| In recent years, as computers and related technology are widely used in variousfields, password protection is being taken attention by more and more people.Thereby a reliable authentication technology which is based on USB-Key isgenerated, it is more convenient and secure. In order to strengthen the protection ofuser data, Eisoo company decided to design and develop a new verificationsubsystem based on USB-Key for the existing backup and disaster recovery system.Therefore this project was presented by the backup and disaster recovery team.This paper introduces the technology and specifications of the securityinfrastructure platform that need to be followed in the development of USB-Key. Italso compares different USB-Key encryption methods and lists the components andinterfaces which need to be used in the development process. Therefore, it presentsthe requirements of the user authentication subsystem based on USB-Key. In view ofthe key technologies, this paper describes the USB-Key authentication process thatuses the HMAC-MD5algorithm and the overall process of the user authenticationsubsystem to provide reference and basis for the design of the following modules.The project uses C++language to develop user authentication subsystem. It isdivided into five modules: USB-Key module, ActiveX module, user informationmanagement module, message module and console module. The USB-Key moduleis used to pack the Etoken product and the EPass1000ND product and implement acorresponding interface following the PKCS#11standard. The ActiveX module isused to help the user information management module to make access to theUSB-Key module and the console module. The user information managementmodule provides the functions of creating user and signing up, besides, it can detectand load ActiveX automatically. The message module is used to define the messagethat connects between the ActiveX module and the console module to ensureinformation security. The Console module is responsible for receiving andprocessing messages sent from the ActiveX module, it accesses to the MySQLdatabase and returns the results, the database defines the basic information of theUSB-Key for the user authentication subsystem. Through the above modules, theuser authentication system is able to complete the user authentication.From the result of the test, the project completes the web pages, it canautomatically detect and load ActiveX to take control of the Etoken product and theEPass1000ND product for authenticating users identification. It can send messagesto the control and make access to the database to get the information of USB-Key. This project meets the functional requirements of the user authentication systembased on USB-Key and has multiplexing and practical value. |
PDF Full Text Request