Shulou(Shulou.com)06/01 Report--

In some application environments with higher security requirements, it is not enough to simply use password authentication, but also need to use other hardware to complete, such as U shield, online banking transactions use this way. In the application of hardware encryption and authentication, two-factor authentication is usually used, that is, the combination of password authentication and hardware authentication to complete the authentication of the user, in which the hardware part is considered to be the item owned by the user. The advantage of using hardware devices for authentication is that the computer devices used by users will not be infected with these hardware devices regardless of whether they have * viruses or not. as a result, the authentication process completed within these hardware devices will not be affected by * * viruses, thus improving security. But on the other hand, these additional hardware devices are easy to be lost, so two-factor authentication is needed, and it is also easy to be damaged. Therefore, it not only increases the cost, but also brings more inconvenience.

In practical applications, each user has a unique private key owned only by himself, which is used for decryption and signature operations, and also has a public key corresponding to the receiver for encryption operations when the file is sent. When sending a confidential file, the sender uses the receiver's public key to encrypt the contents of the file, while the receiver can decrypt the file using all its corresponding private keys, thus ensuring that the sent file can safely reach its destination, and even if intercepted by a third party, the third party cannot decrypt the intercepted content because there is no corresponding private key.

Before using U shield, it is generally necessary to install the corresponding driver on the client PC, so that the U shield can work normally, and digital certificate authentication is also needed at the same time. When the user needs a transaction, such as submitting a payment order to the bank, the user's identity needs to be verified. at this time, the system will prompt the user to insert the U shield and enter the U shield password, and the system will verify the information submitted by the U shield in the background. The user can not see the specific verification process, but once the verification is passed, the user can continue the follow-up operation, enter the online payment password and verification code, and then complete the transaction. Therefore, online transactions under U shield protection are very safe if the devices used are not infected with the virus. Therefore, in some applications with relatively high security requirements, such as online banking transactions, NT workstation login, e-wallet, e-government, e-taxation, e-customs declaration, online securities and so on, the security requirements of online transactions can be fully met by using U shield.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.