CN101729643A - Anti-theft encryption method for IC card or magnetic card - Google Patents
Anti-theft encryption method for IC card or magnetic card Download PDFInfo
- Publication number
- CN101729643A CN101729643A CN201010011701A CN201010011701A CN101729643A CN 101729643 A CN101729643 A CN 101729643A CN 201010011701 A CN201010011701 A CN 201010011701A CN 201010011701 A CN201010011701 A CN 201010011701A CN 101729643 A CN101729643 A CN 101729643A
- Authority
- CN
- China
- Prior art keywords
- card
- magnetic card
- magnetic
- terminal equipment
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention discloses an anti-theft encryption method for an IC card or a magnetic card, which comprises the IC card or the magnetic card with a storage user's encrypted message, an IC card or magnetic card terminal device with the functions of reading and writing, and a data processing server which communicates with the terminal device, wherein the IC card or the magnetic card is inserted into the terminal device, the password is input, the new user's encrypted message of the corresponding IC card or the magnetic card is automatically generated after the data processing server verifies the correctness, and the new user's encrypted message is written into the IC card or the magnetic card through the terminal device before the IC card or the magnetic card is taken out. After the technical scheme is adopted, even if the message of the IC card or the magnetic card is copied when the IC card or the magnetic card is inserted, the user's encrypted message in the IC card or the magnetic card is already changed when the card is taken out, and the copied user's message is invalid. The encryption method has the characteristics of high reliability, impossibility of copying, low investment and the like, can effectively prevent the IC card or the magnetic card from being copied and causing loss of the cardholder, and enhances the use safety class.
Description
Technical field
The present invention relates to information security technology, relate in particular to a kind of encipherment scheme of a kind of IC-card or magnetic card safeguard protection.
Background technology
Along with rapid economic development of China, IC-card or magnetic card become the important commercial instrument, because the information of China's IC-card or the existing use of magnetic card is simple, up to the present also not having a kind of is economical and effective and safe and reliable effective risk prevention instruments, brings very big potential safety hazard for China's IC-card or magnetic card holder.
Bank card for example, because financial business spreads all over each corner of social life, bank card becomes important financial instrument, the thing followed is also more and more at the delinquent phenomenon of bank card.Wherein main means of crime is to realize by bank self-aid apparatus.The process that the offender clones bank card is as follows: at first obtain bank card user information, on self-help bank swipes the card the gate inhibition, new card reader is installed covers the original card reader of bank, information such as card number went on record when user card punching entered; Perhaps card reader is installed in the new card reader of card inserting mouth place installation of ATM, in user's plug-in card process, information such as card number go on record; Secondly, steal bank card password, it seeks concealed location above the ATM keyboard, load onto minisize pick-up head, if the person of withdrawing the money does not take any measure of blocking when importing password on ATM, password will be by the camera record down; At last, the chip access computer with the record bank card information is connected the bank card reproducer by special software with computer, again with common blank magnetic card brush on reproducer, the bank card information of stealing just is read in the blank magnetic card, and institute's card that duplicates is identical with true card, withdraws the money arbitrarily.This means of crime is implemented easily, and crime risk is lower, is adopted in a large number by all means by the offender.
Summary of the invention
Technical problem to be solved by this invention provides a kind ofly can effectively protect the IC-card of IC-card or magnetic card account safety or the anti-theft encryption method of magnetic card.
For solving the problems of the technologies described above, technical scheme of the present invention is: the anti-theft encryption method of IC-card or magnetic card, comprise IC-card or magnetic card with storage user encryption information, IC-card or magnetic card terminal equipment with read-write capability, IC-card or data on magnetic card processing server with described IC-card or the communication of magnetic card terminal equipment, described IC-card or magnetic card are inserted into IC-card or magnetic card terminal equipment, input IC-card or magnetic card password, IC-card or the checking of data on magnetic card processing server are correct, promptly generate the new user encryption information of corresponding IC-card or magnetic card automatically, described new user encryption information is written in described IC-card or the magnetic card before taking out described IC-card or magnetic card by IC-card or magnetic card terminal equipment then.
As a kind of optimized technical scheme, described user encryption information comprises user basic information and dynamic encrypting code, and described new user encryption information comprises user basic information and new dynamic encrypting code.
As a kind of optimized technical scheme, described dynamic encrypting code is at least two sections storages in IC-card or magnetic card, and each section is a complete and effective dynamic encrypting code.
As a kind of optimized technical scheme, described IC-card or magnetic card terminal equipment are that POS machine, ATM and all can be with the equipment of card.
Owing to adopted technique scheme, the user encryption information of IC-card or magnetic card changes, when utilizing IC-card or magnetic card to carry out business operation at every turn, by IC-card or data on magnetic card processing server the user encryption information of IC-card or magnetic card is verified, after correct, in IC-card or magnetic card, write new user encryption information by IC-card or magnetic card terminal equipment, even the information of IC-card or magnetic card is replicated when plug-in card like this, user encryption information when moving back card in IC-card or the magnetic card changes, even duplicating also is the user profile of cancelling, and user cipher no longer works to the user profile of cancelling, this cipher mode has high reliability, be not replicated, characteristics such as less investment, can prevent from effectively to be cloned to the holder and cause damage, improve the grade safe in utilization of IC-card or magnetic card because of IC-card or magnetic card.
Description of drawings
The present invention is further illustrated below in conjunction with the drawings and specific embodiments.
Accompanying drawing is the transaction operational flowchart of the embodiment of the invention.
Embodiment
As shown in drawings, the anti-theft encryption method of IC-card or magnetic card, comprise IC-card or magnetic card with storage user encryption information, have the IC-card or the magnetic card terminal equipment of read-write capability, described IC-card or magnetic card terminal equipment are that POS machine, ATM and all can be with the equipment of card; IC-card or data on magnetic card processing server with described IC-card or the communication of magnetic card terminal equipment, described IC-card or magnetic card are inserted into IC-card or magnetic card terminal equipment, input IC-card or magnetic card password, IC-card or the checking of data on magnetic card processing server are correct, promptly generate the new user encryption information of corresponding IC-card or magnetic card automatically, described new user encryption information is written in described IC-card or the magnetic card before taking out described IC-card or magnetic card by IC-card or magnetic card terminal equipment then.Described user encryption information comprises user basic information and dynamic encrypting code, and described new user encryption information comprises user basic information and new dynamic encrypting code.Described dynamic encrypting code is at least two sections storages in IC-card or magnetic card, with two sections is example, each section is a complete and effective dynamic encrypting code, when the dynamic memory zone information distortion occurs or damages, the mutual correction of two character code sections, determine a complete dynamic encrypting code, IC-card or magnetic card are promptly effectively.
With the bank card is example, and for the bank card that is provided with dynamic encrypting code, when bank finance equipment was concluded the business operation, detailed process was as follows:
The holder carries out business operation, and bank card is inserted terminal equipment, and the program of terminal equipment is delivered to the bank card data processing server with information package such as card number, effective account number cipher, dynamic encrypting code, terminal identification informations; The data processing server of issuing bank responds this operation, the validity of checking information, the process of this check information is compared with the check of present information, increased the dynamic encryption code check, as belong to this time of significant response transaction, and will reach the program of terminal equipment under the response message, if information data is wrong, interrupt the failure of transaction and prompting operation; Integrality, the validity of this packet of programmed check of terminal equipment respond this transaction, if the information of packet is wrong, and terminal transaction and prompting operation failure.The data data processing server of described issuing bank is provided with the dynamic encrypting code generating routine, be used to produce new dynamic encrypting code, replace old dynamic encrypting code, when the data processing server of issuing bank after Information Authentication finishes to user encryption, can produce new dynamic encrypting code by the dynamic encrypting code generating routine, send to terminal equipment, the program of terminal equipment writes new dynamic encrypting code according to the information that receives in bank card, upgrade the dynamic encrypting code information of this bank card account in the database of data processing server simultaneously.Like this, even in the process of plug-in card, the user profile in the bank card is duplicated by illegal card reader, in the process of withdrawing the money, password is spied on by camera, but transaction finishes the back and change from the user encryption information in the bank card of terminal equipment taking-up, and the offender can't duplicate this card.
By preserve the grade safe in utilization that same dynamic encrypting code improves bank card with data processing server in bank card, at the actual conditions of present each bank, this technical scheme is very easy to realize.At first, the bank card major part is four magnetic track magnetic stripe cards at present, and first, fourth magnetic track does not use information at present, and we can get up the existing bank card utilization of resources, reduces bank and holder's use cost, also makes things convenient for the seamless transitions of technical elements.Secondly, the use of low cost, high reliability, large-capacity storage media in the server, the application of high-performance central processing unit provide data center technical feasibility.Once more, the application of banking system financial self-service equipment high performance control module makes this The Application of Technology become possibility.Simultaneously, very ripe dynamic encrypting code application technology is also arranged at present.At last, the financial self-service equipment of banks of China system all possesses read-write capability, does not need to carry out financial self-service equipment and carries out HardwareUpgring.
Realize technical scheme of the present invention, only need do following improvement gets final product: the data processing server of bank need increase the dynamic encrypting code generating routine, and need in bank card personal account information, increase the dynamic encryption code field, form the higher user encryption information of safe class.Bank's card sending system need produce the initial default dynamic encrypting code, and the initial default dynamic encrypting code in the user encryption information in the database of assurance data processing server is consistent with the acquiescence dynamic encrypting code in the bank card.Bank finance Possum terminal program need increase the dynamic encrypting code read-write operation.Bank card equipment need have full magnetic track read-write capability.Banking Foreground need increase bank card reparation and dynamic encrypting code write device again, needs the banking management system to be fit to the needs that foreground bank card reparation and user encryption information write again simultaneously.
In the present embodiment, be that example is introduced with the bank card, also be applicable to other IC-card or magnetic card at the various operations of bank card.All from the present invention is to devise, the reconfiguration of having done without creative work all drops within protection scope of the present invention.
Claims (4)
1.IC the anti-theft encryption method of card or magnetic card, comprise IC-card or magnetic card with storage user encryption information, IC-card or magnetic card terminal equipment with read-write capability, IC-card or data on magnetic card processing server with described IC-card or the communication of magnetic card terminal equipment, it is characterized in that: described IC-card or magnetic card are inserted into IC-card or magnetic card terminal equipment, input IC-card or magnetic card password, IC-card or the checking of data on magnetic card processing server are correct, promptly generate the new user encryption information of corresponding IC-card or magnetic card automatically, described new user encryption information is written in described IC-card or the magnetic card before taking out described IC-card or magnetic card by IC-card or magnetic card terminal equipment then.
2. the anti-theft encryption method of IC-card as claimed in claim 1 or magnetic card is characterized in that: described user encryption information comprises user basic information and dynamic encrypting code, and described new user encryption information comprises user basic information and new dynamic encrypting code.
3. the anti-theft encryption method of IC-card as claimed in claim 2 or magnetic card is characterized in that: described dynamic encrypting code is at least two sections storages in IC-card or magnetic card, and each section is a complete and effective dynamic encrypting code.
4. as the anti-theft encryption method of claim 1,2 or 3 described IC-cards or magnetic card, it is characterized in that: described IC-card or magnetic card terminal equipment are POS machine or ATM.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010011701A CN101729643A (en) | 2010-01-19 | 2010-01-19 | Anti-theft encryption method for IC card or magnetic card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010011701A CN101729643A (en) | 2010-01-19 | 2010-01-19 | Anti-theft encryption method for IC card or magnetic card |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101729643A true CN101729643A (en) | 2010-06-09 |
Family
ID=42449819
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010011701A Pending CN101729643A (en) | 2010-01-19 | 2010-01-19 | Anti-theft encryption method for IC card or magnetic card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101729643A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2015003587A1 (en) * | 2013-07-10 | 2015-01-15 | 天地融科技股份有限公司 | Smart card, verification data outputting method, and operation request responding method and system |
| CN106683250A (en) * | 2017-01-03 | 2017-05-17 | 沈阳速站科技有限责任公司 | Entrance guard device and system |
| CN109102658A (en) * | 2018-07-20 | 2018-12-28 | 武汉盛硕电子有限公司 | A kind of recharge method of IC card, encryption method, system and charging pile |
| CN113808339A (en) * | 2021-09-17 | 2021-12-17 | 中国银行股份有限公司 | Self-service system and verification method of self-service equipment |
-
2010
- 2010-01-19 CN CN201010011701A patent/CN101729643A/en active Pending
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2015003587A1 (en) * | 2013-07-10 | 2015-01-15 | 天地融科技股份有限公司 | Smart card, verification data outputting method, and operation request responding method and system |
| CN106683250A (en) * | 2017-01-03 | 2017-05-17 | 沈阳速站科技有限责任公司 | Entrance guard device and system |
| CN109102658A (en) * | 2018-07-20 | 2018-12-28 | 武汉盛硕电子有限公司 | A kind of recharge method of IC card, encryption method, system and charging pile |
| CN113808339A (en) * | 2021-09-17 | 2021-12-17 | 中国银行股份有限公司 | Self-service system and verification method of self-service equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| RU2691590C2 (en) | Systems and methods of replacing or removing secret information from data | |
| US9218598B2 (en) | Portable e-wallet and universal card | |
| US9129199B2 (en) | Portable E-wallet and universal card | |
| CN105205508A (en) | Self-service card issuing machine for intelligent card | |
| KR20010025234A (en) | A certification method of credit of a financing card based on fingerprint and a certification system thereof | |
| US20190005495A1 (en) | Method for verifying transactions in chip cards | |
| CN104867009A (en) | Intelligent card, quota control system thereof, and quota control method thereof | |
| CN101729643A (en) | Anti-theft encryption method for IC card or magnetic card | |
| CN104282098B (en) | The making out an invoice and copy tax process upgrade method of a kind of tax-controlling device | |
| CN109753837B (en) | Anti-copying and anti-tampering method for IC card | |
| CN103778713A (en) | Financial ic card system | |
| CN102521631A (en) | Intelligent financial IC card reading and writing method based on electronic identity card system | |
| CN102521746B (en) | Safely-consuming smart card and method thereof | |
| US20150106925A1 (en) | Security system and method | |
| KR20090058758A (en) | Smart card with flash memory and display, card reader of smart card, drm method using that | |
| JP6270005B1 (en) | Magnetic recording card and information verification system | |
| CN103400266A (en) | Dual-interface card module combination equipment and card service implementation system and method | |
| CN103021093B (en) | Multifunctional card system | |
| CN104240387A (en) | Method and system for processing bank card transaction | |
| TWM564763U (en) | Improved security access module | |
| CN103871163A (en) | Composited financial transaction method and system | |
| JP2007065727A (en) | Ic card use system | |
| JP3880707B2 (en) | Recording medium recording electronic passbook system and transaction processing program | |
| CN102301384A (en) | Security Measures For Credit Card | |
| Sinha | Is Your ATM Card Really Safe? |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20100609 |