferred embodiments of the present invention, and are not intended to limit the protection scope of the present invention. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present invention are included in the protection scope of the present invention.

Claims (10)

1. A network security identity authentication method based on wind power plant communication is characterized by comprising the following steps:
step 1: user registration
User identity value ID input by user at wind power plant user sideiSending the random number a and the selected random number a to a service provider end through a secure channel;
the service provider end passes the user identity value IDiRandom number a, service identity value IDjAnd a service provider secret value KspCalculating to obtain a value MiNumerical value GiAnd a value Qi(ii) a The value M is measurediThe value GiSending the value M to the wind power plant user side through a safety channel so that the wind power plant user side can conveniently use the value MiThe value GiAnd the first random number a is stored, and the service provider side stores the third value QiStoring the data into a self database;
step 2: mutual authentication
After the wind power plant user end finishes login operation, selecting a random number b, and obtaining a wind power plant secret value K through the random number a, the random number b and the wind power plant secret value KsmCalculating to obtain a numerical value N; then the value L is obtained by calculation1Will calculate the value N, L1And a time value TiWith the value M stored in its own databasei、GiEncryption with a symmetric key s shared in advance to obtain Es=[Mi,Gi,N,L1,Ti]The encrypted message Es=[Mi,Gi,N,L1,Ti]Sending the data to a service provider end through an open channel;
the service provider end receives the encrypted message Es=[Mi,Gi,N,L1,Ti]Decrypting the message to obtain a value M'iNumerical value G'iNumerical value N'iNumerical value L'1Time value TiCalculating a message refresh value delta T, if the value is within the range, carrying out the next operation, otherwise, rejecting the service;
the service provider side decrypts the data by adopting the symmetric key s to obtain a value Q'iJudging Q'iWhether or not to match Q stored in its own databaseiThe values of the data are equal to each other, and the data are used for judging whether the message comes from the registered wind power plant user side;
service provider side calculates and obtains numerical value
Figure FDA0003326625470000011
Judging the value
Figure FDA0003326625470000012
And a numerical valueL'1Whether the values are equal or not is used for judging whether all values in the encrypted and received message are tampered or not;
the service provider selects the random number c and the random number d, and calculates to obtain a value L2Numerical value U and time value TiAnd the value L is compared2Numerical value U and time value TiEncrypting with the symmetric key s to obtain an encrypted message Es{L2,U,TiWill encrypt message Es{L2,U,TiSending the wind power station to a user side of the wind power station;
the wind power plant user side receives the encrypted message Es{L2,U,TiAfter the encryption, the message E is encrypteds{L2,U,TiDeciphering to obtain a value L'2Numerical value U', time value TiCalculating message refresh value delta T to see if the value is within the value range, calculating to obtain the value L "2And verifying whether L "2=L'2For determining an encrypted message Es{L2,U,TiWhether the message content comes from the service provider side or not is tampered;
obtaining a session key SK h (ID) after passing the authenticationiA N U); the session key is used to encrypt the session message content.
2. The network security identity authentication method based on wind farm communication according to claim 1, wherein in step 1, the wind farm user side adopts a user identity value ID input by a useriA password value PWiAnd calculating the selected random number a to obtain a value AiAnd storing;
adopting a numerical value A at a wind power plant user end before step 2iAnd realizing user login authentication.
3. The wind farm communication-based network security identity authentication method according to claim 1, wherein the user login authentication comprises a wind farm user side receiving an identity value input by a user
Figure FDA0003326625470000021
And a password
Figure FDA0003326625470000022
Wind power plant user side calculation to obtain numerical value
Figure FDA0003326625470000023
Will calculate the obtained value
Figure FDA0003326625470000024
With the value A stored in its own databaseiComparing to determine whether the above-mentioned requirements are met
Figure FDA0003326625470000025
If the conditions are met, the user identity is correct, and the user login authentication is passed.
4. The wind farm communication-based network security identity authentication method according to claim 3, wherein the value Ai=h(IDi||a||PWi) The value of
Figure FDA0003326625470000026
5. The wind farm communication-based network security identity authentication method according to claim 1, wherein the numerical value
Figure FDA0003326625470000027
The numerical value
Figure FDA0003326625470000028
The numerical value
Figure FDA0003326625470000029
6. Wind farm based on a wind park according to claim 1The network security identity authentication method of the credit is characterized in that the value N ═ KsmA) + b, the value L1H (N | | r), the
Figure FDA00033266254700000210
7. The wind farm communication-based network security identity authentication method according to claim 1, wherein the service provider side decrypts M 'by using a symmetric key s'i、G′iTo obtain
Figure FDA00033266254700000211
Figure FDA00033266254700000212
The numerical value
Figure FDA00033266254700000213
Wherein,
Figure FDA00033266254700000214
8. the wind farm communication-based network security identity authentication method according to claim 1, wherein the numerical value
Figure FDA0003326625470000031
Wherein r' ═ h (ID ″)i||a"||N')。
9. The wind farm communication-based network security identity authentication method according to claim 1, wherein the value U-h (K)spC) + d, the value L2H (U | | SK), wherein SK ═ h (ID ″)i||a"||N||U)。
10. Network security identity based on wind farm communication according to claim 1An authentication method characterized in that said numerical value L "2H (U '| SK'), wherein,
Figure FDA0003326625470000032
CN202111264312.XA 2021-10-28 2021-10-28 Network security identity authentication method based on wind power plant communication Pending CN114338071A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111264312.XA CN114338071A (en) 2021-10-28 2021-10-28 Network security identity authentication method based on wind power plant communication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111264312.XA CN114338071A (en) 2021-10-28 2021-10-28 Network security identity authentication method based on wind power plant communication

Publications (1)

Publication Number Publication Date
CN114338071A true CN114338071A (en) 2022-04-12

Family

ID=81045609

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111264312.XA Pending CN114338071A (en) 2021-10-28 2021-10-28 Network security identity authentication method based on wind power plant communication

Country Status (1)

Country Link
CN (1) CN114338071A (en)

Citations (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101110678A (en) * 2002-08-28 2008-01-23 高通股份有限公司 Method and apparatus for security in a data processing system
CN105072110A (en) * 2015-08-06 2015-11-18 山东科技大学 Two-factor remote identity authentication method based on smart card
WO2017004470A1 (en) * 2015-06-30 2017-01-05 Visa International Service Association Mutual authentication of confidential communication
CN106534064A (en) * 2016-09-28 2017-03-22 天津大学 ID-based non-trusted third party identity verification system and method
KR101721511B1 (en) * 2017-02-09 2017-03-30 에스지에이솔루션즈 주식회사 A user authentication method using symmetric key, to guarantee anonymity in the wireless sensor network environment
US20170135059A1 (en) * 2015-11-09 2017-05-11 Infosys Limited Method and system of authentication and ota registration of a new user without a sim card in multi-operator mobile telephony
CN106936592A (en) * 2017-05-11 2017-07-07 成都信息工程大学 A kind of tripartite's subjective entropy based on extension chaos algorithm
CN107710216A (en) * 2015-07-03 2018-02-16 阿费罗有限公司 Apparatus and method for establishing a secure communication channel in an Internet of Things (IoT) system
CN109040045A (en) * 2018-07-25 2018-12-18 广东工业大学 A kind of cloud storage access control method based on the encryption of ciphertext policy ABE base
US20190103964A1 (en) * 2017-10-04 2019-04-04 Amir Keyvan Khandani Methods for encrypted data communications
CN109714167A (en) * 2019-03-15 2019-05-03 北京邮电大学 Authentication and cryptographic key negotiation method and equipment suitable for mobile application signature
CN110838920A (en) * 2019-11-20 2020-02-25 北京航空航天大学 Password authentication and key agreement protocol without storing password related information in web system
US20200195446A1 (en) * 2018-12-18 2020-06-18 Sri International System and method for ensuring forward & backward secrecy using physically unclonable functions
CN111372248A (en) * 2020-02-27 2020-07-03 南通大学 An efficient anonymous identity authentication method in the Internet of Vehicles environment
CN111756533A (en) * 2014-08-29 2020-10-09 维萨国际服务协会 System, method and storage medium for secure password generation
CN112953727A (en) * 2021-03-02 2021-06-11 西安电子科技大学 Internet of things-oriented equipment anonymous identity authentication method and system
CN113115307A (en) * 2021-04-12 2021-07-13 北京邮电大学 Two-factor identity authentication method oriented to smart home scene

Patent Citations (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101110678A (en) * 2002-08-28 2008-01-23 高通股份有限公司 Method and apparatus for security in a data processing system
CN111756533A (en) * 2014-08-29 2020-10-09 维萨国际服务协会 System, method and storage medium for secure password generation
WO2017004470A1 (en) * 2015-06-30 2017-01-05 Visa International Service Association Mutual authentication of confidential communication
CN107710216A (en) * 2015-07-03 2018-02-16 阿费罗有限公司 Apparatus and method for establishing a secure communication channel in an Internet of Things (IoT) system
CN105072110A (en) * 2015-08-06 2015-11-18 山东科技大学 Two-factor remote identity authentication method based on smart card
US20170135059A1 (en) * 2015-11-09 2017-05-11 Infosys Limited Method and system of authentication and ota registration of a new user without a sim card in multi-operator mobile telephony
CN106534064A (en) * 2016-09-28 2017-03-22 天津大学 ID-based non-trusted third party identity verification system and method
KR101721511B1 (en) * 2017-02-09 2017-03-30 에스지에이솔루션즈 주식회사 A user authentication method using symmetric key, to guarantee anonymity in the wireless sensor network environment
CN106936592A (en) * 2017-05-11 2017-07-07 成都信息工程大学 A kind of tripartite's subjective entropy based on extension chaos algorithm
US20190103964A1 (en) * 2017-10-04 2019-04-04 Amir Keyvan Khandani Methods for encrypted data communications
CN109040045A (en) * 2018-07-25 2018-12-18 广东工业大学 A kind of cloud storage access control method based on the encryption of ciphertext policy ABE base
US20200195446A1 (en) * 2018-12-18 2020-06-18 Sri International System and method for ensuring forward & backward secrecy using physically unclonable functions
CN109714167A (en) * 2019-03-15 2019-05-03 北京邮电大学 Authentication and cryptographic key negotiation method and equipment suitable for mobile application signature
CN110838920A (en) * 2019-11-20 2020-02-25 北京航空航天大学 Password authentication and key agreement protocol without storing password related information in web system
CN111372248A (en) * 2020-02-27 2020-07-03 南通大学 An efficient anonymous identity authentication method in the Internet of Vehicles environment
CN112953727A (en) * 2021-03-02 2021-06-11 西安电子科技大学 Internet of things-oriented equipment anonymous identity authentication method and system
CN113115307A (en) * 2021-04-12 2021-07-13 北京邮电大学 Two-factor identity authentication method oriented to smart home scene

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
Y. ZHANG等: ""Research on the cross-domain access control model in wind power plant"", 《009 INTERNATIONAL CONFERENCE ON SUSTAINABLE POWER GENERATION AND SUPPLY》 *
李艳平;刘小雪;屈娟;鲁来凤;: "基于智能卡的多服务器远程匿名认证密钥协商协议", 四川大学学报(工程科学版), no. 01 *

Similar Documents

Publication Publication Date Title
US12301566B2 (en) Biometric electronic signature authenticated key exchange token
CN103763631B (en) Authentication method, server and television set
US8763097B2 (en) System, design and process for strong authentication using bidirectional OTP and out-of-band multichannel authentication
CN103095696B (en) A kind of authentication and cryptographic key negotiation method being applicable to power information acquisition system
US8868909B2 (en) Method for authenticating a communication channel between a client and a server
CN106789042B (en) Authentication key agreement method for users in the IBC domain to access resources in the PKI domain
CN105141425B (en) A Two-way Authentication Method Based on Chaos Mapping to Protect Identity
US20100031051A1 (en) Protocol And Method For Client-Server Mutual Authentication Using Event-Based OTP
US11405387B1 (en) Biometric electronic signature authenticated key exchange token
CN104243494B (en) A kind of data processing method
US8397281B2 (en) Service assisted secret provisioning
CN105281902B (en) A kind of Web system safe login method based on mobile terminal
CN106998316B (en) Authentication method, application client and gateway equipment
CN103701787A (en) User name password authentication method implemented on basis of public key algorithm
CN107682152B (en) A Group Key Agreement Method Based on Symmetric Cipher
CN113886781B (en) Multi-authentication encryption method, system, electronic equipment and medium based on block chain
CN116073989A (en) Authentication data processing method, device, system, equipment and medium
CN101309147A (en) A method of identity authentication based on image password
CN101567033B (en) Biological authentication method for resisting privacy disclosure
CN114401153B (en) Authentication method and system for smart manhole cover equipment
CN111262698A (en) Identity authentication and privacy matching system and method based on SM3/4
CN101521571B (en) Method for authenticating safety unit and server side of mobile hardware
CN115865520B (en) Authentication and access control method with privacy protection in mobile cloud service environment
CN114338071A (en) Network security identity authentication method based on wind power plant communication
Vaziripour et al. Social Authentication for {End-to-End} Encryption

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
AD01 Patent right deemed abandoned

Effective date of abandoning: 20241122

AD01 Patent right deemed abandoned