The method of encryption apparatus and management thereof and encryption and decryption
Technical field
The present invention relates to scrambler field, especially relate to the single password device or the password display card that include a plurality of dynamic cipher devices.
Background technology
In recent years network coverage popularity rate fast lifting, the application of network mail, telecommunication network login, authenticating user identification is increasingly important, and it is essential that scrambler or digital authenticating device become.Network trading rises rapidly simultaneously, impels the Internet bank open post, and the common people must use bank's debit card and Internet bank's scrambler or digital authenticating device simultaneously, to carry out safe network trading.There are its specific scrambler or digital authenticating device in each Huo Meijia bank of unit, and scrambler or not intercommunication of authenticator, so the common people need carry scrambler or the authenticator of many correspondences.But scrambler or authenticator have again different shapes and size, it is also not too convenient to carry.And some scrambler need be inserted into the interface of PC, easily forget, and do not take away with oneself, and then lose or be stolen, cause the leak in safety.Some authenticator need to be installed special driving journey and show, and this driving journey shows and can choose PC, is difficult to every machine successful installation.The authenticator of this class can only operate again on the specific PC that has driving journey to show, cannot use whenever and wherever possible.Moreover too many scrambler or authenticator and debit card, also usually cause user in a hurry, to match mistake, cause the failure of network trading.These are all the problems that the current common people often run into.
In the past few years, many kinds of electronical display cards have been there are, to solve the problem of various scrambler Portabilities.VISA debit card, Master debit card and other forms of card are the examples of minority electrons display card.But these electronical display cards are all deflection application-specific objects, or are only with some specific function, and it also needs special chip and manufacture method, so high expensive.This class display card, the function of scrambler, is built card inside in, can on the display screen of card, directly show dynamic password, and because frivolous, can as credit card, directly put leather wallet into, has solved the problem that scrambler is difficult to carry.But these password display cards, can only produce the password of one group of particular sequence, so a password display card can only be applicable to an exclusive specific network account again.When user has a plurality of accounts, he still needs to carry a plurality of password display cards, causes the inconvenience of carrying, and need to avoid taking not right display card while using, in order to avoid cannot Website login.These inconvenience, relatively also cannot reach consumer, and high degree of safety, convenience and low cost are all needed to the requirement having concurrently, and then also cannot popularize consumers in general's needs.
Fig. 1 shows the example of the internal structure of traditional dynamic cipher device or dynamic password display card.This scrambler or password display card generally have its own specific dynamic password to produce key (K), and password generation counter (C), and input K and C, to dynamic password algorithm device, just can obtain one group of dynamic password, are then presented on display screen.K and C change with user, can not reuse at other dynamic cipher devices or dynamic password display card, and this has ensured the fail safe of scrambler or password display card, but relatively also can only allow a device or a card use alone to people's one account.So the many accounts of a people, need a plurality of scramblers or password display card.
Summary of the invention
The object of the invention is, functions such as a plurality of digital authenticating devices and dynamic cipher devices, to be integrated together in same electronical display card or electronics device.It provides and has been convenient for carrying, avoided to lose, avoid stolen and avoid the advantages such as scrambler mistake pairing.Be not subject to the restriction of specific USB interface and driving formula, can on any PC, use, improve widely the convenience of using whenever and wherever possible simultaneously.
For achieving the above object, the invention provides a kind of encryption apparatus, comprising:
Confidential information holder, for storing the corresponding a plurality of confidential information groups of a plurality of dynamic cipher devices;
Selector, for selecting a specific scrambler or authenticator from a plurality of dynamic cipher devices;
Confidential information management system, for sending to dynamic password algorithm device by the corresponding specific confidential information group of the dynamic cipher device of selection;
Dynamic password algorithm device, for calculating dynamic password according to the confidential information batch total receiving.
Wherein confidential information group comprises that dynamic password key and password produce counter.The corresponding confidential information group of each dynamic cipher device.
Further, single password display card or scrambler can also comprise display screen, for showing the sign of selected scrambler, and can also be for showing the dynamic password calculating.
In order to realize foregoing invention object, the present invention also provides a kind of method of confidential information management and encryption and decryption, comprises the following steps:
To confidential information group encryption;
Confidential information group after encrypting is stored into the assigned address of the corresponding a plurality of confidential information group internal memories of a plurality of dynamic cipher devices;
From a plurality of dynamic cipher devices, select a desired specific dynamic scrambler;
By the corresponding confidential information group deciphering of the dynamic cipher device of selecting;
Confidential information group after deciphering is sent to dynamic password algorithm device;
According to the confidential information batch total receiving, calculate dynamic password;
The confidential information group information in temporary memory is stayed in elimination.
Wherein confidential information group comprises that dynamic password key and password produce counter.The corresponding confidential information group of each dynamic cipher device.
The method of described confidential information management and encryption and decryption may further include step: the sign that shows selected scrambler.The method of described confidential information management and encryption and decryption can further include step: show the dynamic password calculating.
Accompanying drawing explanation
Advantage of the present invention accompanying drawing below combination obviously and is easily understood becoming the description of embodiment, wherein:
Fig. 1 shows the internal structure of traditional dynamic cipher device or dynamic password display card;
Fig. 2 shows according to the single password display card that includes a plurality of dynamic cipher devices of embodiment of the present invention or the internal structure of scrambler;
Fig. 3 shows according to the storage administrating system of the scrambler confidential information stocking system of embodiment of the present invention;
Fig. 4 shows the mode of operation of organizing confidential information according to the storage of embodiment of the present invention more;
Fig. 5 shows according to the single password display card that includes a plurality of dynamic cipher devices of embodiment of the present invention or the mode of operation of scrambler.
Embodiment
Fig. 1 shows the internal structure of traditional dynamic cipher device or dynamic password display card.This scrambler or password display card, except having common dynamic password algorithm device, display screen, more have the confidential information group of its specific K and C.That is to say that each confidential information group can represent a dynamic cipher device or password display card, and the different confidential information group of many groups just can represent a plurality of dynamic cipher devices or password display card.
Fig. 2 shows according to the single password display card that includes a plurality of dynamic cipher devices of the embodiment of the present invention or the internal structure of scrambler.Scrambler of the present invention or password display card, except having dynamic password algorithm device, display screen, more have its special dynamic password key (K) and password to produce management system and the stocking system of counter (C).Each dynamic cipher device or password display card, by each different confidential information group (K
i) and (C
i) representative, and represent and in encryption, be directly stored in numerous confidential information groups (Fig. 3) of a plurality of dynamic cipher devices or password display card (scrambler 1 to scrambler n) in stocking system afterwards.
The storage method of numerous confidential information groups as shown in Figure 4.Scrambler manager (enterprise, bank and units concerned), via stocking system management platform, first selectes dynamic cipher device or the password display card (scrambler i) that will set, and display screen has also shown selected scrambler i, is used as to confirm.Manager is thereupon by corresponding confidential information group (K
i) and (C
i), be input in stocking system.Stocking system also has its safe encryption and decryption functions, to protect these to be stored in the safety of interior confidential information group.
Using method of the present invention as shown in Figure 5.User, after setting up password device safely, then chooses and wants the scrambler i that uses, and display screen has shown selected scrambler i, is used as to confirm.Stocking system is thereupon by corresponding confidential information group (K
i) and (C
i) deciphering, via selector, be sent to dynamic password algorithm device, and automatically calculate dynamic password, be directly presented on display screen, for user further.
When user completes after the use of specific cryptosystem device, confidential information management system will be eliminated the confidential information group of staying in buffer memory, to guarantee that confidential information group can not leak outside.
The present invention can overlap and be used in Verification System platform existing, that safety certification is crossed, so can reach advantage safe, convenient, low amortized cost.Because use existing security certification system platform, so can change existing soft and hardware system, just directly use safely again, this can not increase under operation cost, simultaneously to user provide higher safely, facilitate value added service.
In addition; although adopt above-described embodiment, principle of the present invention and embodiment have been described; but under above-mentioned instruction of the present invention; those skilled in the art can carry out various improvement and distortion on the basis of above-described embodiment, and these improvement or distortion drop in protection scope of the present invention.It will be understood by those skilled in the art that specific descriptions are above in order to explain object of the present invention, not for limiting the present invention.