CN106909820B - Mobile terminal and fingerprint data processing method and device thereof - Google Patents
Mobile terminal and fingerprint data processing method and device thereof Download PDFInfo
- Publication number
- CN106909820B CN106909820B CN201710045873.8A CN201710045873A CN106909820B CN 106909820 B CN106909820 B CN 106909820B CN 201710045873 A CN201710045873 A CN 201710045873A CN 106909820 B CN106909820 B CN 106909820B
- Authority
- CN
- China
- Prior art keywords
- fingerprint
- information
- fingerprint template
- user
- template
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/32—User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06V—IMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
- G06V40/00—Recognition of biometric, human-related or animal-related patterns in image or video data
- G06V40/10—Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
- G06V40/12—Fingerprints or palmprints
- G06V40/13—Sensors therefor
- G06V40/1306—Sensors therefor non-optical, e.g. ultrasonic or capacitive sensing
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06V—IMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
- G06V40/00—Recognition of biometric, human-related or animal-related patterns in image or video data
- G06V40/10—Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
- G06V40/12—Fingerprints or palmprints
- G06V40/1335—Combining adjacent partial images (e.g. slices) to create a composite input or reference pattern; Tracking a sweeping finger movement
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06V—IMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
- G06V40/00—Recognition of biometric, human-related or animal-related patterns in image or video data
- G06V40/10—Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
- G06V40/12—Fingerprints or palmprints
- G06V40/1347—Preprocessing; Feature extraction
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M1/00—Substation equipment, e.g. for use by subscribers
- H04M1/66—Substation equipment, e.g. for use by subscribers with means for preventing unauthorised or fraudulent calling
- H04M1/667—Preventing unauthorised calls from a telephone set
- H04M1/67—Preventing unauthorised calls from a telephone set by electronic means
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M1/00—Substation equipment, e.g. for use by subscribers
- H04M1/72—Mobile telephones; Cordless telephones, i.e. devices for establishing wireless links to base stations without route selection
- H04M1/724—User interfaces specially adapted for cordless or mobile telephones
- H04M1/72448—User interfaces specially adapted for cordless or mobile telephones with means for adapting the functionality of the device according to specific conditions
- H04M1/72463—User interfaces specially adapted for cordless or mobile telephones with means for adapting the functionality of the device according to specific conditions to restrict the functionality of the device
Abstract
The invention provides a mobile terminal and a fingerprint data processing method and device thereof, which are used for collecting fingerprint image information of a user and generating a fingerprint template corresponding to the user; splitting the fingerprint template into a plurality of parts according to a preset splitting rule; correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip. According to the mobile terminal and the fingerprint data processing method and device thereof, the collected fingerprint template data are divided and then stored in different preset storage positions, so that the security of the fingerprint data is enhanced.
Description
Technical Field
The invention relates to the technical field of terminals, in particular to a mobile terminal and a fingerprint data processing method and device thereof.
Background
In the traditional smart phone based on a high-pass platform, fingerprint template data of a user are usually completely stored in an FTS file system in a high-pass trustzone, the security level of the traditional smart phone is EA L2 (the level established by international universal standard authentication), physical attack is not prevented, and a hacker easily obtains the fingerprint template data of the user by adopting software cracking and physical attack modes.
Some manufacturers try to store the fingerprint template data by using the security chip, but the fingerprint template occupies a larger and larger storage space, and the storage space of the security chip is limited and cannot be stored.
Disclosure of Invention
The invention mainly aims to provide a mobile terminal and a fingerprint data processing method and device thereof, which are used for splitting acquired fingerprint template data and then separately storing the data in different preset storage positions so as to enhance the security of the fingerprint data.
The invention provides a fingerprint data processing method, which comprises the following steps:
collecting fingerprint image information of a user and generating a fingerprint template corresponding to the user;
splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
Further, the step of splitting the fingerprint template into multiple parts according to a preset splitting rule includes:
and splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space.
Further, the splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space specifically includes:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data.
Further, the step of respectively and correspondingly storing the split fingerprint template in preset storage positions according to preset storage rules comprises:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
Further, the step of respectively and correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules comprises the following steps:
when the security chip is detected to be invaded by the cracking program, verifying the user authority information within a preset time;
and if the verification fails, starting a self-destruction program of the security chip after a preset time.
Further, the step of respectively and correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules comprises the following steps:
when the user fingerprints are compared, acquiring fingerprint images to be compared of the users, and generating fingerprint templates to be compared corresponding to the users;
acquiring a fingerprint template stored in a preset storage position;
and comparing the fingerprint template to be compared with the stored fingerprint template.
Further, the step of obtaining the fingerprint template stored in the preset storage location includes:
acquiring the first secure storage space and fingerprint data stored in a secure chip;
correspondingly synthesizing the fingerprint data into a fingerprint template stored by a user.
Further, the step of correspondingly synthesizing the fingerprint data into a fingerprint template stored by the user further includes:
and removing redundant information generated after the fingerprint data is synthesized into the fingerprint template.
Further, the first secure storage space is an FTS file system based on trustzone.
Further, the step of collecting fingerprint image information of the user and generating a fingerprint template corresponding to the user includes:
collecting a plurality of fingerprint images of the same fingerprint of a user;
extracting fingerprint features of the plurality of fingerprint images to obtain a plurality of fingerprint features;
and synthesizing the plurality of fingerprint characteristics to obtain a fingerprint template corresponding to the user.
The present invention also provides a fingerprint data processing apparatus, comprising:
the acquisition unit is used for acquiring fingerprint image information of a user and generating a fingerprint template corresponding to the user;
the splitting unit is used for splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
the storage unit is used for correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
Further, the splitting unit includes:
and the splitting subunit is used for splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space.
Further, the molecular breaker unit is specifically configured to:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data.
Further, the storage unit is specifically configured to:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
Further, the fingerprint data processing apparatus further includes:
the verification unit is used for verifying the user authority information within the preset time when the security chip is detected to be invaded by the cracking program;
and the self-destruction unit is used for starting the self-destruction program of the security chip after preset time if the verification fails.
Further, the fingerprint data processing apparatus further includes:
the generating unit is used for collecting a fingerprint image to be compared of the user and generating a fingerprint template to be compared corresponding to the user when the user fingerprint is compared;
the acquisition unit is used for acquiring the fingerprint template stored in the preset storage position;
and the comparison unit is used for comparing the fingerprint template to be compared with the stored fingerprint template.
Further, the acquisition unit includes:
the acquisition subunit is used for acquiring the first secure storage space and the fingerprint data stored in the secure chip;
and the synthesizing subunit is used for correspondingly synthesizing the fingerprint data into a fingerprint template stored by the user.
Further, the synthesis subunit is further configured to:
and removing redundant information generated after the fingerprint data is synthesized into the fingerprint template.
Further, the first secure storage space is an FTS file system based on trustzone.
Further, the acquisition unit includes:
the collecting subunit is used for collecting a plurality of fingerprint images of the same fingerprint of a user;
the extraction subunit is used for extracting the fingerprint features of the plurality of fingerprint images to obtain a plurality of fingerprint features;
and the processing subunit is used for synthesizing the plurality of fingerprint features to obtain the fingerprint template corresponding to the user.
The invention also provides a mobile terminal, which comprises a processor and a memory;
the memory is used for storing a program for supporting the fingerprint data processing device to execute the fingerprint data processing method according to any one of the above items;
the processor is configured to execute programs stored in the memory.
The present invention provides a computer storage medium for storing computer software instructions for use by the fingerprint data processing device described above, comprising instructions for executing a program designed for the fingerprint data processing device according to the above aspect.
The mobile terminal and the fingerprint data processing method and device thereof provided by the invention have the following beneficial effects:
the mobile terminal and the fingerprint data processing method and device thereof collect fingerprint image information of a user and generate a fingerprint template corresponding to the user; splitting the fingerprint template into a plurality of parts according to a preset splitting rule; correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip; after the acquired fingerprint template data are split, the fingerprint template data are separately stored in different preset storage positions, and the security of the fingerprint data is enhanced.
Drawings
FIG. 1 is a diagram illustrating steps of a fingerprint data processing method according to an embodiment of the present invention;
FIG. 2 is a diagram illustrating steps of a fingerprint data processing method according to another embodiment of the present invention;
FIG. 3 is a diagram illustrating steps of a fingerprint data processing method according to another embodiment of the present invention;
FIG. 4 is a schematic diagram of a fingerprint data processing device according to an embodiment of the present invention;
FIG. 5 is a schematic structural diagram of an acquisition unit according to an embodiment of the present invention;
FIG. 6 is a schematic diagram of a texture data processing apparatus according to another embodiment of the present invention;
FIG. 7 is a schematic structural diagram of a texture data processing apparatus according to another embodiment of the present invention;
FIG. 8 is a schematic diagram of an embodiment of an acquisition unit;
fig. 9 is a block diagram of a mobile terminal according to an embodiment of the present invention.
The implementation, functional features and advantages of the objects of the present invention will be further explained with reference to the accompanying drawings.
Detailed Description
It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
As used herein, the singular forms "a", "an", "the" and "the" include plural referents unless the content clearly dictates otherwise. It will be further understood that the terms "comprises" and/or "comprising," when used in this specification, specify the presence of stated features, integers, steps, operations, elements, units, modules, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, units, modules, components, and/or groups thereof. It will be understood that when an element is referred to as being "connected" or "coupled" to another element, it can be directly connected or coupled to the other element or intervening elements may also be present. Further, "connected" or "coupled" as used herein may include wirelessly connected or wirelessly coupled. As used herein, the term "and/or" includes all or any element and all combinations of one or more of the associated listed items.
It will be understood by those skilled in the art that, unless otherwise defined, all terms (including technical and scientific terms) used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. It will be further understood that terms, such as those defined in commonly used dictionaries, should be interpreted as having a meaning that is consistent with their meaning in the context of the prior art and will not be interpreted in an idealized or overly formal sense unless expressly so defined herein.
As used herein, "terminal," "smart terminal," "mobile terminal," "terminal device" includes both devices having wireless signal receivers, which are devices having only wireless signal receivers without transmit capability, and devices having receive and transmit hardware, which have devices having receive and transmit hardware capable of performing two-way communication over a two-way communication link, as will be understood by those skilled in the art. Such a device may include: a cellular or other communication device having a single line display or a multi-line display or a cellular or other communication device without a multi-line display; PCS (Personal communications service), which may combine voice, data processing, facsimile and/or data communications capabilities; a PDA (Personal Digital Assistant), which may include a radio frequency receiver, a pager, internet/intranet access, a web browser, a notepad, a calendar and/or a GPS (Global Positioning System) receiver; a conventional laptop and/or palmtop computer or other device having and/or including a radio frequency receiver. As used herein, a "terminal" or "terminal device" may be portable, transportable, installed in a vehicle (aeronautical, maritime, and/or land-based), or situated and/or configured to operate locally and/or in a distributed fashion at any other location(s) on earth and/or in space. The "terminal", "smart terminal", "terminal Device" used herein may also be a communication terminal, a web-enabled terminal, and a music/video playing terminal, and may be, for example, a PDA, an MID (Mobile Internet Device) and/or a Mobile phone with music/video playing function, and may also be a smart television, a set-top box, and the like.
According to the traditional smart phone based on the high-pass platform, fingerprint template data of a user are usually completely stored in an FTS file system in the high-pass trustzone, the security level of the smart phone is EA L2, physical attack is not prevented, and hackers easily obtain the fingerprint template data of the user by adopting software cracking and physical attack modes.
Referring to fig. 1, a schematic diagram of steps of a fingerprint data processing method according to an embodiment of the present invention is shown.
An embodiment of the present invention provides a fingerprint data processing method, including the following steps:
step S1, collecting the fingerprint image information of the user and generating a fingerprint template corresponding to the user;
step S2, splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
step S3, the split fingerprint templates are respectively and correspondingly stored in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
The fingerprint data processing method provided in the embodiment can be applied to mobile terminals such as mobile phones, tablets, computers, smartwatches and the like, and preferably, the embodiment is described by taking a mobile phone as an example.
In a traditional mobile phone based on a high-pass platform, fingerprint template data of a user is usually completely stored in an FTS file system in a high-pass trustzone, the security level of the mobile phone is EA L2, physical attack is not prevented, and hackers easily obtain the fingerprint template data of the user by adopting software cracking and physical attack modes, so that the security of the storage mode is not high.
In the embodiment, firstly, fingerprint image information of a user is acquired through a fingerprint identification sensor of the mobile phone, and a fingerprint template corresponding to the user is generated according to the fingerprint image information; the fingerprint template takes an original fingerprint as a female parent, a plurality of irreversible and unrelated fingerprints 'sub-copies' are derived by a certain encryption means, the 'sub-copies' can replace the characteristic information of the fingerprint for identification, and once stolen, the original fingerprint information cannot be restored (irreversible), and the 'revocation' can be realized, so that the template can be reconstructed as new fingerprint identification information.
After a fingerprint template corresponding to a user is obtained, the fingerprint template is split into a plurality of parts according to preset splitting rules, the splitting rules are various, the splitting rules are different, so that the difficulty of synthesizing fingerprints when a hacker steals fingerprint data is increased, and the security of the fingerprint data is enhanced, finally, the split fingerprint templates are respectively and correspondingly stored in preset storage positions according to the preset storage rules, the preset storage positions in the embodiment comprise a first secure storage space and a secure chip, wherein the first secure storage space is an FTS (file system) based on the high-pass trustzone, the secure chip is an independent bank-level secure chip, the security level of the secure chip is EA L4 +, fingerprint authentication and password information are independently stored in the secure chip, and independent information encryption is carried out in each password communication, so that the possibility that a lawless person steals the password information and the fingerprint information from the bottom layer of a mobile phone operating system is avoided, meanwhile, the fingerprint data are respectively stored in the FTS file system and the secure chip of the trustzone after being split, if the lawless person wants to steal the fingerprint information, the fingerprint information and the user needs to simultaneously crack the fingerprint data, so as to derive the splitting rules,
therefore, the fingerprint data processing method in the embodiment divides the acquired fingerprint template data and stores the divided fingerprint template data in different preset storage positions, and a lawless person needs to break the fingerprint by breaking the different preset storage positions, so that the safety of the fingerprint data is enhanced, the fingerprint data is stored in the safety chip, the safety level of the fingerprint data is EA L4 +, the safety is higher, further, the storage space of the safety chip is limited, and only a part of the data after the fingerprint template data is divided is stored in the safety chip, so that the occupancy rate of the storage space of the safety chip can be reduced.
Specifically, the step S1 of acquiring the fingerprint image information of the user and generating the fingerprint template corresponding to the user includes:
a. collecting a plurality of fingerprint images of the same fingerprint of a user; in order to improve the accuracy of the processed fingerprint template, a plurality of fingerprint images of the same fingerprint can be acquired.
b. And extracting the fingerprint characteristics of the plurality of fingerprint images to obtain a plurality of fingerprint characteristics.
c. And synthesizing the plurality of fingerprint characteristics to obtain a fingerprint template corresponding to the user.
Specifically, in this embodiment, the step S2 of splitting the fingerprint template into multiple parts according to a preset splitting rule includes:
and splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space. Preferably, in other embodiments, the fingerprint template may also be split into multiple parts according to the security level of the fingerprint template.
In this embodiment, the splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space specifically includes:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data. The pure fingerprint template information occupies a large storage space, the characteristic fingerprint information occupies a small storage space, and the importance degree of the characteristic fingerprint information is higher than that of the pure fingerprint template information. The fingerprint detail information includes characteristic information for identification, such as intersection of two lines, or termination of lines.
In this embodiment, the step S3 of respectively and correspondingly storing the split fingerprint templates in the preset storage locations according to the preset storage rules includes:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
The first secure storage space in the embodiment is an FTS file system based on high-pass trustzone, the security chip is an independent bank-level security chip, the security level of the security chip is EA L4 +, fingerprint authentication and password information are independently stored in the security chip, and independent information encryption is carried out in each password communication, so that the possibility that lawless persons steal the password information and the fingerprint information from the bottom layer of a mobile phone operating system is avoided.
In order to prevent loss of the fingerprint image from threatening the security of the fingerprint, the security chip stores minutiae of the fingerprint, such as intersection points of two grains or termination points of the grains and other characteristic information which can be identified. Meanwhile, in order to reduce the information amount stored in the security chip, the characteristic fingerprint information is encrypted and stored in the security chip. In order to ensure the security of the fingerprint template data, the fingerprint template data is encrypted when being stored to a preset storage position.
Referring to fig. 2, in an embodiment, after the step S3 of correspondingly storing the split fingerprint templates in the preset storage locations according to the preset storage rules, the method includes:
step S4, when detecting that the security chip is invaded by the cracking program, verifying the user authority information in the preset time;
and step S5, if the verification fails, starting the self-destruction program of the security chip after a preset time.
The security chip in the embodiment has an anti-theft self-destruction function, once a suspected brute force cracking behavior is detected, self-destruction countdown is started, user authority information is verified within a preset time (such as within 30 minutes), and a self-destruction program of the security chip is started if correct password information cannot be input within 30 minutes; for example, the security chip will automatically increase the voltage to complete self-burning, so as to ensure that the stored information is not leaked.
Referring to fig. 3, in another embodiment, when the user performs payment verification and account login verification, user fingerprint verification is required. Therefore, after the step S3 of correspondingly storing the split fingerprint templates in the preset storage locations according to the preset storage rules, the method includes:
step S6, when the user fingerprint is compared, collecting the fingerprint image to be compared of the user, and generating the fingerprint template to be compared corresponding to the user;
step S7, acquiring a fingerprint template stored in a preset storage position;
and step S8, performing fingerprint comparison between the fingerprint template to be compared and the stored fingerprint template.
Specifically, the step S7 of acquiring the fingerprint template stored in the preset storage location includes:
acquiring the first secure storage space and fingerprint data stored in a secure chip;
correspondingly synthesizing the fingerprint data into a fingerprint template stored by a user.
When the user fingerprints are compared, firstly, a fingerprint identification sensor is used for collecting the fingerprint image to be compared of the user at this time, and a fingerprint template to be compared is synthesized according to the fingerprint image to be compared; acquiring pure fingerprint template information stored in the first safe storage space and characteristic fingerprint information stored in a safe chip, correspondingly synthesizing the pure fingerprint template information and the characteristic fingerprint information into a fingerprint template stored by a user, removing redundant information generated during synthesis, and finally comparing the synthesized fingerprint template stored by the user with the fingerprint template to be compared; if the matching is successful, the user can log in the corresponding account or pay the amount through verification; if the matching is unsuccessful, the verification is not passed, and the user cannot log in the corresponding account or pay the amount.
In summary, in the fingerprint data processing method provided in the embodiment of the present invention, fingerprint image information of a user is collected, and a fingerprint template corresponding to the user is generated; splitting the fingerprint template into a plurality of parts according to a preset splitting rule; correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip; after the acquired fingerprint template data is split, the fingerprint template data is separately stored in different preset storage positions, and lawless persons need to crack the fingerprints and must crack the different preset storage positions, so that the safety of the fingerprint data is enhanced; and storing the fingerprint data in the security chip to enhance the security of the fingerprint data.
In order to further explain the fingerprint data processing method provided in the embodiment of the invention, the embodiment of the invention also provides a fingerprint data processing device.
Referring to fig. 4, an embodiment of the present invention provides a fingerprint data processing apparatus, including:
the system comprises an acquisition unit 10, a processing unit and a processing unit, wherein the acquisition unit is used for acquiring fingerprint image information of a user and generating a fingerprint template corresponding to the user;
a splitting unit 20, configured to split the fingerprint template into multiple parts according to a preset splitting rule;
the storage unit 30 is configured to respectively and correspondingly store the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
The fingerprint data processing method provided in the embodiment can be applied to mobile terminals such as mobile phones, tablets, computers, smartwatches and the like, and preferably, the embodiment is described by taking a mobile phone as an example.
In a traditional mobile phone based on a high-pass platform, fingerprint template data of a user is usually completely stored in an FTS file system in a high-pass trustzone, the security level of the mobile phone is EA L2, physical attack is not prevented, and hackers easily obtain the fingerprint template data of the user by adopting software cracking and physical attack modes, so that the security of the storage mode is not high.
In this embodiment, first, the collecting unit 10 collects fingerprint image information of a user through a fingerprint identification sensor of a mobile phone, and generates a fingerprint template corresponding to the user according to the fingerprint image information; the fingerprint template takes an original fingerprint as a female parent, a plurality of irreversible and unrelated fingerprints 'sub-copies' are derived by a certain encryption means, the 'sub-copies' can replace the characteristic information of the fingerprint for identification, and once stolen, the original fingerprint information cannot be restored (irreversible), and the 'revocation' can be realized, so that the template can be reconstructed as new fingerprint identification information.
After acquiring the fingerprint template corresponding to the user, the splitting unit 20 splits the fingerprint template into a plurality of parts according to preset splitting rules, the splitting rules are various, the splitting rules are different, so that the difficulty of synthesizing the fingerprint when a hacker steals the fingerprint data is increased, thereby enhancing the security of the fingerprint data, finally, the storage unit 30 correspondingly stores the split fingerprint template in preset storage positions according to the preset storage rules, respectively, the preset storage positions in the embodiment comprise a first secure storage space and a secure chip, wherein the first secure storage space is an FTS (file system) based on the ht-trzone, the secure chip is an independent bank-level secure chip, the security level of the chip is EA L4 +, fingerprint authentication and password information are independently stored in the secure chip, and each password communication is encrypted, thereby avoiding the possibility that an illegal person steals password information and fingerprint information from the bottom layer of a mobile phone operating system, simultaneously, the fingerprint data are split and then stored in the FTS file system and the secure chip of the trustzone, and the user needs to derive the fingerprint data combination of the user and further derive the fingerprint data according to the preset storage rules,
therefore, in the fingerprint data processing apparatus in this embodiment, after the splitting unit 20 splits the collected fingerprint template data, the storage unit 30 is separately stored in different preset storage locations, and a lawless person must crack different preset storage locations to crack the fingerprint, so that the security of the fingerprint data is enhanced, and the fingerprint data is stored in the security chip with a security level of EA L4 +, which is higher in security.
Specifically, referring to fig. 5, the acquisition unit 10 includes:
the collecting subunit 101 is configured to collect a plurality of fingerprint images of the same fingerprint of a user; in order to improve the accuracy of the processed fingerprint template, a plurality of fingerprint images of the same fingerprint can be acquired.
An extracting subunit 102, configured to extract fingerprint features of the multiple fingerprint images, so as to obtain multiple fingerprint features.
And the processing subunit 103 is configured to perform synthesis processing on the multiple fingerprint features to obtain a fingerprint template corresponding to the user.
Further, the splitting unit 20 includes:
and the splitting subunit is used for splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space. Preferably, in other embodiments, the fingerprint template may also be split into multiple parts according to the security level of the fingerprint template.
In this embodiment, the molecule detaching unit is specifically configured to:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data. The pure fingerprint template information occupies a large storage space, the characteristic fingerprint information occupies a small storage space, and the importance degree of the characteristic fingerprint information is higher than that of the pure fingerprint template information. The fingerprint detail information includes characteristic information for identification, such as intersection of two lines, or termination of lines.
In this embodiment, the storage unit 30 is specifically configured to:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
The first secure storage space in the embodiment is an FTS file system based on high-pass trustzone, the security chip is an independent bank-level security chip, the security level of the security chip is EA L4 +, fingerprint authentication and password information are independently stored in the security chip, and independent information encryption is carried out in each password communication, so that the possibility that lawless persons steal the password information and the fingerprint information from the bottom layer of a mobile phone operating system is avoided.
In order to prevent loss of the fingerprint image from threatening the security of the fingerprint, the security chip stores minutiae of the fingerprint, such as intersection points of two grains or termination points of the grains and other characteristic information which can be identified. Meanwhile, in order to reduce the information amount stored in the security chip, the characteristic fingerprint information is encrypted and stored in the security chip. In order to ensure the security of the fingerprint template data, the fingerprint template data is encrypted when being stored to a preset storage position.
Referring to fig. 6, in an embodiment, the fingerprint data processing apparatus further includes:
the verification unit 40 is used for verifying the user authority information within a preset time when the security chip is detected to be invaded by the cracking program;
and the self-destruction unit 50 is used for starting the self-destruction program of the security chip after the preset time if the verification fails.
The security chip in this embodiment has an anti-theft self-destruction function, and once a suspected brute-force cracking behavior is detected, the security chip enters a self-destruction countdown mode, the verification unit 40 verifies the user authority information within a preset time (for example, within 30 minutes), and the self-destruction unit 50 starts a self-destruction program of the security chip if correct password information cannot be input within 30 minutes; for example, the security chip will automatically increase the voltage to complete self-burning, so as to ensure that the stored information is not leaked.
Referring to fig. 7, in another embodiment, the fingerprint data processing apparatus further includes:
the generating unit 60 is configured to, when performing user fingerprint comparison, acquire a fingerprint image to be compared of a user, and generate a fingerprint template to be compared corresponding to the user;
an acquiring unit 70, configured to acquire a fingerprint template stored in a preset storage location;
and the comparison unit 80 is used for performing fingerprint comparison on the fingerprint template to be compared and the stored fingerprint template.
Specifically, referring to fig. 8, the acquiring unit 70 includes:
an obtaining subunit 701, configured to obtain the first secure storage space and fingerprint data stored in a secure chip;
and a synthesizing subunit 702, configured to correspondingly synthesize the fingerprint data into a fingerprint template stored by the user, and remove redundant information generated after the fingerprint data is synthesized into the fingerprint template.
When the user fingerprints are compared, the generating unit 60 collects the fingerprint image to be compared of the user at this time through the fingerprint identification sensor, and synthesizes the fingerprint image to be compared into a fingerprint template to be compared; the acquiring subunit 701 acquires pure fingerprint template information stored in the first secure storage space and characteristic fingerprint information stored in the secure chip, the synthesizing subunit 702 correspondingly synthesizes the pure fingerprint template information and the characteristic fingerprint information into a fingerprint template stored by a user, meanwhile, removes redundant information generated during synthesis, and finally, the comparing unit 80 compares the synthesized fingerprint template stored by the user with the fingerprint template to be compared; if the matching is successful, the user can log in the corresponding account or pay the amount through verification; if the matching is unsuccessful, the verification is not passed, and the user cannot log in the corresponding account or pay the amount.
In summary, in the fingerprint data processing apparatus provided in the embodiment of the present invention, the collecting unit 10 collects fingerprint image information of a user, and generates a fingerprint template corresponding to the user; the splitting unit 20 splits the fingerprint template into a plurality of parts according to a preset splitting rule; the storage unit 30 respectively and correspondingly stores the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip; after the acquired fingerprint template data is split, the fingerprint template data is separately stored in different preset storage positions, and lawless persons need to crack the fingerprints and must crack the different preset storage positions, so that the safety of the fingerprint data is enhanced; and storing the fingerprint data in the security chip to enhance the security of the fingerprint data.
Fig. 9 is a diagram showing only a portion related to an embodiment of the present invention for convenience of description, and please refer to a method portion in an embodiment of the present invention for details that are not disclosed. The terminal may be any terminal device including a mobile phone, a tablet computer, a PDA (Personal Digital Assistant), a POS (point of Sales), a vehicle-mounted computer, etc., taking the terminal as the mobile phone as an example:
fig. 9 is a block diagram illustrating a partial structure of a mobile phone related to a mobile terminal according to an embodiment of the present invention. Referring to fig. 9, the handset includes: radio Frequency (RF) circuit 110, memory 120, input unit 130, display unit 140, sensor 150, audio circuit 160, wireless-fidelity (Wi-Fi) module 170, processor 180, and power supply 190. Those skilled in the art will appreciate that the handset configuration shown in fig. 9 is not intended to be limiting and may include more or fewer components than those shown, or some components may be combined, or a different arrangement of components.
The following describes each component of the mobile phone in detail with reference to fig. 9:
the RF circuit 110 may be used for receiving and transmitting signals during a message or call, and in particular, for receiving and transmitting downlink information of a base station and then processing the downlink information to the processor 180, and further, for transmitting data designed for uplink to the base station, generally, the RF circuit 110 includes, but is not limited to, an antenna, at least one amplifier, a transceiver, a coupler, a low noise amplifier (L w noise amplifier, <tttransmission &l "&ttt/t >tna), a duplexer, etc., and the RF circuit 110 may also communicate with a network and other devices through wireless communication, which may use any communication standard or protocol, including, but not limited to, global system for Mobile communication (GSM), General Packet radio Service (General Packet radio Service, GPRS), Code Division Multiple Access (Code Division Multiple Access, CDMA), WCDMA, Short Service (SMS) and long Term Evolution (Short message Service), WCDMA L, and the like.
The memory 120 may be used to store software programs and modules, and the processor 180 executes various functional applications and data processing of the mobile phone by operating the software programs and modules stored in the memory 120. The memory 120 may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required by at least one function (such as a sound playing function, an image playing function, etc.), and the like; the storage data area may store data (such as audio data, a phonebook, etc.) created according to the use of the cellular phone, and the like. Further, the memory 120 may include high speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other volatile solid state storage device.
The input unit 130 may be used to receive input numeric or character information and generate key signal inputs related to user settings and function control of the cellular phone. Specifically, the input unit 130 may include a touch panel 131 and other input devices 132. The touch panel 131, also referred to as a touch screen, may collect touch operations of a user on or near the touch panel 131 (e.g., operations of the user on or near the touch panel 131 using any suitable object or accessory such as a finger or a stylus pen), and drive the corresponding connection device according to a preset program. Alternatively, the touch panel 131 may include two parts, i.e., a touch detection device and a touch controller. The touch detection device detects the touch direction of a user, detects a signal brought by touch operation and transmits the signal to the touch controller; the touch controller receives touch information from the touch sensing device, converts the touch information into touch point coordinates, sends the touch point coordinates to the processor 180, and can receive and execute commands sent by the processor 180. In addition, the touch panel 131 may be implemented by various types such as a resistive type, a capacitive type, an infrared ray, and a surface acoustic wave. The input unit 130 may include other input devices 132 in addition to the touch panel 131. In particular, other input devices 132 may include, but are not limited to, one or more of a physical keyboard, function keys (such as volume control keys, switch keys, etc.), a trackball, a mouse, a joystick, and the like.
The display unit 140 may be used to display information input by a user or information provided to the user and various menus of the mobile phone, the display unit 140 may include a display panel 141, and optionally, the display panel 141 may be configured in the form of a liquid crystal display (L acquired crystal display, &ttttranslation = L "&&ttt/t >tcd), an Organic light Emitting Diode (Organic L sight-Emitting Diode, O L ED), and the like, and further, the touch panel 131 may cover the display panel 141, and when a touch operation is detected on or near the touch panel 131, the touch panel 131 is transmitted to the processor 180 to determine the type of the touch event, and then the processor 180 provides a corresponding visual output on the display panel 141 according to the type of the touch event, although in fig. 9, the touch panel 131 and the display panel 141 are implemented as two separate components for input and input functions of the mobile phone, in some embodiments, the touch panel 131 and the display panel 141 may be integrated to implement the input and output functions of the mobile phone.
The handset may also include at least one sensor 150, such as a light sensor, motion sensor, and other sensors. Specifically, the light sensor may include an ambient light sensor that adjusts the brightness of the display panel 141 according to the brightness of ambient light, and a proximity sensor that turns off the display panel 141 and/or the backlight when the mobile phone is moved to the ear. As one of the motion sensors, the accelerometer sensor can detect the magnitude of acceleration in each direction (generally, three axes), can detect the magnitude and direction of gravity when stationary, and can be used for applications of recognizing the posture of a mobile phone (such as horizontal and vertical screen switching, related games, magnetometer posture calibration), vibration recognition related functions (such as pedometer and tapping), and the like; as for other sensors such as a gyroscope, a barometer, a hygrometer, a thermometer, and an infrared sensor, which can be configured on the mobile phone, further description is omitted here.
WiFi belongs to short-distance wireless transmission technology, and the mobile phone can help a user to receive and send e-mails, browse webpages, access streaming media and the like through the WiFi module 170, and provides wireless broadband Internet access for the user. Although fig. 9 shows the WiFi module 170, it is understood that it does not belong to the essential constitution of the handset, and may be omitted entirely as needed within the scope not changing the essence of the invention.
The processor 180 is a control center of the mobile phone, connects various parts of the entire mobile phone by using various interfaces and lines, and performs various functions of the mobile phone and processes data by operating or executing software programs and/or modules stored in the memory 120 and calling data stored in the memory 120, thereby integrally monitoring the mobile phone. Alternatively, processor 180 may include one or more processing units; preferably, the processor 180 may integrate an application processor, which mainly handles operating systems, user interfaces, application programs, etc., and a modem processor, which mainly handles wireless communications. It will be appreciated that the modem processor described above may not be integrated into the processor 180.
The handset also includes a power supply 190 (e.g., a battery) for powering the various components, and preferably, the power supply may be logically connected to the processor 180 via a power management system, such that functions such as managing charging, discharging, and power consumption are performed via the power management system.
Although not shown, the mobile phone may further include a camera, a bluetooth module, etc., which are not described herein.
Referring to fig. 9, in the embodiment of the present invention, the processor 180 included in the mobile terminal further has the following functions:
collecting fingerprint image information of a user and generating a fingerprint template corresponding to the user;
splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
The memory 120 is used for storing a program for supporting the fingerprint data processing device to execute the fingerprint data processing method according to the above embodiment;
the processor 180 is configured to execute programs stored in the memory 120.
It can be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working processes of the terminal, the apparatus and the unit described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In summary, the mobile terminal and the fingerprint data processing method and apparatus thereof provided in the embodiments of the present invention collect fingerprint image information of a user, and generate a fingerprint template corresponding to the user; splitting the fingerprint template into a plurality of parts according to a preset splitting rule; correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip; after the acquired fingerprint template data is split, the fingerprint template data is separately stored in different preset storage positions, and lawless persons need to crack the fingerprints and must crack the different preset storage positions, so that the safety of the fingerprint data is enhanced; and storing the fingerprint data in the security chip to enhance the security of the fingerprint data.
Those skilled in the art will appreciate that the present invention includes apparatus directed to performing one or more of the operations described in the present application. These devices may be specially designed and manufactured for the required purposes, or they may comprise known devices in general-purpose computers. These devices have stored therein computer programs that are selectively activated or reconfigured. Such a computer program may be stored in a device (e.g., computer) readable medium, including, but not limited to, any type of disk including floppy disks, hard disks, optical disks, CD-ROMs, and magnetic-optical disks, ROMs (Read-Only memories), RAMs (Random Access memories), EPROMs (Erasable Programmable Read-Only memories), EEPROMs (Electrically Erasable Programmable Read-Only memories), flash memories, magnetic cards, or optical cards, or any type of media suitable for storing electronic instructions, and each coupled to a bus. That is, a readable medium includes any medium that stores or transmits information in a form readable by a device (e.g., a computer).
It will be understood by those within the art that each block of the block diagrams and/or flowchart illustrations, and combinations of blocks in the block diagrams and/or flowchart illustrations, can be implemented by computer program instructions. Those skilled in the art will appreciate that the computer program instructions may be implemented by a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, implement the features specified in the block or blocks of the block diagrams and/or flowchart illustrations of the present disclosure.
Those of skill in the art will appreciate that various operations, methods, steps in the processes, acts, or solutions discussed in the present application may be alternated, modified, combined, or deleted. Further, various operations, methods, steps in the flows, which have been discussed in the present application, may be interchanged, modified, rearranged, decomposed, combined, or eliminated. Further, steps, measures, schemes in the various operations, methods, procedures disclosed in the prior art and the present invention can also be alternated, changed, rearranged, decomposed, combined, or deleted.
The embodiment of the invention provides the following technical scheme:
a1, a fingerprint data processing method, comprising the following steps:
collecting fingerprint image information of a user and generating a fingerprint template corresponding to the user;
splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
A2, the method for processing fingerprint data according to a1, wherein the step of splitting the fingerprint template into multiple parts according to a preset splitting rule comprises:
and splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space.
A3, according to the fingerprint data processing method of a2, the splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space specifically includes:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data.
A4, according to the fingerprint data processing method of A3, the step of respectively and correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules includes:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
A5, the method for processing fingerprint data according to any one of A1-A4, wherein the step of respectively and correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules comprises:
when the security chip is detected to be invaded by the cracking program, verifying the user authority information within a preset time;
and if the verification fails, starting a self-destruction program of the security chip after a preset time.
A6, the method for processing fingerprint data according to any one of A1-A4, wherein the step of respectively and correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules comprises:
when the user fingerprints are compared, acquiring fingerprint images to be compared of the users, and generating fingerprint templates to be compared corresponding to the users;
acquiring a fingerprint template stored in a preset storage position;
and comparing the fingerprint template to be compared with the stored fingerprint template.
A7, according to the fingerprint data processing method of a6, the step of obtaining the fingerprint template stored in the preset storage location includes:
acquiring the first secure storage space and fingerprint data stored in a secure chip;
correspondingly synthesizing the fingerprint data into a fingerprint template stored by a user.
A8, according to the fingerprint data processing method of A7, the step of correspondingly synthesizing the fingerprint data into a fingerprint template stored by a user further includes:
and removing redundant information generated after the fingerprint data is synthesized into the fingerprint template.
A9, the fingerprint data processing method according to any one of A1-A4, wherein the first secure storage space is FTS file system based on high-pass trustzone.
A10, according to the fingerprint data processing method of A1, the step of collecting the fingerprint image information of the user and generating the fingerprint template corresponding to the user comprises:
collecting a plurality of fingerprint images of the same fingerprint of a user;
extracting fingerprint features of the plurality of fingerprint images to obtain a plurality of fingerprint features;
and synthesizing the plurality of fingerprint characteristics to obtain a fingerprint template corresponding to the user.
B1, a fingerprint data processing apparatus comprising:
the acquisition unit is used for acquiring fingerprint image information of a user and generating a fingerprint template corresponding to the user;
the splitting unit is used for splitting the fingerprint template into a plurality of parts according to a preset splitting rule;
the storage unit is used for correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip.
B2, the fingerprint data processing device according to B1, the splitting unit includes:
and the splitting subunit is used for splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space.
B3, according to the fingerprint data processing apparatus of B2, the splitting subunit is specifically configured to:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information includes fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data.
B4, the fingerprint data processing apparatus of B3, wherein the storage unit is specifically configured to:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
B5, the fingerprint data processing device according to any one of B1-B4, the fingerprint data processing device further comprising:
the verification unit is used for verifying the user authority information within the preset time when the security chip is detected to be invaded by the cracking program;
and the self-destruction unit is used for starting the self-destruction program of the security chip after preset time if the verification fails.
B6, the fingerprint data processing device according to any one of B1-B4, the fingerprint data processing device further comprising:
the generating unit is used for collecting a fingerprint image to be compared of the user and generating a fingerprint template to be compared corresponding to the user when the user fingerprint is compared;
the acquisition unit is used for acquiring the fingerprint template stored in the preset storage position;
and the comparison unit is used for comparing the fingerprint template to be compared with the stored fingerprint template.
B7, the fingerprint data processing device according to B6, the acquiring unit comprising:
the acquisition subunit is used for acquiring the first secure storage space and the fingerprint data stored in the secure chip;
and the synthesizing subunit is used for correspondingly synthesizing the fingerprint data into a fingerprint template stored by the user.
B8, the fingerprint data processing device of B7, the synthesizing subunit further for:
and removing redundant information generated after the fingerprint data is synthesized into the fingerprint template.
B9, the fingerprint data processing device according to any one of B1-B4, wherein the first secure storage space is FTS file system based on high-pass trustzone.
B10, the fingerprint data processing device according to B1, the acquiring unit comprising:
the collecting subunit is used for collecting a plurality of fingerprint images of the same fingerprint of a user;
the extraction subunit is used for extracting the fingerprint features of the plurality of fingerprint images to obtain a plurality of fingerprint features;
and the processing subunit is used for synthesizing the plurality of fingerprint features to obtain the fingerprint template corresponding to the user.
C1, a mobile terminal comprising a processor and a memory;
the memory is used for storing a program for supporting the fingerprint data processing device to execute the fingerprint data processing method according to any one of A1-A10;
the processor is configured to execute programs stored in the memory.
The above description is only a preferred embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes, which are made by using the contents of the present specification and the accompanying drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.
Claims (7)
1. A fingerprint data processing method, comprising the steps of:
collecting fingerprint image information of a user and generating a fingerprint template corresponding to the user;
splitting the fingerprint template into a plurality of parts according to a preset splitting rule, wherein the preset splitting rule increases the difficulty of fingerprint synthesis when a hacker steals fingerprint data, and enhances the security of the fingerprint data;
correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip;
the step of splitting the fingerprint template into a plurality of parts according to a preset splitting rule comprises the following steps:
splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space;
the splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space specifically comprises:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information comprises fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data;
the step of respectively and correspondingly storing the split fingerprint template in a preset storage position according to a preset storage rule comprises the following steps of:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
2. The fingerprint data processing method according to claim 1, wherein after the step of correspondingly storing the split fingerprint templates in preset storage locations according to preset storage rules, respectively, the step comprises:
when the security chip is detected to be invaded by the cracking program, verifying the user authority information within a preset time;
and if the verification fails, starting a self-destruction program of the security chip after a preset time.
3. The fingerprint data processing method according to claim 1, wherein after the step of correspondingly storing the split fingerprint templates in preset storage locations according to preset storage rules, respectively, the step comprises:
when the user fingerprints are compared, acquiring fingerprint images to be compared of the users, and generating fingerprint templates to be compared corresponding to the users;
acquiring a fingerprint template stored in a preset storage position;
and comparing the fingerprint template to be compared with the stored fingerprint template.
4. The fingerprint data processing method of claim 3, wherein the step of obtaining the fingerprint template stored in the preset storage location comprises:
acquiring the first secure storage space and fingerprint data stored in a secure chip;
correspondingly synthesizing the fingerprint data into a fingerprint template stored by a user.
5. The fingerprint data processing method of claim 4, wherein the step of correspondingly synthesizing the fingerprint data into the fingerprint template stored by the user further comprises:
and removing redundant information generated after the fingerprint data is synthesized into the fingerprint template.
6. A fingerprint data processing apparatus, comprising:
the acquisition unit is used for acquiring fingerprint image information of a user and generating a fingerprint template corresponding to the user;
the fingerprint template is divided into a plurality of parts according to a preset dividing rule, wherein the preset dividing rule increases the difficulty of fingerprint synthesis when a hacker steals fingerprint data, and the security of the fingerprint data is enhanced;
the storage unit is used for correspondingly storing the split fingerprint templates in preset storage positions according to preset storage rules; the preset storage position comprises a first safe storage space and a safe chip;
the splitting unit includes:
the splitting subunit is used for splitting the fingerprint template into two parts according to the importance degree of the fingerprint information in the fingerprint template and the size of the occupied storage space;
the molecular detaching unit is specifically used for:
splitting the fingerprint template into pure fingerprint template information and characteristic fingerprint information; the characteristic fingerprint information comprises fingerprint template ID information, user ID information, fingerprint detail information and fingerprint template head data;
the storage unit is specifically configured to:
and encrypting and storing the pure fingerprint template information in the first secure storage space corresponding to the user ID, and encrypting and storing the characteristic fingerprint information in the secure chip.
7. A mobile terminal comprising a processor and a memory;
the memory is used for storing a program for supporting the fingerprint data processing device to execute the fingerprint data processing method according to any one of claims 1 to 5;
the processor is configured to execute programs stored in the memory.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710045873.8A CN106909820B (en) | 2017-01-20 | 2017-01-20 | Mobile terminal and fingerprint data processing method and device thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710045873.8A CN106909820B (en) | 2017-01-20 | 2017-01-20 | Mobile terminal and fingerprint data processing method and device thereof |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106909820A CN106909820A (en) | 2017-06-30 |
| CN106909820B true CN106909820B (en) | 2020-07-28 |
Family
ID=59206960
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710045873.8A Active CN106909820B (en) | 2017-01-20 | 2017-01-20 | Mobile terminal and fingerprint data processing method and device thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106909820B (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109284639A (en) * | 2017-07-21 | 2019-01-29 | 深圳如探索科技有限公司 | Data processing method, device and equipment |
| CN108509874A (en) * | 2018-03-16 | 2018-09-07 | 联想(北京)有限公司 | A kind of data processing method and electronic equipment, computer storage media |
| CN108549822A (en) * | 2018-04-09 | 2018-09-18 | 平安科技(深圳)有限公司 | User information control method, apparatus and terminal device |
| CN110781472A (en) * | 2019-10-08 | 2020-02-11 | Oppo(重庆)智能科技有限公司 | Fingerprint data storage and verification method, terminal and storage medium |
| WO2021248382A1 (en) * | 2020-06-10 | 2021-12-16 | 北京小米移动软件有限公司 | Biological feature verification method and apparatus, electronic device, and storage medium |
| CN112199049B (en) * | 2020-10-22 | 2023-10-20 | Tcl通讯(宁波)有限公司 | Fingerprint storage method, fingerprint storage device and terminal |
| CN114356202B (en) * | 2022-03-18 | 2022-07-12 | 广州世安信息技术股份有限公司 | Portable mobile storage data exchange equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105160316A (en) * | 2015-08-31 | 2015-12-16 | 宇龙计算机通信科技(深圳)有限公司 | Fingerprint feature template encrypted storage method and system of mobile terminal |
| CN105354466A (en) * | 2015-10-26 | 2016-02-24 | 维沃移动通信有限公司 | Fingerprint recognition method and mobile terminal |
| CN105550650A (en) * | 2015-12-10 | 2016-05-04 | 东莞酷派软件技术有限公司 | Fingerprint security protection method and system |
| CN106022055A (en) * | 2016-05-27 | 2016-10-12 | 广东欧珀移动通信有限公司 | Fingerprint unlocking control method and terminal equipment |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP5270514B2 (en) * | 2009-10-23 | 2013-08-21 | 株式会社日立製作所 | Biometric authentication method and computer system |
-
2017
- 2017-01-20 CN CN201710045873.8A patent/CN106909820B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105160316A (en) * | 2015-08-31 | 2015-12-16 | 宇龙计算机通信科技(深圳)有限公司 | Fingerprint feature template encrypted storage method and system of mobile terminal |
| CN105354466A (en) * | 2015-10-26 | 2016-02-24 | 维沃移动通信有限公司 | Fingerprint recognition method and mobile terminal |
| CN105550650A (en) * | 2015-12-10 | 2016-05-04 | 东莞酷派软件技术有限公司 | Fingerprint security protection method and system |
| CN106022055A (en) * | 2016-05-27 | 2016-10-12 | 广东欧珀移动通信有限公司 | Fingerprint unlocking control method and terminal equipment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106909820A (en) | 2017-06-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106909820B (en) | Mobile terminal and fingerprint data processing method and device thereof | |
| CN103079000B (en) | Method and device for terminal unlocking | |
| CN108616652B (en) | Data protection method and device, terminal and computer readable storage medium | |
| CN108510022B (en) | Two-dimensional code generation and verification method and server | |
| CN107071775B (en) | Mobile terminal and method and device for redirecting access to base station | |
| WO2017084288A1 (en) | Method and device for verifying identity | |
| CN107483213B (en) | Security authentication method, related device and system | |
| CN107395610B (en) | Communication authentication method, first terminal and second terminal | |
| CN112600977A (en) | Method and terminal for quickly opening application or application function | |
| CN106255102B (en) | Terminal equipment identification method and related equipment | |
| CN106897595B (en) | Mobile terminal | |
| CN106550361B (en) | Data transmission method, equipment and computer readable storage medium | |
| CN107609363B (en) | Unlocking method and mobile terminal | |
| CN110941821A (en) | Data processing method, device and storage medium | |
| CN108156537B (en) | Remote operation method of mobile terminal and mobile terminal | |
| CN110990849A (en) | Encryption and decryption method for private data and terminal | |
| CN107358083B (en) | Information processing method, terminal and computer readable storage medium | |
| CN106447325B (en) | NFC communication-based processing method and device and mobile terminal | |
| WO2020015655A1 (en) | Mobile terminal and screen unlocking method and device | |
| CN114697007B (en) | Key management method, corresponding device and system | |
| CN106815510B (en) | Data processing method and terminal | |
| CN113923005B (en) | Method and system for writing data | |
| WO2018232652A1 (en) | Mobile terminal having high privacy level and related product | |
| CN110321680B (en) | Identity verification method and terminal equipment | |
| CN110555924B (en) | Method and device for unlocking processing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |