The random encrypting and deciphering system of intelligent mobile terminal based on fingerprint characteristic
Technical field
The present invention relates to encrypting fingerprint technical field, more particularly to a kind of intelligent mobile terminal based on fingerprint characteristic are random
Encrypting and deciphering system.
Background technology
Migrated with paying to mobile terminal, security risk also just constantly aggravation.Mobile phone is lost, Trojan software is stolen etc. and all allowed
The move medias such as mobile phone are changed into mobile national treasury in the air.Fingerprint recognition refer to by the details of more different fingerprints come
Differentiated, due to fingerprint recognition have it is quick, convenient, safe, exclusive, will not lose etc. advantage, particularly user with it is raw all
The characteristics of coming, fingerprint recognition will allow it to be widely used in terms of mobile terminal safety and mobile payment service.But fingerprint is known
There is also security risk, the limitation of mobile intelligent terminal size to cause the contact area of fingerprint sensor small, the sampling of characteristic point
Limited, the algorithm based on fingerprint image matching is by similarity Fuzzy comparisons, and image matching algorithm is relied on greatly, so passing through
Some special means can also crack, and the probability cracked is about 1/50000, to mobile payment and information of mobile terminal safety belt
Carry out hidden danger.Traditional password is main flow now in mobile payment, convenient and practical, meets user's custom, and 6 bit digital passwords are cracked
Probability be 1/1000000.Fingerprint recognition is combined with password, using password as key, you can realize fingerprint characteristic spy
Some encryptions, its probability cracked are 1/50000000000, and the safety of mobile payment can be significantly greatly increased.
The content of the invention
The technical problem to be solved by the invention is to provide a kind of intelligent mobile terminal based on fingerprint characteristic to add solution at random
Close system, combined using password with fingerprint and encryption and decryption is carried out to intelligent mobile terminal.What the present invention was realized in:
A kind of random encrypting and deciphering system of intelligent mobile terminal based on fingerprint characteristic, including:
Fingerprint identification module, for gathering the initial fingerprint of user's input;
Password Input module, for receiving the initial password of user's input;
Base-Band Processing and intelligent use processing module, it supports trust zone frameworks, for receiving the initial fingerprint
And the initial password, and the initial fingerprint is carried out symmetrically using the initial password under trust zone safe modes
Cryptographic calculation, cryptographic fingerprint is obtained, and the cryptographic fingerprint is stored to its trust zone region together with the initial password,
Realize the encryption to the intelligent mobile terminal;
When being decrypted to the intelligent mobile terminal:
The fingerprint identification module is additionally operable to collection input fingerprint;
The Password Input module is additionally operable to receive input password;
Base-Band Processing and the intelligent use processing module is additionally operable in the input password and trust zone regions
The initial password of storage is compared, and carries out symmetric solution to the cryptographic fingerprint using the input password when comparing consistent
Close computing, obtain decrypting fingerprint, and by the decryption fingerprint and the input fingerprint matching, and when the match is successful by the intelligence
Mobile terminal unlocks.
Further, Base-Band Processing and the intelligent use processing module also has Modify password pattern;In Modify password
In pattern:
The Password Input module is additionally operable to receive the Old Password of user's input;
Base-Band Processing and the intelligent use processing module is additionally operable to receive the Old Password, and by the Old Password with
The initial password stored in trust zone regions is compared, and utilizes the Old Password to the encryption when comparing consistent
Fingerprint carries out symmetrical decryption computing, obtains decrypting fingerprint, meanwhile, receive what the user inputted by the Password Input module
New password, and re-start symmetric cryptography to the decryption fingerprint using the new password, obtains new cryptographic fingerprint, and this is new
Cryptographic fingerprint stores trust zone regions together with the new password.
Further, the symmetric encryption operation is that XOR/invertible matrix multiplication/cyclic shift or DES symmetric cryptographies are calculated
Method.
Further, the fingerprint identification module is capacitive fingerprint sensing device.
Further, the Password Input module is touch display screen.
Further, Base-Band Processing and the intelligent use processing module is connected with radio-frequency module;The radio-frequency module connects
There is antenna.
Further, Base-Band Processing and the intelligent use processing module is connected with memory module.
Further, Base-Band Processing and the intelligent use processing module is connected with audio-frequency module;The audio-frequency module connects
Microphone and loudspeaker are connected to, for driving the microphone and loudspeaker.
Further, Base-Band Processing and the intelligent use processing module is connected with camera.
Further, the kernel of Base-Band Processing and the intelligent use processing module is tetra- cores of ARM Cortex A53 64
Processor.
Compared with prior art, the present invention carries out symmetric cryptography to initial fingerprint using initial password and obtains cryptographic fingerprint,
And double-encryption is carried out to intelligent mobile terminal using initial password and cryptographic fingerprint.During decryption, need to input password with it is initial close
Cryptographic fingerprint, which could be decrypted, for code matching draws decryption fingerprint, while also needs decryption fingerprint and input fingerprint matching could be complete
The decryption of paired intelligent mobile terminal.Simultaneously as cryptographic fingerprint is to carry out symmetric cryptography to initial fingerprint using initial password
Obtain, input different initial passwords and can obtain different cryptographic fingerprints, the accidental enciphering to initial fingerprint can be achieved.Furthermore
Because encryption and decryption all performs under trust zone safe modes, non-authorised software can not obtain enciphering and deciphering algorithm, even if obtaining
Initial password and cryptographic fingerprint, it can not also show that correctly decryption fingerprint to realize fingerprint matching, greatly improves intelligent mobile
The security of terminal.
Brief description of the drawings
Fig. 1:The random encrypting and deciphering system composition of intelligent mobile terminal provided in an embodiment of the present invention based on fingerprint characteristic shows
It is intended to.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, it is right below in conjunction with drawings and Examples
The present invention is further elaborated.
As shown in figure 1, the random encrypting and deciphering system of the intelligent mobile terminal provided in an embodiment of the present invention based on fingerprint characteristic
Including fingerprint identification module 2, Password Input module 3 and Base-Band Processing and intelligent use processing module 1.
Fingerprint identification module 2 is used for the initial fingerprint for gathering user's input.Fingerprint identification module 2 is by chip, sapphire, gold
Belong to the composition such as ring, soft board, support plate, connected between Base-Band Processing and intelligent use processing module 1 using SPI high speed bus interfaces
Connect.Fingerprint identification module 2 uses capacitive fingerprint sensing device, can use the fingerprint sensor of scratching formula or push type.Work as hand
Refer to the capacitive fingerprint sensing device of finger tip scratching or pressing sensing fingerprint, the capacitive fingerprint sensing device can be according to fingerprint
Fingerprint ridge and fingerprint valley and produce capacitance signal change to provide fingerprint image.The fingerprint image of acquisition is that a width contains more make an uproar
The gray level image of sound, the fingerprint image can be pre-processed by intelligent use processor to improve the quality of fingerprint image,
Strengthen fingerprint ridge and the contrast of fingerprint valley, fingerprint image is become into a width clearly point and line chart, in order to carry out feature extraction.
Base-Band Processing and intelligent use processing module 1 support trust zone frameworks.TrustZone is the exploitation of ARM companies
The safe practice for mobile intelligent terminal, TrustZone technologies and CortexTM- A processors are closely integrated, and are passed throughAXI buses and specific TrustZone systems IP blocks are extended in systems.This system can be protected in safety
Deposit, the peripheral hardware such as cryptographic block, keyboard and screen, so as to can ensure that they exempt from software attacks.According to TrustZone Ready
Program suggests exploitation and the equipment using TrustZone technologies provide can support complete credible performing environment (TEE),
Safe aware application and the platform of security service, triplicity can be got up on high-performance arm processor platform.Base band
The kernel of processing and intelligent use processing module 1 can use ARM Cortex A series polycaryon processors, the series processors branch
Hold TrustZone technologies.Such as the bit processor of tetra- cores of ARM Cortex A53 64, there is 1.5GHz processing speed, available for referring to
Line feature extraction, the encryption and decryption computing etc. of password match, intelligent mobile terminal.The Finger print characteristic abstract time of the processor<
20ms, fingerprint matching operation time<200ms, it can meet to pay real-time demand.Base-Band Processing and intelligent use processing module 1
With general mode and Trust Zone safe modes, can switch between both of which.Base-Band Processing and intelligent use processing
The fingerprint image that module 1 can collect under trust zone safe modes to fingerprint identification module 2 is pre-processed to improve
Security in processing procedure, pretreatment include normalization, image segmentation, enhancing, binaryzation and refinement etc..Wrapped in initial fingerprint
Containing the information such as fingerprint feature point and texture.Base-Band Processing and intelligent use processing module 1 can be to these fingerprint feature points and textures
Extracted etc. information, for subsequently to the computations of initial fingerprint.
Password Input module 3 is used for the initial password for receiving user's input.Password Input module 3 uses touch display screen,
Password can be inputted by the dummy keyboard in touch display screen.
Base-Band Processing and intelligent use processing module 1 receive initial fingerprint and initial password, and in trust zone safety
Symmetric encryption operation is carried out to initial fingerprint using initial password under pattern, obtains cryptographic fingerprint, and by the cryptographic fingerprint and just
Beginning password stores its trust zone region together, realizes the encryption to intelligent mobile terminal.Because cryptographic fingerprint is to utilize
Initial password carries out symmetric cryptography to initial fingerprint and obtained, and inputs different initial passwords and can obtain different cryptographic fingerprints, can
The accidental enciphering to initial fingerprint is realized, lifts the security of intelligent mobile terminal.
When being decrypted to intelligent mobile terminal, the collection input fingerprint of fingerprint identification module 2, Password Input module 3 receives defeated
Enter password.The initial password that Base-Band Processing and intelligent use processing module 1 will input password with stored in trust zone regions
It is compared, it is precise alignment that password, which compares, if comparison is inconsistent, terminates decryption process, if compared unanimously, is utilized
Input password and symmetrical decryption computing is carried out to cryptographic fingerprint, obtain decrypting fingerprint.
Symmetric cryptography is a kind of encryption method using one-key cryptosystem, and same key can be used as information simultaneously
Encryption and decryption, hair collection of letters both sides are encrypted and decrypted using this data key, after destination receives ciphertext, if thinking
Original text is understood, then needs to use the algorithm for inversion for encrypting used key and identical algorithms that ciphertext is decrypted, can just make its extensive
Again into readable plaintext.This encryption method is also referred to as secret key cryptography.Symmetric encryption operation can use XOR/invertible matrix phase
Multiply/cyclic shift or DES symmetric encipherment algorithms.
Principle based on symmetric cryptography, if input password is consistent with the initial password stored in trust zone regions,
The decryption fingerprint that symmetrical decryption computing obtains then is carried out to cryptographic fingerprint will have identical fingerprint characteristic with initial fingerprint.This
When, can be by the decryption fingerprint and input fingerprint matching.Fingerprint matching is fuzzy matching, is the fuzzy diagnosis of geometry domain specifically
Matching, the mainly matching of fingerprint positioning feature point and texture type.If matching is unsuccessful, decryption process is terminated again,
If the match is successful, illustrate input password and fingerprint by checking, now then intelligent mobile terminal is unlocked.
Base-Band Processing and intelligent use processing module 1 also have Modify password pattern, and in cipher mode is changed, password is defeated
Entering the Old Password that module 3 receives user's input, Base-Band Processing and intelligent use processing module 1 receive Old Password, and by Old Password
It is compared with the initial password stored in trust zone regions, and cryptographic fingerprint is entered using Old Password when comparing consistent
The symmetrical decryption computing of row, obtain decrypting fingerprint, meanwhile, the new password inputted by the reception user of Password Input module 3, and utilize
The new password re-starts symmetric cryptography to the decryption fingerprint, obtains new cryptographic fingerprint, and by the new cryptographic fingerprint with being somebody's turn to do
New password stores trust zone regions together.
Intelligent use processor is also associated with other functional modules, including radio-frequency module 8, audio-frequency module 5, camera 4 and
Power management module 7 etc..Radio-frequency module 8 is connected with antenna 9, the transmitting-receiving for radiofrequency signal.Memory module 6 includes EMMCP cores
Piece and TF card, support high speed storing.Audio-frequency module 5 is connected with microphone and loudspeaker, for driving microphone and loudspeaker.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all essences in the present invention
All any modification, equivalent and improvement made within refreshing and principle etc., should be included in the scope of the protection.