CN104702417A - Security authentication system and method - Google Patents
Security authentication system and method Download PDFInfo
- Publication number
- CN104702417A CN104702417A CN201510156065.XA CN201510156065A CN104702417A CN 104702417 A CN104702417 A CN 104702417A CN 201510156065 A CN201510156065 A CN 201510156065A CN 104702417 A CN104702417 A CN 104702417A
- Authority
- CN
- China
- Prior art keywords
- authentication information
- information
- atm
- user
- bank card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Collating Specific Patterns (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention provides a security authentication system and method. Safety is improved by checking first-type authentication information and second-type authentication information, the first-type authentication information is checked locally on an ATM, network transmission data are reduced, the speed of the system is improved on the premise of guaranteeing safety, the safety coefficient is reinforced, and no additional burden is brought to users.
Description
[technical field]
The present invention relates to safety certification field, particularly relate to a kind of ATM carries out safety certification system and method to holder.
[background technology]
Conventional ATMs, to the identification of bank card, is only limitted to checking holder being inputted to password, without carrying out identification to holder further.If offender can, at the enterprising line operate of ATM, can cause card master to be subject to property loss after stealing bank card and password.
[summary of the invention]
The technical problem to be solved in the present invention is to provide a kind of ATM carries out safety certification system and method to holder.
In order to solve the problems of the technologies described above, the technical solution used in the present invention is, a kind of method of safety certification, is characterized in that, said method comprising the steps of:
S1, user insert bank card to ATM, described bank card comprise the Quick Response Code that first kind authentication information is relevant;
S2, user input Second Type authentication information by ATM, and ATM receives backward server and initiates checking;
S3, Second Type authentication information by checking after, ATM to server send bank card information and obtain key request;
S4, server obtain key corresponding to this bank card from database, and send it to ATM;
S5, ATM are positioned at the 2 D code information of bank card by two-dimensional code scanning device scanning, and are decoded by the information that the double secret key Quick Response Code obtained comprises, and obtain decoded original first kind authentication information;
S6, ATM receive the first kind authentication information of user's input, and verify with the original first kind authentication information obtained, and as both mate mutually, namely carry out next step transaction, as both do not mate, then stop transaction.
Further, described Second Type authentication information is the encrypted message of user by input through keyboard.
Further, described first kind authentication information is the biological correlated characteristic of user or the combination of different biological correlated characteristic.
Further, described first kind authentication information is the finger print information of user or face feature information or iris information or their combination, and described ATM comprises the device obtaining corresponding first kind authentication information.
Further, described first kind authentication information is encrypted by AES encryption algorithm, and is converted into Quick Response Code and is printed on described bank card.
Further, described key and bank card one_to_one corresponding cryptographic storage are in the database of server.
A kind of security certification system, comprises server and ATM, it is characterized in that:
Server comprises the database storing key information, and it obtains corresponding key information in response to the request that ATM initiates and sends to ATM from data;
ATM comprises first kind authentication information acquisition device, Second Type authentication information acquisition device, Quick Response Code scanning means and authenticate device, sends bank card information and obtain key request after the certification of Second Type authentication information is passed through to server; Be positioned at the 2 D code information of bank card afterwards by two-dimensional code scanning device scanning, and decoded by the information that the double secret key Quick Response Code obtained comprises, obtain decoded original first kind authentication information; Start the first kind authentication information that first kind authentication information acquisition device obtains user's input afterwards, the original first kind authentication information of the first kind authentication information that user inputs by authenticate device and acquisition is verified, as both mate mutually, namely next step transaction is carried out, as both do not mate, then stop transaction.
Further, described Second Type authentication information is the encrypted message of user by input through keyboard.
Further, described first kind authentication information is the biological correlated characteristic of user or the combination of different biological correlated characteristic.
Further, described first kind authentication information is the finger print information of user or face feature information or iris information or their combination.
The method of safety certification of the present invention is by checking first kind authentication information and Second Type authentication information, described first kind authentication information is verified in ATM this locality, thus decrease the size of transmitted data on network, improve the speed of system under the premise that security is guaranteed, not only strengthen coefficient of safety but also do not bring extra burden to user.
[accompanying drawing explanation]
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, below the accompanying drawing used required in describing embodiment is briefly introduced, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawing can also be obtained according to these accompanying drawings.
Fig. 1 is the flow chart of safety certifying method in the embodiment of the present invention.
Fig. 2 is the flow chart gathering facial characteristics in the embodiment of the present invention.
Fig. 3 is the structure chart of security certification system in the embodiment of the present invention.
[embodiment]
In order to make the object, technical solutions and advantages of the present invention clearly, below in conjunction with accompanying drawing, the present invention is described in further detail, and obviously, described embodiment is only a part of embodiment of the present invention, instead of whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art, not making other embodiments all obtained under creative work prerequisite, belong to the scope of protection of the invention.
The invention provides a kind of method of safety certification, as shown in Figure 1, comprise the following steps:
S1, user insert bank card to ATM, described bank card comprise the Quick Response Code that first kind authentication information is relevant.
Described first kind authentication information is user-dependent biological information in embodiments of the present invention, the biological information that may be used for unique identification user identity arbitrarily is all fine, such as: face, fingerprint, iris, sound etc., independent or combination, is all fine.
User needs when handling bank card to carry out biological information sampling, and for facial characteristics, Quick Response Code generates and comprises the following steps:
S101, reminding user ajust facial pose towards camera head;
S102, collection face-image;
S103, detection faces position;
S104, acquisition facial feature data, described facial feature data comprises at least one in facial characteristics value and face line coding, and generates face feature vector;
S105, carry out AES encryption to characteristic vector, its key is key, this key to be stored in server key database and with bank card information one_to_one corresponding;
S106, by encryption after vector information be converted to 2 D code information, described Quick Response Code comprises the Quick Response Code of Base64 type of coding, such as, be PDF417 two-dimensional bar code, Datamatrix two-dimensional bar code, Maxicode two-dimensional bar code, QRCode, Code49, Code16K or Codeone etc.
S107, Quick Response Code is printed on the position that the bank card back side does not affect magnetic stripe and signature, when user inserts bank card to ATM, the Quick Response Code scanning means that its 2 D code information being positioned at the back side can be integrated in ATM inside obtains.
Just can be realized user's face characteristic information cryptographic storage in the Quick Response Code on bank card by above step.
S2, user input Second Type authentication information by ATM, and ATM receives backward server and initiates checking.
In embodiments of the present invention, Second Type authentication information is conventional cipher, and user carries out password authentification by the keyboard being positioned at ATM.
S3, Second Type authentication information by checking after, ATM to server send bank card information and obtain key request.
In embodiments of the present invention, in order to accelerate identifying, reduce the burden of Internet Transmission, the checking of first kind authentication information is carried out in ATM this locality, and therefore ATM only needs to send to server the request obtaining bank card counterpart keys.
S4, server obtain key corresponding to this bank card from database, and send it to ATM.
In embodiments of the present invention, after server receives the request of ATM acquisition request key, inquire about in key database according to bank card account, and the key of correspondence is sent to ATM.Like this compared with carrying out verifying the size greatly reducing transmission data at server, improve efficiency.
S5, ATM are positioned at the 2 D code information of bank card by two-dimensional code scanning device scanning, and are decoded by the information that the double secret key Quick Response Code obtained comprises, and obtain decoded original first kind authentication information.
In embodiments of the present invention, Quick Response Code scan module is made up of the image capture device such as video camera, camera and analog-to-digital conversion module, or be made up of digital image acquisition apparatus such as digital camera, USB video camera, web cameras, or import the portrait photo of the form such as existing, or use photoelectric scanning device to scan Quick Response Code, such as line style scanner is as line style CCD, laser shot etc., and it is integrated into ATM inside, can gather when bank card is inserted into.Afterwards ATM by obtain key and AES decipherment algorithm the enciphered message comprised in 2 D code information is decoded, obtain original first kind authentication information.For first kind authentication information for facial characteristics, after decoding, namely face feature vector can be obtained.
S6, ATM receive the first kind authentication information of user's input, and verify with the original first kind authentication information obtained, and as both mate mutually, namely carry out next step transaction, as both do not mate, then stop transaction.
In embodiments of the present invention, ATM obtains first kind authentication information by corresponding equipment, as the device etc. of fingerprint acquisition device, the camera head obtaining face-image, acquisition iris image, compare with the original first kind authentication information obtained of being decoded by Quick Response Code after acquisition first kind authentication information, if its distance is less than specific threshold, then assert that it is verified, if its distance is greater than specific threshold, then assert that its checking is not passed through.
The implementation that the embodiment of the present invention proposes combines conventional cipher and biological characteristic carries out safety certification, identification authentication mode is as compared with the past more quick, safety.
The embodiment of the present invention additionally provides a kind of security certification system, as shown in Figure 2, comprising:
Server comprises the database storing key information, and it obtains corresponding key information in response to the request that ATM initiates and sends to ATM from data;
ATM comprises first kind authentication information acquisition device, Second Type authentication information acquisition device, Quick Response Code scanning means and authenticate device, sends bank card information and obtain key request after the certification of Second Type authentication information is passed through to server; Be positioned at the 2 D code information of bank card afterwards by two-dimensional code scanning device scanning, and decoded by the information that the double secret key Quick Response Code obtained comprises, obtain decoded original first kind authentication information; Start the first kind authentication information that first kind authentication information acquisition device obtains user's input afterwards, the original first kind authentication information of the first kind authentication information that user inputs by authenticate device and acquisition is verified, as both mate mutually, namely next step transaction is carried out, as both do not mate, then stop transaction.
In embodiments of the present invention, described first kind authentication information is user-dependent biological information, and the biological information that may be used for unique identification user identity arbitrarily is all fine, such as: face, fingerprint, iris, sound etc., separately or combination, be all fine.
User needs when handling bank card to carry out biological information sampling, and for facial characteristics, Quick Response Code generates and comprises the following steps:
S101, reminding user ajust facial pose towards camera head;
S102, collection face-image;
S103, acquisition facial feature data, described facial feature data comprises at least one in facial characteristics value and face line coding, and generates face feature vector;
S104, carry out AES encryption to characteristic vector, its key is key, this key to be stored in server key database and with bank card information one_to_one corresponding;
S105, by encryption after vector information be converted to 2 D code information, described Quick Response Code comprises the Quick Response Code of Base64 type of coding, such as, be PDF417 two-dimensional bar code, Datamatrix two-dimensional bar code, Maxicode two-dimensional bar code, QRCode, Code49, Code16K or Codeone etc.
S106, Quick Response Code is printed on the position that the bank card back side does not affect magnetic stripe and signature, when user inserts bank card to ATM, the Quick Response Code scanning means that its 2 D code information being positioned at the back side can be integrated in ATM inside obtains.
Just can be realized user's face characteristic information cryptographic storage in the Quick Response Code on bank card by above step.
In embodiments of the present invention, Second Type authentication information is conventional cipher, and user carries out password authentification by the keyboard being positioned at ATM.
In embodiments of the present invention, in order to accelerate identifying, reduce the burden of Internet Transmission, the checking of first kind authentication information is carried out in ATM this locality, and therefore ATM only needs to send to server the request obtaining bank card counterpart keys.
In embodiments of the present invention, after server receives the request of ATM acquisition request key, inquire about in key database according to bank card account, and the key of correspondence is sent to ATM.Like this compared with carrying out verifying the size greatly reducing transmission data at server, improve efficiency.
In embodiments of the present invention, Quick Response Code scan module is made up of the image capture device such as video camera, camera and analog-to-digital conversion module, or be made up of digital image acquisition apparatus such as digital camera, USB video camera, web cameras, or import the portrait photo of the form such as existing, or use photoelectric scanning device to scan Quick Response Code, such as line style scanner is as line style CCD, laser shot etc., and it is integrated into ATM inside, can gather when bank card is inserted into.Afterwards ATM by obtain key and AES decipherment algorithm the enciphered message comprised in 2 D code information is decoded, obtain original first kind authentication information.For first kind authentication information for facial characteristics, after decoding, namely face feature vector can be obtained.
In embodiments of the present invention, ATM obtains first kind authentication information by corresponding equipment, as the device etc. of fingerprint acquisition device, the camera head obtaining face-image, acquisition iris image, compare with the original first kind authentication information obtained of being decoded by Quick Response Code after acquisition first kind authentication information, if its distance is less than specific threshold, then assert that it is verified, if its distance is greater than specific threshold, then assert that its checking is not passed through.
These are only the present invention's preferably embodiment; but protection scope of the present invention is not limited thereto; anyly be familiar with those skilled in the art in the technical scope that the embodiment of the present invention discloses, the change that can expect easily or replacement, all should be encompassed within protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of claim.
Claims (10)
1. a method for safety certification, is characterized in that, said method comprising the steps of:
S1, user insert bank card to ATM, described bank card comprise the Quick Response Code that first kind authentication information is relevant;
S2, user input Second Type authentication information by ATM, and ATM receives backward server and initiates checking;
S3, Second Type authentication information by checking after, ATM to server send bank card information and obtain key request;
S4, server obtain key corresponding to this bank card from database, and send it to ATM;
S5, ATM are positioned at the 2 D code information of bank card by two-dimensional code scanning device scanning, and are decoded by the information that the double secret key Quick Response Code obtained comprises, and obtain decoded original first kind authentication information;
S6, ATM receive the first kind authentication information of user's input, and verify with the original first kind authentication information obtained, and as both mate mutually, namely carry out next step transaction, as both do not mate, then stop transaction.
2. method according to claim 1, is characterized in that: described Second Type authentication information is the encrypted message of user by input through keyboard.
3. method according to claim 1, is characterized in that: described first kind authentication information is the biological correlated characteristic of user or the combination of different biological correlated characteristic.
4. method according to claim 3, is characterized in that: described first kind authentication information is the finger print information of user or face feature information or iris information or their combination, and described ATM comprises the device obtaining corresponding first kind authentication information.
5. method according to claim 1, is characterized in that: described first kind authentication information is encrypted by AES encryption algorithm, and is converted into Quick Response Code and is printed on described bank card.
6. method according to claim 1, is characterized in that: described key and bank card one_to_one corresponding cryptographic storage are in the database of server.
7. a security certification system, comprises server and ATM, it is characterized in that:
Server comprises the database storing key information, and it obtains corresponding key information in response to the request that ATM initiates and sends to ATM from data;
ATM comprises first kind authentication information acquisition device, Second Type authentication information acquisition device, Quick Response Code scanning means and authenticate device, sends bank card information and obtain key request after the certification of Second Type authentication information is passed through to server; Be positioned at the 2 D code information of bank card afterwards by two-dimensional code scanning device scanning, and decoded by the information that the double secret key Quick Response Code obtained comprises, obtain decoded original first kind authentication information; Start the first kind authentication information that first kind authentication information acquisition device obtains user's input afterwards, the original first kind authentication information of the first kind authentication information that user inputs by authenticate device and acquisition is verified, as both mate mutually, namely next step transaction is carried out, as both do not mate, then stop transaction.
8. system according to claim 7, is characterized in that: described Second Type authentication information is the encrypted message of user by input through keyboard.
9. system according to claim 7, is characterized in that: described first kind authentication information is the biological correlated characteristic of user or the combination of different biological correlated characteristic.
10. method according to claim 9, is characterized in that: described first kind authentication information is the finger print information of user or face feature information or iris information or their combination.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510156065.XA CN104702417A (en) | 2015-04-03 | 2015-04-03 | Security authentication system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510156065.XA CN104702417A (en) | 2015-04-03 | 2015-04-03 | Security authentication system and method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104702417A true CN104702417A (en) | 2015-06-10 |
Family
ID=53349211
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510156065.XA Pending CN104702417A (en) | 2015-04-03 | 2015-04-03 | Security authentication system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104702417A (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1508746A (en) * | 2002-12-18 | 2004-06-30 | 薛永嘉 | Personal identity information integrating apparatus |
| CN101165726A (en) * | 2006-10-19 | 2008-04-23 | 胡乐乐 | Method and system for preventing credit card embezzlement |
| CN101599196A (en) * | 1997-11-28 | 2009-12-09 | 迪布尔特有限公司 | ATM (Automatic Teller Machine) |
| CN102368338A (en) * | 2011-04-09 | 2012-03-07 | 冯林 | Method and system for verifying trader identity on ATM (Automatic Teller Machine) |
| US20130067551A1 (en) * | 2011-09-13 | 2013-03-14 | Bank Of America Corporation | Multilevel Authentication |
| CN103778723A (en) * | 2012-10-22 | 2014-05-07 | 联想移动通信科技有限公司 | Mobile terminal, bank card and dual authentication method and device thereof and ATM (Automatic Teller Machine) |
| CN103886449A (en) * | 2014-04-11 | 2014-06-25 | 闻进 | Visible-code-based payment method and system with multiple security combination mechanisms |
| CN104134139A (en) * | 2013-05-03 | 2014-11-05 | 中国银联股份有限公司 | Method for encryption protection of financial information |
-
2015
- 2015-04-03 CN CN201510156065.XA patent/CN104702417A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101599196A (en) * | 1997-11-28 | 2009-12-09 | 迪布尔特有限公司 | ATM (Automatic Teller Machine) |
| CN1508746A (en) * | 2002-12-18 | 2004-06-30 | 薛永嘉 | Personal identity information integrating apparatus |
| CN101165726A (en) * | 2006-10-19 | 2008-04-23 | 胡乐乐 | Method and system for preventing credit card embezzlement |
| CN102368338A (en) * | 2011-04-09 | 2012-03-07 | 冯林 | Method and system for verifying trader identity on ATM (Automatic Teller Machine) |
| US20130067551A1 (en) * | 2011-09-13 | 2013-03-14 | Bank Of America Corporation | Multilevel Authentication |
| CN103778723A (en) * | 2012-10-22 | 2014-05-07 | 联想移动通信科技有限公司 | Mobile terminal, bank card and dual authentication method and device thereof and ATM (Automatic Teller Machine) |
| CN104134139A (en) * | 2013-05-03 | 2014-11-05 | 中国银联股份有限公司 | Method for encryption protection of financial information |
| CN103886449A (en) * | 2014-04-11 | 2014-06-25 | 闻进 | Visible-code-based payment method and system with multiple security combination mechanisms |
Non-Patent Citations (1)
| Title |
|---|
| 吕立波: "生物识别技术在金融、电子商务中的应用研究", 《商场现代化》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2220840B1 (en) | Method of authentication of users in data processing systems | |
| EP1489551B1 (en) | Biometric authentication system employing various types of biometric data | |
| EP2648163B1 (en) | A personalized biometric identification and non-repudiation system | |
| US7024562B1 (en) | Method for carrying out secure digital signature and a system therefor | |
| US20030012374A1 (en) | Electronic signing of documents | |
| EP3132368B1 (en) | Method and apparatus of verifying usability of biological characteristic image | |
| CN103679436A (en) | Electronic contract security system and method based on biological information identification | |
| CN110290134B (en) | Identity authentication method, identity authentication device, storage medium and processor | |
| CN101958892A (en) | Electronic data protection method, device and system based on face recognition | |
| US20150149784A1 (en) | Communication method utilizing fingerprint information authentication | |
| JPWO2005024645A1 (en) | Information processing server and information processing method | |
| CN104809490A (en) | Card anti-counterfeiting system based on multidimensional code and authentication method based on card anti-counterfeiting system | |
| CN108540470A (en) | Verification System and method based on digital certificate label | |
| CN104835039A (en) | Data label generation method | |
| CN111815833A (en) | Hotel access control authentication system based on intelligent identification and encryption technology | |
| CN104715537A (en) | Encryption and decryption method based on digital tags | |
| CN103368736B (en) | Business information encryption, decryption method and device | |
| CN110084021B (en) | Counter terminal, client and counter data interaction method and system | |
| EP1280098A1 (en) | Electronic signing of documents | |
| JP6151627B2 (en) | Biometric authentication system, biometric authentication method, and computer program | |
| JP7112320B2 (en) | Verification device and verification method | |
| Radha et al. | A study on biometric template security | |
| US20210160076A1 (en) | System and method for secure biometric authentication | |
| CN116094724A (en) | Registration and authentication method and device for electronic identity | |
| WO2003009217A1 (en) | Electronic signing of documents |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150610 |