A kind of system and method for preventing cheating of IC card oiling machine
Technical field
The present invention relates to IC-card fuel charger application, relate in particular to the system and method for a kind of preventing cheating of IC card oiling machine of design.
Background technology
Current, owing to characteristics such as IC-card are convenient for carrying, convenience is settled accounts, the data storage security is reliable, its application is more and more universal, such as grease card, Bus Card card, social security card, fiscard etc.
The chief component of IC-card fuel loading system is: (1) hardware includes: IC-card fuel charger (also claiming the card-machine interaction fuel charger), professional site computing machine (client), oiling IC-card read write line, oiling IC-card, the network facilities, application system backstage and database (backstage), cipher key calculation equipment (encryption equipment) etc.; (2) software and function have: professional site client application software, mainly finish refuel the basic information management such as the IC-card user opens an account, refuel IC-card purse transaction (as supplement with money, consumption etc.), card and report the loss, block cancellation; Business datum is inquired about, is gathered, statistics, report printing etc.; Mainly process from the IC-card transaction request of client and loopback result on the application system backstage, as information inquiring request, IC-card wallet supplement with money, the cipher key calculation of consumption etc. and checking etc., and carry out respective record at background data base and process.
For a long time, the fuel charger cheating is a large chronic illness of petroleum and petrochemical industry, the IC-card fuel charger is no exception, this serious infringement consumer's interests, upset market order, also there is negative effect in the Petroleum ﹠ Petrochemical Enterprises reputation, therefore, effectively prevents, avoid the fuel charger cheating to have important social effect.
Through knowing IC-card fuel charger principle and actual cheating situation analysis, fraudulent means mainly is that the cheating that " to relate to function of measuring " independent or comprehensive is processed to parts such as Fuel-filling metering unit, scrambler, the Design of Tax Controled Device, oil machine IC-card POS, amount of money display boards, to reach the cheating purpose.As seen, prevent focus on " running metering units well " of cheating, as long as the metering settlement data of " metering units " output is real, conform to the oil product value that the consumer obtains, the consumer is by this payment (withholing in grease card), just can guarantee the fairness of transaction, safeguard the separately interests of consumer and enterprise.
Summary of the invention
The objective of the invention is to propose a kind of system and method for preventing cheating of IC card oiling machine.IC-card fuel charger by this system and method realization, greatly improved anti-cheating ability, for Oil Product Marketing business and the inner management of Oil Product Marketing enterprise provides effective means, realize " obviate ", safeguarded effectively enterprise and consumer's legitimate rights and interests.
Core of the present invention is, runs " metering units " of fuel charger equipment well, introduced the security mechanism of checking " metering units " identity at system, and IC-card, PASM, metering units etc. all possess cryptographic algorithm and key storage function.
The system of a kind of preventing cheating of IC card oiling machine of the present invention, described system comprises: IC-card fuel charger and management controller, the action that the control fuel charger refuels;
Professional site computer client: finish refuel the basic information management such as the IC-card user opens an account, refuel that IC-card purse transaction, card report the loss, block that cancellation, business datum are inquired about, gathered, statistics, report printing etc.;
The oiling IC-card;
The network facilities: described professional site computer client communicates by the network facilities and application system backstage;
Application system backstage: process operation IC-card and other transaction request and loopback result from professional site computer client, and carry out respective record at background data base and process;
It is characterized in that: described IC-card fuel charger, comprise that also a security authentication module is PSAM, described PSAM possesses random number generation module and random number verification module;
Behind oiling IC-card insertion fuel charger IC-card POS draw-in groove, before the startup refueling operation, described PSAM produces a random number, and IC-card POS reads this random number and is sent to the Fuel-filling metering unit of IC-card fuel charger, is calculated by metering units and produces identifying code;
Described PSAM verifies the identifying code that metering units generates, and according to success or unsuccessfully send status code to IC-card POS; And the service of opening or refusing to open authentication oiling IC-card according to the result, with the action of matching management controller control fuel charger oiling.
Further, in the such scheme, described PASM also comprises the authentication failed threshold module, described module controls is before the authentication failed number of times reaches threshold value, allow to open authentication and refuel the service of IC-card, allow refueling operation, and carry out " authentication failed alarm number of times record ", and send alarm number of times record to the management controller, the action that the control fuel charger refuels by IC-card POS.
Further, in the such scheme, described Fuel-filling metering unit comprises being the realization fueling transaction on the IC-card fuel charger, relates to the functional part of generation, calculating volume read-out and settlement amounts.
Further, in the such scheme, described PSAM card is supported DES, 3DES cryptographic algorithm.
Further, in the such scheme, described oiling IC-card is supported DES, 3DES cryptographic algorithm.
The method of a kind of preventing cheating of IC card oiling machine of the present invention, step is as follows:
(1) user will refuel IC-card and insert fuel charger IC-card POS, IC-card POS checking grease card legitimacy, read the grease card wallet balances, and condition satisfies, and continues; Otherwise prompting is withdrawed from;
(2) IC-card POS reads the random number that PSAM produces;
(3) IC-card POS sends to metering units with random number, and metering units is with the secret key encryption random number of storage in it, and the identifying code loopback of generation is to IC-card POS;
(4) IC-card POS sends to PSAM with identifying code, the inner authentication operation of carrying out identifying code of PSAM, and authentication success then returns " being proved to be successful " status code to IC-card POS, continues; Otherwise, return " authentication failed " status code to IC-card POS, IC-card POS prompting " the metering checking is unusual ", warning backed off after random.
(5) oil machine equipment is waited for " oil gun blunderbuss " signal;
(6) blunderbuss, the success of IC-card POS ash lock grease card continue; Otherwise, the locking oil pump, warning is withdrawed from;
(7) start oil pump, oil product injects fuel tank;
(8) oil pump stops, and " metering units " calculates and produce the settlement amounts data to IC-card POS, and IC-card POS operation grease card is withholdd and separated ash, and operation is finished to point out to refuel and finished, pulls out card.
Further, in the technique scheme, step (4) can further include: PASM also comprises the authentication failed threshold step, before being controlled at the authentication failed number of times and reaching threshold value, allow to open authentication and refuel the service of IC-card, allow refueling operation, and carry out " authentication failed alarm number of times record ", and send alarm number of times record to the management controller, the action that the control fuel charger refuels by IC-card POS.
The invention has the advantages that the IC-card fuel charger of realizing by this system and method, greatly improved anti-cheating ability, for Oil Product Marketing business and the inner management of Oil Product Marketing enterprise provides effective means, realized " obviate ", the legitimate rights and interests of consumer and enterprise have been safeguarded effectively, for ensureing petroleum and petrochemical industry Oil Product Marketing normal market order and safety in production, building a harmonious society and make positive contribution.
Embodiment
Inventive point of the present invention is: introduced module PASM and mechanism that metering units is authenticated, so that the monitoring that any action of metering units all places authentication module in the fuel charger, thus the cheating in can the effectively preventing refueling process.
System of the present invention mainly comprises IC-card fuel charger and management controller, and unquestionable, the IC-card fuel charger has the IC-card POS draw-in groove that IC-card is carried out read functions, and the management controller then is responsible for the action that the control fuel charger refuels;
Professional site computer client: finish refuel the basic information management such as the IC-card user opens an account, refuel that IC-card purse transaction, card report the loss, block that cancellation, business datum are inquired about, gathered, statistics, report printing etc.;
The oiling IC-card possesses cryptographic algorithm and key storage function.
The network facilities: described professional site computer client communicates by the network facilities and application system backstage;
Application system backstage: process operation IC-card and other transaction request and loopback result from professional site computer client, and carry out respective record at background data base and process;
Described IC-card fuel charger comprises that also a security authentication module is PSAM, and described PSAM possesses random number generation module and random number verification module;
Behind oiling IC-card insertion fuel charger IC-card POS draw-in groove, before the startup refueling operation, described PSAM produces a random number, and IC-card POS reads this random number and is sent to the Fuel-filling metering unit of IC-card fuel charger, is calculated by metering units and produces identifying code;
Described PSAM verifies the identifying code that metering units generates, and according to success or unsuccessfully send status code to IC-card POS; And the service of opening or refusing to open authentication oiling IC-card according to the result, with the action of matching management controller control fuel charger oiling.
Fuel-filling metering unit in the scheme comprises being the realization fueling transaction on the IC-card fuel charger, relates to any functional part of generation, calculating volume read-out and settlement amounts.PSAM preferably supports DES, 3DES cryptographic algorithm oiling IC-card preferably to support DES, 3DES cryptographic algorithm.
In the such scheme, PASM can also comprise the authentication failed threshold module, described module controls is before the authentication failed number of times reaches threshold value, allow to open the service of authentication oiling IC-card, allow refueling operation, and carry out " authentication failed alarm number of times record ", and send alarm number of times record to the management controller by IC-card POS, the action that the control fuel charger refuels.
The method of a kind of preventing cheating of IC card oiling machine of the present invention, step is as follows:
(1) user will refuel IC-card and insert fuel charger IC-card POS, IC-card POS checking grease card legitimacy, read the grease card wallet balances, and condition satisfies, and continues; Otherwise prompting is withdrawed from;
(2) IC-card POS reads the random number that PSAM produces;
(3) IC-card POS sends to metering units with random number, and metering units is with the secret key encryption random number of storage in it, and the identifying code loopback of generation is to IC-card POS;
(4) IC-card POS sends to PSAM with identifying code, the inner authentication operation of carrying out identifying code of PSAM, and authentication success then returns " being proved to be successful " status code to IC-card POS, continues; Otherwise, return " authentication failed " status code to IC-card POS, IC-card POS prompting " the metering checking is unusual ", warning backed off after random.
(5) oil machine equipment is waited for " oil gun blunderbuss " signal;
(6) blunderbuss, the success of IC-card POS ash lock grease card continue; Otherwise, the locking oil pump, warning is withdrawed from;
(7) start oil pump, oil product injects fuel tank;
(8) oil pump stops, and " metering units " calculates and produce the settlement amounts data to IC-card POS, and IC-card POS operation grease card is withholdd and separated ash, and operation is finished to point out to refuel and finished, pulls out card.
Further, in the technique scheme, step (4) can further include: PASM also comprises the authentication failed threshold step, before being controlled at the authentication failed number of times and reaching threshold value, allow to open authentication and refuel the service of IC-card, allow refueling operation, and carry out " authentication failed alarm number of times record ", and send alarm number of times record to the management controller, the action that the control fuel charger refuels by IC-card POS.