40 results about "Broadcast authentication" patented technology

A method for authenticating a message that is transmitted wirelessly. The method includes providing a set of private key values that define a private key and performing a key pair generation process that provides a key pair including the private key and a public key, where performing the key pair generation process includes applying one or more hash functions to the private key values, where a succeeding hash function provides a hash of a previous hash function. The scheme uses a signature generation process that generates a message digest by applying a hash function on the message to be signed and then separates the message digest into two parts including signing bits and selection bits and using the private key to sign the message. A receiver verifies the authenticity of the received message using the public key and a signature verification algorithm.

The invention discloses a method for the broadcast authentication of a wireless sensor network based on an automaton and a game of life, which aims at the problems of limitations to coverage and special network traffic distribution of a base station in the authentication of the wireless sensor network which has relatively more hidden dangers due to own characteristics. By the method, the coverageof the base station can be expanded to realize the broadcast of nodes of the whole network, and the distributional pattern of the network traffic of the wireless sensor network (WSN) is simulated. The broadcast authentication of the wireless sensor network is realized mainly by combining a plurality of ways such as an improved deterministic finite automaton, a clustering algorithm, a game of lifealgorithm and the like. A specific technical scheme and specific steps and flows are designed. The method is remarkably distinguished from the conventional broadcast authentication method used for the WSN, and is advanced in the aspects of communication ranges of nodes of the base station, the rational allocation of node energy in the network, the simulation of a network traffic pattern, and the like.

Disclosed is an authentication method employing elliptic curve cryptography (ECC), applicable to a mobile broadcast TV system having one or more head end systems, at least a transmitter, and at least a mobile set. The authentication method comprises at least one request message from mobile sets simultaneously or in a short period of time arriving at a head end system for authentication; manipulating each broadcast authentication message by ECC; manipulating each service request message by ECC and pairing operation; performing a mutual authentication between the head end system and mobile sets by ECC and pairing operation; and broadcasting one group of authentication messages to all the mobile sets of many requests arrived at the head end system simultaneously or in a short period of time for the same service.

The invention discloses a method for realizing voice broadcast authentication and a cloud authentication server thereof, and belongs to the field of information security. The method comprises the following steps: when receiving a broadcast request, the cloud authentication server obtains a corresponding seed key and a user terminal identification code according to user information in the broadcast request, calculates the seed key to generate a first dynamic password and sends the first dynamic password to a voice broadcast platform according to the user terminal identification code to be broadcasted; and when receiving an authentication request, the cloud authentication server obtains a corresponding seed key according to user information in the authentication request, and calculates the seed key to generate a second dynamic password, and when the first dynamic password input by a user is matched with the second dynamic password in the authentication request, the authentication is successful. By adopting the method in the technical scheme of the invention, the generated dynamic password can be broadcasted to the user by the voice broadcast platform, and the dynamic password is prevented from being spied and stolen after being generated, so that the authentication security is guaranteed.

The invention provides a broadcast authentication method for a wireless network with a limited node resource. The method comprises the following steps that: 1), a protocol is initialized; 2), a broadcast node (BNode) requests a mu TESLA parameter chain to a back server (BServer); 3), a receiving node (RNode) authenticates the broadcast node (BNode); 4), the broadcast node (BNode) distributes mu TESLA parameters; and 5), the receiving node (RNode) authenticates the broadcast information of the broadcast node (BNode). On the basis of a one-way chain and a Merkle tree mechanism, and by constructing the mu TESLA parameter chain mu TPC and mu TPC tree mu TPCT, the broadcast authentication method realizes safe and highly efficient mu TESLA parameter distribution, improves the tree-based mu TESLA method, is more suitable for the broadcast authentication for the wireless network of which the node resource is limited, can resist DoS attacks in the mu TESLA parameter distribution process, has low calculation, communication and storage costs, can immediately eliminate authentication capacity of a captured node, and is applied to the large-scale wireless network with a plurality of broadcast nodes.

The invention discloses a lightweight authentication protocol based on a one-way function, characterized by comprising the following steps: 1) key generation: selecting required parameters based on an RSA cryptosystem, and generating a key pair for each member; 2) user registration: submitting registration information via a secure channel by a user; 3) authentication and broadcast: acknowledging user's identity in the authentication process, encrypting information and sending the encrypted information in a broadcast manner; and 4) password change: changing a password in a convenient and efficient manner. The lightweight authentication protocol has the advantages: Flood type DoS attack caused by high-complexity operation of a server due to playback success is avoided while playback attack is defended. Moreover, in consideration with the packet loss rate of the channel, the counter values of double communication parties can be allowed to have a difference within a certain range, and once the values exceed the range, the channel is regarded to have too high error rate or to be attacked.

The invention discloses a generating method and a system for IPTV programs based on the next-generation network, making live broadcast to other user equipment to enrich content of IPTV service by an IPTV user equipment, and the method and the system mainly adopt the technical proposal that: step A. the IPTV user equipment initiates a program live broadcast authentication request; step B. the authentication request in the step A is examined to decide whether to permit the IPTV user equipment to make program live broadcast to other IPTV user equipment; step C. the IPTV user equipment sends live broadcast notification messages to the other user equipment if the authentication request is approved; and step D. the IPTV user equipment generates live streams from content of the programs by way of unicast or multicast so that other user equipment can join in the live streams; and a live source thereof can be a transmission processing functional entity of an IPTV system, and also can be an IPTV media functional entity.

The invention discloses a distributed identity verification method, which comprises the following steps: a user node sending an authentication request to a scheduling node, and selecting a verification node; the verification node sending an authentication request to the user node, and the user node sending a response result to the verification node; the verification node verifying the response result to determine whether the authentication is successful or not; the verification node searching token information from the storage node according to the public key of the user node; matching the token information with the authentication information provided by the user node, judging and verifying whether the authentication information is valid or not, if yes, generating new authentication information according to the user data and storing the information in the storage node, and further broadcasting authentication success information to the user node. According to the invention, identity authentication can be reliably realized, the authentication efficiency is high, the authentication is reliable, and local resources are not occupied.

The invention discloses a cross-domain broadcast authentication method in a space information network. The method mainly solves the problems in the prior art that the authentication efficiency is low, the extensibility is low and the concurrence of multiple security domains in the space information network is not taken consideration when cross-domain broadcast authentication is carried out. The realization scheme of the method comprises that in a system deployment stage, the terminal and agent of each security domain finish calculating signing work with relatively high costs; in a broadcast information transmission stage, corresponding signatures only need to be taken out from a pre-calculated signature set; moreover, cross-domain transmission of the broadcast information is finished through the agent of each security domain, wherein re-signing needs to be carried out each time when one stage of agent is passed; and finally, a broadcast receiver finishes information authentication through the previous signatures. According to the method, through adoption of a pre-calculation mode, the efficiencies of signing and authenticating the broadcast authentication are greatly improved; moreover, through arrangement of the security domain agents, under a condition of not relating to the security systems of different security domains, the security transmission and cross-domain authentication of the broadcast information are ensured.

The invention relates to an IPv6 industrial wireless network data security transmission method based on broadcast signcryption, and belongs to the field of communication. According to the method, based on a user broadcast communication mode of an IPv6 industrial wireless network, a data security transmission method based on ECC signcryption is provided, and comprises an improved ECDLP digital signature scheme and an IPv6 industrial wireless network broadcast authentication scheme; and therefore, the end-to-end data transmission security is guaranteed. The method has the advantages that the IPv6 industrial wireless network broadcast authentication scheme is provided, so that high security and efficiency are achieved; dynamic addition and removal of a user can be supported, so that the robustness and flexibility of the network can be ensured; user anonymity can be realized, so that user privacy is protected; the improved ECDLP digital signature scheme is adopted for solving the problemsof source authentication and message integrity authentication of a user broadcast data packet in the IPv6 industrial wireless network, so that the confidentiality and authentication of data are guaranteed.

The invention provides a data management method, device and system, equipment and a storage medium, and relates to the field of communication. The method is applied to a first node in a UDM system, and comprises the following steps: acquiring authentication information of a first user; broadcasting authentication information of the first user; receiving first information sent by at least one second node; the second node is a node except the first node in the plurality of edge nodes or a central node; the first information is generated after the second node verifies whether the first user is an effective registered user according to the authentication information of the first user and the registration information of the first user stored in the second node; the first information is used for indicating whether the authentication information of the first user passes the verification of the second node; and determining an authentication result of the first user according to the proportion of the first information indicating to pass the verification of the second node in all the first information and a preset first proportion. The method is suitable for the authentication process and is used for improving the security of the UDM system.

The invention discloses an authentication method and an authentication system. The method is applied to an interface layer of an authentication platform. The authentication platform comprises the interface layer, broadcasting business operation support systems and a video-on-demand push system which are independent of one another. The method comprises the following steps: receiving an authentication request sent by a user from a terminal through one broadcasting business operation support system, wherein the authentication request includes authentication information; determining the broadcasting business operation support system corresponding to the authentication information according to the authentication information, and sending the authentication information to the broadcasting business operation support system; and when receiving an authentication result returned by the broadcasting business operation support system, sending the authentication result to the terminal through the interface layer. A unified interface layer is built to connect different broadcasting business operation support systems, and therefore, unified management of user authentication and broadcast authentication is realized.