CN109426709A - A kind of bio-identification chip and method - Google Patents

A kind of bio-identification chip and method Download PDF

Info

Publication number
CN109426709A
CN109426709A CN201710726048.4A CN201710726048A CN109426709A CN 109426709 A CN109426709 A CN 109426709A CN 201710726048 A CN201710726048 A CN 201710726048A CN 109426709 A CN109426709 A CN 109426709A
Authority
CN
China
Prior art keywords
bio
algorithm
random number
identification
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710726048.4A
Other languages
Chinese (zh)
Inventor
黄欢
赵刚
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Jinghong Technology Co., Ltd
Original Assignee
Shanghai Jinghong Electronic Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Jinghong Electronic Technology Co Ltd filed Critical Shanghai Jinghong Electronic Technology Co Ltd
Priority to CN201710726048.4A priority Critical patent/CN109426709A/en
Publication of CN109426709A publication Critical patent/CN109426709A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/45Structures or tools for the administration of authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/72Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/76Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in application-specific integrated circuits [ASIC] or field-programmable devices, e.g. field-programmable gate arrays [FPGA] or programmable logic devices [PLD]

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Mathematical Physics (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)
  • Collating Specific Patterns (AREA)

Abstract

The present invention provides a kind of bio-identification chip and method.The chip includes enciphering algorithm module and bio-identification module;The enciphering algorithm module is electrically connected with the bio-identification module, and the enciphering algorithm module is for encrypting the bio-identification module, and the bio-identification module is for carrying out bio-identification.A kind of bio-identification chip provided by the invention and method, pass through setting enciphering algorithm module and bio-identification module, and bio-identification module is encrypted using enciphering algorithm module, the content for solving the storage of existing security encryption chip is easy arbitrarily to be distorted, and the lower technical problem of software security of its operation.

Description

A kind of bio-identification chip and method
Technical field
The present invention relates to field of biological recognition, more particularly, to a kind of bio-identification chip and method.
Background technique
With information-based high speed development, it is tight that the loss of significant data has become people, business and government is faced One of urgent thing, although distinct program deploys secrecy provision, case of divulging a secret still emerges one after another.
With increasingly severeer, the increasingly development of attention security encryption chip both at home and abroad at present of security situation, safety Encryption chip is generally made of the input/output interface that microprocessor, memory and reader are communicated.Currently, safety adds Close chip is generally divided into two classes: a kind of using decipherment algorithm built in hardware decryption processor, another kind is added using built-in MCU Decryption.
Although current encryption chip can realize the encipherment protection of software and data, above-mentioned two classes encryption chip setting Inside the target device CPU of operation secure routine, and key or password are written in advance, can all be set to target after decrypted authentication The judgement symbol whether standby mono- secure routine of CPU executes, and judgement mark can be modeled and crack, therefore target There are biggish security breaches for equipment cpu system.Therefore, the content of existing security encryption chip is easy arbitrarily to be distorted, and Cause the software security run on veneer lower.
Summary of the invention
The present invention is easy arbitrarily to be distorted to solve the content of security encryption chip storage in the prior art, and it is transported The lower problem of capable software security provides a kind of bio-identification chip and method.
According to an aspect of the present invention, a kind of bio-identification chip is provided, the chip include enciphering algorithm module and Bio-identification module;The enciphering algorithm module is electrically connected with the bio-identification module, the enciphering algorithm module for pair The bio-identification module is encrypted, and the bio-identification module is for carrying out bio-identification.
Further, the enciphering algorithm module includes: random number generation unit, and the random number generation unit is for giving birth to At the first random number;Key generating unit, the Key generating unit are used to encrypt first random number according to Encryption Algorithm, And generate the first encrypted random number;Encrypted random number authentication unit, the encrypted random number authentication unit are used for described first Encrypted random number is matched with stored second encrypted random number.
Preferably, the Encryption Algorithm includes: aes algorithm, DES algorithm, 3DES algorithm, SHA1 algorithm, SHA256 algorithm With one of SM1 algorithm or a variety of.
Further, the bio-identification module includes: image processing unit, and described image processing unit is used for according to life The collected biometric image signal acquisition biometric image information of object camera;Recognition unit, the recognition unit are used According to bio-identification algorithm, the biological information in the biometric image information is obtained;Judging unit, the judgement Unit exports matching result for matching the biological information with stored biological attribute data.
Preferably, the bio-identification module comprised determining that before bio-identification first encrypted random number with The second encrypted random number successful match.
Preferably, the bio-identification algorithm includes: Algorithm of Iris Recognition, retina recognizer, the identification calculation of canthus line One of method, face recognition algorithms and hand vein recognition algorithm are a variety of.
Preferably, the bio-identification algorithm burning is in the chips.
Preferably, first random number is calculated according to password code and/or the biological attribute data and/or other encryptions Acquired in the data that method generates.
Preferably, the chip further includes microprocessor module, the microprocessor module and the enciphering algorithm module Electrical connection, data of the microprocessor module for operation and the control chip interior.
Preferably, the microprocessor module be one chip microcomputer, the one chip microcomputer include CPU, RAM, ROM, timer and counter.
Preferably, the chip further includes circuit module, and the circuit module is used to manage the power supply of the chip, adjustment The voltage of the chip and the circuit for controlling the chip.
Preferably, the circuit module include one in password and numbered cell, physical security circuit and I/O interface or It is multiple.
According to another aspect of the present invention, a kind of biometric discrimination method is provided, which comprises S1 adds first Close random number is matched with stored second encrypted random number;S2, if first encrypted random number adds with described second Close nonces match success, biological information is matched with stored biological attribute data, and export matching result.
Further, biological information is matched with stored biological attribute data described in step S2, and Matching result is exported, is specifically included: S21, according to the collected biometric image signal acquisition biological characteristic of biological camera Image information;S22 obtains the biological information in the biometric image information according to bio-identification algorithm;S23, will The biological information is matched with the stored biological attribute data, and exports matching result.
A kind of bio-identification chip provided by the invention and method pass through setting enciphering algorithm module and bio-identification mould Block, and bio-identification module is encrypted using enciphering algorithm module, solve the content of existing security encryption chip storage It is easy arbitrarily to be distorted, and the lower technical problem of software security of its operation.
Detailed description of the invention
Fig. 1 is according to a kind of structural schematic diagram of bio-identification chip provided in an embodiment of the present invention;
Fig. 2 is according to a kind of structural schematic diagram of bio-identification chip provided in an embodiment of the present invention;
Fig. 3 is according to a kind of concrete structure schematic diagram of bio-identification chip provided in an embodiment of the present invention;
Fig. 4 is according to a kind of flow chart of biometric discrimination method provided in an embodiment of the present invention;
Fig. 5 is according to a kind of flow chart of biometric discrimination method provided in an embodiment of the present invention.
Specific embodiment
With reference to the accompanying drawings and examples, specific embodiments of the present invention will be described in further detail.Implement below Example is not intended to limit the scope of the invention for illustrating the present invention.
Fig. 1 is according to a kind of structural schematic diagram of bio-identification chip provided in an embodiment of the present invention, as shown in Figure 1, institute Stating chip includes: enciphering algorithm module 1 and bio-identification module 2;The enciphering algorithm module 1 and the bio-identification module 2 Electrical connection, for encrypting to the bio-identification module 2, the bio-identification module 2 is used for the enciphering algorithm module 1 Carry out bio-identification.
Specifically, the bio-identification chip includes enciphering algorithm module 1 and bio-identification module 2, wherein Encryption Algorithm Module 1 for being encrypted to bio-identification module 2, only when in enciphering algorithm module 1 the first encrypted random number with deposited After second encrypted random number successful match of storage, the function of bio-identification module 2 could be executed.Wherein, bio-identification module 2 Function is bio-identification.
Specifically, the encryption in above-described embodiment, which refers to, changes original information data with certain special algorithm, so that Even if the information that the user of unauthorized has been encrypted, but the method because not knowing decryption, still can not understand the content of information.
Specifically, the bio-identification in above-described embodiment refers to through computer and optics, acoustics, biosensor and life The high-tech means such as object Principle of Statistics are intimately associated, and utilize human body intrinsic physiological property (such as fingerprint, face, iris, vein Deng) and behavioural characteristic (such as person's handwriting, sound, gait) Lai Jinhang personal identification identification.
A kind of bio-identification chip provided in an embodiment of the present invention passes through setting enciphering algorithm module and bio-identification mould Block, and bio-identification module is encrypted using enciphering algorithm module, solve the content of existing security encryption chip storage It is easy arbitrarily to be distorted, and the lower technical problem of software security of its operation.
Based on the above embodiment, enciphering algorithm module 1 described in above-described embodiment is further described in the present embodiment, The enciphering algorithm module 1 includes: random number generation unit, and the random number generation unit is for generating the first random number;It is close Key generation unit, the Key generating unit is used to encrypt first random number according to Encryption Algorithm, and generates the first encryption Random number;Encrypted random number authentication unit, the encrypted random number authentication unit is for by first encrypted random number and Second encrypted random number of storage is matched.
Specifically, random number generation unit is used to receive the clear-text passwords sent from microprocessor module, and will in plain text Password is converted to random number, makes differentiation here for by the random number and the random number of subsequent appearance, which is named For the first random number.
Wherein, clear-text passwords transmits or saves as the password of plaintext, in particular to saves password or transmission of network password When, it is plaintext character that is not hiding, directly displaying, rather than passes through encrypted ciphertext.
It should be noted that the first random number can be generated according to the clear-text passwords that microprocessor module is sent, it can also It is generated with the data generated according to password code, biological attribute data or other Encryption Algorithm, the present embodiment does not limit this It is fixed.
Specifically, Key generating unit is used to encrypt the first random number according to Encryption Algorithm, and it is random to generate the first encryption Number, wherein Encryption Algorithm be it is a variety of, specifically include: aes algorithm, DES algorithm, 3DES algorithm, SHA1 algorithm, SHA256 algorithm With one of SM1 algorithm or a variety of.
It should be noted that Encryption Algorithm includes but is not limited to the six kinds of Encryption Algorithm mentioned in the present embodiment, this implementation Example is not construed as limiting this.
Specifically, encrypted random number authentication unit is used for the first encrypted random number and the progress of the second encrypted random number Match.If successful match, the function of bio-identification module 2 is executed, wherein the function of bio-identification module 2 is bio-identification.If It fails to match, then exports the information that it fails to match.Wherein, the second encrypted random number has been stored in advance in the chips.
Specifically, in the present embodiment, matching is both mathematical linguistics and computerese, concrete meaning be cooperation or Collocation.First encrypted random number and the second encrypted random number successful match can refer to the first encrypted random number and second encryption with Machine number is identical, but the concrete meaning of the two successful match both can be not limited only to identical, and the present embodiment is not construed as limiting this.
Based on the above embodiment, the Encryption Algorithm in above-described embodiment is further described in the present embodiment, described to add Close algorithm includes: one of aes algorithm, DES algorithm, 3DES algorithm, SHA1 algorithm, SHA256 algorithm and SM1 algorithm or more Kind.
Specifically, aes algorithm is Advanced Encryption Standardalgorithm, is a kind of block encryption mark that U.S. Federal Government uses It is quasi-.DES algorithm is data encryption standards, is a kind of block algorithm encrypted using key.3DES is triple data encryption algorithm blocks The common name of password, it is equivalent to each data block using des encryption algorithm three times.SHA1 and SHA256 algorithm is safe Kazakhstan Uncommon algorithm different variants, are primarily adapted for use in the Digital Signature Algorithm defined inside digital signature standard.SM1 algorithm is block cipher Algorithm is to be grouped Standard Symmetric Multivariate algorithm by a kind of commercial cipher of national Password Management office establishment.
Based on the above embodiment, bio-identification module described in above-described embodiment 2 is further described in the present embodiment, The bio-identification module 2 includes: image processing unit, and described image processing unit is used for collected according to biological camera Biometric image signal acquisition biometric image information;Recognition unit, the recognition unit according to bio-identification for calculating Method obtains the biological information in the biometric image information;Judging unit, the judging unit are used for the life Object characteristic information is matched with stored biological attribute data, and exports matching result.
Specifically, execute bio-identification module 2 function premise are as follows: the first encrypted random number and it is described second encryption with Machine number successful match.
Specifically, when the first encrypted random number and the second encrypted random number successful match, bio-identification module 2 starts to connect It receives from the collected biometric image signal of biological camera.Wherein, biological camera is used to acquire biometric image, And biometric image signal is exported in the image processing unit into bio-identification module.
Specifically, image processing unit is used to pre-process the biometric image signal received, and in biology The biometric image information for meeting living things feature recognition requirement is extracted in characteristic image signal.
Specifically, recognition unit is used to obtain the biological information in biometric image information according to recognizer. Wherein, bio-identification algorithm be it is a variety of, specifically include: Algorithm of Iris Recognition, retina recognizer, canthus line recognizer, One of face recognition algorithms and hand vein recognition algorithm are a variety of.
Specifically, judging unit is used to match biological information with stored biological attribute data, and defeated Matching result out.If successful match, authentication output passes through information;If it fails to match, authentication output failure information.Wherein, Biological attribute data has been stored in advance in biological characteristic library.
Wherein, in the present embodiment, matching is both mathematical linguistics and computerese, and concrete meaning is cooperation or takes Match.Biological information and stored biological attribute data, which carry out successful match, can refer to that biological information and biology are special It is identical to levy data, but the concrete meaning of the two successful match both can be not limited only to identical, the present embodiment is not construed as limiting this.
It based on the above embodiment, in the present embodiment, include: true before the bio-identification module 2 carries out bio-identification Fixed first encrypted random number and the second encrypted random number successful match.
Specifically, only when the first encrypted random number and the second encrypted random number successful match in enciphering algorithm module 1 Afterwards, the function of bio-identification module 2 is just executed.Wherein, the function of bio-identification module 2 is bio-identification.
A kind of bio-identification chip provided in an embodiment of the present invention, by utilizing enciphering algorithm module to bio-identification module It is encrypted, improves the safety of bio-identification chip.
Based on the above embodiment, the present embodiment is further described to bio-identification algorithm is mentioned in above-described embodiment. The bio-identification algorithm includes: Algorithm of Iris Recognition, retina recognizer, canthus line recognizer, face recognition algorithms With one of hand vein recognition algorithm or a variety of.
Specifically, iris recognition is that identification is carried out based on the iris in eyes, and iris includes many interlaced Minutias, these features such as spot, filament, coronal, striped, crypts remained unchanged in entire life course.These are special Sign determines the uniqueness of iris feature, while also determining the uniqueness of identification.It therefore, can be special by the iris of eyes Levy the identification object as everyone.
Specifically, retina identification requires the back side of laser irradiation eyeball to obtain the uniqueness of retinal feature.Canthus Line identification is the sclera portion for identifying eyes, carries out identification by scanning the lines of vena ophthalmica, and the lines of vena ophthalmica is Refer to epibulbar blood vessel, the shape of blood vessel is unique on everyone eyeball, therefore, canthus line feature can be made For everyone identification object.Face recognition is to carry out a kind of biology knowledge of identification based on facial feature information of people Other technology.Hand vein recognition be matched by vein distribution map with being stored in host medium sized vein characteristic value and compare, thus to individual into Row identity authentication confirms identity.
Based on the above embodiment, the bio-identification algorithm burning in the present embodiment is in the chips.
Specifically, bio-identification chip can include but is not limited to chip factory, Mo Zu factory, terminal factory progress bio-identification The burning of algorithm, the present embodiment are not construed as limiting this.
Based on the above embodiment, the present embodiment makes an explanation to the source of the first random number, first random number according to Acquired in the data that password code and/or the biological attribute data and/or other Encryption Algorithm generate.
Based on the above embodiment, the bio-identification chip in the present embodiment further includes microprocessor module, the micro process Device module is electrically connected with the enciphering algorithm module, number of the microprocessor module for operation and the control chip interior According to.
Specifically, it is bright both to have can be used for the transmission of the random number generation unit into enciphering algorithm module 1 for microprocessor module Literary password, and can receive random number generation unit for whether receiving feedback made by clear-text passwords, also it can receive The matching result that judging unit is exported in bio-identification module 2.
It should be noted that the function of microprocessor module not only includes the function of mentioning in above-described embodiment, this reality It applies example and this is not construed as limiting.
Based on the above embodiment, the present embodiment carries out furtherly the microprocessor module mentioned in above-described embodiment Bright, the microprocessor module is one chip microcomputer, and the one chip microcomputer includes CPU, RAM, ROM, timer And counter.
Specifically, microprocessor module can be an one chip microcomputer.Wherein, one chip microcomputer is a kind of IC chip, by using very large scale integration technology, by with data-handling capacity central processor CPU, Random access memory ram, read only memory ROM, I/O mouthfuls a variety of, interruption system, timer and counter are integrated on one piece of silicon wafer The small and perfect microcomputer system constituted.
Based on the above embodiment, the present embodiment carries out furtherly one of above-described embodiment bio-identification chip Bright, the chip further includes circuit module, and the circuit module is used to manage the electricity of the power supply of the chip, the adjustment chip Press and control the circuit of the chip.
Based on the above embodiment, the circuit module that above-described embodiment is mentioned is further described in the present embodiment, institute Stating circuit module includes one or more of password and numbered cell, physical security circuit and I/O interface.
Based on the above embodiment, the present embodiment is specifically explained by specifically illustrating to make bio-identification chip It is bright.Herein with reference to Fig. 2 and Fig. 3, Fig. 2 be according to a kind of structural schematic diagram of bio-identification chip provided in an embodiment of the present invention, Fig. 3 is according to a kind of concrete structure schematic diagram of bio-identification chip provided in an embodiment of the present invention.As shown in Fig. 2, biology is known Other chip includes: enciphering algorithm module 1, bio-identification module 2, microprocessor module 3 and circuit module 4.As shown in figure 3, raw The enciphering algorithm module 1 of object identification chip includes: that random number generation unit 101, Key generating unit 102 and encrypted random number are recognized Demonstrate,prove unit 103.The bio-identification module 2 of bio-identification chip includes: image processing unit 201, recognition unit 202 and determines single Member 203.
It should be noted that further including biological camera 5 and application processor 6 in Fig. 3, wherein biological camera 5 and answer It is not belonging to the module in bio-identification chip with processor 6, and is only that bio-identification module 4 in bio-identification chip is being realized The required equipment carried out data transmission when its own function.
As shown in figure 3, clear-text passwords is sent to random number generation unit 101 by microprocessor module 3;Random number generates single Member 101 generates the first random number according to the clear-text passwords received, and the first random number is sent to Key generating unit 102;It is close Key generation unit 102 to the first random number encryption and generates the first encrypted random number according to Encryption Algorithm, and by the first encryption with Machine number is sent to encrypted random number authentication unit 103;Encrypted random number authentication unit 103 by the first encrypted random number with stored The second encrypted random number matched, if successful match, execute the function of bio-identification module 2, it is defeated if it fails to match The information that it fails to match out.
It should be noted that the function of bio-identification module 2 be bio-identification, specifically: when the first encrypted random number with After stored second encrypted random number matching, the image processing unit 201 in bio-identification module 2 calls biological camera to adopt The biological special medical treatment picture signal collected, and biological special medical treatment picture signal is pre-processed, to obtain biometric image information, And biometric image information is sent to recognition unit 202, recognition unit obtains biological characteristic figure according to bio-identification algorithm Judging unit 203 is sent to as the biological information in information, and by biological information;Judging unit 203 will be biological special Reference breath is matched with stored biological attribute data, and exports matching result.
It should be noted that on the one hand on the other hand output is exported to microprocessor module 3 to application processing matching result Device.Specifically, if matching result includes: successful match, authentication output passes through information;If it fails to match, authentication output failure Information.
Based on the above embodiment, Fig. 4 is according to a kind of flow chart of biometric discrimination method provided in an embodiment of the present invention, such as Shown in Fig. 4, which comprises S1 matches the first encrypted random number with stored second encrypted random number;S2, If first encrypted random number and the second encrypted random number successful match, by the biological information with it is stored Biological attribute data is matched, and exports matching result.
A kind of biometric discrimination method provided in an embodiment of the present invention, by before carrying out bio-identification operation, to biology Recognition methods is encrypted, and the content for solving existing security encryption chip storage is easy arbitrarily to be distorted, and its operation The lower technical problem of software security.
Based on the above embodiment, the present embodiment to described in the step S2 in above-described embodiment by biological information with The biological attribute data of storage is matched, and is exported matching result and be further described, and step S2 is specifically included: S21, root According to the collected biometric image signal acquisition biometric image information of biological camera;S22 is calculated according to bio-identification Method obtains the biological information in the biometric image information;S23, by the biological information with it is stored Biological attribute data is matched, and exports matching result.
Specifically, Fig. 5 is according to a kind of flow chart of biometric discrimination method provided in an embodiment of the present invention, referring to Fig. 5, head First, biological camera acquires biometric image signal;Then, carry out key information matching operation, i.e., it is the first encryption is random Number is matched with stored second encrypted random number, if successful match, executes bio-identification, defeated if it fails to match Information that it fails to match out.
Wherein, after the first encrypted random number and stored second encrypted random number successful match, biology camera shooting is called Collected biometric image signal, and biometric image signal is pre-processed, to obtain biometric image Information;Then, the biological information in biometric image information is obtained;Finally by biological information and stored life Object characteristic is matched, and exports matching result.
If authentication output passes through information it should be noted that matching result includes: successful match;It is defeated if it fails to match Authentication failure message out.
It should be noted that the first random number was generated according to password code or biological attribute data or other Encryption Algorithm Acquired in data, the present embodiment is not construed as limiting this.
A kind of biometric discrimination method provided in an embodiment of the present invention, by before carrying out bio-identification operation, to biology Recognition methods is encrypted, and the content for solving existing security encryption chip storage is easy arbitrarily to be distorted, and its operation The lower technical problem of software security.
Finally, method of the invention is only preferable embodiment, it is not intended to limit the scope of the present invention.It is all Within the spirit and principles in the present invention, any modification, equivalent replacement, improvement and so on should be included in protection of the invention Within the scope of.

Claims (14)

1. a kind of bio-identification chip, which is characterized in that including enciphering algorithm module and bio-identification module;The Encryption Algorithm Module is electrically connected with the bio-identification module, and the enciphering algorithm module is used to encrypt the bio-identification module, The bio-identification module is for carrying out bio-identification.
2. chip according to claim 1, which is characterized in that the enciphering algorithm module includes:
Random number generation unit, the random number generation unit is for generating the first random number;
Key generating unit, the Key generating unit are used to encrypt first random number according to Encryption Algorithm, and generate the One encrypted random number;
Encrypted random number authentication unit, the encrypted random number authentication unit be used for by first encrypted random number with stored The second encrypted random number matched.
3. chip according to claim 2, which is characterized in that the Encryption Algorithm include: aes algorithm, DES algorithm, One of 3DES algorithm, SHA1 algorithm, SHA256 algorithm and SM1 algorithm are a variety of.
4. chip according to claim 2, which is characterized in that the bio-identification module includes:
Image processing unit, described image processing unit according to the collected biometric image signal of biological camera for obtaining Take biometric image information;
Recognition unit, the recognition unit are used to obtain the life in the biometric image information according to bio-identification algorithm Object characteristic information;
Judging unit, the judging unit are used for the biological information and the progress of stored biological attribute data Match, and exports matching result.
5. chip according to claim 4, which is characterized in that the bio-identification module wrap before bio-identification It includes: determining first encrypted random number and the second encrypted random number successful match.
6. chip according to claim 4, which is characterized in that the bio-identification algorithm includes: Algorithm of Iris Recognition, view One of nethike embrane recognizer, canthus line recognizer, face recognition algorithms and hand vein recognition algorithm are a variety of.
7. chip according to claim 6, which is characterized in that the bio-identification algorithm burning is in the chips.
8. chip according to claim 2, which is characterized in that first random number is according to password code and/or described Acquired in the data that biological attribute data and/or other Encryption Algorithm generate.
9. chip according to claim 1, which is characterized in that it further include microprocessor module, the microprocessor module It is electrically connected with the enciphering algorithm module, data of the microprocessor module for operation and the control chip interior.
10. chip according to claim 5, which is characterized in that the microprocessor module is one chip microcomputer, institute Stating one chip microcomputer includes CPU, RAM, ROM, timer and counter.
11. chip according to claim 1, which is characterized in that further include circuit module, the circuit module is for managing The circuit of the power supply of the chip, the voltage of the adjustment chip and the control chip.
12. chip according to claim 11, which is characterized in that the circuit module includes password and numbered cell, object Manage one or more of safety circuit and I/O interface.
13. a kind of biometric discrimination method characterized by comprising
S1 matches the first encrypted random number with stored second encrypted random number;
S2, if first encrypted random number and the second encrypted random number successful match, by biological information with deposited The biological attribute data of storage is matched, and exports matching result.
14. according to the method for claim 13, which is characterized in that described in step S2 by biological information with stored Biological attribute data matched, and export matching result, specifically include:
S21, according to the collected biometric image signal acquisition biometric image information of biological camera;
S22 obtains the biological information in the biometric image information according to bio-identification algorithm;
The biological information is matched with the stored biological attribute data, and exports matching result by S23.
CN201710726048.4A 2017-08-22 2017-08-22 A kind of bio-identification chip and method Pending CN109426709A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710726048.4A CN109426709A (en) 2017-08-22 2017-08-22 A kind of bio-identification chip and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710726048.4A CN109426709A (en) 2017-08-22 2017-08-22 A kind of bio-identification chip and method

Publications (1)

Publication Number Publication Date
CN109426709A true CN109426709A (en) 2019-03-05

Family

ID=65498161

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710726048.4A Pending CN109426709A (en) 2017-08-22 2017-08-22 A kind of bio-identification chip and method

Country Status (1)

Country Link
CN (1) CN109426709A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111626192A (en) * 2020-05-26 2020-09-04 上海云从企业发展有限公司 Living body detection method, system, equipment and medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1971575A (en) * 2006-11-24 2007-05-30 深圳兆日技术有限公司 An identity control method based on credibility platform module and fingerprint identifying
CN101458743A (en) * 2007-12-12 2009-06-17 中国长城计算机深圳股份有限公司 Method for protecting computer system
CN106549761A (en) * 2015-09-18 2017-03-29 上海方立数码科技有限公司 Fingerprint USB Key
WO2017087288A1 (en) * 2015-11-17 2017-05-26 Microsoft Technology Licensing, Llc Tamper proof device capability store
CN106790237A (en) * 2017-01-19 2017-05-31 公安部第研究所 A kind of authentication device and method based on living things feature recognition

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1971575A (en) * 2006-11-24 2007-05-30 深圳兆日技术有限公司 An identity control method based on credibility platform module and fingerprint identifying
CN101458743A (en) * 2007-12-12 2009-06-17 中国长城计算机深圳股份有限公司 Method for protecting computer system
CN106549761A (en) * 2015-09-18 2017-03-29 上海方立数码科技有限公司 Fingerprint USB Key
WO2017087288A1 (en) * 2015-11-17 2017-05-26 Microsoft Technology Licensing, Llc Tamper proof device capability store
CN106790237A (en) * 2017-01-19 2017-05-31 公安部第研究所 A kind of authentication device and method based on living things feature recognition

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111626192A (en) * 2020-05-26 2020-09-04 上海云从企业发展有限公司 Living body detection method, system, equipment and medium

Similar Documents

Publication Publication Date Title
CN107819587B (en) Authentication method based on fully homomorphic encryption, user equipment and authentication server
JP5816750B2 (en) Authentication method and apparatus using disposable password including biometric image information
EP2813961B1 (en) Biometric verification with improved privacy and network performance in client-server networks
CN107113315A (en) Identity authentication method, terminal and server
US20210398134A1 (en) Biocrypt Digital Wallet
CN105429761A (en) Key generation method and device
WO2018228061A1 (en) Data transmission method, device, and system
CN105117658A (en) Password security management method and equipment based on fingerprint authentication
Bissada et al. Mobile multi-factor authentication
WO2017050152A1 (en) Password security system adopted by mobile apparatus and secure password entering method thereof
CN105337742A (en) LFSR (Linear Feedback Shift Register) file encryption and decryption methods based on human face image features and GPS (Global Position System) information
CN110287670A (en) A kind of biological information and identity information correlating method, system and equipment
JP2006262333A (en) Living body authentication system
CN110826038B (en) Data encryption and decryption method and device
CN111181712A (en) Identity authentication method for homomorphic encrypted biological characteristics
CN109447875A (en) Authentication method, device and the computer equipment of healthcare givers's information
CN109426709A (en) A kind of bio-identification chip and method
CN108780476A (en) Method for verifying personnel identity
Prinslin et al. Secure online transaction with user authentication
CN108573581A (en) ATM initial keys setting method, device, system and storage medium
CN105893950B (en) A kind of adaptive fingerprint identification method and system based on redundancy incorrect order permutation algorithm
CN106682531A (en) Method for confidential data encryption based on biological information authorization
KR20150010542A (en) Creation and authentication of biometric information
CN108280330A (en) Data output method and system
CN204926127U (en) Iris authentication annex

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right
TA01 Transfer of patent application right

Effective date of registration: 20191230

Address after: 518109 first floor, building 1b, yunantong Industrial Park, langrong Road, Dalang community, Dalang street, Longhua District, Shenzhen City, Guangdong Province

Applicant after: Shenzhen Jinghong Technology Co., Ltd

Address before: 201203 Shanghai City, Pudong New Area free trade zone fanchun Road No. 400 Building 1 layer 3

Applicant before: Shanghai Jinghong Electronic Technology Co., Ltd.

RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20190305