CN100550733C - Personal electric authentication device and safety certifying method thereof - Google Patents
Personal electric authentication device and safety certifying method thereof Download PDFInfo
- Publication number
- CN100550733C CN100550733C CNB2005102001565A CN200510200156A CN100550733C CN 100550733 C CN100550733 C CN 100550733C CN B2005102001565 A CNB2005102001565 A CN B2005102001565A CN 200510200156 A CN200510200156 A CN 200510200156A CN 100550733 C CN100550733 C CN 100550733C
- Authority
- CN
- China
- Prior art keywords
- data
- personal electric
- input
- interface
- authentication device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
A kind of personal electric authentication device and safety certifying method thereof, it comprises: a microprocessor, two communication interfaces, be used for storage microprocessor working procedure and intermediate data, and pass through data/address bus with microprocessor, control bus, the storage chip that address bus is interconnected, finish the contactless ic card reader of contactless IC card data input, by the Card Reader chip be connected with microprocessor and finish and IC-card between the radio circuit and the antenna of transfer of data, 3 * 4 code keypads that link to each other with the I/O circuit, by address buffer, the interface arrangement and the power supply that are used for software and hardware expansion upgrading that data three core buffers and control bus are formed.The present invention is owing to all be operating as electronic data stream, and do not need manually data input to intervene, and therefore enters the data of computer system, is exactly the True Data on the electronic certificate, thereby guarantees authenticity, consistency, confidentiality and the non repudiation of data.
Description
(1), technical field
The present invention relates to a kind of personal identification safety certification device and safety certifying method thereof, particularly a kind of electronic identity authenticate device and safety certifying method thereof.
(2), background technology
Current, usually need to carry out the digital certificate of personal identification in systems such as finance, civil aviaton, social insurance, public's service, personal credit assessment, the way of existing checking " personalized identity documents " has manually to look reads personalized identity documents, manual entry identification authentication data and the artificial input method of code keypad.Wherein last method is submitted certificate to by the customer earlier, and authenticating party is looked and read to judge then, again by manual entry client certificate data, by interpretation authentication in the machine.Two kinds of methods all are not the effective ways that fundamentally solves individual true identity authentication.Hold forged certificate as the client and open an account with the bank, then the data of manual entry itself are not just had an authenticity, can't really realize the system of real name of bank client, are easy to cause because of authenticating untruely bring great social risk and economic loss for country, collective and individual.
(3), summary of the invention
The purpose of this invention is to provide a kind of personal electric authentication device and safety certifying method thereof, the basic problem that solves individual true identity authentication, solve electronic certificate and read and composite authentication personal electric identity, and the technical problem of authentic and valid stored information and data.
Personal electric authentication device of the present invention comprises:
The input channel of control input data, and carry out data decryption according to the data of input, format conversion, and then send to the microprocessor of client terminal;
Constitute the input channel of control input data, client terminal can read personal electric identity card data message by interface, import password by connecting 3 * 4 keyboards, and by the image data of interface to outside appointed equipment output electronic certificate, this interface is connected with microprocessor by the I/O circuit;
Be used for storage microprocessor working procedure and intermediate data, and with microprocessor by data/address bus, control bus, the interconnected storage chip of address bus;
Finish the contactless ic card reader of contactless IC card data input;
Be connected with microprocessor by the Card Reader chip, finish and IC-card between radio circuit and the antenna of transfer of data;
3 * 4 keyboards that link to each other with the I/O circuit;
Form by address buffer, data three core buffers and control bus, be used for the interface arrangement of software and hardware expansion upgrading;
Power supply through the transformer changing voltage.
Aforesaid personal electric authentication device, described interface comprises: the connection client also reads personal electric identity card data message and passes through the RS232 interface that 3 * 4 keyboards are imported password, its communication speed is the 2400-115200 baud rate, and can select by toggle switch; With USB interface from the image data of electronic certificate to outside appointed equipment that export.
Aforesaid personal electric authentication device, described interface comprise verify data and the shared USB interface of picture data.
Aforesaid personal electric authentication device, described interface comprise verify data and the shared RS232 interface of picture data.
This personal electric identity safety certification method is characterized in that following steps are arranged:
(1), the client submits electronic certificate to;
(2), personal electric authentication device sense data;
(3), picture data reads automatically, moves people-as contrast effect, the test for identification of electronic certificate data automatic log-on certainly;
(4), set up real client's electronic identity information bank;
(5), electronic data compares affirmation, authentication in personal electric identity document data and the system;
(6), if pass through, carry out business operation; Otherwise refusal carries out business operation.
The safety certifying method of this personal electric authentication device is characterized in that following steps are arranged:
Under the primary control program control that writes EEPROM, carry out work;
Personal electric authentication device is connect electricity, and equipment carries out self check, and after self check was passed through, primary control program was in the wait command input state;
When judging that the order that receives is effective, then the kind according to input command changes corresponding operation over to;
When input command be " worker " and the time (time-out), the authentication device enters the code keypad operating state, and the client password of keyboard input is waited for and handled to the collection plate in the system, behind client's input validation key, software is uploaded to client terminal with 6 of client passwords, has finished the function that the password input is uploaded;
When input command is R, and the client uses the contactless IC card electronic certificate, and after swiping the card, collection plate is decrypted the data of reading in automatically, and organize data, and upload the personal electric identity data to client terminal by interface by data format that pre-sets and communications protocol.
Personal electric authentication device of the present invention is the fetch equipment of " electronic certificate ", and data encryption feature is arranged, have can not rewrite, the particularity of non-repudiation.It changed printed document need manually look read, the certificate data need artificial manual conventional practice, it is connected with computer system, and in conjunction with computer software, be used for reading, the individual legal True Data of the interior data medium of composite authentication " electronic certificate ", carry out the comparison and the authentication of personal electric identity data.The problem of individual true identity authentication and system of real name be can solve at all, economic fraud and economic crime incident prevented; The problem of individual true identity can be forged, can't correctly be discerned to data error, the certificate of avoiding occurring in the manual operation; Avoid untruely causing economic loss for country, collective and individual because of authenticating.
The comparison sheet of the present invention and prior art performance, structure
| Item compared | Compare content | The present invention | Manually look the mode of reading | Code keypad |
| The automatic typing of electronic ID card information data | Have | Do not have | Do not have | |
| Function | The client password input | Have | Do not have | Have |
| The automatic typing of electronic identity certificate picture data also has authentication function | Have | Do not have | Do not have | |
| Performance | The Information Security data validity | Guarantee | Can not guarantee | Can not realize |
| True identity and typing identity data consistency | In full accord | Can not guarantee | Can not realize |
The present invention has following advantage and positive effect:
1, owing to all be operating as electronic data stream, and do not need manually data input to intervene, therefore enter the data of computer system, be exactly the True Data on the electronic certificate, thereby guarantee authenticity, consistency, confidentiality and the non repudiation of data.
2, can finish the automatic typing work of electronic identity certificate picture data, and have authentication function;
3, can guarantee safety of data and authenticity.
4, have special purpose system keypad function design simultaneously, and integrated, saved the requirement that customer resources has satisfied system of real name again with the special purpose system keyboard.
The present invention can be connected with user's microcomputer or other data equipment easily, is widely used in every profession and trades such as finance, public security, civil aviaton, social insurance, community service, personal credit assessment.
(4), description of drawings
Fig. 1 is first embodiment circuit theory diagrams of the present invention.
Fig. 2 is second embodiment circuit theory diagrams of the present invention.
Fig. 3 is the 3rd embodiment circuit theory diagrams of the present invention.
Fig. 4 is security authentication process figure of the present invention.
Fig. 5 is a control system job step flow chart of the present invention.
Fig. 6 is a detection system software flow pattern of the present invention.
Fig. 7 is a functional development plateform system flow chart of the present invention.
Fig. 8 is the equipment disposition schematic diagram that the present invention needs.
Fig. 9 is the schematic diagram that the present invention uses.
(5), embodiment
Embodiment one is referring to Fig. 1, and circuit theory is described as follows: personal electric authentication device is made up of the multiple peripheral circuit under the microprocessor control.Wherein:
1, MCU (microcontroller processor) is the core of this equipment, and it is used for controlling the work and the operation of personal electric authentication device, and concrete function is as follows:
(1) personal electric authentication device startup self-detection.
(2) judge the order that customer terminal equipment is sent, and carry out data decryption according to the data of input, format conversion, and then send to client terminal.
(3) input channel of control input data (RS232, USB) and the communications protocol of conversion dateout.
2, storage chip
Be used for storing personal electric authentication device working procedure and intermediate data, it is made up of EEPROM and FLASH, passes through data/address bus with MCU, control bus, and address bus is interconnected.
3, Card Reader chip
Personal electric authentication device is a contactless ic card reader, and it uses Philips 531 type IC to finish the input of contactless IC card data.
4, radio circuit and antenna
Be used for finishing the transmission of data between personal electric authentication device and IC-card, its establishing criteria is:
ISO/IEC14443
GB?17626.2-1998
5, power supply control
This circuit is used for the direct current 9V voltage of external power supply input is converted to respectively through the DC-DC converter :+5V, give the IC chip power supply of working.
+ 12V gives the RS-232 interface level translator power supply of working.
The power control part branch can also play stable input voltage, the function of 9V 10% simultaneously.
6, I/O mainly be meant RS-232 output level change-over circuit here, so circuit input signal is: 0~+ logic level of 5V, input signal is the 12V signal level, common circuit is 75188,75189 or 1488,1489.
7, encrypting and decrypting module
Being used for the IC-card data of reading are decrypted, is a specialized. circuit modules.
8, the I/O circuit that links with 3 * 4 code keypads
It is used for the position and order that keyboard scan presses, and can be made up of 74CS373 etc.
9, the interface arrangement that is used for software and hardware expansion upgrading
It is by address buffer, and 74LS244 data three core buffer 74LS374 control buss are formed, and are the interface circuits of this device extension function indispensability.
10, USB interface, serial data interface
Use the USB standard herein, be mainly used to export individual picture data+code data or output personal electric identity data+individual picture data+code data.
11, RS-232 interface, the serial data communication interface
Employing standard RS-232 data format and level format and physical criterion are used for finishing the exchange with data command of connecting of personal electric authentication device and client terminal.
The basic model circuit of the embodiment of the invention one comprises: basic circuit+RS232*1+USB*1, and verify data is by the output of RS232 interface, and picture data is exported by USB interface, referring to shown in Figure 1.
Embodiment two is referring to Fig. 2, and second kind of circuit of the present invention comprises: basic circuit+USB*1, shared USB interface output such as verify data and picture data.
Embodiment three is referring to Fig. 3, and the third circuit of the present invention comprises: basic circuit+RS232C*1, shared RS232 interface output such as verify data and picture data.
The present invention is rational in infrastructure, novel, the special purpose system keyboard of personal electric authentication device combines with readout equipment, shell uses the die casting of PVC material to produce, the top is the readout equipment of electronic certificate, the front is 3 * 4 keyboards, with adopt standard RS-232 cable being connected of customer equipment, can be placed on easily on the operating desk and use for the user.
Performance index of the present invention: product externally has two interfaces, one is the RS232 communication port, be used for linking to each other with terminal, communication speed is 2400-115200, baud rate can be selected by toggle switch, and terminal can read personal electric identity card data message and import password by the 3X4 keyboard by this mouth; Second interface is USB slave type interface, to the image data of outside appointed equipment output electronic certificate; Power supply output of the present invention requires: DC9V, 1A; The present invention supports can store 100 unit length keys to input PIN software cryptography function; The present invention has 128KFLASH, can preserve specific data.If special requirement are arranged, can be supported in the system programmable function.
The concrete safety certifying method flow process of the present invention is referring to Fig. 4: of the present inventionly connect with teller terminal by the RS-232C interface, the output of its data is startup with the smart electronics noncontact. the form that data are exported can be provided with according to customer requirement by software.The present invention is connected with system, needs the client to provide the required function of data upload connection and gets final product, and does not change original manual entry identity information, storage mode, data transfer mode and form.For the requirement of different management system functions, can adopt the mode of personal electric authentication device being carried out function setup, make it can adapt to the connection of different clients.
Owing to all be operating as electronic data stream, and do not need manually data input to be intervened, therefore enter the data of computer system, be exactly the True Data on the electronic certificate, thereby guarantee authenticity, consistency, confidentiality and the non repudiation of data.
The security authentication process of this personal electric authentication device is referring to Fig. 5: this invention is to carry out work down by the primary control program control that writes EEPROM, is specially:
After personal electric authentication device connect electricity, equipment carried out self check, and after self check was passed through, primary control program was in the wait command input state.
When judging that the order that receives is effective, then the kind according to input command changes corresponding operation over to.
When input command be " worker " and the time (time-out), the personal identification device enters the code keypad operating state, the client password of keyboard input is waited for and handled to collection plate in the system, behind client's input validation key, software is uploaded to client terminal with 6 of client passwords, has finished the function that the password input is uploaded.
When input command is R, and the client uses the contactless IC card electronic certificate, and after swiping the card, collection plate is decrypted the data of reading in automatically, and organize data, and upload the personal electric identity data to client terminal by the RS232 interface by data format that pre-sets and communications protocol.
For individual picture data, can adopt USB interface output, file format can be carried out layout according to the requirement of client terminal.
This device has soft, and the hardware expanding ability can also receive other order of client, is determined on a case-by-case basis.
Detection software systems flow chart of the present invention, functional development plateform system flow chart can be referring to Fig. 6,7.
Workflow signal of the present invention is referring to Fig. 8.
The application system that designs for basic platform with personal electric authentication device of the present invention is referring to Fig. 9.
Claims (6)
1, a kind of personal electric authentication device is characterized in that it comprises:
The input channel of control input data, and carry out data decryption according to the data of input, format conversion, and then send to the microprocessor of client terminal;
Constitute the input channel of control input data, client terminal can read personal electric identity card data message by interface, import password by connecting 3 * 4 keyboards, and by the image data of interface to outside appointed equipment output electronic certificate, this interface is connected with microprocessor by the I/O circuit;
Be used for storage microprocessor working procedure and intermediate data, and with microprocessor by data/address bus, control bus, the interconnected storage chip of address bus;
Finish the contactless ic card reader of contactless IC card data input;
Be connected with microprocessor by the Card Reader chip, finish and IC-card between radio circuit and the antenna of transfer of data;
3 * 4 keyboards that link to each other with the I/O circuit;
Form by address buffer, data three core buffers and control bus, be used for the interface arrangement of software and hardware expansion upgrading;
Power supply through the transformer changing voltage.
2, personal electric authentication device as claimed in claim 1, it is characterized in that: described interface comprises: the connection client also reads personal electric identity card data message and passes through the RS232 interface that 3 * 4 keyboards are imported password, its communication speed is the 2400-115200 baud rate, and can select by toggle switch; With USB interface from the image data of electronic certificate to outside appointed equipment that export.
3, personal electric authentication device as claimed in claim 1 is characterized in that: described interface comprises verify data and the shared USB interface of picture data.
4, personal electric authentication device as claimed in claim 1, it is characterized in that: described interface comprises verify data
The RS232 interface shared with picture data.
5, a kind of personal electric identity safety certification method is characterized in that following steps are arranged:
(1), the client submits electronic certificate to;
(2), personal electric authentication device sense data;
(3), picture data reads automatically, moves people-as contrast effect, the test for identification of electronic certificate data automatic log-on certainly;
(4), set up real client's electronic identity information bank;
(5), electronic data compares affirmation, authentication in personal electric identity document data and the system;
(6), if pass through, carry out business operation; Otherwise refusal carries out business operation.
6, a kind of safety certifying method of personal electric authentication device is characterized in that following steps are arranged:
Under the primary control program control that writes EEPROM, carry out work;
Claim 1,2,3 or 4 described personal electric authentication devices are connect electricity, and equipment carries out self check, and after self check was passed through, primary control program was in the wait command input state;
When judging that the order that receives is effective, then the kind according to input command changes corresponding operation over to;
When being " worker ", input command suspends, the authentication device enters the code keypad operating state, and the client password of keyboard input is waited for and handled to the collection plate in the system, behind client's input validation key, software is uploaded to client terminal with 6 of client passwords, has finished the function that the password input is uploaded;
When input command is R, and the client uses the contactless IC card electronic certificate, and after swiping the card, collection plate is decrypted the data of reading in automatically, and organize data, and upload the personal electric identity data to client terminal by interface by data format that pre-sets and communications protocol.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005102001565A CN100550733C (en) | 2005-03-23 | 2005-03-23 | Personal electric authentication device and safety certifying method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005102001565A CN100550733C (en) | 2005-03-23 | 2005-03-23 | Personal electric authentication device and safety certifying method thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1671102A CN1671102A (en) | 2005-09-21 |
| CN100550733C true CN100550733C (en) | 2009-10-14 |
Family
ID=35042182
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005102001565A Expired - Fee Related CN100550733C (en) | 2005-03-23 | 2005-03-23 | Personal electric authentication device and safety certifying method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100550733C (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101004782B (en) * | 2006-01-17 | 2010-05-12 | 公安部第一研究所 | Intelligent interface of identity card reader |
| CN102222284A (en) * | 2011-06-28 | 2011-10-19 | 河海大学 | Article anti-counterfeiting system and anti-counterfeiting authentication control method based on radio frequency identification technology |
| CN103259667B (en) * | 2013-06-07 | 2016-05-18 | 北京邮电大学 | The method and system of eID authentication on mobile terminal |
| CN105308623B (en) * | 2014-03-17 | 2019-05-31 | 中国工商银行股份有限公司 | Network online service provides device and method |
-
2005
- 2005-03-23 CN CNB2005102001565A patent/CN100550733C/en not_active Expired - Fee Related
Also Published As
| Publication number | Publication date |
|---|---|
| CN1671102A (en) | 2005-09-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101465019B (en) | Method and system for implementing network authentication | |
| CN101241569B (en) | Electronic signature method and device and system | |
| CN101276448A (en) | Payment system and method performing trading with identification card including IC card | |
| CN101377838A (en) | Data safety processing method | |
| CN101299286A (en) | Method and system for using phone to generate authentication pattern to perform POS payment as well as mobile phone | |
| CN102088349B (en) | Personalized method and system of intelligent card | |
| JP5121326B2 (en) | Financial transaction terminal for processing information medium conforming to USB interface standard and its working method | |
| CN102298683A (en) | Authentication device, system and method for short-distance radio-frequency communication authentication | |
| CN101414912A (en) | Identification verification method, apparatus and system | |
| CN103997408A (en) | Authentication method and system for transmitting authentication data by use of graphs and images | |
| TWI754811B (en) | System for using device identification to identify via telecommunication server and method thereof | |
| CN100550733C (en) | Personal electric authentication device and safety certifying method thereof | |
| CN101673434B (en) | Secret key management method of IC card terminal | |
| CN100547963C (en) | Utilize the method and the device of USB secret key inputting/displaying/transmitting user information | |
| CN101807424A (en) | Multifunctional U disk and U disk system | |
| CN100570633C (en) | The disposal route of CPU and logical encrypt double-purpose smart card and critical data thereof | |
| CN103164350A (en) | Secure digital (SD) card device and method of regionally accessing SD card | |
| CN201514673U (en) | Self-registration terminal for electronic banking services | |
| CN2824442Y (en) | Finger print identifier for electronic signing mane | |
| CN103390140A (en) | Mobile terminal and information security control method thereof | |
| CN2802582Y (en) | Personal electronic identity authentication | |
| CN201138489Y (en) | Bill security authenticating terminal with digital signature, electronic label and colored image | |
| CN105678547A (en) | Terminal for checking identity of cardholder, and operating method thereof | |
| CN2791758Y (en) | Indentity checking device with cipher keyboard | |
| KR20110029032A (en) | Method for processing issue public certificate of attestation, terminal and recording medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20091014 Termination date: 20110323 |