CN214337920U - Electronic cipher device - Google Patents
Electronic cipher device Download PDFInfo
- Publication number
- CN214337920U CN214337920U CN202120654575.0U CN202120654575U CN214337920U CN 214337920 U CN214337920 U CN 214337920U CN 202120654575 U CN202120654575 U CN 202120654575U CN 214337920 U CN214337920 U CN 214337920U
- Authority
- CN
- China
- Prior art keywords
- password
- chip
- electronic
- microprocessor
- nfc
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Telephone Function (AREA)
Abstract
The application provides an electronic password ware relates to the information security field, can be used for the finance field, includes: the NFC encryption device comprises a microprocessor (2), a password chip (3) and an NFC device (5); the password chip (3) and the NFC device (5) are respectively connected with the microprocessor (2); the NFC device (5) receives a challenge code sent by the mobile terminal and sends the challenge code to the password chip (3), and the microprocessor (2) receives a dynamic password output by the password chip (3) and encrypts the dynamic password and the stored identification information of the electronic password device and transmits the encrypted dynamic password and the stored identification information to the mobile terminal through the NFC device (5). The electronic password device free of manual input can be provided by utilizing an NFC (near field communication) technology.
Description
Technical Field
The application relates to the field of information security, can be used for the finance field, specifically is an electronic password ware.
Background
Along with the gradual popularization of personal internet bank and mobile phone bank, the matched security authentication tool is continuously upgraded. At present, the mainstream security authentication technology is a dynamic password technology, and a hardware token is used as a common technology of dynamic passwords, so that a safer and more reliable identity and transaction authentication mode is provided for customers handling business in electronic banking channels such as internet banking, telephone banking, mobile phone banking and the like.
One of the mainstream ways for the hardware token to generate the dynamic password is based on the challenge code.
However, for dynamic ciphers based on challenge codes, the user is required to enter the challenge code in a short time and use the cipher as soon as possible. Because the existing cipher device is designed to be very thin and small for carrying conveniently, each key is made very compact, and a user inputs a plurality of random numbers in a short time, the random numbers are often input by mistake or neglected; or if the password is not easy to be input correctly after a long time is consumed, the password is found to be invalid after the password is overtime. In addition, the long-time use may also cause the keys of the cipher device to be insensitive, which affects the input experience. Furthermore, after the password is obtained on the password device, manual input needs to be performed again on the system or the mobile transaction terminal, and the operation is repeated and complicated.
SUMMERY OF THE UTILITY MODEL
To the problem among the prior art, this application provides an electronic password ware, can utilize NFC near field communication technique to provide the electronic password ware of exempting from manual input.
In order to solve the technical problem, the application provides the following technical scheme:
the application provides an electronic scrambler, including: a microprocessor 2, a password chip 3 and an NFC device 5;
the password chip 3 and the NFC device 5 are respectively connected with the microprocessor 2;
the NFC device 5 receives a challenge code sent by the mobile terminal and sends the challenge code to the password chip 3, and the microprocessor 2 receives a dynamic password output by the password chip 3, encrypts the dynamic password and the stored identification information of the electronic password device and transmits the encrypted dynamic password and the encrypted identification information to the mobile terminal through the NFC device 5.
Further, the electronic password device further includes: a display unit 4; the display unit 4 includes a liquid crystal display 41 for displaying the authentication result.
Further, the display unit 4 includes a power switch 42 for controlling the operating state of the microprocessor 2.
Further, the microprocessor 2 comprises a memory unit 22 for storing the identification information of the electronic code transmitter.
Further, the cryptographic chip 3 includes a key storage unit 32 for storing encryption and decryption keys.
Further, the NFC device 5 includes a built-in antenna 51 for near field communication.
Further, the NFC device 5 includes a chip 52 for near field communication.
Further, the electronic password device further includes: the battery unit 6 is used for supplying power to the microprocessor 2, the password chip 3, the display unit 4 and the NFC device 5; the battery unit 6 includes a miniature button battery 61.
The electronic cipher device can perform close-range wireless encryption communication with a mobile transaction terminal by utilizing an NFC near field communication technology, realizes safe and automatic transmission of challenge codes and ciphers, and greatly improves convenience of use of customers.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
FIG. 1 is a block diagram of the logic of an electronic cryptographic engine in an embodiment of the present application;
FIG. 2 is a structural diagram of an external appearance of an electronic password device in the embodiment of the present application;
FIG. 3 is a diagram of an internal structure of an electronic password device in the embodiment of the present application;
fig. 4 is a flowchart of the operation of the electronic password device in the embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
The application of the electronic password device relates to the field of information security, can be used in the financial field, also can be used in any field except the financial field, and the application of the electronic password device is not limited.
The application provides a key-press-free input electronic password device realized by using an NFC technology based on a challenge response identity authentication mechanism. The electronic cipher device can be in close-range wireless encryption communication with mobile transaction terminals such as mobile phones and the like through an NFC technology, safe and automatic transmission of challenge codes and ciphers is achieved, the situation that challenge codes or ciphers are mistakenly input or missed to input when a client uses the key cipher device is avoided, operation links are reduced, convenience of use of the client is greatly improved, and meanwhile the service life of the cipher device is prolonged.
For convenience of description, the electronic cipher device 1 is described in detail in the embodiment of the present application by taking a mobile phone with an NFC function as an example of a mobile transaction terminal.
In fig. 2, the mobile phone 8 has an NFC function, and can perform near field communication transmission with the electronic cryptographic device 1 by using an NFC technology, and meanwhile, the mobile phone 8 is installed with transaction software (e.g., mobile phone internet banking software) and can communicate with a transaction host or a remote authentication server 9 through a network to implement processes of identity authentication and business transaction. The mobile phone 8 transaction software comprises a communication encryption algorithm, and the challenge code is encrypted before being transmitted to the electronic cipher device 1; the information is decrypted after receiving the identification information (cipher text) or the dynamic cipher information (cipher text) from the electronic cipher 1.
Referring to fig. 1, in order to perform near field wireless encryption communication with a mobile transaction terminal by using an NFC near field communication technology, to implement secure automatic transmission of a challenge code and a password, and to greatly improve convenience of use of an electronic password device, the present application provides an electronic password device, including: a microprocessor 2, a password chip 3 and an NFC device 5;
the password chip 3 and the NFC device 5 are respectively connected with the microprocessor 2;
the NFC device 5 receives a challenge code sent by the mobile terminal and sends the challenge code to the password chip 3, and the microprocessor 2 receives a dynamic password output by the password chip 3, encrypts the dynamic password and the stored identity identification information of the electronic password device and transmits the encrypted dynamic password and the stored identity identification information to the mobile terminal through the NFC device 5.
Referring to fig. 2 and 3, fig. 2 is an external structure diagram of the present application, and fig. 3 is an internal structure diagram of the present application, and the electronic cryptographic device 1 provided in the present application includes a display unit 4, a power supply unit 6, and a housing 7 in addition to a microprocessor 2, a cryptographic chip 3, and an NFC device 5.
The main functions of the microprocessor 2 include a control display function and an encryption function, and can transmit information with the NFC device 5. It should be noted that the microprocessor 2 is an existing processor, for example, a concentric microelectronic THM36 series chip may be used, and a 512Kb Flash memory is built in the chip, which is not limited in this application.
The microprocessor 2 is provided with a storage unit 22, the storage unit 22 stores the identification information (which may be a string of numbers) of the electronic cipher device 1, and is convenient for identification and verification by mobile transaction terminals such as mobile phones, and customers need to enter the identification information of the binding cipher device on the mobile transaction terminals such as mobile phones before using the electronic cipher device 1 for the first time, so as to be convenient for subsequent identification and verification of the electronic cipher device 1 in an actual business process.
The microprocessor 2 is connected with a password chip 3, and can transmit challenge codes to the password chip 3 and receive dynamic passwords generated by the password chip 3. It should be noted that the cryptographic chip 3 is an existing chip, for example, the cryptographic chip 4304 of the lingo chip ann LKT series may be used, but the present application is not limited thereto.
The microprocessor 2 is connected with an NFC device 5, and can transmit identification information or dynamic password information to mobile transaction terminals such as mobile phones and receive instructions and challenge codes sent by the mobile transaction terminals such as the mobile phones through the NFC device 5.
The microprocessor 2 also includes a microprocessor algorithm unit 23 for communication encryption, which can encrypt the information before transmitting the identification information or dynamic password information through the NFC device 5, and decrypt the challenge code (ciphertext) after receiving the challenge code from the mobile transaction terminal such as a mobile phone through the NFC device 5. The encryption algorithm of the microprocessor algorithm unit 23 is consistent with that of mobile transaction terminals such as mobile phones. The above encryption and decryption functions of the microprocessor 2 can be implemented by an existing processor like a chip of the chip microelectronics THM36 series.
It should be further noted that the microprocessor 2, as a core processing unit of the electronic cipher 1, has two operating states, namely a sleep state and a wake state. The microprocessor 2 is connected with a power switch 42, the microprocessor 2 can be awakened (namely, the cipher is turned on) by pressing the power switch 42 for a long time, the microprocessor 2 can directly enter a sleep state (namely, the cipher is turned off) by touching the power switch 42 in the awakening state, and the microprocessor 2 can automatically enter the sleep state after no operation is carried out for a certain time in the awakening state.
In one embodiment, the cryptographic chip 3 is used for generating a password, and the battery unit 6 is connected to the cryptographic chip 3 and is powered by the battery unit 6.
The cryptographic chip 3 includes a cryptographic chip algorithm unit 31 and a key storage unit 32, the cryptographic chip algorithm unit 31 stores an algorithm, and the key storage unit 32 stores an encryption/decryption key. The algorithm and key of the cryptographic chip 3 are identical to those of the transaction host or the remote authentication server 9. The algorithm and the key information are stored in the flash memory and can be automatically destroyed after power failure, so as to prevent the algorithm and the key information from being obtained and cracked.
The cryptographic chip 3 can receive the challenge code transmitted by the microprocessor 2, and after the challenge code is operated by an algorithm by using a secret key, a new dynamic password is formed and is output to the microprocessor 2 through a port.
In one embodiment, the display unit 4 includes a liquid crystal display 41 and a power switch 42. The microprocessor 2 can control the liquid crystal display 41 to display the numbers and the designated symbol information and display the authentication result through the port. In view of the relative simplicity of the information to be displayed, the LCD panel 41 of the present application may be a single line LCD panel or other type of display screen with black and gray background characters, and the present application is not limited thereto. Furthermore, long-pressing of power switch 42 may wake up electronic code transmitter 1 or put electronic code transmitter 1 into a sleep state.
In one embodiment, the NFC device 5 includes a built-in antenna 51 and a chip 52, and supports a near field communication protocol.
The NFC technology is adopted, and is mainly used and supported by a plurality of mobile transaction terminals such as mobile phones gradually because the technology and the use scene are widely applied; and the advantage that NFC power consumption is low makes this application can use miniature battery, realizes miniaturized portable design.
The NFC device 5 is connected with the microprocessor 2 through a port to exchange information. The built-in antenna 51 is a circuit coil manufactured by a loop printing process. The chip 52 is a chip conforming to the NFC specification, supports a near field communication protocol, and has one end connected to the battery unit 6, and the battery unit 6 can provide power for the NFC device 5.
In one embodiment, the power unit 6 includes a micro button battery 61 for providing power to the microprocessor 2, the cryptographic chip 3, the display unit 4, the NFC device 5, and the like.
In one embodiment, referring to fig. 2, the housing 7 is a rectangular structure, is totally enclosed and is not detachable, and forms a housing of the dynamic electronic password device 1, and the material may be a plastic material. The right upper area of the front surface of the shell 7 is provided with a power switch 42, and the central area above the front surface is provided with a display screen 41. The identification information of the cipher device 1 and the corresponding two-dimensional code information are printed in the left lower area of the back surface of the shell 7, and the two-dimensional code is convenient for a system or a mobile transaction terminal to directly scan and input. It should be noted that the internal antenna 51 may be disposed inside the outer shell 7 and annularly distributed around the inner shell of the dynamic electronic password device 1, and when the mobile phone 8 is used, the NFC antenna area and the dynamic electronic password device 1 approach each other to complete the near field communication.
From the above description, the electronic cipher device provided by the application can perform near field wireless encryption communication with the mobile transaction terminal by using the NFC near field communication technology, so that the challenge code and the password are safely and automatically transmitted, and the convenience of use of a client is greatly improved.
Fig. 4 is a service flow chart of the embodiment of the present application, in which a mobile phone is used as a transaction mobile terminal, which is described in detail as follows:
the following description is given by taking an example of a process of performing identity authentication using the electronic cipher device 1 when a customer performs a transaction (e.g., remittance transaction) through transaction software of the mobile phone 8.
Step 101: when the client performs remittance service through the mobile phone 8 transaction software, service authentication is required to be performed, and the authentication process is started.
Step 102: the mobile phone 8 transaction software prompts the customer to turn on the electronic password device 1.
Step 103: the customer presses the power switch 41 of the electronic code device 1 to turn on the dynamic electronic code device 1.
Step 104: the electronic cipher device 1 is close to the NFC antenna area of the mobile phone 8, and an NFC connection is established.
Step 105: the mobile phone 8 transaction software judges whether the connection is successful, and if the connection is successful, the step 106 is carried out; if not successful, step 113 is performed.
Step 106: the mobile phone 8 transaction software sends an instruction through NFC to carry out identity recognition verification on the electronic cipher device 1, the electronic cipher device 1 receives the verification instruction to encrypt the identity recognition information of the storage unit 22 and then transmits the encrypted identity recognition information to the mobile phone 8 through NFC, and the mobile phone 8 transaction software receives and decrypts the identity recognition information and compares the encrypted identity recognition information with preset data.
Step 107: the mobile phone 8 transaction software judges whether the verification is passed, if the verification is passed, the step 108 is carried out, and if the verification is not passed, the step 114 is carried out.
Step 108: the mobile phone 8 transaction software acquires the challenge code from the transaction host or the remote authentication server 9, encrypts the challenge code and transmits the encrypted challenge code to the electronic password device 1 through NFC.
Step 109: after the electronic cipher device 1 receives and decrypts the challenge code information, the dynamic cipher is generated by the cipher chip 3, and the dynamic cipher is encrypted by the electronic cipher device 1 and then transmitted back to the mobile phone 8 through the NFC.
Step 110: after receiving and decrypting the dynamic password information, the transaction software of the mobile phone 8 uploads the dynamic password information to the transaction host or the remote authentication server 9, the transaction host or the remote authentication server 9 uses the dynamic password obtained by the same key and algorithm operation to compare with the password uploaded by the mobile phone 8 for authentication, and the authentication result is returned to the mobile phone 8.
Step 111: the transaction software of the mobile phone 8 judges whether the authentication is passed according to the authentication result, if the authentication is passed, the step 112 is carried out, and if the authentication is not passed, the step 115 is carried out.
Step 112: the authentication process ends.
Wherein, the step 113: the transaction software of the mobile phone 8 prompts the communication connection failure and stops the authentication, and the step 101 is returned.
Step 114: the mobile phone 8 transaction software prompts that the identity verification fails and stops the authentication, and the step 101 is returned.
Step 115: the mobile phone 8 transaction software prompts that the password authentication fails and stops the authentication, and the step 101 is returned.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the embodiment of the method implemented by the device, since it is basically similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to part of the description of the method embodiment.
The foregoing description has been directed to specific embodiments of this disclosure. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.
Although embodiments of the present description provide method steps as described in embodiments or flowcharts, more or fewer steps may be included based on conventional or non-inventive means. The order of steps recited in the embodiments is merely one manner of performing the steps in a multitude of orders and does not represent the only order of execution. The terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, the presence of additional identical or equivalent elements in a process, method, article, or apparatus that comprises the recited elements is not excluded.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the system embodiment, since it is substantially similar to the method embodiment, the description is simple, and for the relevant points, reference may be made to the partial description of the method embodiment. In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of an embodiment of the specification. In this specification, the schematic representations of the terms used above are not necessarily intended to refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, various embodiments or examples and features of different embodiments or examples described in this specification can be combined and combined by one skilled in the art without contradiction.
The above description is only an example of the embodiments of the present disclosure, and is not intended to limit the embodiments of the present disclosure. Various modifications and variations to the embodiments described herein will be apparent to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the embodiments of the present specification should be included in the scope of the claims of the embodiments of the present specification.
Claims (10)
1. An electronic cipher, comprising: the NFC encryption device comprises a microprocessor (2), a password chip (3) and an NFC device (5);
the password chip (3) and the NFC device (5) are respectively connected with the microprocessor (2);
the NFC device (5) receives a challenge code sent by the mobile terminal and sends the challenge code to the password chip (3), and the microprocessor (2) receives a dynamic password output by the password chip (3) and encrypts the dynamic password and the stored identification information of the electronic password device and transmits the encrypted dynamic password and the stored identification information to the mobile terminal through the NFC device (5).
2. The electronic cipher according to claim 1, further comprising: a display unit (4); the display unit (4) includes a liquid crystal display (41) for displaying the authentication result.
3. Electronic cipher device according to claim 2, characterized in that the display unit (4) comprises a power switch (42) for controlling the operating state of the microprocessor (2).
4. The electronic code encryptor of claim 1, wherein the microprocessor (2) comprises a memory unit (22) for storing identification information of the electronic code encryptor.
5. The electronic password according to claim 1, characterized in that the microprocessor (2) is a chip of the THM36 family.
6. The electronic cipher device according to claim 1, characterized in that the cryptographic chip (3) comprises a key storage unit (32) for storing encryption and decryption keys.
7. The electronic cipher device according to claim 1, characterized in that the cipher chip (3) is an LKT series encryption chip 4304.
8. The electronic cipher according to claim 1, characterized in that the NFC device (5) comprises a built-in antenna (51) for near field communication.
9. The electronic cipher according to claim 1, characterized in that the NFC device (5) comprises a chip (52) for near field communication.
10. The electronic cipher according to claim 1, further comprising: the battery unit (6) is used for supplying power to the microprocessor (2), the password chip (3), the display unit (4) and the NFC device (5); the battery unit (6) comprises a miniature button battery (61).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202120654575.0U CN214337920U (en) | 2021-03-31 | 2021-03-31 | Electronic cipher device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202120654575.0U CN214337920U (en) | 2021-03-31 | 2021-03-31 | Electronic cipher device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN214337920U true CN214337920U (en) | 2021-10-01 |
Family
ID=77889622
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202120654575.0U Active CN214337920U (en) | 2021-03-31 | 2021-03-31 | Electronic cipher device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN214337920U (en) |
-
2021
- 2021-03-31 CN CN202120654575.0U patent/CN214337920U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10977642B2 (en) | Apparatuses and methods for operating a portable electronic device to conduct mobile payment transactions | |
| US7891557B2 (en) | System and method for managing multiple smart card sessions | |
| US8214888B2 (en) | Two-factor USB authentication token | |
| KR100586654B1 (en) | Wireless banking system and wireless banking method using mobile phone | |
| JP5562964B2 (en) | Contactless authentication system and method used for settlement | |
| CN101655653B (en) | Projector for projecting password and method therof | |
| EP1850255B1 (en) | System and method for managing multiple smart card sessions | |
| US9665866B2 (en) | Smart cards and smart card communication methods and systems | |
| EP2034458A2 (en) | One-time passwords | |
| CN102315942A (en) | Security terminal with Bluetooth and communication method thereof of security terminal and client end | |
| JP2006505993A (en) | Providing access code sets to user devices | |
| CN101360142A (en) | Method and terminal for information exchange | |
| CN101488111A (en) | Identification authentication method and system | |
| WO2001011575A1 (en) | Portable certification device with acoustic coupling | |
| CN103259664A (en) | Nfc dynamic password chip and working method thereof | |
| JP2023539633A (en) | Use of NFC field from phone to power card to phone Bluetooth communication | |
| CA2587576C (en) | System and method for exchanging encryption keys between a mobile device and a peripheral output device | |
| WO2021007472A1 (en) | Methods and systems for securing and utilizing a personal data store on a mobile device | |
| CN214337920U (en) | Electronic cipher device | |
| EP1675076A1 (en) | System and related kit for personal authentication and managing data in integrated networks | |
| KR100351264B1 (en) | Communication terminal apparatus embedded the function generating One Time Password based on the challenge/response | |
| KR100321297B1 (en) | Communication terminal apparatus embedded the function generating One Time Password based on time synchronization | |
| JP5363134B2 (en) | Portable wireless communication terminal, authentication system, portable wireless communication terminal authentication method, portable wireless communication terminal authentication program | |
| CA2546388C (en) | System and method for exchanging encryption keys between a mobile device and a peripheral device | |
| JP2005084846A (en) | Automatic individual identification of ic card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |