ENTITY IDENTIFICATION METHOD, APPARATUS AND SYSTEM

摘要

The present invention provides an entity identification method, apparatus and system, and relates to: an entity A transmits an identification request message to an entity B, the identification request message includes the result SN1 of an XOR operation of a Pre-Shared Key (PSK) and the data from processing data N1 according to a first agreed rule, wherein data N1 is generated by entity A, and the PSK is a key shared by A and B; entity B receives the identification request message, performs an XOR operation on SN1 and PSK, performs a process according to a second agreed rule, then performs a process according to a third agreed rule, and then performs an XOR operation again with the PSK processed according to the third agreed rule and then processed according to a fourth rule to obtain SON1, and transmits SON1 through an identification response message to entity A.

主权项

1. A method for authenticating an entity, the method comprising:
an operation 1, sending, by an entity A, an authentication request message to an entity B, wherein the authentication request message comprises a result SN1 of an XOR operation on a result of processing under a first predefined rule on data N1 generated locally by the entity A, and a PSK which is a key shared by the entity A and the entity B; an operation 2, receiving, by the entity B, the authentication request message sent by the entity A, performing an XOR operation on the SN1 in the authentication request message, and the PSK, then processing them under a second predefined rule, further processing them under a third predefined rule, then performing a further XOR operation on a result of the processing under the third predefined rule, and the PSK processed under the third predefined rule and further processed under a fourth predefined rule to obtain SON1, and sending the SON1 to the entity A in an authentication response message, wherein the second predefined rule is a reversed rule of the first predefined rule; and an operation 3, receiving, by the entity A, the authentication response message sent by the entity B, performing an XOR operation on the SON1 in the authentication response message, and the PSK processed under the third predefined rule and further processed under the fourth predefined rule, comparing a result of the XOR operation with the N1 processed under the third predefined rule, and determining from a result of the comparison whether the entity B is legal.