公开(公告)号：US20170324729A1

公开(公告)日：2017-11-09

申请号：US15654739

申请日：2017-07-20

Applicant: Singou Technology Ltd.

Inventor： Chi Tin HON ,  Chan Heng TAM ,  Tai-Hua MA

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/08 ,  G06F17/30

CPC classification number: H04L63/083 ,  G06F16/951 ,  H04L63/101 ,  H04L63/105 ,  H04L63/107 ,  H04L63/1483 ,  H04W12/00522 ,  H04W12/06 ,  H04W12/08

Abstract: A method is provided to improve authentication of a user to login with a client device to a computer system. A mobile device stores a list of Uniform Resource Locators (URLs), user names and passwords. The mobile device reads an authentication code displayed on a display of the client device to extract a URL and a session identifier (ID), searches a user name and a password associated with the URL in the list of URLs, user names and passwords, transmits the user name, the password, and the session ID to a gateway server when the user name and the password associated with the URL are found in the list, and authenticates the user to login to the computer system with the client device when the client device retrieves from the gateway server the user name and the password.

公开(公告)号：US10530582B2

公开(公告)日：2020-01-07

申请号：US15032182

申请日：2014-10-10

Applicant: Singou Technology Ltd. ,  Macau University of Science and Technology

Inventor： Chi Tin Hon ,  Chan Heng Tam ,  Tai-Hua Ma

IPC: H04L9/32 ,  H04L29/06 ,  H04W12/06 ,  H04W12/00

Abstract: A method and a device for information system access authentication are disclosed. The method includes: performing anonymous authentication to a random verification code generated according to a login request for accessing an information system of a client, and authenticating acquired user name and password information when the anonymous authentication is successful. The device includes an verification code authentication module and a user name and password authentication module connected to the verification code authentication module, wherein the verification code authentication module is configured to perform anonymous authentication to a random verification code generated according to a login request for accessing an information system of client; and the user name and password authentication module is configured to authenticate acquired user name and password information when the anonymous authentication is successful. The present disclosure uses a two-stage and two-factor authentication method such that the security of the login information is improved without increasing the complexity of the user's login.

公开(公告)号：US20160269181A1

公开(公告)日：2016-09-15

申请号：US15032182

申请日：2014-10-10

Applicant: MACAU UNIVERSITY OF SCIENCE AND TECHNOLOGY ,  SINGOU TECHNOLOGY LTD.

Inventor： Chi Tin Hon ,  Chan Heng Tam ,  Tai-Hua Ma

IPC: H04L9/32 ,  H04L29/06

CPC classification number: H04L9/3228 ,  H04L9/3226 ,  H04L9/3249 ,  H04L63/0414 ,  H04L63/0442 ,  H04L63/083 ,  H04L63/18 ,  H04L2209/42 ,  H04L2209/46 ,  H04W12/00522 ,  H04W12/06

Abstract: A method and a device for information system access authentication are disclosed. The method includes: performing anonymous authentication to a random verification code generated according to a login request for accessing an information system of a client, and authenticating acquired user name and password information when the anonymous authentication is successful. The device includes an verification code authentication module and a user name and password authentication module connected to the verification code authentication module, wherein the verification code authentication module is configured to perform anonymous authentication to a random verification code generated according to a login request for accessing an information system of client; and the user name and password authentication module is configured to authenticate acquired user name and password information when the anonymous authentication is successful. The present disclosure uses a two-stage and two-factor authentication method such that the security of the login information is improved without increasing the complexity of the user's login.

Abstract translation: 公开了一种用于信息系统访问认证的方法和装置。 该方法包括：对根据用于访问客户端的信息系统的登录请求生成的随机验证码进行匿名认证，并且在匿名认证成功时对所获取的用户名和密码信息进行认证。 所述设备包括验证码认证模块和连接到所述验证码认证模块的用户名和密码认证模块，其中所述验证码认证模块被配置为对根据用于访问的登录请求生成的随机验证码执行匿名认证 客户信息系统; 并且用户名和密码认证模块被配置为在匿名认证成功时验证获取的用户名和密码信息。 本公开使用两阶段和双因素认证方法，使得登录信息的安全性得到改善，而不增加用户登录的复杂性。