CN106027468A - Exception handling system for identity card authentication information processing request - Google Patents

Exception handling system for identity card authentication information processing request Download PDF

Info

Publication number
CN106027468A
CN106027468A CN201610041119.2A CN201610041119A CN106027468A CN 106027468 A CN106027468 A CN 106027468A CN 201610041119 A CN201610041119 A CN 201610041119A CN 106027468 A CN106027468 A CN 106027468A
Authority
CN
China
Prior art keywords
serial number
control list
card reader
frequency management
dispatch server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610041119.2A
Other languages
Chinese (zh)
Other versions
CN106027468B (en
Inventor
李明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tendyron Corp
Original Assignee
李明
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 李明 filed Critical 李明
Priority to CN201610041119.2A priority Critical patent/CN106027468B/en
Publication of CN106027468A publication Critical patent/CN106027468A/en
Application granted granted Critical
Publication of CN106027468B publication Critical patent/CN106027468B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic
    • H04L63/1425Traffic logging, e.g. anomaly detection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0245Filtering by information in the payload

Abstract

The invention provides an exception handling system for an identity card authentication information processing request. A dispatch server receives the identity card authentication information processing request, obtains a blacklist, and obtains an access frequency management and control list if a serial number of an identity card and a serial number of a card reader are not in the blacklist. An exception rule is obtained if the access frequency management and control list does not contain storage record of the serial number of the identity card in a first preset time interval before the moment when the access frequency management and control list is obtained and the access frequency management and control list does not contain the storage record of the serial number of the card reader in a second preset time interval before the moment when the access frequency management and control list is obtained. The identity card authentication information processing request is processed if the serial number of the identity card and the serial number of the card reader do not accord with the exception rule, thereby achieving the triple dynamic verification of the identity card and the identity card reader, and improving the processing safety and reliability of the identity card authentication information processing request.

Description

A kind of abnormality processing system of authentication ids information process request
Technical field
The present invention relates to a kind of electronic technology field, particularly relate to a kind of authentication ids information processing system.
Background technology
Along with China's rapid development of economy, people's lives have had the biggest improvement, no matter obtain employment, engage in trade, travel, enter a higher school Deng, it is required for carrying out authentication, and processes money, property, application welfare, seek medical advice etc., need also exist for carrying out identity and recognize Card.Current No.2 residence card uses the design of built-in intelligence chip, has the ability to realize identity based on the Internet completely and recognizes Card, but released so far from 2004, its using value is mined the most far away, and in recent years, ticket sale system has started on a large scale should With Internet authentication and the identification of identity-based card.
The Internet authentication technology of identity-based card due in actually used, exist identity card lose, the situation such as stolen, deposit Harm and risk in the identity card non-malice that I authorizes use;The transmission of network data simultaneously also faces communication and monitors, counts According to distorting and the risk of a series of typical network attacks such as data playback.Therefore, how to stop to eavesdrop on escape way, usurp Changing or the attack of the mode such as playback, screen the assailant of malice in real time, protection authentication module (SAM) safety becomes needs head badly Solve the technical problem that.
Summary of the invention
Present invention seek to address that the problems referred to above/one of.
It is an object of the invention to provide the abnormality processing system of a kind of authentication ids information process request, for reaching above-mentioned purpose, Technical scheme is specifically achieved in that and includes dispatch server and card reader: wherein, and card reader is used for generating Authentication ids information process request, and identity card is processed request transmission to dispatch server;Wherein, authentication ids information Process request includes: identity card serial number encryption value and card reader serial number;Dispatch server, is used for receiving authentication ids letter Breath processes request, obtains the identity card serial number that decryption identity card serial number encryption is worth to;Dispatch server, is additionally operable to obtain Blacklist, it is judged that whether identity card serial number is included in blacklist, if identity card serial number is included in blacklist, then terminates Handling process;If identity card serial number is not comprised in blacklist, then judge whether card reader serial number is included in blacklist, If card reader serial number is included in blacklist, then termination flow process;Dispatch server, is additionally operable to obtain blacklist, and sentences Whether disconnected card reader serial number is included in blacklist, if card reader serial number is included in blacklist, then and termination flow process; If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if identity card Serial number is included in blacklist, then termination flow process;Dispatch server, is additionally operable to judging identity card serial number and Card Reader When device serial number is all not included in blacklist, obtains visiting frequency management and control list, and judge getting at distance dispatch server Before the visiting frequency management and control list moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card sequence Number be stored in record, if distance dispatch server get before the visiting frequency management and control list moment in the first prefixed time interval, Comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process;If at distance dispatch server Get before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list does not comprise identity card Serial number be stored in record, then judge distance dispatch server get the visiting frequency management and control list moment before second preset time Between interval in, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence Number be stored in record, then termination flow process;Dispatch server, is additionally operable to judging identity card serial number and card reader serial number When being all not included in blacklist, obtain visiting frequency management and control list, and judge getting visiting frequency at distance dispatch server Before the management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises being stored in of card reader serial number Record, if getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, accesses frequency Comprise card reader serial number in degree management and control list is stored in record, then termination flow process;If getting at distance dispatch server Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader serial number Be stored in record, then judge to get the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number Enter record, then termination flow process;
Dispatch server, was additionally operable to before judging distance dispatch server gets the visiting frequency management and control list moment first and presets In time interval, visiting frequency management and control list does not comprise being stored in record and obtaining at distance dispatch server of identity card serial number Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader sequence Number when being stored in record, obtain exception rules, and judge whether identity card serial number meets exception rules, if identity card serial number Meet exception rules, then termination flow process;If identity card serial number does not meets exception rules, then judge that card reader serial number is No meet exception rules, if card reader serial number meets exception rules, then termination flow process;
Dispatch server, was additionally operable to before judging distance dispatch server gets the visiting frequency management and control list moment first and presets In time interval, visiting frequency management and control list does not comprise being stored in record and obtaining at distance dispatch server of identity card serial number Before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader sequence Number when being stored in record, obtain exception rules, and judge whether card reader serial number meets exception rules, if card reader serial number Meet exception rules, then termination flow process;If card reader serial number does not meets exception rules, then judge that identity card serial number is No meet exception rules, if identity card serial number meets exception rules, then termination flow process;
Dispatch server, is additionally operable to when judging identity card serial number and card reader serial number does not all meet exception rules, to identity Identification card information process request processes.
Alternatively, dispatch server, it is additionally operable to get before the visiting frequency management and control list moment first at distance dispatch server In prefixed time interval, if visiting frequency management and control list comprises when being stored in record of identity card serial number, obtain in distance scheduling Server gets before the visiting frequency management and control list moment in the 3rd prefixed time interval, identity card in visiting frequency management and control list Serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number less than the first preset value, then return First information termination flow process;If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value, Then identity card serial number is stored in blacklist, returns error message termination flow process;Dispatch server, is additionally operable in distance Dispatch server gets before the visiting frequency management and control list moment in the second prefixed time interval, wraps in visiting frequency management and control list Containing when being stored in record of card reader serial number, obtained before distance dispatch server gets the visiting frequency management and control list moment the In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence Number be stored in record occurrence number less than the second preset value, then return the second information termination flow process;If card reader sequence The record occurrence number that is stored in of row number is more than or equal to the second preset value, then card reader serial number is stored in blacklist, returns mistake Information termination flow process.
Alternatively, dispatch server, it is additionally operable to when identity card serial number meets exception rules, be then stored in by identity card serial number Visiting frequency management and control list, returns the first information termination flow process;When card reader serial number meets exception rules, Then card reader serial number is stored in visiting frequency management and control list, returns the second information termination flow process.
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Scheduling clothes Business device, is additionally operable to obtain decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader count value, its In, when timestamp is demonstrate,proved the generation of information process request by the card reader identity-based identification generating authentication ids information process request Carve and generate;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;Dispatch server, also For based on timestamp and the moment receiving authentication ids information process request, generate very first time interval, it is judged that when first Between be spaced whether more than the 5th prefixed time interval and less than the 6th prefixed time interval, if very first time interval is preset more than the 5th Time interval and less than the 6th prefixed time interval, then judge that identity card serial number is legal, otherwise, it is judged that identity card serial number symbol Close exception rules;Dispatch server, is additionally operable to based on timestamp and card reader count value, it is judged that distance dispatch server gets Before the visiting frequency management and control list moment in the 7th prefixed time interval, what dispatch server received comprise identity card serial number adds Whether the request number of times of the authentication ids information process request of close value is less than the 3rd preset value, if the bag that dispatch server receives The request number of times of the authentication ids information process request containing identity card serial number encryption value is less than the 3rd preset value, then judge identity Card serial number is legal, otherwise, it is judged that identity card serial number meets exception rules;Dispatch server, be additionally operable to based on timestamp and Receive the moment of authentication ids information process request, generate very first time interval, it is judged that whether very first time interval is more than the Eight prefixed time interval and less than the 9th prefixed time interval, if very first time interval is more than the 8th prefixed time interval and less than the Nine prefixed time interval, then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;Scheduling Server, is additionally operable to based on timestamp and card reader count value, it is judged that get visiting frequency management and control name at distance dispatch server Before single moment in the tenth prefixed time interval, what dispatch server received comprises the authentication ids information of card reader serial number Whether the request number of times processing request is less than the 4th preset value, if the identity comprising card reader serial number that dispatch server receives The request number of times of identification card information process request less than the 4th preset value, then judges that card reader serial number is legal, otherwise, it is judged that read Card device serial number meets exception rules;Dispatch server, is additionally operable to based on card reader count value, it is judged that the identity continuously received In identification card information process request, whether the card reader count value with card reader sequence numbers match meets preset rules, if card reader meter Numerical value meets preset rules, then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules.
Alternatively, also comprising certificate server, wherein, dispatch server is additionally operable to the authentication ids information processing that will receive Request sends to certificate server;Certificate server, for extracting the identity card serial number in authentication ids information process request Secret value, timestamp secret value and/or card reader counting secret value, to identity card serial number encryption value, timestamp secret value and/ Or card reader counting secret value is decrypted operation, it is thus achieved that identity card serial number, timestamp and/or card reader count value, and by body Part card serial number, timestamp and/or card reader count value send to dispatch server.
Alternatively, also comprise database server, wherein, database server, be used for storing blacklist and frequency management and control list; Dispatch server, is additionally operable to when acquisition request blacklist or frequency management and control list, generates blacklist and obtains request or frequency management and control List obtains request, and sends to database server;Database server, be additionally operable to receive blacklist obtain request or When frequency management and control list obtains request, according to request type, blacklist or frequency management and control list are sent to dispatch server;Scheduling Server, is additionally operable to after blacklist or frequency management and control list are carried out write operation, generates the blacklist after updating or frequency pipe Control list, and will update after blacklist or frequency management and control list send to database server;Database server, is additionally operable to Receive and store the blacklist after renewal or frequency management and control list.
The system provided by the present invention, it is possible to realize the authentication ids letter generated based on abnormal identity card or abnormal card reader Breath processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to manage as key value Control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution, logical Cross blacklist, it is possible in the process request that the very first time stops illegal identity card or illegal card reader is initiated, different by the present invention Often processing method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency management and control List is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous identity Card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing side of the present invention Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;By exception rules energy The exception of current identity card or card reader is judged by enough realizations, even if this processes the identity card in request or card reader is not included in In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize right Identity card and triple dynamic authentication of card reader, improve the safety and reliability processing authentication ids information process request.
Accompanying drawing explanation
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, the required accompanying drawing used in embodiment being described below It is briefly described, it should be apparent that, the accompanying drawing in describing below is only some embodiments of the present invention, for this area From the point of view of those of ordinary skill, on the premise of not paying creative work, it is also possible to obtain other accompanying drawings according to these accompanying drawings.
The abnormality eliminating method flow chart of the authentication ids information process request that Fig. 1 provides for the embodiment of the present invention 1;
The abnormality processing system structural representation of the authentication ids information process request that Fig. 2 provides for the embodiment of the present invention 2.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, Obviously, described embodiment is only a part of embodiment of the present invention rather than whole embodiments.Reality based on the present invention Execute example, the every other embodiment that those of ordinary skill in the art are obtained under not making creative work premise, broadly fall into Protection scope of the present invention.
In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " on ", D score, " front ", Orientation or the position relationship of the instruction such as " afterwards ", "left", "right", " vertically ", " level ", " top ", " end ", " interior ", " outward " are base In orientation shown in the drawings or position relationship, it is for only for ease of the description present invention and simplifies description rather than instruction or hint institute The device that refers to or element must have specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the present invention Restriction.Additionally, term " first ", " second " are only used for describing purpose, and it is not intended that instruction or hint relative importance Or quantity or position.
In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " install ", " being connected ", " connect " and should be interpreted broadly, connect for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected;Permissible It is to be mechanically connected, it is also possible to be electrical connection;Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two The connection of individual element internal.For the ordinary skill in the art, can understand that above-mentioned term is in the present invention with concrete condition In concrete meaning.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
Embodiment 1
The present embodiment provides a kind of authentication ids information process request abnormality eliminating method, as it is shown in figure 1, comprise the following steps:
S1: dispatch server receives authentication ids information process request, and authentication ids information process request includes: identity card Serial number encryption value and card reader serial number;
Identity card processes the process request that request is initiated for card reader of ID card, and dispatch server judges that identity card processes request as closing After method processes request, according to preset rules, process the security authentication module that request distribution is idle, allocated peace for this identity card The originating end that full authentication module and this identity card process request carries out data interaction, and wherein, identity card serial number encryption value is identity The identity card serial number encryption obtained from identity card is obtained by card card reader, card reader Serial No. card reader of ID card self Serial number.
S2: dispatch server obtains the identity card serial number that decryption identity card serial number encryption is worth to;
The identity card serial number encryption value received is decrypted computing, if card reader of ID card uses symmetric encipherment algorithm encryption Identity card serial number, then use corresponding symmetrical decipherment algorithm to be decrypted computing to the identity card serial number encryption value received; If card reader of ID card uses own private key encryption identity card serial number, then the identity card serial number encryption value received is used body The PKI of part card card reader is decrypted computing;The main body that identity card serial number encryption value is decrypted computing can be scheduling clothes Business device itself, it is also possible to be external equipment or external chip.
S3: dispatch server obtains blacklist, performs step S401 or step S402;
Dispatch server can obtain blacklist from its memory, it is also possible to obtains blacklist from outside, comprises in blacklist There are illegal identity card serial number and illegal card reader serial number;If the authentication ids information process request received comprising illegal Identity card serial number or illegal card reader serial number, then this authentication ids information process request is in illegal state, nothing Method is normally accepted by server.
S401: dispatch server judges whether identity card serial number is included in blacklist, if identity card serial number is included in black name In single, then termination flow process;
Blacklist has illegal identity card serial number, the serial number of the identity card being such as reported the loss, the body of appearance exception continuously The serial number of part card or the serial number etc. of identity cards occurred in multiple areas in the short time, its place asked is comprehended bring bigger Risk, if dispatch server judges that identity card serial number is included in blacklist, illustrates that this identity card Serial No. illegal identity is demonstrate,proved Serial number, server disregards, termination flow process.Alternatively, server can return information to point out user, This identity card has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
S402: dispatch server judges whether card reader serial number is included in blacklist, if card reader serial number is included in black name In single, then termination flow process;
Blacklist has illegal card reader serial number, the serial number of the card reader being such as reported the loss, the reading of appearance exception continuously The serial number of card device, the serial number exceeding the card reader of service life or the serial number etc. of card reader occurred in multiple areas in short-term, Its place asked is comprehended and brings greater risk, if dispatch server judges that card reader serial number is included in blacklist, this is described Card reader Serial No. illegal identity demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server is permissible Return information is to point out user, and this card reader has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, if after card reader serial number is included in blacklist, further comprises the steps of: dispatch server and obtain visiting frequency Management and control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if getting access frequency at distance dispatch server Before the degree management and control list moment in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in note Record, then dispatch server obtains and got before the visiting frequency management and control list moment between the 3rd Preset Time at distance dispatch server Every interior, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record Occurrence number is more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch server judges in distance Dispatch server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list not Comprise identity card serial number is stored in record, then obtain exception rules, it is judged that whether identity card serial number meets exception rules, if Identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control list;
If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if body Part card serial number is included in blacklist, then termination flow process;
If card reader serial number is not comprised in blacklist, then determine whether the legitimacy of identity card serial number, to determine body Part card serial number and card reader serial number are the most legal, have illegal identity card serial number, such as, be reported the loss in blacklist The sequence of the serial number of identity card, the serial number that abnormal identity card occurs continuously or the short time interior identity cards occurred in multiple areas Row number etc., comprehend its place asked and bring greater risk, if dispatch server judges identity card serial number and is included in blacklist, Illustrating that this identity card Serial No. illegal identity demonstrate,proves serial number, server is disregarded, termination flow process.Alternatively, service Device can return information to point out user, and this identity card has been added into blacklist, it is simple to user carries out subsequent operation and problem Solve;
Alternatively, after step judges that card reader serial number is not comprised in blacklist, dispatch server is further comprised the steps of: Obtain visiting frequency management and control list, it is judged that second presets before distance dispatch server gets the visiting frequency management and control list moment In time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if at distance dispatch server Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence Row number be stored in record, then dispatch server obtains and gets before the visiting frequency management and control list moment the at distance dispatch server In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence Number be stored in record occurrence number more than or equal to the second preset value, then card reader serial number is stored in blacklist;If dispatch service Device judges to get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency Do not comprise card reader serial number in management and control list is stored in record, then obtain exception rules, it is judged that whether card reader serial number meets Exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control list;
If dispatch server judges that identity card serial number and card reader serial number are all not included in blacklist, then perform step S5;
If dispatch server judges that identity card serial number and card reader serial number are all not included in blacklist, identity card sequence is described Number and card reader serial number be all legal, say, that this authentication ids information process request is in legal state, need to enter One step judges whether this authentication ids information process request is in by management and control state;
S5: dispatch server obtains visiting frequency management and control list, and performs step S601 or step S602;
Dispatch server can obtain visiting frequency management and control list from its memory, it is also possible to obtain visiting frequency pipe from outside Control list, includes the identity card serial number by management and control and the card reader serial number by management and control in visiting frequency management and control list;If connecing The authentication ids information process request received comprises the identity card serial number by management and control or the card reader serial number by management and control, that This authentication ids information process request is in by management and control state, could thaw after needing frozen certain time length, currently cannot be by Server normally accepts.
S601: dispatch server judge distance dispatch server get the visiting frequency management and control list moment before first preset time Between interval in, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining Get before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card sequence Number be stored in record, then termination flow process;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length, Under management and control state, its request initiated is not processed by dispatch server, and dispatch server can first determine whether to adjust in distance Whether degree server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list Comprise identity card serial number is stored in record, if getting before the visiting frequency management and control list moment first at distance dispatch server In prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, and this identity card serial number is described Also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, can answer according to concrete It is configured by scene, such as, when card-reading terminal is automatic ticket taking machine, the first prefixed time interval can be set as 1 minute, It is to say, when finding that certain specific identity card serial number is in frequency management and control list, within ensuing 1 minute, the most right The request initiated based on this identity card serial number carries out processing operation;Alternatively, when finding that certain specific identity card serial number is in frequency During degree management and control list, return information prompting this identity card abnormal state of user, try the most again;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if Before dispatch server gets the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list In comprise identity card serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server Before the list moment in the 3rd prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, If the record occurrence number that is stored in of identity card serial number is less than the first preset value, then return the first information termination flow process; If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value, then identity card serial number is stored in blacklist, Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number In the case of entering record, can determine whether before distance dispatch server gets the visiting frequency management and control list moment the 3rd pre- If in time interval, comprise identity card serial number in visiting frequency management and control list is stored in record number of times;In one section of Preset Time, If dispatch server repeatedly receives the place initiated based on a certain identity card serial number being specifically present in frequency management and control list During reason request, it is believed that this identity card Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server judges In receiving the first prefixed time interval before the request of process, once it was written into according to the identity card serial number that the request of process obtains In frequency management and control list, then determine whether in receiving the 3rd prefixed time interval before the request of process, according to place Whether the number of times that the identity card serial number that reason request obtains once was written in frequency management and control list reaches the first preset value, Qi Zhong Three prefixed time interval and the first preset value are preset value, can set according to application scenarios, such as: the 3rd prefixed time interval Being 5 minutes, the first preset value is 100 times, then if dispatch server judges receiving based on specific identity card serial number In the process initiated is asked first 5 minutes, have been received by processing the number of times asked less than 100 based on what this identity card serial number was initiated Secondary, then return the first information prompting user and try the most again and termination flow process;If had been received by based on this identity card sequence This identity card serial number more than or equal to 100 times, is then write blacklist by the number of times processing request that row number are initiated, and returns mistake This identity card of information alert user has been added into blacklist, and termination flow process;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, visiting frequency management and control list comprises identity card serial number be stored in record after, further comprise the steps of: dispatch server judge Get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency management and control name Whether comprise card reader serial number in list is stored in record, if getting the visiting frequency management and control list moment at distance dispatch server Before in the second prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, then dispatch service Device obtains and gets before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency In management and control list card reader serial number be stored in record occurrence number, if card reader serial number be stored in record occurrence number more than or Equal to the second preset value, then card reader serial number is stored in blacklist;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number In the case of entering record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control list Before moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number be stored in record and Judge to get before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency pipe Comprise card reader serial number in control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly receives During to the process request initiated based on a certain card reader serial number being specifically present in frequency management and control list, it is believed that this Card Reader Device Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request In second prefixed time interval, once it was written in frequency management and control list according to the card reader serial number that the request of process obtains, then Determine whether in receiving the 4th prefixed time interval before the request of process, the card reader sequence obtained according to the request of process Whether number number of times being once written in frequency management and control list reaches the second preset value, wherein the 4th prefixed time interval and second pre- If value is preset value, can set according to application scenarios, such as: the 4th prefixed time interval is 5 minutes, the second preset value is 100 times, then if dispatch server judges receiving first 5 minutes of process request based on the initiation of specific card reader serial number In, have been received by the number of times processing request based on this card reader serial number is initiated and be less than 100 times, then return the second information Prompting user tries and termination flow process the most again;If having been received by the secondary of process request based on the initiation of this card reader serial number This card reader serial number more than or equal to 100 times, is then write blacklist by number, has returned error message prompting this card reader of user It is added into blacklist, and termination flow process;
If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency Do not comprise identity card serial number in management and control list is stored in record, then judge to get visiting frequency management and control at distance dispatch server Before the list moment in the second prefixed time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency management and control Comprise card reader serial number in list is stored in record, then termination flow process;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if Before dispatch server gets the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list In comprise card reader serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, If the record occurrence number that is stored in of card reader serial number is less than the second preset value, then return the second information termination flow process; If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist, Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list does not comprise identity card serial number In the case of being stored in record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control name Before single moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number be stored in record with And judge to get before the visiting frequency management and control list moment in the 4th prefixed time interval at distance dispatch server, visiting frequency Comprise card reader serial number in management and control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly connects When receiving process request based on the initiation of a certain card reader serial number being specifically present in frequency management and control list, it is believed that this reading Card device Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request The second prefixed time interval in, according to process request obtain card reader serial number be once written in frequency management and control list, that Determine whether in receiving the 4th prefixed time interval before the request of process, the card reader sequence obtained according to the request of process Whether the row number number of times being once written in frequency management and control list reaches the second preset value, wherein the 4th prefixed time interval and second Preset value is preset value, can set according to application scenarios, such as: the 4th prefixed time interval is 5 minutes, the second preset value It it is 100 times, then if dispatch server judges receiving first 5 points of the process request initiated based on specific card reader serial number In clock, have been received by being less than 100 times based on the number of times processing request that this card reader serial number is initiated, then return the second prompting letter Breath prompting user try and termination flow process the most again;If having been received by process request based on the initiation of this card reader serial number Number of times is more than or equal to 100 times, then this card reader serial number is write blacklist, returns error message prompting this card reader of user Blacklist, and termination flow process it are added into;
S602: dispatch server judge distance dispatch server get the visiting frequency management and control list moment before second preset time Between interval in, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if distance dispatch server obtaining Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises card reader sequence Number be stored in record, then termination flow process;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length, Under management and control state, its request initiated is not processed by dispatch server, and dispatch server can first determine whether to adjust in distance Whether degree server gets before the visiting frequency management and control list moment in the first prefixed time interval, in visiting frequency management and control list Comprise card reader serial number is stored in record, if getting before the visiting frequency management and control list moment first at distance dispatch server In prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, and this card reader serial number is described Also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, can answer according to concrete It is configured by scene, such as, when card-reading terminal is automatic ticket taking machine, the first prefixed time interval can be set as 1 minute, It is to say, when finding that certain specific card reader serial number is in frequency management and control list, within ensuing 1 minute, the most right The request initiated based on this card reader serial number carries out processing operation;Alternatively, when finding that certain specific card reader serial number is in frequency During degree management and control list, return information prompting this Card reader status of user abnormal, try the most again;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if Before dispatch server gets the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list In comprise card reader serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, If the record occurrence number that is stored in of card reader serial number is less than the second preset value, then return the second information termination flow process; If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist, Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number In the case of entering record, can determine whether before distance dispatch server gets the visiting frequency management and control list moment the 4th pre- If in time interval, comprise card reader serial number in visiting frequency management and control list is stored in record number of times;In one section of Preset Time, If dispatch server repeatedly receives the place initiated based on a certain card reader serial number being specifically present in frequency management and control list During reason request, it is believed that this card reader Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server judges In receiving the second prefixed time interval before the request of process, once it was written into according to the card reader serial number that the request of process obtains In frequency management and control list, then determine whether in receiving the 4th prefixed time interval before the request of process, according to place Whether the number of times that the card reader serial number that reason request obtains once was written in frequency management and control list reaches the second preset value, Qi Zhong Four prefixed time interval and the second preset value are preset value, can set according to application scenarios, such as: the 4th prefixed time interval Being 5 minutes, the second preset value is 100 times, then if dispatch server judges receiving based on specific card reader serial number In the process initiated is asked first 5 minutes, have been received by processing the number of times asked less than 100 based on what this card reader serial number was initiated Secondary, then return the second information prompting user and try the most again and termination flow process;If had been received by based on this card reader sequence This card reader serial number more than or equal to 100 times, is then write blacklist by the number of times processing request that row number are initiated, and returns mistake This card reader of information alert user has been added into blacklist, and termination flow process;
Alternatively, if step gets the second prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, visiting frequency management and control list comprises card reader serial number be stored in record after, further comprise the steps of: dispatch server judge Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency management and control name Whether comprise identity card serial number in list is stored in record, if getting the visiting frequency management and control list moment at distance dispatch server Before in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, then dispatch service Device obtains and gets before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency In management and control list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number more than or Equal to the first preset value, then identity card serial number is stored in blacklist;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number In the case of entering record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control list Before moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number be stored in record and Judge to get before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency pipe Comprise identity card serial number in control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly receives During to the process request initiated based on a certain identity card serial number being specifically present in frequency management and control list, it is believed that this identity Card Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request In first prefixed time interval, once it was written in frequency management and control list according to the identity card serial number that the request of process obtains, then Determine whether in receiving the 3rd prefixed time interval before the request of process, the identity card sequence obtained according to the request of process Whether number number of times being once written in frequency management and control list reaches the first preset value, wherein the 3rd prefixed time interval and first pre- If value is preset value, can set according to application scenarios, such as: the 3rd prefixed time interval is 5 minutes, the first preset value is 100 times, then if dispatch server judges receiving first 5 minutes of process request based on specific identity card serial number initiation In, have been received by the number of times processing request based on this identity card serial number is initiated and be less than 100 times, then return the first information Prompting user tries and termination flow process the most again;If having been received by the secondary of process request based on the initiation of this identity card serial number This identity card serial number more than or equal to 100 times, is then write blacklist by number, has returned error message prompting this identity card of user It is added into blacklist, and termination flow process;
If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server, visiting frequency Do not comprise card reader serial number in management and control list is stored in record, then judge to get visiting frequency management and control at distance dispatch server Before the list moment in the first prefixed time interval, whether comprise identity card serial number in visiting frequency management and control list is stored in record, If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server, visiting frequency management and control Comprise identity card serial number in list is stored in record, then termination flow process;
Alternatively, if step gets the first prefixed time interval before the visiting frequency management and control list moment at distance dispatch server In, comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process, including step: if Before dispatch server gets the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list In comprise identity card serial number be stored in record, then dispatch server obtains and is getting visiting frequency management and control at distance dispatch server Before the list moment in the 3rd prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, If the record occurrence number that is stored in of identity card serial number is less than the first preset value, then return the first information termination flow process; If the record occurrence number that is stored in of identity card serial number is more than or equal to the first preset value, then identity card serial number is stored in blacklist, Return error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain visiting when determining at distance dispatch server Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader serial number In the case of being stored in record, dispatch server can be determined whether to judge at distance dispatch server and to get visiting frequency management and control name Before single moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number be stored in record with And judge to get before the visiting frequency management and control list moment in the 3rd prefixed time interval at distance dispatch server, visiting frequency Comprise identity card serial number in management and control list is stored in record number of times, in one section of Preset Time, if dispatch server repeatedly connects When receiving process request based on the initiation of a certain identity card serial number being specifically present in frequency management and control list, it is believed that this body Part card Serial No. illegal sequence number, adds blacklist;Specifically, if dispatch server judged before receiving process request The first prefixed time interval in, according to process request obtain identity card serial number be once written in frequency management and control list, that Determine whether in receiving the 3rd prefixed time interval before the request of process, the identity card sequence obtained according to the request of process Whether the row number number of times being once written in frequency management and control list reaches the first preset value, wherein the 3rd prefixed time interval and first Preset value is preset value, can set according to application scenarios, such as: the 3rd prefixed time interval is 5 minutes, the first preset value It it is 100 times, then if dispatch server judges receiving first 5 points of the process request initiated based on specific identity card serial number In clock, have been received by being less than 100 times based on the number of times processing request that this identity card serial number is initiated, then return the first prompting letter Breath prompting user try and termination flow process the most again;If having been received by process request based on the initiation of this identity card serial number Number of times is more than or equal to 100 times, then this identity card serial number is write blacklist, returns error message prompting this identity card of user Blacklist, and termination flow process it are added into;
If dispatch server judges to get before the visiting frequency management and control list moment between the first Preset Time at distance dispatch server Every interior, whether visiting frequency management and control list comprise the record that is stored in of identity card serial number, and judges to obtain at distance dispatch server Get before the visiting frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader Serial number be stored in record, if dispatch server judged before dispatch server gets the visiting frequency management and control list moment to distance In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes Business device gets before the visiting frequency management and control list moment in the second prefixed time interval, does not comprise reading in visiting frequency management and control list Card device serial number be stored in record, then perform step S7;
When dispatch server judges to get before the visiting frequency management and control list moment between the first Preset Time at distance dispatch server Every interior, visiting frequency management and control list does not comprise being stored in record and getting access at distance dispatch server of identity card serial number Before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise depositing of card reader serial number When entering to record, it may be determined that when this identity card serial number and this card reader serial number at the first prefixed time interval and are preset second Between interval in abnormality did not occur, determine whether this identity card serial number or this card reader serial number this ask in Whether it is in abnormality;
S7, dispatch server obtains exception rules, and performs step S801 or step S802;
S801: dispatch server judges whether identity card serial number meets exception rules, if identity card serial number meets exception rules, Then termination flow process;
Exception rules can be stored in dispatch server its memory, it is also possible to obtains from external equipment, dispatch server energy Enough judge whether the identity card serial number in this request or card reader serial number are in abnormality according to exception rules;
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Step S2 Also including, dispatch server obtains decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader counting Value, wherein, timestamp is demonstrate,proved information process request by the card reader identity-based identification generating authentication ids information process request Produce moment generation;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;
Dispatch server judge identity card serial number whether meet exception rules can in the following ways in one or more:
Mode one: dispatch server is based on timestamp and the moment receiving authentication ids information process request, when generating first Between be spaced, it is judged that whether very first time interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, if when first Between interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, then judge that identity card serial number is legal, otherwise, Judge that identity card serial number meets exception rules;
Timestamp includes the generation moment of authentication ids information process request, when dispatch server receives process request, Can obtain very first time interval according to the moment and timestamp receiving the request of process, very first time interval represents this process request From being generated to time of being received middle experience, if very first time interval is too short or long, all represent this request transmitting procedure Middle occur security and the reliability that is abnormal, that process for guarantee, it is judged that the identity card sequence comprised in authentication ids information process request Row exception, the very first time zone of reasonableness at interval is preset value, can set according to specific application scenarios, such as: the 5th is pre- If time interval is 1 second, the 6th prefixed time interval is 60 seconds, then when very first time interval is less than 1 second or more than 60 Second time, it is possible to determine that this time the identity card serial number in authentication ids information process request meets exception rules;
Mode two: dispatch server is based on timestamp and card reader count value, it is judged that distance dispatch server gets visiting frequency Before the management and control list moment in the 7th prefixed time interval, what dispatch server received comprises the body of identity card serial number encryption value The request number of times of part identification card information process request whether less than the 3rd preset value, if dispatch server receive comprise identity card The request number of times of the authentication ids information process request of serial number encryption value is less than the 3rd preset value, then judge identity card serial number Legal, otherwise, it is judged that identity card serial number meets exception rules;
When the authentication ids information process request generated based on a certain specific identity card serial number the most repeatedly occurs, Can be determined that this identity card serial number meets exception rules, the 7th prefixed time interval and the 3rd preset value are preset value, can depend on Setting according to concrete application scenarios, such as, the 7th prefixed time interval is 5 minutes, and the 3rd preset value is 100 times, then scheduling Server reads this and processes the timestamp in request and process in request for the 100th time before based on what this identity card serial number generated Timestamp, it is judged that whether the time interval between two timestamps less than 5 minutes, if less than 5 minutes, then judges this body Part card serial number meets exception rules;
Alternatively, dispatch server judges whether card reader serial number meets one or more in exception rules in the following manner:
Mode one: dispatch server is based on timestamp and the moment receiving authentication ids information process request, when generating first Between be spaced, it is judged that whether very first time interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, if when first Between interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, then judge that card reader serial number is legal, otherwise, Judge that card reader serial number meets exception rules;
Timestamp includes the generation moment of authentication ids information process request, when dispatch server receives process request, Can obtain very first time interval according to the moment and timestamp receiving the request of process, very first time interval represents this process request From being generated to time of being received middle experience, if very first time interval is too short or long, all represent this request transmitting procedure Middle occur security and the reliability that is abnormal, that process for guarantee, it is judged that the card reader sequence comprised in authentication ids information process request Row exception, the very first time zone of reasonableness at interval is preset value, can set according to specific application scenarios, such as: the 8th is pre- If time interval is 1 second, the 9th prefixed time interval is 60 seconds, then when very first time interval is less than 1 second or more than 60 Second time, it is possible to determine that this time the card reader serial number in authentication ids information process request meets exception rules;
Mode two: dispatch server is based on timestamp and card reader count value, it is judged that get access frequency at distance dispatch server Before the degree management and control list moment in the tenth prefixed time interval, what dispatch server received comprises the identity card of card reader serial number Authentication information processes the request number of times of request whether less than the 4th preset value, if dispatch server receive comprise card reader sequence Number the request number of times of authentication ids information process request less than the 4th preset value, then judge that card reader serial number is legal, otherwise, Judge that card reader serial number meets exception rules;
When the authentication ids information process request generated based on a certain specific card reader serial number the most repeatedly occurs, Can be determined that this card reader serial number meets exception rules, the tenth prefixed time interval and the 4th preset value are preset value, can depend on Setting according to concrete application scenarios, such as, the tenth prefixed time interval is 5 minutes, and the 4th preset value is 100 times, then scheduling Server reads this and processes the timestamp in request and process in request for the 100th time before based on what this card reader serial number generated Timestamp, it is judged that whether the time interval between two timestamps less than 5 minutes, if less than 5 minutes, then judges this reading Card device serial number meets exception rules;
Mode three: dispatch server is based on card reader count value, it is judged that in the authentication ids information process request continuously received Whether preset rules is met, if card reader count value meets preset rules, then with the card reader count value of card reader sequence numbers match Judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;
When card reader initiates authentication ids information process request, its card reader count value can be changed according to preset rules, example As, often initiate single treatment request, card reader count value adds one;After dispatch server receives process request, extract card reader Serial number and card reader count value, it is judged that processed the card reader count value in request and basis the last time corresponding with this card reader serial number Whether secondary card reader count value meets preset rules, if not meeting preset rules, then illustrates that this card reader exists abnormal, its Card Reader Device serial number meets exception rules;
Alternatively, if step identity card serial number meets exception rules, then termination flow process, including step: if identity card sequence Row number meet exception rules, then identity card serial number is stored in visiting frequency management and control list, returns the first information termination Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of identity card serial number meets exception rules, further this identity card serial number to be write frequency management and control list, return Return the existence of this identity card of information alert user extremely to try the most again, and termination flow process, thus realize frequency management and control list Dynamically change, promotes the intelligent of authentication ids information process request processing procedure;
Alternatively, if after step identity card serial number meets exception rules, further comprising the steps of: and whether judge card reader serial number Meet exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control list;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of identity card serial number meets exception rules, to determine whether whether card reader serial number meets exception rules, if Card reader serial number meets exception rules, then should by card reader serial number write-access frequency management and control list return information prompting user Card reader exists to be tried extremely the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes body The intelligent of information process request processing procedure is demonstrate,proved in part identification;
If identity card serial number does not meets exception rules, then judge whether card reader serial number meets exception rules, if card reader sequence Row number meet exception rules, then termination flow process;
Alternatively, if step card reader serial number meets exception rules, then termination flow process, including step: if card reader sequence Row number meet exception rules, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of identity card serial number do not meets exception rules, to determine whether whether card reader serial number meets exception rules, If card reader serial number meets exception rules, then point out user by card reader serial number write-access frequency management and control list return information This card reader exists to be tried extremely the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes Authentication ids information process request processing procedure intelligent;
S802: dispatch server judges whether card reader serial number meets exception rules, if card reader serial number meets exception rules, Then termination flow process;
With S801 accordingly, whether dispatch server first can also meet exception rules to card reader serial number judges,
Alternatively, if step card reader serial number meets exception rules, then termination flow process, including step: if card reader sequence Row number meet exception rules, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of card reader serial number meets exception rules, further this card reader serial number to be write frequency management and control list, return Return the existence of this card reader of information alert user extremely to try the most again, and termination flow process, thus realize frequency management and control list Dynamically change, promotes the intelligent of authentication ids information process request processing procedure;
Alternatively, if after step card reader serial number meets exception rules, further comprising the steps of: and whether judge identity card serial number Meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control list;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of card reader serial number meets exception rules, to determine whether whether identity card serial number meets exception rules, if Identity card serial number meets exception rules, then should by identity card serial number write-access frequency management and control list return information prompting user Identity card existence is abnormal to be tried the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes body The intelligent of information process request processing procedure is demonstrate,proved in part identification;
If card reader serial number does not meets exception rules, then judge whether identity card serial number meets exception rules, if identity card sequence Row number meet exception rules, then termination flow process;
Alternatively, if step identity card serial number meets exception rules, then termination flow process, including step: if identity card sequence Row number meet exception rules, then identity card serial number is stored in visiting frequency management and control list, returns the first information termination Reason flow process;
In order to be further ensured that the integrity of abnormal data, the dynamic and intelligent that lifting processes, it is ensured that process safety, when really Determine in the case of card reader serial number do not meets exception rules, to determine whether whether identity card serial number meets exception rules, If identity card serial number meets exception rules, then point out user by identity card serial number write-access frequency management and control list return information The existence of this identity card is abnormal to be tried the most again, and termination flow process, thus realizes the dynamic change of frequency management and control list, promotes Authentication ids information process request processing procedure intelligent;
If dispatch server judges that identity card serial number and card reader serial number all do not meet exception rules, then perform step S9;
Authentication ids information process request is processed by S9: dispatch server;
When dispatch server judges identity card serial number and card reader serial number does not all meet exception rules, then explanation identity card sequence Row number and card reader serial number all do not appear in blacklist, and do not go out in the prefixed time interval before receiving the request of process Now in frequency management and control list, do not meet exception rules, say, that now identity card serial number and card reader serial number simultaneously The most legal, now, the dispatch server authentication ids information to generating based on this identity card serial number and this card reader serial number Process request carries out processing operation.
The method provided by the embodiment of the present invention, it is possible to realize the identity card generated based on abnormal identity card or abnormal card reader Authentication information processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to enter as key value Line pipe control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution, Pass through blacklist, it is possible to stop illegal identity card or the process request of illegal card reader initiation in the very first time, by the present invention's Abnormality eliminating method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency pipe Control list is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous body Part card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing of the present invention Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;Pass through exception rules It is capable of the exception to current identity card or card reader to judge, even if this processes the identity card in request or card reader does not comprises In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize To identity card and triple dynamic authentication of card reader, improve the safety that authentication ids information process request is processed with reliable Property.
Embodiment 2:
The present embodiment provides a kind of authentication ids information process request processing system, as in figure 2 it is shown, include dispatch server 201 With card reader of ID card 202:
Wherein, card reader of ID card 202, it is used for generating authentication ids information process request, and identity card is processed request Deliver to dispatch server 201;Wherein, authentication ids information process request includes: identity card serial number encryption value and card reader Serial number;
Identity card processes the process request that request is initiated for card reader of ID card 202, and dispatch server 201 judges that identity card processes After asking to ask for legal processes, according to preset rules, process the security authentication module that request distribution is idle, quilt for this identity card The originating end that the security authentication module of distribution processes request with this identity card carries out data interaction, wherein, identity card serial number encryption The identity card serial number encryption obtained from identity card is obtained by value for card reader of ID card 202, card reader Serial No. identity card The serial number of card reader 202 self.
Dispatch server 201, is used for receiving authentication ids information process request, and obtaining decryption identity card serial number encryption is worth The identity card serial number arrived;
The identity card serial number encryption value received is decrypted computing, if card reader of ID card 202 uses symmetric encipherment algorithm Encryption identity card serial number, then use corresponding symmetrical decipherment algorithm to be decrypted fortune to the identity card serial number encryption value received Calculate;If card reader of ID card 202 uses own private key encryption identity card serial number, then to the identity card serial number encryption received Value uses the PKI of card reader of ID card 202 to be decrypted computing;Identity card serial number encryption value is decrypted the main body of computing Can be dispatch server 201 itself, it is also possible to be external equipment or external chip.
Dispatch server 201, is additionally operable to obtain blacklist, it is judged that whether identity card serial number is included in blacklist, if identity Card serial number is included in blacklist, then termination flow process;
Dispatch server 201 can obtain blacklist from its memory, it is also possible to obtains blacklist from outside, in blacklist Include illegal identity card serial number and illegal card reader serial number;If the authentication ids information process request received comprises Illegal identity card serial number or illegal card reader serial number, then this authentication ids information process request is in illegal state, Normally cannot be accepted by server.
Blacklist has illegal identity card serial number, the serial number of the identity card being such as reported the loss, the body of appearance exception continuously The serial number of part card or the serial number etc. of identity cards occurred in multiple areas in the short time, its place asked is comprehended bring bigger Risk, if dispatch server 201 judges that identity card serial number is included in blacklist, illustrates this illegal body of identity card Serial No. Part demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server can return information to point out use Family, this identity card has been added into blacklist, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, when identity card serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency management and control List, it is judged that get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201, Whether comprise card reader serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201 Ask before the frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list comprises depositing of card reader serial number Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201 In four prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, if card reader sequence Number be stored in record occurrence number more than or equal to the second preset value, then card reader serial number is stored in blacklist;If dispatch service Device 201 judges to get before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201, Do not comprise card reader serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that card reader serial number Whether meet exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access frequency management and control name Single;
If identity card serial number is not comprised in blacklist, then judge whether card reader serial number is included in blacklist, if reading Card device serial number is included in blacklist, then termination flow process;
If identity card serial number is not comprised in blacklist, then determine whether the legitimacy of card reader serial number, to determine body Part card serial number and card reader serial number are the most legal, have illegal card reader serial number, such as, be reported the loss in blacklist The serial number of card reader, the serial number of abnormal card reader occurs continuously, exceed the serial number or in short-term of the card reader of service life At the serial number etc. of the card reader that multiple areas occur, its place asked is comprehended and brings greater risk, if dispatch server 201 Judging that card reader serial number is included in blacklist, illustrate that this card reader Serial No. illegal identity demonstrate,proves serial number, server is not Process, termination flow process.Alternatively, server can return information to point out user, and this card reader has been added into black List, it is simple to user carries out subsequent operation and Resolving probiems;
Alternatively, if after card reader serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency pipe Control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201 Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201 In three prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card sequence Number be stored in record occurrence number more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch service Device 201 judges to get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, Do not comprise identity card serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that identity card serial number Whether meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control name Single;
Dispatch server 201, is additionally operable to obtain blacklist, and judges whether card reader serial number is included in blacklist, if reading Card device serial number is included in blacklist, then termination flow process;
Blacklist has illegal card reader serial number, the serial number of the card reader being such as reported the loss, the reading of appearance exception continuously The serial number of card device, the serial number exceeding the card reader of service life or the serial number etc. of card reader occurred in multiple areas in short-term, Its place asked is comprehended and brings greater risk, if dispatch server 201 judges that card reader serial number is included in blacklist, say This card reader Serial No. illegal identity bright demonstrate,proves serial number, and server is disregarded, termination flow process.Alternatively, server Can return information to point out user, this card reader has been added into blacklist, it is simple to user carries out subsequent operation and solution Certainly;
Alternatively, if after card reader serial number is included in blacklist, dispatch server 201 is additionally operable to obtain visiting frequency pipe Control list, it is judged that get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, Whether comprise identity card serial number in visiting frequency management and control list is stored in record, if obtaining visiting at distance dispatch server 201 Ask before the frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises depositing of identity card serial number Enter record, then dispatch server 201 obtains and gets before the visiting frequency management and control list moment the at distance dispatch server 201 In three prefixed time interval, in visiting frequency management and control list identity card serial number be stored in record occurrence number, if identity card sequence Number be stored in record occurrence number more than or equal to the first preset value, then identity card serial number is stored in blacklist;If dispatch service Device 201 judges to get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, Do not comprise identity card serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that identity card serial number Whether meet exception rules, if identity card serial number meets exception rules, then by identity card serial number write-access frequency management and control name Single;
If card reader serial number is not comprised in blacklist, then judge whether identity card serial number is included in blacklist, if body Part card serial number is included in blacklist, then termination flow process;
If card reader serial number is not comprised in blacklist, then determine whether the legitimacy of identity card serial number, to determine body Part card serial number and card reader serial number are the most legal, have illegal identity card serial number, such as, be reported the loss in blacklist The sequence of the serial number of identity card, the serial number that abnormal identity card occurs continuously or the short time interior identity cards occurred in multiple areas Row number etc., comprehend its place asked and bring greater risk, if dispatch server 201 judges that identity card serial number is included in black name In single, illustrating that this identity card Serial No. illegal identity demonstrate,proves serial number, server is disregarded, termination flow process.Alternatively, Server can return information to point out user, and this identity card has been added into blacklist, it is simple to user carry out subsequent operation and Resolving probiems;
Alternatively, after step judges that card reader serial number is not comprised in blacklist, dispatch server 201 is additionally operable to obtain Take visiting frequency management and control list, it is judged that second is pre-before distance dispatch server 201 gets the visiting frequency management and control list moment If in time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if in distance dispatch service Device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, comprises reading in visiting frequency management and control list Card device serial number be stored in record, then dispatch server 201 obtain distance dispatch server 201 getting visiting frequency management and control Before the list moment in the 4th prefixed time interval, in visiting frequency management and control list card reader serial number be stored in record occurrence number, If the record occurrence number that is stored in of card reader serial number is more than or equal to the second preset value, then card reader serial number is stored in blacklist; If dispatch server 201 judge distance dispatch server 201 get the visiting frequency management and control list moment before second preset time Between interval in, do not comprise card reader serial number in visiting frequency management and control list is stored in record, then obtain exception rules, it is judged that read Whether card device serial number meets exception rules, if card reader serial number meets exception rules, then by card reader serial number write-access Frequency management and control list;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number is all not included in blacklist, Obtain visiting frequency management and control list, and judge to get before the visiting frequency management and control list moment the at distance dispatch server 201 In one prefixed time interval, whether comprise identity card serial number in visiting frequency management and control list is stored in record, if in distance scheduling Server 201 gets before the visiting frequency management and control list moment in the first prefixed time interval, wraps in visiting frequency management and control list It is stored in record, then termination flow process containing identity card serial number;
If dispatch server 201 judges that identity card serial number and card reader serial number are all not included in blacklist, identity card is described Serial number and card reader serial number are all legal, say, that this authentication ids information process request is in legal state, Need to determine whether whether this authentication ids information process request is in by management and control state;
Dispatch server 201 can obtain visiting frequency management and control list from its memory, it is also possible to obtains from outside and accesses frequency Degree management and control list, includes the identity card serial number by management and control and the card reader serial number by management and control in visiting frequency management and control list; If the authentication ids information process request received comprises the identity card serial number by management and control or the card reader sequence by management and control Number, then this authentication ids information process request is in by management and control state, could thaw, currently after needing frozen certain time length Normally cannot be accepted by server.
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length, Under management and control state, its request initiated is not processed by dispatch server 201, and dispatch server 201 can first determine whether Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, visiting frequency pipe Whether comprise identity card serial number in control list is stored in record, if getting visiting frequency management and control at distance dispatch server 201 Before the list moment in the first prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record, says This identity card serial number bright also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, Can be configured according to concrete application scenarios, such as, when card-reading terminal is automatic ticket taking machine, the first Preset Time can be set It is spaced apart 1 minute, say, that when finding that certain specific identity card serial number is in frequency management and control list, ensuing 1 Within minute, do not carry out the request initiated based on this identity card serial number processing operation;Alternatively, when finding certain specific identity When card serial number is in frequency management and control list, returns information prompting this identity card abnormal state of user, try the most again;
If getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, access Do not comprise identity card serial number in frequency management and control list is stored in record, then judge to get access at distance dispatch server 201 Before the frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number It is stored in record, if getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201, Comprise card reader serial number in visiting frequency management and control list is stored in record, then termination flow process;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number is all not included in blacklist, Obtain visiting frequency management and control list, and judge to get before the visiting frequency management and control list moment the at distance dispatch server 201 In two prefixed time interval, whether comprise card reader serial number in visiting frequency management and control list is stored in record, if in distance scheduling Server 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, wraps in visiting frequency management and control list It is stored in record, then termination flow process containing card reader serial number;
For avoiding suffering Replay Attack, abnormal identity card serial number and abnormal card reader serial number can frozen management and control certain time length, Under management and control state, its request initiated is not processed by dispatch server 201, and dispatch server 201 can first determine whether Get before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, visiting frequency pipe Whether comprise card reader serial number in control list is stored in record, if getting visiting frequency management and control at distance dispatch server 201 Before the list moment in the first prefixed time interval, comprise card reader serial number in visiting frequency management and control list is stored in record, says This card reader serial number bright also in freezing management and control state, termination flow process;Wherein, the first prefixed time interval is preset value, Can be configured according to concrete application scenarios, such as, when card-reading terminal is automatic ticket taking machine, the first Preset Time can be set It is spaced apart 1 minute, say, that when finding that certain specific card reader serial number is in frequency management and control list, ensuing 1 Within minute, do not carry out the request initiated based on this card reader serial number processing operation;Alternatively, when finding certain specific Card Reader When device serial number is in frequency management and control list, returns information prompting this Card reader status of user abnormal, try the most again;
If getting before the visiting frequency management and control list moment in the second prefixed time interval at distance dispatch server 201, access Do not comprise card reader serial number in frequency management and control list is stored in record, then judge to get access at distance dispatch server 201 Before the frequency management and control list moment in the first prefixed time interval, whether visiting frequency management and control list comprises identity card serial number It is stored in record, if getting before the visiting frequency management and control list moment in the first prefixed time interval at distance dispatch server 201, Comprise identity card serial number in visiting frequency management and control list is stored in record, then termination flow process;
Dispatch server 201, was additionally operable to before judging distance dispatch server 201 gets the visiting frequency management and control list moment In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes Business device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, does not wraps in visiting frequency management and control list Containing when being stored in record of card reader serial number, obtain exception rules, and judge whether identity card serial number meets exception rules, if Identity card serial number meets exception rules, then termination flow process;
Exception rules can be stored in dispatch server 201 its memory, it is also possible to obtains from external equipment, dispatch service According to exception rules, device 201 can judge whether the identity card serial number in this request or card reader serial number are in abnormal shape State;
If identity card serial number does not meets exception rules, then judge whether card reader serial number meets exception rules, if card reader sequence Row number meet exception rules, then termination flow process;
When dispatch server 201 judged before distance dispatch server 201 gets the visiting frequency management and control list moment first pre- If in time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance dispatch server 201 Get before the visiting frequency management and control list moment in the second prefixed time interval, visiting frequency management and control list does not comprise card reader When being stored in record of serial number, it may be determined that this identity card serial number and this card reader serial number the first prefixed time interval and Abnormality did not occur in the second prefixed time interval, determined whether that this identity card serial number or this card reader serial number existed Whether this request is in abnormality;
Dispatch server 201, was additionally operable to before judging distance dispatch server 201 gets the visiting frequency management and control list moment In first prefixed time interval, do not comprise identity card serial number in visiting frequency management and control list is stored in record and at distance scheduling clothes Business device 201 gets before the visiting frequency management and control list moment in the second prefixed time interval, does not wraps in visiting frequency management and control list Containing when being stored in record of card reader serial number, obtain exception rules, and judge whether card reader serial number meets exception rules, if Card reader serial number meets exception rules, then termination flow process;If card reader serial number does not meets exception rules, then judge body Whether part card serial number meets exception rules, if identity card serial number meets exception rules, then and termination flow process;
Dispatch server 201, is additionally operable to when judging identity card serial number and card reader serial number does not all meet exception rules, right Authentication ids information process request processes.
Alternatively, dispatch server 201, it is additionally operable to get the visiting frequency management and control list moment at distance dispatch server 201 Before in the first prefixed time interval, if visiting frequency management and control list comprises when being stored in record of identity card serial number, obtain Before dispatch server 201 gets the visiting frequency management and control list moment in the 3rd prefixed time interval, visiting frequency management and control In list identity card serial number be stored in record occurrence number, if identity card serial number be stored in record occurrence number less than first pre- If value, then return the first information termination flow process;If identity card serial number be stored in record occurrence number more than or etc. In the first preset value, then identity card serial number is stored in blacklist, returns error message termination flow process;
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain at distance dispatch server 201 when determining Before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card serial number Be stored in record in the case of, can determine whether distance dispatch server 201 get the visiting frequency management and control list moment it In front 3rd prefixed time interval, comprise identity card serial number in visiting frequency management and control list is stored in record number of times;Pre-at one section If in the time, if dispatch server receives for more than 201 time based on a certain identity card being specifically present in frequency management and control list During the process request that serial number is initiated, it is believed that this identity card Serial No. illegal sequence number, add blacklist;Specifically, adjust If degree server 201 judges in receiving the first prefixed time interval before the request of process, the body obtained according to the request of process Part card serial number was once written in frequency management and control list, then determine whether that the before receiving process request the 3rd presets In time interval, whether the number of times that the identity card serial number obtained according to the request of process was once written in frequency management and control list reaches First preset value, wherein the 3rd prefixed time interval and the first preset value are preset value, can set according to application scenarios, such as: 3rd prefixed time interval is 5 minutes, and the first preset value is 100 times, then if dispatch server 201 judges receiving In process based on specific identity card serial number initiation is asked first 5 minutes, have been received by the place initiated based on this identity card serial number The number of times of reason request less than 100 times, then returns the first information prompting user and tries and termination flow process the most again;If Receive the number of times processing request initiated based on this identity card serial number to be more than or equal to 100 times, then by this identity card serial number Write blacklist, returns error message prompting this identity card of user and has been added into blacklist, and termination flow process;
Alternatively, dispatch server 201, it is additionally operable to get the visiting frequency management and control list moment at distance dispatch server 201 Before in the second prefixed time interval, visiting frequency management and control list comprises when being stored in record of card reader serial number, obtain away from Before dispatch server 201 gets the visiting frequency management and control list moment in the 4th prefixed time interval, visiting frequency management and control name In list, card reader serial number is stored in record occurrence number, if the record occurrence number that is stored in of card reader serial number is preset less than second Value, then return the second information termination flow process;If the record occurrence number that is stored in of card reader serial number is more than or equal to Second preset value, then be stored in blacklist by card reader serial number, returns error message termination flow process.
In order to be further ensured that the integrity of abnormal data, it is ensured that process safety, obtain at distance dispatch server 201 when determining Before the visiting frequency management and control list moment in the first prefixed time interval, visiting frequency management and control list comprises identity card serial number Be stored in record in the case of, can determine whether dispatch server 201 judge distance dispatch server 201 getting access Before the frequency management and control list moment in the second prefixed time interval, whether visiting frequency management and control list comprises card reader serial number It is stored in record and judges getting before the visiting frequency management and control list moment between the 4th Preset Time apart from dispatch server 201 Every interior, comprise card reader serial number in visiting frequency management and control list is stored in record number of times, in one section of Preset Time, if adjusted Degree server receives the process initiated based on a certain card reader serial number being specifically present in frequency management and control list for more than 201 time During request, it is believed that this card reader Serial No. illegal sequence number, add blacklist;Specifically, if dispatch server 201 is sentenced Break in receiving the second prefixed time interval before the request of process, once write according to the card reader serial number that the request of process obtains Enter in frequency management and control list, then determine whether in receiving the 4th prefixed time interval before the request of process, according to Whether the number of times that the card reader serial number that the request of process obtains once was written in frequency management and control list reaches the second preset value, wherein 4th prefixed time interval and the second preset value are preset value, can set according to application scenarios, such as: between the 4th Preset Time Being divided into 5 minutes, the second preset value is 100 times, then if dispatch server 201 judges receiving based on specific card reader In the process that serial number is initiated is asked first 5 minutes, the number of times processing request having been received by initiating based on this card reader serial number is little In 100 times, then return the second information prompting user and try the most again and termination flow process;If had been received by based on this reading This card reader serial number more than or equal to 100 times, is then write blacklist, returns by the number of times processing request that card device serial number is initiated Return error message prompting this card reader of user and be added into blacklist, and termination flow process;
Alternatively, dispatch server 201, it is additionally operable to when identity card serial number meets exception rules, then by identity card serial number It is stored in visiting frequency management and control list, returns the first information termination flow process;Exception rules is met at card reader serial number Time, then card reader serial number is stored in visiting frequency management and control list, returns the second information termination flow process;
Alternatively, authentication ids information process request also includes: timestamp secret value and card reader counting secret value;Scheduling clothes Business device 201, is additionally operable to obtain decryption time stamp secret value and the timestamp of card reader counting secret value acquisition and card reader count value, Wherein, timestamp is demonstrate,proved the generation of information process request by the card reader identity-based identification generating authentication ids information process request Moment generates;Card reader count value is processed request number of times by card reader based on the history that card reader is initiated and generates;
Dispatch server 201, is additionally operable to based on timestamp and the moment receiving authentication ids information process request, generates the One time interval, it is judged that whether very first time interval is more than the 5th prefixed time interval and less than the 6th prefixed time interval, if the One time interval more than the 5th prefixed time interval and less than the 6th prefixed time interval, then judges that identity card serial number is legal, no Then, it is judged that identity card serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and card reader count value, it is judged that distance dispatch server 201 gets Before the visiting frequency management and control list moment in the 7th prefixed time interval, what dispatch server 201 received comprises identity card sequence Whether the request number of times of the authentication ids information process request of number secret value is less than the 3rd preset value, if dispatch server 201 connects The request number of times of the authentication ids information process request comprising identity card serial number encryption value received is less than the 3rd preset value, then Judge that identity card serial number is legal, otherwise, it is judged that identity card serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and the moment receiving authentication ids information process request, generates the One time interval, it is judged that whether very first time interval is more than the 8th prefixed time interval and less than the 9th prefixed time interval, if the One time interval more than the 8th prefixed time interval and less than the 9th prefixed time interval, then judges that card reader serial number is legal, no Then, it is judged that card reader serial number meets exception rules;
Dispatch server 201, is additionally operable to based on timestamp and card reader count value, it is judged that obtain at distance dispatch server 201 Before the visiting frequency management and control list moment in the tenth prefixed time interval, what dispatch server 201 received comprises card reader sequence Whether the request number of times of the authentication ids information process request of row number is less than the 4th preset value, if dispatch server 201 receives The request number of times of the authentication ids information process request comprising card reader serial number less than the 4th preset value, then judge card reader Serial number is legal, otherwise, it is judged that card reader serial number meets exception rules;
Dispatch server 201, is additionally operable to based on card reader count value, it is judged that the authentication ids information processing continuously received please In asking, whether the card reader count value with card reader sequence numbers match meets preset rules, if card reader count value meets preset rules, Then judge that card reader serial number is legal, otherwise, it is judged that card reader serial number meets exception rules.
Alternatively, also comprising certificate server 203, wherein, dispatch server 201 is additionally operable to the authentication ids that will receive Information process request sends to certificate server 203;Certificate server 203, is used for extracting in authentication ids information process request Identity card serial number encryption value, timestamp secret value and/or card reader counting secret value, to identity card serial number encryption value, time Between stab secret value and/or card reader counting secret value be decrypted operation, it is thus achieved that identity card serial number, timestamp and/or card reader meter Numerical value, and identity card serial number, timestamp and/or card reader count value are sent to dispatch server 201;
Certificate server 203 is decrypted operation independent of dispatch server 201 to secret value, on the one hand can reduce scheduling clothes The computing pressure of business device 201, on the other hand, it is possible to promote the safety of verification process.
Alternatively, also comprise database server 204, wherein, database server 204, be used for storing blacklist and frequency pipe Control list;Dispatch server 201, is additionally operable to when acquisition request blacklist or frequency management and control list, and generating blacklist acquisition please Ask or frequency management and control list obtains request, and send to database server 204;Database server 204, is additionally operable to receiving Obtain request to blacklist or frequency management and control list obtains when asking, according to request type, blacklist or frequency management and control list are sent To dispatch server 201;Dispatch server 201, is additionally operable to after blacklist or frequency management and control list are carried out write operation, raw Become update after blacklist or frequency management and control list, and will update after blacklist or frequency management and control list send to database service Device 204;Database server 204, is additionally operable to the blacklist after receiving and store renewal or frequency management and control list;
Blacklist and frequency management and control list can be stored in independent database server 204, promote the safety of data, with Time alleviate dispatch server 201 data processing pressure, database server 204 is to blacklist and the storage of frequency management and control list Can be ciphertext storage, it is to avoid by malicious access and distorting.
The system provided by the embodiment of the present invention, it is possible to realize the identity card generated based on abnormal identity card or abnormal card reader Authentication information processes request and carries out effective abnormality processing, uses identity card serial number and/or card reader serial number to enter as key value Line pipe control, it is to avoid because of other factors, the legitimate request caused such as the change of IP address or the change of type of card cannot obtain execution, Pass through blacklist, it is possible to stop illegal identity card or the process request of illegal card reader initiation in the very first time, by the present invention's Abnormality eliminating method is capable of the dynamic renewal of blacklist, enhances dynamic and the real-time of abnormality processing;By frequency pipe Control list is capable of the abnormality processing occurring abnormal identity card or card reader the most in a short time, it is achieved to Short Term Anomalous body Part card or the freezing in short-term of card reader, it is to avoid the security risk causing the process of illegal request, by the abnormality processing of the present invention Method is capable of the dynamic renewal of frequency management and control list, enhances dynamic and the real-time of abnormality processing;Pass through exception rules It is capable of the exception to current identity card or card reader to judge, even if this processes the identity card in request or card reader does not comprises In blacklist or in the range of the management and control of frequency management and control list, can recognize that abnormal identity card or card reader equally, thus realize To identity card and triple dynamic authentication of card reader, improve the safety that authentication ids information process request is processed with reliable Property.
Any process described otherwise above or method describe and are construed as in flow chart or at this, represent include one or The module of code, fragment or the part of the executable instruction of the more steps for realizing specific logical function or process, and The scope of the preferred embodiment of the present invention includes other realization, wherein can not be by order that is shown or that discuss, including root According to involved function by basic mode simultaneously or in the opposite order, performing function, this should be by embodiments of the invention institute Belong to those skilled in the art to be understood.
Although above it has been shown and described that embodiments of the invention, it is to be understood that above-described embodiment is exemplary, Being not considered as limiting the invention, those of ordinary skill in the art is in the case of without departing from the principle of the present invention and objective Above-described embodiment can be changed within the scope of the invention, revise, replace and modification.The scope of the present invention is by appended power Profit requires and equivalent limits.

Claims (9)

1. the abnormality processing system of an authentication ids information process request, it is characterised in that include dispatch server and identity Card card reader:
Wherein, described card reader of ID card, it is used for generating authentication ids information process request, and please by the process of described identity card Ask transmission to described dispatch server;Wherein, described authentication ids information process request includes: identity card serial number encryption value With card reader serial number;
Described dispatch server, is used for receiving described authentication ids information process request, obtains and deciphers described identity card serial number The identity card serial number that secret value obtains;
Described dispatch server, is additionally operable to obtain blacklist, and is judging described identity card serial number and described card reader serial number When being all not included in described blacklist, obtain visiting frequency management and control list, and get at dispatch server described in judging distance Before the described visiting frequency management and control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described Identity card serial number be stored in record, and before getting the described visiting frequency management and control list moment apart from described dispatch server In second prefixed time interval, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains Take exception rules, and judge whether described identity card serial number or described card reader serial number meet exception rules, and judging State identity card serial number and time described card reader serial number does not all meet exception rules, to described authentication ids information process request Process.
System the most according to claim 1, it is characterised in that
Described dispatch server, is additionally operable to obtain blacklist, it is judged that whether described identity card serial number wraps in described blacklist, if Described identity card serial number is included in described blacklist, then termination flow process;If described identity card serial number is not comprised in In described blacklist, then judge whether described card reader serial number is included in described blacklist, if described card reader serial number bag It is contained in described blacklist, then termination flow process;
Described dispatch server, is additionally operable to obtain blacklist, and judges whether described card reader serial number is included in described blacklist In, if described card reader serial number is included in described blacklist, then termination flow process;If described card reader serial number does not has It is included in described blacklist, then judges whether described identity card serial number is included in described blacklist, if described identity card sequence Row number are included in described blacklist, then termination flow process.
System the most according to claim 1 and 2, it is characterised in that
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described Time in blacklist, obtain visiting frequency management and control list, and judge getting described visiting frequency pipe apart from described dispatch server Before the control list moment in the first prefixed time interval, whether described visiting frequency management and control list comprises described identity card serial number Be stored in record, if the first Preset Time before getting the described visiting frequency management and control list moment apart from described dispatch server In interval, comprise described identity card serial number in described visiting frequency management and control list is stored in record, then termination flow process;If Before getting the described visiting frequency management and control list moment apart from described dispatch server in the first prefixed time interval, described visit Ask that do not comprise described identity card serial number in frequency management and control list is stored in record, then judge obtaining apart from described dispatch server Before the described visiting frequency management and control list moment in the second prefixed time interval, whether described visiting frequency management and control list comprises Described card reader serial number be stored in record, if getting the described visiting frequency management and control list moment apart from described dispatch server Before in the second prefixed time interval, comprise described card reader serial number in described visiting frequency management and control list is stored in record, then Termination flow process;
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described Time in blacklist, obtain visiting frequency management and control list, and judge getting described visiting frequency pipe apart from described dispatch server Before the control list moment in the second prefixed time interval, whether described visiting frequency management and control list comprises described card reader serial number Be stored in record, if the second Preset Time before getting the described visiting frequency management and control list moment apart from described dispatch server In interval, comprise described card reader serial number in described visiting frequency management and control list is stored in record, then termination flow process;If Before getting the described visiting frequency management and control list moment apart from described dispatch server in the second prefixed time interval, described visit Ask that do not comprise described card reader serial number in frequency management and control list is stored in record, then judge obtaining apart from described dispatch server Before the described visiting frequency management and control list moment in the first prefixed time interval, whether described visiting frequency management and control list comprises Described identity card serial number be stored in record, if getting the described visiting frequency management and control list moment apart from described dispatch server Before in the first prefixed time interval, comprise described identity card serial number in described visiting frequency management and control list is stored in record, then Termination flow process.
4. according to the system described in any one of claims 1 to 3, it is characterised in that
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described Time in blacklist, obtain visiting frequency management and control list, and get described visiting frequency pipe at dispatch server described in judging distance Before the control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described identity card serial number It is stored in and records and the second prefixed time interval before getting the described visiting frequency management and control list moment apart from described dispatch server In, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains exception rules, and sentence Whether disconnected described identity card serial number meets exception rules, if described identity card serial number meets exception rules, then and termination stream Journey;If described identity card serial number does not meets exception rules, then judge whether described card reader serial number meets exception rules, if Described card reader serial number meets exception rules, then termination flow process;
Described dispatch server, is additionally operable to judge that described identity card serial number and described card reader serial number are all not included in described Time in blacklist, obtain visiting frequency management and control list, and get described visiting frequency pipe at dispatch server described in judging distance Before the control list moment in the first prefixed time interval, described visiting frequency management and control list does not comprise described identity card serial number It is stored in and records and the second prefixed time interval before getting the described visiting frequency management and control list moment apart from described dispatch server In, described visiting frequency management and control list does not comprise when being stored in record of described card reader serial number, obtains exception rules, and sentence Whether disconnected described card reader serial number meets exception rules, if described card reader serial number meets exception rules, then and termination stream Journey;If described card reader serial number does not meets exception rules, then judge whether described identity card serial number meets exception rules, if Described identity card serial number meets exception rules, then termination flow process.
5. according to the system described in any one of Claims 1-4, it is characterised in that
Described dispatch server, was additionally operable to before getting the described visiting frequency management and control list moment apart from described dispatch server In first prefixed time interval, if described visiting frequency management and control list comprises when being stored in record of described identity card serial number, obtain It is taken at before described dispatch server gets the described visiting frequency management and control list moment in the 3rd prefixed time interval, described Identity card serial number described in visiting frequency management and control list be stored in record occurrence number, if described identity card serial number be stored in note Record occurrence number less than the first preset value, then returns the first information termination flow process;If described identity card serial number It is stored in record occurrence number and is more than or equal to described first preset value, then described identity card serial number is stored in described blacklist, returns Return described error message termination flow process;
Described dispatch server, was additionally operable to before getting the described visiting frequency management and control list moment apart from described dispatch server In second prefixed time interval, described visiting frequency management and control list comprises when being stored in record of described card reader serial number, obtain Before getting the described visiting frequency management and control list moment apart from described dispatch server in the 4th prefixed time interval, described visit That asks card reader serial number described in frequency management and control list is stored in record occurrence number, if described card reader serial number be stored in record Occurrence number is less than the second preset value, then return the second information termination flow process;If depositing of described card reader serial number Enter to record occurrence number and be more than or equal to described second preset value, then described card reader serial number is stored in described blacklist, return Described error message termination flow process.
6. according to the system described in any one of claim 1 to 5, it is characterised in that
Described dispatch server, is additionally operable to when described identity card serial number meets exception rules, then by described identity card serial number It is stored in described visiting frequency management and control list, returns described first information termination flow process;At described card reader serial number When meeting exception rules, then described card reader serial number is stored in described visiting frequency management and control list, returns described second prompting letter Breath termination flow process.
7. according to the system described in any one of claim 1 to 6, it is characterised in that described authentication ids information process request Also include: timestamp secret value and card reader counting secret value;Described dispatch server, is additionally operable to obtain and deciphers described timestamp Secret value and described card reader count timestamp and the card reader count value that secret value obtains, and wherein, described timestamp is by generating The card reader generation moment based on described authentication ids information process request stating authentication ids information process request generates;Institute State card reader count value and processed request number of times generation by described card reader based on the history that described card reader is initiated;
Described dispatch server, is additionally operable to based on described timestamp and the moment receiving described authentication ids information process request, Generate very first time interval, it is judged that whether interval of the described very first time is more than the 5th prefixed time interval and less than the 6th Preset Time Interval, if interval of the described very first time is more than described 5th prefixed time interval and less than described 6th prefixed time interval, then sentences Disconnected described identity card serial number is legal, otherwise, it is judged that described identity card serial number meets exception rules;
Described dispatch server, is additionally operable to based on described timestamp and described card reader count value, it is judged that apart from described dispatch service Device gets before the described visiting frequency management and control list moment in the 7th prefixed time interval, the bag that described dispatch server receives Whether the request number of times of the authentication ids information process request containing described identity card serial number encryption value is less than the 3rd preset value, if What described dispatch server received comprises the request time of the authentication ids information process request of described identity card serial number encryption value Number less than described 3rd preset value, then judges that described identity card serial number is legal, otherwise, it is judged that described identity card serial number meets Exception rules;
Described dispatch server, is additionally operable to based on described timestamp and the moment receiving described authentication ids information process request, Generate interval of the described very first time, it is judged that whether interval of the described very first time is more than described 8th prefixed time interval and less than described 9th prefixed time interval, if interval of the described very first time more than described 8th prefixed time interval and is preset less than the described 9th Between be spaced, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets exception rules;
Described dispatch server, is additionally operable to based on described timestamp and described card reader count value, it is judged that apart from described scheduling clothes Business device gets before the described visiting frequency management and control list moment in the tenth prefixed time interval, and described dispatch server receives Whether the request number of times of the authentication ids information process request comprising described card reader serial number is less than the 4th preset value, if described What dispatch server received comprises the request number of times of the authentication ids information process request of described card reader serial number less than described 4th preset value, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets exception rules;
Described dispatch server, is additionally operable to based on described card reader count value, it is judged that the described authentication ids letter continuously received In breath process request, whether the described card reader count value with described card reader sequence numbers match meets preset rules, if described Card Reader Device count value meets preset rules, then judge that described card reader serial number is legal, otherwise, it is judged that described card reader serial number meets Exception rules.
8. according to the system described in any one of claim 1 to 7, it is characterised in that also comprise certificate server,
Wherein, described dispatch server is additionally operable to send to described certification the described authentication ids information process request received Server;
Described certificate server, for extract described identity card serial number encryption value in described authentication ids information process request, Described timestamp secret value and/or described card reader counting secret value, add described identity card serial number encryption value, described timestamp Close value and/or described card reader counting secret value are decrypted operation, it is thus achieved that described identity card serial number, described timestamp and/or institute State card reader count value, and described identity card serial number, described timestamp and/or described card reader count value are sent to described tune Degree server.
9. according to the system described in any one of claim 1 to 8, it is characterised in that also comprise database server,
Wherein, described database server, it is used for storing described blacklist and described frequency management and control list;
Described dispatch server, is additionally operable to when blacklist described in acquisition request or described frequency management and control list, generates blacklist and obtains Take request or frequency management and control list obtains request, and send to described database server;
Described database server, is additionally operable to receiving the acquisition request of described blacklist or the acquisition request of described frequency management and control list Time, according to request type, described blacklist or described frequency management and control list are sent to described dispatch server;
Described dispatch server, is additionally operable to after described blacklist or described frequency management and control list are carried out write operation, generates more Described blacklist after Xin or described frequency management and control list, and will update after described blacklist or described frequency management and control list send To described database server;
Described database server, is additionally operable to the described blacklist after receiving and store renewal or described frequency management and control list.
CN201610041119.2A 2016-01-21 2016-01-21 A kind of abnormality processing system of authentication ids information process request Active CN106027468B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610041119.2A CN106027468B (en) 2016-01-21 2016-01-21 A kind of abnormality processing system of authentication ids information process request

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610041119.2A CN106027468B (en) 2016-01-21 2016-01-21 A kind of abnormality processing system of authentication ids information process request

Publications (2)

Publication Number Publication Date
CN106027468A true CN106027468A (en) 2016-10-12
CN106027468B CN106027468B (en) 2019-05-21

Family

ID=57082735

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610041119.2A Active CN106027468B (en) 2016-01-21 2016-01-21 A kind of abnormality processing system of authentication ids information process request

Country Status (1)

Country Link
CN (1) CN106027468B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111385244A (en) * 2018-12-27 2020-07-07 中国移动通信集团四川有限公司 Abnormal flow identification method, device, equipment, system and medium

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1429373A (en) * 2000-03-08 2003-07-09 高利科技有限公司 Method and apparatus for readucing on-line fraud using personal digital identification
CN2722330Y (en) * 2004-06-24 2005-08-31 公安部第一研究所证件技术事业部 Personal identity certificating terminal
US20090198618A1 (en) * 2008-01-15 2009-08-06 Yuen Wah Eva Chan Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce
CN102474498A (en) * 2009-07-14 2012-05-23 深圳市永盛世纪科技有限公司 Authentication method for user identification equipment
US20150236858A1 (en) * 2012-09-10 2015-08-20 Giesecke & Devrient Gmbh Method for Creating a Derived Entity of an Original Data Carrier
CN105096428A (en) * 2015-08-29 2015-11-25 邱钊 Big data iris recognition voiceprint recognition candidate identity authentication system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1429373A (en) * 2000-03-08 2003-07-09 高利科技有限公司 Method and apparatus for readucing on-line fraud using personal digital identification
CN2722330Y (en) * 2004-06-24 2005-08-31 公安部第一研究所证件技术事业部 Personal identity certificating terminal
US20090198618A1 (en) * 2008-01-15 2009-08-06 Yuen Wah Eva Chan Device and method for loading managing and using smartcard authentication token and digital certificates in e-commerce
CN102474498A (en) * 2009-07-14 2012-05-23 深圳市永盛世纪科技有限公司 Authentication method for user identification equipment
US20150236858A1 (en) * 2012-09-10 2015-08-20 Giesecke & Devrient Gmbh Method for Creating a Derived Entity of an Original Data Carrier
CN105096428A (en) * 2015-08-29 2015-11-25 邱钊 Big data iris recognition voiceprint recognition candidate identity authentication system

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111385244A (en) * 2018-12-27 2020-07-07 中国移动通信集团四川有限公司 Abnormal flow identification method, device, equipment, system and medium

Also Published As

Publication number Publication date
CN106027468B (en) 2019-05-21

Similar Documents

Publication Publication Date Title
CN105471826B (en) Ciphertext data query method, apparatus and cryptogram search server
US4438824A (en) Apparatus and method for cryptographic identity verification
CN109509518A (en) Management method, server and the computer storage medium of electronic health record
US20070067828A1 (en) Extended one-time password method and apparatus
CN113014539B (en) Internet of things equipment safety protection system and method
CN105933280A (en) Identity authentication method and system
CN105488367B (en) A kind of guard method, backstage and the system of SAM device
CN113014444B (en) Internet of things equipment production test system and safety protection method
CN110234111A (en) A kind of two-factor authentication key agreement protocol suitable for multiple gateway wireless sensor network
CN103366278B (en) Process the method and system of operation requests
CN109448271A (en) A kind of no card withdrawal method, computer readable storage medium and server
CN109831311A (en) A kind of server validation method, system, user terminal and readable storage medium storing program for executing
CN112565265A (en) Authentication method, authentication system and communication method between terminal devices of Internet of things
CN108737110A (en) A kind of data encryption and transmission method and device for anti-replay-attack
Wu et al. A blockchain-based network security mechanism for voting systems
US10491570B2 (en) Method for transmitting data, method for receiving data, corresponding devices and programs
US20200145220A1 (en) Verification system, verification method and non-transitory computer readable storage medium
CN106027254B (en) A kind of method that identity card card-reading terminal uses key in authentication ids system
CN110245534A (en) A kind of high security radio-frequency identification method based on two-way authentication, device and system
CN106027465A (en) Method for processing identity card authentication information processing request
CN106027253A (en) Access frequency management and control device for identity card authentication information
CN106027468A (en) Exception handling system for identity card authentication information processing request
CN106027472A (en) Exception handling method for identity card authentication information processing request
CN108900595B (en) Method, device and equipment for accessing data of cloud storage server and computing medium
CN111092860A (en) Medical data safety interaction transmission module

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20220407

Address after: Tiantianrong building, No. 1, Zhongguancun, Beiqing Road, Haidian District, Beijing 100094

Patentee after: TENDYRON Corp.

Address before: 100086 room 603, building 12, taiyueyuan, Haidian District, Beijing

Patentee before: Li Ming