CN104462926A - Intelligent card identity recognition method and system - Google Patents
Intelligent card identity recognition method and system Download PDFInfo
- Publication number
- CN104462926A CN104462926A CN201410814431.1A CN201410814431A CN104462926A CN 104462926 A CN104462926 A CN 104462926A CN 201410814431 A CN201410814431 A CN 201410814431A CN 104462926 A CN104462926 A CN 104462926A
- Authority
- CN
- China
- Prior art keywords
- smart card
- characteristic data
- data
- iris characteristic
- iris
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Collating Specific Patterns (AREA)
Abstract
The invention discloses an intelligent card identity recognition method and system. The method comprises the following steps that iris feature data to be confirmed are obtained by an iris recognition device, the iris feature data to be confirmed are encrypted through an asymmetric algorithm, and the encrypted data are transmitted to an intelligent card; the intelligent card decrypts the received data through the asymmetric algorithm, the iris feature data to be confirmed are compared with iris feature data, prestored in the intelligent card, of a card holder, and whether identity authentication succeeds or not is determined according to a comparison result. According to the intelligent card identity recognition method and system, reliability, accuracy and safety of intelligent card identity recognition in the prior art can be improved.
Description
Technical field
The present invention relates to smart card identity identification field, particularly relate to a kind of smart card identity recognition methods and system.
Background technology
Smart card (also claiming IC-card) is a kind of common name being embedded with the plastic clip of microchip.Smart card is equipped with CPU (central processing unit) (CPU) and random access memory (RAM), can a fairly large number of data and can not interfere with the work of host CPU by oneself.
In China, along with the development that deepens continuously of Golden Card Program construction, IC-card obtains widespread use in various fields, and achieves preliminary Social benefit and economic benefit, such as: telecommunications SIM card, resident identification card, social security card, residents ' health card, residence permit IC-card, financial IC card etc.Wherein, with resident identification card, social security card, residents ' health card and residence permit for representative, it is the voucher for Government public services that government provides to specific citizen colony.
Along with the development of infotech, also along with the risk of information security while informationization is universal.Such as, existing exist resident identification card and falsely used or the situation of illegal use.Due to the photo of resident identification card comparatively fixing (once imaging prints, changing hardly in the term of validity), the people looked exactly alike, can falsely use my identity document non-.And resident identification card to be a China unique legislation certificate, be that country provides to unique identification certificate of all citizens, it is applied to public service that citizen is correlated with, finance and other key areas, and security requirement is self-evident.Therefore, guarantee further " people blocks unanimously ", reducing the risk that card uses, is the common aspiration of government and citizen.
At present, the high reliability of biological identification technology and stability, for this problem provides the research direction of a feasibility.Wherein, fingerprint technique, as current application technology more widely, is used in the certificate IC-cards such as resident identification card, social security card, residents ' health card and residence permit.In addition, personal recognition technology and facial recognition techniques etc. is also had also to have related application.But the factors such as fingerprint, palmmprint and facial characteristics can be subject to the impact at environment or age and change, and therefore, reliability and stability can not get good guarantee.
Summary of the invention
The invention provides a kind of smart card identity recognition methods and system, the reliability of smart card identity identification in prior art, accuracy and security can be improved.
In order to solve the problems of the technologies described above, the invention provides a kind of smart card identity recognition methods, comprise the following steps: iris identification device obtains iris characteristic data to be confirmed, adopt the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption are transferred to smart card; The described data that described smart card adopts asymmetric arithmetic deciphering to receive, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
Further, determine whether to be comprised by authentication according to comparison result: if when described iris characteristic data to be confirmed is consistent with the described iris characteristic data prestored through comparison, described smart card Recycle ratio is to successful response; If when described iris characteristic data to be confirmed and the described iris characteristic data prestored are inconsistent through comparison, described smart card Recycle ratio is to failure and require the response of comparison again.
Further, the prestore process of iris characteristic data of holder of described smart card comprises: described iris identification device obtains the iris characteristic data of holder, described asymmetric arithmetic is adopted to encrypt the iris characteristic data of described holder, data after encryption are transferred to smart card device issuance system, described smart card device issuance system adopts described asymmetric arithmetic to decipher the described data received, and the data after deciphering are transferred in described smart card and stored.
Further, key used when key used is different from encryption described iris characteristic data to be confirmed when described iris identification device encrypts the iris characteristic data of described holder, key used when key used during described smart card device issuance system data decryption is different from described smart card data decryption.
Further, described asymmetric arithmetic is the close asymmetric arithmetic of state.
The present invention also provides a kind of smart card identity recognition system, comprise: iris identification device and smart card, described iris identification device, for obtaining iris characteristic data to be confirmed, adopt the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption are transferred to described smart card; Described smart card, for adopting asymmetric arithmetic to decipher the described data received, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
Further, determine whether to be comprised by authentication according to comparison result: if when described iris characteristic data to be confirmed is consistent with the described iris characteristic data prestored through comparison, described smart card Recycle ratio is to successful response; If when described iris characteristic data to be confirmed and the described iris characteristic data prestored are inconsistent through comparison, described smart card Recycle ratio is to failure and require the response of comparison again.
Further, the prestore process of iris characteristic data of holder of described smart card comprises: described iris identification device obtains the iris characteristic data of holder, described asymmetric arithmetic is adopted to encrypt the iris characteristic data of described holder, data after encryption are transferred to smart card device issuance system, described smart card device issuance system adopts described asymmetric arithmetic to decipher the described data received, and the data after deciphering are transferred in described smart card and stored.
Further, key used when key used is different from encryption described iris characteristic data to be confirmed when described iris identification device encrypts the iris characteristic data of described holder, key used when key used during described smart card device issuance system data decryption is different from described smart card data decryption.
Further, described asymmetric arithmetic is the close asymmetric arithmetic of state.
Smart card identity recognition methods provided by the invention and system, be applied to smart card identity identification by iris recognition, improve the reliability of smart card identity identification; The comparison process of iris characteristic data completes in smart card, and data can be avoided in the risk of external memory and transmission; Add asymmetric arithmetic in iris characteristic data leaching process, can avoid characteristic because of transmission or transmit and by the risk maliciously stolen.
Accompanying drawing explanation
Figure 1 shows that the process flow diagram of the smart card identity recognition methods that present pre-ferred embodiments provides;
Figure 2 shows that the schematic diagram of the smart card identity recognition system that present pre-ferred embodiments provides.
Embodiment
Figure 1 shows that the process flow diagram of the smart card identity recognition methods that present pre-ferred embodiments provides; Figure 2 shows that the schematic diagram of the smart card identity recognition system that present pre-ferred embodiments provides.The present embodiment is described in detail below with reference to Fig. 1 and Fig. 2.
Present pre-ferred embodiments provides a kind of smart card identity recognition methods, comprise the following steps: iris identification device obtains iris characteristic data to be confirmed, adopt the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption are transferred to smart card; The described data that described smart card adopts asymmetric arithmetic deciphering to receive, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
In the present embodiment, iris characteristic data, when individualized distribution, together with cardholder data, is write smart card by smart card.Above-mentioned detailed process is as follows: iris identification device obtains the iris characteristic data of holder, adopt asymmetric arithmetic (such as, SM2), by the first PKI (being exclusively used in the key of distribution phase), iris characteristic data is encrypted, data after encryption transfer in smart card device issuance system, the smart card device issuance system characteristic of the first private key appointed (being exclusively used in the key of distribution phase) to encryption is decrypted, and is stored by the iris characteristic data write smart card after deciphering.This flow process avoids iris characteristic data and is illegally stolen, for the security of subsequent applications provides basic guarantee in transmission or transmittance process.
In the present embodiment, under iris characteristic data is such as stored in the biometric information catalogue in smart card, under this biometric information catalogue, also can store fingerprint characteristic data and face characteristic data.In prior art and industrialization stage, the application of biological identification technology presents the development trend of " combination features identification ", to meet the different demands of holder in practical application scene.As fingerprint recognition is comparatively extensive due to application, can be applicable to the scene that security requirement is higher, as information inquiry, non-core information updating etc.; Recognition of face due to equipment cost low, can be applicable to self-help service scene, as Telnet; Iris recognition, because of its high reliability and cost high, can be applicable to the high reliability checking in high peace place, as finance drawing, cardholder information change etc.
In the present embodiment, when needs carry out identification checking, iris identification device extracts iris characteristic data to be determined, and adopt asymmetric arithmetic, after iris characteristic data being encrypted with the second PKI (being exclusively used in the key of application stage comparison flow process) (as step S01), transferred in smart card by read-write heads.Smart card carries out data deciphering (as step S02) with the second private key appointed (being exclusively used in the key of application stage comparison flow process) in RAM, and to call in smart card respective directories (such as, biometric information catalogue) under iris characteristic data compare, i.e. the iris characteristic data of comparison deciphering and the iris characteristic data (as step S03) of holder prestored.
When above-mentioned iris characteristic data comparison result is consistent, smart card Recycle ratio is to successful response (such as 9000) (as step S04), then smart card opens corresponding authority by application terminal to holder, and holder can continue next step access or operation.
When above-mentioned iris characteristic data comparison result is inconsistent, smart card Recycle ratio is to failure and require response (such as 6C01) (as the step S05) of comparison again, then smart card refuses next step access or the operation of holder by application terminal, and iris identification device obtains iris characteristic data again.
When the continuous comparison of above-mentioned iris characteristic data is inconsistent (such as, when 3 times comparison result is inconsistent), smart card Recycle ratio to failure and card locking response (such as 6C03), then smart card refuses next step access or the operation of holder by application terminal, and by smartcard internal instruction, to apply locked, and avoid continuing malice and use.
In present pre-ferred embodiments, when carrying out the comparing of iris characteristic data, iris characteristic data is deciphered in smart card.Deciphering in smart card and comparison process, belong to smart card automatically in process, no matter comparison success or not, the external output of smart card is only return response, and original iris features data can be avoided in the risk of card external memory and transmission.On the other hand, comparison in smart card, belongs to local comparison, can complete in offline state, makes method of the present invention or system, is not limited to networking condition.In addition, compared with fingerprint or human face data, the process of iris characteristic data and comparison relative complex, even if under the environment possessing network condition, method and system provided by the invention can also reduce network load; Meanwhile, also avoid factor data round-trip transmission and reduce holder application experience.
In addition, the security in state's close asymmetric arithmetic control comparison flow process is adopted.Due to iris feature after extraction, be a series of fixing characteristics after all, if characteristic transmission or transmittance process in maliciously monitored or stolen, then may bring about great losses.The present invention, by increasing the close asymmetric arithmetic of state, after being encrypted by iris characteristic data, then carries out transmitting or transmitting.Although maliciously monitored or steal, the mess code after yet just encrypting, does not affect the security of raw data.
As shown in Figure 2, present pre-ferred embodiments also provides a kind of smart card identity recognition system, comprises iris identification device 10 and smart card 12.Iris identification device 10, for obtaining iris characteristic data to be confirmed, adopting the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption is transferred to described smart card 12; Smart card 12, for adopting asymmetric arithmetic to decipher the described data received, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
Specifically, iris identification device 10 comprises image acquisition units 100 (such as, special camera), image pre-processing unit 101, characteristic extraction unit 102 and asymmetric arithmetic association's processing unit 103 (such as, coprocessor).Described image pre-processing unit 101 connects described image acquisition units 100 and described characteristic extraction unit 102, and described characteristic extraction unit 102 connects described asymmetric arithmetic association processing unit 103.Wherein, asymmetric arithmetic is such as the close asymmetric arithmetic of state (as SM2), for being encrypted the iris characteristic data after extraction, avoids the loss because subsequent transmission or transmission cause.
Because asymmetric arithmetic system more has safety guarantee than symmetrical algorithm system, can effectively prevent data to be tampered and steal; And the close asymmetric arithmetic of state possesses versatility in existing smart card, avoid the huge social cost that logarithm carries out algorithm upgrading with the smart card of hundred million and brings because increasing iris recognition; The close asymmetric arithmetic of state is the enciphering and deciphering algorithm system that China has by oneself; Adopt the close asymmetric arithmetic of state to have the strategic importance of information security, make application of IC cards in the application of high safety, as government, army or financial institution.
More than show and describe ultimate principle of the present invention and principal character and advantage of the present invention.The present invention is not restricted to the described embodiments; what describe in above-described embodiment and instructions just illustrates principle of the present invention; without departing from the spirit and scope of the present invention, the present invention also has various changes and modifications, and these changes and improvements all fall in the claimed scope of the invention.
Claims (10)
1. a smart card identity recognition methods, is characterized in that, comprises the following steps:
Iris identification device obtains iris characteristic data to be confirmed, adopts the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption are transferred to smart card;
The described data that described smart card adopts asymmetric arithmetic deciphering to receive, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
2. smart card identity recognition methods as claimed in claim 1, it is characterized in that: determine whether to be comprised by authentication according to comparison result: if when described iris characteristic data to be confirmed is consistent with the described iris characteristic data prestored through comparison, described smart card Recycle ratio is to successful response; If when described iris characteristic data to be confirmed and the described iris characteristic data prestored are inconsistent through comparison, described smart card Recycle ratio is to failure and require the response of comparison again.
3. smart card identity recognition methods as claimed in claim 1, it is characterized in that: the prestore process of iris characteristic data of holder of described smart card comprises: described iris identification device obtains the iris characteristic data of holder, described asymmetric arithmetic is adopted to encrypt the iris characteristic data of described holder, data after encryption are transferred to smart card device issuance system, described smart card device issuance system adopts described asymmetric arithmetic to decipher the described data received, and the data after deciphering are transferred in described smart card and stored.
4. smart card identity recognition methods as claimed in claim 3, it is characterized in that: key used when key used is different from encryption described iris characteristic data to be confirmed when described iris identification device encrypts the iris characteristic data of described holder, key used when key used during described smart card device issuance system data decryption is different from described smart card data decryption.
5. the smart card identity recognition methods as described in claim 1 or 3, is characterized in that: described asymmetric arithmetic is the close asymmetric arithmetic of state.
6. a smart card identity recognition system, is characterized in that, comprising: iris identification device and smart card,
Described iris identification device, for obtaining iris characteristic data to be confirmed, adopting the described iris characteristic data to be confirmed of asymmetric arithmetic encryption, and the data after encryption is transferred to described smart card;
Described smart card, for adopting asymmetric arithmetic to decipher the described data received, the iris characteristic data of the holder prestored in iris characteristic data to be confirmed described in comparison and described smart card, determines whether to pass through authentication according to comparison result.
7. smart card identity recognition system as claimed in claim 6, it is characterized in that: determine whether to be comprised by authentication according to comparison result: if when described iris characteristic data to be confirmed is consistent with the described iris characteristic data prestored through comparison, described smart card Recycle ratio is to successful response; If when described iris characteristic data to be confirmed and the described iris characteristic data prestored are inconsistent through comparison, described smart card Recycle ratio is to failure and require the response of comparison again.
8. smart card identity recognition system as claimed in claim 6, it is characterized in that: the prestore process of iris characteristic data of holder of described smart card comprises: described iris identification device obtains the iris characteristic data of holder, described asymmetric arithmetic is adopted to encrypt the iris characteristic data of described holder, data after encryption are transferred to smart card device issuance system, described smart card device issuance system adopts described asymmetric arithmetic to decipher the described data received, and the data after deciphering are transferred in described smart card and stored.
9. smart card identity recognition system as claimed in claim 8, it is characterized in that: key used when key used is different from encryption described iris characteristic data to be confirmed when described iris identification device encrypts the iris characteristic data of described holder, key used when key used during described smart card device issuance system data decryption is different from described smart card data decryption.
10. the smart card identity recognition system as described in claim 6 or 8, is characterized in that: described asymmetric arithmetic is the close asymmetric arithmetic of state.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410814431.1A CN104462926A (en) | 2014-12-23 | 2014-12-23 | Intelligent card identity recognition method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410814431.1A CN104462926A (en) | 2014-12-23 | 2014-12-23 | Intelligent card identity recognition method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104462926A true CN104462926A (en) | 2015-03-25 |
Family
ID=52908952
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410814431.1A Pending CN104462926A (en) | 2014-12-23 | 2014-12-23 | Intelligent card identity recognition method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104462926A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105516168A (en) * | 2015-12-22 | 2016-04-20 | 恒宝股份有限公司 | Off-line iris authentication device and method |
| CN105847305A (en) * | 2016-06-21 | 2016-08-10 | 新昌县七星街道明盛模具厂 | Safe processing and accessing method of cloud resource |
| CN105871931A (en) * | 2016-06-21 | 2016-08-17 | 新昌县七星街道明盛模具厂 | Safety processing and accessing method of cloud service terminal |
| CN108062466A (en) * | 2017-04-24 | 2018-05-22 | 孟庆国 | The system and method for the anti-tamper anti-counterfeiting of ID card information in the Internet, applications |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2000311220A (en) * | 1999-04-28 | 2000-11-07 | Hitachi Ltd | Unit operation right managing system, unit operation right managing terminal, ic chip and ic chip case |
| CN101019138A (en) * | 2004-04-26 | 2007-08-15 | 忆思智能技术公司 | Smart card for passport, electronic passport, and method, system, and apparatus for authenticating person holding smart card or electronic passport |
| CN101093554A (en) * | 2007-06-04 | 2007-12-26 | 李惠科 | Card with realtime biological identification system |
| CN101373526A (en) * | 2007-08-23 | 2009-02-25 | 吴铭远 | Safe card storing with biological feature data and its use method |
| CN102222389A (en) * | 2011-06-30 | 2011-10-19 | 北京天诚盛业科技有限公司 | Realization method and device of fingerprint comparison in financial IC (integrated circuit) card |
-
2014
- 2014-12-23 CN CN201410814431.1A patent/CN104462926A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2000311220A (en) * | 1999-04-28 | 2000-11-07 | Hitachi Ltd | Unit operation right managing system, unit operation right managing terminal, ic chip and ic chip case |
| CN101019138A (en) * | 2004-04-26 | 2007-08-15 | 忆思智能技术公司 | Smart card for passport, electronic passport, and method, system, and apparatus for authenticating person holding smart card or electronic passport |
| CN101093554A (en) * | 2007-06-04 | 2007-12-26 | 李惠科 | Card with realtime biological identification system |
| CN101373526A (en) * | 2007-08-23 | 2009-02-25 | 吴铭远 | Safe card storing with biological feature data and its use method |
| CN102222389A (en) * | 2011-06-30 | 2011-10-19 | 北京天诚盛业科技有限公司 | Realization method and device of fingerprint comparison in financial IC (integrated circuit) card |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105516168A (en) * | 2015-12-22 | 2016-04-20 | 恒宝股份有限公司 | Off-line iris authentication device and method |
| CN105847305A (en) * | 2016-06-21 | 2016-08-10 | 新昌县七星街道明盛模具厂 | Safe processing and accessing method of cloud resource |
| CN105871931A (en) * | 2016-06-21 | 2016-08-17 | 新昌县七星街道明盛模具厂 | Safety processing and accessing method of cloud service terminal |
| CN108062466A (en) * | 2017-04-24 | 2018-05-22 | 孟庆国 | The system and method for the anti-tamper anti-counterfeiting of ID card information in the Internet, applications |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10681025B2 (en) | Systems and methods for securely managing biometric data | |
| US11664997B2 (en) | Authentication in ubiquitous environment | |
| EP3118776B1 (en) | Security authentication method for hiding ultra high frequency electronic tag identifier | |
| EP3288214B1 (en) | Authentication in ubiquitous environment | |
| CN103001773B (en) | Fingerprint authentication system and fingerprint authentication method based on near field communication (NFC) | |
| US20140093144A1 (en) | More-Secure Hardware Token | |
| US20180247313A1 (en) | Fingerprint security element (se) module and payment verification method | |
| US20210264135A1 (en) | Secure facial recognition | |
| CN104462926A (en) | Intelligent card identity recognition method and system | |
| Rzouga Haddada et al. | Double watermarking‐based biometric access control for radio frequency identification card | |
| US20170344984A1 (en) | Card payment system and method for using body information | |
| US20210160076A1 (en) | System and method for secure biometric authentication | |
| CN110492992A (en) | A kind of data encryption and transmission method based on radio RF recognition technology | |
| Patil et al. | Design and implementation of secure biometric based authentication system using rfid and secret sharing | |
| Belguechi et al. | Enhancing the privacy of electronic passports | |
| CN111181895A (en) | Identity authentication method | |
| GB2556625A (en) | Secure enrolment of biometric data | |
| Ramya et al. | Biometric Authentication to ensure security in ePassports | |
| CN104732137A (en) | Android-based method of recognizing multi-mode AES-encrypted (advanced encryption standard encrypted) QR (quick response) codes | |
| CN104601333A (en) | Two-dimensional code remote authentication method based on man-machine features | |
| Kumar et al. | Biometric passport validation scheme using radio frequency identification | |
| CN104680225A (en) | Security certificate and AES (Advanced Encryption Standard) encryption method of RFID (radio frequency identification device) (840MHz - 845MHz) automobile electronic mark | |
| Jacobs et al. | Biometrics and Smart Cards in Identity Management | |
| WO2019114813A1 (en) | Biometric authentication system and method | |
| KR20200103615A (en) | System and Method for Identification Based on Finanace Card Possessed by User |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150325 |