CN103514392A - Login authentication device and method of computer operation system - Google Patents

Login authentication device and method of computer operation system Download PDF

Info

Publication number
CN103514392A
CN103514392A CN201310439172.4A CN201310439172A CN103514392A CN 103514392 A CN103514392 A CN 103514392A CN 201310439172 A CN201310439172 A CN 201310439172A CN 103514392 A CN103514392 A CN 103514392A
Authority
CN
China
Prior art keywords
authentication
operating system
release information
nfc
computing machine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201310439172.4A
Other languages
Chinese (zh)
Inventor
杨燃
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Asia Pacific Technology (hunan) Co Ltd Baolong
Original Assignee
Asia Pacific Technology (hunan) Co Ltd Baolong
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Asia Pacific Technology (hunan) Co Ltd Baolong filed Critical Asia Pacific Technology (hunan) Co Ltd Baolong
Priority to CN201310439172.4A priority Critical patent/CN103514392A/en
Publication of CN103514392A publication Critical patent/CN103514392A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • G06F21/35User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2149Restricted operating environment

Abstract

The invention discloses a login authentication device and method of a computer operation system. The login authentication device comprises a portable device and a computer, wherein the portable device is provided with an NFC chip and used for sending unlocking information to the computer by having NFC with the computer when getting close to the computer provided with an NFC chip; the computer is provided with the NFC chip and further comprises a locking module and an authentication module, wherein the locking module is used for locking the operation system when the operation system of the computer is switched on; the authentication module is used for receiving and authenticating the unlocking information, the operation system is unlocked if authentication is passed, and the operation system is kept locked if authentication is not passed. The login authentication device and method of the computer operation system are high in safety, rapid and efficient.

Description

A kind of computer operating system login authentication apparatus and method
Technical field
The present invention relates to computer operating system login authentication method field, refer to especially a kind of computer operating system login authentication apparatus and method.
Background technology
High speed development along with digital technology, problem of data safety also more and more highlights, the user cipher of common computer operating system has been not enough to the safety of data in assurance system, some passwords are plagiarized or are cracked, the security of data just can not be guaranteed, so need the better computer system login authentication method of a kind of security badly.
Summary of the invention
In view of this, the object of the invention is to propose a kind of safe, and the computer operating system login authentication apparatus and method of quickness and high efficiency.
Based on above-mentioned purpose a kind of computer operating system login authentication device provided by the invention, comprising:
Described computer installation has NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Preferably, described authentication module contrasts for the release authentication information being prestored and the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Optionally, described release information is enciphered message, and described authentication module is first decrypted it after reading described release information, then authenticates.
A kind of portable unit provided by the invention, described portable unit is provided with NFC chip, for the computer operating system login authentication device with above-mentioned, sets up after NFC communication connection, to described device, sends release information.
Preferably, comprise for storing the solution lock module of described release information.
A kind of computer operating system login authentication method provided by the invention, and comprise the following steps:
In the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication;
While having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection;
Described portable unit sends release information to described computing machine;
Described computing machine receives described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Preferably, described release information is pre-stored in described portable unit.
Preferably, to the authentication method of described release information, be: the release authentication information that described computing machine is prestored contrasts with the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
Optionally, described portable unit is encrypted it before sending described release information.
Optionally, described computing machine is first decrypted it after receiving described release information, then authenticates.
As can be seen from above, a kind of computer operating system login authentication apparatus and method provided by the invention, the computing machine that is provided with NFC chip is locked in os starting process, by the portable unit NFC with being provided with NFC chip communicate by letter receive release information and authentication pass through after, just continue normal open system, for the login of operating system has increased a step verification process, even if the user cipher of operating system is revealed, also can prevent other people illegally logining; And portable unit, by user's keeping, has stronger security, whole login authentication process operation of while is simple, quickness and high efficiency.
Accompanying drawing explanation
Fig. 1 is a kind of computer operating system login authentication device framework map of the embodiment of the present invention;
Fig. 2 is a kind of computer operating system login authentication method process flow diagram of the embodiment of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearer, below in conjunction with specific embodiment, and with reference to accompanying drawing, the present invention is described in more detail.
With reference to figure 1, it is a kind of computer operating system login authentication device framework map of the embodiment of the present invention.
The disclosed a kind of computer operating system login authentication device of the embodiment of the present invention, comprising:
Described computing machine 102 is provided with NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit 101 that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.。
Near-field communication (Near Field Communication, NFC), claim again wireless near field communication, it is a kind of short-range high frequency wireless communication technology, allow to carry out contactless Point-to-Point Data Transmission (in ten centimetres) swap data between electronic equipment, be used for the aspects such as data transmission, mobile payment, gate control system of mobile device.At present, yet there are no the login authentication aspect that NFC technology is applied to computer operating system.
NFC chip is arranged on the mainboard of described computing machine, is connected with main board bus, can directly communicate by letter with hardware such as internal memory, CPU.
The disclosed a kind of portable unit of the embodiment of the present invention, described portable unit is provided with NFC chip, for setting up after NFC communication connection with described computing machine, to described computing machine, sends release information.
As an embodiment, described portable unit is NFC mobile phone, and described NFC mobile phone, near described computing machine and set up NFC communication connection with it after, sends release information to described computing machine.Be provided with the mobile phone of NFC chip, function based on NFC chip, NFC mobile phone is by being operated in point to point operation pattern, can and other have between the digital camera, PDA, computing machine, mobile phone of NFC function, can carry out wireless interconnected, realize exchanges data, set up NFC communication, follow-up associated application can be that local application can be also network application.Based on NFC technology, simply by two NFC equipment near realizing the foundation of data communication, in the present embodiment, NFC mobile phone, when being provided with the computing machine of NFC chip, being set up NFC with this computing machine and is communicated by letter.
Described computing machine comprises locking module, described locking module is as the application program based on computer operating system exploitation, after installing and opening, when described locking module is opened in each computer operating system, in backstage, automatically move, before system enters input user login code step, operating system is locked.Locking to operating system is specially, and before entering user's login interface, increases and shows a NFC authentication interface, and prompting user need to use relevant equipment and this computing machine to communicate rear release, waits for the release information that receives.In the situation that it is not that receive release information or receive release information but unverified passing through, operating system will be retained a percentage of the total profits for the enterprise's own use in current NFC authentication interface, user cannot proceed to user's login interface, input user cipher step, and then the normal repertoire of open operation system, only can carry out shutdown or reboot operation; When receiving release information authentication while passing through, by current NFC authentication interface, enter into the input user login interface of operating system, user can continue ground as usual open operation system.
Described NFC mobile phone comprises solution lock module, and described solution lock module is as the application program based on cell phone system platform development.After NFC mobile phone and the computing machine under lock-out state are set up NFC and are communicated by letter, according to user's instruction, to separate lock module and can send release information to computing machine, described release information is the unlocking request code prestoring in described solution lock module.The authentication module of described computing machine reads NFC chip and receives described unlocking request code, and it is authenticated, and according to authentication result, operating system is carried out and is unlocked or keep locking.The prestored release authentication code of of described authentication module, receives after unlocking request code, is: the release authentication code prestoring and described unlocking request code are contrasted, if identical, remove the locking to described operating system its verification process; Otherwise keep the locking to described operating system.
Authentication mode for unlocking request code is whether its release authentication code prestoring with execution module of checking is identical, by one group of same-code prestoring respectively to two different modules, the equipment that described two modules are set is set up to pair relationhip, in the present embodiment, identical unlocking request code and release authentication code are prestored respectively to NFC mobile phone solution lock module and the authentication module that the computing machine of NFC chip is set, the NFC mobile phone that described solution lock module is set has been set up pair relationhip with the computing machine that described authentication module is set, the operating system of described computing machine is opened after also locked module locking, need user to hold described NFC mobile phone described computing machine is carried out to release.
As another embodiment, described solution lock module also, for before sending described unlocking request code, is encrypted it; Described authentication module is first decrypted it after reading described unlocking request code, then authenticates.Described unlocking request code is by clear test, likely after transferring to computing machine, by other rogue program, obtained and causes the forfeiture of security, so first it was encrypted before the transmission of carrying out unlocking request code; Be configured to respectively right encryption key and decruption key for described solution lock module and described authentication module in advance, separate lock module encrypted it by encryption key before sending unlocking request code, after authentication module reads unlocking request code, first by decruption key, it is deciphered, then carry out the contrast authentication to it.
Obviously, NFC mobile phone is only the preferred embodiment of the present invention, described portable unit can also be for being specifically applied to the small-portable device that is provided with NFC chip of operating system login authentication device of the present invention, it,, with after computing machine is set up NFC and communicated by letter, can be controlled or be sent release information from trend computing machine by user; For example insert a card for NFC chip, it also comprises that one for storing the memory module of release information, with after computing machine is set up NFC and communicated by letter, sends the release information of storage from trend computing machine.
With reference to figure 2, it is a kind of computer operating system login authentication method process flow diagram based on near-field communication NFC of the embodiment of the present invention.
The disclosed a kind of computer operating system login authentication method of the embodiment of the present invention, and comprise the following steps:
Step 201: in the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication.
As an embodiment, this step can before entering user's login interface, first lock this operating system and enter NFC authentication interface after described computer operating system is opened, and prompting user need to carry out NFC authentication.
Operating system under lock-out state rests on current NFC authentication interface, and user only can carry out shutdown or reboot operation.
Step 202: while having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection.
Described portable unit is provided with NFC chip, for setting up after NFC communication connection with described computing machine, to described computing machine, sends release information.
As preferred implementation, described portable unit is NFC mobile phone.When described NFC mobile phone is during near described computing machine, the NFC that sets up described NFC mobile phone and described computing machine by NFC chip separately communicates to connect.The process of establishing of NFC communication connection is: first, described computing machine and described NFC mobile phone are all set in advance in a multiple spot pattern, and described computer settings is at aggressive mode, and described computing machine is initiating equipment, what continue provides radio-frequency field, by near the NFC device real-time detection; Then, when the NFC of described computing machine chip detection to have target device near after, it is the NFC mobile phone in the present embodiment, set up fast point-to-point NFC communication connection with it, wherein, transmission speed is by described computer settings, and transmission speed may be selected to be in 106kbps, 212kbps, 424kbps; Finally, NFC mobile phone carries out data passback with the identical traffic speed with described computer settings, completes NFC communication process.The verification process of the present embodiment based on NFC technology is more rapidly quick, has the advantages such as low in energy consumption, transmission speed is fast simultaneously.
Step 203: described portable unit sends release information to described computing machine;
In a preferred embodiment, described release information is the unlocking request code that described NFC mobile phone prestores.After NFC mobile phone and the computing machine under lock-out state are set up NFC and communicated by letter, according to user instruction or from computing machine described in trend, send the unlocking request code prestoring.
Described unlocking request code is pre-stored in NFC mobile phone solution lock module and arranges in the authentication module of computing machine of NFC chip; Described unlocking request code can be when described NFC mobile phone or described computing machine be set up NFC communication connection, after arranging voluntarily or generate at random, user preserves in above-mentioned two ends simultaneously, or one end generation arbitrarily therein, and pass through NFC communications first and, to the other end preservation, to complete NFC mobile phone and computing machine, set up the process of pair relationhip.For further improving security, before sending described unlocking request code, it is encrypted, be specially after unlocking request code being encrypted by pre-configured encryption key and be sent to again described computing machine; As an embodiment, by data encryption algorithm, described unlocking request code is encrypted, described data encryption algorithm is one or more the combination in md5, aes, des, hash.Described unlocking request code is through code encryption, and the password leakage problem causing after having avoided it illegally to be obtained by other equipment or program, has further improved security.
Step 204: described computing machine receives described release information and it is authenticated, if authentication is passed through, carry out step 205; If authentication is not passed through, carry out step 206;
In a preferred embodiment, to the authentication method of described unlocking request code, be: the release authentication code that described computing machine is prestored and described unlocking request code contrast, if identical, carry out steps 205; Otherwise carry out step 206.
If the unlocking request code that described computing machine receives through encrypting, is first decrypted its authentication again, is specially by pre-configured decruption key the unlocking request code of encrypting is decrypted, the encryption key that described decruption key is used when encrypting.
Step 205: remove the locking to described operating system;
Authentication is passed through, and by NFC authentication interface, enters input user login code interface, and user inputs login password can normally open and enter operating system.
Step 206: keep the locking to described operating system;
Authentication is not passed through, and rests on current NFC authentication interface.
Those of ordinary skill in the field are to be understood that: the foregoing is only specific embodiments of the invention; be not limited to the present invention; within the spirit and principles in the present invention all, any modification of making, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.

Claims (10)

1. a computer operating system login authentication device, is characterized in that, comprising:
Described computer installation has NFC chip, and also comprises locking module and authentication module, and described locking module, for the os starting process at described computing machine, locks described operating system and points out user to carry out NFC authentication; The release information that the portable unit that described NFC chip reception is provided with NFC chip sends, described authentication module is used for reading described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
2. device according to claim 1, is characterized in that, described authentication module contrasts for the release authentication information being prestored and the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
3. device according to claim 1, is characterized in that, described release information is enciphered message, and described authentication module is first decrypted it after reading described release information, then authenticates.
4. a portable unit, is characterized in that, described portable unit is provided with NFC chip, for setting up after NFC communication connection with the device described in claims 1 to 3 any one, to described computing machine, sends release information.
5. portable unit according to claim 4, is characterized in that, comprises for storing the solution lock module of described release information.
6. a computer operating system login authentication method, is characterized in that, and comprises the following steps:
In the os starting process of computing machine that is provided with NFC chip, lock described operating system, prompting user carries out NFC authentication;
While having the portable unit of NFC chip in detecting, described computing machine and described portable unit are set up NFC communication connection;
Described portable unit sends release information to described computing machine;
Described computing machine receives described release information and it is authenticated, if authentication is passed through, removes the locking to described operating system; Otherwise keep the locking to described operating system.
7. method according to claim 6, is characterized in that, described release information is pre-stored in described portable unit.
8. method according to claim 6, it is characterized in that, to the authentication method of described release information, be: the release authentication information that described computing machine is prestored contrasts with the described release information receiving, if identical, removes the locking to described operating system; Otherwise keep the locking to described operating system.
9. method according to claim 8, is characterized in that, described portable unit is encrypted it before sending described release information.
10. method according to claim 9, is characterized in that, described computing machine is first decrypted it after receiving described release information, then authenticates.
CN201310439172.4A 2013-09-24 2013-09-24 Login authentication device and method of computer operation system Pending CN103514392A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310439172.4A CN103514392A (en) 2013-09-24 2013-09-24 Login authentication device and method of computer operation system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310439172.4A CN103514392A (en) 2013-09-24 2013-09-24 Login authentication device and method of computer operation system

Publications (1)

Publication Number Publication Date
CN103514392A true CN103514392A (en) 2014-01-15

Family

ID=49897099

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310439172.4A Pending CN103514392A (en) 2013-09-24 2013-09-24 Login authentication device and method of computer operation system

Country Status (1)

Country Link
CN (1) CN103514392A (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104660419A (en) * 2015-03-05 2015-05-27 山东超越数控电子有限公司 Computer security management method based on NFC (near field communication)
WO2015158053A1 (en) * 2014-04-17 2015-10-22 中兴通讯股份有限公司 Information processing method, electronic device and computer storage medium
CN105447366A (en) * 2015-11-11 2016-03-30 广州神马移动信息科技有限公司 Registration or login method and apparatus, electronic device, and programmable device
CN105959277A (en) * 2016-04-27 2016-09-21 四川效率源信息安全技术股份有限公司 Method of locking/unlocking computer screen based on NFC terminal
CN105956452A (en) * 2016-04-20 2016-09-21 上海斐讯数据通信技术有限公司 Method and system for unlocking device
CN106160769A (en) * 2015-04-28 2016-11-23 浙江大学自贡创新中心 A kind of receiver based on NFC certification and signal acceptance method
CN107437010A (en) * 2017-07-25 2017-12-05 合肥红铭网络科技有限公司 A kind of server security activation system based on NFC
CN108062467A (en) * 2017-12-16 2018-05-22 深圳市飞马国际供应链股份有限公司 Quick verification method, equipment and system based on bluetooth
CN109246703A (en) * 2017-05-24 2019-01-18 系微股份有限公司 Controlled device and its method for managing security

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100082489A1 (en) * 2008-09-30 2010-04-01 Apple Inc. System and method for processing media gifts
CN202049495U (en) * 2011-01-21 2011-11-23 北京乐投科技有限公司 Identity recognition module
CN102819721A (en) * 2012-08-15 2012-12-12 腾讯科技(深圳)有限公司 NFC (near field communication)-based information interaction method and device
CN102946484A (en) * 2012-11-16 2013-02-27 Tcl通讯(宁波)有限公司 Method for unlocking mobile terminal by near-filed communication and system
CN103258154A (en) * 2012-02-19 2013-08-21 上海博路信息技术有限公司 NFC (negative feedback circuit) terminal based locking and unlocking method

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100082489A1 (en) * 2008-09-30 2010-04-01 Apple Inc. System and method for processing media gifts
CN202049495U (en) * 2011-01-21 2011-11-23 北京乐投科技有限公司 Identity recognition module
CN103258154A (en) * 2012-02-19 2013-08-21 上海博路信息技术有限公司 NFC (negative feedback circuit) terminal based locking and unlocking method
CN102819721A (en) * 2012-08-15 2012-12-12 腾讯科技(深圳)有限公司 NFC (near field communication)-based information interaction method and device
CN102946484A (en) * 2012-11-16 2013-02-27 Tcl通讯(宁波)有限公司 Method for unlocking mobile terminal by near-filed communication and system

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015158053A1 (en) * 2014-04-17 2015-10-22 中兴通讯股份有限公司 Information processing method, electronic device and computer storage medium
CN104660419A (en) * 2015-03-05 2015-05-27 山东超越数控电子有限公司 Computer security management method based on NFC (near field communication)
CN106160769A (en) * 2015-04-28 2016-11-23 浙江大学自贡创新中心 A kind of receiver based on NFC certification and signal acceptance method
CN105447366A (en) * 2015-11-11 2016-03-30 广州神马移动信息科技有限公司 Registration or login method and apparatus, electronic device, and programmable device
CN105956452A (en) * 2016-04-20 2016-09-21 上海斐讯数据通信技术有限公司 Method and system for unlocking device
CN105959277A (en) * 2016-04-27 2016-09-21 四川效率源信息安全技术股份有限公司 Method of locking/unlocking computer screen based on NFC terminal
CN109246703A (en) * 2017-05-24 2019-01-18 系微股份有限公司 Controlled device and its method for managing security
CN107437010A (en) * 2017-07-25 2017-12-05 合肥红铭网络科技有限公司 A kind of server security activation system based on NFC
CN108062467A (en) * 2017-12-16 2018-05-22 深圳市飞马国际供应链股份有限公司 Quick verification method, equipment and system based on bluetooth

Similar Documents

Publication Publication Date Title
CN103514392A (en) Login authentication device and method of computer operation system
KR102138283B1 (en) Method of using one device to unlock another device
US10839391B2 (en) Method and apparatus for secure offline payment
CN102215221B (en) Methods and systems for secure remote wake, boot, and login to a computer from a mobile device
US20180184290A1 (en) Embedded Certificate Method for Strong Authentication and Ease of Use for Wireless IoT Systems
KR101904177B1 (en) Data processing method and apparatus
US8112787B2 (en) System and method for securing a credential via user and server verification
Busold et al. Smart keys for cyber-cars: Secure smartphone-based NFC-enabled car immobilizer
CN109218263B (en) Control method and device
CN103825871A (en) Authentication system and emission terminal, reception terminal and authority authentication method thereof
JP2012530311A5 (en)
CN107733652B (en) Unlocking method and system for shared vehicle and vehicle lock
CN104519479A (en) Methods for terminal to lock net and unlock net
WO2018133675A1 (en) Key update method, device and system
CN106789024A (en) A kind of remote de-locking method, device and system
JP2017152880A (en) Authentication system, key processing coordination method, and key processing coordination program
CN108768941B (en) Method and device for remotely unlocking safety equipment
CN103200562A (en) Communication terminal locking method and communication terminal
CN103596175A (en) Mobile intelligent terminal certification system and method based on near field communication technology
CN103854177A (en) Safe E-bank implementation method
CN109584421A (en) A kind of intelligent door lock authentication administrative system based on domestic safety chip
KR20110030515A (en) Security token device and method of authentication usable in smartphone
CN101621795A (en) Method, system and device for realizing private ownership of wireless data terminal
CN105072084A (en) Method for building data connection between mobile terminal and external equipment
CN101094073A (en) Two-factor content protection

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20140115

RJ01 Rejection of invention patent application after publication