CN101447104A - Method and apparatus for determining check value - Google Patents

Method and apparatus for determining check value Download PDF

Info

Publication number
CN101447104A
CN101447104A CNA2008102101961A CN200810210196A CN101447104A CN 101447104 A CN101447104 A CN 101447104A CN A2008102101961 A CNA2008102101961 A CN A2008102101961A CN 200810210196 A CN200810210196 A CN 200810210196A CN 101447104 A CN101447104 A CN 101447104A
Authority
CN
China
Prior art keywords
value
checking
composition data
input
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2008102101961A
Other languages
Chinese (zh)
Other versions
CN101447104B (en
Inventor
宫泽宏明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Oki Electric Industry Co Ltd
Original Assignee
Oki Electric Industry Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oki Electric Industry Co Ltd filed Critical Oki Electric Industry Co Ltd
Publication of CN101447104A publication Critical patent/CN101447104A/en
Application granted granted Critical
Publication of CN101447104B publication Critical patent/CN101447104B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/088Usage controlling of secret information, e.g. techniques for restricting cryptographic keys to pre-authorized uses, different access levels, validity of crypto-period, different key- or password length, or different strong and weak cryptographic algorithms
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • G07F19/211Software architecture within ATMs or in relation to the ATM network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention provides a method and an apparatus for determining a check value, capable of determining the check value for multiple times when inputting and registering combined data for generating a main key, which may prevent error combined data from registering reliably and further prevent error main key from generating reliably. After inputting the combined data, if the check value generated according to the input combined data is consistent with a check value generated in advance through a plurality of determinations, the check value generated according to the input combined data will be registered.

Description

The value of checking confirmation method and device
Technical field
The present invention relates to confirm the method and apparatus of the value of checking, this value of checking is used to confirm to form the input of data, and these composition data are used to generate the master key of PIN PAD (PINPAD).
Background technology
In the past, ATM (Automatic Teller Machine)), CD player (CashDispenser: operate by automatic trading apparatus ATM (automatic teller machine)) etc. by to (Automatic Teller Machine: such as the ATM in branch store of being arranged on financial institutions such as bank, credit office, post office etc., deposit, withdraw the money, change over to, transfer accounts, during financial transaction such as remittance, customer need is imported password when using cash card (cash card) to wait card.In addition, at the restaurant, when carrying out the payment for goods clearing in the shop such as shop, use debit card (debit card), credit card ( Credit card)Under the situation that sticks into row clearing, client is located at terminal or its auxiliary devices such as POS (Point ofSales) terminal, credit card terminal of the cashing machine in shop by operation when using card, input password.
And, above-mentioned automatic trading apparatus and terminal are to the epigyny devices such as principal computer that connect by communication line, in information such as the transmission amount of money, the card information that transmission is read from card and the password of input are carried out the processing of transaction such as financial transaction, settlement bargain.In this case,, that is, send password to epigyny device, the situation of password then might take place to be parsed from Content of Communication by the third party with the unencrypted form if do not carry out encryption.
Therefore, in recent years, the cipher input as the password to input carries out encryption adopts the device that is called as PIN PAD.By PIN PAD is connected with terminal with above-mentioned automatic trading apparatus, or be assembled in its inside, can send password to epigyny device, therefore, the situation of password can not take place to be parsed from Content of Communication by the third party through encryption.
In PIN PAD, need key in order to encrypt, in order to generate the upper key, to be master key,, promptly form data to a plurality of numeric strings that are called as key composition data of PIN PAD input.So this PIN PAD is calculated the composition data of being imported, generate and registration master key (for example with reference to non-patent literature 1,2).
Fig. 2 is the figure that represents the input operation part of PIN PAD in the past, and Fig. 3 is the process flow diagram of the action of representing that master key in the past generate to be handled, and Fig. 4 is the process flow diagram of action of representing the subroutine of composition data registration in the past.
In Fig. 2, the 31st, the input operation part of PIN PAD, it has the numerical key that is used to input the amount of money, password etc., face amount, affirmation, corrigendum button etc.And, when above-mentioned PIN PAD being connected with automatic trading apparatus and terminal or be assembled in its inside, will forming data and be input to above-mentioned PIN PAD.So the composition data that above-mentioned PIN PAD computing is imported generate and the registration master key.
In this case,, will form data in advance and be divided into a plurality ofly, and and each that cut apart be formed data issue different operators in order to keep confidentiality.And if begin to carry out the generation of master key, then, each operator imports resulting composition data respectively at different time operator password input units, forms the registration of data.In addition, about whole composition data registrations, it is identical that this forms data registration order.
Then, register if finished whole each a plurality of composition data of forming data that are divided into, then PIN PAD generates master key automatically according to the composition data of being registered, and registers the master key that is generated.Thus, finish the generation of this master key.
In addition, when the input of forming data, issued to be equipped with to each operator who forms data inputs and put down in writing PIN PAD specified composition data and being used for when dispatching from the factory and confirm whether will to form the envelope of paper that data correctly have been input to the value of checking of PIN PAD.And, issue composition data input processing password to each operator.
Then, if begun the registration of composition data, then at first, the operator inputs and forms data input processing password.Handle under the situation with the input of password failing correctly to form the data input, import repeatedly, till input is correct.And, when the input OK that uses password is handled in the input of composition data, in display device that PIN PAD possessed or connected or assembled in the automatic trading apparatus of PIN PAD and the display device that terminal possessed, show that forming the data input induces demonstration, to supervise the input of forming data.
Next, the operator forms the input of data by the operator password input unit.So, above-mentioned PIN PAD according to the composition data produced nucleus of being imported to value.And, in above-mentioned display device, show the value of checking that is generated.So the aforesaid operations person is compared the shown value of checking and the value of checking that obtains in advance, whether consistently confirm.That is, carry out Visual Confirmation based on operator's the value of checking.
And the operator is under the situation of unanimity confirming as, and presses the affirmation button that input operation part had of PIN PAD; Not confirming as is under the situation of unanimity, presses the corrigendum button that input operation part had of PIN PAD.That is the push of confirming or correcting.And, under the situation of the push that has carried out confirming, carry out finishing to form the data registration from the registration of the composition data of PIN PAD input.In addition, under the situation of the push that has carried out corrigendum, form the data input once more and induce demonstration, repeat later action.That is, the value of returning from PIN PAD of checking with form data and be documented in together under the different situation of the value of checking on the paper, from beginning most to re-enter the composition data.
Below, description of flow diagram.At first, the process flow diagram of the action that generation is handled to the expression master key describes.
Step S1-1 carries out and forms the data registration.
Step S1-2 carries out and forms the data registration.
Step S1-n carries out and forms the data registration.
Step S2 generates master key automatically according to forming data, finishes the generation of master key.
Below, the process flow diagram of action of expression being formed the subroutine of data registration describes.
Step S11 forms data inputs and handles input with password, judges to form the data input to handle input with password be OK, or NG.Forming under the situation of data input processing with the input OK of password, enter step S12.Handle under the situation of the input NG that uses password in the input of composition data, form the input of data input processing once more with password.
Step S12 forms the data input and induces demonstration.
Step S13 forms the input of data.
Step S14 shows the value of checking that is generated in display device.
Step S15 carries out the Visual Confirmation based on operator's the value of checking.
Step S16 judges the push that has carried out the push of confirming or carried out corrigendum.Under the situation of the push that has carried out confirming, enter step S17, under the situation of the push that has carried out corrigendum, return step S12.
Step S17 forms the registration of data, finishes to form the data registration.
[non-patent literature 1] http://partnernetwork.visa.com/dv/pin/main.jsp
[non-patent literature 2] http://www.ecom.jp/qecom/about_wg/wg05/cr-swg/code-4/html
But, in the above-mentioned value of checking confirmation method in the past, because the affirmation of the value of checking depends on the operator's who has carried out the inputs of composition data disposable Visual Confirmation, so the problem that exists is, even composition data entry error, the value of checking is not the value of regulation, but if the operator neglects and supresses the affirmation button, the composition data that then can lead to errors are registered.
Like this, in the composition data registration before master key generates, if although the value of checking mistake is supressed the affirmation button, master key that then can generation error causes this PIN PAD not to be used, and must return the situation of factory.
Summary of the invention
The objective of the invention is, solve above-mentioned problem points in the past, a kind of value of checking confirmation method and device are provided, by in input and registration when being used to generate the composition data of master key, the repeatedly affirmation of the value of checking, can prevent the composition data of registration error reliably, prevent the master key of generation error reliably.
For this reason, the value of checking confirmation method of the present invention is the value of the checking confirmation method that has in the device of cipher input and transaction system, and this cipher input has: the cryptographic processing unit that password is encrypted, generate the master key generation unit of encrypting needed master key according to forming data, according to the check value generation unit of above-mentioned composition data produced nucleus to value, input operation part with the above-mentioned composition data of input, this transaction system has the display device that shows tutorial message, be connected with epigyny device in the mode that can communicate by letter, send encrypted password to this epigyny device, and conclude the business, this method, import under the above-mentioned composition data conditions, if repeatedly having carried out the value of checking that generates according to the composition data imported and the value of checking of generation in advance is the affirmation of consistent situation, then register the value of checking according to the above-mentioned composition data generation of importing.
In other the value of checking confirmation method of the present invention, and then, import under the above-mentioned composition data conditions, if carried out the value of checking to the value of checking that generates according to the composition data imported and generation in advance and be the affirmation of consistent situation, then carrying out after the value of checking to value of checking that generates according to the composition data imported and the mistake that generates in advance is the affirmation of inconsistent situation, carrying out once more the value of checking according to the value of checking of the above-mentioned composition data generation of importing and generation in advance is the affirmation of consistent situation.
Another value of checking confirmation method of the present invention is the value of the checking confirmation method that has in the device of cipher input and transaction system, and this cipher input has: the cryptographic processing unit that password is encrypted, generate the master key generation unit of encrypting needed master key according to forming data, according to the check value generation unit of above-mentioned composition data produced nucleus to value, input operation part with the above-mentioned composition data of input, this transaction system has the display device that shows tutorial message, be connected with epigyny device in the mode that can communicate by letter, send encrypted password to this epigyny device, and conclude the business, this method, import under the above-mentioned composition data conditions, if generated the value of checking according to the composition data of being imported, then import the value of checking that generates in advance, if the value of checking that generates according to the above-mentioned composition data of importing is consistent with the value of checking that generates in advance, then register the value of checking that generates according to the above-mentioned composition data of importing.
The value of checking of the present invention confirms that device has cipher input and transaction system, and this cipher input has: the cryptographic processing unit that password is encrypted, generate the master key generation unit of encrypting needed master key according to forming data, according to the check value generation unit of above-mentioned composition data produced nucleus to value, input operation part with the above-mentioned composition data of input, this transaction system has the display device that shows tutorial message, be connected with epigyny device in the mode that can communicate by letter, send encrypted password to this epigyny device, and conclude the business, this value of checking affirmation device is imported under the composition data conditions from above-mentioned input operation part, if repeatedly having carried out the value of checking that generates according to the composition data imported and the value of checking of generation in advance is the affirmation of consistent situation, then register the value of checking according to the above-mentioned composition data generation of importing.
Other values of checking of the present invention are confirmed device, and then, import under the composition data conditions from above-mentioned input operation part, if carried out the value of checking to the value of checking that generates according to the composition data imported and generation in advance and be the affirmation of consistent situation, then carrying out after the value of checking to value of checking that generates according to the composition data imported and the mistake that generates in advance is the affirmation of inconsistent situation, carrying out once more the value of checking according to the value of checking of the above-mentioned composition data generation of importing and generation in advance is the affirmation of consistent situation.
Another value of checking of the present invention confirms that device has cipher input and transaction system, and this cipher input has: the cryptographic processing unit that password is encrypted, generate the master key generation unit of encrypting needed master key according to forming data, according to the check value generation unit of above-mentioned composition data produced nucleus to value, input operation part with the above-mentioned composition data of input, this transaction system has the display device that shows tutorial message, be connected with epigyny device in the mode that can communicate by letter, send encrypted password to this epigyny device, and conclude the business, this value of checking is confirmed device, import under the composition data conditions from above-mentioned input operation part, if generated the value of checking according to the composition data of being imported, then import the value of checking that generates in advance from above-mentioned input operation part, if the value of checking that generates according to the above-mentioned composition data of importing is consistent with the value of checking that generates in advance, then register the value of checking that generates according to the above-mentioned composition data of importing.
According to the present invention, by in input and registration when being used to generate the composition data of master key, the value of checking of carrying out is repeatedly confirmed, can prevent the registration of the composition data of mistake reliably.Thus, can prevent the generation of wrong master key reliably.
Description of drawings
Fig. 1 is the block scheme of structure of the transaction system of expression the 1st embodiment of the present invention.
Fig. 2 is the figure that represents the input operation part of PIN PAD in the past.
Fig. 3 is a process flow diagram of representing the action of master key generation processing in the past.
Fig. 4 is the process flow diagram of action of representing the subroutine of composition data registration in the past.
Fig. 5 is the process flow diagram of the action of the composition data registration in expression the 1st embodiment of the present invention.
Fig. 6 is the process flow diagram of the action of the composition data registration in expression the 2nd embodiment of the present invention.
Among the figure: the 10-transaction system; The 14-PIN PAD; 15-LCD.
Embodiment
Below, with reference to accompanying drawing, embodiments of the present invention are elaborated.
Fig. 1 is the block scheme of structure of the transaction system of expression the 1st embodiment of the present invention.
Among the figure, the 10th, the transaction system in the present embodiment, for example, be arranged on bank, the credit national treasury, ATM in the branch store of financial institutions such as post office etc., automatic trading apparatus such as CD player, be arranged on convenience store, the supermarket, the shop in shops such as department store, has a ticket booking function in the undergrond street etc., commodity purchasing application function, the credit of credit card is confirmed function, the such multi-functional terminal end of newsstand (KIOSK) terminal of facilities information guiding function etc., be arranged on the restaurant, eating house and convenience stores such as bar, the supermarket, POS terminal in the cashing machine in the shop in shops such as department store, terminals such as credit card terminal, but so long as using cash card, debit card, credits card etc. stick into the row deposit, withdraw the money, change over to, account transfer, when remittance waits the such various transaction of financial transaction and payment for goods clearing, import the device that password authenticates, also can be arranged on the device of any kind of arbitrary site.
Here, be that the situation of the device that has possessed the function of depositing and withdrawing as automatic trading apparatus, multi-functional terminal end, POS terminal etc. describes to transaction system 10.In this case, transaction system 10 have control part 11, as communication interface to host interface portion 12, as transaction with the touch-screen 13 of input media, as the PIN PAD 14 of cipher input, as the LCD (Liquid Crystal Dispiay) 15 of display device, as the disk (DISK) 16 of memory storage, import and export machine 18 and coin imports and exports machine 19 as bill printer 17, the bank note of printing equipment.
And, above-mentioned transaction system 10, host interface portion 12 with telephone wire road network, LAN, in-house network (intranet), be connected at order wire road networks such as spider lines, internets, is connected in the mode that can communicate by letter in not shown epigyny devices such as principal computer by this order wire road network.And, carry out the processing that information such as the password of input and the amount of money are together concluded the business to epigyny device transmission, financial transaction, settlement bargain etc.
Above-mentioned control part 11 is, have microprocessors such as CPU, MPU as arithmetic element, as the storer of storage unit, as the timer of timing unit, as I/O mouth of communication interface etc., according to a kind of computing machine that program is moved, it is to comprising that host interface portion 12, touch-screen 13, PIN PAD 14, LCD15, disk 16, bill printer 17, bank note are imported and exported the molar behavior of transaction system 10 that machine 18 and coin import and export the action of machine 19 unifies control.
In addition, above-mentioned touch-screen 13 is devices of the selection of concluding the business by operation such as client, operator, input of dealing money etc., still, also can be the device that can bring into play function as display device with above-mentioned LCD15 one.In addition, above-mentioned LCD15 also can be used as display device and has device beyond the LCD, for example LED (Light Emitting Diode) display etc.
And, above-mentioned PIN PAD 14 is that client is by operating the device of input password, it has in " background technology " input operation part shown in Figure 2 of explanation, and have to the password of being inputed carry out encryption and send encrypted password cryptographic processing unit, generate as the master key generation unit of the master key of encrypting needed key with according in order to generate composition data produced nucleus that master key imports the value of checking generation unit value.In addition, above-mentioned PIN PAD 14 also can be assembled in the transaction system 10, also can constitute to be independent of transaction system 10, and be connected with transaction system 10 by telecommunication cable etc.
And the detailed bill of transaction content has been printed in above-mentioned bill printer 17 distribution.This detail bill be printed deposit, withdrawn the money, remaining sum, change over to, transfer accounts, the paper of information that remittance, time deposit setting etc. are relevant with the transaction that client is carried out, wherein also printing has account number, type of transaction, dealing money etc.
In addition, it is that the bank note that client deposits in is carried out real and fake discrimination, counts and is received in the face amount classification keeping safety cabinet that above-mentioned bank note imports and exports machine 18, and, the device of from face amount classification keeping safety cabinet, deriving to the bank note of client's expenditure.
And it is that the coin that client deposits in is carried out real and fake discrimination, counts and is received in the face amount classification keeping safety cabinet that above-mentioned coin imports and exports machine 19, and, the device of from face amount classification keeping safety cabinet, deriving to the coin of client's expenditure.
Below, the action of the transaction system 10 of said structure is described.Action when at first, client operating transaction system 10 being concluded the business describes.
In this case, client is at first by operation touch-screen 13 kind of determining deal.And the input instruction picture that the LCD15 handle is corresponding with this transaction is presented in the display frame.Then, client is by operation touch-screen 13, and input is in the data of each project that instructs screen displayed.In addition, client is by operator password input unit 14 input passwords.So control part 11 passes through the content of the data of each project of being inputed and password host interface portion 12 is sent to epigyny device.In addition, implement encryption, it is sent to epigyny device with encrypted state by 14 pairs of passwords of PIN PAD.
In addition, under the situation of credit transaction etc., import and export mouth if client has been placed on the bank note that bank note imports and exports machine 18 to bank note, then bank note imports and exports 18 pairs of bank note of machine and counts, and according to the face amount classification, and is received in the face amount classification keeping safety cabinet.Equally, import and export mouth if client has been placed on the coin that coin imports and exports machine 19 to coin, then coin imports and exports 19 pairs of coins of machine and counts, and according to the face amount classification, and is received in the face amount classification keeping safety cabinet.In addition, under the situation of the transaction of withdrawing the money etc., bank note imports and exports machine 18 and coin and imports and exports machine 19 currency and coins of the specified amount of money is imported and exported mouthful and coin imports and exports the mouth discharge from bank note.And the detailed bill of transaction content has been printed in bill printer 17 distribution.
In addition, transaction system 10 by with the dialogue of epigyny device, carry out a series of actions in such transaction.
Below, the composition data registration action that master key is generated in the action of handling describes.In addition, master key generates action because identical with the represented action of the process flow diagram of Fig. 3 of explanation in " background technology ", so the omission explanation.
Fig. 5 is the process flow diagram of the action of the composition data registration in expression the 1st embodiment of the present invention.
In order to make PIN PAD 14 become operable state, when this PIN PAD 14 being connected with transaction system 10 or being installed in wherein, form the numeric string of data that is form data in order to generate the necessary a plurality of keys that are called as of master key to PIN PAD 14 inputs and registration.When PIN PAD 14 is dispatched from the factory, the quantity of forming data, the independent password that is used to register each composition data, each value of checking of forming the value of data and being used to check the input of each composition data have been specified, and, issue each operator of above-mentioned transaction system 10 the envelope that the paper of having printed these data is housed.
At this moment, in order to keep confidentiality, the composition data are divided into a plurality of in advance, each that cut apart formed data issue different operators respectively.And if begun the generation of master key, then each operator imports resulting separately composition data at different time operator password input units 14, carries out and forms the data registration.In addition, about whole composition data registrations, its order of forming the data registration is identical.In addition, the action of data registration is progressively formed in the guidance that each operator obtains according to enroll program in control part 11.
And if begun the registration of composition data, then at first, the operator forms the input of data input processing with password by the input operation part of operator password input unit 14.Handle under the situation with the input of password failing correctly to form the data input, import repeatedly, till input is correct.And, handle the input OK that uses password if form the data input, then, in the display frame of LCD15, form the data input and induce demonstration, to supervise the input of forming data.
Next, the operator forms the input of data by the input operation part of operator password input unit 14.So above-mentioned PIN PAD 14 is according to the composition data of being imported, by calculating, produced nucleus is to value.Then, in the display frame of above-mentioned LCD15, show the value of checking that is generated.Simultaneously, in the display frame of above-mentioned LCD15, show " if correctly, please press the affirmation button; If mistake please be pressed the corrigendum button." wait the information of supervising the operator to confirm.
So the aforesaid operations person compares the shown value of checking and the value of checking that obtains in advance, to being that the situation of unanimity is confirmed.That is, carry out Visual Confirmation based on operator's the value of checking.
And the operator is under the situation of unanimity confirming as, and presses the affirmation button that input operation part had of PIN PAD 14.Not confirming as is under the situation of unanimity, presses the corrigendum button that input operation part had of PIN PAD 14.That is the push of confirming or correcting.Here, under the situation of the push that has carried out corrigendum, form the data input once more and induce demonstration, later repeatedly action.
In addition, under the situation of the push that has carried out confirming, PIN PAD 14 is in order to confirm correctly to have carried out the situation of the affirmation of the value of checking, and shows the wrong value of checking, the value of checking that for example to be beguine generate according to the composition data of being imported value of checking of value of 1 less in the display frame of LCD15.Simultaneously, in the display frame of above-mentioned LCD15, show " to be to confirm again, if correctly please press the affirmation button; If mistake please be pressed the corrigendum button." wait the information of supervising the operator to confirm again.
So the aforesaid operations person compares the shown data of checking once more with the data of checking that obtain in advance, to being that consistent situation is confirmed.That is, carry out Visual Confirmation once more based on operator's the value of checking.
And, the operator is under the situation of unanimity confirming as, carrying out the push of the affirmation button that input operation part had of PIN PAD 14, is under the situation of unanimity not confirming as, and carries out the push of the corrigendum button that input operation part had of PIN PAD 14.That is the push of confirming once more or correcting.In addition, because the current deliberately value of checking of mistake that shows, so, under the situation of the push that has carried out confirming, in the display frame of above-mentioned LCD15, form the data input and induce demonstration, wherein comprise and " please re-enter the composition data once more." wait the information of supervising the operator to form the data input once more, and later repeatedly action.
In addition, under the situation of the push that has carried out corrigendum, in the display frame of above-mentioned LCD15, show the value of checking that is generated, show the value of checking that generates according to the composition data computation of being imported.Simultaneously, in the display frame of above-mentioned LCD15, show " to be to confirm again, if correctly, please press the affirmation button; If mistake please be pressed the corrigendum button." wait the information of supervising the operator to confirm again.
So the aforesaid operations person compares the shown value of checking and the value of checking that obtains in advance once more, to being that the situation of unanimity is confirmed.That is, carry out Visual Confirmation once more based on operator's the value of checking.
And, the operator is under the situation of unanimity confirming as, carrying out the push of the affirmation button that input operation part had of PIN PAD 14, is under the situation of unanimity not confirming as, and carries out the push of the corrigendum button that input operation part had of PIN PAD 14.That is the push of confirming once more or correcting.Here, under the situation of the push that has carried out corrigendum, form the data input once more and induce demonstration, and later repeatedly action.
In addition, under the situation of the push that has carried out confirming, PIN PAD 14 is carried out the registration of the composition data imported, and data are formed in registration.That is,, finished the registration of forming data through an even affirmation of 3 times.Like this, if be through with, then carry out other composition data registrations based on other operators based on 1 operator's composition data registration.
Below, flow process is described.
Step S21 forms data inputs and handles input with password, judges to form the data input to handle input with password be OK, or NG.Forming the input that the data input handles with password is under the situation of OK, enters step S22, is under the situation of NG forming the input that the data input handles with password, forms the input that password is used in data input processing once more.
Step S22 forms the data input and induces demonstration.
Step S23 forms the input of data.
Step S24 shows the value of checking that is generated in the display frame of LCD15.
Step S25 carries out the Visual Confirmation based on operator's the value of checking.
Step S26 judges it is to have carried out the push of confirming, still carried out the push of corrigendum.Under the situation of the push that has carried out confirming, enter step S27, under the situation of the push that has carried out corrigendum, return step S22.
Step S27 shows the wrong value of checking in the display frame of LCD15.
Step S28 carries out the Visual Confirmation based on operator's the value of checking once more.
Step S29 judges it is to have carried out the push of confirming, still carried out the push of corrigendum.Under the situation of the push that has carried out confirming, return step S22, under the situation of the push that has carried out corrigendum, enter step S30.
Step S30 shows the value of checking that is generated in display frame.
Step S31 carries out the Visual Confirmation based on operator's the value of checking once more.
Step S32 judges it is to have carried out the push of confirming, still carried out the push of corrigendum.Under the situation of the push that has carried out confirming, enter step S33, under the situation of the push that has carried out corrigendum, return step S22.
Step S33 forms the registration of data, finishes to form the data registration.
Like this, in the present embodiment, in input and registration when being used to generate the composition data of master key, the repeatedly affirmation of the value of checking.Thus, the registration of wrong composition data can be prevented reliably, and then the generation of wrong master key can be prevented reliably.
Below, the 2nd embodiment of the present invention is described.In addition, for having the structure division identical with the 1st embodiment, the symbol that mark is identical, and omit its explanation.In addition, about action identical and identical effect, also omit explanation with above-mentioned the 1st embodiment.
Fig. 6 is the process flow diagram of the action of the composition data registration in expression the 2nd embodiment of the present invention.
In the present embodiment, because the structure of transaction system 10 is identical with above-mentioned the 1st embodiment, so omit its explanation.In addition, the action when client concludes the business by operation transaction system 10 is also identical with above-mentioned the 1st embodiment, so omit its explanation.And, the action of generate handling about master key, since identical with the action shown in the process flow diagram of Fig. 3 of explanation in " background technology ", so the omission explanation.
In order to make PIN PAD 14 become operable state, when this PIN PAD 14 being connected with transaction system 10 or being assembled in wherein, form the numeric string of data that is form data in order to generate the necessary a plurality of keys that are called as of master key to PIN PAD 14 inputs, and register.When the dispatching from the factory of PIN PAD 14, the quantity of forming data, the independent password that is used to register each composition data, each value of checking of forming the value of data and being used to check the input of each composition data have been specified, and, issue each operator of above-mentioned transaction system 10 the envelope that the paper of having printed these data is housed.
At this moment, in order to keep confidentiality, the composition data are divided into a plurality of in advance, each that cut apart formed data issue different operators respectively.And if begun the generation of master key, then, each operator is at different time operator password input units 14, and composition data are separately issued in input, carry out and form the data registration.In addition, about whole composition data registrations, its order of forming the data registration is identical.In addition, the action of data registration is progressively formed in the guidance that each operator has obtained according to enrolled program in control part 11.
And if begun the registration of composition data, then at first, the operator forms the input of data input processing with password by the input operation part of operator password input unit 14.Handle under the situation with the input of password failing correctly to form the data input, import repeatedly, till input is correct.And, when the input OK that uses password is handled in the input of composition data, in the display frame of LCD15, form the data input and induce demonstration, to supervise the input of forming data.
Next, the operator forms the input of data by the input operation part of operator password input unit 14.So above-mentioned PIN PAD 14 is according to the composition data of being imported, by calculating, produced nucleus is to value.And, in the display frame of above-mentioned LCD15, supervise the value of the checking input of the value of checking that input obtains in advance to induce demonstration.
So, the input of the aforesaid operations person value of checking.At this moment, the input operation part of aforesaid operations person by operator password input unit 14, the value of checking that input obtains in advance, that is, and PIN PAD 14 specified value of checking when dispatching from the factory.
Next, the comparison of PIN PAD 14 values of checking compares the value of checking that generates according to the composition data of being imported and the value of being imported by the operator of checking, and judges whether to be unanimity.
And, be under the consistent situation, PIN PAD 14 is carried out the registration of the composition data imported, finishes to form the data registration.At this moment, in the display frame of LCD15, show and " finished the registration of composition data." and report the information of the situation of forming the data registration of being through with.
In addition, be under the inconsistent situation, PIN PAD 14 has judged whether repeatedly the number of times of regulation.That is, judge the inconsistent whether continuous number of times of stipulating, for example 3 times of the value of checking that the value of checking that generates according to the composition data of being imported and operator are imported.And, repeatedly under the situation of number of times of regulation, do not carry out the registration of the composition data imported, finish to form the data registration.In addition, under the situation of the number of times of not stipulating repeatedly, that is, the value of checking that the value of checking that generates according to the composition data imported and operator are imported inconsistent do not reach under the situation of number of times of regulation, and demonstration " is please imported the composition data once more in the display frame of above-mentioned LCD15." information, and form data inputs once more and induce demonstration, later repeatedly action.
Below, description of flow diagram.
Step S41 forms data inputs and handles input with password, judges to form the data input to handle input with password be OK, or NG.Forming the input that the data input handles with password is under the situation of OK, enters step S42, is under the situation of NG forming the input that the data input handles with password, forms the input that password is used in data input processing once more.
Step S42 forms the data input and induces demonstration.
Step S43 forms the input of data.
Demonstration is induced in the input of the step S44 value of checking.
The input of the step S45 value of checking.
Step S46 judges whether the value of checking is consistent.Under the situation of the value of checking unanimity, enter step S48, under the inconsistent situation of the value of checking, enter step S47.
Step S47 judges the value of checking inconsistent whether repeatedly the number of times of regulation.Under the situation of the number of times of the repeatedly inconsistent regulation of the value of checking, finish to form the data registration, inconsistent not repeatedly under the situation of the number of times of regulation in the value of checking returns step S42.
Step S48 forms the registration of data, finishes to form the data registration.
Like this, in the present embodiment, imported be used to generate the composition data of master key after, input PIN PAD 14 specified value of checking when dispatching from the factory, confirm whether this value of checking is consistent with the value of checking that generates according to the composition data of being imported, be under the inconsistent situation, from re-entering the composition data at first.Thus, the registration of wrong composition data can be prevented reliably, and then the generation of wrong master key can be prevented reliably.
In addition, the present invention can be applicable to such needs such as PIN PAD, IC-card card reader and forms in the terminal of registration of data and password.
In addition, the invention is not restricted to above-mentioned embodiment, can carry out various distortion, and these also belong to scope of the present invention according to dominant ideas of the present invention.

Claims (6)

1. the value of a checking confirmation method is characterized in that,
Be the value of the checking confirmation method that has in the device of cipher input and transaction system,
(a) this cipher input has: the cryptographic processing unit that password is encrypted, according to form data generate the master key generation unit of encrypting needed master key, according to above-mentioned composition data produced nucleus to the value of the checking generation unit of value with import the input operation part of above-mentioned composition data
(b) this transaction system has the display device that shows tutorial message, is connected with epigyny device in the mode that can communicate by letter, and send encrypted password to this epigyny device, and conclude the business,
(c) import under the above-mentioned composition data conditions,, then registering the value of checking according to the above-mentioned composition data generation of importing if repeatedly to have carried out the value of checking that generates according to the composition data imported and the value of checking of generation in advance be the affirmation of consistent situation.
2. the value of checking confirmation method according to claim 1 is characterized in that,
Import under the above-mentioned composition data conditions, if carried out the value of checking to the value of checking that generates according to the composition data imported and generation in advance and be the affirmation of consistent situation, then carrying out after the value of checking to value of checking that generates according to the composition data imported and the mistake that generates in advance is the affirmation of inconsistent situation, carrying out once more the value of checking according to the value of checking of the above-mentioned composition data generation of importing and generation in advance is the affirmation of consistent situation.
3. the value of checking confirmation method is the value of the checking confirmation method that has in the device of cipher input and transaction system, it is characterized in that,
(a) this cipher input has: the cryptographic processing unit that password is encrypted, according to form data generate the master key generation unit of encrypting needed master key, according to above-mentioned composition data produced nucleus to the value of the checking generation unit of value with import the input operation part of above-mentioned composition data
(b) this transaction system has the display device that shows tutorial message, is connected with epigyny device in the mode that can communicate by letter, and send encrypted password to this epigyny device, and conclude the business,
(c) import under the above-mentioned composition data conditions, if generated the value of checking according to the composition data of being imported, then import the value of checking that generates in advance, if the value of checking that generates according to the above-mentioned composition data of importing is consistent with the value of checking that generates in advance, then register the value of checking that generates according to the above-mentioned composition data of importing.
4. the value of checking is confirmed device, it is characterized in that,
Have cipher input and transaction system,
(a) this cipher input has: the cryptographic processing unit that password is encrypted, according to form data generate the master key generation unit of encrypting needed master key, according to above-mentioned composition data produced nucleus to the value of the checking generation unit of value with import the input operation part of above-mentioned composition data
(b) this transaction system has the display device that shows tutorial message, is connected with epigyny device in the mode that can communicate by letter, and send encrypted password to this epigyny device, and conclude the business,
(c) import under the composition data conditions from above-mentioned input operation part, if the value of checking of repeatedly having carried out generating according to the composition data of being imported is consistent situation with the value of checking that generates in advance, then register the value of checking that generates according to the above-mentioned composition data of importing.
5. the value of checking according to claim 4 is confirmed device, it is characterized in that,
Import under the composition data conditions from above-mentioned input operation part, if carried out the value of checking to the value of checking that generates according to the composition data imported and generation in advance and be the affirmation of consistent situation, then carrying out after the value of checking to value of checking that generates according to the composition data imported and the mistake that generates in advance is the affirmation of inconsistent situation, carrying out once more the value of checking according to the value of checking of the above-mentioned composition data generation of importing and generation in advance is the affirmation of consistent situation.
6. the value of checking is confirmed device, it is characterized in that,
Have cipher input and transaction system,
(a) this cipher input has: the cryptographic processing unit that password is encrypted, according to form data generate the master key generation unit of encrypting needed master key, according to above-mentioned composition data produced nucleus to the value of the checking generation unit of value with import the input operation part of above-mentioned composition data
(b) this transaction system has the display device that shows tutorial message, is connected with epigyny device in the mode that can communicate by letter, and send encrypted password to this epigyny device, and conclude the business,
(c) import under the composition data conditions from above-mentioned input operation part, if generated the value of checking according to the composition data of being imported, then import the value of checking that generates in advance from above-mentioned input operation part, if the value of checking that generates according to the above-mentioned composition data of importing is consistent with the value of checking that generates in advance, then register the value of checking that generates according to the above-mentioned composition data of importing.
CN2008102101961A 2007-11-28 2008-09-10 Method and apparatus for determining check value Expired - Fee Related CN101447104B (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
JP2007306830A JP2009130882A (en) 2007-11-28 2007-11-28 Check value confirming method and apparatus
JP2007306830 2007-11-28
JP2007-306830 2007-11-28

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN2011101952624A Division CN102306418A (en) 2007-11-28 2008-09-10 Method and apparatus for determining check value

Publications (2)

Publication Number Publication Date
CN101447104A true CN101447104A (en) 2009-06-03
CN101447104B CN101447104B (en) 2011-11-30

Family

ID=40742767

Family Applications (2)

Application Number Title Priority Date Filing Date
CN2011101952624A Pending CN102306418A (en) 2007-11-28 2008-09-10 Method and apparatus for determining check value
CN2008102101961A Expired - Fee Related CN101447104B (en) 2007-11-28 2008-09-10 Method and apparatus for determining check value

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN2011101952624A Pending CN102306418A (en) 2007-11-28 2008-09-10 Method and apparatus for determining check value

Country Status (4)

Country Link
JP (1) JP2009130882A (en)
KR (1) KR101016584B1 (en)
CN (2) CN102306418A (en)
TW (1) TWI373016B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104052592B (en) * 2011-07-21 2017-08-25 华为技术有限公司 A kind of cipher key backup and moving method and system based on trust computing

Family Cites Families (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2579491B2 (en) * 1987-08-17 1997-02-05 沖電気工業 株式会社 Card issuing method
AU5266596A (en) * 1995-04-21 1996-11-07 Certicom Corp. Method for signature and session key generation
JP3578237B2 (en) * 1995-12-27 2004-10-20 日本信販株式会社 Card validity confirmation system and card validity confirmation method using the system
DE69712881T2 (en) * 1996-03-22 2003-01-09 Activcard Suresnes AN ACCESS CONTROL SYSTEM CONTAINING A CLOCK SYNCHRONIZING DEVICE FOR A FUNCTION
JPH1125233A (en) * 1997-02-07 1999-01-29 Oki America Inc Method and device for ic card
CA2505920A1 (en) * 2002-04-03 2003-10-09 Swivel Secure Limited System and method for secure credit and debit card transactions
JP4102800B2 (en) * 2002-08-16 2008-06-18 富士通株式会社 Transaction terminal apparatus and transaction terminal control method
US6961852B2 (en) * 2003-06-19 2005-11-01 International Business Machines Corporation System and method for authenticating software using hidden intermediate keys
CN100456669C (en) * 2003-09-22 2009-01-28 华为技术有限公司 Method of distributing group secret keys
JP4537772B2 (en) * 2004-06-16 2010-09-08 富士通株式会社 Disk system
KR20060065271A (en) * 2004-12-10 2006-06-14 엘지전자 주식회사 Check method of key input value
US7822200B2 (en) * 2005-03-07 2010-10-26 Microsoft Corporation Method and system for asymmetric key security
CN100531027C (en) * 2005-07-28 2009-08-19 深圳兆日技术有限公司 Key transplanting method based on safety environment
KR20070021644A (en) * 2005-08-19 2007-02-23 노틸러스효성 주식회사 Method for re-input of secret number in ATM
JP2007122417A (en) * 2005-10-28 2007-05-17 Bank Of Tokyo-Mitsubishi Ufj Ltd Information processor, its control method, and program
JP5067125B2 (en) * 2007-11-06 2012-11-07 沖電気工業株式会社 Transaction apparatus and data input method in the transaction apparatus

Also Published As

Publication number Publication date
JP2009130882A (en) 2009-06-11
KR20090055461A (en) 2009-06-02
TWI373016B (en) 2012-09-21
TW200923864A (en) 2009-06-01
KR101016584B1 (en) 2011-02-22
CN102306418A (en) 2012-01-04
CN101447104B (en) 2011-11-30

Similar Documents

Publication Publication Date Title
US5453601A (en) Electronic-monetary system
US20020097715A1 (en) Message format for communicating financial information
US20030120936A1 (en) Encryption of financial information
EP2541478A1 (en) Dynamic electronic money
US20050080731A1 (en) Apparatus for conducting banking transactions including depositing and withdrawal of cash
US20030046234A1 (en) Automatic money receiving and paying machine
JPH11102405A (en) Method of issuing lottery ticket and converting it into money in computer network
JP4807019B2 (en) Automatic transaction system, automatic transaction apparatus, information management server, and automatic transaction method
CN101673443B (en) Network cash register system and realization method thereof
KR100968393B1 (en) Transaction apparatus and data input method in the transaction apparatus
CN101447104B (en) Method and apparatus for determining check value
JP4999288B2 (en) Automatic transaction equipment
CN101540077B (en) Terminal and automatic trading device
CN101430811B (en) Trade apparatus and cipher processing method of the trade apparatus
CN101552670B (en) A password input device and a modification method of the encryption function of the password input device
KR20110010948A (en) Store automated teller machine, system of store automated teller machine and method thereof
CN101520915B (en) Key generating apparatus and method
CN101669150A (en) The system and method that is used for a kind of game terminal of providing with funds to account
JP5061801B2 (en) Automatic transaction device authentication switching system
JP2003208516A (en) Transaction information providing method and transaction information providing system
TWM583094U (en) Foreign currency exchange system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20111130

Termination date: 20210910

CF01 Termination of patent right due to non-payment of annual fee