CN106027468A - Exception handling system for identity card authentication information processing request - Google Patents
Exception handling system for identity card authentication information processing request Download PDFInfo
- Publication number
- CN106027468A CN106027468A CN201610041119.2A CN201610041119A CN106027468A CN 106027468 A CN106027468 A CN 106027468A CN 201610041119 A CN201610041119 A CN 201610041119A CN 106027468 A CN106027468 A CN 106027468A
- Authority
- CN
- China
- Prior art keywords
- serial number
- control list
- card reader
- frequency management
- dispatch server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1408—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
- H04L63/1425—Traffic logging, e.g. anomaly detection
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0245—Filtering by information in the payload
Abstract
The invention provides an exception handling system for an identity card authentication information processing request. A dispatch server receives the identity card authentication information processing request, obtains a blacklist, and obtains an access frequency management and control list if a serial number of an identity card and a serial number of a card reader are not in the blacklist. An exception rule is obtained if the access frequency management and control list does not contain storage record of the serial number of the identity card in a first preset time interval before the moment when the access frequency management and control list is obtained and the access frequency management and control list does not contain the storage record of the serial number of the card reader in a second preset time interval before the moment when the access frequency management and control list is obtained. The identity card authentication information processing request is processed if the serial number of the identity card and the serial number of the card reader do not accord with the exception rule, thereby achieving the triple dynamic verification of the identity card and the identity card reader, and improving the processing safety and reliability of the identity card authentication information processing request.
Description
Technical field
The present invention relates to a kind of electronic technology field, particularly relate to a kind of authentication ids information processing system.
Background technology
Along with China's rapid development of economy, people's lives have had the biggest improvement, no matter obtain employment, engage in trade, travel, enter a higher school
Deng, it is required for carrying out authentication, and processes money, property, application welfare, seek medical advice etc., need also exist for carrying out identity and recognize
Card.Current No.2 residence card uses the design of built-in intelligence chip, has the ability to realize identity based on the Internet completely and recognizes
Card, but released so far from 2004, its using value is mined the most far away, and in recent years, ticket sale system has started on a large scale should
With Internet authentication and the identification of identity-based card.
The Internet authentication technology of identity-based card due in actually used, exist identity card lose, the situation such as stolen, deposit
Harm and risk in the identity card non-malice that I authorizes use;The transmission of network data simultaneously also faces communication and monitors, counts
According to distorting and the risk of a series of typical network attacks such as data playback.Therefore, how to stop to eavesdrop on escape way, usurp
Changing or the attack of the mode such as playback, screen the assailant of malice in real time, protection authentication module (SAM) safety becomes needs head badly
Solve the technical problem that.
Summary of the invention
Present invention seek to address that the problems referred to above/one of.
It is an object of the invention to provide the abnormality processing system of a kind of authentication ids information process request, for reaching above-mentioned purpose,
Technical scheme is specifically achieved in that and includes dispatch server and card reader: wherein, and card reader is used for generating
Authentication ids information process request, and identity card is processed request transmission to dispatch server;Wherein, authentication ids information
Process request includes: identity card serial number encryption value and card reader serial number;Dispatch server, is used for receiving authentication ids letter
Breath processes request, obtains the identity card serial number that decryption identity card serial number encryption is worth to;Dispatch server, is additionally operable to obtain
Blacklist, it is judged that whether identity card serial number is included in blacklist, if identity card serial number is included in blacklist, then terminates
Handling process;If identity card serial number is not comprised in blacklist, then judge whether card reader serial number is included in blacklist,
If card reader serial number is included in blacklist, then termination flow process;Dispatch server, is additionally operable to obtain blacklist, and sentences
Whether disconnected card reader serial number is included in blacklist, if card reader serial number is included in blacklist, then and termination flow process;
If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if identity card
Serial number is included in blacklist, then termination flow process;Dispatch server, is additionally operable to judging identity card serial number and Card Reader
When device serial number is all not included in blacklist, obtains visiting frequency management and control list, and judge getting at distance dispatch server
Before the visiting frequency management and control list moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card sequence
Number be stored in record, if distance dispatch server get before the visiting frequency management and control list moment in the first prefixed time interval,
Comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process;If at distance dispatch server
Get before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list does not comprise identity card
Serial number be stored in record, then judge distance dispatch server get the visiting frequency management and control list moment before second preset time
Between interval in, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining
Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence
Number be stored in record, then termination flow process;Dispatch server, is additionally operable to judging identity card serial number and card reader serial number
When being all not included in blacklist, obtain visiting frequency management and control list, and judge getting visiting frequency at distance dispatch server
Before the management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises being stored in of card reader serial number
Record, if getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, accesses frequency
Comprise card reader serial number in degree management and control list is stored in record, then termination flow process;If getting at distance dispatch server
Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader serial number
Be stored in record, then judge to get the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number
Enter record, then termination flow process;
Dispatch server, was additionally operable to before judging distance dispatch server gets the visiting frequency management and control list moment first and presets
In time interval, visiting frequency management and control list does not comprise being stored in record and obtaining at distance dispatch server of identity card serial number
Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader sequence
Number when being stored in record, obtain exception rules, and judge whether identity card serial number meets exception rules, if identity card serial number
Meet exception rules, then termination flow process;If identity card serial number does not meets exception rules, then judge that card reader serial number is
No meet exception rules, if card reader serial number meets exception rules, then termination flow process;
Dispatch server, was additionally operable to before judging distance dispatch server gets the visiting frequency management and control list moment first and presets
In time interval, visiting frequency management and control list does not comprise being stored in record and obtaining at distance dispatch server of identity card serial number
Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader sequence
Number when being stored in record, obtain exception rules, and judge whether card reader serial number meets exception rules, if card reader serial number
Meet exception rules, then termination flow process;If card reader serial number does not meets exception rules, then judge that identity card serial number is
No meet exception rules, if identity card serial number meets exception rules, then termination flow process;
Dispatch server, is additionally operable to when judging identity card serial number and card reader serial number does not all meet exception rules, to identity
Identification card information process request processes.
Alternatively, dispatch server, it is additionally operable to get before the visiting frequency management and control list moment first at distance dispatch server
In prefixed time interval, if visiting frequency management and control list comprises when being stored in record of identity card serial number, obtain in distance scheduling
Server gets before the visiting frequency management and control list moment in the 3rd prefixed time interval, identity card in visiting frequency management and control list
Serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number less than the first preset value, then return
First information termination flow process;If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value,
Then identity card serial number is stored in blacklist, returns error message termination flow process;Dispatch server, is additionally operable in distance
Dispatch server gets before the visiting frequency management and control list moment in the second prefixed time interval, wraps in visiting frequency management and control list
Containing when being stored in record of card reader serial number, obtained before distance dispatch server gets the visiting frequency management and control list moment the
In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence
Number be stored in record occurrence number less than the second preset value, then return the second information termination flow process;If card reader sequence
The record occurrence number that is stored in of row number is more than or equal to the second preset value, then card reader serial number is stored in blacklist, returns mistake
Information termination flow process.
Alternatively, dispatch server, it is additionally operable to when identity card serial number meets exception rules, be then stored in by identity card serial number
Visiting frequency management and control list, returns the first information termination flow process;When card reader serial number meets exception rules,
Then card reader serial number is stored in visiting frequency management and control list, returns the second information termination flow process.
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Scheduling clothes
Business device, is additionally operable to obtain decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader count value, its
In, when timestamp is demonstrate,proved the generation of information process request by the card reader identity-based identification generating authentication ids information process request
Carve and generate;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;Dispatch server, also
For based on timestamp and the moment receiving authentication ids information process request, generate very first time interval, it is judged that when first
Between be spaced whether more than the 5th prefixed time interval and less than the 6th prefixed time interval, if very first time interval is preset more than the 5th
Time interval and less than the 6th prefixed time interval, then judge that identity card serial number is legal, otherwise, it is judged that identity card serial number symbol
Close exception rules;Dispatch server, is additionally operable to based on timestamp and card reader count value, it is judged that distance dispatch server gets
Before the visiting frequency management and control list moment in the 7th prefixed time interval, what dispatch server received comprise identity card serial number adds
Whether the request number of times of the authentication ids information process request of close value is less than the 3rd preset value, if the bag that dispatch server receives
The request number of times of the authentication ids information process request containing identity card serial number encryption value is less than the 3rd preset value, then judge identity
Card serial number is legal, otherwise, it is judged that identity card serial number meets exception rules;Dispatch server, be additionally operable to based on timestamp and
Receive the moment of authentication ids information process request, generate very first time interval, it is judged that whether very first time interval is more than the
Eight prefixed time interval and less than the 9th prefixed time interval, if very first time interval is more than the 8th prefixed time interval and less than the
Nine prefixed time interval, then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;Scheduling
Server, is additionally operable to based on timestamp and card reader count value, it is judged that get visiting frequency management and control name at distance dispatch server
Before single moment in the tenth prefixed time interval, what dispatch server received comprises the authentication ids information of card reader serial number
Whether the request number of times processing request is less than the 4th preset value, if the identity comprising card reader serial number that dispatch server receives
The request number of times of identification card information process request less than the 4th preset value, then judges that card reader serial number is legal, otherwise, it is judged that read
Card device serial number meets exception rules;Dispatch server, is additionally operable to based on card reader count value, it is judged that the identity continuously received
In identification card information process request, whether the card reader count value with card reader sequence numbers match meets preset rules, if card reader meter
Numerical value meets preset rules, then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules.
Alternatively, also comprising certificate server, wherein, dispatch server is additionally operable to the authentication ids information processing that will receive
Request sends to certificate server;Certificate server, for extracting the identity card serial number in authentication ids information process request
Secret value, timestamp secret value and/or card reader counting secret value, to identity card serial number encryption value, timestamp secret value and/
Or card reader counting secret value is decrypted operation, it is thus achieved that identity card serial number, timestamp and/or card reader count value, and by body
Part card serial number, timestamp and/or card reader count value send to dispatch server.
Alternatively, also comprise database server, wherein, database server, be used for storing blacklist and frequency management and control list;
Dispatch server, is additionally operable to when acquisition request blacklist or frequency management and control list, generates blacklist and obtains request or frequency management and control
List obtains request, and sends to database server;Database server, be additionally operable to receive blacklist obtain request or
When frequency management and control list obtains request, according to request type, blacklist or frequency management and control list are sent to dispatch server;Scheduling
Server, is additionally operable to after blacklist or frequency management and control list are carried out write operation, generates the blacklist after updating or frequency pipe
Control list, and will update after blacklist or frequency management and control list send to database server;Database server, is additionally operable to
Receive and store the blacklist after renewal or frequency management and control list.
The system provided by the present invention, it is possible to realize the authentication ids letter generated based on abnormal identity card or abnormal card reader
Breath processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to manage as key value
Control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution, logical
Cross blacklist, it is possible in the process request that the very first time stops illegal identity card or illegal card reader is initiated, different by the present invention
Often processing method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency management and control
List is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous identity
Card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing side of the present invention
Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;By exception rules energy
The exception of current identity card or card reader is judged by enough realizations, even if this processes the identity card in request or card reader is not included in
In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize right
Identity card and triple dynamic authentication of card reader, improve the safety and reliability processing authentication ids information process request.
Accompanying drawing explanation
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, the required accompanying drawing used in embodiment being described below
It is briefly described, it should be apparent that, the accompanying drawing in describing below is only some embodiments of the present invention, for this area
From the point of view of those of ordinary skill, on the premise of not paying creative work, it is also possible to obtain other accompanying drawings according to these accompanying drawings.
The abnormality eliminating method flow chart of the authentication ids information process request that Fig. 1 provides for the embodiment of the present invention 1;
The abnormality processing system structural representation of the authentication ids information process request that Fig. 2 provides for the embodiment of the present invention 2.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described,
Obviously, described embodiment is only a part of embodiment of the present invention rather than whole embodiments.Reality based on the present invention
Execute example, the every other embodiment that those of ordinary skill in the art are obtained under not making creative work premise, broadly fall into
Protection scope of the present invention.
In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " on ", D score, " front ",
Orientation or the position relationship of the instruction such as " afterwards ", "left", "right", " vertically ", " level ", " top ", " end ", " interior ", " outward " are base
In orientation shown in the drawings or position relationship, it is for only for ease of the description present invention and simplifies description rather than instruction or hint institute
The device that refers to or element must have specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the present invention
Restriction.Additionally, term " first ", " second " are only used for describing purpose, and it is not intended that instruction or hint relative importance
Or quantity or position.
In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " install ", " being connected ",
" connect " and should be interpreted broadly, connect for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected;Permissible
It is to be mechanically connected, it is also possible to be electrical connection;Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two
The connection of individual element internal.For the ordinary skill in the art, can understand that above-mentioned term is in the present invention with concrete condition
In concrete meaning.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
Embodiment 1
The present embodiment provides a kind of authentication ids information process request abnormality eliminating method, as it is shown in figure 1, comprise the following steps:
S1: dispatch server receives authentication ids information process request, and authentication ids information process request includes: identity card
Serial number encryption value and card reader serial number;
Identity card processes the process request that request is initiated for card reader of ID card, and dispatch server judges that identity card processes request as closing
After method processes request, according to preset rules, process the security authentication module that request distribution is idle, allocated peace for this identity card
The originating end that full authentication module and this identity card process request carries out data interaction, and wherein, identity card serial number encryption value is identity
The identity card serial number encryption obtained from identity card is obtained by card card reader, card reader Serial No. card reader of ID card self
Serial number.
S2: dispatch server obtains the identity card serial number that decryption identity card serial number encryption is worth to;
The identity card serial number encryption value received is decrypted computing, if card reader of ID card uses symmetric encipherment algorithm encryption
Identity card serial number, then use corresponding symmetrical decipherment algorithm to be decrypted computing to the identity card serial number encryption value received;
If card reader of ID card uses own private key encryption identity card serial number, then the identity card serial number encryption value received is used body
The PKI of part card card reader is decrypted computing;The main body that identity card serial number encryption value is decrypted computing can be scheduling clothes
Business device itself, it is also possible to be external equipment or external chip.
S3: dispatch server obtains blacklist, performs step S401 or step S402;
Dispatch server can obtain blacklist from its memory, it is also possible to obtains blacklist from outside, comprises in blacklist
There are illegal identity card serial number and illegal card reader serial number;If the authentication ids information process request received comprising illegal
Identity card serial number or illegal card reader serial number, then this authentication ids information process request is in illegal state, nothing
Method is normally accepted by server.
S401: dispatch server judges whether identity card serial number is included in blacklist, if identity card serial number is included in black name
In single, then termination flow process;
Blacklist has illegal identity card serial number, the serial number of the identity card being such as reported the loss, the body of appearance exception continuously
The serial number of part card or the serial number etc. of identity cards occurred in multiple areas in the short time, its place asked is comprehended bring bigger
Risk, if dispatch server judges that identity card serial number is included in blacklist, illustrates that this identity card Serial No. illegal identity is demonstrate,proved
Serial number, server disregards, termination flow process.Alternatively, server can return information to point out user,
This identity card has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
S402: dispatch server judges whether card reader serial number is included in blacklist, if card reader serial number is included in black name
In single, then termination flow process;
Blacklist has illegal card reader serial number, the serial number of the card reader being such as reported the loss, the reading of appearance exception continuously
The serial number of card device, the serial number exceeding the card reader of service life or the serial number etc. of card reader occurred in multiple areas in short-term,
Its place asked is comprehended and brings greater risk, if dispatch server judges that card reader serial number is included in blacklist, this is described
Card reader Serial No. illegal identity demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server is permissible
Return information is to point out user, and this card reader has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, if after card reader serial number is included in blacklist, further comprises the steps of: dispatch server and obtain visiting frequency
Management and control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server,
Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if getting access frequency at distance dispatch server
Before the degree management and control list moment in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in note
Record, then dispatch server obtains and got before the visiting frequency management and control list moment between the 3rd Preset Time at distance dispatch server
Every interior, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record
Occurrence number is more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch server judges in distance
Dispatch server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list not
Comprise identity card serial number is stored in record, then obtain exception rules, it is judged that whether identity card serial number meets exception rules, if
Identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control list;
If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if body
Part card serial number is included in blacklist, then termination flow process;
If card reader serial number is not comprised in blacklist, then determine whether the legitimacy of identity card serial number, to determine body
Part card serial number and card reader serial number are the most legal, have illegal identity card serial number, such as, be reported the loss in blacklist
The sequence of the serial number of identity card, the serial number that abnormal identity card occurs continuously or the short time interior identity cards occurred in multiple areas
Row number etc., comprehend its place asked and bring greater risk, if dispatch server judges identity card serial number and is included in blacklist,
Illustrating that this identity card Serial No. illegal identity demonstrate,proves serial number, server is disregarded, termination flow process.Alternatively, service
Device can return information to point out user, and this identity card has been added into blacklist, it is simple to user carries out subsequent operation and problem
Solve;
Alternatively, after step judges that card reader serial number is not comprised in blacklist, dispatch server is further comprised the steps of:
Obtain visiting frequency management and control list, it is judged that second presets before distance dispatch server gets the visiting frequency management and control list moment
In time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if at distance dispatch server
Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence
Row number be stored in record, then dispatch server obtains and gets before the visiting frequency management and control list moment the at distance dispatch server
In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence
Number be stored in record occurrence number more than or equal to the second preset value, then card reader serial number is stored in blacklist;If dispatch service
Device judges to get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency
Do not comprise card reader serial number in management and control list is stored in record, then obtain exception rules, it is judged that whether card reader serial number meets
Exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control list;
If dispatch server judges that identity card serial number and card reader serial number are all not included in blacklist, then perform step S5;
If dispatch server judges that identity card serial number and card reader serial number are all not included in blacklist, identity card sequence is described
Number and card reader serial number be all legal, say, that this authentication ids information process request is in legal state, need to enter
One step judges whether this authentication ids information process request is in by management and control state;
S5: dispatch server obtains visiting frequency management and control list, and performs step S601 or step S602;
Dispatch server can obtain visiting frequency management and control list from its memory, it is also possible to obtain visiting frequency pipe from outside
Control list, includes the identity card serial number by management and control and the card reader serial number by management and control in visiting frequency management and control list;If connecing
The authentication ids information process request received comprises the identity card serial number by management and control or the card reader serial number by management and control, that
This authentication ids information process request is in by management and control state, could thaw after needing frozen certain time length, currently cannot be by
Server normally accepts.
S601: dispatch server judge distance dispatch server get the visiting frequency management and control list moment before first preset time
Between interval in, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining
Get before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card sequence
Number be stored in record, then termination flow process;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length,
Under management and control state, its request initiated is not processed by dispatch server, and dispatch server can first determine whether to adjust in distance
Whether degree server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list
Comprise identity card serial number is stored in record, if getting before the visiting frequency management and control list moment first at distance dispatch server
In prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, and this identity card serial number is described
Also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, can answer according to concrete
It is configured by scene, such as, when card-reading terminal is automatic ticket taking machine, the first prefixed time interval can be set as 1 minute,
It is to say, when finding that certain specific identity card serial number is in frequency management and control list, within ensuing 1 minute, the most right
The request initiated based on this identity card serial number carries out processing operation;Alternatively, when finding that certain specific identity card serial number is in frequency
During degree management and control list, return information prompting this identity card abnormal state of user, try the most again;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if
Before dispatch server gets the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list
In comprise identity card serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server
Before the list moment in the 3rd prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number,
If the record occurrence number that is stored in of identity card serial number is less than the first preset value, then return the first information termination flow process;
If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value, then identity card serial number is stored in blacklist,
Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number
In the case of entering record, can determine whether before distance dispatch server gets the visiting frequency management and control list moment the 3rd pre-
If in time interval, comprise identity card serial number in visiting frequency management and control list is stored in record number of times;In one section of Preset Time,
If dispatch server repeatedly receives the place initiated based on a certain identity card serial number being specifically present in frequency management and control list
During reason request, it is believed that this identity card Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server judges
In receiving the first prefixed time interval before the request of process, once it was written into according to the identity card serial number that the request of process obtains
In frequency management and control list, then determine whether in receiving the 3rd prefixed time interval before the request of process, according to place
Whether the number of times that the identity card serial number that reason request obtains once was written in frequency management and control list reaches the first preset value, Qi Zhong
Three prefixed time interval and the first preset value are preset value, can set according to application scenarios, such as: the 3rd prefixed time interval
Being 5 minutes, the first preset value is 100 times, then if dispatch server judges receiving based on specific identity card serial number
In the process initiated is asked first 5 minutes, have been received by processing the number of times asked less than 100 based on what this identity card serial number was initiated
Secondary, then return the first information prompting user and try the most again and termination flow process;If had been received by based on this identity card sequence
This identity card serial number more than or equal to 100 times, is then write blacklist by the number of times processing request that row number are initiated, and returns mistake
This identity card of information alert user has been added into blacklist, and termination flow process;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, visiting frequency management and control list comprises identity card serial number be stored in record after, further comprise the steps of: dispatch server judge
Get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency management and control name
Whether comprise card reader serial number in list is stored in record, if getting the visiting frequency management and control list moment at distance dispatch server
Before in the second prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, then dispatch service
Device obtains and gets before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency
In management and control list card reader serial number be stored in record occurrence number, if card reader serial number be stored in record occurrence number more than or
Equal to the second preset value, then card reader serial number is stored in blacklist;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number
In the case of entering record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control list
Before moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number be stored in record and
Judge to get before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency pipe
Comprise card reader serial number in control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly receives
During to the process request initiated based on a certain card reader serial number being specifically present in frequency management and control list, it is believed that this Card Reader
Device Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request
In second prefixed time interval, once it was written in frequency management and control list according to the card reader serial number that the request of process obtains, then
Determine whether in receiving the 4th prefixed time interval before the request of process, the card reader sequence obtained according to the request of process
Whether number number of times being once written in frequency management and control list reaches the second preset value, wherein the 4th prefixed time interval and second pre-
If value is preset value, can set according to application scenarios, such as: the 4th prefixed time interval is 5 minutes, the second preset value is
100 times, then if dispatch server judges receiving first 5 minutes of process request based on the initiation of specific card reader serial number
In, have been received by the number of times processing request based on this card reader serial number is initiated and be less than 100 times, then return the second information
Prompting user tries and termination flow process the most again;If having been received by the secondary of process request based on the initiation of this card reader serial number
This card reader serial number more than or equal to 100 times, is then write blacklist by number, has returned error message prompting this card reader of user
It is added into blacklist, and termination flow process;
If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency
Do not comprise identity card serial number in management and control list is stored in record, then judge to get visiting frequency management and control at distance dispatch server
Before the list moment in the second prefixed time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record,
If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency management and control
Comprise card reader serial number in list is stored in record, then termination flow process;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if
Before dispatch server gets the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list
In comprise card reader serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server
Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number,
If the record occurrence number that is stored in of card reader serial number is less than the second preset value, then return the second information termination flow process;
If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist,
Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list does not comprise identity card serial number
In the case of being stored in record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control name
Before single moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number be stored in record with
And judge to get before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency
Comprise card reader serial number in management and control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly connects
When receiving process request based on the initiation of a certain card reader serial number being specifically present in frequency management and control list, it is believed that this reading
Card device Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request
The second prefixed time interval in, according to process request obtain card reader serial number be once written in frequency management and control list, that
Determine whether in receiving the 4th prefixed time interval before the request of process, the card reader sequence obtained according to the request of process
Whether the row number number of times being once written in frequency management and control list reaches the second preset value, wherein the 4th prefixed time interval and second
Preset value is preset value, can set according to application scenarios, such as: the 4th prefixed time interval is 5 minutes, the second preset value
It it is 100 times, then if dispatch server judges receiving first 5 points of the process request initiated based on specific card reader serial number
In clock, have been received by being less than 100 times based on the number of times processing request that this card reader serial number is initiated, then return the second prompting letter
Breath prompting user try and termination flow process the most again;If having been received by process request based on the initiation of this card reader serial number
Number of times is more than or equal to 100 times, then this card reader serial number is write blacklist, returns error message prompting this card reader of user
Blacklist, and termination flow process it are added into;
S602: dispatch server judge distance dispatch server get the visiting frequency management and control list moment before second preset time
Between interval in, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining
Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence
Number be stored in record, then termination flow process;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length,
Under management and control state, its request initiated is not processed by dispatch server, and dispatch server can first determine whether to adjust in distance
Whether degree server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list
Comprise card reader serial number is stored in record, if getting before the visiting frequency management and control list moment first at distance dispatch server
In prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, and this card reader serial number is described
Also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, can answer according to concrete
It is configured by scene, such as, when card-reading terminal is automatic ticket taking machine, the first prefixed time interval can be set as 1 minute,
It is to say, when finding that certain specific card reader serial number is in frequency management and control list, within ensuing 1 minute, the most right
The request initiated based on this card reader serial number carries out processing operation;Alternatively, when finding that certain specific card reader serial number is in frequency
During degree management and control list, return information prompting this Card reader status of user abnormal, try the most again;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if
Before dispatch server gets the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list
In comprise card reader serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server
Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number,
If the record occurrence number that is stored in of card reader serial number is less than the second preset value, then return the second information termination flow process;
If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist,
Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number
In the case of entering record, can determine whether before distance dispatch server gets the visiting frequency management and control list moment the 4th pre-
If in time interval, comprise card reader serial number in visiting frequency management and control list is stored in record number of times;In one section of Preset Time,
If dispatch server repeatedly receives the place initiated based on a certain card reader serial number being specifically present in frequency management and control list
During reason request, it is believed that this card reader Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server judges
In receiving the second prefixed time interval before the request of process, once it was written into according to the card reader serial number that the request of process obtains
In frequency management and control list, then determine whether in receiving the 4th prefixed time interval before the request of process, according to place
Whether the number of times that the card reader serial number that reason request obtains once was written in frequency management and control list reaches the second preset value, Qi Zhong
Four prefixed time interval and the second preset value are preset value, can set according to application scenarios, such as: the 4th prefixed time interval
Being 5 minutes, the second preset value is 100 times, then if dispatch server judges receiving based on specific card reader serial number
In the process initiated is asked first 5 minutes, have been received by processing the number of times asked less than 100 based on what this card reader serial number was initiated
Secondary, then return the second information prompting user and try the most again and termination flow process;If had been received by based on this card reader sequence
This card reader serial number more than or equal to 100 times, is then write blacklist by the number of times processing request that row number are initiated, and returns mistake
This card reader of information alert user has been added into blacklist, and termination flow process;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, visiting frequency management and control list comprises card reader serial number be stored in record after, further comprise the steps of: dispatch server judge
Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency management and control name
Whether comprise identity card serial number in list is stored in record, if getting the visiting frequency management and control list moment at distance dispatch server
Before in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, then dispatch service
Device obtains and gets before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency
In management and control list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number more than or
Equal to the first preset value, then identity card serial number is stored in blacklist;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number
In the case of entering record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control list
Before moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number be stored in record and
Judge to get before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency pipe
Comprise identity card serial number in control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly receives
During to the process request initiated based on a certain identity card serial number being specifically present in frequency management and control list, it is believed that this identity
Card Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request
In first prefixed time interval, once it was written in frequency management and control list according to the identity card serial number that the request of process obtains, then
Determine whether in receiving the 3rd prefixed time interval before the request of process, the identity card sequence obtained according to the request of process
Whether number number of times being once written in frequency management and control list reaches the first preset value, wherein the 3rd prefixed time interval and first pre-
If value is preset value, can set according to application scenarios, such as: the 3rd prefixed time interval is 5 minutes, the first preset value is
100 times, then if dispatch server judges receiving first 5 minutes of process request based on specific identity card serial number initiation
In, have been received by the number of times processing request based on this identity card serial number is initiated and be less than 100 times, then return the first information
Prompting user tries and termination flow process the most again;If having been received by the secondary of process request based on the initiation of this identity card serial number
This identity card serial number more than or equal to 100 times, is then write blacklist by number, has returned error message prompting this identity card of user
It is added into blacklist, and termination flow process;
If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency
Do not comprise card reader serial number in management and control list is stored in record, then judge to get visiting frequency management and control at distance dispatch server
Before the list moment in the first prefixed time interval, whether comprise identity card serial number in visiting frequency management and control list is stored in record,
If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency management and control
Comprise identity card serial number in list is stored in record, then termination flow process;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server
In, comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if
Before dispatch server gets the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list
In comprise identity card serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server
Before the list moment in the 3rd prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number,
If the record occurrence number that is stored in of identity card serial number is less than the first preset value, then return the first information termination flow process;
If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value, then identity card serial number is stored in blacklist,
Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server
Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader serial number
In the case of being stored in record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control name
Before single moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number be stored in record with
And judge to get before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency
Comprise identity card serial number in management and control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly connects
When receiving process request based on the initiation of a certain identity card serial number being specifically present in frequency management and control list, it is believed that this body
Part card Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request
The first prefixed time interval in, according to process request obtain identity card serial number be once written in frequency management and control list, that
Determine whether in receiving the 3rd prefixed time interval before the request of process, the identity card sequence obtained according to the request of process
Whether the row number number of times being once written in frequency management and control list reaches the first preset value, wherein the 3rd prefixed time interval and first
Preset value is preset value, can set according to application scenarios, such as: the 3rd prefixed time interval is 5 minutes, the first preset value
It it is 100 times, then if dispatch server judges receiving first 5 points of the process request initiated based on specific identity card serial number
In clock, have been received by being less than 100 times based on the number of times processing request that this identity card serial number is initiated, then return the first prompting letter
Breath prompting user try and termination flow process the most again;If having been received by process request based on the initiation of this identity card serial number
Number of times is more than or equal to 100 times, then this identity card serial number is write blacklist, returns error message prompting this identity card of user
Blacklist, and termination flow process it are added into;
If dispatch server judges to get before the visiting frequency management and control list moment between the first Preset Time at distance dispatch server
Every interior, whether visiting frequency management and control list comprise the record that is stored in of identity card serial number, and judges to obtain at distance dispatch server
Get before the visiting frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader
Serial number be stored in record, if dispatch server judged before dispatch server gets the visiting frequency management and control list moment to distance
In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes
Business device gets before the visiting frequency management and control list moment in the second prefixed time interval, does not comprise reading in visiting frequency management and control list
Card device serial number be stored in record, then perform step S7;
When dispatch server judges to get before the visiting frequency management and control list moment between the first Preset Time at distance dispatch server
Every interior, visiting frequency management and control list does not comprise being stored in record and getting access at distance dispatch server of identity card serial number
Before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise depositing of card reader serial number
When entering to record, it may be determined that when this identity card serial number and this card reader serial number at the first prefixed time interval and are preset second
Between interval in abnormality did not occur, determine whether this identity card serial number or this card reader serial number this ask in
Whether it is in abnormality;
S7, dispatch server obtains exception rules, and performs step S801 or step S802;
S801: dispatch server judges whether identity card serial number meets exception rules, if identity card serial number meets exception rules,
Then termination flow process;
Exception rules can be stored in dispatch server its memory, it is also possible to obtains from external equipment, dispatch server energy
Enough judge whether the identity card serial number in this request or card reader serial number are in abnormality according to exception rules;
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Step S2
Also including, dispatch server obtains decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader counting
Value, wherein, timestamp is demonstrate,proved information process request by the card reader identity-based identification generating authentication ids information process request
Produce moment generation;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;
Dispatch server judge identity card serial number whether meet exception rules can in the following ways in one or more:
Mode one: dispatch server is based on timestamp and the moment receiving authentication ids information process request, when generating first
Between be spaced, it is judged that whether very first time interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, if when first
Between interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, then judge that identity card serial number is legal, otherwise,
Judge that identity card serial number meets exception rules;
Timestamp includes the generation moment of authentication ids information process request, when dispatch server receives process request,
Can obtain very first time interval according to the moment and timestamp receiving the request of process, very first time interval represents this process request
From being generated to time of being received middle experience, if very first time interval is too short or long, all represent this request transmitting procedure
Middle occur security and the reliability that is abnormal, that process for guarantee, it is judged that the identity card sequence comprised in authentication ids information process request
Row exception, the very first time zone of reasonableness at interval is preset value, can set according to specific application scenarios, such as: the 5th is pre-
If time interval is 1 second, the 6th prefixed time interval is 60 seconds, then when very first time interval is less than 1 second or more than 60
Second time, it is possible to determine that this time the identity card serial number in authentication ids information process request meets exception rules;
Mode two: dispatch server is based on timestamp and card reader count value, it is judged that distance dispatch server gets visiting frequency
Before the management and control list moment in the 7th prefixed time interval, what dispatch server received comprises the body of identity card serial number encryption value
The request number of times of part identification card information process request whether less than the 3rd preset value, if dispatch server receive comprise identity card
The request number of times of the authentication ids information process request of serial number encryption value is less than the 3rd preset value, then judge identity card serial number
Legal, otherwise, it is judged that identity card serial number meets exception rules;
When the authentication ids information process request generated based on a certain specific identity card serial number the most repeatedly occurs,
Can be determined that this identity card serial number meets exception rules, the 7th prefixed time interval and the 3rd preset value are preset value, can depend on
Setting according to concrete application scenarios, such as, the 7th prefixed time interval is 5 minutes, and the 3rd preset value is 100 times, then scheduling
Server reads this and processes the timestamp in request and process in request for the 100th time before based on what this identity card serial number generated
Timestamp, it is judged that whether the time interval between two timestamps less than 5 minutes, if less than 5 minutes, then judges this body
Part card serial number meets exception rules;
Alternatively, dispatch server judges whether card reader serial number meets one or more in exception rules in the following manner:
Mode one: dispatch server is based on timestamp and the moment receiving authentication ids information process request, when generating first
Between be spaced, it is judged that whether very first time interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, if when first
Between interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, then judge that card reader serial number is legal, otherwise,
Judge that card reader serial number meets exception rules;
Timestamp includes the generation moment of authentication ids information process request, when dispatch server receives process request,
Can obtain very first time interval according to the moment and timestamp receiving the request of process, very first time interval represents this process request
From being generated to time of being received middle experience, if very first time interval is too short or long, all represent this request transmitting procedure
Middle occur security and the reliability that is abnormal, that process for guarantee, it is judged that the card reader sequence comprised in authentication ids information process request
Row exception, the very first time zone of reasonableness at interval is preset value, can set according to specific application scenarios, such as: the 8th is pre-
If time interval is 1 second, the 9th prefixed time interval is 60 seconds, then when very first time interval is less than 1 second or more than 60
Second time, it is possible to determine that this time the card reader serial number in authentication ids information process request meets exception rules;
Mode two: dispatch server is based on timestamp and card reader count value, it is judged that get access frequency at distance dispatch server
Before the degree management and control list moment in the tenth prefixed time interval, what dispatch server received comprises the identity card of card reader serial number
Authentication information processes the request number of times of request whether less than the 4th preset value, if dispatch server receive comprise card reader sequence
Number the request number of times of authentication ids information process request less than the 4th preset value, then judge that card reader serial number is legal, otherwise,
Judge that card reader serial number meets exception rules;
When the authentication ids information process request generated based on a certain specific card reader serial number the most repeatedly occurs,
Can be determined that this card reader serial number meets exception rules, the tenth prefixed time interval and the 4th preset value are preset value, can depend on
Setting according to concrete application scenarios, such as, the tenth prefixed time interval is 5 minutes, and the 4th preset value is 100 times, then scheduling
Server reads this and processes the timestamp in request and process in request for the 100th time before based on what this card reader serial number generated
Timestamp, it is judged that whether the time interval between two timestamps less than 5 minutes, if less than 5 minutes, then judges this reading
Card device serial number meets exception rules;
Mode three: dispatch server is based on card reader count value, it is judged that in the authentication ids information process request continuously received
Whether preset rules is met, if card reader count value meets preset rules, then with the card reader count value of card reader sequence numbers match
Judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;
When card reader initiates authentication ids information process request, its card reader count value can be changed according to preset rules, example
As, often initiate single treatment request, card reader count value adds one;After dispatch server receives process request, extract card reader
Serial number and card reader count value, it is judged that processed the card reader count value in request and basis the last time corresponding with this card reader serial number
Whether secondary card reader count value meets preset rules, if not meeting preset rules, then illustrates that this card reader exists abnormal, its Card Reader
Device serial number meets exception rules;
Alternatively, if step identity card serial number meets exception rules, then termination flow process, including step: if identity card sequence
Row number meet exception rules, then identity card serial number is stored in visiting frequency management and control list, returns the first information termination
Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of identity card serial number meets exception rules, further this identity card serial number to be write frequency management and control list, return
Return the existence of this identity card of information alert user extremely to try the most again, and termination flow process, thus realize frequency management and control list
Dynamically change, promotes the intelligent of authentication ids information process request processing procedure;
Alternatively, if after step identity card serial number meets exception rules, further comprising the steps of: and whether judge card reader serial number
Meet exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control list;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of identity card serial number meets exception rules, to determine whether whether card reader serial number meets exception rules, if
Card reader serial number meets exception rules, then should by card reader serial number write-access frequency management and control list return information prompting user
Card reader exists to be tried extremely the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes body
The intelligent of information process request processing procedure is demonstrate,proved in part identification;
If identity card serial number does not meets exception rules, then judge whether card reader serial number meets exception rules, if card reader sequence
Row number meet exception rules, then termination flow process;
Alternatively, if step card reader serial number meets exception rules, then termination flow process, including step: if card reader sequence
Row number meet exception rules, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination
Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of identity card serial number do not meets exception rules, to determine whether whether card reader serial number meets exception rules,
If card reader serial number meets exception rules, then point out user by card reader serial number write-access frequency management and control list return information
This card reader exists to be tried extremely the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes
Authentication ids information process request processing procedure intelligent;
S802: dispatch server judges whether card reader serial number meets exception rules, if card reader serial number meets exception rules,
Then termination flow process;
With S801 accordingly, whether dispatch server first can also meet exception rules to card reader serial number judges,
Alternatively, if step card reader serial number meets exception rules, then termination flow process, including step: if card reader sequence
Row number meet exception rules, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination
Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of card reader serial number meets exception rules, further this card reader serial number to be write frequency management and control list, return
Return the existence of this card reader of information alert user extremely to try the most again, and termination flow process, thus realize frequency management and control list
Dynamically change, promotes the intelligent of authentication ids information process request processing procedure;
Alternatively, if after step card reader serial number meets exception rules, further comprising the steps of: and whether judge identity card serial number
Meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control list;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of card reader serial number meets exception rules, to determine whether whether identity card serial number meets exception rules, if
Identity card serial number meets exception rules, then should by identity card serial number write-access frequency management and control list return information prompting user
Identity card existence is abnormal to be tried the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes body
The intelligent of information process request processing procedure is demonstrate,proved in part identification;
If card reader serial number does not meets exception rules, then judge whether identity card serial number meets exception rules, if identity card sequence
Row number meet exception rules, then termination flow process;
Alternatively, if step identity card serial number meets exception rules, then termination flow process, including step: if identity card sequence
Row number meet exception rules, then identity card serial number is stored in visiting frequency management and control list, returns the first information termination
Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really
Determine in the case of card reader serial number do not meets exception rules, to determine whether whether identity card serial number meets exception rules,
If identity card serial number meets exception rules, then point out user by identity card serial number write-access frequency management and control list return information
The existence of this identity card is abnormal to be tried the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes
Authentication ids information process request processing procedure intelligent;
If dispatch server judges that identity card serial number and card reader serial number all do not meet exception rules, then perform step S9;
Authentication ids information process request is processed by S9: dispatch server;
When dispatch server judges identity card serial number and card reader serial number does not all meet exception rules, then explanation identity card sequence
Row number and card reader serial number all do not appear in blacklist, and do not go out in the prefixed time interval before receiving the request of process
Now in frequency management and control list, do not meet exception rules, say, that now identity card serial number and card reader serial number simultaneously
The most legal, now, the dispatch server authentication ids information to generating based on this identity card serial number and this card reader serial number
Process request carries out processing operation.
The method provided by the embodiment of the present invention, it is possible to realize the identity card generated based on abnormal identity card or abnormal card reader
Authentication information processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to enter as key value
Line pipe control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution,
Pass through blacklist, it is possible to stop illegal identity card or the process request of illegal card reader initiation in the very first time, by the present invention's
Abnormality eliminating method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency pipe
Control list is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous body
Part card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing of the present invention
Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;Pass through exception rules
It is capable of the exception to current identity card or card reader to judge, even if this processes the identity card in request or card reader does not comprises
In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize
To identity card and triple dynamic authentication of card reader, improve the safety that authentication ids information process request is processed with reliable
Property.
Embodiment 2:
The present embodiment provides a kind of authentication ids information process request processing system, as in figure 2 it is shown, include dispatch server 201
With card reader of ID card 202:
Wherein, card reader of ID card 202, it is used for generating authentication ids information process request, and identity card is processed request
Deliver to dispatch server 201;Wherein, authentication ids information process request includes: identity card serial number encryption value and card reader
Serial number;
Identity card processes the process request that request is initiated for card reader of ID card 202, and dispatch server 201 judges that identity card processes
After asking to ask for legal processes, according to preset rules, process the security authentication module that request distribution is idle, quilt for this identity card
The originating end that the security authentication module of distribution processes request with this identity card carries out data interaction, wherein, identity card serial number encryption
The identity card serial number encryption obtained from identity card is obtained by value for card reader of ID card 202, card reader Serial No. identity card
The serial number of card reader 202 self.
Dispatch server 201, is used for receiving authentication ids information process request, and obtaining decryption identity card serial number encryption is worth
The identity card serial number arrived;
The identity card serial number encryption value received is decrypted computing, if card reader of ID card 202 uses symmetric encipherment algorithm
Encryption identity card serial number, then use corresponding symmetrical decipherment algorithm to be decrypted fortune to the identity card serial number encryption value received
Calculate;If card reader of ID card 202 uses own private key encryption identity card serial number, then to the identity card serial number encryption received
Value uses the PKI of card reader of ID card 202 to be decrypted computing;Identity card serial number encryption value is decrypted the main body of computing
Can be dispatch server 201 itself, it is also possible to be external equipment or external chip.
Dispatch server 201, is additionally operable to obtain blacklist, it is judged that whether identity card serial number is included in blacklist, if identity
Card serial number is included in blacklist, then termination flow process;
Dispatch server 201 can obtain blacklist from its memory, it is also possible to obtains blacklist from outside, in blacklist
Include illegal identity card serial number and illegal card reader serial number;If the authentication ids information process request received comprises
Illegal identity card serial number or illegal card reader serial number, then this authentication ids information process request is in illegal state,
Normally cannot be accepted by server.
Blacklist has illegal identity card serial number, the serial number of the identity card being such as reported the loss, the body of appearance exception continuously
The serial number of part card or the serial number etc. of identity cards occurred in multiple areas in the short time, its place asked is comprehended bring bigger
Risk, if dispatch server 201 judges that identity card serial number is included in blacklist, illustrates this illegal body of identity card Serial No.
Part demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server can return information to point out use
Family, this identity card has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, when identity card serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency management and control
List, it is judged that get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201,
Whether comprise card reader serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201
Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number
Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201
In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence
Number be stored in record occurrence number more than or equal to the second preset value, then card reader serial number is stored in blacklist;If dispatch service
Device 201 judges to get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201,
Do not comprise card reader serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that card reader serial number
Whether meet exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control name
Single;
If identity card serial number is not comprised in blacklist, then judge whether card reader serial number is included in blacklist, if reading
Card device serial number is included in blacklist, then termination flow process;
If identity card serial number is not comprised in blacklist, then determine whether the legitimacy of card reader serial number, to determine body
Part card serial number and card reader serial number are the most legal, have illegal card reader serial number, such as, be reported the loss in blacklist
The serial number of card reader, the serial number of abnormal card reader occurs continuously, exceed the serial number or in short-term of the card reader of service life
At the serial number etc. of the card reader that multiple areas occur, its place asked is comprehended and brings greater risk, if dispatch server 201
Judging that card reader serial number is included in blacklist, illustrate that this card reader Serial No. illegal identity demonstrate,proves serial number, server is not
Process, termination flow process.Alternatively, server can return information to point out user, and this card reader has been added into black
List, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, if after card reader serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency pipe
Control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201,
Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number
Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201
In three prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card sequence
Number be stored in record occurrence number more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch service
Device 201 judges to get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201,
Do not comprise identity card serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that identity card serial number
Whether meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control name
Single;
Dispatch server 201, is additionally operable to obtain blacklist, and judges whether card reader serial number is included in blacklist, if reading
Card device serial number is included in blacklist, then termination flow process;
Blacklist has illegal card reader serial number, the serial number of the card reader being such as reported the loss, the reading of appearance exception continuously
The serial number of card device, the serial number exceeding the card reader of service life or the serial number etc. of card reader occurred in multiple areas in short-term,
Its place asked is comprehended and brings greater risk, if dispatch server 201 judges that card reader serial number is included in blacklist, say
This card reader Serial No. illegal identity bright demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server
Can return information to point out user, this card reader has been added into blacklist, it is simple to user carries out subsequent operation and solution
Certainly;
Alternatively, if after card reader serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency pipe
Control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201,
Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201
Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number
Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201
In three prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card sequence
Number be stored in record occurrence number more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch service
Device 201 judges to get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201,
Do not comprise identity card serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that identity card serial number
Whether meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control name
Single;
If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if body
Part card serial number is included in blacklist, then termination flow process;
If card reader serial number is not comprised in blacklist, then determine whether the legitimacy of identity card serial number, to determine body
Part card serial number and card reader serial number are the most legal, have illegal identity card serial number, such as, be reported the loss in blacklist
The sequence of the serial number of identity card, the serial number that abnormal identity card occurs continuously or the short time interior identity cards occurred in multiple areas
Row number etc., comprehend its place asked and bring greater risk, if dispatch server 201 judges that identity card serial number is included in black name
In single, illustrating that this identity card Serial No. illegal identity demonstrate,proves serial number, server is disregarded, termination flow process.Alternatively,
Server can return information to point out user, and this identity card has been added into blacklist, it is simple to user carry out subsequent operation and
Resolving probiems;
Alternatively, after step judges that card reader serial number is not comprised in blacklist, dispatch server 201 is additionally operable to obtain
Take visiting frequency management and control list, it is judged that second is pre-before distance dispatch server 201 gets the visiting frequency management and control list moment
If in time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if in distance dispatch service
Device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, comprises reading in visiting frequency management and control list
Card device serial number be stored in record, then dispatch server 201 obtain distance dispatch server 201 getting visiting frequency management and control
Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number,
If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist;
If dispatch server 201 judge distance dispatch server 201 get the visiting frequency management and control list moment before second preset time
Between interval in, do not comprise card reader serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that read
Whether card device serial number meets exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access
Frequency management and control list;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number is all not included in blacklist,
Obtain visiting frequency management and control list, and judge to get before the visiting frequency management and control list moment the at distance dispatch server 201
In one prefixed time interval, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if in distance scheduling
Server 201 gets before the visiting frequency management and control list moment in the first prefixed time interval, wraps in visiting frequency management and control list
It is stored in record, then termination flow process containing identity card serial number;
If dispatch server 201 judges that identity card serial number and card reader serial number are all not included in blacklist, identity card is described
Serial number and card reader serial number are all legal, say, that this authentication ids information process request is in legal state,
Need to determine whether whether this authentication ids information process request is in by management and control state;
Dispatch server 201 can obtain visiting frequency management and control list from its memory, it is also possible to obtains from outside and accesses frequency
Degree management and control list, includes the identity card serial number by management and control and the card reader serial number by management and control in visiting frequency management and control list;
If the authentication ids information process request received comprises the identity card serial number by management and control or the card reader sequence by management and control
Number, then this authentication ids information process request is in by management and control state, could thaw, currently after needing frozen certain time length
Normally cannot be accepted by server.
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length,
Under management and control state, its request initiated is not processed by dispatch server 201, and dispatch server 201 can first determine whether
Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, visiting frequency pipe
Whether comprise identity card serial number in control list is stored in record, if getting visiting frequency management and control at distance dispatch server 201
Before the list moment in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, says
This identity card serial number bright also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value,
Can be configured according to concrete application scenarios, such as, when card-reading terminal is automatic ticket taking machine, the first Preset Time can be set
It is spaced apart 1 minute, say, that when finding that certain specific identity card serial number is in frequency management and control list, ensuing 1
Within minute, do not carry out the request initiated based on this identity card serial number processing operation;Alternatively, when finding certain specific identity
When card serial number is in frequency management and control list, returns information prompting this identity card abnormal state of user, try the most again;
If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, access
Do not comprise identity card serial number in frequency management and control list is stored in record, then judge to get access at distance dispatch server 201
Before the frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number
It is stored in record, if getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201,
Comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number is all not included in blacklist,
Obtain visiting frequency management and control list, and judge to get before the visiting frequency management and control list moment the at distance dispatch server 201
In two prefixed time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if in distance scheduling
Server 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, wraps in visiting frequency management and control list
It is stored in record, then termination flow process containing card reader serial number;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length,
Under management and control state, its request initiated is not processed by dispatch server 201, and dispatch server 201 can first determine whether
Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, visiting frequency pipe
Whether comprise card reader serial number in control list is stored in record, if getting visiting frequency management and control at distance dispatch server 201
Before the list moment in the first prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, says
This card reader serial number bright also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value,
Can be configured according to concrete application scenarios, such as, when card-reading terminal is automatic ticket taking machine, the first Preset Time can be set
It is spaced apart 1 minute, say, that when finding that certain specific card reader serial number is in frequency management and control list, ensuing 1
Within minute, do not carry out the request initiated based on this card reader serial number processing operation;Alternatively, when finding certain specific Card Reader
When device serial number is in frequency management and control list, returns information prompting this Card reader status of user abnormal, try the most again;
If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201, access
Do not comprise card reader serial number in frequency management and control list is stored in record, then judge to get access at distance dispatch server 201
Before the frequency management and control list moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number
It is stored in record, if getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201,
Comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process;
Dispatch server 201, was additionally operable to before judging distance dispatch server 201 gets the visiting frequency management and control list moment
In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes
Business device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, does not wraps in visiting frequency management and control list
Containing when being stored in record of card reader serial number, obtain exception rules, and judge whether identity card serial number meets exception rules, if
Identity card serial number meets exception rules, then termination flow process;
Exception rules can be stored in dispatch server 201 its memory, it is also possible to obtains from external equipment, dispatch service
According to exception rules, device 201 can judge whether the identity card serial number in this request or card reader serial number are in abnormal shape
State;
If identity card serial number does not meets exception rules, then judge whether card reader serial number meets exception rules, if card reader sequence
Row number meet exception rules, then termination flow process;
When dispatch server 201 judged before distance dispatch server 201 gets the visiting frequency management and control list moment first pre-
If in time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance dispatch server 201
Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader
When being stored in record of serial number, it may be determined that this identity card serial number and this card reader serial number the first prefixed time interval and
Abnormality did not occur in the second prefixed time interval, determined whether that this identity card serial number or this card reader serial number existed
Whether this request is in abnormality;
Dispatch server 201, was additionally operable to before judging distance dispatch server 201 gets the visiting frequency management and control list moment
In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes
Business device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, does not wraps in visiting frequency management and control list
Containing when being stored in record of card reader serial number, obtain exception rules, and judge whether card reader serial number meets exception rules, if
Card reader serial number meets exception rules, then termination flow process;If card reader serial number does not meets exception rules, then judge body
Whether part card serial number meets exception rules, if identity card serial number meets exception rules, then and termination flow process;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number does not all meet exception rules, right
Authentication ids information process request processes.
Alternatively, dispatch server 201, it is additionally operable to get the visiting frequency management and control list moment at distance dispatch server 201
Before in the first prefixed time interval, if visiting frequency management and control list comprises when being stored in record of identity card serial number, obtain
Before dispatch server 201 gets the visiting frequency management and control list moment in the 3rd prefixed time interval, visiting frequency management and control
In list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number less than first pre-
If value, then return the first information termination flow process;If identity card serial number be stored in record occurrence number more than or etc.
In the first preset value, then identity card serial number is stored in blacklist, returns error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain at distance dispatch server 201 when determining
Before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card serial number
Be stored in record in the case of, can determine whether distance dispatch server 201 get the visiting frequency management and control list moment it
In front 3rd prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record number of times;Pre-at one section
If in the time, if dispatch server receives for more than 201 time based on a certain identity card being specifically present in frequency management and control list
During the process request that serial number is initiated, it is believed that this identity card Serial No. illegal sequence number, add blacklist;Specifically, adjust
If degree server 201 judges in receiving the first prefixed time interval before the request of process, the body obtained according to the request of process
Part card serial number was once written in frequency management and control list, then determine whether that the before receiving process request the 3rd presets
In time interval, whether the number of times that the identity card serial number obtained according to the request of process was once written in frequency management and control list reaches
First preset value, wherein the 3rd prefixed time interval and the first preset value are preset value, can set according to application scenarios, such as:
3rd prefixed time interval is 5 minutes, and the first preset value is 100 times, then if dispatch server 201 judges receiving
In process based on specific identity card serial number initiation is asked first 5 minutes, have been received by the place initiated based on this identity card serial number
The number of times of reason request less than 100 times, then returns the first information prompting user and tries and termination flow process the most again;If
Receive the number of times processing request initiated based on this identity card serial number to be more than or equal to 100 times, then by this identity card serial number
Write blacklist, returns error message prompting this identity card of user and has been added into blacklist, and termination flow process;
Alternatively, dispatch server 201, it is additionally operable to get the visiting frequency management and control list moment at distance dispatch server 201
Before in the second prefixed time interval, visiting frequency management and control list comprises when being stored in record of card reader serial number, obtain away from
Before dispatch server 201 gets the visiting frequency management and control list moment in the 4th prefixed time interval, visiting frequency management and control name
In list, card reader serial number is stored in record occurrence number, if the record occurrence number that is stored in of card reader serial number is preset less than second
Value, then return the second information termination flow process;If the record occurrence number that is stored in of card reader serial number is more than or equal to
Second preset value, then be stored in blacklist by card reader serial number, returns error message termination flow process.
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain at distance dispatch server 201 when determining
Before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card serial number
Be stored in record in the case of, can determine whether dispatch server 201 judge distance dispatch server 201 getting access
Before the frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number
It is stored in record and judges getting before the visiting frequency management and control list moment between the 4th Preset Time apart from dispatch server 201
Every interior, comprise card reader serial number in visiting frequency management and control list is stored in record number of times, in one section of Preset Time, if adjusted
Degree server receives the process initiated based on a certain card reader serial number being specifically present in frequency management and control list for more than 201 time
During request, it is believed that this card reader Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server 201 is sentenced
Break in receiving the second prefixed time interval before the request of process, once write according to the card reader serial number that the request of process obtains
Enter in frequency management and control list, then determine whether in receiving the 4th prefixed time interval before the request of process, according to
Whether the number of times that the card reader serial number that the request of process obtains once was written in frequency management and control list reaches the second preset value, wherein
4th prefixed time interval and the second preset value are preset value, can set according to application scenarios, such as: between the 4th Preset Time
Being divided into 5 minutes, the second preset value is 100 times, then if dispatch server 201 judges receiving based on specific card reader
In the process that serial number is initiated is asked first 5 minutes, the number of times processing request having been received by initiating based on this card reader serial number is little
In 100 times, then return the second information prompting user and try the most again and termination flow process;If had been received by based on this reading
This card reader serial number more than or equal to 100 times, is then write blacklist, returns by the number of times processing request that card device serial number is initiated
Return error message prompting this card reader of user and be added into blacklist, and termination flow process;
Alternatively, dispatch server 201, it is additionally operable to when identity card serial number meets exception rules, then by identity card serial number
It is stored in visiting frequency management and control list, returns the first information termination flow process;Exception rules is met at card reader serial number
Time, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination flow process;
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Scheduling clothes
Business device 201, is additionally operable to obtain decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader count value,
Wherein, timestamp is demonstrate,proved the generation of information process request by the card reader identity-based identification generating authentication ids information process request
Moment generates;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;
Dispatch server 201, is additionally operable to based on timestamp and the moment receiving authentication ids information process request, generates the
One time interval, it is judged that whether very first time interval is more than the 5th prefixed time interval and less than the 6th prefixed time interval, if the
One time interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, then judges that identity card serial number is legal, no
Then, it is judged that identity card serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and card reader count value, it is judged that distance dispatch server 201 gets
Before the visiting frequency management and control list moment in the 7th prefixed time interval, what dispatch server 201 received comprises identity card sequence
Whether the request number of times of the authentication ids information process request of number secret value is less than the 3rd preset value, if dispatch server 201 connects
The request number of times of the authentication ids information process request comprising identity card serial number encryption value received is less than the 3rd preset value, then
Judge that identity card serial number is legal, otherwise, it is judged that identity card serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and the moment receiving authentication ids information process request, generates the
One time interval, it is judged that whether very first time interval is more than the 8th prefixed time interval and less than the 9th prefixed time interval, if the
One time interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, then judges that card reader serial number is legal, no
Then, it is judged that card reader serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and card reader count value, it is judged that obtain at distance dispatch server 201
Before the visiting frequency management and control list moment in the tenth prefixed time interval, what dispatch server 201 received comprises card reader sequence
Whether the request number of times of the authentication ids information process request of row number is less than the 4th preset value, if dispatch server 201 receives
The request number of times of the authentication ids information process request comprising card reader serial number less than the 4th preset value, then judge card reader
Serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;
Dispatch server 201, is additionally operable to based on card reader count value, it is judged that the authentication ids information processing continuously received please
In asking, whether the card reader count value with card reader sequence numbers match meets preset rules, if card reader count value meets preset rules,
Then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules.
Alternatively, also comprising certificate server 203, wherein, dispatch server 201 is additionally operable to the authentication ids that will receive
Information process request sends to certificate server 203;Certificate server 203, is used for extracting in authentication ids information process request
Identity card serial number encryption value, timestamp secret value and/or card reader counting secret value, to identity card serial number encryption value, time
Between stab secret value and/or card reader counting secret value be decrypted operation, it is thus achieved that identity card serial number, timestamp and/or card reader meter
Numerical value, and identity card serial number, timestamp and/or card reader count value are sent to dispatch server 201;
Certificate server 203 is decrypted operation independent of dispatch server 201 to secret value, on the one hand can reduce scheduling clothes
The computing pressure of business device 201, on the other hand, it is possible to promote the safety of verification process.
Alternatively, also comprise database server 204, wherein, database server 204, be used for storing blacklist and frequency pipe
Control list;Dispatch server 201, is additionally operable to when acquisition request blacklist or frequency management and control list, and generating blacklist acquisition please
Ask or frequency management and control list obtains request, and send to database server 204;Database server 204, is additionally operable to receiving
Obtain request to blacklist or frequency management and control list obtains when asking, according to request type, blacklist or frequency management and control list are sent
To dispatch server 201;Dispatch server 201, is additionally operable to after blacklist or frequency management and control list are carried out write operation, raw
Become update after blacklist or frequency management and control list, and will update after blacklist or frequency management and control list send to database service
Device 204;Database server 204, is additionally operable to the blacklist after receiving and store renewal or frequency management and control list;
Blacklist and frequency management and control list can be stored in independent database server 204, promote the safety of data, with
Time alleviate dispatch server 201 data processing pressure, database server 204 is to blacklist and the storage of frequency management and control list
Can be ciphertext storage, it is to avoid by malicious access and distorting.
The system provided by the embodiment of the present invention, it is possible to realize the identity card generated based on abnormal identity card or abnormal card reader
Authentication information processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to enter as key value
Line pipe control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution,
Pass through blacklist, it is possible to stop illegal identity card or the process request of illegal card reader initiation in the very first time, by the present invention's
Abnormality eliminating method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency pipe
Control list is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous body
Part card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing of the present invention
Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;Pass through exception rules
It is capable of the exception to current identity card or card reader to judge, even if this processes the identity card in request or card reader does not comprises
In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize
To identity card and triple dynamic authentication of card reader, improve the safety that authentication ids information process request is processed with reliable
Property.
Any process described otherwise above or method describe and are construed as in flow chart or at this, represent include one or
The module of code, fragment or the part of the executable instruction of the more steps for realizing specific logical function or process, and
The scope of the preferred embodiment of the present invention includes other realization, wherein can not be by order that is shown or that discuss, including root
According to involved function by basic mode simultaneously or in the opposite order, performing function, this should be by embodiments of the invention institute
Belong to those skilled in the art to be understood.
Although above it has been shown and described that embodiments of the invention, it is to be understood that above-described embodiment is exemplary,
Being not considered as limiting the invention, those of ordinary skill in the art is in the case of without departing from the principle of the present invention and objective
Above-described embodiment can be changed within the scope of the invention, revise, replace and modification.The scope of the present invention is by appended power
Profit requires and equivalent limits.
Claims (9)
1. the abnormality processing system of an authentication ids information process request, it is characterised in that include dispatch server and identity
Card card reader:
Wherein, described card reader of ID card, it is used for generating authentication ids information process request, and please by the process of described identity card
Ask transmission to described dispatch server;Wherein, described authentication ids information process request includes: identity card serial number encryption value
With card reader serial number;
Described dispatch server, is used for receiving described authentication ids information process request, obtains and deciphers described identity card serial number
The identity card serial number that secret value obtains;
Described dispatch server, is additionally operable to obtain blacklist, and is judging described identity card serial number and described card reader serial number
When being all not included in described blacklist, obtain visiting frequency management and control list, and get at dispatch server described in judging distance
Before the described visiting frequency management and control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described
Identity card serial number be stored in record, and before getting the described visiting frequency management and control list moment apart from described dispatch server
In second prefixed time interval, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains
Take exception rules, and judge whether described identity card serial number or described card reader serial number meet exception rules, and judging
State identity card serial number and time described card reader serial number does not all meet exception rules, to described authentication ids information process request
Process.
System the most according to claim 1, it is characterised in that
Described dispatch server, is additionally operable to obtain blacklist, it is judged that whether described identity card serial number wraps in described blacklist, if
Described identity card serial number is included in described blacklist, then termination flow process;If described identity card serial number is not comprised in
In described blacklist, then judge whether described card reader serial number is included in described blacklist, if described card reader serial number bag
It is contained in described blacklist, then termination flow process;
Described dispatch server, is additionally operable to obtain blacklist, and judges whether described card reader serial number is included in described blacklist
In, if described card reader serial number is included in described blacklist, then termination flow process;If described card reader serial number does not has
It is included in described blacklist, then judges whether described identity card serial number is included in described blacklist, if described identity card sequence
Row number are included in described blacklist, then termination flow process.
System the most according to claim 1 and 2, it is characterised in that
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described
Time in blacklist, obtain visiting frequency management and control list, and judge getting described visiting frequency pipe apart from described dispatch server
Before the control list moment in the first prefixed time interval, whether described visiting frequency management and control list comprises described identity card serial number
Be stored in record, if the first Preset Time before getting the described visiting frequency management and control list moment apart from described dispatch server
In interval, comprise described identity card serial number in described visiting frequency management and control list is stored in record, then termination flow process;If
Before getting the described visiting frequency management and control list moment apart from described dispatch server in the first prefixed time interval, described visit
Ask that do not comprise described identity card serial number in frequency management and control list is stored in record, then judge obtaining apart from described dispatch server
Before the described visiting frequency management and control list moment in the second prefixed time interval, whether described visiting frequency management and control list comprises
Described card reader serial number be stored in record, if getting the described visiting frequency management and control list moment apart from described dispatch server
Before in the second prefixed time interval, comprise described card reader serial number in described visiting frequency management and control list is stored in record, then
Termination flow process;
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described
Time in blacklist, obtain visiting frequency management and control list, and judge getting described visiting frequency pipe apart from described dispatch server
Before the control list moment in the second prefixed time interval, whether described visiting frequency management and control list comprises described card reader serial number
Be stored in record, if the second Preset Time before getting the described visiting frequency management and control list moment apart from described dispatch server
In interval, comprise described card reader serial number in described visiting frequency management and control list is stored in record, then termination flow process;If
Before getting the described visiting frequency management and control list moment apart from described dispatch server in the second prefixed time interval, described visit
Ask that do not comprise described card reader serial number in frequency management and control list is stored in record, then judge obtaining apart from described dispatch server
Before the described visiting frequency management and control list moment in the first prefixed time interval, whether described visiting frequency management and control list comprises
Described identity card serial number be stored in record, if getting the described visiting frequency management and control list moment apart from described dispatch server
Before in the first prefixed time interval, comprise described identity card serial number in described visiting frequency management and control list is stored in record, then
Termination flow process.
4. according to the system described in any one of claims 1 to 3, it is characterised in that
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described
Time in blacklist, obtain visiting frequency management and control list, and get described visiting frequency pipe at dispatch server described in judging distance
Before the control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described identity card serial number
It is stored in and records and the second prefixed time interval before getting the described visiting frequency management and control list moment apart from described dispatch server
In, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains exception rules, and sentence
Whether disconnected described identity card serial number meets exception rules, if described identity card serial number meets exception rules, then and termination stream
Journey;If described identity card serial number does not meets exception rules, then judge whether described card reader serial number meets exception rules, if
Described card reader serial number meets exception rules, then termination flow process;
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described
Time in blacklist, obtain visiting frequency management and control list, and get described visiting frequency pipe at dispatch server described in judging distance
Before the control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described identity card serial number
It is stored in and records and the second prefixed time interval before getting the described visiting frequency management and control list moment apart from described dispatch server
In, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains exception rules, and sentence
Whether disconnected described card reader serial number meets exception rules, if described card reader serial number meets exception rules, then and termination stream
Journey;If described card reader serial number does not meets exception rules, then judge whether described identity card serial number meets exception rules, if
Described identity card serial number meets exception rules, then termination flow process.
5. according to the system described in any one of Claims 1-4, it is characterised in that
Described dispatch server, was additionally operable to before getting the described visiting frequency management and control list moment apart from described dispatch server
In first prefixed time interval, if described visiting frequency management and control list comprises when being stored in record of described identity card serial number, obtain
It is taken at before described dispatch server gets the described visiting frequency management and control list moment in the 3rd prefixed time interval, described
Identity card serial number described in visiting frequency management and control list be stored in record occurrence number, if described identity card serial number be stored in note
Record occurrence number less than the first preset value, then returns the first information termination flow process;If described identity card serial number
It is stored in record occurrence number and is more than or equal to described first preset value, then described identity card serial number is stored in described blacklist, returns
Return described error message termination flow process;
Described dispatch server, was additionally operable to before getting the described visiting frequency management and control list moment apart from described dispatch server
In second prefixed time interval, described visiting frequency management and control list comprises when being stored in record of described card reader serial number, obtain
Before getting the described visiting frequency management and control list moment apart from described dispatch server in the 4th prefixed time interval, described visit
That asks card reader serial number described in frequency management and control list is stored in record occurrence number, if described card reader serial number be stored in record
Occurrence number is less than the second preset value, then return the second information termination flow process;If depositing of described card reader serial number
Enter to record occurrence number and be more than or equal to described second preset value, then described card reader serial number is stored in described blacklist, return
Described error message termination flow process.
6. according to the system described in any one of claim 1 to 5, it is characterised in that
Described dispatch server, is additionally operable to when described identity card serial number meets exception rules, then by described identity card serial number
It is stored in described visiting frequency management and control list, returns described first information termination flow process;At described card reader serial number
When meeting exception rules, then described card reader serial number is stored in described visiting frequency management and control list, returns described second prompting letter
Breath termination flow process.
7. according to the system described in any one of claim 1 to 6, it is characterised in that described authentication ids information process request
Also include: timestamp secret value and card reader counting secret value;Described dispatch server, is additionally operable to obtain and deciphers described timestamp
Secret value and described card reader count timestamp and the card reader count value that secret value obtains, and wherein, described timestamp is by generating
The card reader generation moment based on described authentication ids information process request stating authentication ids information process request generates;Institute
State card reader count value and processed request number of times generation by described card reader based on the history that described card reader is initiated;
Described dispatch server, is additionally operable to based on described timestamp and the moment receiving described authentication ids information process request,
Generate very first time interval, it is judged that whether interval of the described very first time is more than the 5th prefixed time interval and less than the 6th Preset Time
Interval, if interval of the described very first time is more than described 5th prefixed time interval and less than described 6th prefixed time interval, then sentences
Disconnected described identity card serial number is legal, otherwise, it is judged that described identity card serial number meets exception rules;
Described dispatch server, is additionally operable to based on described timestamp and described card reader count value, it is judged that apart from described dispatch service
Device gets before the described visiting frequency management and control list moment in the 7th prefixed time interval, the bag that described dispatch server receives
Whether the request number of times of the authentication ids information process request containing described identity card serial number encryption value is less than the 3rd preset value, if
What described dispatch server received comprises the request time of the authentication ids information process request of described identity card serial number encryption value
Number less than described 3rd preset value, then judges that described identity card serial number is legal, otherwise, it is judged that described identity card serial number meets
Exception rules;
Described dispatch server, is additionally operable to based on described timestamp and the moment receiving described authentication ids information process request,
Generate interval of the described very first time, it is judged that whether interval of the described very first time is more than described 8th prefixed time interval and less than described
9th prefixed time interval, if interval of the described very first time more than described 8th prefixed time interval and is preset less than the described 9th
Between be spaced, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets exception rules;
Described dispatch server, is additionally operable to based on described timestamp and described card reader count value, it is judged that apart from described scheduling clothes
Business device gets before the described visiting frequency management and control list moment in the tenth prefixed time interval, and described dispatch server receives
Whether the request number of times of the authentication ids information process request comprising described card reader serial number is less than the 4th preset value, if described
What dispatch server received comprises the request number of times of the authentication ids information process request of described card reader serial number less than described
4th preset value, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets exception rules;
Described dispatch server, is additionally operable to based on described card reader count value, it is judged that the described authentication ids letter continuously received
In breath process request, whether the described card reader count value with described card reader sequence numbers match meets preset rules, if described Card Reader
Device count value meets preset rules, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets
Exception rules.
8. according to the system described in any one of claim 1 to 7, it is characterised in that also comprise certificate server,
Wherein, described dispatch server is additionally operable to send to described certification the described authentication ids information process request received
Server;
Described certificate server, for extract described identity card serial number encryption value in described authentication ids information process request,
Described timestamp secret value and/or described card reader counting secret value, add described identity card serial number encryption value, described timestamp
Close value and/or described card reader counting secret value are decrypted operation, it is thus achieved that described identity card serial number, described timestamp and/or institute
State card reader count value, and described identity card serial number, described timestamp and/or described card reader count value are sent to described tune
Degree server.
9. according to the system described in any one of claim 1 to 8, it is characterised in that also comprise database server,
Wherein, described database server, it is used for storing described blacklist and described frequency management and control list;
Described dispatch server, is additionally operable to when blacklist described in acquisition request or described frequency management and control list, generates blacklist and obtains
Take request or frequency management and control list obtains request, and send to described database server;
Described database server, is additionally operable to receiving the acquisition request of described blacklist or the acquisition request of described frequency management and control list
Time, according to request type, described blacklist or described frequency management and control list are sent to described dispatch server;
Described dispatch server, is additionally operable to after described blacklist or described frequency management and control list are carried out write operation, generates more
Described blacklist after Xin or described frequency management and control list, and will update after described blacklist or described frequency management and control list send
To described database server;
Described database server, is additionally operable to the described blacklist after receiving and store renewal or described frequency management and control list.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610041119.2A CN106027468B (en) | 2016-01-21 | 2016-01-21 | A kind of abnormality processing system of authentication ids information process request |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610041119.2A CN106027468B (en) | 2016-01-21 | 2016-01-21 | A kind of abnormality processing system of authentication ids information process request |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106027468A true CN106027468A (en) | 2016-10-12 |
CN106027468B CN106027468B (en) | 2019-05-21 |
Family
ID=57082735
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610041119.2A Active CN106027468B (en) | 2016-01-21 | 2016-01-21 | A kind of abnormality processing system of authentication ids information process request |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106027468B (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111385244A (en) * | 2018-12-27 | 2020-07-07 | 中国移动通信集团四川有限公司 | Abnormal flow identification method, device, equipment, system and medium |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1429373A (en) * | 2000-03-08 | 2003-07-09 | 高利科技有限公司 | Method and apparatus for readucing on-line fraud using personal digital identification |
CN2722330Y (en) * | 2004-06-24 | 2005-08-31 | 公安部第一研究所证件技术事业部 | Personal identity certificating terminal |
US20090198618A1 (en) * | 2008-01-15 | 2009-08-06 | Yuen Wah Eva Chan | Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce |
CN102474498A (en) * | 2009-07-14 | 2012-05-23 | 深圳市永盛世纪科技有限公司 | Authentication method for user identification equipment |
US20150236858A1 (en) * | 2012-09-10 | 2015-08-20 | Giesecke & Devrient Gmbh | Method for Creating a Derived Entity of an Original Data Carrier |
CN105096428A (en) * | 2015-08-29 | 2015-11-25 | 邱钊 | Big data iris recognition voiceprint recognition candidate identity authentication system |
-
2016
- 2016-01-21 CN CN201610041119.2A patent/CN106027468B/en active Active
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1429373A (en) * | 2000-03-08 | 2003-07-09 | 高利科技有限公司 | Method and apparatus for readucing on-line fraud using personal digital identification |
CN2722330Y (en) * | 2004-06-24 | 2005-08-31 | 公安部第一研究所证件技术事业部 | Personal identity certificating terminal |
US20090198618A1 (en) * | 2008-01-15 | 2009-08-06 | Yuen Wah Eva Chan | Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce |
CN102474498A (en) * | 2009-07-14 | 2012-05-23 | 深圳市永盛世纪科技有限公司 | Authentication method for user identification equipment |
US20150236858A1 (en) * | 2012-09-10 | 2015-08-20 | Giesecke & Devrient Gmbh | Method for Creating a Derived Entity of an Original Data Carrier |
CN105096428A (en) * | 2015-08-29 | 2015-11-25 | 邱钊 | Big data iris recognition voiceprint recognition candidate identity authentication system |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN111385244A (en) * | 2018-12-27 | 2020-07-07 | 中国移动通信集团四川有限公司 | Abnormal flow identification method, device, equipment, system and medium |
Also Published As
Publication number | Publication date |
---|---|
CN106027468B (en) | 2019-05-21 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105471826B (en) | Ciphertext data query method, apparatus and cryptogram search server | |
US4438824A (en) | Apparatus and method for cryptographic identity verification | |
CN109509518A (en) | Management method, server and the computer storage medium of electronic health record | |
US20070067828A1 (en) | Extended one-time password method and apparatus | |
CN113014539B (en) | Internet of things equipment safety protection system and method | |
CN105933280A (en) | Identity authentication method and system | |
CN105488367B (en) | A kind of guard method, backstage and the system of SAM device | |
CN113014444B (en) | Internet of things equipment production test system and safety protection method | |
CN110234111A (en) | A kind of two-factor authentication key agreement protocol suitable for multiple gateway wireless sensor network | |
CN103366278B (en) | Process the method and system of operation requests | |
CN109448271A (en) | A kind of no card withdrawal method, computer readable storage medium and server | |
CN109831311A (en) | A kind of server validation method, system, user terminal and readable storage medium storing program for executing | |
CN112565265A (en) | Authentication method, authentication system and communication method between terminal devices of Internet of things | |
CN108737110A (en) | A kind of data encryption and transmission method and device for anti-replay-attack | |
Wu et al. | A blockchain-based network security mechanism for voting systems | |
US10491570B2 (en) | Method for transmitting data, method for receiving data, corresponding devices and programs | |
US20200145220A1 (en) | Verification system, verification method and non-transitory computer readable storage medium | |
CN106027254B (en) | A kind of method that identity card card-reading terminal uses key in authentication ids system | |
CN110245534A (en) | A kind of high security radio-frequency identification method based on two-way authentication, device and system | |
CN106027465A (en) | Method for processing identity card authentication information processing request | |
CN106027253A (en) | Access frequency management and control device for identity card authentication information | |
CN106027468A (en) | Exception handling system for identity card authentication information processing request | |
CN106027472A (en) | Exception handling method for identity card authentication information processing request | |
CN108900595B (en) | Method, device and equipment for accessing data of cloud storage server and computing medium | |
CN111092860A (en) | Medical data safety interaction transmission module |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
TR01 | Transfer of patent right | ||
TR01 | Transfer of patent right |
Effective date of registration: 20220407 Address after: Tiantianrong building, No. 1, Zhongguancun, Beiqing Road, Haidian District, Beijing 100094 Patentee after: TENDYRON Corp. Address before: 100086 room 603, building 12, taiyueyuan, Haidian District, Beijing Patentee before: Li Ming |