CN108492433B - Network access control system capable of being intelligently controlled by networking and disconnection - Google Patents

Network access control system capable of being intelligently controlled by networking and disconnection Download PDF

Info

Publication number
CN108492433B
CN108492433B CN201810590337.0A CN201810590337A CN108492433B CN 108492433 B CN108492433 B CN 108492433B CN 201810590337 A CN201810590337 A CN 201810590337A CN 108492433 B CN108492433 B CN 108492433B
Authority
CN
China
Prior art keywords
module
time
network
cloud
network access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810590337.0A
Other languages
Chinese (zh)
Other versions
CN108492433A (en
Inventor
徐政伟
蔡虹
叶鑫
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou Bintuo Communication Technology Co ltd
Original Assignee
Hangzhou Bintuo Communication Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Bintuo Communication Technology Co ltd filed Critical Hangzhou Bintuo Communication Technology Co ltd
Priority to CN201810590337.0A priority Critical patent/CN108492433B/en
Publication of CN108492433A publication Critical patent/CN108492433A/en
Application granted granted Critical
Publication of CN108492433B publication Critical patent/CN108492433B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/215Individual registration on entry or exit involving the use of a pass the system having a variable access-code, e.g. varied as a function of time
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/27Individual registration on entry or exit involving the use of a pass with central registration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • H04L67/125Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks involving control of end-device applications over a network

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Computing Systems (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Lock And Its Accessories (AREA)

Abstract

The invention provides a network access control system capable of being intelligently controlled by networking and network disconnection, which comprises a plurality of network access control controllers connected with a cloud control end, wherein Mcu core controllers are arranged in the network access control controllers, mcu core controllers are connected with a network module, a display screen module, an input module and a smart card identification module, a keyboard module is used for enabling a user to send a two-dimensional code request to the cloud control end after micro-message scanning codes are adopted, or the network access control controllers send smart card information requests or key requests to the cloud control end, the cloud control end judges whether to open an access control after authentication, and under the condition of network disconnection, the cloud control end can send a real-time password to the user end. Both the mentioned networking and the off-network refer to the network situation at the network controller side.

Description

Network access control system capable of being intelligently controlled by networking and disconnection
Technical Field
The invention relates to a network access control device, in particular to a network access control system capable of being intelligently controlled by networking and network disconnection.
Background
The wide use of the two-dimensional code has been deep into our life, and the unique graphic coding format of the two-dimensional code enables the information quantity carried by the two-dimensional code to be large, so that websites, enterprise logo, chinese character names and the like can be displayed. The network communication modes in various forms are covered at all corners of life, the mobile phone is used as each necessary device, the two-dimensional code scanning function is used by the mobile phone, the network and the center are utilized to exchange data, and remote door opening and closing control is realized, so that the network intelligent device and system are very convenient for people. Of course, not only the two-dimension code, but also the NFC code scanning, the IC card and various intelligent cards thereof can obtain remote control of the door access through the mobile phone, and further the door lock is controlled.
However, because the mode has a certain dependence on whether the network is smooth or not, the access control needs to be processed in real time for a user, the center needs to have a certain authentication on the identity of the access visitor, thereby giving corresponding permission, and therefore, the center needs to have a corresponding management mode and identification method, which is one of the problems, and the second problem is how to guarantee the timeliness of the access control system in use if the network is broken. Third, because the access control device is not a door lock, it is generally installed at an access port where a certain number of people enter and exit, and thus, a device for obtaining rights in various ways, such as an ic card, an id card, a mobile phone nfc, etc., will be brought. And the fourth safety guarantee problem is that the two-dimensional code is a replicable image, the same image can be scanned at different times or by different equipment, the door can not be authorized to be opened, and the fifth method is to collect accumulated and searched personnel data.
Disclosure of Invention
The invention provides a network access control system capable of being intelligently controlled by networking and disconnection, which solves the problems, and the technical scheme is as follows:
the network access control system capable of being intelligently controlled by both networking and disconnection comprises a plurality of network access control controllers connected with a cloud control end, wherein Mcu core controllers are arranged in the network access control controllers, and the Mcu core controllers are connected with a display screen through a display screen driving module; the control system comprises a level output control module, a gate control relay and an electric phase lock, wherein the level output control module is connected with the gate control relay; the door opening button is connected with the door opening button through the door opening button access module; the door magnetic input device is connected with the door magnetic input device through the door magnetic input module; and the Mcu core controller is connected with the intelligent card identification module.
The Mcu core controller is connected with the anti-disassembly switch input device through the anti-disassembly input module; the device is connected with an external 485 probe through a 485 controller; the serial port debugging tool is connected with the serial port debugging tool through a 232 control module; the Mcu core controller is connected with the power supply control module.
The data input module comprises an on-board keyboard module and a wiegand protocol module capable of being connected with a wiegand keyboard, and the wiegand protocol module is connected with the wiegand keyboard.
The network module comprises an Ethernet driving module and a wifi module, wherein the Ethernet driving module is used for accessing the Ethernet.
The intelligent card identification module comprises an ID card identification module and an IC/public transportation/identity card/NFC card identification module, when the cards or signals are identified, the network access controller compares the cards or signals with information stored in a memory which is not lost when power is lost, automatic opening is realized, and the information is transmitted to a cloud center no matter how the comparison result is obtained;
on the circuit board that the network access control ware set up, on-board battery and clock unit are furnished with button cell for guarantee CPU clock module power failure time and not lose, and make the clock still normally time after the power failure, provide data for outage calculation password.
The cloud control end processes the network access controller as follows:
(1) The cloud control end checks the network and the database, establishes connection with the network access controller, sends a command for inquiring whether the access controller is connected online or not, and checks the response of the network access controller, and sends a current effective two-dimensional code to the network access controller every 40 seconds;
(2) In the networking state of the controller, the cloud receives information sent by the mobile phone code scanning of the user, compares the information with the database information, and sends a door opening control command to the network access controller after intelligent calculation approval is carried out;
or the network controller receives the card swiping information of the user, firstly compares the card swiping information with the information content of the internal memory of the controller, controls whether to open the door, synchronously sends a card swiping information request to the cloud, and determines whether to authorize to open the door after data comparison and intelligent calculation in the cloud and the database;
the intelligent card is set to be authorized by the cloud control end or directly by the network access controller;
(3) And in the off-network state of the controller, the cloud control end receives the mobile phone code scanning information of the user to perform real-time password calculation, pushes the password to the WeChat user, and inputs the password by the user on a keyboard of the controller.
The working steps of the network access controller are as follows:
(1) Reading MCU time (the time is read firstly when resetting because the on-board battery is arranged on the board and the clock stored in the MCU is specially kept from losing when power is lost), resetting the memory, reading the memory data, resetting the display screen/ID/IC/network/wifi/key module;
(2) The cloud control terminal is connected, the cloud control terminal is executed to command the display of the two-dimensional code and the time of the two-dimensional code is paired with the center, the obtained center time is stored in an internal time storage unit of the MCU, the cloud center command is executed to open/close the door, and the query command response of the cloud center on whether the access controller is connected is executed;
(3) Judging whether an on-board keyboard or an external wiegand keyboard has key information input, performing input authentication calculation on keys, performing authentication to determine whether to open an access control, and sending information to a cloud;
(4) Judging whether a smart card swipes or not, and sending information to a cloud control end for judgment;
(5) Judging whether a remote control signal exists or not, and controlling the door opening and closing of the door.
In the step (3) of the processing step of the network access controller by the cloud control end, the time of the network access controller is synchronous with that of the cloud control end, each network access controller is provided with a unique electronic serial number, the calculation of the real-time password is carried out according to the electronic serial number and time, the password is effective in one hour, and the calculation process of the real-time password is as follows:
(1) According to the electronic serial number and time, forming 5 16 byte numbers, firstly selecting 6 unique numbers or characters of the electronic serial number, and correspondingly forming 3byte numbers of the 16 byte numbers; the current time is composed of 4 th byte and 5 th byte, and the time of year, month and day is respectively hijk, dd, ss, and the high 4bit of the 4 th byte is the last k of the year; the last digit of "year" can only be 0-9, the corresponding 4bit binary number is 0000-1001), the lower 4bit of 4 th byte is "month" mm (month "is only 1-12, the corresponding 4bit binary number is 0001-1100), the bit0-bit4 of 5 th byte is" day "dd (day" is only 1-31, the corresponding 5bit binary number is 00001-11111), the bit5-bit7 of 5 th byte is an integer of quotient after "when" ss is divided by 3 (the "when" value is 0-23, the integer range of quotient after division by 3 is 0-7, the conversion to 3bit binary number is 000-111), thus becoming new 5byte data, assumed to be & Hxxxxxxxx.
(2) The data is circularly shifted to the left, the number of shifting times is changed to the lowest bit according to the value ss of 'time',
( Loop left instruction "_crol_": and (3) circularly shifting left instructions, and supplementing high-order removed data by low-order bits. )
The new 16-ary data is formed by the value of = (& hxxxxxxxx_crol_ss) of the value of H (abcdefghij);
(5) Inverting the obtained result, & H (ABCDEFGHIJ) = & H (ABCDEFGHIJ);
(6) The obtained 16-system number is formed into a data string which is a 10-bit password in a mode of 4 bits and a BDC code.
Further, the step of sending the real-time password by the cloud control end is as follows:
(1) The cloud control terminal receives the electronic serial number of the door control equipment and stores the first 3 bytes needed for data calculation under the condition that the door control equipment is known to be online;
(2) Transmitting a command for displaying the two-dimensional code with a time stamp under the online condition of the known door control equipment, and forming the current time into the last 2 bytes required by data calculation;
(3) Combining the obtained 5byte data, and performing cyclic shift calculation;
(4) Performing inverse calculation on the shifted 5byte data;
(5) Converting 5byte data into 10 key values;
(6) Receiving the two-dimensional code uploaded by the WeChat, and obtaining the time for displaying the code by the door control equipment;
(7) If the standard time difference between the time and the current cloud center is 3 minutes, the network is considered to be broken;
(8) And sending the calculated key password of the time authorization to the micro-credit user, wherein the micro-credit user receives and keys on site, and the door controller receives and verifies the key password with the time and the electronic serial number in the controller to open the door.
The information displayed by the two-dimension code of the network access controller comprises the latest information which is finally received by the device and is synchronous with the network of the cloud control end, and if the scanning code received by the cloud control end is not matched with the real-time data of the cloud control end, the network is defined as disconnected, and the network is automatically converted into a sending password.
According to the invention, firstly, a cloud control end (cloud access control center, the cloud center and the cloud end refer to cloud control ends) can be connected with each remote network access controller (network access control equipment), effective two-dimensional code information belonging to different time periods of each equipment is pushed, the network access control equipment uses a display screen to display and continuously refresh, a user uses a mobile phone to scan codes to apply for a door opening authority to the center, the center sends authorization information, and the network access control is instructed to open the door for a certain period of time and is automatically closed. If the user uses the authorized mobile phone NFC, IC, ID card which is proprietary to the user, the network access control and the cloud center can directly authorize the door opening. If the network is disconnected, the code scanning action of the user can still be transmitted to the cloud center through the mobile phone WeChat of the user, and the cloud center can calculate and issue a legal door-opening password in an effective time period for the authorized user to use, so that timeliness and safety are achieved.
The invention also relates to network communication by utilizing a network, a two-dimensional code identification result is transmitted to a network center, and the cloud center is used for calculating by obtaining a code scanning result of a WeChat user to judge whether the remote access control equipment is normally connected. When a user requests to open a door, if a networking mode is adopted, whether to authorize or not and in which mode to authorize the door are determined. When a user requests to open a door, if the network is disconnected, an intelligent algorithm and a control method for determining whether to authorize and in which way to authorize the door are provided. Meanwhile, a plurality of door opening approaches are simultaneously provided in one control box, and two-dimension code scanning, common IC/ID, various bus cards, identity cards, bank cards, mobile phone NFC/password keyboards are provided. Meanwhile, the scanning IC/ID can sense multiple cards in different frequency bands, and the use of a screen display and a touch keyboard is not interfered. The box-disassembling alarm function of the network access control equipment can prevent damage.
Drawings
FIG. 1 is a schematic circuit diagram of a network access control system capable of being intelligently controlled by both networking and off-network;
FIG. 2 is a cloud center management schematic;
FIG. 3 is a schematic diagram of a control flow of a network access control device system;
FIG. 4 is a flow chart of an authorization code calculation algorithm;
FIG. 5 is a flow chart of the cloud computing algorithm for authorized passwords;
fig. 6 is a flowchart of the network access control device system for an authorized password calculation algorithm.
Detailed Description
As shown in fig. 1, the network access control system capable of being intelligently controlled by both networking and disconnection comprises a plurality of network access control controllers connected with a cloud control end, wherein Mcu core controllers are arranged in the network access control controllers, and the Mcu core controllers are connected with a display screen through a display screen driving module; the control system comprises a level output control module, a gate control relay and an electric phase lock, wherein the level output control module is connected with the gate control relay; the door opening button is connected with the door opening button through the door opening button access module; the door magnetic input device is connected with the door magnetic input device through the door magnetic input module; and the Mcu core controller is connected with the intelligent card identification module.
The Mcu core controller is connected with the anti-disassembly switch input device through the anti-disassembly input module; the device is connected with an external 485 probe through a 485 controller; the serial port debugging tool is connected with the serial port debugging tool through a 232 control module; the Mcu core controller is connected with the power supply control module. The data input module comprises a keyboard module and a wiegand protocol module which are connected, and the wiegand protocol module is connected with a wiegand keyboard. The network module comprises an Ethernet driving module and a wifi module, wherein the Ethernet driving module is used for accessing the Ethernet. The intelligent card recognition module comprises an ID card recognition module and an IC/public transportation/identity card/NFC card recognition module, and can be compared with information stored in a memory which is not lost when power is lost during recognition of the cards or signals, and the door can be automatically opened. Regardless of the comparison result, the information is transmitted to the cloud center.
The on-board battery and the clock unit are provided with button batteries, so that the power-down time of the CPU clock module is not lost, and the clock is still normally timed after power-down. Data is provided for a power down calculation code.
Further, each module is described in detail as follows:
the power control module manages 12v power supplied from outside and supplies the power to all components and all modules in the board through conversion or conversion to 3.3v and 5 v.
The MCU controller is a core CPU, and runs programs to manage all hardware.
The power failure does not lose the memory chip, is used for storing parameters to be used in the setting process, an ip address, a mac address and parameters of an access cloud center, and meets the requirements of IC card numbers and keyboard passwords.
And the audible and visual alarm module drives the led indicator lamp on the panel and the buzzer on the board.
The Wifi module is connected to the wireless router.
An ethernet driver, managing the ethernet interface, is connected to the router.
The liquid crystal display driving module drives the display screen and displays the two-dimensional code.
The intelligent card identification module is used for identifying the ID card, the IC/public transport/identity card/NFC card identification module and identifying the cards or signals.
The clock unit and the on-board battery provide MCU clock guarantee and ensure that the power down time is not lost.
And (3) controlling the output level, outputting a high-low level or providing a relay output.
The door opening button is externally connected with a button for directly controlling the door opening.
The door magnet inputs an external door magnet signal.
The defense area input is externally connected with defense area signal input, and is mainly connected with an anti-disassembly switch.
The 485 controller provides a 485 signal interface and is connected with other 485 peripherals.
The 232 control module provides serial port connection of TTL level and provides test data port.
And the wiegand interface module is used for providing keyboard data access in a wiegand format.
A keyboard module providing a 12 key keyboard.
The core cpu can display the two-dimensional code according to the networking state and the command of the cloud center, drive the door control relay to act, and realize the management of the door opening of the network control.
As shown in fig. 2, the processing steps of the cloud control end on the network access controller are as follows:
(1) The cloud control end checks the network and the database, establishes connection with the network access controller, sends a command for inquiring whether the access is connected online or not, and checks the response of the network access controller;
(2) In a networking state, the network access controller detects a two-dimensional code request of a network or a card swiping information request or a key password sent by the network access controller, and determines whether to authorize after authentication calculation; the smart card for authorization can be set to be authorized by the cloud control end or can be directly authorized by a built-in valid card number in the non-power-down storage module of the network access controller.
(3) In the disconnected network state, the cloud control end performs real-time password calculation, pushes the password to a micro-credit user, and the user inputs the password on a controller keyboard.
As shown in fig. 3, the corresponding network access controller operates as follows:
1) Reading MCU clock module time, resetting a memory, reading memory data, resetting a display screen/ID/IC/network/wifi/key module;
2) The cloud control terminal is connected, the cloud control terminal is executed to command the display of the two-dimensional code and pair time with the center, the obtained center time is updated to the internal clock of the MCU, the cloud center command is executed to open/close the door, and the query command response of the cloud center on whether the access controller is connected is executed;
3) Judging whether a keyboard/an external wiegand keyboard has key information input, performing input authentication calculation on keys, and performing authentication to determine whether to open an access control;
4) Judging whether a smart card swipes or not, and sending information to a cloud control end for judgment;
5) Judging whether a remote control signal exists or not, and controlling the door opening and closing of the door.
As shown in fig. 4, is a processing step of the authorized password calculation algorithm.
Because the equipment of each network access control is synchronous with the time of the cloud center, the synchronous mode is realized through the time stamp issued by the cloud access control center, and the time stamp is translated into time-of-year, month-day-time-minute-second in the equipment, each network equipment has a unique electronic serial number, and therefore the access password in 1 hour of the current period can be calculated by the electronic serial number of the known equipment and the current accurate time of the equipment.
The algorithm is used for the access controller which is effective for a short time and has low safety requirements, and is the only algorithm used by the invention.
Because the algorithm involves the built-in unique electronic serial number of the equipment and the clock in the machine, the 2 information users cannot obtain the information, and therefore even if the algorithm is simple, the cracking is difficult.
The electronic serial number of the device has 6 numbers (characters) which are unique, and abcdef, for example, B00001 corresponds to 3 bytes of 16 system numbers, namely 0xB0,0x00 and 0x01;
time, month, day, and time are hijk: mm: dd: ss, respectively, for example 2018:04:19:01 at 2018:04, month 19, day 1.
New data were combined using 16 bins:
1-3byte, abcdef, e.g., (0 xB0,0x00,0x 01) is represented herein as a 16-ary number;
4 th byte, the last digit k of the year for the high 4 bits (the last digit of the year can only be 0-9, the corresponding 4bit binary number is 0000-1001), the low 4 bits of 4 th byte is "month" mm (month "is only 1-12, the corresponding 4bit binary number is 0001-1100), the bits 0-bit4 of 5 th byte is" day "dd (day" is only 1-31, the corresponding 5bit binary number is 00001-11111), the bit5-bit7 of 5 th byte is the integer of the quotient after "when" ss is divided by 3 (the value when "is 0-23, the integer range of the quotient after dividing by 3 is 0-7, the conversion to 3bit binary number is 000-111), thus become new 5byte data;
(2) The data is circularly shifted to the left, and the number of shifting times is shifted out to the lowest bit according to the value ss of' time
( Loop left instruction "_crol_": and (3) circularly shifting left instructions, and supplementing high-order removed data by low-order bits. )
The new 16-ary data (& 6000030833) is formed by & H (abcdefghij) = (& hxxxxx_crol_ss); the method comprises the steps of carrying out a first treatment on the surface of the
Then the obtained result is inverted
&H(ABCDEFGHIJ)=~&H(abcdefghij);
The result was & H9ffffcf7cc.
The 16-bit number is then formed into a data string, i.e., a 10-bit cipher, in the form of a 4-bit BDC code.
His password is 9FFFFCF7CC,
is effective in the above time period
2018, 04, 19, 1,0 minutes, 0 seconds to 2018, 04, 19, 1, 59 minutes, 59 seconds
When the intelligent door control system is used, the cloud and the network door control controller can calculate to verify the state and the door opening authority of the door control controller.
The method for judging the disconnection comprises the following steps:
the information displayed by the two-dimension code of the network access control equipment comprises the latest information which is finally received by the equipment and is synchronous with the central network, and if the scanning code received by the center is not matched with the real-time data of the center, the network can be defined as broken, and the information is automatically converted into a sending password. The method for judging the disconnection is a method which is uniquely used in the current industry, fully utilizes the advantages of the mobile phone WeChat code scanning, and the mobile phone generally does not disconnect the network so as to judge the disconnection of the whole system.
As shown in fig. 5, the steps of sending the real-time password by the cloud control end are as follows:
1) The cloud control terminal receives the electronic serial number of the door control equipment and stores the first 3 bytes needed for data calculation under the condition that the door control equipment is known to be online;
2) Transmitting a command for displaying the two-dimensional code with a time stamp under the online condition of the known door control equipment, and forming the current time into the last 2 bytes required by data calculation;
3) Combining the obtained 5byte data, and performing cyclic shift calculation;
4) Performing inverse calculation on the shifted 5byte data;
5) Converting 5byte data into 10 key values;
6) Receiving the two-dimensional code uploaded by the WeChat, and obtaining the time for displaying the code by the door control equipment;
7) If the standard time difference between the time and the current cloud center is 3 minutes, the network is considered to be broken;
8) And sending the calculated time authorization key to the micro-credit user, wherein the micro-credit user receives the key and the field key door controller receives the key to open the door.
Correspondingly, the steps of determining the real-time password by the network access controller are as follows:
(1) Receiving a two-dimensional code display command with a time stamp issued by a cloud center for tabulation;
(2) Taking out the relevant 3 bytes from the electronic serial number of the local machine and forming 5 bytes together with the current time of the local machine;
(3) Performing cyclic shift on the 5byte data;
(4) Performing inverse calculation on the shifted 5byte data;
(5) Converting 5byte data into 10 key values;
(6) Judging whether the action of the key is received, if yes, comparing with the 10 key values, if yes, controlling the door opening action, otherwise, comparing with the stored effective key value, determining whether to ignore the key value, and reporting to the center.
When the intelligent cloud door control system is used, the cloud door control center normally operates, equipment is required to be installed on a wall surface, a bottom cover is installed, a network cable/a power line/a door control relay line/a door opening key and the like are connected to a wiring terminal of a main control box through the bottom cover, if a control circuit such as a door magnet is installed, then the main control box is installed on the bottom cover, and screws are turned on, so that the intelligent cloud door control system can be used.
After power-on, the door opening time is adjusted through keyboard input commands, and then the door is restarted through keyboard commands, so that the equipment can automatically network, be connected into the center and perform data interaction with the center because the center ip is built in the equipment.
And after the code scanning, the user for initial use automatically accesses the cloud access control center to prompt registration, waits for authorization verification, and prompts a WeChat of verification success.
Whether the network is normal or not, whether the equipment is connected to the center or not is judged, the user can open WeChat, scan the two-dimensional code displayed on the screen, if the network is normal and the user is legal, after the code scanning, the center can send a command to the equipment, and start gating and opening the door; if the two-dimensional code is identified by the data obtained from the broken network state center, the user is sent an access code which is valid for a certain time.
If the user uses various smart cards including identity cards, the user can swipe the card according to the keyboard command to add the card to the memory of the control device according to the steps, then the user can swipe the card to enter, and the user can apply for special passwords, and in any way, the user can transmit the special passwords to the center through the network every time, and if the network is temporarily broken, the special passwords can be stored and wait for the network to be smoothly transmitted to the center.
The system is not only suitable for the management of various entrances and exits, but also is particularly suitable for the management of unmanned supermarkets and the management of unmanned off-line experience shops, and is also an effective system for the public security management of public security floating population because the identity card can be used.
The invention has the following characteristics:
first: the entrance guard part is provided with a network module which provides a channel for communication with a remote cloud entrance guard center, and the second: providing a two-dimensional code image by using a display screen, wherein the specific content is that the two-dimensional code image is remotely transmitted through a network, and the information is provided with real-time and center access information; thirdly, a touch password keyboard is provided; a fourth smart card/id card identifier with multiple frequency multiple protocols; fifth,: and the cloud access control center is used for calculating and pushing WeChat and remotely controlling. A user can obtain authorization of the cloud access control center through code scanning by a WeChat mobile phone, the cloud access control center remotely opens a door, a new two-dimensional code can be issued every 40 seconds at the center, and all the two-dimensional codes are valid only at the current moment and invalid at the time; if the network cannot be connected, the center can intelligently calculate and send an effective door opening password to a legal user in a certain time according to the two-dimensional code data of the current equipment, so that the safety is ensured.
The invention has the following beneficial effects:
the first is the display of two-dimensional code screen and operation method thereof, no matter networking or not networking, the two-dimensional code image always appears on the screen, and the screen has the automatic back light and goes out the function to the display two-dimensional code can not be too little, influences the result of multiple cell-phone scanning.
And secondly, the mobile terminal is simple to use, and the mobile terminal (mobile phone, tablet personal computer and the like) is used for slightly scanning codes to open the door, so that the operation flow is simple.
Thirdly, the door is opened in multiple ways, and a card (a common IC card, a CPU card, a bus card, an identity card and a mobile phone NFC card swiping mode), a two-dimensional code scanning mode, a password mode and the like are provided.
Fourth, the function of the keyboard key is not only used for inputting passwords, but also various operations including adding users can be performed.
Fifthly, the wireless router has a multi-network mode, supports Wifi and Tcp/Ip, can use an Ethernet to plug in RJ45 and a network plug, and can use WIFI to connect with the wireless router.
And the sixth one has the functions of time following and calibration, and under the condition of network, the time following and the network time calibration are carried out, no network embedded battery is arranged, the automatic time keeping is accurate, and the recalibration is not needed within 1 month.
And seventh, the cloud center has a management function, different door opening authorities, such as the distinction of frequent guests and visitors, are granted according to different personnel applications, and interaction with users can be realized through WeChat.
Eighth, the cloud center can interact with the network access control device through the network.
And thirdly, the cloud center automatically judges whether the network access control is normally online according to the received two-dimensional code information, if the network access control is found to be offline, a legal authorization code in the current effective period is automatically calculated according to an algorithm, and the legal authorization code is pushed to a user for use.
By installing the system, access control can be performed by using approaches such as a mobile phone, the system has certain effectiveness, the safety is enhanced although the system is in a network mode, the condition of personnel entering and exiting is recorded, and particularly, the scanning result of an identity card can be recorded, so that the system is more suitable for floating population management.

Claims (6)

1. A network access control system capable of being intelligently controlled by networking and disconnection is characterized in that: the cloud control system comprises a plurality of network access controllers connected with a cloud control end, wherein a Mcu core controller is arranged in the network access controllers, and the Mcu core controller is connected with a display screen through a display screen driving module; the control system comprises a level output control module, a gate control relay and an electric phase lock, wherein the level output control module is connected with the gate control relay; the door opening button is connected with the door opening button through the door opening button access module; the door magnetic input device is connected with the door magnetic input device through the door magnetic input module; the Mcu core controller is connected with a network module, a data input module, a clock module, an audible and visual alarm module and a storage module, and is also connected with an intelligent card identification module; the Mcu core controller is connected with the anti-disassembly switch input device through the anti-disassembly input module; the device is connected with an external 485 probe through a 485 controller; the serial port debugging tool is connected with the serial port debugging tool through a 232 control module; the Mcu core controller is connected with the power supply control module; the data input module comprises an on-board keyboard module and a wiegand protocol module capable of being connected with a wiegand keyboard, and the wiegand protocol module is connected with the wiegand keyboard;
the cloud control end processes the network access controller as follows:
(1) The cloud control end checks the network and the database, establishes connection with the network access controller, sends a command for inquiring whether the access controller is connected online or not, and checks the response of the network access controller, and sends a current effective two-dimensional code to the network access controller every 40 seconds;
(2) In the networking state of the controller, the cloud receives information sent by the mobile phone code scanning of the user, compares the information with the database information, and sends a door opening control command to the network access controller after intelligent calculation approval is carried out;
or the network controller receives the card swiping information of the user, firstly compares the card swiping information with the information content of the internal memory of the controller, controls whether to open the door, synchronously sends a card swiping information request to the cloud, and determines whether to authorize to open the door after data comparison and intelligent calculation in the cloud and the database;
the intelligent card is set to be authorized by the cloud control end or directly by the network access controller;
(3) In the off-network state of the controller, the cloud control end receives the mobile phone code scanning information of the user to perform real-time password calculation, pushes the password to a WeChat user, and the user inputs the password on a keyboard of the controller;
the working steps of the network access controller are as follows:
(1) Reading MCU time, resetting a memory, reading memory data, and resetting a display screen/ID/IC/network/wifi/key module;
(2) The cloud control terminal is connected, the cloud control terminal is executed to command the display of the two-dimensional code and the time of the two-dimensional code is paired with the center, the obtained center time is stored in an internal time storage unit of the MCU, the cloud center command is executed to open/close the door, and the query command response of the cloud center on whether the access controller is connected is executed;
(3) Judging whether an on-board keyboard or an external wiegand keyboard has key information input, performing input authentication calculation on keys, performing authentication to determine whether to open an access control, and sending information to a cloud;
(4) Judging whether a smart card swipes or not, and sending information to a cloud control end for judgment;
(5) Judging whether a remote control signal exists or not, and controlling the door opening and closing of the door.
2. The network access control system capable of being intelligently controlled by both networking and off-line according to claim 1, wherein: the network module comprises an Ethernet driving module and a wifi module, wherein the Ethernet driving module is used for accessing the Ethernet.
3. The network access control system capable of being intelligently controlled by both networking and off-line according to claim 1, wherein: the intelligent card identification module comprises an ID card identification module and an IC/public transportation/identity card/NFC card identification module, when the cards or signals are identified, the network access controller compares the cards or signals with information stored in a memory which is not lost when power is lost, automatic opening is realized, and the information is transmitted to a cloud center no matter how the comparison result is obtained;
on the circuit board that the network access control ware set up, on-board battery and clock unit are furnished with button cell for guarantee CPU clock module power failure time and not lose, and make the clock still normally time after the power failure, provide data for outage calculation password.
4. The network access control system capable of being intelligently controlled by both networking and off-line according to claim 1, wherein: in the step (3), the time of the network access controller and the time of the cloud control end are synchronous, each network access controller is provided with a unique electronic serial number, the calculation of the real-time password is carried out according to the electronic serial number and the time, the password is effective in the time of one hour, and the calculation process of the real-time password is as follows:
(1) According to the electronic serial number and time, forming 5 16 byte numbers, firstly selecting 6 unique numbers or characters of the electronic serial number, and correspondingly forming 3byte numbers of the 16 byte numbers; the current time is composed of 4 th byte and 5 th byte, and the time of year, month and day is respectively hijk, dd, ss, and the high 4bit of the 4 th byte is the last k of the year; the lower 4 bits of the 4 th byte are "month" mm, the bits 0-4 of the 5 th byte are "day" dd, the bits 5-7 of the 5 th byte are integers of the quotient of "when" ss divided by 3, thus becoming new 5byte data, which is assumed to be & Hxxxxxxxxxx;
(2) The data is circularly shifted to the left, the number of shifting times is changed to the lowest bit according to the value ss of 'time',
the new 16-ary data is formed by the value of = (& hxxxxxxxx_crol_ss) of the value of H (abcdefghij);
(3) Inverting the obtained result, & H (ABCDEFGHIJ) = & H (ABCDEFGHIJ);
(4) The obtained 16-system number is formed into a data string which is a 10-bit password in a mode of 4 bits and a BDC code.
5. The network access control system capable of being intelligently controlled by both networking and off-line according to claim 4, wherein: the cloud control end sends the real-time password as follows:
(1) The cloud control terminal receives the electronic serial number of the door control equipment and stores the first 3 bytes needed for data calculation under the condition that the door control equipment is known to be online;
(2) Transmitting a command for displaying the two-dimensional code with a time stamp under the online condition of the known door control equipment, and forming the current time into the last 2 bytes required by data calculation;
(3) Combining the obtained 5byte data, and performing cyclic shift calculation;
(4) Performing inverse calculation on the shifted 5byte data;
(5) Converting 5byte data into 10 key values;
(6) Receiving the two-dimensional code uploaded by the WeChat, and obtaining the time for displaying the code by the door control equipment;
(7) If the standard time difference between the time and the current cloud center is 3 minutes, the network is considered to be broken;
(8) And sending the calculated key password of the time authorization to the micro-credit user, wherein the micro-credit user receives and keys on site, and the door controller receives and verifies the key password with the time and the electronic serial number in the controller to open the door.
6. The network access control system capable of being intelligently controlled by both networking and off-line according to claim 1, wherein: the information displayed by the two-dimension code of the network access controller comprises the latest information which is finally received by the device and is synchronous with the network of the cloud control end, and if the scanning code received by the cloud control end is not matched with the real-time data of the cloud control end, the network is defined as disconnected, and the network is automatically converted into a sending password.
CN201810590337.0A 2018-06-08 2018-06-08 Network access control system capable of being intelligently controlled by networking and disconnection Active CN108492433B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810590337.0A CN108492433B (en) 2018-06-08 2018-06-08 Network access control system capable of being intelligently controlled by networking and disconnection

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810590337.0A CN108492433B (en) 2018-06-08 2018-06-08 Network access control system capable of being intelligently controlled by networking and disconnection

Publications (2)

Publication Number Publication Date
CN108492433A CN108492433A (en) 2018-09-04
CN108492433B true CN108492433B (en) 2023-11-24

Family

ID=63342333

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810590337.0A Active CN108492433B (en) 2018-06-08 2018-06-08 Network access control system capable of being intelligently controlled by networking and disconnection

Country Status (1)

Country Link
CN (1) CN108492433B (en)

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110895840A (en) * 2018-09-13 2020-03-20 杭州涂鸦信息技术有限公司 Wireless-based remote door opening method and door lock device thereof
CN109360306A (en) * 2018-09-20 2019-02-19 深圳中泰智丰物联网科技有限公司 The method for unlocking of smart lock finishing mode
CN109191643A (en) * 2018-09-26 2019-01-11 新开普电子股份有限公司 A kind of method that access-control card reader is realized
CN111243138B (en) * 2020-01-13 2022-04-19 上海威派格智慧水务股份有限公司 Real-time access control authentication method
CN111243139B (en) * 2020-01-13 2022-04-19 上海威派格智慧水务股份有限公司 Access control system
CN111739204A (en) * 2020-07-30 2020-10-02 杭州中安网脉信息技术有限公司 File management method and system for confidential cabinet
CN112134696B (en) * 2020-08-21 2024-07-16 杭州海兴电力科技股份有限公司 Dynamic password generation and communication method and communication system of electric energy meter

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101447098A (en) * 2008-12-19 2009-06-03 弗曼科斯(上海)电子有限公司 Method for entrance guard controller program network online upgrade and system thereof
CN105574967A (en) * 2015-12-16 2016-05-11 温州大学 Intelligent access control system and operation method thereof
WO2016197330A1 (en) * 2015-06-09 2016-12-15 深圳市迈斯云门禁网络科技有限公司 Access control management method and system
CN106846559A (en) * 2016-12-20 2017-06-13 杭州古北电子科技有限公司 A kind of intelligent district access control system
WO2017161469A1 (en) * 2016-03-23 2017-09-28 上海唐年实业股份有限公司 Internet of things-based self-service vending terminal system for use in hotel room
CN107481362A (en) * 2017-08-03 2017-12-15 安徽泰然信息技术工程有限公司 Access control system and access control method

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101447098A (en) * 2008-12-19 2009-06-03 弗曼科斯(上海)电子有限公司 Method for entrance guard controller program network online upgrade and system thereof
WO2016197330A1 (en) * 2015-06-09 2016-12-15 深圳市迈斯云门禁网络科技有限公司 Access control management method and system
CN105574967A (en) * 2015-12-16 2016-05-11 温州大学 Intelligent access control system and operation method thereof
WO2017161469A1 (en) * 2016-03-23 2017-09-28 上海唐年实业股份有限公司 Internet of things-based self-service vending terminal system for use in hotel room
CN106846559A (en) * 2016-12-20 2017-06-13 杭州古北电子科技有限公司 A kind of intelligent district access control system
CN107481362A (en) * 2017-08-03 2017-12-15 安徽泰然信息技术工程有限公司 Access control system and access control method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
基于RFID技术的车辆管理门禁系统设计;尼涛, 杨宏, 艾春安;工业控制计算机(第09期);全文 *

Also Published As

Publication number Publication date
CN108492433A (en) 2018-09-04

Similar Documents

Publication Publication Date Title
CN108492433B (en) Network access control system capable of being intelligently controlled by networking and disconnection
US11830306B2 (en) Systems and methods for controlling access to physical space
US20200410797A1 (en) Method and system for activating electronic lockers
CN104103111B (en) Automatically-controlled door access control system based on Bluetooth of mobile phone communication and its implementation
CN201681427U (en) Electronic information lock
CN104134253B (en) A kind of gate control system and gate inhibition's deployment method
CN108868344B (en) Non-embedded remote monitoring intelligent door lock
CN112750242B (en) Dynamic coded lock unlocking method and system and dynamic coded lock circuit
KR20160140363A (en) Method for providing door-lock control service based on internet of things and server for providing service
CN104052817A (en) Intelligent door and intelligent door control method and system
CN110097674A (en) A kind of access control method and system based on two dimensional code
CN111968275A (en) Intelligent lock, and communication method and device of intelligent building visual intercom system
CN104766409A (en) Long-distance electric storage box management system
CN104574601A (en) Intelligent door-lock system
CN106097490B (en) A kind of intelligent lock, the door-locking system and method for unlocking being made of lockset
CN205320109U (en) System for entrance guard is opened to scanning two -dimensional code
CN106023371A (en) Hotel door access control method and device
CN103590670A (en) Electronic lock control system, light-operated electronic lock and electronic lock controlling mobile electronic device
CN207046622U (en) A kind of building elevator Intelligent security apparatus
CN105649469B (en) A kind of intelligent safe Double-puzzle control system
CN205263917U (en) Access control system
CN214202481U (en) Dynamic coded lock circuit
CN109754507A (en) Control method for door lock, device and its system
Gindi et al. Smart Lock System Using RFID
CN109057551B (en) Intelligent lockset suitable for leasing and anti-interference method suitable for intelligent lockset

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant