当前位置:网站首页>How to protect user privacy without password authentication?
How to protect user privacy without password authentication?
2022-07-05 13:00:00 【51CTO】
In the Internet world , Verifying user identity is a common and important scenario , The most widely used method is account password verification . As developers' requirements for authentication security continue to improve , In addition, users pay more attention to privacy and convenience in the process , Authentication methods are gradually diversified , With dynamic token 、 SMS verification code 、 Biometric authentication and other methods . This article mainly from the perspective of security , Discuss the security vulnerabilities of several common authentication methods , Provide more advantageous solutions for developers .
The security risks of common authentication methods are as follows :
Since both static and dynamic password authentication methods have vulnerabilities , Then whether authentication can be independent of passwords ?
Actually , Long ago , Someone began to imagine “ Password-free login ”. Of course ,“ Password-free login ” It does not mean that there is no password , Instead, use a new authentication method , To replace the existing password authentication system .HMS Core Online Fast Authentication Service (HMS Core FIDO) Based on this starting point , It provides a more advantageous solution for developers : User authentication without password , Provide local biometric authentication and online fast authentication capabilities , It can be used for user login 、 Purchase payment and other scenarios , meanwhile , Through system integrity detection and key verification mechanism , To ensure that the verification results are safe and reliable . The implementation process is as follows .
In terms of security , First , HMS Core FIDO It avoids the user entering the account password manually , Therefore, there is no need to worry about the risk of account password disclosure .
secondly , Use HMS Core FIDO It not only improves the user experience , At the same time, it also reduces the deployment cost of Internet service providers .
Last , The user biometric information used in the verification process will never leave the user's device , It can only be used after unlocking locally , Therefore, there is no need to worry about leaking user data from the server .
In addition to providing secure authentication ,HMS Core FIDO It can also help developers optimize the user experience .
HMS Core FIDO The protocol is always designed around protecting users' privacy , These protocols do not provide information that can be used to track users on Internet platforms , If biometric technology is adopted , User biometric information will never leave the user device . This is compared with the traditional biometric authentication , Great improvements have been made in security and privacy protection , Because traditional biometric authentication will collect user data to the server , Once the server data leaks , There will be serious consequences . From the user's point of view , The privacy experience has been greatly improved .
During authentication , The user operation is simple , The process is smooth and uninterrupted , Don't spend too much time waiting , For example, accept the verification code 、 Enter the password, etc .
HMS Core FIDO Application scenarios of
at present ,FIDO Technology has been developed by global equipment manufacturers 、 Widespread recognition of Internet service providers , Including some large banks and other financial institutions 、 Government network platform, etc , Mature application in high security scenarios involving capital changes , Such as : Shopping websites or App Purchase payment 、 Digital currency transfer 、 Mobile Banking ( Online Banking Service ) Large transactions in , wait . Take the use process for example ,App Check whether the device supports when the user logs in HMS Core FIDO, If the support ,App It can guide users to open fingerprints or 3D Face login , Users only need to verify their fingerprints or 3D Face can be . HMS Core FIDO Is based on FIDO Standardize the open capabilities for developers at home and abroad , It can help Internet service providers to make the authentication process more secure 、 It's simpler , At the same time, it can also gain a better user experience .FIDO Its full name is Fast Identity Online standard , By FIDO The alliance has launched and continues to maintain a set of authentication framework protocols , It uses standard public key cryptography , Provide a more powerful authentication method .
Click to enter HMS Core FIDO Official website , Experience high-quality authentication capabilities .
Learn more >>
visit Official website of Huawei developer Alliance
obtain Development guidance document
Huawei mobile service open source warehouse address : GitHub
Pay attention to our , The first time to understand HMS Core Latest technical information ~
边栏推荐
- 你的下一台电脑何必是电脑,探索不一样的远程操作
- 非技术部门,如何参与 DevOps?
- Transactions from January 14 to 19, 2022
- 使用 jMeter 对 SAP Spartacus 进行并发性能测试
- SAP SEGW 事物码里的 ABAP Editor
- jxl笔记
- [Nacos cloud native] the first step of reading the source code is to start Nacos locally
- Overflow toolbar control in SAP ui5 view
- Laravel document reading notes -mews/captcha use (verification code function)
- Vonedao solves the problem of organizational development effectiveness
猜你喜欢
Lepton 无损压缩原理及性能分析
Taobao short video, why the worse the effect
Introduction to sap ui5 flexiblecolumnlayout control
SAP UI5 视图里的 OverflowToolbar 控件
A deep long article on the simplification and acceleration of join operation
潘多拉 IOT 开发板学习(HAL 库)—— 实验7 窗口看门狗实验(学习笔记)
Shi Zhenzhen's 2021 summary and 2022 outlook | colorful eggs at the end of the article
SAP SEGW 事物码里的 ABAP 类型和 EDM 类型映射的一个具体例子
Simply take stock reading notes (2/8)
解决 UnicodeDecodeError: ‘gbk‘ codec can‘t decode byte 0xa2 in position 107
随机推荐
CVPR 2022 | single step 3D target recognizer based on sparse transformer
函数传递参数小案例
10 minute fitness method reading notes (3/5)
OpenHarmony应用开发之Navigation组件详解
HiEngine:可媲美本地的云原生内存数据库引擎
leetcode:221. 最大正方形【dp状态转移的精髓】
From the perspective of technology and risk control, it is analyzed that wechat Alipay restricts the remote collection of personal collection code
RHCSA1
How to connect the API interface of Taobao open platform (super detailed)
##无监控,不运维,以下是监控里常用的脚本监控
The solution of outputting 64 bits from printf format%lld of cross platform (32bit and 64bit)
LeetCode20.有效的括号
About the single step debugging of whether SAP ui5 floating footer is displayed or not and the benefits of using SAP ui5
#yyds干货盘点# 解决名企真题:搬圆桌
mysql拆分字符串做条件查询
Notes for preparation of information system project manager --- information knowledge
无密码身份验证如何保障用户隐私安全?
Simply take stock reading notes (4/8)
Super efficient! The secret of swagger Yapi
我在滴滴做开源