CN108540470B - Authentication system and method based on electronic authentication mark - Google Patents

Authentication system and method based on electronic authentication mark Download PDF

Info

Publication number
CN108540470B
CN108540470B CN201810294381.7A CN201810294381A CN108540470B CN 108540470 B CN108540470 B CN 108540470B CN 201810294381 A CN201810294381 A CN 201810294381A CN 108540470 B CN108540470 B CN 108540470B
Authority
CN
China
Prior art keywords
authentication mark
electronic authentication
user
information
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810294381.7A
Other languages
Chinese (zh)
Other versions
CN108540470A (en
Inventor
林国斌
黄振华
刘朝伟
苏恒
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CN201810294381.7A priority Critical patent/CN108540470B/en
Publication of CN108540470A publication Critical patent/CN108540470A/en
Application granted granted Critical
Publication of CN108540470B publication Critical patent/CN108540470B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Health & Medical Sciences (AREA)
  • Biomedical Technology (AREA)
  • General Health & Medical Sciences (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

An authentication system and method based on electronic authentication mark specifically includes: the electronic authentication mark generation terminal is used for generating a corresponding electronic authentication mark according to the certificate information and the identity information of the user after manually checking the certificate of the user, and sending the electronic authentication mark to the encryption and decryption server for encryption; the mobile terminal is used for storing the encrypted electronic authentication mark; the electronic authentication mark reading device is used for reading the electronic authentication mark provided by the mobile terminal and sending the electronic authentication mark to the encryption and decryption server for decryption; the encryption and decryption server is used for encrypting and decrypting the electronic authentication mark, the certificate information of the user, the identity information and the like; the electronic authentication mark registration server is used for associating and storing the electronic authentication mark generated by the electronic authentication mark generation terminal user with the corresponding certificate information and identity information of the user, and comparing the certificate information and identity information of the user with the corresponding electronic authentication mark to obtain the validity of the electronic authentication mark.

Description

Authentication system and method based on electronic authentication mark
Technical Field
The invention relates to the field of identity identification and security authentication, in particular to an authentication system and method based on an electronic authentication mark.
Background
At present, some legal certificates held by customers, such as port and macadamia pass, military officer certificate, passport and the like, are legal, but are difficult to identify by a system when entering an electronic information processing process, and a machine is required to be provided with specific equipment or to be identified by a manual assistance mode. When the user transacts the business which needs to be transacted by holding the legal certificate, the certificate is difficult to be automatically read by the system, the user generally needs to go to a bank counter to receive manual service, and the user can not use self-service equipment or mobile equipment to process the business, so that the trouble of queuing at a bank outlet is brought to the user, the workload is increased for a bank teller, and the labor cost of the bank is increased.
Disclosure of Invention
The invention aims to provide an authentication system and method based on an electronic authentication mark, which solve the problem that a legal certificate is difficult to read by self-service equipment or mobile equipment, reduce the trouble of a client for handling business when the client goes to a bank and save the labor cost for the bank.
In order to achieve the above object, the authentication system based on an electronic authentication mark provided by the present invention specifically comprises an electronic authentication mark generation terminal, an electronic authentication mark reading device, an encryption/decryption server, an electronic authentication mark registration server and a mobile terminal; the electronic authentication mark generation terminal is used for generating a corresponding electronic authentication mark according to the certificate information and the identity information of the user after manually checking the certificate of the user, and sending the electronic authentication mark to the encryption and decryption server for encryption; the mobile terminal establishes communication connection with the electronic authentication mark generating terminal, and acquires and stores the encrypted electronic authentication mark; the electronic authentication mark reading device is used for reading the electronic authentication mark provided by the mobile terminal and sending the electronic authentication mark to the encryption and decryption server for decryption; the encryption and decryption server is used for encrypting plaintext information in the electronic authentication mark output by the electronic authentication mark generation terminal, returning the encrypted electronic authentication mark to the electronic authentication mark generation terminal, decrypting the electronic authentication mark output by the electronic authentication mark reading equipment, acquiring certificate information and identity information of the user according to the decrypted electronic authentication mark, and sending the certificate information and the identity information of the user to the electronic authentication mark registration server to be compared with the corresponding electronic authentication mark; the electronic authentication mark registration server is used for associating and storing the electronic authentication mark generated by the electronic authentication mark generation terminal user with the corresponding user certificate information and identity information, comparing the user certificate information and identity information sent by the encryption and decryption server with the corresponding electronic authentication mark, and obtaining the validity of the electronic authentication mark according to the comparison result.
In the above authentication system based on an electronic authentication mark, preferably, the electronic authentication mark generation terminal further includes a certificate acquisition unit, a biometric feature acquisition unit, a user password setting module, and an authentication mark reading module; the certificate acquisition unit comprises a display module and an input module; wherein the display module is used for providing a user interaction display interface; the input module is connected with the display module and is used for inputting the user certificate information into the electronic authentication mark generation terminal; the biological characteristic acquisition unit comprises a fingerprint identification module and a shooting module, and is used for acquiring the biological characteristic information of the user; the shooting module is used for shooting certificate photos and user face photos and extracting user face features; the fingerprint identification module is used for acquiring user fingerprint characteristic information; the user password setting module is used for binding a password set by a user with the electronic authentication mark and extracting the electronic authentication mark according to the password; the authentication mark reading module is used for verifying the reading condition of the electronic authentication mark.
In the above authentication system based on an electronic authentication mark, preferably, the electronic authentication mark reading apparatus further includes a login unit, a biometric identification unit, and a public key encryption module; the login unit comprises a login prompt module and a password input module; the login prompt module is used for providing an interactive interface for a user to display or enter the electronic authentication mark; the password entry module is used for inputting the password to extract the electronic authentication mark after the electronic authentication mark is read; the biological characteristic identification unit comprises a shooting module and a fingerprint characteristic extraction module, and is used for acquiring the biological characteristic information of the user; the shooting module is used for shooting the face of a user and extracting the feature data of the face of the user; the fingerprint feature extraction module is used for acquiring user fingerprint feature information; the public key encryption module is used for encrypting the electronic authentication mark and the user biological characteristic information obtained by the electronic authentication mark reading device according to a public key provided by the encryption and decryption server and then sending the encrypted electronic authentication mark and the user biological characteristic information to the encryption and decryption server for decryption.
In the above authentication system based on an electronic authentication mark, preferably, the encryption/decryption server includes an encryption module and a decryption module; the encryption module is used for encrypting the electronic authentication mark and the user biological characteristic information input by the electronic authentication mark generation terminal; the decryption module is used for decrypting the electronic authentication mark and the user biological characteristic information input by the electronic authentication mark reading equipment.
In the above authentication system based on an electronic authentication mark, preferably, the electronic authentication mark registration server further includes an authentication mark retrieval module, an electronic authentication mark registration module, and an electronic authentication mark verification module; the authentication mark retrieval module is used for calculating data corresponding to the electronic authentication mark according to the serial number of the electronic authentication mark; the electronic authentication mark registration module is used for storing the electronic authentication mark and corresponding certificate information and identity information of a user and generating a number according to the certificate information and the identity information of the user; the electronic authentication mark checking module is used for comparing the user biological characteristic information received by the encryption and decryption server and the certificate information and the identity information of the user in the electronic authentication mark with locally stored information, and obtaining the validity of the electronic authentication mark according to the comparison result.
The invention also provides an authentication method based on the electronic authentication mark, which comprises the following steps: the method comprises the following steps: after manually checking the certificate of the user, generating a corresponding electronic authentication mark according to the certificate information and the identity information of the user, encrypting plaintext information in the electronic authentication mark, and then associating and storing the encrypted plaintext information with the corresponding certificate information and the identity information of the user; step two: reading the electronic authentication mark provided by the mobile terminal, sending the electronic authentication mark to a far end for decryption, obtaining the certificate information and the identity information of the user according to the decrypted electronic authentication mark, comparing the certificate information and the identity information of the user with the corresponding electronic authentication mark, and obtaining the validity of the electronic authentication mark according to the comparison result.
In the above authentication method based on an electronic authentication mark, preferably, the first step includes: after the certificate of the user is checked manually and passed, inputting biological characteristic information of the user and certificate information and identity information of the user; encrypting the biological characteristic information of the user, the certificate information of the user and the identity information through a preset public key and then sending the encrypted information to a remote terminal for decryption; the remote end stores the decrypted biological characteristic information of the user, the certificate information of the user and the identity information into a database to generate a corresponding number; and generating an electronic authentication mark according to the number, the preset public key information and the access address of the database.
In the above authentication method based on an electronic authentication mark, preferably, the second step includes: reading the electronic authentication mark on the mobile terminal, and acquiring the number in the electronic authentication mark, the access address of the database and the preset public key information; uploading the serial number to the database according to the access address of the database; the database checks local storage data according to the received number, and returns confirmation information when the local storage contains the number; acquiring a password input by a user and biological characteristic information of the user according to the confirmation information, encrypting the number, the password input by the user and the biological characteristic information of the user through the preset public key information, and uploading to a remote terminal for decryption; the remote end obtains the number, the password input by the user and the biological characteristic information of the user through decryption of a private key corresponding to the preset public key information, and inquires local storage data in the database according to the number; the database extracts locally stored biological characteristic information of the user, certificate information and identity information of the user according to the password input by the user and compares the biological characteristic information, the certificate information and the identity information with the data decrypted at the remote end; and obtaining the validity of the electronic authentication mark according to the comparison result.
In the above authentication method based on an electronic authentication mark, preferably, the biometric information includes one or more combinations of a human face, a fingerprint, a voiceprint, an iris, and a vein.
In the above authentication method based on the electronic authentication mark, preferably, the electronic authentication mark includes one or more combinations of a two-dimensional code, a string of characters, a fingerprint of a certifier, a picture, and a chip card.
The invention has the beneficial technical effects that: the problem that the legal certificate cannot be read by the self-service equipment and the mobile equipment is solved; meanwhile, the problem that the electronic authentication mark is counterfeited in the using process is solved by adopting password verification and various auxiliary technologies such as dynamic two-dimensional code compiling and reading, face recognition, fingerprint feature recognition, certificate validity period control and the like; ensuring that the electronic mark is generated for authentication of the person holding the legitimate document and must be used by the holder of the legitimate document for the validity period of the document.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the principles of the invention. In the drawings:
FIG. 1 is a general block diagram of an electronic authentication mark provided by the present invention;
FIG. 2 is a block diagram of an electronic authentication mark generating apparatus according to the present invention;
FIG. 3 is a block diagram of an electronic authentication mark reading apparatus according to the present invention;
FIG. 4 is a block diagram of a data encryption/decryption server module according to the present invention;
FIG. 5 is a block diagram of an electronic authentication note reading device provided by the present invention;
FIG. 6 is a flow chart of the generation of an electronic authentication mark provided by the present invention;
fig. 7 is a flowchart illustrating the reading and verification of the electronic authentication mark according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the present invention is described in further detail below with reference to the embodiments and the accompanying drawings. The exemplary embodiments and descriptions of the present invention are provided to explain the present invention, but not to limit the present invention.
The authentication system and method based on electronic authentication mark provided by the invention mainly confirm the legality of the certificate of the client and the identity of the client through manual counter authentication, and generate the electronic authentication mark after the authenticity of the certificate is confirmed on the counter, the electronic authentication mark comprises various information in the certificate and auxiliary information set for safety, and simultaneously, a password synchronously used with the electronic authentication mark is generated, and the password can be modified after the user logs in the system by using the electronic authentication mark, and can generate a data item of a static or dynamic two-dimensional code. The certificate electronic authentication mark can be read for self-service equipment or mobile equipment in a proper form (such as a two-dimensional code), or a certificate holder inputs a dynamically generated character string form on the equipment for reading the electronic authentication mark, and the certificate electronic authentication mark is matched with a password input by a user and a matched biological identification technology, so that the effect of indirectly reading the legal certificate of a client is realized, and the problem that the certificate cannot be read can be broken through by one-time manual authentication. The specific form of the electronic authentication mark may be: the two-dimensional code, a string of character strings, the fingerprint of a licensee, a picture, a chip card or a combination of a plurality of the above forms; the matched biological identification technology can be as follows: one or more combinations of faces, fingerprints, voice prints, irises, veins, and other common biometric identification methods. Wherein, the electronic authentication mark contains a brief code information form and an electronic data form. And the brief code information form is used for providing the brief code information form to a client in a character string form. The first four digits of the brevity code are type information of the electronic authentication mark, and the latter digits consist of letters and numbers. The length is determined according to the convenience of service entry, but the minimum length is not less than 12 bits. The electronic data form comprises public key information encrypted by information, a domain name address of a decryption server and ciphertext information. The cipher text in the electronic authentication mark contains all the information in the client certificate, and the information is manually input when the certificate is manually checked. In addition, the method also comprises the following steps: teller information, authentication site organization, site information, and authentication time. And the validity period of the electronic authentication mark is consistent with the validity period of the certificate.
The following describes the generation and use process of the electronic authentication mark by taking a two-dimensional code as an example, and electronic authentication marks of other forms have a similar generation and use flow as the two-dimensional code.
Referring to fig. 1, the authentication system based on an electronic authentication mark provided by the present invention specifically includes an electronic authentication mark generation terminal 2, an electronic authentication mark reading device 3, an encryption/decryption server 4, an electronic authentication mark registration server 5, and a mobile terminal 7; the electronic authentication mark generation terminal 2 is used for generating a corresponding electronic authentication mark according to the certificate information and the identity information of the user after manually checking the certificate of the user, and sending the electronic authentication mark to the encryption and decryption server 4 for encryption; the mobile terminal 7 is in communication connection with the electronic authentication mark generation terminal 2 and is used for storing the encrypted electronic authentication mark; the electronic authentication mark reading device 3 is configured to read the electronic authentication mark provided by the mobile terminal 7, and send the electronic authentication mark to the encryption and decryption server 4 for decryption; the encryption and decryption server 4 is configured to encrypt plaintext information in the electronic authentication mark output by the electronic authentication mark generation terminal, return the encrypted electronic authentication mark to the electronic authentication mark generation terminal 2, decrypt the electronic authentication mark output by the electronic authentication mark reading device 3, obtain certificate information and identity information of the user according to the decrypted electronic authentication mark, and send the certificate information and identity information of the user to the electronic authentication mark registration server 5 to compare the certificate information and identity information with corresponding electronic authentication marks; the electronic authentication mark registration server 5 is configured to associate and store the electronic authentication mark generated by the electronic authentication mark generation terminal user with the corresponding user certificate information and identity information, compare the user certificate information and identity information sent by the encryption and decryption server 4 with the corresponding electronic authentication mark, and obtain the validity of the electronic authentication mark according to the comparison result.
In the above embodiment, the authentication system may further include a network 1, a database 6, and the like, and specifically, in actual operation, the authentication system based on the electronic authentication mark includes the following parts, and specific operation and connection relationships of the parts are mainly as follows:
the network 1 includes a router, a gateway, and an electronic authentication mark generation terminal 2 and an electronic authentication mark registration server 5 connected in a wireless or wired manner, an electronic authentication mark reading device 3, and a mobile device 7.
And the electronic authentication mark generation terminal 2 is used for inputting the certificate information of the client into the system after the certificate of the client is manually checked. Meanwhile, the facial features and certificate photos of the client are recorded through a shooting module attached to the terminal, and the fingerprint feature information of the client is recorded through a fingerprint identification module of the terminal for subsequent comparison. After the recording of the certificate information, the face feature information and the fingerprint feature information of a client is completed and a certificate photo is acquired, the terminal generates an electronic authentication mark, stores the encrypted electronic authentication mark in a flash memory of mobile equipment through a client application program on the mobile equipment 7 such as a mobile phone, and when the terminal is used, restores the electronic authentication mark data through decryption and generates a generated dynamic two-dimensional code with a short term of validity. And verifying whether the verification mark is valid or not by reading the verification device of the electronic authentication mark.
The reading equipment 3 of the electronic authentication mark is mainly used for reading the electronic authentication mark of a user, and for the electronic authentication mark displayed in a two-dimensional code form, the equipment scans the two-dimensional code displayed by the mobile equipment 7, analyzes the two-dimensional code, extracts specific data of the electronic authentication mark, splits the read authentication mark, acquires ciphertext data, uploads the ciphertext data to an encryption and decryption service to decompress, decrypt and restore the authentication mark, extracts data in the electronic authentication mark, and is used for comparing identity information of a client.
And the encryption and decryption database 4 is used for encrypting and compressing the plaintext information of the electronic authentication mark transmitted from the electronic authentication mark generation terminal 2 in the figure 1 into a ciphertext. And is transmitted back to the electronic authentication mark generation terminal 2 in fig. 1. In addition, the mobile device 7 is responsible for compressing, decrypting and restoring the ciphertext transmitted by the electronic authentication mark, and transmitting the ciphertext to the electronic authentication mark registration server 5 for comparison and verification. The validity of the electronic authentication mark is confirmed.
The electronic authentication mark registration server 5 is mainly used for recording marks generated by the electronic authentication mark generation terminal of the device 2 of fig. 1.
And a database 6 for storing the electronic authentication mark data written by the server 5 for storing the electronic authentication mark physically.
And a mobile device 7 for running a mobile client application to receive the generated electronic authentication token and to retain it within the device. And when the electronic authentication mark needs to be used, displaying the two-dimensional code or the dynamic character string of the electronic authentication mark through the mobile client application program.
Therefore, the self-service equipment and the mobile equipment can conveniently and quickly read the electronic authentication mark information through the cooperation of the parts, so that a certificate holder can conveniently and quickly enter the field of self-service, the authentication and verification process of the certificate can be accelerated, and the improvement of the service efficiency of the self-service equipment is facilitated. Of course, the above examples are merely provided to more clearly explain the specific construction of the electronic authentication mark-based authentication system provided by the present invention, and do not limit it in any way.
Referring to fig. 2, in an embodiment of the present invention, the electronic authentication mark generating terminal further includes a certificate acquiring unit, a biometric characteristic acquiring unit, a user password setting module 205, and an authentication mark reading module 206; the certificate acquisition unit comprises a display module 201 and an entry module 202; wherein the display module 201 is used for providing a user interaction display interface; the input module 202 is connected to the display module 201 and is configured to input user certificate information into the electronic authentication mark generation terminal; the biological characteristic acquisition unit comprises a fingerprint identification module 204 and a recording module 203, and is used for acquiring the biological characteristic information of the user; the shooting module 203 is used for shooting certificate photos and user face photos and extracting user face features; the fingerprint identification module 204 is configured to obtain user fingerprint feature information; the user password setting module 205 is configured to bind a password set by a user with the electronic authentication mark, and extract the electronic authentication mark according to the password; the authentication mark reading module 206 is used for verifying the reading condition of the electronic authentication mark.
In actual work, the electronic authentication mark generation terminal 2 may include a display module 201, an entry module 202, a recording module 203, a fingerprint feature extraction module 204, a user password setting module 205, and an authentication mark reading module 206. The functional use of each module is as follows: the display module 201 is configured to display a related operation and prompt interface for certificate information entry, for example, an input operation interface; the input module 202 is used for inputting certificate information into an input acquisition window in the system; the recording module 203 is used for taking a certificate photo and a user face photo and extracting user face features, such as a camera; the fingerprint feature extraction module 204 is configured to collect fingerprint feature information of a user; the user password setting module 205 is used for setting a use password of the electronic authentication mark by a user; the authentication mark reading module 206 is used to read whether the newly generated electronic authentication mark is readable, so as to verify whether the electronic authentication mark is successfully generated.
Referring to fig. 3, in an embodiment of the present invention, the electronic authentication mark reading apparatus further includes a login unit, a biometric unit, and a public key encryption module 305; the login unit comprises a login prompt module 301 and a password input module 302; the login prompt module 301 is configured to provide an interactive interface for a user to display or enter the electronic authentication mark; the password entry module 302 is configured to input the password to extract the electronic authentication mark after the electronic authentication mark is read; the biological characteristic identification unit comprises a shooting module 303 and a fingerprint characteristic extraction module 304, and is used for obtaining the biological characteristic information of the user; the shooting module 303 is used for shooting the face of the user and extracting the feature data of the face of the user; the fingerprint feature extraction module 304 is configured to obtain user fingerprint feature information; the public key encryption module 305 is configured to encrypt the electronic authentication token and the user biometric information obtained by the electronic authentication token reading device according to the public key provided by the encryption and decryption server, and then send the encrypted electronic authentication token and the user biometric information to the encryption and decryption server for decryption.
In practical operation, the electronic authentication mark reading apparatus 3 may be composed of a login display module 301, a password login module 302, a recording module 303, a fingerprint feature extraction module 304, a public key encryption module 305, and a network communication module 306, and the functions and purposes of the modules are as follows: the login prompting module 301 is used for prompting a user to display or enter an electronic authentication mark; the password entry module 302 is used for a user to input a password of the electronic authentication mark after the electronic authentication mark is read; the shooting module 303 is used for shooting the face of the user and extracting the feature data of the face of the user; the fingerprint feature extraction module 304 is configured to extract fingerprint feature information for use; the public key encryption module 305 is configured to use a public key provided by the encryption and decryption server 4 in fig. 1 to obtain each item of data from the reading device, encrypt the data, and upload the encrypted data; the network communication module 306 is configured to upload various pieces of information acquired by the electronic authentication mark reading apparatus 3 in fig. 1 to an electronic authentication mark server through a network, and acquire certificate information downloaded by the server.
Referring to fig. 4, in an embodiment of the present invention, the encryption/decryption server includes an encryption module 401 and a decryption module 402; the encryption module 401 is configured to encrypt the electronic authentication mark input by the electronic authentication mark generation terminal and the related information of the electronic authentication mark, such as the biometric information of the user; the decryption module 402 is configured to decrypt the electronic authentication mark and the user biometric information input by the electronic authentication mark reading device, for example, using a private key to decrypt data related to the electronic authentication mark encrypted by a public key; in actual practice, the encryption/decryption server may further include a network communication module 403, and the network communication module 403 is used to establish a data interaction channel with the electronic authentication mark registration server 5 in fig. 1.
Referring to fig. 4, in an embodiment of the present invention, the electronic authentication mark registration server further includes an authentication mark retrieval module 501, an electronic authentication mark registration module 502, and an electronic authentication mark verification module 503; the authentication mark retrieval module 501 is configured to calculate data corresponding to the electronic authentication mark according to the serial number of the electronic authentication mark; the electronic authentication mark registration module 502 is configured to store the electronic authentication mark and corresponding certificate information and identity information of the user, and generate a number according to the certificate information and the identity information of the user; the electronic authentication mark checking module 503 is configured to compare the user biometric information received by the encryption and decryption server and the user certificate information and identity information in the electronic authentication mark with locally stored information, and obtain the validity of the electronic authentication mark according to a comparison result.
In practical work, the electronic authentication mark registration server is mainly composed of an electronic authentication mark retrieval module 501, an electronic authentication mark registration module 502, an electronic authentication mark verification module 503 and a network communication module 504, and the functions and purposes of the modules are as follows: the electronic authentication mark retrieval module 501 is configured to retrieve a data item of an electronic authentication mark according to a specific electronic authentication mark number; the electronic authentication mark registration module 502 is configured to store related data of the electronic authentication mark, such as certificate information, fingerprint feature information, password, and facial feature information, which is specifically shown in the following table:
Figure BDA0001618365710000091
the invention also provides an authentication method based on the electronic authentication mark, which comprises the following steps: the method comprises the following steps: after manually checking the certificate of the user, generating a corresponding electronic authentication mark according to the certificate information and the identity information of the user, encrypting plaintext information in the electronic authentication mark, and then associating and storing the encrypted plaintext information with the corresponding certificate information and the identity information of the user; step two: reading the electronic authentication mark provided by the mobile terminal, sending the electronic authentication mark to a far end for decryption, obtaining the certificate information and the identity information of the user according to the decrypted electronic authentication mark, comparing the certificate information and the identity information of the user with the corresponding electronic authentication mark, and obtaining the validity of the electronic authentication mark according to the comparison result.
Referring to fig. 6, an embodiment of the present invention provides a process for generating an electronic authentication mark, which includes the following steps: after the certificate of the user is checked manually and passed, inputting biological characteristic information of the user and certificate information and identity information of the user; encrypting the biological characteristic information of the user, the certificate information of the user and the identity information through a preset public key and then sending the encrypted information to a remote terminal for decryption; the remote end stores the decrypted biological characteristic information of the user, the certificate information of the user and the identity information into a database to generate a corresponding number; and generating an electronic authentication mark according to the number, the preset public key information and the access address of the database.
In actual work, as shown in step 601, after the certificate holder provides the certificate to the teller, the counter staff checks and confirms the certificate manually; then, step 602 is entered, and different processes are performed according to the result of the manual review. If the manual reviewer's certificate is not met or there are other non-matches, then step 603 is entered. If the manual verification is correct, step 605 is entered. The cashier prompts the bearer for an exception in step 603 and proceeds to step 610 where the generation of the electronic authentication mark is terminated.
In the illustrated step 605, the teller enters credential information. The specific process is as follows: the teller uses the electronic authentication generation mark terminal 1 shown in fig. 1, displays a generation interface of the electronic authentication mark by means of a display module of the terminal as shown by a display module 201 in fig. 2, and inputs certificate information by using an input module of the terminal of the electronic authentication mark as shown by an input module 202 in fig. 2, such as: certificate name, certificate holder name, certificate validity period, certificate issuing agency name and the like; then, a shooting module of the electronic authentication mark generation terminal is used, as shown in a shooting module 203 of fig. 2, for shooting the front cover, the back cover and the inner page of the certificate, shooting the certificate holder and storing the left back. The teller uses the fingerprint extraction module 204 shown in fig. 2 to extract the bearer fingerprint information before proceeding to step 606.
In step 606, the teller requests the user to retain fingerprint feature information using the user password setup module 205 of FIG. 2, and then proceeds to step 607. In step 607, after the information collected in the above steps is packaged, the public key provided by the encryption/decryption server 4 in fig. 1 is used to encrypt the data packet, and the data packet is uploaded to the electronic authentication mark registration server 5 in fig. 1 through the network; the server transmits the received electronic authentication information packet to the encryption server 4 shown in fig. 1 connected with the server, decrypts the data packet by using a private key, restores the data packet data, stores the data packet data in the database 6 shown in fig. 1, and generates a record number; the record number is then transmitted back to the electronic authentication mark generation terminal 1 shown in fig. 1, and the terminal generates a two-dimensional code based on the obtained record number transmitted back, the public key information provided by the encryption/decryption server 4 of fig. 1, and the access address of the electronic authentication mark registration server 5 of fig. 1, and the two-dimensional code is displayed to the licensee through the display screen of the display module 201 of fig. 2. The licensee uses the mobile device to download the designated mobile App, uses the App of the module to scan the two-dimensional code of the display screen of the passenger, the App analyzes the address, the public key information and the record number of the registration server 5 of the electronic authentication mark in fig. 1 in the two-dimensional code, the App writes the address, the public key information and the record number into the storage medium of the mobile device 7 in fig. 1, and the step 608 is executed after the write is successful.
In step 608, the bearer uses the mobile device 7 of fig. 1 to display the two-dimensional code of the electronic authentication mark, the authentication mark reading module 206 shown in fig. 2 of the electronic authentication mark generation terminal 1 of fig. 1 reads the two-dimensional code and analyzes the two-dimensional code, extracts the public key, the serial number of the electronic authentication mark and the address information of the server, sends the above data items to the electronic authentication mark server 5 of fig. 1 through the network, extracts the certificate information packet according to the serial number of the electronic authentication mark by the electronic authentication mark server and returns the certificate information packet to the electronic authentication mark generation terminal 1 of fig. 1, compares the obtained data with the generated data by the device, and proceeds to step 609. In step 609, if the data item returned from the server is consistent with the data generated by the electronic mark generation terminal, the electronic authentication mark is successfully generated, and step 610 is entered, i.e. the mark generation process is ended. If not, step 604 is entered to prompt generation of an exception, and step 605 may be entered to verify the correct data.
Referring to fig. 7, in an embodiment of the present invention, the second step, i.e. the reading process of the electronic authentication mark, includes: reading the electronic authentication mark on the mobile terminal, and acquiring the number in the electronic authentication mark, the access address of the database and the preset public key information; uploading the serial number to the database according to the access address of the database; the database checks local storage data according to the received number, and returns confirmation information when the local storage contains the number; acquiring a password input by a user and biological characteristic information of the user according to the confirmation information, encrypting the number, the password input by the user and the biological characteristic information of the user through the preset public key information, and uploading to a remote terminal for decryption; the remote end obtains the number, the password input by the user and the biological characteristic information of the user through decryption of a private key corresponding to the preset public key information, and inquires local storage data in the database according to the number; the database extracts locally stored biological characteristic information of the user, certificate information and identity information of the user according to the password input by the user and compares the biological characteristic information, the certificate information and the identity information with the data decrypted at the remote end; and obtaining the validity of the electronic authentication mark according to the comparison result.
In actual practice, as shown in step 701 of fig. 7, a user presents the mobile device 7 shown in fig. 1, running an electronic authentication mark-up client application therein, which exposes data items residing in the mobile device media, including: an electronic authentication mark number, a two-dimensional code validity time limit (including generation time and validity duration of the two-dimensional code), an authentication server address, a dynamic two-dimensional code, a two-dimensional code displayed against the electronic authentication mark reading device 3 of fig. 1 according to the prompt requirement of the login prompt module 301 shown in fig. 3 of the electronic authentication mark reading device 3 of fig. 1, a two-dimensional code read by the device, and a step 702. In step 702, if the two-dimensional code is read normally and the two-dimensional code is within the valid time limit, step 704 is entered; otherwise, step 710 is entered to prompt the client to read the two-dimensional code abnormally, and then step 709 is entered to end the reading process. In step 704, the electronic authentication mark reading apparatus 3 shown in fig. 1 analyzes the electronic authentication mark number and the IP address of the electronic authentication mark registration server 5 shown in fig. 1 from the two-dimensional code, and uploads the electronic authentication mark number to the electronic authentication mark registration server 5 shown in fig. 1. The electronic authentication mark registration server 5 determines whether the mark exists in the database of the service based on the number of the electronic authentication mark, and if the mark exists, the electronic authentication mark is valid. And will pass the valid identification to the electronic authentication tag reading apparatus 3 of fig. 1, informing that the tag is valid. Step 705 is then entered.
Before step 705, the electronic authentication reading device 3 of fig. 1 lets the prover enter the password through the password entry module 302 shown in fig. 3. The user is photographed by the camera module 303 shown in fig. 3, and after the fingerprint feature of the user is extracted by the fingerprint feature extraction module 304 shown in fig. 3, the process proceeds to step 705. In step 705, the public key information extracted from the two-dimensional code by the electronic authentication mark reading device 3 in fig. 1 is combined and packaged with the user password, the user photo, the user fingerprint feature information, and the electronic authentication mark number collected in the above steps, and encrypted by using the public key, and the ciphertext is uploaded to the electronic authentication mark server 5 in fig. 1 through the network communication module 306 in fig. 3, and the process proceeds to step 706 in fig. 7.
In step 706, the electronic authentication mark registration server 5 in fig. 1 uploads the electronic authentication mark reading device 3 shown in fig. 1 to the data decryption and restoration device by using the encryption and decryption server 4 in fig. 1 according to the received electronic authentication mark server, and extracts the electronic authentication mark data from the database 6 shown in fig. 1 according to the electronic authentication mark record number therein, and then enters step 707.
In step 707, the electronic authentication mark registration server 5 in fig. 1 compares whether the password in the record is consistent with the uploaded password input by the user, if not, the process directly enters step 710, and returns a comparison failure flag to the electronic authentication reading device 3 in fig. 1, and the device prompts the client that the electronic authentication mark is abnormal in comparison, and ends the comparison process. If the password comparison is successful, further determining whether the current time point is within the certificate validity period, if the current time point exceeds the certificate validity period, entering an abnormal prompting step in step 710, and returning an identifier of the validity period to the electronic authentication mark reading device 3 in fig. 1. If the current time point is still in the certificate validity period, comparing whether the uploaded fingerprint features are consistent with the records retained in the records or not, extracting the facial features of the client from the uploaded photos, and comparing whether the facial features are consistent with the facial features retained in the records or not. If both comparisons are satisfactory, the electronic authentication mark comparison is passed, and the electronic authentication mark registration server 5 of fig. 1 downloads the certificate information fields in the record to the electronic authentication mark reading device 3 of fig. 1. The device uses the read certificate information for the business process of the subsequent operation of the user, thereby entering step 709 and normally ending the reading process of the electronic authentication mark. If the comparison does not meet the requirement, the electronic authentication mark registration server 5 in fig. 1 downloads the comparison failure identifier to the electronic authentication mark reading device 3 in fig. 1, and the device prompts the user that the comparison fails, exits from the reading process, and ends the reading process of the electronic authentication mark shown in step 709.
The invention has the beneficial technical effects that: the problem that the legal certificate cannot be read by the self-service equipment and the mobile equipment is solved; meanwhile, the problem that the electronic authentication mark is counterfeited in the using process is solved by adopting password verification and various auxiliary technologies such as dynamic two-dimensional code compiling and reading, face recognition, fingerprint feature recognition, certificate validity period control and the like; ensuring that the electronic mark is generated for authentication of the person holding the legitimate document and must be used by the holder of the legitimate document for the validity period of the document.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are only exemplary embodiments of the present invention, and are not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.

Claims (8)

1. An authentication system based on an electronic authentication mark is characterized by comprising an electronic authentication mark generating terminal, an electronic authentication mark reading device, an encryption and decryption server, an electronic authentication mark registration server and a mobile terminal;
the electronic authentication mark generating terminal is used for generating a corresponding electronic authentication mark according to the certificate information of the user, the biological characteristic information of the user and the identity information after the certificate of the user is checked manually, and sending the electronic authentication mark to the encryption and decryption server for encryption;
the mobile terminal establishes communication connection with the electronic authentication mark generating terminal, and acquires and stores the encrypted electronic authentication mark;
the electronic authentication mark reading device is used for reading the electronic authentication mark provided by the mobile terminal and sending the electronic authentication mark to the encryption and decryption server for decryption;
the encryption and decryption server is used for encrypting plaintext information in the electronic authentication mark output by the electronic authentication mark generation terminal, returning the encrypted electronic authentication mark to the electronic authentication mark generation terminal, decrypting the electronic authentication mark output by the electronic authentication mark reading device, acquiring certificate information, user biological characteristic information and identity information of the user according to the decrypted electronic authentication mark, and sending the certificate information, the user biological characteristic information and the identity information of the user to the electronic authentication mark registration server to be compared with the corresponding electronic authentication mark;
the electronic authentication mark registration server is used for associating and storing the electronic authentication mark generated by the electronic authentication mark generation terminal user with the corresponding user certificate information, user biological characteristic information and identity information, comparing the user certificate information, user biological characteristic information and identity information sent by the encryption and decryption server with the corresponding electronic authentication mark, and obtaining the validity of the electronic authentication mark according to the comparison result;
the electronic authentication mark registration server also comprises an authentication mark retrieval module, an electronic authentication mark registration module and an electronic authentication mark verification module;
the authentication mark retrieval module is used for calculating data corresponding to the electronic authentication mark according to the serial number of the electronic authentication mark;
the electronic authentication mark registration module is used for storing the electronic authentication mark and corresponding certificate information and identity information of a user and generating a number according to the certificate information and the identity information of the user;
the electronic authentication mark checking module is used for comparing the user biological characteristic information received by the encryption and decryption server and the certificate information and the identity information of the user in the electronic authentication mark with locally stored information, and obtaining the validity of the electronic authentication mark according to the comparison result.
2. The electronic authentication mark-based authentication system according to claim 1, wherein the electronic authentication mark generation terminal further comprises a certificate acquisition unit, a biometric acquisition unit, a user password setting module, and an authentication mark reading module;
the certificate acquisition unit comprises a display module and an input module; wherein the display module is used for providing a user interaction display interface; the input module is connected with the display module and is used for inputting the user certificate information into the electronic authentication mark generation terminal;
the biological characteristic acquisition unit comprises a fingerprint identification module and a shooting module, and is used for acquiring the biological characteristic information of the user; the shooting module is used for shooting certificate photos and user face photos and extracting user face features; the fingerprint identification module is used for acquiring user fingerprint characteristic information;
the user password setting module is used for binding a password set by a user with the electronic authentication mark and extracting the electronic authentication mark according to the password;
the authentication mark reading module is used for verifying the reading condition of the electronic authentication mark.
3. The electronic authentication mark-based authentication system according to claim 2, wherein the electronic authentication mark reading device further comprises a login unit, a biometric recognition unit, and a public key encryption module;
the login unit comprises a login prompt module and a password input module; the login prompt module is used for providing an interactive interface for a user to display or enter the electronic authentication mark; the password entry module is used for inputting the password to extract the electronic authentication mark after the electronic authentication mark is read;
the biological characteristic identification unit comprises a shooting module and a fingerprint characteristic extraction module, and is used for acquiring the biological characteristic information of the user; the shooting module is used for shooting the face of a user and extracting the feature data of the face of the user; the fingerprint feature extraction module is used for acquiring user fingerprint feature information;
the public key encryption module is used for encrypting the electronic authentication mark and the user biological characteristic information obtained by the electronic authentication mark reading device according to a public key provided by the encryption and decryption server and then sending the encrypted electronic authentication mark and the user biological characteristic information to the encryption and decryption server for decryption.
4. The electronic authentication mark-based authentication system according to claim 3, wherein the encryption/decryption server comprises an encryption module and a decryption module; the encryption module is used for encrypting the electronic authentication mark and the user biological characteristic information input by the electronic authentication mark generation terminal; the decryption module is used for decrypting the electronic authentication mark and the user biological characteristic information input by the electronic authentication mark reading equipment.
5. An authentication method based on an electronic authentication mark, the method comprising:
the method comprises the following steps: after the certificate of the user is manually checked, generating a corresponding electronic authentication mark according to the certificate information of the user, the biological characteristic information of the user and the identity information, encrypting plaintext information in the electronic authentication mark, and then associating and storing the encrypted plaintext information with the certificate information of the user, the biological characteristic information of the user and the identity information of the user;
step two: reading the electronic authentication mark provided by the mobile terminal, sending the electronic authentication mark to a far end for decryption, obtaining the certificate information, the user biological characteristic information and the identity information of the user according to the decrypted electronic authentication mark, comparing the certificate information, the user biological characteristic information and the identity information of the user with the corresponding electronic authentication mark, and obtaining the validity of the electronic authentication mark according to the comparison result; the first step comprises the following steps:
after the certificate of the user is checked manually and passed, inputting biological characteristic information of the user and certificate information and identity information of the user;
encrypting the biological characteristic information of the user, the certificate information of the user and the identity information through a preset public key and then sending the encrypted information to a remote terminal for decryption;
the remote end stores the decrypted biological characteristic information of the user, the certificate information of the user and the identity information into a database to generate a corresponding number;
and generating an electronic authentication mark according to the number, the preset public key information and the access address of the database.
6. The authentication method based on the electronic authentication mark according to claim 5, wherein the second step comprises:
reading the electronic authentication mark on the mobile terminal, and acquiring the number in the electronic authentication mark, the access address of the database and the preset public key information;
uploading the serial number to the database according to the access address of the database;
the database checks local storage data according to the received number, and returns confirmation information when the local storage contains the number;
acquiring a password input by a user and biological characteristic information of the user according to the confirmation information, encrypting the number, the password input by the user and the biological characteristic information of the user through the preset public key information, and uploading to a remote terminal for decryption;
the remote end obtains the number, the password input by the user and the biological characteristic information of the user through decryption of a private key corresponding to the preset public key information, and inquires local storage data in the database according to the number;
the database extracts locally stored biological characteristic information of the user, certificate information and identity information of the user according to the password input by the user and compares the biological characteristic information, the certificate information and the identity information with the data decrypted at the remote end;
and obtaining the validity of the electronic authentication mark according to the comparison result.
7. The electronic authentication mark-based authentication method according to claim 6, wherein the biometric information comprises one or more combinations of a human face, a fingerprint, a voiceprint, an iris, and a vein.
8. An authentication method based on an electronic authentication mark according to any of the claims 5 or 6, characterized in that the electronic authentication mark comprises one or more combinations of two-dimensional code, a string of characters, fingerprint of the bearer, a picture, a chip card.
CN201810294381.7A 2018-04-04 2018-04-04 Authentication system and method based on electronic authentication mark Active CN108540470B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810294381.7A CN108540470B (en) 2018-04-04 2018-04-04 Authentication system and method based on electronic authentication mark

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810294381.7A CN108540470B (en) 2018-04-04 2018-04-04 Authentication system and method based on electronic authentication mark

Publications (2)

Publication Number Publication Date
CN108540470A CN108540470A (en) 2018-09-14
CN108540470B true CN108540470B (en) 2021-03-12

Family

ID=63481813

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810294381.7A Active CN108540470B (en) 2018-04-04 2018-04-04 Authentication system and method based on electronic authentication mark

Country Status (1)

Country Link
CN (1) CN108540470B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109493465A (en) * 2018-10-09 2019-03-19 四川航天信息有限公司 No card moves in method, apparatus and system
CN109583976A (en) * 2018-10-10 2019-04-05 山西特信环宇信息技术有限公司 A kind of certificate chain electronic tax billing system and its application method
CN109583888A (en) * 2018-11-09 2019-04-05 山西特信环宇信息技术有限公司 A kind of certificate chain campus electronics card system
CN109583166A (en) * 2018-11-09 2019-04-05 山西特信环宇信息技术有限公司 A kind of certificate chain electronic certificate system
CN109635654A (en) * 2018-11-09 2019-04-16 山西特信环宇信息技术有限公司 A kind of certificate chain electronic agent card system
CN109584132A (en) * 2018-11-09 2019-04-05 山西特信环宇信息技术有限公司 A kind of certificate chain electronics residence permit system
CN110401542A (en) * 2019-08-05 2019-11-01 中国工商银行股份有限公司 Electronic identity voucher generation method, terminal and server
CN114697043B (en) * 2022-03-14 2023-11-14 国网山东省电力公司信息通信公司 Identity authentication unified management platform based on blockchain technology and authentication method thereof

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI537732B (en) * 2007-09-27 2016-06-11 克萊夫公司 Data security system with encryption
CN201657022U (en) * 2010-04-23 2010-11-24 朱杰 Network type identity document check system
CN103295050A (en) * 2012-02-23 2013-09-11 陕西省公安厅 Mobile phone type multi-modal biological characteristic multidimensional-code encrypted identity card
US9444800B1 (en) * 2012-11-20 2016-09-13 Amazon Technologies, Inc. Virtual communication endpoint services
CN105635036B (en) * 2014-10-27 2018-08-21 任子行网络技术股份有限公司 A kind of verification system and method for electronic ID card
CN104994114B (en) * 2015-07-27 2018-10-16 上海位坤电子商务有限公司 A kind of identity authorization system and method based on electronic ID card

Also Published As

Publication number Publication date
CN108540470A (en) 2018-09-14

Similar Documents

Publication Publication Date Title
CN108540470B (en) Authentication system and method based on electronic authentication mark
US10341123B2 (en) User identification management system and method
EP3435591B1 (en) 1:n biometric authentication, encryption, signature system
CN109660501B (en) System and method for providing blockchain based multi-factor personal identity verification
CN105590199B (en) Payment method and payment system based on dynamic two-dimensional code
CN110290134B (en) Identity authentication method, identity authentication device, storage medium and processor
WO2018072588A1 (en) Approval signature verification method, mobile device, terminal device, and system
KR101747833B1 (en) System and method for operating electronic vote, and recording medium thereof
CN106936775A (en) A kind of authentication method and system based on fingerprint recognition
WO2018148900A1 (en) Fingerprint identification-based authentication method and device, and transaction system
US11182466B2 (en) User authentication apparatus and recording media
US11240029B2 (en) Method of registration and access control of identity for third-party certification
KR20220061919A (en) Method and server for providing service of disital signature based on face recognition
EP3443501B1 (en) Account access
CN113298476B (en) Safety consignment method, system, electronic equipment and storage medium
CN104835039A (en) Data label generation method
CN113779534A (en) Personal information providing method and service platform based on digital identity
US20130090059A1 (en) Identity verification
US20160342996A1 (en) Two-factor authentication method
JP6541311B2 (en) Decryption system, program and method using cryptographic information code
TWI677842B (en) System for assisting a financial card holder in setting password for the first time and method thereof
CN111353144A (en) Identity authentication method and device
JPH05290149A (en) System and device for fingerprint collation and certification
TWI736280B (en) Identity verification method based on biometrics
TWI679603B (en) System for assisting a financial card holder in setting password for the first time and method thereof

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant