CN104092547A - Method for achieving electronic password anti-counterfeit label - Google Patents
Method for achieving electronic password anti-counterfeit label Download PDFInfo
- Publication number
- CN104092547A CN104092547A CN201410331135.6A CN201410331135A CN104092547A CN 104092547 A CN104092547 A CN 104092547A CN 201410331135 A CN201410331135 A CN 201410331135A CN 104092547 A CN104092547 A CN 104092547A
- Authority
- CN
- China
- Prior art keywords
- shield
- enterprise
- false proof
- root
- cloud
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to a method for achieving an electronic password anti-counterfeit label. The method comprises the following specific steps that (1) a cloud shield is set and four data which cannot be modified are stored in the cloud shield when the cloud shield leaves the factory; (2) an enterprise root shield is produced through the cloud shield and the enterprise root shield is used for producing the anti-counterfeit label of an appointed enterprise; (3) an anti-counterfeit shield a of the enterprise is produced through the enterprise root shield, the anti-counterfeit label a is signed, and information is written into the anti-counterfeit shield a; (4) detection is conducted and whether the anti-counterfeit shield a is counterfeited or not is verified. The method has the advantages that the asymmetric key encryption algorithm is used for resisting counterfeiting, the asymmetric key encryption algorithm comprises but is not limited to SM2 and RAS, and therefore counterfeiting resistance is achieved and counterfeiting cannot be achieved; data reading and writing are conducted on the data in a non-contact mode, the non-contact mode comprises but is not limited to NFC, and the anti-counterfeit label is suitable for high-value objects.
Description
Technical field
The present invention relates to antifalsification label field, is mainly a kind of implementation method of electronic cipher antifalsification label.
Background technology
Chinese Patent Application No.: 201110054471.7 disclose a kind of interactive anti-counterfeit authentication method and intelligent anti-counterfeiting label, by antifalsification label, fake certification equipment and anti-counterfeit server, formed, antifalsification label comprises the microprocessor unit that can carry out fake certification logic, with anti-counterfeit server, under fake certification equipment is assisted, carry out the interactive mode checking based on password and One-way encryption algorithm, carry out cryptosync and renewal simultaneously.A kind of intelligent anti-counterfeiting label that is applicable to described interactive anti-counterfeit authentication method, comprise and there is false proof logic, adopt the easily microprocessor unit of ruining property encapsulation, the cassette plug that connects the memory card interface standard that meets the definition of SD association by flexible attachment components, by cassette plug, connect fake certification equipment, by fake certification equipment, power and carry out alternately with fake certification equipment in the mode of simulation extension storage card or SDIO equipment.The deficiency of its method and system is: when interactive verification msg, data are easily forged.
Summary of the invention
The object of the invention is to overcome the deficiency that prior art exists, and a kind of implementation method of electronic cipher antifalsification label is provided.
The object of the invention is to complete by following technical solution.The implementation method of this electronic cipher antifalsification label, concrete steps are as follows:
(1), set cloud shield, make each cloud shield when dispatching from the factory cloud shield inner preserve four neither can Update Table, A, root public key PKr: root public key PKr and root private key SKr only have a pair of forever; B, initial key are to SK0/PK0: the initial key of each cloud shield is to being random generation, and wherein SK0 is initial private key, and PK0 is initial PKI; C, cloud shield ID: the ID of each cloud shield is different; D, the initial PKI SKr (PK0) being signed by root private key SKr;
(2), adopt Yun Dun manufacturing enterprise root shield, enterprise's root shield to be used for producing the antifalsification label of specifying enterprise: A, first verifying whether enterprise's root shield is legal cloud shield; B, verify legal Hou enterprise root shield the inside stochastic production Yi Ge enterprise key pair: PK enterprise/SK enterprise, this enterprise's key is to being kept at enterprise's root shield the inside, and private key SK looks forward to deriving; C, enterprise's root shield are used for producing the antifalsification label of specifying enterprise;
(3), adopt enterprise's root shield to produce the false proof shield a of this enterprise, give antifalsification label shield a signature, and writing information: A, first verify whether enterprise's root shield and false proof shield a to be produced are legal cloud shield; B, in false proof shield a the false proof key pair of stochastic production: SKa/PKa, then with enterprise's root shield, the PKI of false proof shield a is signed: SK looks forward to (PKa); C, PK enterprise, SK enterprise (PKa) are all written to false proof shield a the inside; D, write associated production information, and sign with SKa;
(4), detect, verify whether false proof shield a forges.
In step (4), in Authentication devices, contain two PKI: PKr, PK enterprises, read the information of false proof shield a: SKr (PK0), and import Authentication devices into; The legitimacy of root public key PKr decryption verification PK0 for Authentication devices; Authentication devices produces random number x, to false proof shield a input: PK0 (x); False proof shield a, by its inner SK0, decrypts x; Authentication devices checks that whether random number is consistent, unanimously shows that false proof shield a is legal cloud shield.
In step (4), by NFC, read the information of false proof shield a: SK enterprise (PKa), and import Authentication devices into; The legitimacy of the decryption verification PKa of the PKI PK of enterprise enterprise for Authentication devices; Authentication devices produces random number y, inputs: PK looks forward to (y) to false proof shield a; False proof shield a looks forward to by its inner SK, decrypts y, and Authentication devices checks that whether random number is consistent, unanimously shows the legal false proof shield of false proof shield a Wei Gai enterprise.
Beneficial effect of the present invention is: adopt asymmetric secret key cryptographic algorithm (including but not limited to SM2, RAS) to carry out false proof, and to reach false proof, the object that cannot forge; Its data are carried out reading and writing data by noncontact mode (including but not limited to NFC), and this antifalsification label is applicable to high-value items.
Accompanying drawing explanation
Fig. 1 is structural representation of the present invention;
Embodiment
Below in conjunction with accompanying drawing, the present invention is done to detailed introduction:
As shown in Figure 1, the implementation method of this electronic cipher antifalsification label, concrete steps are as follows:
(1), set cloud shield, make each cloud shield when dispatching from the factory cloud shield inner preserve four neither can Update Table, A, root public key PKr: root public key PKr and root private key SKr only have a pair of forever; B, initial key are to SK0/PK0: the initial key of each cloud shield is to being random generation, and wherein SK0 is initial private key, and PK0 is initial PKI; C, cloud shield ID: the ID of each cloud shield is different; D, the initial PKI SKr (PK0) being signed by root private key SKr; Guarantee cloud shield legitimacy and cannot be forged.
(2), adopt Yun Dun manufacturing enterprise root shield, enterprise's root shield to be used for producing the antifalsification label of specifying enterprise: A, first verifying whether enterprise's root shield is legal cloud shield; B, verify legal Hou enterprise root shield the inside stochastic production Yi Ge enterprise key pair: PK enterprise/SK enterprise, this enterprise's key is to being kept at enterprise's root shield the inside, and private key SK looks forward to deriving; C, enterprise's root shield are used for producing the antifalsification label of specifying enterprise;
(3), adopt enterprise's root shield to produce the false proof shield a of this enterprise, give antifalsification label shield a signature, and writing information: A, first verify whether enterprise's root shield and false proof shield a to be produced are legal cloud shield; B, in false proof shield a the false proof key pair of stochastic production: SKa/PKa, then with enterprise's root shield, the PKI of false proof shield a is signed: SK looks forward to (PKa); C, PK enterprise, SK enterprise (PKa) are all written to false proof shield a the inside, guarantee thus the Pka of false proof shield a, cannot be forged; D, write associated production information, and sign with SKa;
(4), detect, verify whether false proof shield a forges.Because SKr and SK enterprise, be all the random key pair generating, and be only kept in hardware, adulterator cannot obtain.Thereby guarantee that SKr (PK0), SK enterprise (PKa) two data cannot be forged.
By the above-mentioned data characteristic that cannot forge, verify whether a forges: in Authentication devices, contain two PKI: PKr, PK enterprises, read the information of false proof shield a: SKr (PK0), and import Authentication devices into; The legitimacy of root public key PKr decryption verification PK0 for Authentication devices; Authentication devices produces random number x, to false proof shield a input: PK0 (x); False proof shield a, by its inner SK0, decrypts x; Authentication devices checks that whether random number is consistent, unanimously shows that false proof shield a is legal cloud shield.Similarly, by NFC, read the information of false proof shield a: SK enterprise (PKa), and import Authentication devices into; The legitimacy of the decryption verification PKa of the PKI PK of enterprise enterprise for Authentication devices; Authentication devices produces random number y, inputs: PK looks forward to (y) to false proof shield a; False proof shield a looks forward to by its inner SK, decrypts y, and Authentication devices checks that whether random number is consistent, unanimously shows the legal false proof shield of false proof shield a Wei Gai enterprise.
Above-mentioned electronic cipher antifalsification label comprises following part: false proof shield a: a kind of passive hardware enciphering and deciphering module with special COS.The data of false proof shield a the inside can be read and write, but guarantee to delete and to revise after writing.All private keys of cloud shield the inside cannot be derived.Cloud shield adopts rivest, shamir, adelman.Data interactive mode: adopt noncontact mode.
Illustrate: above-mentioned cloud shield refers to the U shield that includes cryptographic algorithm.
The present invention is not limited to above-mentioned execution mode, no matter do any variation in its shape or material formation, every employing structural design provided by the present invention, is all a kind of distortion of the present invention, all should think within protection range of the present invention.
Claims (3)
1. an implementation method for electronic cipher antifalsification label, is characterized in that: concrete steps are as follows:
(1), set cloud shield, make each cloud shield when dispatching from the factory cloud shield inner preserve four neither can Update Table, A, root public key PKr: root public key PKr and root private key SKr only have a pair of forever; B, initial key are to SK0/PK0: the initial key of each cloud shield is to being random generation, and wherein SK0 is initial private key, and PK0 is initial PKI; C, cloud shield ID: the ID of each cloud shield is different; D, the initial PKI SKr (PK0) being signed by root private key SKr;
(2), adopt Yun Dun manufacturing enterprise root shield, enterprise's root shield to be used for producing the antifalsification label of specifying enterprise: A, first verifying whether enterprise's root shield is legal cloud shield; B, verify legal Hou enterprise root shield the inside stochastic production Yi Ge enterprise key pair: PK enterprise/SK enterprise, this enterprise's key is to being kept at enterprise's root shield the inside, and private key SK looks forward to deriving; C, enterprise's root shield are used for producing the antifalsification label of specifying enterprise;
(3), adopt enterprise's root shield to produce the false proof shield a of this enterprise, give antifalsification label shield a signature, and writing information: A, first verify whether enterprise's root shield and false proof shield a to be produced are legal cloud shield; B, in false proof shield a the false proof key pair of stochastic production: SKa/PKa, then with enterprise's root shield, the PKI of false proof shield a is signed: SK looks forward to (PKa); C, PK enterprise, SK enterprise (PKa) are all written to false proof shield a the inside; D, write associated production information, and sign with SKa;
(4), detect, verify whether false proof shield a forges.
2. the implementation method of electronic cipher antifalsification label according to claim 1, it is characterized in that: in step (4), in Authentication devices, contain two PKI: PKr, PK enterprises, read the information of false proof shield a: SKr (PK0), and import Authentication devices into; The legitimacy of root public key PKr decryption verification PK0 for Authentication devices; Authentication devices produces random number x, to false proof shield a input: PK0 (x); False proof shield a, by its inner SK0, decrypts x; Authentication devices checks that whether random number is consistent, unanimously shows that false proof shield a is legal cloud shield.
3. the implementation method of electronic cipher antifalsification label according to claim 1, is characterized in that: in step (4), read the information of false proof shield a: SK enterprise (PKa), and import Authentication devices into by NFC; The legitimacy of the decryption verification PKa of the PKI PK of enterprise enterprise for Authentication devices; Authentication devices produces random number y, inputs: PK looks forward to (y) to false proof shield a; False proof shield a looks forward to by its inner SK, decrypts y, and Authentication devices checks that whether random number is consistent, unanimously shows the legal false proof shield of false proof shield a Wei Gai enterprise.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410331135.6A CN104092547B (en) | 2014-07-11 | 2014-07-11 | A kind of implementation method of electronic cipher antifalsification label |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410331135.6A CN104092547B (en) | 2014-07-11 | 2014-07-11 | A kind of implementation method of electronic cipher antifalsification label |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104092547A true CN104092547A (en) | 2014-10-08 |
| CN104092547B CN104092547B (en) | 2017-09-26 |
Family
ID=51640229
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410331135.6A Active CN104092547B (en) | 2014-07-11 | 2014-07-11 | A kind of implementation method of electronic cipher antifalsification label |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104092547B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108492208A (en) * | 2018-03-25 | 2018-09-04 | 四川深蓝果实科技有限公司 | A kind of antifalsification label production method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070057768A1 (en) * | 2005-09-13 | 2007-03-15 | Nec (China) Co., Ltd. | Radio frequency identification system and method |
| CN102663591A (en) * | 2012-03-19 | 2012-09-12 | 樊俊锋 | Product anti-counterfeiting method and system based on electronic tag |
-
2014
- 2014-07-11 CN CN201410331135.6A patent/CN104092547B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070057768A1 (en) * | 2005-09-13 | 2007-03-15 | Nec (China) Co., Ltd. | Radio frequency identification system and method |
| CN102663591A (en) * | 2012-03-19 | 2012-09-12 | 樊俊锋 | Product anti-counterfeiting method and system based on electronic tag |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108492208A (en) * | 2018-03-25 | 2018-09-04 | 四川深蓝果实科技有限公司 | A kind of antifalsification label production method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104092547B (en) | 2017-09-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101369306B (en) | Electronic label security system | |
| CN103473592B (en) | A kind of label off-line authenticating method and device based on CPK system | |
| CN103413159B (en) | A kind of RFID electronic certificate off-line false proof realization method and system of Jianzhen based on CPK | |
| CN102084313A (en) | Systems and method for data security | |
| CN101807994B (en) | Method and system for application data transmission of IC card | |
| CN102236773A (en) | Radio frequency identification (RFID) encryption verification system and method | |
| CN105847005B (en) | Encryption device and method | |
| CN110401615A (en) | A kind of identity identifying method, device, equipment, system and readable storage medium storing program for executing | |
| CN102750510A (en) | Credible two-dimensional code scheme based on public key infrastructure (PKI) and HASH algorithm | |
| US9712326B2 (en) | Method and system for backing up private key of electronic signature token | |
| CN102857344B (en) | RFID (radio frequency identification) safety authentication method based on elliptic curve and symmetric cryptographic technique | |
| CN103413109A (en) | Bidirectional authentication method of radio frequency identification system | |
| CN107547203B (en) | Anti-counterfeiting tracing method and system | |
| CN112019326B (en) | Vehicle charging safety management method and system | |
| CN103326864A (en) | Electronic tag anti-fake authentication method | |
| CN102262599A (en) | Trusted root-based portable hard disk fingerprint identification method | |
| CN102739403A (en) | Identity authentication method and device for dynamic token | |
| CN104954137A (en) | Method of virtual machine security certification based on domestic password technique | |
| CN111435390A (en) | Safety protection method for operation and maintenance tool of power distribution terminal | |
| CN104424568A (en) | Authentication false-proof traceability system employing circuit core chip ID number as identification | |
| CN104243164A (en) | Dynamic encryption non-contact type anti-counterfeit label and control method | |
| CN101494542A (en) | Authentication method between multimedia device and smart card | |
| CN104579659A (en) | Device for safety information interaction | |
| CN105007162A (en) | Credible electronic signature system and electronic signature method | |
| CN104092547A (en) | Method for achieving electronic password anti-counterfeit label |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20190827 Address after: 234000 Suzhou province high tech Zone, Anhui, Chen Chen Road, No. 8 Patentee after: Suzhou Huarui Network Information Service Co. Ltd. Address before: 234000 Gongchen Road, Suzhou High-tech Industrial Development Zone, Anhui Province Patentee before: Anhui Yun Dun Information Technology Co., Ltd |
|
| TR01 | Transfer of patent right |