摘要
针对目前Web站点的身份认证安全问题,提出了一种基于手机令牌和近距离无线通信(NFC,near field communication)技术的身份认证方法,并在Android平台上实现了该系统.该系统利用手机使用手机令牌实现了USBKey的主要功能,当用户访问站点进行注册时,将获得惟一的手机令牌并存于带有加解密功能的手机中.在下次访问站点进行身份认证时,用户可通过手机直接在Web站点进行身份认证,也可通过NFC技术将手机令牌传于PC机,使得用户可在PC机上利用手机进行身份认证.该系统将手机作为类USBKey设备,在增强Web站点身份认证安全的同时,省去了为用户颁发USBKey的流程和成本,具有较强的实用价值.
Aimed at the current security issues of the website identity authentication,an identity authentication system based on mobile-token and NFC(near field communication)technology was proposed and implemented on the Android platform.The system uses mobile-token with phone to achieve the main functions of the USBKey.When registering to a website,users will obtain an unique mobile-token that will be stored in a safe phone with encryption function.When authenticating to the website,users can authenticate to the website by the phone directly or users can transmit mobile-token to PC with NFC technology,thus users can authenticate with the mobile phone to the website on PC.The system uses mobile phone as a device similar to the USBKey,which can not only improve the security of the website identity authentication,but also save the process and cost of issuing USBKey to users,so it is of high value.
出处
《武汉大学学报(理学版)》
CAS
CSCD
北大核心
2013年第5期403-410,共8页
Journal of Wuhan University:Natural Science Edition
基金
国家自然科学基金(61003268)
湖北省自然基金(2010CDB08601)
中央高校基本科研业务费专项基金(211274629)资助项目
