CN103514392A - Login authentication device and method of computer operation system - Google Patents
Login authentication device and method of computer operation system Download PDFInfo
- Publication number
- CN103514392A CN103514392A CN201310439172.4A CN201310439172A CN103514392A CN 103514392 A CN103514392 A CN 103514392A CN 201310439172 A CN201310439172 A CN 201310439172A CN 103514392 A CN103514392 A CN 103514392A
- Authority
- CN
- China
- Prior art keywords
- authentication
- operating system
- release information
- nfc
- computing machine
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
- G06F21/35—User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2149—Restricted operating environment
Abstract
The invention discloses a login authentication device and method of a computer operation system. The login authentication device comprises a portable device and a computer, wherein the portable device is provided with an NFC chip and used for sending unlocking information to the computer by having NFC with the computer when getting close to the computer provided with an NFC chip; the computer is provided with the NFC chip and further comprises a locking module and an authentication module, wherein the locking module is used for locking the operation system when the operation system of the computer is switched on; the authentication module is used for receiving and authenticating the unlocking information, the operation system is unlocked if authentication is passed, and the operation system is kept locked if authentication is not passed. The login authentication device and method of the computer operation system are high in safety, rapid and efficient.
Description
Technical field
The present invention relates to computer operating system login authentication method field, refer to especially a kind of computer operating system login authentication apparatus and method.
Background technology
High speed development along with digital technology, problem of data safety also more and more highlights, the user cipher of common computer operating system has been not enough to the safety of data in assurance system, some passwords are plagiarized or are cracked, the security of data just can not be guaranteed, so need the better computer system login authentication method of a kind of security badly.
Summary of the invention
In view of this, the object of the invention is to propose a kind of safe, and the computer operating system login authentication apparatus and method of quickness and high efficiency.
Based on above-mentioned purpose a kind of computer operating system login authentication device provided by the invention, comprising:
Described computer installation has NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Preferably, described authentication module contrasts for the release authentication information being prestored and the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Optionally, described release information is enciphered message, and described authentication module is first decrypted it after reading described release information, then authenticates.
A kind of portable unit provided by the invention, described portable unit is provided with NFC chip, for the computer operating system login authentication device with above-mentioned, sets up after NFC communication connection, to described device, sends release information.
Preferably, comprise for storing the solution lock module of described release information.
A kind of computer operating system login authentication method provided by the invention, and comprise the following steps:
In the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication;
While having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection;
Described portable unit sends release information to described computing machine;
Described computing machine receives described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Preferably, described release information is pre-stored in described portable unit.
Preferably, to the authentication method of described release information, be: the release authentication information that described computing machine is prestored contrasts with the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Optionally, described portable unit is encrypted it before sending described release information.
Optionally, described computing machine is first decrypted it after receiving described release information, then authenticates.
As can be seen from above, a kind of computer operating system login authentication apparatus and method provided by the invention, the computing machine that is provided with NFC chip is locked in os starting process, by the portable unit NFC with being provided with NFC chip communicate by letter receive release information and authentication pass through after, just continue normal open system, for the login of operating system has increased a step verification process, even if the user cipher of operating system is revealed, also can prevent other people illegally logining; And portable unit, by user's keeping, has stronger security, whole login authentication process operation of while is simple, quickness and high efficiency.
Accompanying drawing explanation
Fig. 1 is a kind of computer operating system login authentication device framework map of the embodiment of the present invention;
Fig. 2 is a kind of computer operating system login authentication method process flow diagram of the embodiment of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with specific embodiment, and with reference to accompanying drawing, the present invention is described in more detail.
With reference to figure 1, it is a kind of computer operating system login authentication device framework map of the embodiment of the present invention.
The disclosed a kind of computer operating system login authentication device of the embodiment of the present invention, comprising:
Described computing machine 102 is provided with NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit 101 that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.。
Near-field communication (Near Field Communication, NFC), claim again wireless near field communication, it is a kind of short-range high frequency wireless communication technology, allow to carry out contactless Point-to-Point Data Transmission (in ten centimetres) swap data between electronic equipment, be used for the aspects such as data transmission, mobile payment, gate control system of mobile device.At present, yet there are no the login authentication aspect that NFC technology is applied to computer operating system.
NFC chip is arranged on the mainboard of described computing machine, is connected with main board bus, can directly communicate by letter with hardware such as internal memory, CPU.
The disclosed a kind of portable unit of the embodiment of the present invention, described portable unit is provided with NFC chip, for setting up after NFC communication connection with described computing machine, to described computing machine, sends release information.
As an embodiment, described portable unit is NFC mobile phone, and described NFC mobile phone, near described computing machine and set up NFC communication connection with it after, sends release information to described computing machine.Be provided with the mobile phone of NFC chip, function based on NFC chip, NFC mobile phone is by being operated in point to point operation pattern, can and other have between the digital camera, PDA, computing machine, mobile phone of NFC function, can carry out wireless interconnected, realize exchanges data, set up NFC communication, follow-up associated application can be that local application can be also network application.Based on NFC technology, simply by two NFC equipment near realizing the foundation of data communication, in the present embodiment, NFC mobile phone, when being provided with the computing machine of NFC chip, being set up NFC with this computing machine and is communicated by letter.
Described computing machine comprises locking module, described locking module is as the application program based on computer operating system exploitation, after installing and opening, when described locking module is opened in each computer operating system, in backstage, automatically move, before system enters input user login code step, operating system is locked.Locking to operating system is specially, and before entering user's login interface, increases and shows a NFC authentication interface, and prompting user need to use relevant equipment and this computing machine to communicate rear release, waits for the release information that receives.In the situation that it is not that receive release information or receive release information but unverified passing through, operating system will be retained a percentage of the total profits for the enterprise's own use in current NFC authentication interface, user cannot proceed to user's login interface, input user cipher step, and then the normal repertoire of open operation system, only can carry out shutdown or reboot operation; When receiving release information authentication while passing through, by current NFC authentication interface, enter into the input user login interface of operating system, user can continue ground as usual open operation system.
Described NFC mobile phone comprises solution lock module, and described solution lock module is as the application program based on cell phone system platform development.After NFC mobile phone and the computing machine under lock-out state are set up NFC and are communicated by letter, according to user's instruction, to separate lock module and can send release information to computing machine, described release information is the unlocking request code prestoring in described solution lock module.The authentication module of described computing machine reads NFC chip and receives described unlocking request code, and it is authenticated, and according to authentication result, operating system is carried out and is unlocked or keep locking.The prestored release authentication code of of described authentication module, receives after unlocking request code, is: the release authentication code prestoring and described unlocking request code are contrasted, if identical, remove the locking to described operating system its verification process; Otherwise keep the locking to described operating system.
Authentication mode for unlocking request code is whether its release authentication code prestoring with execution module of checking is identical, by one group of same-code prestoring respectively to two different modules, the equipment that described two modules are set is set up to pair relationhip, in the present embodiment, identical unlocking request code and release authentication code are prestored respectively to NFC mobile phone solution lock module and the authentication module that the computing machine of NFC chip is set, the NFC mobile phone that described solution lock module is set has been set up pair relationhip with the computing machine that described authentication module is set, the operating system of described computing machine is opened after also locked module locking, need user to hold described NFC mobile phone described computing machine is carried out to release.
As another embodiment, described solution lock module also, for before sending described unlocking request code, is encrypted it; Described authentication module is first decrypted it after reading described unlocking request code, then authenticates.Described unlocking request code is by clear test, likely after transferring to computing machine, by other rogue program, obtained and causes the forfeiture of security, so first it was encrypted before the transmission of carrying out unlocking request code; Be configured to respectively right encryption key and decruption key for described solution lock module and described authentication module in advance, separate lock module encrypted it by encryption key before sending unlocking request code, after authentication module reads unlocking request code, first by decruption key, it is deciphered, then carry out the contrast authentication to it.
Obviously, NFC mobile phone is only the preferred embodiment of the present invention, described portable unit can also be for being specifically applied to the small-portable device that is provided with NFC chip of operating system login authentication device of the present invention, it,, with after computing machine is set up NFC and communicated by letter, can be controlled or be sent release information from trend computing machine by user; For example insert a card for NFC chip, it also comprises that one for storing the memory module of release information, with after computing machine is set up NFC and communicated by letter, sends the release information of storage from trend computing machine.
With reference to figure 2, it is a kind of computer operating system login authentication method process flow diagram based on near-field communication NFC of the embodiment of the present invention.
The disclosed a kind of computer operating system login authentication method of the embodiment of the present invention, and comprise the following steps:
Step 201: in the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication.
As an embodiment, this step can before entering user's login interface, first lock this operating system and enter NFC authentication interface after described computer operating system is opened, and prompting user need to carry out NFC authentication.
Operating system under lock-out state rests on current NFC authentication interface, and user only can carry out shutdown or reboot operation.
Step 202: while having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection.
Described portable unit is provided with NFC chip, for setting up after NFC communication connection with described computing machine, to described computing machine, sends release information.
As preferred implementation, described portable unit is NFC mobile phone.When described NFC mobile phone is during near described computing machine, the NFC that sets up described NFC mobile phone and described computing machine by NFC chip separately communicates to connect.The process of establishing of NFC communication connection is: first, described computing machine and described NFC mobile phone are all set in advance in a multiple spot pattern, and described computer settings is at aggressive mode, and described computing machine is initiating equipment, what continue provides radio-frequency field, by near the NFC device real-time detection; Then, when the NFC of described computing machine chip detection to have target device near after, it is the NFC mobile phone in the present embodiment, set up fast point-to-point NFC communication connection with it, wherein, transmission speed is by described computer settings, and transmission speed may be selected to be in 106kbps, 212kbps, 424kbps; Finally, NFC mobile phone carries out data passback with the identical traffic speed with described computer settings, completes NFC communication process.The verification process of the present embodiment based on NFC technology is more rapidly quick, has the advantages such as low in energy consumption, transmission speed is fast simultaneously.
Step 203: described portable unit sends release information to described computing machine;
In a preferred embodiment, described release information is the unlocking request code that described NFC mobile phone prestores.After NFC mobile phone and the computing machine under lock-out state are set up NFC and communicated by letter, according to user instruction or from computing machine described in trend, send the unlocking request code prestoring.
Described unlocking request code is pre-stored in NFC mobile phone solution lock module and arranges in the authentication module of computing machine of NFC chip; Described unlocking request code can be when described NFC mobile phone or described computing machine be set up NFC communication connection, after arranging voluntarily or generate at random, user preserves in above-mentioned two ends simultaneously, or one end generation arbitrarily therein, and pass through NFC communications first and, to the other end preservation, to complete NFC mobile phone and computing machine, set up the process of pair relationhip.For further improving security, before sending described unlocking request code, it is encrypted, be specially after unlocking request code being encrypted by pre-configured encryption key and be sent to again described computing machine; As an embodiment, by data encryption algorithm, described unlocking request code is encrypted, described data encryption algorithm is one or more the combination in md5, aes, des, hash.Described unlocking request code is through code encryption, and the password leakage problem causing after having avoided it illegally to be obtained by other equipment or program, has further improved security.
Step 204: described computing machine receives described release information and it is authenticated, if authentication is passed through, carry out step 205; If authentication is not passed through, carry out step 206;
In a preferred embodiment, to the authentication method of described unlocking request code, be: the release authentication code that described computing machine is prestored and described unlocking request code contrast, if identical, carry out steps 205; Otherwise carry out step 206.
If the unlocking request code that described computing machine receives through encrypting, is first decrypted its authentication again, is specially by pre-configured decruption key the unlocking request code of encrypting is decrypted, the encryption key that described decruption key is used when encrypting.
Step 205: remove the locking to described operating system;
Authentication is passed through, and by NFC authentication interface, enters input user login code interface, and user inputs login password can normally open and enter operating system.
Step 206: keep the locking to described operating system;
Authentication is not passed through, and rests on current NFC authentication interface.
Those of ordinary skill in the field are to be understood that: the foregoing is only specific embodiments of the invention; be not limited to the present invention; within the spirit and principles in the present invention all, any modification of making, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. a computer operating system login authentication device, is characterized in that, comprising:
Described computer installation has NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
2. device according to claim 1, is characterized in that, described authentication module contrasts for the release authentication information being prestored and the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
3. device according to claim 1, is characterized in that, described release information is enciphered message, and described authentication module is first decrypted it after reading described release information, then authenticates.
4. a portable unit, is characterized in that, described portable unit is provided with NFC chip, for setting up after NFC communication connection with the device described in claims 1 to 3 any one, to described computing machine, sends release information.
5. portable unit according to claim 4, is characterized in that, comprises for storing the solution lock module of described release information.
6. a computer operating system login authentication method, is characterized in that, and comprises the following steps:
In the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication;
While having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection;
Described portable unit sends release information to described computing machine;
Described computing machine receives described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
7. method according to claim 6, is characterized in that, described release information is pre-stored in described portable unit.
8. method according to claim 6, it is characterized in that, to the authentication method of described release information, be: the release authentication information that described computing machine is prestored contrasts with the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
9. method according to claim 8, is characterized in that, described portable unit is encrypted it before sending described release information.
10. method according to claim 9, is characterized in that, described computing machine is first decrypted it after receiving described release information, then authenticates.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310439172.4A CN103514392A (en) | 2013-09-24 | 2013-09-24 | Login authentication device and method of computer operation system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310439172.4A CN103514392A (en) | 2013-09-24 | 2013-09-24 | Login authentication device and method of computer operation system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN103514392A true CN103514392A (en) | 2014-01-15 |
Family
ID=49897099
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310439172.4A Pending CN103514392A (en) | 2013-09-24 | 2013-09-24 | Login authentication device and method of computer operation system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103514392A (en) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104660419A (en) * | 2015-03-05 | 2015-05-27 | 山东超越数控电子有限公司 | Computer security management method based on NFC (near field communication) |
WO2015158053A1 (en) * | 2014-04-17 | 2015-10-22 | 中兴通讯股份有限公司 | Information processing method, electronic device and computer storage medium |
CN105447366A (en) * | 2015-11-11 | 2016-03-30 | 广州神马移动信息科技有限公司 | Registration or login method and apparatus, electronic device, and programmable device |
CN105959277A (en) * | 2016-04-27 | 2016-09-21 | 四川效率源信息安全技术股份有限公司 | Method of locking/unlocking computer screen based on NFC terminal |
CN105956452A (en) * | 2016-04-20 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Method and system for unlocking device |
CN106160769A (en) * | 2015-04-28 | 2016-11-23 | 浙江大学自贡创新中心 | A kind of receiver based on NFC certification and signal acceptance method |
CN107437010A (en) * | 2017-07-25 | 2017-12-05 | 合肥红铭网络科技有限公司 | A kind of server security activation system based on NFC |
CN108062467A (en) * | 2017-12-16 | 2018-05-22 | 深圳市飞马国际供应链股份有限公司 | Quick verification method, equipment and system based on bluetooth |
CN109246703A (en) * | 2017-05-24 | 2019-01-18 | 系微股份有限公司 | Controlled device and its method for managing security |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20100082489A1 (en) * | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for processing media gifts |
CN202049495U (en) * | 2011-01-21 | 2011-11-23 | 北京乐投科技有限公司 | Identity recognition module |
CN102819721A (en) * | 2012-08-15 | 2012-12-12 | 腾讯科技(深圳)有限公司 | NFC (near field communication)-based information interaction method and device |
CN102946484A (en) * | 2012-11-16 | 2013-02-27 | Tcl通讯(宁波)有限公司 | Method for unlocking mobile terminal by near-filed communication and system |
CN103258154A (en) * | 2012-02-19 | 2013-08-21 | 上海博路信息技术有限公司 | NFC (negative feedback circuit) terminal based locking and unlocking method |
-
2013
- 2013-09-24 CN CN201310439172.4A patent/CN103514392A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20100082489A1 (en) * | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for processing media gifts |
CN202049495U (en) * | 2011-01-21 | 2011-11-23 | 北京乐投科技有限公司 | Identity recognition module |
CN103258154A (en) * | 2012-02-19 | 2013-08-21 | 上海博路信息技术有限公司 | NFC (negative feedback circuit) terminal based locking and unlocking method |
CN102819721A (en) * | 2012-08-15 | 2012-12-12 | 腾讯科技(深圳)有限公司 | NFC (near field communication)-based information interaction method and device |
CN102946484A (en) * | 2012-11-16 | 2013-02-27 | Tcl通讯(宁波)有限公司 | Method for unlocking mobile terminal by near-filed communication and system |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2015158053A1 (en) * | 2014-04-17 | 2015-10-22 | 中兴通讯股份有限公司 | Information processing method, electronic device and computer storage medium |
CN104660419A (en) * | 2015-03-05 | 2015-05-27 | 山东超越数控电子有限公司 | Computer security management method based on NFC (near field communication) |
CN106160769A (en) * | 2015-04-28 | 2016-11-23 | 浙江大学自贡创新中心 | A kind of receiver based on NFC certification and signal acceptance method |
CN105447366A (en) * | 2015-11-11 | 2016-03-30 | 广州神马移动信息科技有限公司 | Registration or login method and apparatus, electronic device, and programmable device |
CN105956452A (en) * | 2016-04-20 | 2016-09-21 | 上海斐讯数据通信技术有限公司 | Method and system for unlocking device |
CN105959277A (en) * | 2016-04-27 | 2016-09-21 | 四川效率源信息安全技术股份有限公司 | Method of locking/unlocking computer screen based on NFC terminal |
CN109246703A (en) * | 2017-05-24 | 2019-01-18 | 系微股份有限公司 | Controlled device and its method for managing security |
CN107437010A (en) * | 2017-07-25 | 2017-12-05 | 合肥红铭网络科技有限公司 | A kind of server security activation system based on NFC |
CN108062467A (en) * | 2017-12-16 | 2018-05-22 | 深圳市飞马国际供应链股份有限公司 | Quick verification method, equipment and system based on bluetooth |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103514392A (en) | Login authentication device and method of computer operation system | |
KR102138283B1 (en) | Method of using one device to unlock another device | |
US10839391B2 (en) | Method and apparatus for secure offline payment | |
CN102215221B (en) | Methods and systems for secure remote wake, boot, and login to a computer from a mobile device | |
US20180184290A1 (en) | Embedded Certificate Method for Strong Authentication and Ease of Use for Wireless IoT Systems | |
KR101904177B1 (en) | Data processing method and apparatus | |
US8112787B2 (en) | System and method for securing a credential via user and server verification | |
Busold et al. | Smart keys for cyber-cars: Secure smartphone-based NFC-enabled car immobilizer | |
CN109218263B (en) | Control method and device | |
CN103825871A (en) | Authentication system and emission terminal, reception terminal and authority authentication method thereof | |
JP2012530311A5 (en) | ||
CN107733652B (en) | Unlocking method and system for shared vehicle and vehicle lock | |
CN104519479A (en) | Methods for terminal to lock net and unlock net | |
WO2018133675A1 (en) | Key update method, device and system | |
CN106789024A (en) | A kind of remote de-locking method, device and system | |
JP2017152880A (en) | Authentication system, key processing coordination method, and key processing coordination program | |
CN108768941B (en) | Method and device for remotely unlocking safety equipment | |
CN103200562A (en) | Communication terminal locking method and communication terminal | |
CN103596175A (en) | Mobile intelligent terminal certification system and method based on near field communication technology | |
CN103854177A (en) | Safe E-bank implementation method | |
CN109584421A (en) | A kind of intelligent door lock authentication administrative system based on domestic safety chip | |
KR20110030515A (en) | Security token device and method of authentication usable in smartphone | |
CN101621795A (en) | Method, system and device for realizing private ownership of wireless data terminal | |
CN105072084A (en) | Method for building data connection between mobile terminal and external equipment | |
CN101094073A (en) | Two-factor content protection |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140115 |
|
RJ01 | Rejection of invention patent application after publication |