WO2018041131A1 - Anti-counterfeiting method and system for optical communication device - Google Patents

Anti-counterfeiting method and system for optical communication device Download PDF

Info

Publication number
WO2018041131A1
WO2018041131A1 PCT/CN2017/099635 CN2017099635W WO2018041131A1 WO 2018041131 A1 WO2018041131 A1 WO 2018041131A1 CN 2017099635 W CN2017099635 W CN 2017099635W WO 2018041131 A1 WO2018041131 A1 WO 2018041131A1
Authority
WO
WIPO (PCT)
Prior art keywords
time
communication device
optical communication
information
verification value
Prior art date
Application number
PCT/CN2017/099635
Other languages
French (fr)
Chinese (zh)
Inventor
王晓东
方俊
李江亮
苏爱民
Original Assignee
陕西外号信息技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 陕西外号信息技术有限公司 filed Critical 陕西外号信息技术有限公司
Priority to CN201780051636.0A priority Critical patent/CN109792387B/en
Publication of WO2018041131A1 publication Critical patent/WO2018041131A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3239Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving non-keyed hash functions, e.g. modification detection codes [MDCs], MD5, SHA or RIPEMD
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/088Usage controlling of secret information, e.g. techniques for restricting cryptographic keys to pre-authorized uses, different access levels, validity of crypto-period, different key- or password length, or different strong and weak cryptographic algorithms

Definitions

  • the invention belongs to the field of optical information technology, and more particularly to an anti-counterfeiting method and system for an optical communication device.
  • Optical communication devices are capable of transmitting different information by emitting different light, which may also be referred to herein as "optical tags,” which are used interchangeably throughout this application.
  • Optical tags transmit information by emitting different lights, which have the advantages of long distance, visible light conditions, strong directivity, and positionability, and the information transmitted by the optical tags can change rapidly with time, thereby providing a large information capacity. . Therefore, compared with the traditional two-dimensional code, the optical tag has stronger information interaction capability, which can provide great convenience for users and businesses. Due to the openness of the registration of optical labels, anyone can purchase personal services or information by purchasing or applying for optical labels, which creates the possibility of criminals falsifying optical labels. In order to prevent illegal forgery of optical tags, it is necessary to provide an anti-counterfeiting method for optical tags.
  • the present invention provides an optical tag anti-counterfeiting method and system, which is simple and reasonable in process, convenient in use, and good in anti-counterfeiting performance.
  • An aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: receiving a first verification value from an image acquisition device of a user, wherein the image acquisition device obtains an image acquisition by the optical communication device The information displayed by the optical communication device as a function of the time at a certain time, and wherein the first verification value is obtained based on the information; inputting the time to the first function to obtain a second verification value And determining the authenticity of the optical communication device according to the first verification value and the second verification value, wherein the time is one of a preset possible authentication time.
  • Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: receiving a verification value from a user's image acquisition device, wherein the image acquisition device passes the light transmission The information device performs image acquisition to obtain information obtained by encrypting the time displayed by the optical communication device at a certain time, and wherein the verification value is obtained based on the information; performing a decryption algorithm on the verification value to Obtaining a decryption result; and analyzing the decrypted result to determine authenticity of the optical communication device, wherein the time is one of a preset possible authentication time.
  • Another aspect of the invention relates to a server configured to perform the anti-counterfeiting method described above.
  • Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: performing image acquisition on the optical communication device using an image acquisition device to obtain that the optical communication device is displayed at a certain time depending on the Time information, wherein the time is one of a preset possible authentication time; obtaining a verification value based on the information; transmitting the verification value to a server for verification; and receiving a verification result from the server.
  • Another aspect of the invention relates to an image acquisition device comprising an image acquisition component, a processor and a memory, wherein the memory stores a computer program that, when executed by the processor, can be used to implement the above An anti-counterfeiting method for an optical communication device.
  • Another aspect of the invention relates to an optical communication apparatus comprising: a light source; and a controller configured to: obtain an output value based on a certain time; obtain the optical communication device based on the output value at the moment Displaying information; and controlling the light source to display the information at the time, wherein the time instant is one of a predetermined possible authentication time.
  • an anti-counterfeiting system for an optical communication device comprising: an optical communication device configured to display information as a function of the time at a certain time; a server configured to: from the user The image acquisition device receives the first verification value, wherein the image acquisition device obtains information displayed by the optical communication device as a function of the time at a certain moment by performing image acquisition on the optical communication device, and wherein The first verification value is obtained based on the information; inputting the time to a first function to obtain a second verification value; and determining the light according to the first verification value and the second verification value The authenticity of the communication device, wherein the time instant is one of a possible authentication time set in advance.
  • Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: an optical communication device displaying information as a function of the time at a certain time; and performing image acquisition on the optical communication device using an image acquisition device, Obtaining the information, and obtaining a first verification value based on the information; the server receiving the first verification value from the image collection device; the server will Inputting into the first function to obtain a second verification value; and the server determining the authenticity of the optical communication device according to the first verification value and the second verification value, wherein the time is preset One of the possible certification moments.
  • Another aspect of the invention relates to an anti-counterfeiting system for an optical communication device, comprising:
  • An optical communication device configured to display information obtained by encrypting the time at a certain time; a server configured to: receive a verification value from an image collection device of the user, wherein the image acquisition device passes the The optical communication device performs image acquisition to obtain information obtained by encrypting the time displayed by the optical communication device at a certain time, and wherein the verification value is obtained based on the information; performing decryption on the verification value An algorithm obtains a decryption result; and analyzes the decryption result to determine authenticity of the optical communication device, wherein the time instant is one of a preset possible authentication time.
  • Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: displaying, at a certain time, an information obtained by encrypting the time at a certain time; and performing an image on the optical communication device using an image capturing device Acquiring to obtain the information, and obtaining a verification value based on the information; the server receiving the verification value from the image collection device; performing a decryption algorithm on the verification value to obtain a decryption result; and analyzing the decryption result to Determining the authenticity of the optical communication device, wherein the time is one of a preset possible authentication time.
  • the invention also provides an optical tag anti-counterfeiting method based on a one-way hash function, which comprises the following steps:
  • Step 1 In the authentication server, establish a one-way hash function for optical label anti-counterfeiting, set its initial parameters, and perform confidential processing;
  • Step 2 setting an authentication period and a starting time, and storing the same in the optical label controller together with the one-way hash function; the optical label controller externally broadcasts the authentication period and the starting time;
  • each authentication period is obtained by an authentication time, and each authentication time is obtained by a one-way hash function, and the optical tag controller controls the optical tag to output and display the output signal at the corresponding authentication time;
  • Step 3 The user performs anti-counterfeiting verification when collecting the optical label by using the mobile collecting device
  • the first authentication time after the current time of collecting the optical label is taken as the current authentication time, and the current output letter corresponding to the current authentication time is collected. number;
  • Step 4 The authentication server inputs the current authentication time to the one-way hash function to obtain the current verification signal. If the current verification signal is the same as the current output signal, the optical label collected by the user is legal, otherwise the user collects the Illegal light label;
  • Step 5 The authentication server sends the optical tag legal or illegal authentication result to the mobile collection device, and completes the optical tag anti-counterfeiting operation based on the one-way hash function.
  • the output signal is used as a frame outputted by the optical tag at the corresponding authentication time or included in the frame.
  • the starting time is recorded in a 24-hour system, including hour, minute and second information.
  • An optical label anti-counterfeiting system based on a one-way hash function comprising
  • the optical label controller is configured to perform an external broadcast authentication period and a starting moment, and is configured to obtain an authentication moment according to the authentication period and the starting moment, and obtain an output signal to control an output display of the optical label according to the authentication moment in a one-way hash function;
  • the mobile collection device is configured to check the authentication period and the start time of the public broadcast, collect the optical label signal, record the acquisition time, and transmit the recorded current authentication time and the collected current output signal to the authentication server.
  • the authentication server is used for the secret storage one-way hash function; the current verification signal is obtained according to the current authentication time by the one-way hash function, and the current output signal is compared with the current verification signal, and if the same, the optical label is sent to the mobile collection device. The result of the authentication, otherwise the optical tag is illegally transmitted to the mobile collection device.
  • FIG. 1A and 1B illustrate an optical label suitable for use in the anti-counterfeiting method of the present invention
  • FIG. 2 illustrates an optical tag anti-counterfeiting system in accordance with one embodiment of the present invention
  • FIG. 3 shows a flow chart of an anti-counterfeiting method in accordance with one embodiment of the present invention
  • FIG. 4 shows a flow chart of an anti-counterfeiting method in accordance with another embodiment of the present invention.
  • Optical tags transmit information by emitting different lights, and the information conveyed by the optical tags can change over time.
  • 1A shows an optical tag suitable for the anti-counterfeiting method of the present invention, which includes a 9 ⁇ 9 array composed of light-emitting units, which array can be divided into a signal unit as a data bit, a dynamic blinking positioning mark 2
  • the static positioning identifier 3 and the blank bit 4 wherein the dynamic blinking positioning mark 2 is a larger square in the middle of the optical label (as a 3 ⁇ 3 array composed of light emitting units), and the static positioning mark 3 is located at a corner of the light label.
  • the three larger return boxes also a 3 x 3 array of light-emitting units
  • together with the three static position markers 3 form a set of position identifiers.
  • Each of the signal units 1 and each of the blank bits 4 may correspond to one light emitting unit.
  • one signal unit may correspond to a plurality of light emitting units, for example, one signal unit itself may be comprised of an array of light emitting units.
  • a blank bit may also correspond to a plurality of light emitting units.
  • a light source may be included in the light unit, which may use various light emitting techniques, such as the use of LED lights. The number of illumination sources in each illumination unit may be one or more according to different usage requirements.
  • the optical tag may further include a controller, and a battery or a power source or the like, wherein the controller is for controlling a light wave frequency and a blinking manner of the light source in the light emitting unit, and the battery or the power source supplies energy to the controller and the light source.
  • the controller can independently control each of the light emitting units, and can also perform unified control on some of the light emitting units. For example, the controller can uniformly control the light emitting unit of the dynamic blinking positioning mark 2, and the light emitting unit of the static positioning mark 3 or The part is uniformly controlled, and the lighting unit of the blank position 4 is uniformly controlled.
  • the dynamic flickering location indicator 2 can flash at a certain frequency, which can be a change in the properties of the light.
  • This attribute refers to any property that the optical imaging device can recognize in the present application, for example, it may be an attribute perceived by the human eye such as intensity, color, wavelength of light, Other attributes that are not perceptible to the human eye, such as intensity, color or wavelength change of electromagnetic wavelengths outside the visible range of the human eye, or any combination of the above attributes.
  • a change in the properties of light can be a single property change, or a combination of two or more properties can change. When the intensity of the light is selected as an attribute, the light source can be simply turned on or off.
  • FIG. 1B shows the optical label when the attribute of the light emitted by the dynamic blinking position indicator 2 changes.
  • the definition of the above attributes applies equally to the static positioning identifier 3, the blank bit 4, and the attribute of the light emitted by the signal unit 1.
  • the dynamic blinking positioning mark 2, the static positioning mark 3, the blank bit 4, and the signal unit 1 can work with different attributes.
  • the dynamic blinking positioning mark 2 can realize the flickering effect by using different color conversions.
  • Signal unit 1 can use different light intensities to represent different information.
  • the multi-frame image can be continuously acquired by the optical imaging device, and the dynamic flickering positioning mark 2 can be quickly and accurately recognized and the position determined by performing image difference on the acquired multi-frame image. .
  • the exact location of the static location indicator 3 can be further identified in its vicinity.
  • the static positioning indicator 3 presents a fixed optical mode during operation.
  • the static positioning marker 3 in one embodiment is presented as a return box, and pixels of different attributes in the horizontal and vertical directions at its horizontal centerline and vertical centerline (black and white black pixels in this embodiment) The ratio can be set to 1:1:1.
  • four blank bits composed of white pixels may be provided in the optical tag as shown in FIG. 1A, which ensure whether the horizontal or vertical direction is used. Scanning, static positioning marker 3 black and white black pixel ratio obeys 1:1:1.
  • the positions of the respective signal units 1 in the optical label can be determined by means of the positions of the dynamic blinking positioning indicator 2 and the static positioning indicator 3 for data identification or Read.
  • the signal unit 1 is a small square light-emitting unit other than the dynamic blinking positioning mark 2, the static positioning mark 3, and the blank bit 4 in the optical tag, or may be a part of these light-emitting units.
  • the imaging of the optical tag may be distorted or deformed to some extent. Can be based on optical imaging The perspective principle is used to consider these distortions or distortions during the identification of optical tags.
  • each signal unit 1 may have a specific property, which, as described above, may be any property that the optical imaging device can perceive, including attributes that are not perceptible to the human eye.
  • "0" or "1" of binary digital information can be represented by controlling the turning on and off of the lighting unit corresponding to each signal unit 1, so that all signal units 1 in one frame of the optical label Can be used to represent a sequence of binary digital information.
  • each signal unit 1 can be used not only to represent a binary number, but also to represent data in ternary or larger hexadecimal.
  • the intensity of light emitted by the light emitting unit can be set to be selectable from three or more levels, or by setting the color of light emitted by the light emitting unit to be selectable from three or more colors
  • the selection is made such that each signal unit 1 represents ternary or larger data by using a combination of intensity and color, and other means deemed feasible by those skilled in the art.
  • the signal unit 1 in the optical tag can change the attribute of the light emitted by the signal unit 1 in the optical tag at a certain frequency (which may be the same as the blinking frequency of the dynamic flickering positioning mark 2), therefore, the light Tags can represent different data information at different times, for example, different sequences of binary digital information.
  • each frame of image can be used to represent a sequence of information.
  • the optical label is schematically set as a 9 ⁇ 9 array composed of light emitting units
  • the dynamic blinking positioning mark 2 therein is set as a larger square in the middle of the light label (3 ⁇ 3 composed of the light emitting unit) Array)
  • the static positioning identifier 3 therein to three larger singular boxes of the corners of the optical label (again, a 3 ⁇ 3 array of light-emitting units)
  • the shape, size, and the like of the optical tag, the size, shape, position, number, and the like of the dynamic flickering positioning mark 2 and the static positioning mark 3 are not limited to the above embodiments, but may be changed according to actual needs.
  • the optical label may not be a 9 ⁇ 9 array, and may not even be a square; the dynamic blinking positioning identifier 2 may not only have one, may not be located in the middle of the optical label, may not be a 3 ⁇ 3 array, or may not be a square; static The location identifiers 3 may not be three, may not be located at the corners of the optical tags, may not be 3 ⁇ 3 arrays, or may not be squares. In one embodiment, blank bits can be omitted in the optical tag.
  • Optical labels can be made using optical imaging equipment or image acquisition equipment that are common in the art.
  • Imaging The optical imaging device or image acquisition device may include an image acquisition component, a processor, a memory, and the like.
  • the optical imaging device or image acquisition device may be, for example, a smart mobile terminal having a photographing function, including a mobile phone, a tablet, smart glasses, etc., which may include an image capture device and an image processing module.
  • the user visually finds the optical tag within a range of distance from the optical tag, and scans the optical tag by performing the information capture and interpretation process by causing the imaging sensor of the mobile terminal to face the optical tag.
  • the video acquisition frequency of the mobile terminal can be set to be greater than or equal to twice the blinking frequency of the optical tag.
  • the process of identifying and decoding is finally completed.
  • the serial number, the check digit, the time stamp, and the like may be included in the information transmitted by the optical tag.
  • a start frame or an end frame may be given in a plurality of image frames as needed, or both, for indicating a start or end position of a complete period of the plurality of image frames, the start frame or the end frame may be It is set to display a particular combination of data, for example: all 0s or all 1s, or any special combination that will not be the same as the information that may actually be displayed.
  • the optical tag 30 typically includes a controller and a light source for controlling the light source to emit different light to convey different information.
  • the user 10 can perform image acquisition on the optical tag 30 using the image capture device 20 (eg, a cell phone) and authenticate the validity of the optical tag 30 by the authentication server 40.
  • the image capture device 20 typically has a communication function.
  • Figure 3 illustrates a flow chart of an anti-counterfeiting method in accordance with one embodiment of the present invention.
  • a one-way hash function is used for illustration, but those skilled in the art can understand that other functions or the like are also feasible, and are not limited to the one-way hash function.
  • the anti-counterfeiting method includes the following steps.
  • the controller of the optical tag 30 starts with t 0 and inputs the current authentication time (step 301) into the function Hash() every time an integer number of time periods T to obtain an output value (step 302).
  • the Hash() can be a pre-selected one-way hash function with initial parameters set.
  • the Hash() and initial parameter settings can be set to be kept secret to the public.
  • a time period T is set in advance as the authentication period and the starting point t 0 is set in advance, T>0, t 0 can be any time of the day, and the recording format of t 0 can be hh:mm:ss, instant: minute :second.
  • t 0 + nT (n is a natural number) can be referred to as an authentication time. Therefore, the possible authentication moments can be preset.
  • the triplet ⁇ Hash(), T, t 0 ⁇ can be obtained.
  • the triplet can be sent to the controller of the optical tag 30, which can be sent to the authentication server 40. In one embodiment, the triplet can also be sent to the authentication server 40. Any one of the triplets ⁇ Hash(), T, t 0 ⁇ can be artificially set and notified to the controller of the optical tag 30 and the authentication server 40. In one embodiment, T and t 0 may be published for public discovery so that they are known by the user through a public information query. One way of pre-setting possible authentication moments is described above, but those skilled in the art will appreciate that any other feasible manner may be employed. In one embodiment, the controller of the optical tag 30 can calculate the output value to be displayed at the current authentication time in advance of the current authentication time.
  • the output value obtained in step 302 can be displayed as information transmitted by the optical tag 30 or as part of the information, and displayed at the current authentication time (step 303).
  • the information displayed by the optical tag 30 at each authentication time (t 0 + nT) may be referred to as verification information, and may include a corresponding identification bit to indicate that it is verification information, and may also include a corresponding authentication time.
  • the controller of the optical tag 30 can input the respective authentication time (t 0 +nT) into the Hash() in advance to calculate the output value to be displayed at each authentication time in advance, and in the corresponding authentication.
  • the output value is displayed as part of the information transmitted by the optical tag 30 or a part of the information.
  • the output value may not be calculated by the optical tag 30 or its controller, but may be from other devices capable of communicating with the optical tag 30 (eg, for providing the optical tag 30 with information to be displayed).
  • the server receives the output value or receives the verification information to be displayed.
  • the user 10 can collect the information conveyed by the optical tag 30 at the current time t i by the image acquisition device 20. If the user 10 has doubts about the authenticity of the optical tag 30, the user 10 can use the public information T and t 0 to use any one of the authentication times after the current time t i as the current authentication time t, and then the image collecting device 20 collects The verification information displayed by the optical tag 30 at the current authentication time t, and the first verification value X is generated based on the verification information (step 304). In one embodiment, the first authentication instant after the current time t i may be taken as the current authentication instant t. The image capture device 20 can record the current authentication instant t (step 305). In one embodiment, the user may not need to know T and t 0 , but continuously perform image acquisition on the optical tag 30 until the verification information is collected.
  • the image collection device 20 transmits the current authentication time t and the first verification value X to the authentication server 40 (step 306).
  • the image collection device 20 may not record the current authentication time t, or may not send the current authentication time t itself to the authentication server 40, but may transmit other information that can be used for identification.
  • the information of the current authentication time t may be transmitted.
  • the image collection device 20 may transmit the generation time or the transmission time of the first verification value X together when transmitting the first verification value X to the authentication server 40, so that the authentication server 40 may be based on the generation time of the first verification value X or The transmission time is used to identify the previous authentication time before it as the current authentication time t.
  • the image capture device 20 may also not send any information that can be used to identify the current authentication time t to the authentication server 40, but rather is inferred by the authentication server 40 based on the time at which the first verification value X was received. Current authentication time t.
  • the authentication server 40 may select a number of authentication moments near the time when the first verification value X is received. For example, the authentication server 40 may select two or more authentication moments before the time when the first verification value X is received and one or several authentication moments thereafter.
  • the authentication server 40 may select only two or more authentication moments before the time when the first verification value X is received. These selected authentication instants can be sequentially used as the current authentication instant t to perform the steps described below.
  • the optical tag 30 is considered to be a legal optical tag as long as the verification result of the current candidate authentication time t indicates that the optical tag 30 is a legal optical tag.
  • the authentication server 40 inputs the current authentication time t to the same one-way hash function Hash() as the image capturing device 20 (step 307), obtains an output value, and uses the output value as the second verification value Y (step 308). In one embodiment, in the case where the triplet is transmitted to the authentication server 40, the authentication server 40 may also calculate an output value corresponding to each authentication time in advance.
  • the optical label 30 By comparing the first verification value X with the second verification value Y, it can be determined whether the two match (step 309), and if the two match, the optical label 30 can be determined to be a legal optical label (real optical label) (step 310). Otherwise, it is judged that the optical tag 30 is an illegal optical tag (a fake optical tag) (step 311).
  • the first verification value X and the second verification value Y are mutually matched to mean that they are the same. In other embodiments, the first verification value X and the second verification value Y do not match each other (eg, the controller of the optical tag 30 passes the output value of the function Hash() as the optical tag 30. In the case of a part of the information, there is a certain predetermined relationship or association between the two.
  • the functions employed by the authentication server 40 and the optical tag 30 may not be the same function, but two different functions that are associated with each other.
  • the authentication server 40 and the optical tag 30 can change their functions after a period of time (for example, on a regular basis). the way).
  • the authentication server 40 can transmit the determination result to the image collection device 20.
  • the anti-counterfeiting method may include the following steps.
  • the controller of the optical tag 30 obtains the current authentication instant (step 401) and inputs it into the encryption algorithm to obtain an output value (step 402).
  • the current authentication time is selected from a predetermined series of possible authentication moments, and the optical tag 30 knows the possible authentication time.
  • the possible authentication moments may be set in the manner described above, or any other feasible manner may be employed.
  • step 402 in addition to using the current authentication instant as an input to the encryption algorithm, other inputs may be further added, such as an identification number for uniquely identifying the optical tag 30.
  • the output value obtained at step 302 can be displayed as information transmitted by the optical tag 30 or as part of the information, and displayed at the current authentication time (step 403).
  • the information displayed by the optical tag 30 at each authentication time may be referred to as verification information, and may include a corresponding identification bit to indicate that it is verification information.
  • the controller of the optical tag 30 may input each authentication time into the encryption algorithm in advance to calculate an output value to be displayed at each authentication time in advance, and use the output value as the light at the corresponding authentication time.
  • the information conveyed by the tag 30 or a portion of the information is displayed.
  • the output value may not be calculated by the optical tag 30 or its controller, but may be from other devices capable of communicating with the optical tag 30 (eg, for providing the optical tag 30 with information to be displayed).
  • the server receives the output value or receives the verification information to be displayed.
  • the user 10 can collect the information conveyed by the optical tag 30 at the current time t i by the image acquisition device 20. If the user 10 has doubts about the authenticity of the optical tag 30, the user 10 can use the image capture device 20 to collect the photo tag 30 displayed at the current authentication time t at any of the authentication instants (the authentication instant as the current authentication instant t). The information is verified and a first verification value X is generated based on the verification information (step 404).
  • the user may be aware of the possible authentication moments and may use the first authentication moment or any of the authentication moments after the current time t i as the current authentication instant t. In one embodiment, the user may not have to know the possible authentication moments, but continuously perform image acquisition on the optical tag 30 until the verification information is collected.
  • the image collection device 20 transmits the first verification value X to the authentication server 40 (step 405).
  • the authentication server 40 performs a decryption algorithm on the first verification value X to obtain a decryption result (step 406).
  • the authentication server 40 analyzes the decryption result to judge the authenticity of the optical tag 30 (step 407). For example, if the time information obtained by the authentication server 40 from the decrypted result satisfies a predetermined criterion, it can be judged that the optical tag 30 is authentic.
  • the predetermined criterion may be differently set according to an actual situation, a security level, etc., for example, the predetermined criterion may be that a difference between a time obtained from the decryption result and a current time of the authentication server 40 should be less than a predetermined threshold; or, from decryption The difference between the time instant obtained in the result and the current time of the authentication server 40 should be less than a predetermined threshold, and the time should belong to a possible authentication time (in the case where the authentication server 40 is also aware of the possible authentication time); or, the decryption result The difference between the time instant obtained and the current time of the authentication server 40 should be less than a predetermined threshold, and before the current time (in the case where there is no significant time out of synchronization between the authentication server 40 and the optical tag 30); If the authentication server 40 can obtain the time information from the decrypted result, but the time does not satisfy the predetermined criterion, the authentication server 40 can assume that, for example, a replay attack has occurred,
  • the authentication server 40 can know which optical tag 30 is being spoofed. If the authentication server 40 cannot obtain any time information from the decrypted result, it can directly judge that the optical tag 30 is spoofed. To increase the overall security of the system, the authentication server 40 and the optical tag 30 can change their decryption and encryption functions (e.g., in a periodic manner) after a period of time.
  • the authentication server 40 can transmit the determination result to the image collection device 20.
  • the clock of the optical tag 30 in the anti-counterfeiting system of the present invention can be calibrated using various possible means, for example, manually calibrating the clock of the optical tag 30 over a period of time, or the light
  • the tag 30 can receive standard time so that automatic calibration can be performed.
  • time information may be included in some information transmitted by the optical tag 30, and the image collection device of the user may send the time information together with the identification information of the optical tag 30 to the authentication server 40, thereby authenticating the server.
  • 40 may be aware of the error between the clock of the optical tag 30 and the clock or standard clock of the authentication server 40, and record the error value to correct the out-of-synchronization between the clock of the authentication server 40 and the clock of the optical tag 30, thereby achieving the purpose of synchronizing the clock.
  • the authentication server 40 receives the authentication request of the user (including the identification information of the optical tag 30)
  • the authentication server 40 combines the error attribute of the clock of the optical tag 30 according to the time difference between the last authentication server 40 and the optical tag 30 correction time.
  • the clock error of the optical tag 30 is 1 second every 24 hours
  • the clock error of the optical tag 30 and the authentication server 40 at this time can be calculated.
  • the authentication server 40 knows the error of the clock of the optical tag 30 at any time, for the anti-counterfeiting scheme shown in FIG. 3, based on the error, and optionally considering the communication delay, the time period T, etc.
  • the authentication server 40 can be adapted. Select one or more possible authentication moments. For example, in the case where the authentication server 40 described above selects several authentication moments near the time when the first verification value X is received, the authentication server 40 can adjust the time at which the first verification value X is received based on the error.
  • the authentication server 40 can appropriately set the predetermined standard that it should satisfy for the time obtained from the decrypted result. .
  • the predetermined criterion is that the difference between the time obtained from the decrypted result and the current time of the authentication server 40 should be less than a predetermined threshold (that is, the time obtained from the decrypted result should fall within a certain time interval)
  • authentication The server 40 can translate the time interval based on the error to achieve a more accurate determination.
  • the anti-counterfeiting method of the present invention can be automated when the user performs continuous image acquisition of the optical tag 30 using the image capture device 20, and the user does not even realize that it is verifying the optical tag 30. When the verification is successful, no prompt may be given to the user, and when the verification fails, the user may be prompted that the optical tag 30 is spoofed.
  • the anti-counterfeiting method of the present invention can be applied not only to the optical tag shown in FIG. 1A, but also to other optical tags (or light sources) that can be used to transmit information, as long as the information transmitted by the optical tag can be changed over time.
  • the anti-counterfeiting method of the present invention can be applied to a light source that transmits information through different stripes based on a rolling shutter effect of CMOS (for example, the device described in Chinese Patent Publication No. CN104168060A).
  • the anti-counterfeiting method of the present invention can also be applied to an array of optical tags (or light sources) as long as the information transmitted by the array can be changed over time.
  • the verification information displayed by the optical tag 30 at any authentication time (t 0 +nT) in the above anti-counterfeiting method may be completely presented in one display of the optical tag 30 (that is, may be included in the image acquisition device 20.
  • the image of one frame of the optical tag 30 can also be presented in multiple displays of the optical tag 30.
  • the amount of information that is passed in each display may not be sufficient to cover the entire output value of the function Hash(), in which case multiple times can be initiated at the time of authentication.
  • the output value is successively presented in the display (ie, the verification information is passed through successive multiple displays of the optical tag).
  • the user can continuously collect the multi-frame image of the optical tag starting from the authentication time by the image capturing device 20, and obtain corresponding verification information based on the multi-frame image.
  • corresponding identification bits may also be included in the multi-frame image, or some frames may be selected as the identification frame. Therefore, the "information displayed at a certain time" mentioned throughout the present application does not only refer to information that is displayed at that moment, but may also be a series of information displayed from that moment.
  • a specific application example of the anti-counterfeiting method of the present invention is as follows:
  • the mall M publishes the information of the merchandise through the optical label L.
  • Mall M selects MD5 algorithm as a one-way function, the selected time period is 5 seconds, the starting time is 00:00:00, and the triplet ⁇ MD5; 5,00:00:00 ⁇ is obtained, and the triplet is sent to
  • the optical label L transmits the MD5 algorithm to the authentication server at the same time; at the same time, (5,00:00:00) is published to the public; the optical label L takes the current time as input every 5 seconds starting from 00:00:00, and input In the MD5 algorithm, an output value is obtained; the optical label L displays the MD5 output value as a light label for one frame at a corresponding time; at 12:30:33, the customer G wants to purchase the product through the optical label L, but the light is The authenticity of the label L is doubtful; the customer G collects the closest distance to the 12:30:33 from his personal mobile phone H according to the public information (5,00:00:00), and satisfies the starting time 00:00
  • the attacker does not know the one-way function used by M and its initial parameters, so it is impossible to forge the authentication frame; and the authentication frame changes with time, so it can resist the attacker's replay attack.

Abstract

Provided are an anti-counterfeiting method and system for an optical communication device. The anti-counterfeiting method for the optical communication device comprises: receiving a first verification value from an image capturing apparatus of a user, wherein the image capturing apparatus obtains information of the optical communication device displayed at a certain time as a function of the time by capturing an image of the optical communication device, and the first verification value is obtained on the basis of the information; inputting the time to a first function to obtain a second verification value; and verifying the authenticity of the optical communication device according to the first verification value and the second verification value, wherein the time is one of predetermined possible authentication times.

Description

光通信装置防伪方法及系统Optical communication device anti-counterfeiting method and system 技术领域Technical field
本发明属于光信息技术领域,更具体地涉及一种光通信装置防伪方法及系统。光通信装置能够通过发出不同的光来传输不同的信息,其在本文中也可被称为“光标签”,两者在整个本申请中可以互换使用。The invention belongs to the field of optical information technology, and more particularly to an anti-counterfeiting method and system for an optical communication device. Optical communication devices are capable of transmitting different information by emitting different light, which may also be referred to herein as "optical tags," which are used interchangeably throughout this application.
背景技术Background technique
光标签通过发出不同的光来传递信息,其具有远距、可见光条件要求宽松、指向性强、可定位的优势,并且光标签所传递的信息可以随时间迅速变化,从而可以提供大的信息容量。因此,相比于传统的二维码,光标签具有更强的信息交互能力,从而可以为用户和商家提供巨大的便利性。由于光标签的注册开放性,任何人都可以通过购买或申请光标签发布个人服务或信息,这就造成了不法分子伪造光标签的可能。为了防止光标签的非法伪造,就需要提供光标签的防伪方法。Optical tags transmit information by emitting different lights, which have the advantages of long distance, visible light conditions, strong directivity, and positionability, and the information transmitted by the optical tags can change rapidly with time, thereby providing a large information capacity. . Therefore, compared with the traditional two-dimensional code, the optical tag has stronger information interaction capability, which can provide great convenience for users and businesses. Due to the openness of the registration of optical labels, anyone can purchase personal services or information by purchasing or applying for optical labels, which creates the possibility of criminals falsifying optical labels. In order to prevent illegal forgery of optical tags, it is necessary to provide an anti-counterfeiting method for optical tags.
发明内容Summary of the invention
针对现有技术中存在的问题,本发明提供一种光标签防伪方法及系统,其过程简单合理,使用方便,防伪性能好。In view of the problems existing in the prior art, the present invention provides an optical tag anti-counterfeiting method and system, which is simple and reasonable in process, convenient in use, and good in anti-counterfeiting performance.
本发明的一个方面涉及一种用于光通信装置的防伪方法,包括:从用户的图像采集设备接收第一验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的作为该时刻的函数的信息,并且其中,所述第一验证值基于所述信息获得;将所述时刻输入到第一函数中以获得第二验证值;以及根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。An aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: receiving a first verification value from an image acquisition device of a user, wherein the image acquisition device obtains an image acquisition by the optical communication device The information displayed by the optical communication device as a function of the time at a certain time, and wherein the first verification value is obtained based on the information; inputting the time to the first function to obtain a second verification value And determining the authenticity of the optical communication device according to the first verification value and the second verification value, wherein the time is one of a preset possible authentication time.
本发明的另一个方面涉及一种用于光通信装置的防伪方法,包括:从用户的图像采集设备接收验证值,其中,所述图像采集设备通过对所述光通 信装置进行图像采集来获得所述光通信装置在某一时刻显示的对该时刻进行加密后得到的信息,并且其中,所述验证值基于所述信息获得;对所述验证值执行解密算法以获得解密结果;以及分析所述解密结果以判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: receiving a verification value from a user's image acquisition device, wherein the image acquisition device passes the light transmission The information device performs image acquisition to obtain information obtained by encrypting the time displayed by the optical communication device at a certain time, and wherein the verification value is obtained based on the information; performing a decryption algorithm on the verification value to Obtaining a decryption result; and analyzing the decrypted result to determine authenticity of the optical communication device, wherein the time is one of a preset possible authentication time.
本发明的另一个方面涉及一种服务器,其被配置为用于执行上述防伪方法。Another aspect of the invention relates to a server configured to perform the anti-counterfeiting method described above.
本发明的另一个方面涉及一种用于光通信装置的防伪方法,包括:使用图像采集设备对所述光通信装置进行图像采集,以获得所述光通信装置在某一时刻显示的依赖于该时刻的信息,其中,所述时刻是预先设定的可能的认证时刻之一;基于所述信息获得验证值;将所述验证值发送到服务器,以进行验证;从所述服务器接收验证结果。Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: performing image acquisition on the optical communication device using an image acquisition device to obtain that the optical communication device is displayed at a certain time depending on the Time information, wherein the time is one of a preset possible authentication time; obtaining a verification value based on the information; transmitting the verification value to a server for verification; and receiving a verification result from the server.
本发明的另一个方面涉及一种图像采集设备,其包括图像采集元件、处理器和存储器,所述存储器中存储有计算机程序,所述计算机程序在被所述处理器执行时能够用于实现上述用于光通信装置的防伪方法。Another aspect of the invention relates to an image acquisition device comprising an image acquisition component, a processor and a memory, wherein the memory stores a computer program that, when executed by the processor, can be used to implement the above An anti-counterfeiting method for an optical communication device.
本发明的另一个方面涉及一种光通信装置,包括:光源;以及控制器,其被配置为:基于某一时刻获得输出值;基于所述输出值获得所述光通信装置在所述时刻要显示的信息;以及控制所述光源在所述时刻显示所述信息,其中,所述时刻是预先设定的可能的认证时刻之一。Another aspect of the invention relates to an optical communication apparatus comprising: a light source; and a controller configured to: obtain an output value based on a certain time; obtain the optical communication device based on the output value at the moment Displaying information; and controlling the light source to display the information at the time, wherein the time instant is one of a predetermined possible authentication time.
本发明的另一个方面涉及一种用于光通信装置的防伪系统,包括:光通信装置,其被配置为在某一时刻显示作为该时刻的函数的信息;服务器,其被配置为:从用户的图像采集设备接收第一验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的作为该时刻的函数的信息,并且其中,所述第一验证值基于所述信息获得;将所述时刻输入到第一函数中以获得第二验证值;以及根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。Another aspect of the invention relates to an anti-counterfeiting system for an optical communication device, comprising: an optical communication device configured to display information as a function of the time at a certain time; a server configured to: from the user The image acquisition device receives the first verification value, wherein the image acquisition device obtains information displayed by the optical communication device as a function of the time at a certain moment by performing image acquisition on the optical communication device, and wherein The first verification value is obtained based on the information; inputting the time to a first function to obtain a second verification value; and determining the light according to the first verification value and the second verification value The authenticity of the communication device, wherein the time instant is one of a possible authentication time set in advance.
本发明的另一个方面涉及一种用于光通信装置的防伪方法,包括:光通信装置在某一时刻显示作为该时刻的函数的信息;使用图像采集设备对所述光通信装置进行图像采集,以获得所述信息,并基于所述信息获得第一验证值;服务器从所述图像采集设备接收所述第一验证值;服务器将所述时刻 输入到第一函数中以获得第二验证值;以及服务器根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: an optical communication device displaying information as a function of the time at a certain time; and performing image acquisition on the optical communication device using an image acquisition device, Obtaining the information, and obtaining a first verification value based on the information; the server receiving the first verification value from the image collection device; the server will Inputting into the first function to obtain a second verification value; and the server determining the authenticity of the optical communication device according to the first verification value and the second verification value, wherein the time is preset One of the possible certification moments.
本发明的另一个方面涉及一种用于光通信装置的防伪系统,包括:Another aspect of the invention relates to an anti-counterfeiting system for an optical communication device, comprising:
光通信装置,其被配置为在某一时刻显示对该时刻进行加密后得到的信息;服务器,其被配置为:从用户的图像采集设备接收验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的对该时刻进行加密后得到的信息,并且其中,所述验证值基于所述信息获得;对所述验证值执行解密算法以获得解密结果;以及分析所述解密结果以判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。An optical communication device configured to display information obtained by encrypting the time at a certain time; a server configured to: receive a verification value from an image collection device of the user, wherein the image acquisition device passes the The optical communication device performs image acquisition to obtain information obtained by encrypting the time displayed by the optical communication device at a certain time, and wherein the verification value is obtained based on the information; performing decryption on the verification value An algorithm obtains a decryption result; and analyzes the decryption result to determine authenticity of the optical communication device, wherein the time instant is one of a preset possible authentication time.
本发明的另一个方面涉及一种用于光通信装置的防伪方法,包括:光通信装置在某一时刻显示对该时刻进行加密后得到的信息;使用图像采集设备对所述光通信装置进行图像采集,以获得所述信息,并基于所述信息获得验证值;服务器从所述图像采集设备接收所述验证值;对所述验证值执行解密算法以获得解密结果;以及分析所述解密结果以判断所述光通信装置的真伪,其中,所述时刻是预先设定的可能的认证时刻之一。Another aspect of the invention relates to an anti-counterfeiting method for an optical communication device, comprising: displaying, at a certain time, an information obtained by encrypting the time at a certain time; and performing an image on the optical communication device using an image capturing device Acquiring to obtain the information, and obtaining a verification value based on the information; the server receiving the verification value from the image collection device; performing a decryption algorithm on the verification value to obtain a decryption result; and analyzing the decryption result to Determining the authenticity of the optical communication device, wherein the time is one of a preset possible authentication time.
本发明还提供一种基于单向散列函数的光标签防伪方法,其包括如下步骤,The invention also provides an optical tag anti-counterfeiting method based on a one-way hash function, which comprises the following steps:
步骤一,在认证服务器中,建立用于光标签防伪的单向散列函数,设置其初始参数,并进行保密处理;Step 1: In the authentication server, establish a one-way hash function for optical label anti-counterfeiting, set its initial parameters, and perform confidential processing;
步骤二,设定认证周期和起点时刻,并连同单向散列函数一同存储到光标签控制器中;光标签控制器对外广播认证周期和起点时刻;Step 2: setting an authentication period and a starting time, and storing the same in the optical label controller together with the one-way hash function; the optical label controller externally broadcasts the authentication period and the starting time;
从起点时刻开始,每经过一个认证周期得到一个认证时刻,每个认证时刻由单向散列函数得到一个输出信号,光标签控制器控制光标签将输出信号在对应的认证时刻进行输出显示;Starting from the starting point, each authentication period is obtained by an authentication time, and each authentication time is obtained by a one-way hash function, and the optical tag controller controls the optical tag to output and display the output signal at the corresponding authentication time;
步骤三,用户通过移动采集设备在采集光标签时进行防伪验证;Step 3: The user performs anti-counterfeiting verification when collecting the optical label by using the mobile collecting device;
首先查阅公开广播的认证周期和起点时刻;First check the certification cycle and start time of the public broadcast;
然后根据认证周期和起点时刻,将采集光标签的当前时刻之后的第一个认证时刻的作为当前认证时刻,并采集当前认证时刻对应的当前输出信 号;Then, according to the authentication period and the starting time, the first authentication time after the current time of collecting the optical label is taken as the current authentication time, and the current output letter corresponding to the current authentication time is collected. number;
最后将当前认证时刻和当前输出信号发送到认证服务器中进行验证;Finally, the current authentication moment and the current output signal are sent to the authentication server for verification;
步骤四,认证服务器将接收到的当前认证时刻输入到单向散列函数中得到当前验证信号;如果当前验证信号和接收到的当前输出信号相同,则用户采集的光标签合法,否则用户采集的光标签非法;Step 4: The authentication server inputs the current authentication time to the one-way hash function to obtain the current verification signal. If the current verification signal is the same as the current output signal, the optical label collected by the user is legal, otherwise the user collects the Illegal light label;
步骤五,认证服务器将光标签合法或非法的鉴别结果发送到移动采集设备上,完成基于单向散列函数的光标签防伪操作。Step 5: The authentication server sends the optical tag legal or illegal authentication result to the mobile collection device, and completes the optical tag anti-counterfeiting operation based on the one-way hash function.
优选的,步骤二中,所述的输出信号作为光标签在对应的认证时刻输出的一帧或包含在该帧中。Preferably, in step 2, the output signal is used as a frame outputted by the optical tag at the corresponding authentication time or included in the frame.
优选的,步骤二中,所述的起点时刻采用24小时制进行记录,包括时、分和秒信息。Preferably, in step 2, the starting time is recorded in a 24-hour system, including hour, minute and second information.
一种基于单向散列函数的光标签防伪系统,包括,An optical label anti-counterfeiting system based on a one-way hash function, comprising
光标签控制器,用于对外广播认证周期和起点时刻,用于根据认证周期和起点时刻得到认证时刻,并根据认证时刻在单向散列函数得到输出信号控制光标签的输出显示;The optical label controller is configured to perform an external broadcast authentication period and a starting moment, and is configured to obtain an authentication moment according to the authentication period and the starting moment, and obtain an output signal to control an output display of the optical label according to the authentication moment in a one-way hash function;
移动采集设备,用于查阅公开广播的认证周期和起点时刻,用于采集光标签信号并记录采集时间,并将记录的当前认证时刻及采集的当前输出信号输送到认证服务器中,The mobile collection device is configured to check the authentication period and the start time of the public broadcast, collect the optical label signal, record the acquisition time, and transmit the recorded current authentication time and the collected current output signal to the authentication server.
认证服务器,用于保密存储单向散列函数;通过单向散列函数根据当前认证时刻得到当前验证信号,并将当前输出信号与当前验证信号对比,如果相同则向移动采集设备发送光标签合法的鉴别结果,否则向移动采集设备发送光标签非法的鉴别结果。The authentication server is used for the secret storage one-way hash function; the current verification signal is obtained according to the current authentication time by the one-way hash function, and the current output signal is compared with the current verification signal, and if the same, the optical label is sent to the mobile collection device. The result of the authentication, otherwise the optical tag is illegally transmitted to the mobile collection device.
附图说明DRAWINGS
以下参照附图对本发明的实施例作进一步说明,其中:The embodiments of the present invention are further described below with reference to the accompanying drawings, in which:
图1A和图1B示出了适用于本发明的防伪方法的一种光标签;1A and 1B illustrate an optical label suitable for use in the anti-counterfeiting method of the present invention;
图2示出了根据本发明的一个实施例的光标签防伪系统;Figure 2 illustrates an optical tag anti-counterfeiting system in accordance with one embodiment of the present invention;
图3示出了根据本发明的一个实施例的防伪方法流程图;3 shows a flow chart of an anti-counterfeiting method in accordance with one embodiment of the present invention;
图4示出了根据本发明的另一个实施例的防伪方法流程图。 4 shows a flow chart of an anti-counterfeiting method in accordance with another embodiment of the present invention.
具体实施方式detailed description
为了使本发明的目的、技术方案及优点更加清楚明白,以下结合附图通过具体实施例对本发明进行进一步详细说明,其是对本发明的解释而不是限定。The present invention will be further described in detail with reference to the accompanying drawings, in which,
光标签通过发出不同的光来传递信息,并且光标签所传递的信息可以随时间而发生变化。图1A示出了适用于本发明的防伪方法的一种光标签,其包括由发光单元构成的9×9阵列,该阵列可以被划分为作为数据位的信号单元1、动态闪烁定位标识2、静态定位标识3、以及空白位4,其中动态闪烁定位标识2为光标签中间的较大的正方形(为由发光单元构成的3×3的阵列),静态定位标识3为位于光标签的角落的三个较大的回字框(同样为由发光单元构成的3×3的阵列),动态闪烁定位标识2与三个静态定位标识3一起构成一组定位标识符。每一个信号单元1和每一个空白位4可以对应于一个发光单元。Optical tags transmit information by emitting different lights, and the information conveyed by the optical tags can change over time. 1A shows an optical tag suitable for the anti-counterfeiting method of the present invention, which includes a 9×9 array composed of light-emitting units, which array can be divided into a signal unit as a data bit, a dynamic blinking positioning mark 2 The static positioning identifier 3 and the blank bit 4, wherein the dynamic blinking positioning mark 2 is a larger square in the middle of the optical label (as a 3×3 array composed of light emitting units), and the static positioning mark 3 is located at a corner of the light label. The three larger return boxes (also a 3 x 3 array of light-emitting units), together with the three static position markers 3, form a set of position identifiers. Each of the signal units 1 and each of the blank bits 4 may correspond to one light emitting unit.
另外,需要说明的是,虽然图1A所示的实施例中的光标签采用了同样的发光单元构成的阵列,但是在一些实施例中,也可以使用不同大小的发光单元(例如,针对较大的动态闪烁定位标识设计一个较大的发光单元,而针对较小的信号单元采用较小的发光单元)。在一些实施例中,一个信号单元可以对应于多个发光单元,例如,一个信号单元本身可以由发光单元的阵列构成。类似地,一个空白位也可以对应于多个发光单元。发光单元中可以包括发光源,该发光源可以使用各种发光技术,例如使用LED灯。根据不同的使用需求,每个发光单元中的发光源的数量可以为一个或多个。In addition, it should be noted that although the optical tags in the embodiment shown in FIG. 1A employ an array of the same light-emitting units, in some embodiments, different sizes of light-emitting units may also be used (eg, for larger The dynamic blinking positioning design designing a larger lighting unit and using a smaller lighting unit for smaller signal units). In some embodiments, one signal unit may correspond to a plurality of light emitting units, for example, one signal unit itself may be comprised of an array of light emitting units. Similarly, a blank bit may also correspond to a plurality of light emitting units. A light source may be included in the light unit, which may use various light emitting techniques, such as the use of LED lights. The number of illumination sources in each illumination unit may be one or more according to different usage requirements.
光标签还可以包括控制器、以及电池或电源等,其中,控制器用于控制发光单元中的发光源的光波频率和闪烁方式,电池或电源为控制器和发光源提供能源。控制器可以独立地控制每一个发光单元,也可以对发光单元中的一些进行统一控制,例如,控制器可以对动态闪烁定位标识2的发光单元进行统一控制,对静态定位标识3的发光单元或其部分进行统一控制,以及对空白位4的发光单元进行统一控制。The optical tag may further include a controller, and a battery or a power source or the like, wherein the controller is for controlling a light wave frequency and a blinking manner of the light source in the light emitting unit, and the battery or the power source supplies energy to the controller and the light source. The controller can independently control each of the light emitting units, and can also perform unified control on some of the light emitting units. For example, the controller can uniformly control the light emitting unit of the dynamic blinking positioning mark 2, and the light emitting unit of the static positioning mark 3 or The part is uniformly controlled, and the lighting unit of the blank position 4 is uniformly controlled.
在工作状态下,动态闪烁定位标识2可以以一定的频率闪烁,该闪烁可以是光的属性的变化。该属性在本申请中指的是光学成像器件能够识别的任何一种属性,例如其可以是光的强度、颜色、波长等人眼可感知的属性, 也可以是人眼不可感知的其他属性,例如在人眼可见范围外的电磁波长的强度、颜色或波长改变,或者是上述属性的任一组合。光的属性变化可以是单个属性发生变化,也可以是两个或更多个属性的组合发生变化。当选择光的强度作为属性时,可以简单地选择开启或关闭光源。在下文中为了简单起见,以开启或关闭光源来改变光的属性,但本领域技术人员可以理解,用于改变光的属性的其他方式也是可行的。图1B示出了当动态闪烁定位标识2发出的光的属性发生变化时的光标签。In the working state, the dynamic flickering location indicator 2 can flash at a certain frequency, which can be a change in the properties of the light. This attribute refers to any property that the optical imaging device can recognize in the present application, for example, it may be an attribute perceived by the human eye such as intensity, color, wavelength of light, Other attributes that are not perceptible to the human eye, such as intensity, color or wavelength change of electromagnetic wavelengths outside the visible range of the human eye, or any combination of the above attributes. A change in the properties of light can be a single property change, or a combination of two or more properties can change. When the intensity of the light is selected as an attribute, the light source can be simply turned on or off. In the following, for the sake of simplicity, the light source is turned on or off to change the properties of the light, but those skilled in the art will appreciate that other ways to change the properties of the light are also possible. FIG. 1B shows the optical label when the attribute of the light emitted by the dynamic blinking position indicator 2 changes.
另外,上述属性的定义同样适用于静态定位标识3、空白位4以及信号单元1所发出的光的属性。但是需要说明的是,动态闪烁定位标识2、静态定位标识3、空白位4以及信号单元1可以利用不同的属性来工作,例如,动态闪烁定位标识2可以以不同的颜色变换来实现闪烁效果,而信号单元1可以使用不同的光强度来表示不同的信息。In addition, the definition of the above attributes applies equally to the static positioning identifier 3, the blank bit 4, and the attribute of the light emitted by the signal unit 1. However, it should be noted that the dynamic blinking positioning mark 2, the static positioning mark 3, the blank bit 4, and the signal unit 1 can work with different attributes. For example, the dynamic blinking positioning mark 2 can realize the flickering effect by using different color conversions. Signal unit 1 can use different light intensities to represent different information.
当动态闪烁定位标识2在闪烁时,可以通过光学成像器件来连续采集多帧图像,通过对所采集的多帧图像执行图像差分可以快速、准确地识别出该动态闪烁定位标识2并确定其位置。在识别出了动态闪烁定位标识2之后,可以进一步在其附近识别出静态定位标识3的准确位置。When the dynamic flickering positioning mark 2 is blinking, the multi-frame image can be continuously acquired by the optical imaging device, and the dynamic flickering positioning mark 2 can be quickly and accurately recognized and the position determined by performing image difference on the acquired multi-frame image. . After the dynamic flickering location indicator 2 is identified, the exact location of the static location indicator 3 can be further identified in its vicinity.
静态定位标识3在工作期间呈现固定的光学模式。在一个实施例中的静态定位标识3呈现为一个回字框,并且在其水平中心线和垂直中心线处的水平方向和垂直方向上的不同属性的像素(在本实施例中为黑白黑像素)的比例可以被设置为1:1:1。另外,为了更为准确地确定由黑色像素限定的静态定位标识3的边界,可以如图1A所示在光标签中设置4个由白色像素构成的空白位,其保证了不论从水平还是垂直方向扫描,静态定位标识3的黑白黑的像素比例服从1:1:1。The static positioning indicator 3 presents a fixed optical mode during operation. The static positioning marker 3 in one embodiment is presented as a return box, and pixels of different attributes in the horizontal and vertical directions at its horizontal centerline and vertical centerline (black and white black pixels in this embodiment) The ratio can be set to 1:1:1. In addition, in order to more accurately determine the boundary of the static positioning mark 3 defined by the black pixels, four blank bits composed of white pixels may be provided in the optical tag as shown in FIG. 1A, which ensure whether the horizontal or vertical direction is used. Scanning, static positioning marker 3 black and white black pixel ratio obeys 1:1:1.
在确定了动态闪烁定位标识2和静态定位标识3的位置之后,可以借助动态闪烁定位标识2和静态定位标识3的位置来确定光标签中的各个信号单元1的位置,以进行数据的识别或读取。信号单元1为光标签中除了动态闪烁定位标识2、静态定位标识3以及空白位4以外的小正方形发光单元,或者也可以是这些发光单元中的一部分。After determining the positions of the dynamic blinking positioning indicator 2 and the static positioning indicator 3, the positions of the respective signal units 1 in the optical label can be determined by means of the positions of the dynamic blinking positioning indicator 2 and the static positioning indicator 3 for data identification or Read. The signal unit 1 is a small square light-emitting unit other than the dynamic blinking positioning mark 2, the static positioning mark 3, and the blank bit 4 in the optical tag, or may be a part of these light-emitting units.
另外,在用户对光标签进行拍摄时,其可能不是正对着光标签,在这种情况下,光标签的成像可能存在一定程度的扭曲或变形。可以基于光学成像 中的透视原理来在光标签的识别过程中考虑这些扭曲或变形。In addition, when the user takes a photo tag, it may not be facing the optical tag. In this case, the imaging of the optical tag may be distorted or deformed to some extent. Can be based on optical imaging The perspective principle is used to consider these distortions or distortions during the identification of optical tags.
每个信号单元1所发出的光可以具有特定属性,如上所述,该属性可以是光学成像器件能够感知的任何属性,包括人眼不可感知的属性。在一个实施例中,可以通过控制与每个信号单元1对应的发光单元的开启和关闭来表示二进制数字信息的“0”或“1”,从而光标签的一帧画面中的所有信号单元1可以用于表示一个二进制数字信息序列。如本领域技术人员可以理解的,每个信号单元1不仅可以用于表示一个二进制数,还可以用于表示三进制或更大进制的数据。例如,可以通过将发光单元所发出的光的强度设置为可从三种或更多种水平中进行选择,或者通过将发光单元所发出的光的颜色设置为可从三种或更多种颜色中进行选择,甚至通过采用强度与颜色的组合,以及本领域技术人员认为可行的其他方式,来使每个信号单元1表示三进制或更大进制的数据。The light emitted by each signal unit 1 may have a specific property, which, as described above, may be any property that the optical imaging device can perceive, including attributes that are not perceptible to the human eye. In one embodiment, "0" or "1" of binary digital information can be represented by controlling the turning on and off of the lighting unit corresponding to each signal unit 1, so that all signal units 1 in one frame of the optical label Can be used to represent a sequence of binary digital information. As can be appreciated by those skilled in the art, each signal unit 1 can be used not only to represent a binary number, but also to represent data in ternary or larger hexadecimal. For example, the intensity of light emitted by the light emitting unit can be set to be selectable from three or more levels, or by setting the color of light emitted by the light emitting unit to be selectable from three or more colors The selection is made such that each signal unit 1 represents ternary or larger data by using a combination of intensity and color, and other means deemed feasible by those skilled in the art.
在另一实施例中,由于光标签中的信号单元1可以以一定频率(该频率可以与动态闪烁定位标识2的闪烁频率相同,也可以不同)改变其所发出的光的属性,因此,光标签可以在不同的时间表示不同的数据信息,例如,不同的二进制数字信息序列。如此,当使用光学成像设备对光标签进行连续拍摄时(例如,以30帧/秒的速率),其每一帧图像都可以用于表示一组信息序列。In another embodiment, since the signal unit 1 in the optical tag can change the attribute of the light emitted by the signal unit 1 in the optical tag at a certain frequency (which may be the same as the blinking frequency of the dynamic flickering positioning mark 2), therefore, the light Tags can represent different data information at different times, for example, different sequences of binary digital information. As such, when optical tags are continuously captured using an optical imaging device (e.g., at a rate of 30 frames per second), each frame of image can be used to represent a sequence of information.
在上述实施例中将光标签示意性地设置为由发光单元构成的9×9阵列,将其中的动态闪烁定位标识2设置为光标签中间的较大的正方形(由发光单元构成的3×3的阵列),并将其中的静态定位标识3设置为光标签的角落的三个较大的回字框(同样是由发光单元构成的3×3的阵列),但是本领域技术人员可以理解,光标签的形状和大小等、动态闪烁定位标识2和静态定位标识3的大小、形状、位置、数量等并不局限于上述实施例,而是可以根据实际需要发生改变。例如,光标签可以不是9×9的阵列,甚至可以不是正方形;动态闪烁定位标识2可以不仅仅有一个,可以不位于光标签的中间,可以不是3×3的阵列,甚至可以不是正方形;静态定位标识3可以不是三个,可以不位于光标签的角落、可以不是3×3的阵列,甚至可以不是正方形。在一个实施例中,可以在光标签中省略空白位。In the above embodiment, the optical label is schematically set as a 9×9 array composed of light emitting units, and the dynamic blinking positioning mark 2 therein is set as a larger square in the middle of the light label (3×3 composed of the light emitting unit) Array), and set the static positioning identifier 3 therein to three larger singular boxes of the corners of the optical label (again, a 3×3 array of light-emitting units), but those skilled in the art will understand that The shape, size, and the like of the optical tag, the size, shape, position, number, and the like of the dynamic flickering positioning mark 2 and the static positioning mark 3 are not limited to the above embodiments, but may be changed according to actual needs. For example, the optical label may not be a 9×9 array, and may not even be a square; the dynamic blinking positioning identifier 2 may not only have one, may not be located in the middle of the optical label, may not be a 3×3 array, or may not be a square; static The location identifiers 3 may not be three, may not be located at the corners of the optical tags, may not be 3×3 arrays, or may not be squares. In one embodiment, blank bits can be omitted in the optical tag.
可以使用本领域常见的光学成像设备或图像采集设备对光标签进行 成像。光学成像设备或图像采集设备可以包括图像采集元件、处理器和存储器等。光学成像设备或图像采集设备例如可以是具有拍摄功能的智能移动终端,包括手机、平板电脑、智能眼镜等,其可以包括图像采集装置和图像处理模块。用户在距离光标签视距范围内通过肉眼发现光标签,通过使移动终端成像传感器朝向光标签,扫描该光标签并进行信息捕获与判读处理。移动终端的视频采集频率可以被设置为大于或等于光标签闪烁频率的2倍。通过采集手机摄像头中拍摄的视频、图像信息,并将图像帧传入手机内存,并使用处理器进行解码操作,最终完成识别解码的过程。在一个实施例中,为了避免图像帧的重复、遗漏等,可以在光标签所传递的信息中包括序列号、校验位、时间戳等。根据需要,可以在多个图像帧中给出起始帧或结束帧,或者二者兼有,用于指示多个图像帧的一个完整周期的开始或结束位置,该起始帧或结束帧可以被设定为显示某个特殊的数据组合,例如:全0或全1,或者任何不会与实际可能显示的信息相同的特殊组合。Optical labels can be made using optical imaging equipment or image acquisition equipment that are common in the art. Imaging. The optical imaging device or image acquisition device may include an image acquisition component, a processor, a memory, and the like. The optical imaging device or image acquisition device may be, for example, a smart mobile terminal having a photographing function, including a mobile phone, a tablet, smart glasses, etc., which may include an image capture device and an image processing module. The user visually finds the optical tag within a range of distance from the optical tag, and scans the optical tag by performing the information capture and interpretation process by causing the imaging sensor of the mobile terminal to face the optical tag. The video acquisition frequency of the mobile terminal can be set to be greater than or equal to twice the blinking frequency of the optical tag. By collecting the video and image information captured in the camera of the mobile phone, and passing the image frame into the memory of the mobile phone, and using the processor to perform the decoding operation, the process of identifying and decoding is finally completed. In an embodiment, in order to avoid duplication, omission, and the like of the image frame, the serial number, the check digit, the time stamp, and the like may be included in the information transmitted by the optical tag. A start frame or an end frame may be given in a plurality of image frames as needed, or both, for indicating a start or end position of a complete period of the plurality of image frames, the start frame or the end frame may be It is set to display a particular combination of data, for example: all 0s or all 1s, or any special combination that will not be the same as the information that may actually be displayed.
图2示出了根据本发明的一个实施例的光标签防伪系统,其包括光标签30和认证服务器40。光标签30中通常包括有控制器和光源,控制器用于控制光源发出不同的光来传递不同的信息。用户10可以使用图像采集设备20(例如手机)对光标签30进行图像采集,并通过认证服务器40对光标签30的合法性进行鉴别。图像采集设备20通常具备通信功能。2 illustrates an optical tag anti-counterfeiting system including an optical tag 30 and an authentication server 40, in accordance with one embodiment of the present invention. The optical tag 30 typically includes a controller and a light source for controlling the light source to emit different light to convey different information. The user 10 can perform image acquisition on the optical tag 30 using the image capture device 20 (eg, a cell phone) and authenticate the validity of the optical tag 30 by the authentication server 40. The image capture device 20 typically has a communication function.
图3示出了根据本发明的一个实施例的防伪方法流程图。在图3所示的防伪方法中,使用了单向散列函数进行示例说明,但本领域技术人员可以理解,其他函数或者其他类似的方式也是可行的,而并不局限于单向散列函数。如图3所示,该防伪方法包括如下步骤。Figure 3 illustrates a flow chart of an anti-counterfeiting method in accordance with one embodiment of the present invention. In the anti-counterfeiting method shown in FIG. 3, a one-way hash function is used for illustration, but those skilled in the art can understand that other functions or the like are also feasible, and are not limited to the one-way hash function. . As shown in FIG. 3, the anti-counterfeiting method includes the following steps.
光标签30的控制器以t0为起点,每经过整数个时间周期T,将当前的认证时刻(步骤301)输入到函数Hash()中,以得到输出值(步骤302)。The controller of the optical tag 30 starts with t 0 and inputs the current authentication time (step 301) into the function Hash() every time an integer number of time periods T to obtain an output value (step 302).
该Hash()可以是一个预先选取的单向散列函数,并设定了初始参数。该Hash()与初始参数设定可以被设置为对公众保密。预先设定一个时间周期T作为认证周期并预先设定起点时刻t0,T>0,t0可以为每日的任意一个时刻,t0的记录格式可以是hh:mm:ss,即时:分:秒。t0+nT(n为自然数)可以被称为认证时刻。因此,可能的认证时刻可以是预先设定的。如此,可以得到三元组{Hash(),T,t0}。该三元组可以被发送到光标签30的控制器, 该Hash()可以被发送到认证服务器40。在一个实施例中,也可以将该三元组发送到认证服务器40。三元组{Hash(),T,t0}中的任一项可以人为设定,并将其通知到光标签30的控制器和认证服务器40。在一个实施例中,可以将T与t0发布出来公之于众,以便由用户通过公开信息查询获知。上文描述了预先设定可能的认证时刻的一种方式,但是本领域技术人员可以理解,也可以采用任意其他可行的方式。在一个实施例中,光标签30的控制器可以在当前认证时刻之前提前计算出在该当前认证时刻要显示的输出值。The Hash() can be a pre-selected one-way hash function with initial parameters set. The Hash() and initial parameter settings can be set to be kept secret to the public. A time period T is set in advance as the authentication period and the starting point t 0 is set in advance, T>0, t 0 can be any time of the day, and the recording format of t 0 can be hh:mm:ss, instant: minute :second. t 0 + nT (n is a natural number) can be referred to as an authentication time. Therefore, the possible authentication moments can be preset. Thus, the triplet {Hash(), T, t 0 } can be obtained. The triplet can be sent to the controller of the optical tag 30, which can be sent to the authentication server 40. In one embodiment, the triplet can also be sent to the authentication server 40. Any one of the triplets {Hash(), T, t 0 } can be artificially set and notified to the controller of the optical tag 30 and the authentication server 40. In one embodiment, T and t 0 may be published for public discovery so that they are known by the user through a public information query. One way of pre-setting possible authentication moments is described above, but those skilled in the art will appreciate that any other feasible manner may be employed. In one embodiment, the controller of the optical tag 30 can calculate the output value to be displayed at the current authentication time in advance of the current authentication time.
在步骤302获得的输出值可以作为光标签30所传递的信息或该信息的一部分,在该当前认证时刻显示出来(步骤303)。光标签30在各个认证时刻(t0+nT)显示的信息可以被称为校验信息,其中可以包含相应的标识位来表示其是校验信息,也可以包含相应的认证时刻。在一个实施例中,光标签30的控制器可以提前将各个认证时刻(t0+nT)输入到Hash()中,以提前计算出在各个认证时刻要显示的输出值,并在相应的认证时刻将该输出值作为光标签30所传递的信息或该信息的一部分进行显示。在另一个实施例中,可以不是由光标签30或其控制器来计算输出值,而是可以从能够与光标签30进行通信的其他设备(例如用于向光标签30提供要显示的信息的服务器)接收该输出值或者接收要显示的校验信息。The output value obtained in step 302 can be displayed as information transmitted by the optical tag 30 or as part of the information, and displayed at the current authentication time (step 303). The information displayed by the optical tag 30 at each authentication time (t 0 + nT) may be referred to as verification information, and may include a corresponding identification bit to indicate that it is verification information, and may also include a corresponding authentication time. In one embodiment, the controller of the optical tag 30 can input the respective authentication time (t 0 +nT) into the Hash() in advance to calculate the output value to be displayed at each authentication time in advance, and in the corresponding authentication. The output value is displayed as part of the information transmitted by the optical tag 30 or a part of the information. In another embodiment, the output value may not be calculated by the optical tag 30 or its controller, but may be from other devices capable of communicating with the optical tag 30 (eg, for providing the optical tag 30 with information to be displayed). The server receives the output value or receives the verification information to be displayed.
用户10可以通过图像采集设备20在当前时刻ti采集光标签30所传递的信息。如果用户10对光标签30的真实性产生怀疑,则用户10可以利用公开的信息T与t0,将当前时间ti之后的任一个认证时刻作为当前认证时刻t,然后,图像采集设备20采集在该当前认证时刻t时由光标签30显示的校验信息,并基于该校验信息产生第一验证值X(步骤304)。在一个实施例中,可以采用当前时间ti之后的第一个认证时刻作为当前认证时刻t。图像采集设备20可以记录当前认证时刻t(步骤305)。在一个实施例中,用户也可以不需要知道T与t0,而是连续地对光标签30进行图像采集,直到采集到校验信息。The user 10 can collect the information conveyed by the optical tag 30 at the current time t i by the image acquisition device 20. If the user 10 has doubts about the authenticity of the optical tag 30, the user 10 can use the public information T and t 0 to use any one of the authentication times after the current time t i as the current authentication time t, and then the image collecting device 20 collects The verification information displayed by the optical tag 30 at the current authentication time t, and the first verification value X is generated based on the verification information (step 304). In one embodiment, the first authentication instant after the current time t i may be taken as the current authentication instant t. The image capture device 20 can record the current authentication instant t (step 305). In one embodiment, the user may not need to know T and t 0 , but continuously perform image acquisition on the optical tag 30 until the verification information is collected.
图像采集设备20将当前认证时刻t和第一验证值X发送给认证服务器40(步骤306)。The image collection device 20 transmits the current authentication time t and the first verification value X to the authentication server 40 (step 306).
在一个实施例中,图像采集设备20可以不记录当前认证时刻t,也可以不向认证服务器40发送当前认证时刻t本身,而是发送其他能够用于识别 该当前认证时刻t的信息。例如,图像采集设备20可以在向认证服务器40发送第一验证值X时一起发送该第一验证值X的生成时间或者发送时间,从而认证服务器40可以基于该第一验证值X的生成时间或者发送时间来将其之前的最近的认证时刻识别为当前认证时刻t。In an embodiment, the image collection device 20 may not record the current authentication time t, or may not send the current authentication time t itself to the authentication server 40, but may transmit other information that can be used for identification. The information of the current authentication time t. For example, the image collection device 20 may transmit the generation time or the transmission time of the first verification value X together when transmitting the first verification value X to the authentication server 40, so that the authentication server 40 may be based on the generation time of the first verification value X or The transmission time is used to identify the previous authentication time before it as the current authentication time t.
在另一个实施例中,图像采集设备20也可以不向认证服务器40发送任何能够用于识别该当前认证时刻t的信息,而是由认证服务器40基于收到第一验证值X的时间来推断当前认证时刻t。在这种情况下,为了避免误判并考虑通信时延以及可能的时间不同步,认证服务器40可以选择在收到第一验证值X的时间附近的若干个认证时刻。例如,认证服务器40可以选择在收到第一验证值X的时间之前的两个或更多个认证时刻以及之后的一个或若干个认证时刻。在不存在认证服务器40与光标签30之间的时间不同步的情况下,认证服务器40可以仅选择在收到第一验证值X的时间之前的两个或更多个认证时刻。这些被选择的认证时刻可以依次被作为当前认证时刻t,来执行下文描述的步骤。在上述这种存在多个候选当前认证时刻t的情况下,只要其中一个候选当前认证时刻t的验证结果表明光标签30为合法光标签,就认为该光标签30为合法光标签。In another embodiment, the image capture device 20 may also not send any information that can be used to identify the current authentication time t to the authentication server 40, but rather is inferred by the authentication server 40 based on the time at which the first verification value X was received. Current authentication time t. In this case, in order to avoid misjudgment and consider communication delay and possible time out of synchronization, the authentication server 40 may select a number of authentication moments near the time when the first verification value X is received. For example, the authentication server 40 may select two or more authentication moments before the time when the first verification value X is received and one or several authentication moments thereafter. In the case where the time between the authentication server 40 and the optical tag 30 does not exist, the authentication server 40 may select only two or more authentication moments before the time when the first verification value X is received. These selected authentication instants can be sequentially used as the current authentication instant t to perform the steps described below. In the case where the multiple candidate current authentication time t exists, the optical tag 30 is considered to be a legal optical tag as long as the verification result of the current candidate authentication time t indicates that the optical tag 30 is a legal optical tag.
认证服务器40将当前认证时刻t输入到与图像采集设备20同样的单向散列函数Hash()(步骤307),得到输出值,并将该输出值作为第二验证值Y(步骤308)。在一个实施例中,在将三元组发送到认证服务器40的情况下,认证服务器40也可以提前计算出与各个认证时刻对应的输出值。The authentication server 40 inputs the current authentication time t to the same one-way hash function Hash() as the image capturing device 20 (step 307), obtains an output value, and uses the output value as the second verification value Y (step 308). In one embodiment, in the case where the triplet is transmitted to the authentication server 40, the authentication server 40 may also calculate an output value corresponding to each authentication time in advance.
通过比较第一验证值X与第二验证值Y,可以判断二者是否匹配(步骤309),如果二者相匹配则可以判断光标签30为合法光标签(真实的光标签)(步骤310),否则判断光标签30为非法光标签(伪冒的光标签)(步骤311)。在一个实施例中,第一验证值X与第二验证值Y相互匹配是指二者相同。在其他实施例中,第一验证值X与第二验证值Y相互匹配并不要求二者相同(例如,在光标签30的控制器将函数Hash()的输出值作为光标签30所传递的信息的一部分的情况下),只要两者之间存在某种预定的关系或关联即可。在另一实施例中,认证服务器40和光标签30采用的函数可以不是同一个函数,而是相互关联的两个不同函数。为了提升系统的整体安全性,认证服务器40和光标签30可以在经过一段时间之后更换它们的函数(例如以定期的 方式)。By comparing the first verification value X with the second verification value Y, it can be determined whether the two match (step 309), and if the two match, the optical label 30 can be determined to be a legal optical label (real optical label) (step 310). Otherwise, it is judged that the optical tag 30 is an illegal optical tag (a fake optical tag) (step 311). In one embodiment, the first verification value X and the second verification value Y are mutually matched to mean that they are the same. In other embodiments, the first verification value X and the second verification value Y do not match each other (eg, the controller of the optical tag 30 passes the output value of the function Hash() as the optical tag 30. In the case of a part of the information, there is a certain predetermined relationship or association between the two. In another embodiment, the functions employed by the authentication server 40 and the optical tag 30 may not be the same function, but two different functions that are associated with each other. In order to improve the overall security of the system, the authentication server 40 and the optical tag 30 can change their functions after a period of time (for example, on a regular basis). the way).
认证服务器40可以将判断结果发送给图像采集设备20。The authentication server 40 can transmit the determination result to the image collection device 20.
图4示出了根据本发明的另一个实施例的通过加解密算法实现的防伪方法流程图。如图4所示,该防伪方法可以包括如下步骤。4 is a flow chart showing an anti-counterfeiting method implemented by an encryption and decryption algorithm according to another embodiment of the present invention. As shown in FIG. 4, the anti-counterfeiting method may include the following steps.
光标签30的控制器获得当前认证时刻(步骤401),并将其输入到加密算法中,以得到输出值(步骤402)。The controller of the optical tag 30 obtains the current authentication instant (step 401) and inputs it into the encryption algorithm to obtain an output value (step 402).
当前认证时刻选自于预先设定的一系列可能的认证时刻,光标签30知悉该可能的认证时刻。该可能的认证时刻可以采用上文所述的方式进行设置,也可以采用任意其他可行的方式。在步骤402中,除了使用当前认证时刻作为加密算法的输入以外,也可以进一步增加其他输入,例如用于唯一标识该光标签30的一个标识号。The current authentication time is selected from a predetermined series of possible authentication moments, and the optical tag 30 knows the possible authentication time. The possible authentication moments may be set in the manner described above, or any other feasible manner may be employed. In step 402, in addition to using the current authentication instant as an input to the encryption algorithm, other inputs may be further added, such as an identification number for uniquely identifying the optical tag 30.
在步骤302获得的输出值可以作为光标签30所传递的信息或该信息的一部分,在该当前认证时刻显示出来(步骤403)。光标签30在各个认证时刻显示的信息可以被称为校验信息,其中可以包含相应的标识位来表示其是校验信息。在一个实施例中,光标签30的控制器可以提前将各个认证时刻输入到加密算法中,以提前计算出在各个认证时刻要显示的输出值,并在相应的认证时刻将该输出值作为光标签30所传递的信息或该信息的一部分进行显示。在另一个实施例中,可以不是由光标签30或其控制器来计算输出值,而是可以从能够与光标签30进行通信的其他设备(例如用于向光标签30提供要显示的信息的服务器)接收该输出值或者接收要显示的校验信息。The output value obtained at step 302 can be displayed as information transmitted by the optical tag 30 or as part of the information, and displayed at the current authentication time (step 403). The information displayed by the optical tag 30 at each authentication time may be referred to as verification information, and may include a corresponding identification bit to indicate that it is verification information. In an embodiment, the controller of the optical tag 30 may input each authentication time into the encryption algorithm in advance to calculate an output value to be displayed at each authentication time in advance, and use the output value as the light at the corresponding authentication time. The information conveyed by the tag 30 or a portion of the information is displayed. In another embodiment, the output value may not be calculated by the optical tag 30 or its controller, but may be from other devices capable of communicating with the optical tag 30 (eg, for providing the optical tag 30 with information to be displayed). The server receives the output value or receives the verification information to be displayed.
用户10可以通过图像采集设备20在当前时刻ti采集光标签30所传递的信息。如果用户10对光标签30的真实性产生怀疑,则用户10可以使用图像采集设备20在任一个认证时刻(该认证时刻作为当前认证时刻t)采集在该当前认证时刻t时由光标签30显示的校验信息,并基于该校验信息产生第一验证值X(步骤404)。在一个实施例中,用户可以知悉可能的认证时刻,并可以采用当前时间ti之后的第一个认证时刻或任一个认证时刻作为当前认证时刻t。在一个实施例中,用户也可以不必知悉可能的认证时刻,而是连续地对光标签30进行图像采集,直到采集到校验信息。The user 10 can collect the information conveyed by the optical tag 30 at the current time t i by the image acquisition device 20. If the user 10 has doubts about the authenticity of the optical tag 30, the user 10 can use the image capture device 20 to collect the photo tag 30 displayed at the current authentication time t at any of the authentication instants (the authentication instant as the current authentication instant t). The information is verified and a first verification value X is generated based on the verification information (step 404). In one embodiment, the user may be aware of the possible authentication moments and may use the first authentication moment or any of the authentication moments after the current time t i as the current authentication instant t. In one embodiment, the user may not have to know the possible authentication moments, but continuously perform image acquisition on the optical tag 30 until the verification information is collected.
图像采集设备20将第一验证值X发送给认证服务器40(步骤405)。The image collection device 20 transmits the first verification value X to the authentication server 40 (step 405).
认证服务器40对第一验证值X执行解密算法以获得解密结果(步骤 406)。The authentication server 40 performs a decryption algorithm on the first verification value X to obtain a decryption result (step 406).
认证服务器40分析解密结果以判断光标签30的真伪(步骤407)。例如,如果认证服务器40从解密结果中获得的时刻信息满足预定标准,则可以判断光标签30是真实的。该预定标准可以根据实际情形、安全等级等进行不同的设置,例如,该预定标准可以是:从解密结果中获得的时刻与认证服务器40的当前时间之差应小于一个预定阈值;或者,从解密结果中获得的时刻与认证服务器40的当前时间之差应小于一个预定阈值,并且该时刻应属于可能的认证时刻(在认证服务器40也知悉可能的认证时刻的情况下);或者,从解密结果中获得的时刻与认证服务器40的当前时间之差应小于一个预定阈值,并且在该当前时间之前(在认证服务器40和光标签30之间不存在明显的时间不同步的情况下);等等。如果认证服务器40虽然能够从解密结果中获得时刻信息,但该时刻不满足预定标准,则认证服务器40可以认为例如出现了重放攻击,从而判断光标签30是伪冒的。如果在步骤402中加密算法的输入还包括用于唯一标识该光标签30的标识号,则认证服务器40可以知悉哪个光标签30正在被伪冒。如果认证服务器40不能从解密结果中获得任何时刻信息,则可以直接判断光标签30是伪冒的。为了提升系统的整体安全性,认证服务器40和光标签30可以在经过一段时间之后更换它们的解密和加密函数(例如以定期的方式)。The authentication server 40 analyzes the decryption result to judge the authenticity of the optical tag 30 (step 407). For example, if the time information obtained by the authentication server 40 from the decrypted result satisfies a predetermined criterion, it can be judged that the optical tag 30 is authentic. The predetermined criterion may be differently set according to an actual situation, a security level, etc., for example, the predetermined criterion may be that a difference between a time obtained from the decryption result and a current time of the authentication server 40 should be less than a predetermined threshold; or, from decryption The difference between the time instant obtained in the result and the current time of the authentication server 40 should be less than a predetermined threshold, and the time should belong to a possible authentication time (in the case where the authentication server 40 is also aware of the possible authentication time); or, the decryption result The difference between the time instant obtained and the current time of the authentication server 40 should be less than a predetermined threshold, and before the current time (in the case where there is no significant time out of synchronization between the authentication server 40 and the optical tag 30); If the authentication server 40 can obtain the time information from the decrypted result, but the time does not satisfy the predetermined criterion, the authentication server 40 can assume that, for example, a replay attack has occurred, thereby judging that the optical tag 30 is spoofed. If the input to the encryption algorithm in step 402 further includes an identification number for uniquely identifying the optical tag 30, the authentication server 40 can know which optical tag 30 is being spoofed. If the authentication server 40 cannot obtain any time information from the decrypted result, it can directly judge that the optical tag 30 is spoofed. To increase the overall security of the system, the authentication server 40 and the optical tag 30 can change their decryption and encryption functions (e.g., in a periodic manner) after a period of time.
认证服务器40可以将判断结果发送给图像采集设备20。The authentication server 40 can transmit the determination result to the image collection device 20.
上述基于加密解密的实施方式可以使用公钥密码体制或者本领域技术人员知悉的其他密码体制。The above-described embodiment based on encryption and decryption may use a public key cryptosystem or other cryptosystem known to those skilled in the art.
在一个优选的实施方式中,可以使用各种可行的方式对本发明的防伪系统中的光标签30的时钟进行校准,例如,经过一段时间后对光标签30的时钟进行人工校准,或者,该光标签30可以接收到标准时间从而可以进行自动校准。In a preferred embodiment, the clock of the optical tag 30 in the anti-counterfeiting system of the present invention can be calibrated using various possible means, for example, manually calibrating the clock of the optical tag 30 over a period of time, or the light The tag 30 can receive standard time so that automatic calibration can be performed.
在另一个优选的实施方式中,在光标签30所传递的一些信息中可以包括时间信息,用户的图像采集设备可以将该时间信息连同光标签30的标识信息发送到认证服务器40,从而认证服务器40可以知悉光标签30的时钟与认证服务器40的时钟或标准时钟之间的误差,记录该误差值来校正认证服务器40时钟和光标签30时钟之间的不同步,从而达到同步时钟的目的。当 认证服务器40收到用户的认证请求(包含光标签30的标识信息)时,认证服务器40根据目前请求时刻距离最后一次认证服务器40和光标签30校正时刻的时间差,结合光标签30的时钟的误差属性(例如,每经过24个小时光标签30的时钟误差为1秒),可以计算出此时光标签30和认证服务器40的时钟误差。在认证服务器40知悉光标签30的时钟在任一时刻的误差的情况下,对于图3所示的防伪方案,基于该误差,并可选地考虑通信延迟、时间周期T等,认证服务器40可以合适地选择出一个或多个可能的认证时刻。例如,在上文所述的认证服务器40选择在收到第一验证值X的时间附近的若干个认证时刻的情况下,认证服务器40可以基于该误差调整该收到第一验证值X的时间,然后基于调整后的接收时间,并可选地考虑通信延迟、时间周期T等,来选择出一个或多个可能的认证时刻。类似地,对于图4所示的防伪方案,基于该误差,并可选地考虑通信延迟、时间周期T等,认证服务器40可以针对从解密结果中获得的时刻合适地设置其应满足的预定标准。例如,在预定标准是从解密结果中获得的时刻与认证服务器40的当前时间之差应小于一个预定阈值的情况下(也即从解密结果中获得的时刻应该落入某一时间区间),认证服务器40可以基于该误差来平移该时间区间,从而实现更为准确的判断。在一个实施例中,本发明的防伪方法可以在用户使用图像采集设备20对光标签30进行连续图像采集时自动进行,用户甚至不会意识到其在对光标签30进行验证。当验证成功时,可以不向用户进行任何提示,而当验证失败时,可以提示用户该光标签30是伪冒的。In another preferred embodiment, time information may be included in some information transmitted by the optical tag 30, and the image collection device of the user may send the time information together with the identification information of the optical tag 30 to the authentication server 40, thereby authenticating the server. 40 may be aware of the error between the clock of the optical tag 30 and the clock or standard clock of the authentication server 40, and record the error value to correct the out-of-synchronization between the clock of the authentication server 40 and the clock of the optical tag 30, thereby achieving the purpose of synchronizing the clock. when When the authentication server 40 receives the authentication request of the user (including the identification information of the optical tag 30), the authentication server 40 combines the error attribute of the clock of the optical tag 30 according to the time difference between the last authentication server 40 and the optical tag 30 correction time. (For example, the clock error of the optical tag 30 is 1 second every 24 hours), and the clock error of the optical tag 30 and the authentication server 40 at this time can be calculated. In the case where the authentication server 40 knows the error of the clock of the optical tag 30 at any time, for the anti-counterfeiting scheme shown in FIG. 3, based on the error, and optionally considering the communication delay, the time period T, etc., the authentication server 40 can be adapted. Select one or more possible authentication moments. For example, in the case where the authentication server 40 described above selects several authentication moments near the time when the first verification value X is received, the authentication server 40 can adjust the time at which the first verification value X is received based on the error. And then selecting one or more possible authentication instants based on the adjusted reception time, and optionally considering the communication delay, time period T, and the like. Similarly, for the anti-counterfeiting scheme shown in FIG. 4, based on the error, and optionally considering the communication delay, the time period T, and the like, the authentication server 40 can appropriately set the predetermined standard that it should satisfy for the time obtained from the decrypted result. . For example, in the case where the predetermined criterion is that the difference between the time obtained from the decrypted result and the current time of the authentication server 40 should be less than a predetermined threshold (that is, the time obtained from the decrypted result should fall within a certain time interval), authentication The server 40 can translate the time interval based on the error to achieve a more accurate determination. In one embodiment, the anti-counterfeiting method of the present invention can be automated when the user performs continuous image acquisition of the optical tag 30 using the image capture device 20, and the user does not even realize that it is verifying the optical tag 30. When the verification is successful, no prompt may be given to the user, and when the verification fails, the user may be prompted that the optical tag 30 is spoofed.
本发明的防伪方法不仅可以适用于图1A所示的光标签,还可以适用于其他能够用于传递信息的光标签(或光源),只要该光标签所传递的信息可以随时间发生改变即可。例如,本发明的防伪方法可以适用于基于CMOS的滚动快门效应而通过不同的条纹来传递信息的光源(例如在中国专利公开CN104168060A中所描述的装置)。另外,本发明的防伪方法也可以适用于光标签(或光源)的阵列,只要该阵列所传递的信息可以随时间发生变化即可。The anti-counterfeiting method of the present invention can be applied not only to the optical tag shown in FIG. 1A, but also to other optical tags (or light sources) that can be used to transmit information, as long as the information transmitted by the optical tag can be changed over time. . For example, the anti-counterfeiting method of the present invention can be applied to a light source that transmits information through different stripes based on a rolling shutter effect of CMOS (for example, the device described in Chinese Patent Publication No. CN104168060A). In addition, the anti-counterfeiting method of the present invention can also be applied to an array of optical tags (or light sources) as long as the information transmitted by the array can be changed over time.
另外,上述防伪方法中由光标签30在任一认证时刻(t0+nT)显示的校验信息可以在光标签30的一次显示中完全呈现出来(也即,可以包含在图像采集设备20所采集的光标签30的一帧图像中),也可以在光标签30的多 次显示中陆续呈现出来。例如,对于某些种类的光标签或其阵列,其在每次显示中传递的信息量可能不足以涵盖函数Hash()的整个输出值,在这种情况下,可以在认证时刻开始的多次显示中陆续呈现该输出值(也即,通过光标签的连续多次显示来传递校验信息)。而用户可以通过图像采集设备20连续采集自认证时刻开始的光标签的多帧图像,并基于该多帧图像来获得相应的校验信息。为了标识校验信息,也可以在所述多帧图像中包含相应的标识位,或者选择一些帧作为标识帧。因此,在整个本申请中提到的“在某一时刻显示的信息”并不仅仅是指恰好在该时刻显示的信息,其也可以是自该时刻开始显示的一系列信息。In addition, the verification information displayed by the optical tag 30 at any authentication time (t 0 +nT) in the above anti-counterfeiting method may be completely presented in one display of the optical tag 30 (that is, may be included in the image acquisition device 20. The image of one frame of the optical tag 30 can also be presented in multiple displays of the optical tag 30. For example, for some kinds of optical tags or arrays thereof, the amount of information that is passed in each display may not be sufficient to cover the entire output value of the function Hash(), in which case multiple times can be initiated at the time of authentication. The output value is successively presented in the display (ie, the verification information is passed through successive multiple displays of the optical tag). The user can continuously collect the multi-frame image of the optical tag starting from the authentication time by the image capturing device 20, and obtain corresponding verification information based on the multi-frame image. In order to identify the verification information, corresponding identification bits may also be included in the multi-frame image, or some frames may be selected as the identification frame. Therefore, the "information displayed at a certain time" mentioned throughout the present application does not only refer to information that is displayed at that moment, but may also be a series of information displayed from that moment.
本发明的防伪方法的一个具体应用示例如下:A specific application example of the anti-counterfeiting method of the present invention is as follows:
商场M通过光标签L发布商品的信息。商场M选定MD5算法为单向函数,选定时间周期为5秒,起点时刻为00:00:00,得到三元组{MD5;5,00:00:00},将三元组发送给光标签L,同时将MD5算法发送给认证服务器;同时将(5,00:00:00)公布于众;光标签L以00:00:00为起点每过5秒将当前时间作为输入,输入到MD5算法中,得到输出值;光标签L将上述MD5输出值作为光标签一帧在相应的时间显示出来;12:30:33时,顾客G想要通过光标签L购买商品,但是对光标签L的真实性存在怀疑;顾客G根据查阅公开信息(5,00:00:00),通过自己个人手机H,采集到距离12:30:33最近的、满足距起始时间00:00:00为5秒的整数倍的时间:12:30:35为认证时刻,读取该时刻L显示的帧数据为3428942978,并将采集时间12:30:35和3428942978一同发送给认证服务器S;认证服务器S接收到(12:30:35,3428942978),将12:30:35输入MD5得到输出为3428942978,与H送达的结果一致,则认定光标签L为商家M的合法光标签并告知用户G,认证结束。The mall M publishes the information of the merchandise through the optical label L. Mall M selects MD5 algorithm as a one-way function, the selected time period is 5 seconds, the starting time is 00:00:00, and the triplet {MD5; 5,00:00:00} is obtained, and the triplet is sent to The optical label L transmits the MD5 algorithm to the authentication server at the same time; at the same time, (5,00:00:00) is published to the public; the optical label L takes the current time as input every 5 seconds starting from 00:00:00, and input In the MD5 algorithm, an output value is obtained; the optical label L displays the MD5 output value as a light label for one frame at a corresponding time; at 12:30:33, the customer G wants to purchase the product through the optical label L, but the light is The authenticity of the label L is doubtful; the customer G collects the closest distance to the 12:30:33 from his personal mobile phone H according to the public information (5,00:00:00), and satisfies the starting time 00:00: 00 is an integer multiple of 5 seconds: 12:30:35 is the authentication time, the frame data displayed at the time L is read 3284942978, and the collection time 12:30:35 and 3428942978 are sent to the authentication server S; authentication Server S receives (12:30:35,3428942978), and enters MD5 at 12:30:35 to get the output as 3428942978, which is consistent with the result of H delivery. It is determined that the optical label L is the legal optical label of the merchant M and informs the user G that the authentication is completed.
攻击者不知M所使用的单向函数及其初始参数,所以无法伪造认证帧;并且认证帧是随时间变化的,所以可以抵御攻击者的重放攻击。The attacker does not know the one-way function used by M and its initial parameters, so it is impossible to forge the authentication frame; and the authentication frame changes with time, so it can resist the attacker's replay attack.
本说明书中针对“各个实施例”、“一些实施例”、“一个实施例”、或“实施例”等的参考指代的是结合所述实施例所描述的特定特征、结构、或性质包括在至少一个实施例中。因此,短语“在各个实施例中”、“在一些实施例中”、“在一个实施例中”、或“在实施例中”等在整个说明书中各地方的出现并非必须指代相同的实施例。此外,特定特征、结构、或性 质可以在一个或多个实施例中以任何合适方式组合。因此,结合一个实施例中所示出或描述的特定特征、结构或性质可以整体地或部分地与一个或多个其他实施例的特征、结构、或性质无限制地组合,只要该组合不是非逻辑性的或不能工作。References in the specification to "individual embodiments," "some embodiments," "one embodiment," or "an embodiment" or "an" In at least one embodiment. Thus, appearances of the phrases "in the various embodiments", "in some embodiments", "in one embodiment", or "in an embodiment" example. In addition, specific characteristics, structure, or sex The mass may be combined in any suitable manner in one or more embodiments. Thus, the particular features, structures, or properties shown or described in connection with one embodiment may be combined, in whole or in part, with the features, structures, or properties of one or more other embodiments without limitation, as long as the combination is not Logical or not working.
在本申请中为了清楚说明,以一定的顺序描述了一些示意性的操作步骤,但本领域技术人员可以理解,这些操作步骤中的每一个并非是必不可少的,其中的一些步骤可以被省略或者被其他步骤替代。这些操作步骤也并非必须以所示的方式依次执行,相反,这些操作步骤中的一些可以根据实际需要以不同的顺序执行,或者并行执行,只要新的执行方式不是非逻辑性的或不能工作。另外,在本发明中所传输或接收的信息可以根据实际需要进行适当的加密。相应地,涉及加密信息的传输或接收的部件可以具有对应的加密解密模块。In the present application, some illustrative operational steps are described in a certain order for clarity of explanation, but those skilled in the art will appreciate that each of these operational steps is not essential, and some of the steps may be omitted. Or be replaced by other steps. These operational steps are not necessarily required to be performed sequentially in the manner shown. Instead, some of these operational steps may be performed in a different order depending on actual needs, or performed in parallel, as long as the new execution mode is not non-logical or inoperable. In addition, the information transmitted or received in the present invention can be appropriately encrypted according to actual needs. Accordingly, the components involved in the transmission or reception of the encrypted information may have corresponding encryption and decryption modules.
由此描述了本发明的至少一个实施例的几个方面,可以理解,对本领域技术人员来说容易地进行各种改变、修改和改进。这种改变、修改和改进意于在本发明的精神和范围内。 Having thus described several aspects of at least one embodiment of the present invention, it is understood that various changes, modifications and improvements can be readily made by those skilled in the art. Such changes, modifications, and improvements are intended to be within the spirit and scope of the invention.

Claims (28)

  1. 一种用于光通信装置的防伪方法,包括:An anti-counterfeiting method for an optical communication device, comprising:
    从用户的图像采集设备接收第一验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的作为该时刻的函数的信息,并且其中,所述第一验证值基于所述信息获得;Receiving, by the image acquisition device of the user, a first verification value, wherein the image acquisition device obtains information displayed by the optical communication device as a function of the time at a certain moment by performing image acquisition on the optical communication device, And wherein the first verification value is obtained based on the information;
    将所述时刻输入到第一函数中以获得第二验证值;以及Entering the time into the first function to obtain a second verification value;
    根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,Determining the authenticity of the optical communication device according to the first verification value and the second verification value,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  2. 根据权利要求1所述的防伪方法,其中,根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪包括:The anti-counterfeiting method according to claim 1, wherein determining the authenticity of the optical communication device according to the first verification value and the second verification value comprises:
    比较所述第一验证值和所述第二验证值以判断二者是否匹配;以及Comparing the first verification value and the second verification value to determine whether the two match;
    如果二者匹配则判断所述光通信装置为真实的。If the two match, the optical communication device is judged to be authentic.
  3. 根据权利要求1所述的防伪方法,还包括:The anti-counterfeiting method according to claim 1, further comprising:
    从所述图像采集设备接收能够用于识别所述时刻的信息。Information that can be used to identify the time instant is received from the image acquisition device.
  4. 根据权利要求1所述的防伪方法,还包括:The anti-counterfeiting method according to claim 1, further comprising:
    基于从所述图像采集设备接收到所述第一验证值的时间来推断出所述时刻。The time instant is inferred based on the time at which the first verification value was received from the image acquisition device.
  5. 根据权利要求4所述的防伪方法,其中,The anti-counterfeiting method according to claim 4, wherein
    基于从所述图像采集设备接收到所述第一验证值的时间来推断出所述时刻包括:基于从所述图像采集设备接收到所述第一验证值的时间,选择该时间附近的若干个可能的时刻;Inferring the time based on a time when the first verification value is received from the image collection device includes: selecting a number of times near the time based on a time when the first verification value is received from the image collection device Possible moments;
    将所述时刻输入到第一函数中以获得第二验证值包括:将所述若干个可能的时刻分别输入到第一函数中以获得相应的若干个第二验证值;Inputting the moment into the first function to obtain the second verification value comprises: inputting the several possible moments into the first function respectively to obtain a corresponding number of second verification values;
    根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪包括:如果所述若干个第二验证值中的任一个第二验证值与所述第一验证值匹配,则判断所述光通信装置为真实的。 Determining the authenticity of the optical communication device according to the first verification value and the second verification value includes: if any one of the plurality of second verification values is the second verification value and the first verification value If it matches, it is judged that the optical communication device is authentic.
  6. 根据权利要求5所述的防伪方法,其中,基于从所述图像采集设备接收到所述第一验证值的时间选择该时间附近的若干个可能的时刻包括:The anti-counterfeiting method according to claim 5, wherein selecting a plurality of possible moments in the vicinity of the time based on a time when the first verification value is received from the image collecting device comprises:
    选择该时间之前的两个或更多个可能的时刻。Select two or more possible moments before this time.
  7. 根据权利要求1所述的防伪方法,其中,所述光通信装置在某一时刻显示的作为该时刻的函数的信息通过如下方式获得:The anti-counterfeiting method according to claim 1, wherein the information displayed by the optical communication device as a function of the time at a certain time is obtained as follows:
    所述光通信装置将所述时刻输入到第二函数中来获得输出值;以及The optical communication device inputs the time to a second function to obtain an output value;
    所述光通信装置基于所述输出值获得在所述时刻要显示的信息。The optical communication device obtains information to be displayed at the time based on the output value.
  8. 根据权利要求7所述的防伪方法,其中,所述第二函数与所述第一函数相同。The anti-counterfeiting method according to claim 7, wherein the second function is the same as the first function.
  9. 一种用于光通信装置的防伪方法,包括:An anti-counterfeiting method for an optical communication device, comprising:
    从用户的图像采集设备接收验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的对该时刻进行加密后得到的信息,并且其中,所述验证值基于所述信息获得;Receiving a verification value from the image collection device of the user, wherein the image acquisition device obtains information obtained by encrypting the time displayed by the optical communication device at a certain moment by performing image acquisition on the optical communication device, And wherein the verification value is obtained based on the information;
    对所述验证值执行解密算法以获得解密结果;以及Performing a decryption algorithm on the verification value to obtain a decryption result;
    分析所述解密结果以判断所述光通信装置的真伪,Analyzing the decryption result to determine the authenticity of the optical communication device,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  10. 根据权利要求9所述的防伪方法,其中,分析所述解密结果以判断所述光通信装置的真伪包括:The anti-counterfeiting method according to claim 9, wherein the analyzing the decryption result to determine the authenticity of the optical communication device comprises:
    判断是否能够从所述解密结果中获得时刻信息;以及Determining whether the time information can be obtained from the decrypted result;
    判断所述时刻信息是否满足预定标准。It is judged whether the time information satisfies a predetermined criterion.
  11. 根据权利要求9所述的防伪方法,其中,判断所述时刻信息是否满足预定标准包括:The anti-counterfeiting method according to claim 9, wherein determining whether the time information satisfies a predetermined criterion comprises:
    将所述时刻信息与当前时间进行比较。 The time information is compared to the current time.
  12. 一种服务器,其被配置为用于执行权利要求1-11中任一项所述的防伪方法。A server configured to perform the anti-counterfeiting method of any one of claims 1-11.
  13. 一种用于光通信装置的防伪方法,包括:An anti-counterfeiting method for an optical communication device, comprising:
    使用图像采集设备对所述光通信装置进行图像采集,以获得所述光通信装置在某一时刻显示的依赖于该时刻的信息,其中,所述时刻是预先设定的可能的认证时刻之一;Performing image acquisition on the optical communication device using an image acquisition device to obtain information dependent on the time displayed by the optical communication device at a certain time, wherein the time is one of pre-set possible authentication times ;
    基于所述信息获得验证值;Obtaining a verification value based on the information;
    将所述验证值发送到服务器,以进行验证;Sending the verification value to the server for verification;
    从所述服务器接收验证结果。A verification result is received from the server.
  14. 根据权利要求13所述的防伪方法,其中,所述依赖于该时刻的信息是:The anti-counterfeiting method according to claim 13, wherein the information dependent on the moment is:
    作为该时刻的函数的信息。Information as a function of this time.
  15. 根据权利要求14所述的防伪方法,还包括:The anti-counterfeiting method according to claim 14, further comprising:
    将所述时刻发送到所述服务器,其中,所述时刻和所述验证值被所述服务器使用以进行验证。The time instant is sent to the server, wherein the time instant and the verification value are used by the server for verification.
  16. 根据权利要求13所述的防伪方法,其中,所述依赖于该时刻的信息是:The anti-counterfeiting method according to claim 13, wherein the information dependent on the moment is:
    对该时刻进行加密后得到的信息。The information obtained by encrypting the time.
  17. 一种图像采集设备,其包括图像采集元件、处理器和存储器,所述存储器中存储有计算机程序,所述计算机程序在被所述处理器执行时能够用于实现权利要求13-16中任一项所述的防伪方法。An image capture device comprising an image acquisition component, a processor and a memory, wherein the memory stores a computer program, which, when executed by the processor, can be used to implement any of claims 13-16 The anti-counterfeiting method described in the item.
  18. 一种光通信装置,包括:An optical communication device comprising:
    光源;以及Light source;
    控制器,其被配置为: Controller, which is configured to:
    基于某一时刻获得输出值;Obtain an output value based on a certain moment;
    基于所述输出值获得所述光通信装置在所述时刻要显示的信息;以及Obtaining information to be displayed by the optical communication device at the time based on the output value;
    控制所述光源在所述时刻显示所述信息,Controlling the light source to display the information at the time,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  19. 根据权利要求18所述的光通信装置,其中,基于某一时刻获得输出值包括:The optical communication device according to claim 18, wherein the obtaining the output value based on a certain time comprises:
    将所述时刻输入到函数中来获得所述输出值;或者Entering the time into a function to obtain the output value; or
    对所述时刻进行加密来获得所述输出值。The time is encrypted to obtain the output value.
  20. 一种用于光通信装置的防伪系统,包括:An anti-counterfeiting system for an optical communication device, comprising:
    光通信装置,其被配置为在某一时刻显示作为该时刻的函数的信息;An optical communication device configured to display information as a function of the time at a certain time;
    服务器,其被配置为:Server, which is configured to:
    从用户的图像采集设备接收第一验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的作为该时刻的函数的信息,并且其中,所述第一验证值基于所述信息获得;Receiving, by the image acquisition device of the user, a first verification value, wherein the image acquisition device obtains information displayed by the optical communication device as a function of the time at a certain moment by performing image acquisition on the optical communication device, And wherein the first verification value is obtained based on the information;
    将所述时刻输入到第一函数中以获得第二验证值;以及Entering the time into the first function to obtain a second verification value;
    根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,Determining the authenticity of the optical communication device according to the first verification value and the second verification value,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  21. 根据权利要求20所述的防伪系统,所述服务器还被配置为:The anti-counterfeiting system of claim 20, the server is further configured to:
    从所述图像采集设备接收能够用于识别所述时刻的信息;或者Receiving information from the image acquisition device that can be used to identify the time of day; or
    基于从所述图像采集设备接收到所述第一验证值的时间来推断出所述时刻。The time instant is inferred based on the time at which the first verification value was received from the image acquisition device.
  22. 根据权利要求20所述的防伪系统,还包括所述图像采集设备。 The anti-counterfeiting system of claim 20, further comprising said image acquisition device.
  23. 一种用于光通信装置的防伪方法,包括:An anti-counterfeiting method for an optical communication device, comprising:
    光通信装置在某一时刻显示作为该时刻的函数的信息;The optical communication device displays information as a function of the time at a certain time;
    使用图像采集设备对所述光通信装置进行图像采集,以获得所述信息,并基于所述信息获得第一验证值;Performing image acquisition on the optical communication device using an image acquisition device to obtain the information, and obtaining a first verification value based on the information;
    服务器从所述图像采集设备接收所述第一验证值;Receiving, by the server, the first verification value from the image collection device;
    服务器将所述时刻输入到第一函数中以获得第二验证值;以及The server inputs the time to the first function to obtain a second verification value;
    服务器根据所述第一验证值和所述第二验证值来判断所述光通信装置的真伪,The server determines the authenticity of the optical communication device according to the first verification value and the second verification value,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  24. 根据权利要求23所述的防伪系统,还包括:The anti-counterfeiting system of claim 23, further comprising:
    所述服务器从所述图像采集设备接收能够用于识别所述时刻的信息;或者The server receives information from the image collection device that can be used to identify the time of day; or
    所述服务器基于从所述图像采集设备接收到所述第一验证值的时间来推断出所述时刻。The server infers the time based on the time at which the first verification value was received from the image acquisition device.
  25. 一种用于光通信装置的防伪系统,包括:An anti-counterfeiting system for an optical communication device, comprising:
    光通信装置,其被配置为在某一时刻显示对该时刻进行加密后得到的信息;An optical communication device configured to display information obtained by encrypting the time at a certain time;
    服务器,其被配置为:Server, which is configured to:
    从用户的图像采集设备接收验证值,其中,所述图像采集设备通过对所述光通信装置进行图像采集来获得所述光通信装置在某一时刻显示的对该时刻进行加密后得到的信息,并且其中,所述验证值基于所述信息获得;Receiving a verification value from the image collection device of the user, wherein the image acquisition device obtains information obtained by encrypting the time displayed by the optical communication device at a certain moment by performing image acquisition on the optical communication device, And wherein the verification value is obtained based on the information;
    对所述验证值执行解密算法以获得解密结果;以及Performing a decryption algorithm on the verification value to obtain a decryption result;
    分析所述解密结果以判断所述光通信装置的真伪,Analyzing the decryption result to determine the authenticity of the optical communication device,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  26. 根据权利要求25所述的防伪系统,其中,分析所述解密结果以判断所述光通信装置的真伪包括: The anti-counterfeiting system according to claim 25, wherein analyzing the decryption result to determine authenticity of the optical communication device comprises:
    判断是否能够从所述解密结果中获得时刻信息;以及Determining whether the time information can be obtained from the decrypted result;
    判断所述时刻信息是否满足预定标准。It is judged whether the time information satisfies a predetermined criterion.
  27. 一种用于光通信装置的防伪方法,包括:An anti-counterfeiting method for an optical communication device, comprising:
    光通信装置在某一时刻显示对该时刻进行加密后得到的信息;The optical communication device displays information obtained by encrypting the time at a certain time;
    使用图像采集设备对所述光通信装置进行图像采集,以获得所述信息,并基于所述信息获得验证值;Performing image acquisition on the optical communication device using an image acquisition device to obtain the information, and obtaining a verification value based on the information;
    服务器从所述图像采集设备接收所述验证值;Receiving, by the server, the verification value from the image collection device;
    对所述验证值执行解密算法以获得解密结果;以及Performing a decryption algorithm on the verification value to obtain a decryption result;
    分析所述解密结果以判断所述光通信装置的真伪,Analyzing the decryption result to determine the authenticity of the optical communication device,
    其中,所述时刻是预先设定的可能的认证时刻之一。Wherein, the moment is one of pre-set possible authentication moments.
  28. 根据权利要求27所述的防伪方法,其中,分析所述解密结果以判断所述光通信装置的真伪包括:The anti-counterfeiting method according to claim 27, wherein analyzing the decrypted result to determine authenticity of the optical communication device comprises:
    判断是否能够从所述解密结果中获得时刻信息;以及Determining whether the time information can be obtained from the decrypted result;
    判断所述时刻信息是否满足预定标准。 It is judged whether the time information satisfies a predetermined criterion.
PCT/CN2017/099635 2016-08-30 2017-08-30 Anti-counterfeiting method and system for optical communication device WO2018041131A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201780051636.0A CN109792387B (en) 2016-08-30 2017-08-30 Anti-counterfeiting method and system for optical communication device

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201610785929.9A CN106330461B (en) 2016-08-30 2016-08-30 A kind of optical label method for anti-counterfeit and system based on one-way hash function
CN201610785929.9 2016-08-30

Publications (1)

Publication Number Publication Date
WO2018041131A1 true WO2018041131A1 (en) 2018-03-08

Family

ID=57789826

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/099635 WO2018041131A1 (en) 2016-08-30 2017-08-30 Anti-counterfeiting method and system for optical communication device

Country Status (2)

Country Link
CN (2) CN106330461B (en)
WO (1) WO2018041131A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106330461B (en) * 2016-08-30 2019-06-18 西安小光子网络科技有限公司 A kind of optical label method for anti-counterfeit and system based on one-way hash function
CN109934319B (en) * 2017-12-19 2021-06-15 陕西外号信息技术有限公司 Optical communication device and corresponding anti-counterfeiting method and system
CN109934032B (en) * 2017-12-19 2020-07-24 陕西外号信息技术有限公司 Optical communication device and corresponding anti-counterfeiting method and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN2768091Y (en) * 2004-12-29 2006-03-29 王庆旺 False-proof device for diversified commodities
CN104751341A (en) * 2015-04-14 2015-07-01 贵州天酒酒业销售有限公司 Commodity anti-counterfeiting method based on two-dimensional code dynamic passwords
WO2016065861A1 (en) * 2014-10-31 2016-05-06 杭州沃朴物联科技有限公司 System and method for real-time verification of clock synchronisation-based dynamic password anti-counterfeiting tag validity
CN106330461A (en) * 2016-08-30 2017-01-11 西安小光子网络科技有限公司 Optical label anti-counterfeiting method and system based on one-way hash function

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7497379B2 (en) * 2004-02-27 2009-03-03 Microsoft Corporation Counterfeit and tamper resistant labels with randomly occurring features
JP2007214691A (en) * 2006-02-07 2007-08-23 Murata Mach Ltd Image forming apparatus
CN101836215B (en) * 2007-10-22 2014-01-01 夏普株式会社 Reproducing apparatus, mobile communication apparatus, management server, and content delivering system
CN102236773A (en) * 2010-04-30 2011-11-09 航天信息股份有限公司 Radio frequency identification (RFID) encryption verification system and method
CN105184590A (en) * 2015-09-25 2015-12-23 三明学院 Laser on-line efficient etching and product anti-fake traceability system applied to steels
CN105701673B (en) * 2016-02-29 2017-06-13 依波精品(深圳)有限公司 A kind of false proof source tracing method of wrist-watch based on Quick Response Code and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN2768091Y (en) * 2004-12-29 2006-03-29 王庆旺 False-proof device for diversified commodities
WO2016065861A1 (en) * 2014-10-31 2016-05-06 杭州沃朴物联科技有限公司 System and method for real-time verification of clock synchronisation-based dynamic password anti-counterfeiting tag validity
CN104751341A (en) * 2015-04-14 2015-07-01 贵州天酒酒业销售有限公司 Commodity anti-counterfeiting method based on two-dimensional code dynamic passwords
CN106330461A (en) * 2016-08-30 2017-01-11 西安小光子网络科技有限公司 Optical label anti-counterfeiting method and system based on one-way hash function

Also Published As

Publication number Publication date
CN106330461A (en) 2017-01-11
CN106330461B (en) 2019-06-18
CN109792387A (en) 2019-05-21
CN109792387B (en) 2022-09-16

Similar Documents

Publication Publication Date Title
CN108764052B (en) Image processing method, image processing device, computer-readable storage medium and electronic equipment
JP6545192B2 (en) Verification of captured images using timestamps decoded from illumination from modulated light sources
CN108805024B (en) Image processing method, image processing device, computer-readable storage medium and electronic equipment
CN106529512B (en) Living body faces verification method and device
WO2015192669A1 (en) Two-dimensional code scanning positioning prompt method and system
US20110096246A1 (en) Visual Identifier for Images on an Electronic Display
WO2018041131A1 (en) Anti-counterfeiting method and system for optical communication device
WO2018041139A1 (en) Active-response-based anti-counterfeiting method and system for optical communication device
JP2019148930A (en) Two-dimensional code, system and method for outputting two-dimensional code, system and method for reading two-dimensional code, and program
CN108712400B (en) Data transmission method and device, computer readable storage medium and electronic equipment
WO2016001339A1 (en) Communicating barcode data
CN112565922A (en) Advertisement monitoring method, advertisement monitoring device and computer readable storage medium
US10523365B2 (en) Discrimination method and communication system
US11409890B2 (en) Video recording apparatus and video recording verification system, and video recording method and video verification method
CN107944326B (en) Data acquisition method, data processing method and system
WO2023004159A1 (en) Systems and methods employing scene embedded markers for verifying media
EP3217644A1 (en) Information processing device
GB2594391A (en) Authentication for connecting a barcode reader to a client computing device
WO2019120050A9 (en) Optical communication apparatus and corresponding anti-counterfeiting method and system
FR3083627A1 (en) METHOD FOR SECURE TRANSMISSION OF CRYPTOGRAPHIC DATA
Li et al. Screenid: Enhancing qrcode security by fingerprinting screens
JP4600810B2 (en) Monitoring system and authentication method in monitoring system
WO2019120049A1 (en) Optical communication apparatus and corresponding anti-counterfeiting method and system
JP2015073208A (en) Imaging apparatus, information display apparatus, and information processing system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17845433

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17845433

Country of ref document: EP

Kind code of ref document: A1