CN106341817A - Access control system, access control method, mobile terminals and access server - Google Patents

Access control system, access control method, mobile terminals and access server Download PDF

Info

Publication number
CN106341817A
CN106341817A CN201610804140.3A CN201610804140A CN106341817A CN 106341817 A CN106341817 A CN 106341817A CN 201610804140 A CN201610804140 A CN 201610804140A CN 106341817 A CN106341817 A CN 106341817A
Authority
CN
China
Prior art keywords
access
mobile terminal
identity
public key
gate inhibition
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610804140.3A
Other languages
Chinese (zh)
Inventor
符兴富
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nubia Technology Co Ltd
Original Assignee
Nubia Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nubia Technology Co Ltd filed Critical Nubia Technology Co Ltd
Priority to CN201610804140.3A priority Critical patent/CN106341817A/en
Publication of CN106341817A publication Critical patent/CN106341817A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy

Abstract

The invention discloses an access control system, an access control method, mobile terminals and an access server. The access control method comprises steps that multiple mobile terminals are registered through the access server, and a preset public key is sent to the registered mobile terminals; the public key sent by the access server is received by the mobile terminals; an identity identifier is generated; the access time efficiency information is set; the generated identity identifier, the received public key and the set access time efficiency information are inputted through the mobile terminals according to a self-contained near-field communication NFC input function into an access card; when the access server receives a door opening request of the access card, the access information of the access card is read; whether the door opening request of the access card is responded is determined according to the read access information of the access card. Through the method, authorization operation efficiency and access efficiency are improved, and user experience is enhanced.

Description

A kind of access control system, method, mobile terminal and gate inhibition's server
Technical field
The present embodiments relate to but be not limited to the communications field, espespecially a kind of access control system, method, mobile terminal and Gate inhibition's server.
Background technology
At present, the gate control system of Ecological Community, also in the artificial stage authorizing, such as by PC (pc, Personal computer) access card that carries reads and writing station carries out the write of gate inhibition's data and nullifies operation, this Sample causes that Authorized operation is lack of standardization, the inefficiency of Authorized operation, accesses inefficient operation, and Consumer's Experience is bad.
Content of the invention
This application provides a kind of access control system, method, mobile terminal and gate inhibition's server, it is possible to increase authorize behaviour The efficiency made and raising access efficiency, strengthen Consumer's Experience.
In order to reach the application purpose, embodiments provide a kind of access control system, comprising: gate inhibition's clothes Business device, multiple mobile terminal and multiple access card;Wherein,
Gate inhibition's server, pre-sets for multiple mobile terminals are entered with registration sending to registered mobile terminal Public key;When the enabling receiving access card is asked, read the access information of access card;Access letter according to the access card reading Breath determines whether to respond the enabling request of access card;
Mobile terminal, for generating identity;Receive the public key that gate inhibition's server sends;Setting accesses age information; Public key and the visit of setting that the near-field communication nfc write-in functions being possessed according to itself by the identity of generation, receive Ask in age information write access card;
Access card, for sending, to gate inhibition's server, request of opening the door.
Alternatively, described access information includes: the identity of described mobile terminal generation, described public key, described access Age information and the identity of described access card.
Alternatively, it is used in described gate inhibition's server determining whether to respond gate inhibition according to the access information of the access card reading The enabling request of card includes:
Judge whether the identity of described access card is included in the effect identity of multiple access cards of itself storage; Judge whether the public key reading is the public key itself pre-setting;Judge whether the identity that described mobile terminal generates is The identity of the mobile terminal of registration;Judge described access age information whether before the deadline;
When the identity judging described access card is included in the effect identity of multiple access cards of itself storage, And when the public key judging to read is the public key itself pre-setting, and when the identity judging that described mobile terminal generates Mark is the identity of registered mobile terminal, and when judging described access age information before the deadline, rings Answer the enabling request of described access card;
When the identity judging described access card is not included in the effect identity of multiple access cards of itself storage In, or when the public key judged is not the public key itself pre-setting, or when the body judging that described mobile terminal generates Part mark is not the identity of registered mobile terminal, or ought judge described access age information not before the deadline When, the enabling request of access card described in refusal respond.
Alternatively, it is used in described gate inhibition's server multiple mobile terminals are carried out registering to include:
Obtain mobile device international identity code imei of multiple mobile terminals and store.
Alternatively, it is used in described mobile terminal generating identity and include:
Obtain the imei of itself;
According to the first predetermined encryption algorithm, described imei is encrypted to generate identity.
Alternatively, it is used in described gate inhibition's server judging whether the identity that described mobile terminal generates is registered The identity of mobile terminal include:
According to the corresponding with described first predetermined encryption algorithm first default decipherment algorithm, described mobile terminal is generated Identity is decrypted to obtain the imei of described mobile terminal;
Judge whether the imei of the described mobile terminal obtaining is included in the multiple mobile terminals itself prestoring In imei;
When the imei judging the described mobile terminal obtaining is included in the imei of multiple mobile terminals of itself storage When, judge that the identity that described mobile terminal generates is the identity of registered mobile terminal;
When the imei judging the described mobile terminal obtaining is not included in the imei of multiple mobile terminals of itself storage When middle, judge that the identity that described mobile terminal generates is not the identity of registered mobile terminal.
Alternatively, described access age information includes: access times threshold value and/or addressable time period;Correspondingly,
It is used in described gate inhibition's server judging whether described access age information includes before the deadline:
Obtain the access times of described access card, and/or obtain current time;
Judge whether the access times of the described access card obtaining reach described access times threshold value, and/or judge to obtain Current time whether within the described addressable time period;
When the access times judging the described access card obtaining are not up to described access times threshold value, and ought judge When the current time obtaining is within the described addressable time period, judge described access age information before the deadline;
When the access times judging the described access card obtaining reach described access times threshold value, or ought judge to obtain When the current time obtaining is not within the described addressable time period, judge described access age information not before the deadline.
The embodiment of the present invention additionally provides a kind of access control method, comprising:
Gate inhibition's server is registered to multiple mobile terminals and is sent, to registered mobile terminal, the public affairs pre-setting Key;
Mobile terminal receives the public key that gate inhibition's server sends;Generate identity;Setting accesses age information;
Near-field communication nfc write-in functions that mobile terminal possesses according to itself by the identity of generation, receive In the access age information write access card of public key and setting;
Gate inhibition's server, when the enabling receiving access card is asked, reads the access information of access card;According to read The access information of access card determines whether to respond the enabling request of access card.
The embodiment of the present invention additionally provides a kind of mobile terminal, comprising: receiver module, generation module, setup module and write Enter module;Wherein,
Receiver module, for receiving the public key of gate inhibition's server transmission;
Generation module, for generating identity;
Setup module, accesses age information for setting;
Writing module, will generate for the near-field communication nfc write-in functions that the mobile terminal according to belonging to itself possesses Identity, the public key receiving and setting access age information write access card in.
The embodiment of the present invention additionally provides a kind of gate inhibition's server, comprising: Registering modules, sending module, read module and Processing module;Wherein,
Registering modules, for entering registration to multiple mobile terminals;
Sending module, for sending, to registered mobile terminal, the public key pre-setting;
Read module, during for asking when the enabling receiving access card, reads the access information of access card;
Processing module, for determining whether to respond the enabling request of access card according to the access information of the access card reading.
The embodiment of the present invention includes: gate inhibition's server is registered to multiple mobile terminals and to registered mobile terminal Send the public key pre-setting;Mobile terminal receives the public key that gate inhibition's server sends;Generate identity;Setting accesses timeliness Information;The near-field communication nfc write-in functions that mobile terminal possesses according to itself are by the identity of generation, the public key that receives And in the access age information write access card of setting;Gate inhibition's server, when the enabling receiving access card is asked, reads The access information of access card;Determine whether to respond the enabling request of access card according to the access information of the access card reading.This Bright embodiment improves the efficiency of Authorized operation and improves access efficiency, enhances Consumer's Experience.
Brief description
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes the part of the application, this Bright schematic description and description is used for explaining the present invention, does not constitute inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is the hardware architecture diagram realizing the optional mobile terminal of each embodiment of the application one;
Fig. 2 is the schematic diagram of the communication system supporting to be communicated between the application mobile terminal;
Fig. 3 is the Organization Chart of the application access control system;
Fig. 4 is the flow chart of the application access control method;
Fig. 5 is the flow chart of the embodiment of the application access control method;
Fig. 6 is the structural representation of the application mobile terminal;
Fig. 7 is the structural representation of the application gate inhibition's server.
Specific embodiment
Below in conjunction with drawings and Examples, technical scheme is described in detail.
Realize the mobile terminal of each embodiment of the application referring now to Description of Drawings.In follow-up description, use For represent element such as " module ", " part " or " unit " suffix only for being conducive to the explanation of the present invention, itself Not specific meaning.Therefore, " module " and " part " can mixedly use.
Mobile terminal can be implemented in a variety of manners.For example, the terminal described in the present invention can include such as moving Phone, smart phone, notebook computer, digit broadcasting receiver, pda (personal digital assistant), pad (panel computer), pmp The mobile terminal of (portable media player), guider etc. and such as numeral tv, desktop computer etc. consolidate Determine terminal.Hereinafter it is assumed that terminal is mobile terminal.However, it will be understood by those skilled in the art that, except being used in particular for moving Outside the element of purpose, construction according to the embodiment of the present invention can also apply to the terminal of fixed type.
Fig. 1 is the hardware architecture diagram realizing the optional mobile terminal of each embodiment of the application one.
Mobile terminal 1 00 can include wireless communication unit 110, a/v (audio/video) input block 120, user input Unit 130, sensing unit 140, output unit 150, memory 160, interface unit 170, controller 180 and power subsystem 190 Etc..Fig. 1 shows the mobile terminal with various assemblies, it should be understood that being not required for implementing all groups illustrating Part.More or less of assembly can alternatively be implemented.Will be discussed in more detail below the element of mobile terminal.
Wireless communication unit 110 generally includes one or more assemblies, and it allows mobile terminal 1 00 and wireless communication system Or the radio communication between network.For example, wireless communication unit can include broadcasting reception module 111, mobile communication module 112nd, at least one of wireless Internet module 113, short range communication module 114 and location information module 115.
Broadcasting reception module 111 receives broadcast singal and/or broadcast via broadcast channel from external broadcast management server Relevant information.Broadcast channel can include satellite channel and/or terrestrial channel.Broadcast management server can be generated and sent The broadcast singal generating before the server of broadcast singal and/or broadcast related information or reception and/or broadcast related information And send it to the server of terminal.Broadcast singal can include tv broadcast singal, radio signals, data broadcasting Signal etc..And, broadcast singal may further include the broadcast singal combining with tv or radio signals.Broadcast phase Pass information can also provide via mobile communications network, and in this case, broadcast related information can be by mobile communication mould Block 112 is receiving.Broadcast singal can exist in a variety of manners, and for example, it can be with the electronics of DMB (dmb) The form of program guide (epg), the electronic service guidebooks (esg) of digital video broadcast-handheld (dvb-h) etc. and exist.Broadcast Receiver module 111 can be broadcasted by using various types of broadcast system receipt signals.Especially, broadcasting reception module 111 Can be wide by using such as multimedia broadcasting-ground (dmb-t), DMB-satellite (dmb-s), digital video Broadcast-hand-held (dvb-h), forward link media (mediaflo@) Radio Data System, received terrestrial digital broadcasting integrated service Etc. (isdb-t) digit broadcasting system receives digital broadcasting.Broadcasting reception module 111 may be constructed such that and is adapted to provide for extensively Broadcast the various broadcast systems of signal and above-mentioned digit broadcasting system.Via broadcasting reception module 111 receive broadcast singal and/ Or broadcast related information can be stored in memory 160 (or other types of storage medium).
Mobile communication module 112 sends radio signals to base station (for example, access point, node b etc.), exterior terminal And at least one of server and/or receive from it radio signal.Such radio signal can include voice and lead to Words signal, video calling signal or the various types of data sending and/or receiving according to text and/or Multimedia Message.
Wireless Internet module 113 supports the Wi-Fi (Wireless Internet Access) of mobile terminal.This module can be internally or externally It is couple to terminal.Wi-Fi (Wireless Internet Access) technology involved by this module can include wlan (wireless lan) (wi-fi), wibro (WiMAX), wimax (worldwide interoperability for microwave accesses), hsdpa (high-speed downlink packet access) etc..
Short range communication module 114 is the module for supporting junction service.Some examples of short-range communication technology include indigo plant Toothtm, RF identification (rfid), Infrared Data Association (irda), ultra broadband (uwb), purple honeybeetmEtc..
Location information module 115 be for check or obtain mobile terminal positional information module.Location information module Typical case be gps (global positioning system).According to current technology, gps module 115 calculates and is derived from three or more satellites Range information and correct time information and for the Information application triangulation calculating, thus according to longitude, latitude Highly accurately calculate three-dimensional current location information.Currently, the method for calculating position and temporal information is defended using three Star and the error of the position that calculates by using other satellite correction and temporal information.Additionally, gps module 115 Can be by Continuous plus current location information in real time come calculating speed information.
A/v input block 120 is used for receiving audio or video signal.A/v input block 120 can include camera 121 He Microphone 122, camera 121 is to the static images being obtained by image capture apparatus in Video Capture pattern or image capture mode Or the view data of video is processed.Picture frame after process may be displayed on display unit 151.Process through camera 121 Picture frame afterwards can be stored in memory 160 (or other storage medium) or carry out sending out via wireless communication unit 110 Send, two or more cameras 121 can be provided according to the construction of mobile terminal.Microphone 122 can be in telephone calling model, note Sound (voice data) is received via microphone in record pattern, speech recognition mode etc. operational mode, and can be by so Acoustic processing be voice data.Audio frequency (voice) data after process can be converted in the case of telephone calling model can It is sent to the form output of mobile communication base station via mobile communication module 112.Microphone 122 can implement various types of making an uproar Sound eliminates (or suppression) algorithm to eliminate the noise that (or suppression) produces in reception with during sending audio signal or to do Disturb.
User input unit 130 can generate key input data to control each of mobile terminal according to the order of user input Plant operation.User input unit 130 allows the various types of information of user input, and can include keyboard, metal dome, touch Plate (for example, detection due to touched and lead to resistance, pressure, the change of electric capacity etc. sensitive component), roller, rocking bar etc. Deng.Especially, when touch pad is superimposed upon on display unit 151 as a layer, touch-screen can be formed.
Sensing unit 140 detect mobile terminal 1 00 current state, (for example, mobile terminal 1 00 open or close shape State), the position of mobile terminal 1 00, user is for the presence or absence of the contact (that is, touch input) of mobile terminal 1 00, mobile terminal 100 orientation, the acceleration or deceleration movement of mobile terminal 1 00 and direction etc., and generate for controlling mobile terminal 1 00 The order of operation or signal.For example, when mobile terminal 1 00 is embodied as sliding-type mobile phone, sensing unit 140 can sense This sliding-type phone opens or cuts out.In addition, sensing unit 140 can detect power subsystem 190 whether provide electric power or Whether person's interface unit 170 is coupled with external device (ED).
Interface unit 170 is connected, with mobile terminal 1 00, the interface that can pass through as at least one external device (ED).For example, External device (ED) can include wired or wireless head-band earphone port, external power source (or battery charger) port, wired or nothing Line FPDP, memory card port, the port of device for connection with identification module, audio input/output (i/o) end Mouth, video i/o port, ear port etc..Identification module can be storage for verifying that user uses each of mobile terminal 1 00 Kind of information and subscriber identification module (uim), client identification module (sim), Universal Subscriber identification module (usim) can be included Etc..In addition, the device (hereinafter referred to as " identifying device ") with identification module can take the form of smart card, therefore, know Other device can be connected with mobile terminal 1 00 via port or other attachment means.Interface unit 170 can be used for reception and is derived from The input (for example, data message, electric power etc.) of the external device (ED) and input receiving is transferred in mobile terminal 1 00 One or more elements or can be used for transmission data between mobile terminal and external device (ED).
In addition, when mobile terminal 1 00 is connected with external base, interface unit 170 can serve as allowing by it by electricity Power provides the path of mobile terminal 1 00 from base or can serve as allowing the various command signals from base input to pass through it It is transferred to the path of mobile terminal.May serve as identifying that mobile terminal is from the various command signals of base input or electric power The no signal being accurately fitted within base.Output unit 150 is configured to defeated with the offer of vision, audio frequency and/or tactile manner Go out signal (for example, audio signal, vision signal, alarm signal, vibration signal etc.).Output unit 150 can include showing Unit 151, dio Output Modules 152, alarm unit 153 etc..
Display unit 151 may be displayed on the information processing in mobile terminal 1 00.For example, when mobile terminal 1 00 is in electricity During words call mode, display unit 151 can show (for example, text messaging, the multimedia file that communicate with call or other Download etc.) related user interface (ui) or graphic user interface (gui).When mobile terminal 1 00 is in video calling pattern Or during image capture mode, display unit 151 can show the image of capture and/or the image of reception, illustrate video or figure Ui or gui of picture and correlation function etc..
Meanwhile, when display unit 151 and the touch pad touch-screen with formation superposed on one another as a layer, display unit 151 can serve as input unit and output device.Display unit 151 can include liquid crystal display (lcd), thin film transistor (TFT) In lcd (tft-lcd), Organic Light Emitting Diode (oled) display, flexible display, three-dimensional (3d) display etc. at least A kind of.Some in these displays may be constructed such that transparence to allow user from outside viewing, and this is properly termed as transparent Display, typical transparent display can be, for example, toled (transparent organic light emitting diode) display etc..According to specific The embodiment wanted, mobile terminal 1 00 can include two or more display units (or other display device), for example, moves Dynamic terminal can include outernal display unit (not shown) and inner display unit (not shown).Touch-screen can be used for detection and touches Input pressure and touch input position and touch input area.
Dio Output Modules 152 can mobile terminal be in call signal reception pattern, call mode, logging mode, When under the isotypes such as speech recognition mode, broadcast reception mode, that wireless communication unit 110 is received or in memory 160 The voice data transducing audio signal of middle storage and be output as sound.And, dio Output Modules 152 can provide and move The audio output (for example, call signal receives sound, message sink sound etc.) of the specific function correlation of terminal 100 execution. Dio Output Modules 152 can include loudspeaker, buzzer etc..
Alarm unit 153 can provide output to notify event to mobile terminal 1 00.Typical event is permissible Including calling reception, message sink, key signals input, touch input etc..In addition to audio or video output, alarm unit 153 can provide output in a different manner with the generation of notification event.For example, alarm unit 153 can be in the form of vibrating Output is provided, enters when communicating (incoming communication) when receiving calling, message or some other, alarm list Unit 153 can provide tactile output (that is, vibrating) to notify to user.By providing such tactile output, even if When the mobile phone of user is in the pocket of user, user also can recognize that the generation of various events.Alarm unit 153 The output of the generation of notification event can be provided via display unit 151 or dio Output Modules 152.
Memory 160 can store software program of the process being executed by controller 180 and control operation etc., or can Temporarily to store oneself data (for example, telephone directory, message, still image, video etc.) through exporting or will export.And And, memory 160 can be to store the vibration of various modes with regard to exporting and audio signal when touching and being applied to touch-screen Data.
Memory 160 can include the storage medium of at least one type, and described storage medium includes flash memory, hard disk, many Media card, card-type memory (for example, sd or dx memory etc.), random access storage device (ram), static random-access storage Device (sram), read-only storage (rom), Electrically Erasable Read Only Memory (eeprom), programmable read only memory (prom), magnetic storage, disk, CD etc..And, mobile terminal 1 00 can execute memory with by network connection The network storage device cooperation of 160 store function.
Controller 180 generally controls the overall operation of mobile terminal.For example, controller 180 execution and voice call, data The related control of communication, video calling etc. and process.In addition, controller 180 can be included for reproducing (or playback) many matchmakers The multi-media module 181 of volume data, multi-media module 181 can construct in controller 180, or it is so structured that and controls Device 180 separates.Controller 180 can be with execution pattern identifying processing, by the handwriting input executing on the touchscreen or picture Draw input and be identified as character or image.
Power subsystem 190 receives external power or internal power under the control of controller 180 and provides operation each unit Suitable electric power needed for part and assembly.
Various embodiment described herein can be with using such as computer software, hardware or its any combination of calculating Machine computer-readable recording medium is implementing.Hardware is implemented, embodiment described herein can be by using application-specific IC (asic), digital signal processor (dsp), digital signal processing device (dspd), programmable logic device (pld), scene can Program gate array (fpga), processor, controller, microcontroller, microprocessor, be designed to execute function described herein At least one in electronic unit implementing, in some cases, can be implemented in controller 180 by such embodiment. Software is implemented, the embodiment of such as process or function can with allow to execute the single of at least one function or operation Software module is implementing.Software code can be come by the software application (or program) write with any suitable programming language Implement, software code can be stored in memory 160 and be executed by controller 180.
So far, oneself is through describing mobile terminal according to its function.Below, for the sake of brevity, will describe such as folded form, Slide type mobile terminal in various types of mobile terminals of board-type, oscillating-type, slide type mobile terminal etc. is as showing Example.Therefore, the application can be applied to any kind of mobile terminal, and is not limited to slide type mobile terminal.
As shown in Figure 1 mobile terminal 1 00 may be constructed such that using via frame or packet transmission data all if any Line and wireless communication system and satellite-based communication system are operating.
The communication system being wherein operable to according to the mobile terminal of the application referring now to Fig. 2 description.
Such communication system can use different air interfaces and/or physical layer.For example, used by communication system Air interface includes such as frequency division multiple access (fdma), time division multiple acess (tdma), CDMA (cdma) and universal mobile communications system System (umts) (especially, Long Term Evolution (lte)), global system for mobile communications (gsm) etc..As non-limiting example, under The description in face is related to cdma communication system, but such teaching is equally applicable to other types of system.
With reference to Fig. 2, cdma wireless communication system can include multiple mobile terminal 1s 00, multiple base station (bs) 270, base station Controller (bsc) 275 and mobile switching centre (msc) 280.Msc280 is configured to and Public Switched Telephony Network (pstn) 290 formation interfaces.Msc280 is also structured to and can form interface via the bsc275 that back haul link is couple to base station 270. If back haul link can construct according to any one in the interface that Ganji knows, described interface includes such as e1/t1, atm, ip, Ppp, frame relay, hdsl, adsl or xdsl.It will be appreciated that system as shown in Figure 2 can include multiple bsc275.
Each bs270 can service one or more subregions (or region), by the sky of multidirectional antenna or sensing specific direction Each subregion that line covers is radially away from bs270.Or, each subregion can by for diversity reception two or more Antenna covers.Each bs270 may be constructed such that support multiple frequency distribution, and the distribution of each frequency has specific frequency spectrum (for example, 1.25mhz, 5mhz etc.).
Intersecting that subregion and frequency are distributed can be referred to as cdma channel.Bs270 can also be referred to as base station transceiver System (bts) or other equivalent terms.In this case, term " base station " can be used for broadly representing single Bsc275 and at least one bs270.Base station can also be referred to as " cellular station ".Or, each subregion of specific bs270 can be claimed For multiple cellular stations.
As shown in Figure 2, broadcast singal is sent to the mobile terminal of operation in system by broadcsting transmitter (bt) 295 100.Broadcasting reception module 111 is arranged at mobile terminal 1 00 to receive the broadcast being sent by bt295 as shown in Figure 1 Signal.In fig. 2 it is shown that several global positioning system (gps) satellites 300.Satellite 300 helps position multiple mobile terminals At least one of 100.
In fig. 2, depict multiple satellites 300, it is understood that be, it is possible to use any number of satellite obtains useful Location information.Gps module 115 is generally configured to coordinate with satellite 300 to obtain the positioning letter wanted as shown in Figure 1 Breath.Substitute gps tracking technique or outside gps tracking technique, it is possible to use other of the position of mobile terminal can be followed the tracks of Technology.In addition, at least one gps satellite 300 can optionally or additionally process satellite dmb transmission.
As a typical operation of wireless communication system, bs270 receives the reverse link from various mobile terminal 1s 00 Signal.Mobile terminal 1 00 generally participates in call, information receiving and transmitting and other types of communication.Each of certain base station 270 reception is anti- Processed in specific bs270 to link signal.The data obtaining is forwarded to the bsc275 of correlation.Bsc provides call Resource allocation and the mobile management function of including the coordination of soft switching process between bs270.Bsc275 is also by the number receiving According to being routed to msc280, it provides the extra route service for forming interface with pstn290.Similarly, pstn290 with Msc280 forms interface, and msc and bsc275 form interface, and bsc275 correspondingly controls bs270 with by forward link signals It is sent to mobile terminal 1 00.
Based on above-mentioned mobile terminal hardware configuration and communication system, each embodiment of the application method is proposed.
Fig. 3 is the Organization Chart of the application access control system, as shown in Figure 3, comprising: gate inhibition's server, a Duo Geyi Dynamic terminal and multiple access card.Wherein,
Gate inhibition's server, pre-sets for multiple mobile terminals are entered with registration sending to registered mobile terminal Public key;When the enabling receiving access card is asked, read the access information of access card;Access letter according to the access card reading Breath determines whether to respond the enabling request of access card.
Wherein, it is used in gate inhibition's server multiple mobile terminals are carried out registering to include:
Obtain mobile device international identity code (imei, the international mobile of multiple mobile terminals Equipment identity) and store.
Wherein, the public key pre-setting is a certain literary composition that gate inhibition's server is stored to itself using the second predetermined encryption algorithm Part is encrypted thus obtaining.
Wherein, access information includes: identity, public key, access age information and access card that mobile terminal generates Identity.
Wherein, it is used in gate inhibition's server determining whether to respond opening of access card according to the access information of the access card reading Door request includes:
Judge whether the identity of access card is included in the effect identity of multiple access cards of itself storage;Judge Whether the public key reading is the public key itself pre-setting;Judge whether the identity that mobile terminal generates is registered shifting The identity of dynamic terminal;Judge to access age information whether before the deadline;
When the identity judging access card is included in the effect identity of multiple access cards of itself storage, and When the public key judging to read is the public key itself pre-setting, and when the identity judging mobile terminal generation is The identity of the mobile terminal of registration, and when judging access age information before the deadline, respond opening of access card Door request;
When the identity judging access card is not included in the effect identity of multiple access cards of itself storage, or Person is not the public key itself pre-setting when the public key judged, or when the identity judging mobile terminal generation is not The identity of registered mobile terminal, or when judge access age information not before the deadline when, refusal respond door Prohibit the enabling request of card.
Mobile terminal, for generating identity;Receive the public key that gate inhibition's server sends;Setting accesses age information; Public key and the visit of setting that the near-field communication nfc write-in functions being possessed according to itself by the identity of generation, receive Ask in age information write access card.
Wherein, access age information to include: access times threshold value and/or addressable time period.Wherein, access times threshold value Can be the default value of the system setting of mobile terminal it is also possible to provide a human-computer interaction interface by user according to the demand of itself It is configured, access times threshold value such as can be set for 2 it is also possible to be set to 5, may be arranged as 10.
Wherein, it is used in mobile terminal generating identity and include:
Obtain the imei of itself;
According to the first predetermined encryption algorithm, imei is encrypted to generate identity.
Access card, for sending, to gate inhibition's server, request of opening the door.
Wherein, it is used in gate inhibition's server judging whether the identity that mobile terminal generates is registered mobile terminal Identity include:
Identity mobile terminal being generated according to the corresponding with the first predetermined encryption algorithm first default decipherment algorithm It is decrypted to obtain the imei of mobile terminal;
Judge whether the imei of the mobile terminal obtaining is included in the imei of multiple mobile terminals itself prestoring;
When the imei judging the mobile terminal obtaining is included in the imei of multiple mobile terminals of itself storage, sentence Break mobile terminal generation identity be registered mobile terminal identity;
When the imei judging the mobile terminal obtaining is not included in the imei of multiple mobile terminals of itself storage, Judge that the identity that mobile terminal generates is not the identity of registered mobile terminal.
Wherein, it is used in gate inhibition's server judging to access whether age information includes before the deadline:
Obtain the access times of access card, and/or obtain current time;
Judge whether the access times of the access card obtaining reach access times threshold value, and/or judge to obtain current when Carve whether within the addressable time period;
When judge obtain access card access times be not up to access times threshold value, and when judge obtain work as When being engraved in when front in the addressable time period, judge to access age information before the deadline;
When the access times judging the access card obtaining reach access times threshold value, or the current of acquisition ought be judged When moment is not within the addressable time period, judge to access age information not before the deadline.
Wherein, it is used in gate inhibition's server judging whether the public key reading is that the public key itself pre-setting includes:
According to the corresponding with the second predetermined encryption algorithm second default decipherment algorithm, the public key reading is decrypted to obtain Take a certain file after deciphering;
Whether a certain file before judging a certain file after the deciphering obtaining and being encrypted using the second predetermined encryption algorithm Identical;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When identical, breaking, the public key of reading be the public key itself pre-setting;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When different, breaking, the public key of reading be not the public key itself pre-setting.
Fig. 4 is the flow chart of the application access control method, as shown in Figure 4, comprising:
Step 401: gate inhibition's server is registered to multiple mobile terminals and sent in advance to registered mobile terminal The public key of setting.
Wherein, gate inhibition's server carries out to multiple mobile terminals registering and includes:
Obtain mobile device international identity code (imei, the international mobile of multiple mobile terminals Equipment identity) and store.
Wherein, the public key pre-setting is a certain literary composition that gate inhibition's server is stored to itself using the second predetermined encryption algorithm Part is encrypted thus obtaining.
Step 402: mobile terminal receives the public key that gate inhibition's server sends;Generate identity;Setting accesses timeliness letter Breath.
Wherein, mobile terminal generates identity and includes:
The imei of acquisition for mobile terminal itself;
Mobile terminal is encrypted to generate identity to imei according to the first predetermined encryption algorithm.
For example, it is possible to be encrypted to imei in accordance with the following methods: according to current time away from 1970 (or other year Part) January No. 1 zero in year when number of seconds divided by the random number within 100, be multiplied by the imei of mobile terminal simultaneously.Mobile terminal is each The identity generating all differs, and so may insure that the identity of generation is only once effective, prevents miscellaneous equipment from usurping.
Wherein, access age information to include: access times threshold value and/or addressable time period.Wherein, access times threshold value Can be the default value of the system setting of mobile terminal it is also possible to provide a human-computer interaction interface by user according to the demand of itself It is configured, access times threshold value such as can be set for 2 it is also possible to be set to 5, may be arranged as 10.
Step 403: the near-field communication nfc write-in functions that mobile terminal possesses according to itself by generate identity, In the public key receiving and the access age information write access card of setting.
It should be noted that how data is carried out write using nfc write-in functions, to belong to those skilled in the art institute ripe The conventional techniques known, here is omitted, is not intended to limit the application.
Step 404: gate inhibition's server, when the enabling receiving access card is asked, reads the access information of access card;Root Determine whether to respond the enabling request of access card according to the access information of the access card reading.
Wherein, access information includes: identity, public key, access age information and access card that mobile terminal generates Identity.
Wherein, gate inhibition's server determines whether to respond the enabling request of access card according to the access information of the access card reading Including:
Gate inhibition's server judges whether the identity of access card is included in the effect identity of multiple access cards of itself storage In mark;Gate inhibition's server judges whether the public key reading is the public key itself pre-setting;Gate inhibition's server judges mobile whole Whether the identity that end generates is the identity of registered mobile terminal;Gate inhibition's server judges that accessing age information is No before the deadline;
When the identity that gate inhibition's server judges access card is included in the effect identity of multiple access cards of itself storage In mark, and when gate inhibition's server judges that the public key reading is the public key itself pre-setting, and work as gate inhibition's server Judge that the identity that mobile terminal generates is the identity of registered mobile terminal, and when gate inhibition's server judges Go out to access age information before the deadline when, gate inhibition's server respond access card enabling request;
When the identity that gate inhibition's server judges access card is not included in the effect body of multiple access cards of itself storage In part mark, or when the public key that gate inhibition's server is judged is not the public key itself pre-setting, or work as gate inhibition's server Judge that the identity that mobile terminal generates is not the identity of registered mobile terminal, or when gate inhibition's server is sentenced Break access age information not before the deadline when, gate inhibition's server refusal respond access card enabling request.
Wherein, gate inhibition's server judges that whether the identity that mobile terminal generates is the identity of registered mobile terminal Mark includes:
Gate inhibition's server generates to mobile terminal according to the corresponding with the first predetermined encryption algorithm first default decipherment algorithm Identity be decrypted to obtain the imei of mobile terminal;
Gate inhibition's server judges whether the imei of the mobile terminal obtaining is included in the multiple movements itself prestoring eventually In the imei at end;
When the imei that gate inhibition's server judges the mobile terminal obtaining is included in multiple mobile terminals of itself storage When in imei, gate inhibition's server judges that the identity that mobile terminal generates is the identity of registered mobile terminal;
When the imei that gate inhibition's server judges the mobile terminal obtaining is not included in multiple mobile terminals of itself storage Imei in when, gate inhibition's server judge mobile terminal generate identity be not registered mobile terminal identity mark Know.
Wherein, gate inhibition's server judges to access whether age information includes before the deadline:
Gate inhibition's server obtains the access times of access card, and/or obtains current time;
Gate inhibition's server judges whether the access times of the access card obtaining reach access times threshold value, and/or gate inhibition's clothes Whether business device judges the current time obtaining within the addressable time period;
When the access times that gate inhibition's server judges the access card obtaining are not up to access times threshold value, and work as gate inhibition When server judges that the current time obtaining is within the addressable time period, gate inhibition's server judges that accessing age information is having In the effect phase;
When the access times that gate inhibition's server judges the access card obtaining reach access times threshold value, or when gate inhibition's clothes When business device judges that the current time obtaining is not within the addressable time period, judge to access age information not before the deadline.
Wherein, gate inhibition's server judges whether the public key reading is that the public key itself pre-setting includes:
According to the corresponding with the second predetermined encryption algorithm second default decipherment algorithm, the public key reading is decrypted to obtain Take a certain file after deciphering;
Whether a certain file before judging a certain file after the deciphering obtaining and being encrypted using the second predetermined encryption algorithm Identical;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When identical, breaking, the public key of reading be the public key itself pre-setting;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When different, breaking, the public key of reading be not the public key itself pre-setting.
In the application embodiment, the near-field communication nfc write-in functions being possessed according to itself by mobile terminal will be given birth to In the access age information write access card of the identity, the public key receiving and setting that become, and according to the door reading The access information prohibiting card determines whether to respond the enabling request of access card, thus improve the efficiency of Authorized operation and improve Access efficiency, enhances Consumer's Experience.
Fig. 5 is the flow chart of the embodiment of the application access control method, as shown in figure 5, the present embodiment is to access timeliness Information is to be illustrated as a example access times threshold value, comprising:
Step 500: gate inhibition's server adopt the second predetermined encryption algorithm a certain file that itself stores is encrypted with The public key pre-setting obtaining.
Step 501: gate inhibition's server enters registration to multiple mobile terminals.
Wherein, step 501 specifically includes:
Gate inhibition's server obtains mobile device international identity code (imei, the international of multiple mobile terminals Mobile equipment identity) and store.
Step 502: gate inhibition's server sends, to registered mobile terminal, the public key pre-setting.
Step 503: mobile terminal receives the public key that gate inhibition's server sends, generates identity, and setting access time Number threshold value.
Wherein, mobile terminal generates identity and includes:
The imei of acquisition for mobile terminal itself;
Mobile terminal is encrypted to generate identity to imei according to the first predetermined encryption algorithm.
For example, it is possible to be encrypted to imei in accordance with the following methods: according to current time away from 1970 (or other year Part) January No. 1 zero in year when number of seconds divided by the random number within 100, be multiplied by the imei of mobile terminal simultaneously.Mobile terminal is each The identity generating all differs, and so may insure that the identity of generation is only once effective, prevents miscellaneous equipment from usurping.
Wherein, access times threshold value can be the default value of the system setting of mobile terminal it is also possible to provide a man-machine friendship Mutually interface is configured according to the demand of itself by user, such as can arrange access times threshold value for 2 it is also possible to be set to 5, also Could be arranged to 10.
Step 504: the near-field communication nfc write-in functions that mobile terminal possesses according to itself by generate identity, In the public key receiving and the access times threshold value write access card of setting.
It should be noted that how data is carried out write using nfc write-in functions, to belong to those skilled in the art institute ripe The conventional techniques known, here is omitted, is not intended to limit the application.
Step 505: access card sends, to gate inhibition's server, request of opening the door.
Step 506: gate inhibition's server, when the enabling receiving access card is asked, reads the access information of access card.
Wherein, access information includes: identity, public key, access times threshold value and access card that mobile terminal generates Identity.
Step 507: gate inhibition's server determines whether to respond the enabling of access card according to the access information of the access card reading Request.
Wherein, gate inhibition's server determines whether to respond the enabling request of access card according to the access information of the access card reading Including:
Gate inhibition's server judges whether the identity of access card is included in the effect identity of multiple access cards of itself storage In mark;Gate inhibition's server judges whether the public key reading is the public key itself pre-setting;Gate inhibition's server judges mobile whole Whether the identity that end generates is the identity of registered mobile terminal;Gate inhibition's server judges that access times threshold value is No before the deadline;
When the identity that gate inhibition's server judges access card is included in the effect identity of multiple access cards of itself storage In mark, and when gate inhibition's server judges that the public key reading is the public key itself pre-setting, and work as gate inhibition's server Judge that the identity that mobile terminal generates is the identity of registered mobile terminal, and when gate inhibition's server judges Go out to access frequency threshold value before the deadline when, gate inhibition's server respond access card enabling request;
When the identity that gate inhibition's server judges access card is not included in the effect body of multiple access cards of itself storage In part mark, or when the public key that gate inhibition's server is judged is not the public key itself pre-setting, or work as gate inhibition's server Judge that the identity that mobile terminal generates is not the identity of registered mobile terminal, or when gate inhibition's server is sentenced Break access frequency threshold value not before the deadline when, gate inhibition's server refusal respond access card enabling request.
Wherein, gate inhibition's server judges that whether the identity that mobile terminal generates is the identity of registered mobile terminal Mark includes:
Gate inhibition's server generates to mobile terminal according to the corresponding with the first predetermined encryption algorithm first default decipherment algorithm Identity be decrypted to obtain the imei of mobile terminal;
Gate inhibition's server judges whether the imei of the mobile terminal obtaining is included in the multiple movements itself prestoring eventually In the imei at end;
When the imei that gate inhibition's server judges the mobile terminal obtaining is included in multiple mobile terminals of itself storage When in imei, gate inhibition's server judges that the identity that mobile terminal generates is the identity of registered mobile terminal;
When the imei that gate inhibition's server judges the mobile terminal obtaining is not included in multiple mobile terminals of itself storage Imei in when, gate inhibition's server judge mobile terminal generate identity be not registered mobile terminal identity mark Know.
Wherein, gate inhibition's server judges whether access times threshold value includes before the deadline:
Gate inhibition's server obtains the access of access card;
Gate inhibition's server judges whether the access times of the access card obtaining reach access times threshold value, and/or gate inhibition's clothes Whether business device judges the current time obtaining in the addressable time period;
When the access times that gate inhibition's server judges the access card obtaining are not up to access times threshold value, gate inhibition services Device judges access times threshold value before the deadline;
When the access times that gate inhibition's server judges the access card obtaining reach access times threshold value, judge to access Frequency threshold value is not before the deadline.
Wherein, gate inhibition's server judges whether the public key reading is that the public key itself pre-setting includes:
According to the corresponding with the second predetermined encryption algorithm second default decipherment algorithm, the public key reading is decrypted to obtain Take a certain file after deciphering;
Whether a certain file before judging a certain file after the deciphering obtaining and being encrypted using the second predetermined encryption algorithm Identical;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When identical, breaking, the public key of reading be the public key itself pre-setting;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When different, breaking, the public key of reading be not the public key itself pre-setting.
Fig. 6 be the application mobile terminal structural representation, as shown in Figure 6, comprising: receiver module 60, generation module 61, Setup module 62 and writing module 63.Wherein,
Receiver module 60, for receiving the public key of gate inhibition's server transmission.
Generation module 61, for generating identity.
Wherein, generation module 61, specifically for:
Obtain mobile device international identity code (imei, the international mobile of the mobile terminal belonging to itself equipment identity);
According to the first predetermined encryption algorithm, imei is encrypted to generate identity.
Setup module 62, accesses age information for setting.
Wherein, access age information to include: access times threshold value and/or addressable time period.Wherein, access times threshold value Can be the default value of the system setting of mobile terminal it is also possible to provide a human-computer interaction interface by user according to the demand of itself It is configured, access times threshold value such as can be set for 2 it is also possible to be set to 5, may be arranged as 10.
Writing module 63, will give birth to for the near-field communication nfc write-in functions that the mobile terminal according to belonging to itself possesses In the access age information write access card of the identity, the public key receiving and setting that become.
Fig. 7 is the structural representation of the application gate inhibition's server, as shown in fig. 7, comprises: Registering modules 70, sending module 71st, read module 72 and processing module 73.Wherein,
Registering modules 70, for entering registration to multiple mobile terminals.
Wherein, Registering modules 70, specifically for:
Obtain mobile device international identity code (imei, the international mobile of multiple mobile terminals Equipment identity) and store.
Sending module 71, for sending, to registered mobile terminal, the public key pre-setting.
Wherein, the public key pre-setting is a certain literary composition that gate inhibition's server is stored to itself using the second predetermined encryption algorithm Part is encrypted thus obtaining.
Read module 72, during for asking when the enabling receiving access card, reads the access information of access card.
Wherein, access information includes: identity, public key, access age information and access card that mobile terminal generates Identity.
According to the access information of the access card reading, processing module 73, for determining whether that the enabling responding access card please Ask.
Wherein, processing module 73, specifically for:
Judge whether the identity of access card is included in the effect identity of multiple access cards of itself storage;Judge Whether the public key reading is the public key itself pre-setting;Judge whether the identity that mobile terminal generates is registered shifting The identity of dynamic terminal;Judge to access age information whether before the deadline;
When the identity judging access card is included in the effect identity of multiple access cards of itself storage, and When the public key judging to read is the public key itself pre-setting, and when the identity judging mobile terminal generation is The identity of the mobile terminal of registration, and when judging access age information before the deadline, respond opening of access card Door request;
When the identity judging access card is not included in the effect identity of multiple access cards of itself storage, or Person is not the public key itself pre-setting when the public key judged, or when the identity judging mobile terminal generation is not The identity of registered mobile terminal, or when judge access age information not before the deadline when, refusal respond door Prohibit the enabling request of card.
Wherein, it is used in processing module 73 judging whether the identity that mobile terminal generates is registered mobile terminal Identity include:
Identity mobile terminal being generated according to the corresponding with the first predetermined encryption algorithm first default decipherment algorithm It is decrypted to obtain the imei of mobile terminal;
Judge whether the imei of the mobile terminal obtaining is included in the imei of multiple mobile terminals itself prestoring;
When the imei judging the mobile terminal obtaining is included in the imei of multiple mobile terminals of itself storage, sentence Break mobile terminal generation identity be registered mobile terminal identity;
When the imei judging the mobile terminal obtaining is not included in the imei of multiple mobile terminals of itself storage, Judge that the identity that mobile terminal generates is not the identity of registered mobile terminal.
Wherein, access age information to include: access times threshold value and/or addressable time period.Now,
It is used in processing module 73 judging to access whether age information includes before the deadline:
Obtain the access times of access card, and/or obtain current time;
Judge whether the access times of the access card obtaining reach access times threshold value, and/or judge to obtain current when Carve whether within the addressable time period;
When judge obtain access card access times be not up to access times threshold value, and when judge obtain work as When being engraved in when front in the addressable time period, judge to access age information before the deadline;
When the access times judging the access card obtaining reach access times threshold value, or the current of acquisition ought be judged When moment is not within the addressable time period, judge to access age information not before the deadline.
Wherein, gate inhibition's server judges whether the public key reading is that the public key itself pre-setting includes:
According to the corresponding with the second predetermined encryption algorithm second default decipherment algorithm, the public key reading is decrypted to obtain Take a certain file after deciphering;
Whether a certain file before judging a certain file after the deciphering obtaining and being encrypted using the second predetermined encryption algorithm Identical;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When identical, breaking, the public key of reading be the public key itself pre-setting;
When judge obtain deciphering after a certain file and using second predetermined encryption algorithm encryption before a certain file When different, breaking, the public key of reading be not the public key itself pre-setting.
It should be noted that herein, term " inclusion ", "comprising" or its any other variant are intended to non-row The comprising of his property, so that including a series of process of key elements, method, article or device not only include those key elements, and And also include other key elements of being not expressly set out, or also include intrinsic for this process, method, article or device institute Key element.In the absence of more restrictions, the key element being limited by sentence "including a ..." is it is not excluded that including being somebody's turn to do Also there is other identical element in the process of key element, method, article or device.
The embodiments of the present invention are for illustration only, do not represent the quality of embodiment.
One of ordinary skill in the art will appreciate that all or part of step in said method can be instructed by program Related hardware (such as processor) completes, and described program can be stored in computer-readable recording medium, such as read-only storage, Disk or CD etc..Alternatively, all or part of step of above-described embodiment can also be come using one or more integrated circuits Realize.Correspondingly, each module/unit in above-described embodiment can for example pass through integrated circuit to realize in the form of hardware To realize its corresponding function, it would however also be possible to employ the form of software function module is realized, for example, be stored in by computing device Program/instruction in reservoir is realizing its corresponding function.The present invention is not restricted to the knot of the hardware and software of any particular form Close.
These are only the preferred embodiment of the application, not thereby limit the application the scope of the claims, every using this Shen Please the equivalent structure made of specification and accompanying drawing content or equivalent flow conversion, or be directly or indirectly used in other related skills Art field, is all included in the same manner in the scope of patent protection of the application.

Claims (10)

1. a kind of access control system is it is characterised in that include: gate inhibition's server, multiple mobile terminal and multiple gate inhibition Card;Wherein,
Gate inhibition's server, sends, for entering to register to multiple mobile terminals and to registered mobile terminal, the public affairs pre-setting Key;When the enabling receiving access card is asked, read the access information of access card;Access information according to the access card reading Determine whether to respond the enabling request of access card;
Mobile terminal, for generating identity;Receive the public key that gate inhibition's server sends;Setting accesses age information;According to During the access of public key that the near-field communication nfc write-in functions itself possessing by the identity of generation, receive and setting In effect information write access card;
Access card, for sending, to gate inhibition's server, request of opening the door.
2. access control system according to claim 1 is it is characterised in that described access information includes: described mobile whole The identity of end generation, the identity of described public key, described access age information and described access card.
3. access control system according to claim 2 is it is characterised in that be used for according to reading in described gate inhibition's server Access card access information determine whether respond access card enabling request include:
Judge whether the identity of described access card is included in the effect identity of multiple access cards of itself storage;Judge Whether the public key reading is the public key itself pre-setting;Judge whether the identity that described mobile terminal generates is registered Mobile terminal identity;Judge described access age information whether before the deadline;
When the identity judging described access card is included in the effect identity of multiple access cards of itself storage, and When the public key judging to read is the public key itself pre-setting, and when the identity judging that described mobile terminal generates It is the identity of registered mobile terminal, and when judging described access age information before the deadline, respond institute State the enabling request of access card;
When the identity judging described access card is not included in the effect identity of multiple access cards of itself storage, or Person is not the public key itself pre-setting when the public key judged, or when the identity judging that described mobile terminal generates The identity of registered mobile terminal, or when judge described access age information not before the deadline when, refuse Lost art answers the enabling request of described access card.
4. access control system according to claim 3 is it is characterised in that be used for multiple shiftings in described gate inhibition's server Dynamic terminal carries out registration and includes:
Obtain mobile device international identity code imei of multiple mobile terminals and store.
5. access control system according to claim 4 is it is characterised in that be used in described mobile terminal generating identity mark Know and include:
Obtain the imei of itself;
According to the first predetermined encryption algorithm, described imei is encrypted to generate identity.
6. access control system according to claim 5 it is characterised in that be used in described gate inhibition's server judge described Whether the identity that mobile terminal generates is that the identity of registered mobile terminal includes:
The identity described mobile terminal being generated according to the corresponding with described first predetermined encryption algorithm first default decipherment algorithm Mark is decrypted to obtain the imei of described mobile terminal;
Judge whether the imei of the described mobile terminal obtaining is included in the imei of multiple mobile terminals itself prestoring;
When the imei judging the described mobile terminal obtaining is included in the imei of multiple mobile terminals of itself storage, sentence Break and the identity that the identity that described mobile terminal generates is registered mobile terminal;
When the imei judging the described mobile terminal obtaining is not included in the imei of multiple mobile terminals of itself storage, Judge that the identity that described mobile terminal generates is not the identity of registered mobile terminal.
7. access control system according to claim 3 is it is characterised in that described access age information includes: accesses secondary Number threshold value and/or addressable time period;Correspondingly,
It is used in described gate inhibition's server judging whether described access age information includes before the deadline:
Obtain the access times of described access card, and/or obtain current time;
Judge whether the access times of the described access card obtaining reach described access times threshold value, and/or judge that obtain works as Whether the front moment is within the described addressable time period;
When the access times judging the described access card obtaining are not up to described access times threshold value, and ought judge to obtain Current time within the described addressable time period when, judge described access age information before the deadline;
When the access times judging the described access card obtaining reach described access times threshold value, or acquisition ought be judged When current time is not within the described addressable time period, judge described access age information not before the deadline.
8. a kind of access control method is it is characterised in that include:
Gate inhibition's server is registered to multiple mobile terminals and is sent, to registered mobile terminal, the public key pre-setting;
Mobile terminal receives the public key that gate inhibition's server sends;Generate identity;Setting accesses age information;
The near-field communication nfc write-in functions that mobile terminal possesses according to itself are by the identity of generation, the public key that receives And in the access age information write access card of setting;
Gate inhibition's server, when the enabling receiving access card is asked, reads the access information of access card;According to the gate inhibition reading The access information of card determines whether to respond the enabling request of access card.
9. a kind of mobile terminal is it is characterised in that include: receiver module, generation module, setup module and writing module;Wherein,
Receiver module, for receiving the public key of gate inhibition's server transmission;
Generation module, for generating identity;
Setup module, accesses age information for setting;
Writing module, the body that will generate for the near-field communication nfc write-in functions that the mobile terminal according to belonging to itself possesses In the access age information write access card of part mark, the public key receiving and setting.
10. a kind of gate inhibition's server is it is characterised in that include: Registering modules, sending module, read module and processing module;Its In,
Registering modules, for entering registration to multiple mobile terminals;
Sending module, for sending, to registered mobile terminal, the public key pre-setting;
Read module, during for asking when the enabling receiving access card, reads the access information of access card;
Processing module, for determining whether to respond the enabling request of access card according to the access information of the access card reading.
CN201610804140.3A 2016-09-05 2016-09-05 Access control system, access control method, mobile terminals and access server Pending CN106341817A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610804140.3A CN106341817A (en) 2016-09-05 2016-09-05 Access control system, access control method, mobile terminals and access server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610804140.3A CN106341817A (en) 2016-09-05 2016-09-05 Access control system, access control method, mobile terminals and access server

Publications (1)

Publication Number Publication Date
CN106341817A true CN106341817A (en) 2017-01-18

Family

ID=57823900

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610804140.3A Pending CN106341817A (en) 2016-09-05 2016-09-05 Access control system, access control method, mobile terminals and access server

Country Status (1)

Country Link
CN (1) CN106341817A (en)

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107657689A (en) * 2017-09-08 2018-02-02 深圳传音通讯有限公司 A kind of gate inhibition's method for unlocking, mobile terminal and computer-readable medium
CN107993322A (en) * 2017-12-14 2018-05-04 四川金网通电子科技有限公司 A kind of electronic lock system unlocked using radio-frequency card mobile phone sticker
CN108694760A (en) * 2017-04-11 2018-10-23 腾讯科技(深圳)有限公司 A kind of gate inhibition's card issuing method, management method and guest system and self-aided terminal
CN109509281A (en) * 2018-12-10 2019-03-22 华南理工大学 A kind of intelligent door opening method and its system based on STM32 and Android
CN109785531A (en) * 2019-01-02 2019-05-21 广东乐心医疗电子股份有限公司 Storage method and related equipment
CN109859356A (en) * 2019-01-24 2019-06-07 广州市天河区保安服务公司 A kind of access control management method and system
CN111179476A (en) * 2020-01-12 2020-05-19 杭州复杂美科技有限公司 Configuration method and control method of intelligent lock, equipment and storage medium
CN111402473A (en) * 2020-03-24 2020-07-10 河北昂克电子工程技术有限公司 Cash adding room access control method, control device and storage medium
CN111885561A (en) * 2020-06-30 2020-11-03 北京小米移动软件有限公司 Wireless network connection, NFC information writing method, device and storage medium
CN113169868A (en) * 2018-12-05 2021-07-23 候本株式会社 Access security system using security card and mobile terminal and security method thereof
CN114360100A (en) * 2020-09-27 2022-04-15 比亚迪半导体股份有限公司 Control method, device, system and medium for intelligent door lock
CN114973471A (en) * 2021-05-12 2022-08-30 中移互联网有限公司 Access control authentication method and device, electronic equipment and storage medium
CN116311643A (en) * 2022-10-17 2023-06-23 浙江天怀数智科技有限公司 NFC mobile device-based intelligent entrance guard authentication method

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100287610A1 (en) * 2007-11-27 2010-11-11 Gemalto Sa Method for protecting the access to an electronic object connected to a computer
CN102542645A (en) * 2012-01-13 2012-07-04 中科华核电技术研究院有限公司 Entrance guard authentication method and system
CN104732626A (en) * 2015-01-22 2015-06-24 西安酷派软件科技有限公司 Entrance guard authorization management method and entrance guard authorization management system
CN105488887A (en) * 2015-12-28 2016-04-13 慧锐通智能科技股份有限公司 Entrance guard access control method
CN105678872A (en) * 2015-12-30 2016-06-15 福建星网锐捷通讯股份有限公司 Entrance guard manage system, authorization method thereof and entrance guard terminal device
CN105913532A (en) * 2016-06-24 2016-08-31 广东欧珀移动通信有限公司 Access control method, device and system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20100287610A1 (en) * 2007-11-27 2010-11-11 Gemalto Sa Method for protecting the access to an electronic object connected to a computer
CN102542645A (en) * 2012-01-13 2012-07-04 中科华核电技术研究院有限公司 Entrance guard authentication method and system
CN104732626A (en) * 2015-01-22 2015-06-24 西安酷派软件科技有限公司 Entrance guard authorization management method and entrance guard authorization management system
CN105488887A (en) * 2015-12-28 2016-04-13 慧锐通智能科技股份有限公司 Entrance guard access control method
CN105678872A (en) * 2015-12-30 2016-06-15 福建星网锐捷通讯股份有限公司 Entrance guard manage system, authorization method thereof and entrance guard terminal device
CN105913532A (en) * 2016-06-24 2016-08-31 广东欧珀移动通信有限公司 Access control method, device and system

Cited By (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108694760A (en) * 2017-04-11 2018-10-23 腾讯科技(深圳)有限公司 A kind of gate inhibition's card issuing method, management method and guest system and self-aided terminal
CN108694760B (en) * 2017-04-11 2020-12-01 腾讯科技(深圳)有限公司 Access control card issuing method, access control card management method, visitor system and self-service terminal
CN107657689A (en) * 2017-09-08 2018-02-02 深圳传音通讯有限公司 A kind of gate inhibition's method for unlocking, mobile terminal and computer-readable medium
CN107993322A (en) * 2017-12-14 2018-05-04 四川金网通电子科技有限公司 A kind of electronic lock system unlocked using radio-frequency card mobile phone sticker
CN113169868A (en) * 2018-12-05 2021-07-23 候本株式会社 Access security system using security card and mobile terminal and security method thereof
CN109509281A (en) * 2018-12-10 2019-03-22 华南理工大学 A kind of intelligent door opening method and its system based on STM32 and Android
CN109785531A (en) * 2019-01-02 2019-05-21 广东乐心医疗电子股份有限公司 Storage method and related equipment
CN109859356A (en) * 2019-01-24 2019-06-07 广州市天河区保安服务公司 A kind of access control management method and system
CN111179476B (en) * 2020-01-12 2021-08-31 杭州复杂美科技有限公司 Configuration method and control method of intelligent lock, equipment and storage medium
CN111179476A (en) * 2020-01-12 2020-05-19 杭州复杂美科技有限公司 Configuration method and control method of intelligent lock, equipment and storage medium
CN111402473A (en) * 2020-03-24 2020-07-10 河北昂克电子工程技术有限公司 Cash adding room access control method, control device and storage medium
CN111885561A (en) * 2020-06-30 2020-11-03 北京小米移动软件有限公司 Wireless network connection, NFC information writing method, device and storage medium
CN111885561B (en) * 2020-06-30 2024-02-13 北京小米移动软件有限公司 Wireless network connection, NFC information writing method, device and storage medium
CN114360100A (en) * 2020-09-27 2022-04-15 比亚迪半导体股份有限公司 Control method, device, system and medium for intelligent door lock
CN114973471A (en) * 2021-05-12 2022-08-30 中移互联网有限公司 Access control authentication method and device, electronic equipment and storage medium
CN116311643A (en) * 2022-10-17 2023-06-23 浙江天怀数智科技有限公司 NFC mobile device-based intelligent entrance guard authentication method
CN116311643B (en) * 2022-10-17 2024-01-05 浙江天怀数智科技有限公司 NFC mobile device-based intelligent entrance guard authentication method

Similar Documents

Publication Publication Date Title
CN106341817A (en) Access control system, access control method, mobile terminals and access server
CN105100476B (en) A kind of mobile terminal unlocking device and method
CN104735255B (en) Multi-screen display method and system
CN104883430B (en) A kind of mobile terminal and do not read the treating method and apparatus of footmark
CN106155694A (en) A kind of application and the display packing and device applied of attending to anything else
CN106657606A (en) Photograph processing method, device and terminal
CN106028090A (en) Mobile terminal and video recording method thereof
CN107360214A (en) A kind of message push processing method, message sink processing method and processing device
CN106383707A (en) Picture display method and system
CN106254617A (en) A kind of mobile terminal and control method
CN105242483B (en) The method and apparatus that a kind of method and apparatus for realizing focusing, realization are taken pictures
CN106485163A (en) Control method and control device that mobile terminal data storehouse accesses
CN107133508A (en) Application management method and mobile terminal
CN105095705B (en) A kind of information processing method and device
CN106484534A (en) Control method for the mobile terminal of displaying and control device
CN106778212A (en) A kind of mobile terminal and control method
CN106488035A (en) A kind of mobile terminal and control method
CN106161790A (en) A kind of mobile terminal and control method thereof
CN106227454B (en) A kind of touch trajectory detection system and method
CN106650347A (en) Synchronous unblocking method, device and terminals
CN107071161A (en) The aggregation display method and mobile terminal of icon in a kind of status bar
CN106792644A (en) Mobile terminal, server and information processing method
CN106454771A (en) Information sending method and device and terminal
CN106790126A (en) A kind of method of the account mandate of application program, device and terminal
CN106487976A (en) Mobile terminal dialing mechanism and method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170118