CN111371788A - Digital encryption authorization device and working method thereof - Google Patents

Digital encryption authorization device and working method thereof Download PDF

Info

Publication number
CN111371788A
CN111371788A CN202010144091.1A CN202010144091A CN111371788A CN 111371788 A CN111371788 A CN 111371788A CN 202010144091 A CN202010144091 A CN 202010144091A CN 111371788 A CN111371788 A CN 111371788A
Authority
CN
China
Prior art keywords
optical signal
user terminal
digital encryption
data
communication module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010144091.1A
Other languages
Chinese (zh)
Inventor
黄一平
梁梓辰
胡进坤
莫华邦
梁志光
宋树祥
夏海英
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guilin Weiwang Interconnection Information Technology Co ltd
Original Assignee
Guilin Weiwang Interconnection Information Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guilin Weiwang Interconnection Information Technology Co ltd filed Critical Guilin Weiwang Interconnection Information Technology Co ltd
Publication of CN111371788A publication Critical patent/CN111371788A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B10/00Transmission systems employing electromagnetic waves other than radio-waves, e.g. infrared, visible or ultraviolet light, or employing corpuscular radiation, e.g. quantum communication
    • H04B10/80Optical aspects relating to the use of optical transmission for specific applications, not provided for in groups H04B10/03 - H04B10/70, e.g. optical power feeding or optical transmission through water
    • H04B10/85Protection from unauthorised access, e.g. eavesdrop protection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Electromagnetism (AREA)
  • Optical Communication System (AREA)

Abstract

The invention discloses a digital encryption authorization device and a working method thereof, wherein the device comprises: the device comprises an optical communication module, a microprocessor and a power supply module; the optical communication module is used for: receiving optical signal data sent by a user terminal, converting the optical signal data into a user operation instruction, and sending the user operation instruction to a microprocessor; the microprocessor is used for: performing corresponding processing according to the user operation instruction to obtain target data, and sending the target data to the optical communication module; the optical communication module is further configured to: generating a corresponding optical signal feedback control instruction, and controlling at least one light-emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction so as to be acquired by a user terminal; the power module is used for: and receiving external energy, and supplying power to the optical communication module and the microprocessor by using the external energy. The scheme conveniently realizes the data communication between the digital encryption authorization device and the user terminal in an optical communication mode, and effectively improves the safety of data transmission.

Description

Digital encryption authorization device and working method thereof
Technical Field
The invention relates to the technical field of communication, in particular to a digital encryption authorization device and a working method thereof.
Background
With the increasing development of technologies such as digital currency, mobile banking and the like, the digital currency can play a great role in our lives, and great convenience is brought to the lives of people. However, digital currency is typically carried in digital wallets, through which users store and use digital currency. In order to secure digital money and digital wallets, it is necessary to perform security management and precaution on digital wallets, digital money, and the like by using a security encryption technology. In the prior art, the digital wallet is generally divided into a soft wallet and a hard wallet according to a key operation and key storage mode of the digital wallet, the key operation and the key storage of the soft wallet are realized by adopting a pure software mode, and the key operation and the key storage of the hard wallet are realized by adopting an independent hardware device. From a security perspective, a hard wallet employing separate hardware devices may be much more secure than a soft wallet.
Hard wallets typically have communication capabilities to communicate with other devices, with communication interfaces including bluetooth, USB, RF radio, etc. However, the use of bluetooth communication is premised on the need to turn on bluetooth, which is not convenient enough in use; plugging and unplugging are needed when USB communication is used, and the use operation is more complicated; RF radio frequency communication presents the potential for theft of the brush, etc. Therefore, the existing communication mode between the hard wallet and other equipment has the problems of complex operation, easy embezzlement, poor safety and the like.
Disclosure of Invention
In view of the above, the present invention has been made to provide a digital encryption authorization apparatus and an operating method thereof that overcome or at least partially solve the above problems.
According to an aspect of the present invention, there is provided a digital encryption authorization apparatus, including: the device comprises an optical communication module, a microprocessor and a power supply module; wherein the content of the first and second substances,
the optical communication module is connected with the microprocessor and used for receiving optical signal data sent by the user terminal, converting the optical signal data into a user operation instruction and sending the user operation instruction to the microprocessor;
the microprocessor is used for: carrying out encryption processing, decryption processing, signature processing or signature verification processing according to a user operation instruction to obtain target data, and sending the target data to the optical communication module;
the optical communication module is further configured to: generating an optical signal feedback control instruction corresponding to the target data, and controlling at least one light-emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction so as to be acquired by a user terminal;
the power module is connected with the microprocessor and used for receiving external energy and supplying power to the optical communication module and the microprocessor by using the external energy.
According to another aspect of the present invention, there is provided a method for operating a digital encryption authorization apparatus, the method including:
receiving optical signal data sent by a user terminal through an optical communication module in the digital encryption authorization device, and converting the optical signal data into a user operation instruction;
performing encryption processing, decryption processing, signature processing or signature verification processing according to a user operation instruction through a microprocessor in the digital encryption authorization device to obtain target data;
and generating an optical signal feedback control instruction corresponding to the target data through the optical communication module, and controlling at least one light-emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction so as to be acquired by a user terminal.
According to yet another aspect of the present invention, there is provided a computing device comprising: the processor, the memory and the communication interface complete mutual communication through the communication bus;
the memory is used for storing at least one executable instruction, and the executable instruction enables the processor to execute the operation corresponding to the working method of the digital encryption authorization device.
According to still another aspect of the present invention, there is provided a computer storage medium having at least one executable instruction stored therein, where the executable instruction causes a processor to perform an operation corresponding to the operation method of the digital encryption authorization apparatus.
According to the technical scheme provided by the invention, the optical communication module can receive optical signal data sent by the user terminal and convert the optical signal data into a user operation instruction, the microprocessor carries out corresponding processing according to the user operation instruction to obtain target data needing to be fed back to the user terminal, then the optical communication module generates an optical signal feedback control instruction corresponding to the target data and controls at least one light-emitting element to generate a light spot pattern in a preset time period for the user terminal to obtain, so that the data communication between the digital encryption authorization device and the user terminal is conveniently realized through an optical communication mode, the use and the operation are simple, and even if the optical signal data or the light spot pattern is illegally obtained by others, the correct analysis is difficult to carry out, so that the safety of data transmission is effectively improved, and the risk that the user assets are stolen and brushed is reduced.
The foregoing description is only an overview of the technical solutions of the present invention, and the embodiments of the present invention are described below in order to make the technical means of the present invention more clearly understood and to make the above and other objects, features, and advantages of the present invention more clearly understandable.
Drawings
Various other advantages and benefits will become apparent to those of ordinary skill in the art upon reading the following detailed description of the preferred embodiments. The drawings are only for purposes of illustrating the preferred embodiments and are not to be construed as limiting the invention. Also, like reference numerals are used to refer to like parts throughout the drawings. In the drawings:
fig. 1 is a block diagram showing a configuration of a digital encryption authorization apparatus according to an embodiment of the present invention;
FIG. 2 shows a timing diagram of a digital encryption authorization processing method according to one embodiment of the invention;
FIG. 3 is a flow chart of a method for operating a digital encryption authorization apparatus according to an embodiment of the invention;
FIG. 4 is a flow diagram illustrating a digital encryption authorization processing method according to another embodiment of the invention;
fig. 5 shows a block diagram of a user terminal according to an embodiment of the present invention;
FIG. 6 shows a schematic structural diagram of a computing device according to an embodiment of the invention.
Detailed Description
Exemplary embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the present disclosure are shown in the drawings, it should be understood that the present disclosure may be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the disclosure to those skilled in the art.
Fig. 1 shows a block diagram of a digital encryption authorization apparatus according to an embodiment of the present invention, and as shown in fig. 1, the digital encryption authorization apparatus includes: an optical communication module 101, a microprocessor 102, and a power supply module 103.
The digital encryption authorization device can be a hard wallet. The optical communication module 101 is connected to the microprocessor 102, and is configured to receive optical signal data sent by a user terminal, convert the optical signal data into a user operation instruction, and send the user operation instruction to the microprocessor 102. When the user terminal needs to send a user operation instruction to the digital encryption authorization device, an optical signal control instruction corresponding to the optical signal data can be generated according to the user operation instruction, and then the optical signal data is sent through the light emitting module according to the optical signal control instruction. The user terminal may include, but is not limited to: smart phones, notebook computers, Personal Computers (PCs), Personal Digital Assistants (PDAs), Mobile Internet Devices (MIDs), and smart wearable devices (e.g., smart watches and smart bracelets). In the present invention, the user operation instruction refers to an instruction sent by the user terminal for controlling the digital encryption authorization apparatus to perform corresponding operations, and the user operation instruction may include, but is not limited to, the following instructions: the system comprises a transaction signature generation instruction, a key creation instruction, a transaction signature verification instruction, a user information encryption instruction, a user information decryption instruction and the like. By the method, the user operation instruction of the user terminal can be conveniently converted into the optical signal data to be sent out. After the optical signal data is sent by the user terminal, the optical communication module 101 in the digital encryption authorization apparatus receives the optical signal data sent by the user terminal, converts the optical signal data into a user operation instruction, and then sends the user operation instruction to the microprocessor 102 for processing.
The microprocessor 102 is configured to: and performing encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction to obtain target data, and sending the target data to the optical communication module 101. The microprocessor 102 receives a user operation instruction sent by the optical communication module 101. After the optical communication module 101 sends the user operation instruction to the microprocessor 102, the microprocessor 102 performs corresponding processing according to the user operation instruction to obtain target data, and then sends the target data to the optical communication module 101 for processing. The target data is data which is obtained by processing the digital encryption authorization device according to the user operation instruction and needs to be fed back to the user terminal.
After the microprocessor 102 sends the target data to the optical communication module 101, the optical communication module 101 generates an optical signal feedback control instruction corresponding to the target data, and controls at least one light emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction, so as to be acquired by a user terminal.
Specifically, the optical communication module 101 may include: a light signal receiving unit 1011, a conversion unit 1012, and at least one light emitting element 1013. The optical signal receiving unit 1011 is connected to the converting unit 1012, and is configured to receive optical signal data sent by the user terminal, and send the optical signal data to the converting unit 1012; the optical signal receiving unit 1011 may include: a light sensitive sensor and/or a light sensitive resistor. Taking the example that the optical signal receiving unit 1011 includes a photo resistor, the photo resistor receives optical signal data sent by the user terminal, the level changes, and the converting unit 1012 analyzes the user operation command transmitted by the user terminal according to the rule of the level change. The skilled person can select the type, number, etc. of the photosensitive sensors and the photo resistors included in the optical signal receiving unit 1011 according to actual needs. Besides the photosensitive sensor and the photosensitive resistor, the optical signal receiving unit 1011 can also include other devices capable of receiving optical signals, and those skilled in the art can select the devices according to actual needs, and the devices are not limited specifically here.
The conversion unit 1012 is connected to the microprocessor 102 and the at least one light emitting element 1013, and is configured to analyze the optical signal data according to a preset encoding rule to obtain a user operation instruction, and send the user operation instruction to the microprocessor 102 for processing; and according to a preset coding rule, coding the target data obtained by the microprocessor 102, generating an optical signal feedback control instruction corresponding to the target data, and controlling on and off of the at least one light emitting element 1013 according to the optical signal feedback control instruction.
In order to facilitate the conversion unit 1012 to process the optical signal data and the target data, a preset encoding rule may be set in the conversion unit 1012, and a person skilled in the art may set the preset encoding rule according to actual needs. For example, the preset encoding rule specifies a corresponding conversion relationship between data in the form of an electrical signal and data in the form of an optical signal, and specifically, the preset encoding rule may include a pulse encoding rule, or the preset encoding rule may include a pulse encoding rule, a two-dimensional code encoding rule, and the like. After the conversion unit 1012 receives the optical signal data sent by the optical signal receiving unit 1011, the conversion unit 1012 performs analysis processing on the optical signal data according to a preset coding rule to obtain a corresponding user operation instruction, that is, the conversion unit 1012 restores the optical signal data sent by the user terminal to the user operation instruction which the user terminal actually wants to send, and then sends the user operation instruction to the microprocessor 102, and the microprocessor 102 performs corresponding processing according to the user operation instruction to obtain target data; after receiving the target data sent by the microprocessor 102, the conversion unit 1012 performs encoding processing on the target data according to a preset encoding rule, and generates an optical signal feedback control instruction for controlling on and off of the at least one light emitting element 1013 corresponding to the target data.
The at least one light emitting element 1013 generates a static light point pattern or a dynamically changing light point pattern within a preset time period in response to the light signal feedback control instruction for the user terminal to acquire. The number of light emitting elements 1013 may be one or more. When the number of the light emitting elements 1013 is multiple, the multiple light emitting elements 1013 may be arranged in a preset arrangement structure to form a light emitting element lattice, and the light emitting element lattice is controlled to generate a dot pattern according to an optical signal feedback control instruction, so as to be acquired by a user terminal. Light emitting element 1013 may be an LED lamp or the like, and preferably, a light emitting element with small volume, light weight, low power consumption, and high luminance is used. In an alternative embodiment, the dot pattern generated within the preset time period may be directly used to represent the target data. In another optional implementation manner, the digital encryption authorization device may be provided with a two-dimensional code partial pattern, the two-dimensional code partial pattern may be disposed on the digital encryption authorization device by spraying, pasting, or the like, or may be a pattern displayed on a display screen of the digital encryption authorization device, so that a complete two-dimensional code pattern may be formed by the light spot pattern generated in a preset time period and the two-dimensional code partial pattern disposed on the digital encryption authorization device, and target data is represented by the complete two-dimensional code pattern, where the light spot pattern is a variable data block in the complete two-dimensional code pattern, and the light and the dark of the light emitting element may cause a change in the content of the data block, so that data corresponding to the complete two-dimensional code pattern changes. Specifically, if all target data can be represented by a complete two-dimensional code pattern, the digital encryption authorization device only needs to generate a two-dimensional code pattern containing a static dot pattern within a preset time period for a user terminal to collect; if all target data can be represented by a plurality of different complete two-dimensional code patterns, the digital encryption authorization device needs to generate two-dimensional code patterns containing dynamically-changed light point patterns within a preset time period, and the user terminal acquires corresponding target data by continuously acquiring the dynamically-changed two-dimensional code patterns.
Taking a user operation instruction as a key creation instruction as an example, after receiving the key creation instruction, the microprocessor 102 generates a main key and a mnemonic code through an encryption algorithm mechanism preset by itself, writes the main key into a FLASH memory (FLASH) built in itself, uses the generated mnemonic code as target data, then sends the mnemonic code to the optical communication module 101, and sends the mnemonic code to a user terminal in the form of an optical signal through the optical communication module 101. Specifically, the conversion unit 1012 in the optical communication module 101 performs encoding processing on the mnemonic code according to a preset encoding rule, generates a corresponding optical signal feedback control instruction, and controls turning on and off of the at least one light emitting element 1013 according to the optical signal feedback control instruction, so that the at least one light emitting element 1013 generates a static light point pattern or a dynamically changing light point pattern within a preset time period, and the user terminal acquires the light point pattern and performs analysis processing on the light point pattern to obtain target data, that is, the mnemonic code. In addition, after writing the master key into the FLASH, the microprocessor 102 generates a public key, a private key, and a serial number according to the master key by using a key derivation algorithm, generates an account address according to the public key, and stores the account address, the private key, and the serial number in correspondence.
Taking a user operation instruction as a transaction signature generation instruction as an example, after receiving the transaction signature generation instruction, the microprocessor 102 acquires a corresponding private key and an account address from the FLASH according to a sequence number in transaction data, performs signature processing on the transaction data and the account address by using the private key to generate a transaction key, uses the transaction key as target data, and then sends the transaction key to the user terminal in the form of an optical signal through the optical communication module 101. Specifically, the conversion unit 1012 in the optical communication module 101 encodes the transaction key according to a preset encoding rule, generates a corresponding optical signal feedback control instruction, and controls on/off of the at least one light emitting element 1013 according to the optical signal feedback control instruction, so that the at least one light emitting element 1013 generates a static light point pattern or a dynamically changing light point pattern within a preset time period, and the user terminal collects the light point pattern and analyzes the light point pattern to obtain target data, i.e., the transaction key.
The power module 103 is connected to the microprocessor 102 and is configured to receive external energy and supply power to the optical communication module 101 and the microprocessor 102 by using the external energy. Wherein, the external energy may include non-electric energy and electric energy, and the non-electric energy may specifically include one or more of the following: optical energy, acoustic energy, mechanical energy, electromagnetic energy, and the like. For non-electric energy, the power module 102 may receive the non-electric energy and convert the non-electric energy into electric energy to supply power to the optical communication module 101 and the microprocessor 102; in order to receive non-electric energy and convert the non-electric energy into electric energy, an energy receiving and processing device for receiving the non-electric energy may be disposed in the power module 102, and taking the non-electric energy as the optical energy for example, the energy receiving and processing device in the power module 102 may be a solar generator or the like; taking non-electric energy as an example of the acoustic energy, the energy receiving and processing device in the power module 102 may be an acoustic energy generator or the like; taking non-electric energy as mechanical energy as an example, the energy receiving and processing device in the power module 102 may be a friction generator, a piezoelectric generator, or the like; for example, the energy receiving and processing device in the power module 102 may be an electromagnetic generator or the like. For the electric energy, the electric energy may be provided by a battery or a power supply device, and the power supply device may include: a mobile power supply, a municipal power supply circuit and the like, and the power module 103 receives electric energy supplied by a battery or a power supply device, and supplies power to the optical communication module 101 and the microprocessor 102 by using the electric energy. Specifically, the power module 103 may be connected to the power supply device through a power line or a charger, etc. to receive the power supplied by the power supply device.
Optionally, the digital encryption authorization apparatus may further include: a first bluetooth communication module 104 and/or a first radio frequency communication module 105. For the convenience of distinguishing, in the present invention, the bluetooth communication module and the radio frequency communication module in the digital encryption authorization apparatus are respectively referred to as a first bluetooth communication module and a first radio frequency communication module, and the bluetooth communication module and the radio frequency communication module in the user terminal are respectively referred to as a second bluetooth communication module and a second radio frequency communication module. When the digital encryption authorization device comprises the first bluetooth communication module 104, the first bluetooth communication module 104 is connected with the microprocessor 102, and the first bluetooth communication module 104 can be connected with a second bluetooth communication module in the user terminal, so that a bluetooth communication channel is established between the digital encryption authorization device and the user terminal, and the digital encryption authorization device can perform data communication with the second bluetooth communication module in the user terminal. When the digital encryption authorization device comprises the first radio frequency communication module 105, the first radio frequency communication module 105 is connected with the microprocessor 102, and the first radio frequency communication module 105 can be connected with a second radio frequency communication module in the user terminal, so that a radio frequency communication channel is established between the digital encryption authorization device and the user terminal, and the digital encryption authorization device can perform data communication with the second radio frequency communication module in the user terminal. When the digital encryption authorization device comprises the first bluetooth communication module 104 and the first radio frequency communication module 105, the user can select whether to perform data communication in an optical communication mode, a bluetooth mode or a radio frequency mode according to actual needs. In the invention, the data communication between the digital encryption authorization device and the user terminal can be conveniently realized in an optical communication mode, a Bluetooth mode or a radio frequency mode.
In addition, considering that some user terminals such as mobile phones also have functions of NFC (Near Field Communication), etc., a Communication connection can be established through the first radio frequency Communication module 105 of the digital encryption authorization device, and the power supply module 103 of the digital encryption authorization device can convert electromagnetic energy of an NFC coil into electric energy to supply power to the digital encryption authorization device while communicating, so that the electromagnetic energy is effectively utilized.
In consideration of the fact that the target data obtained by the microprocessor 102 may not be conveniently represented in the form of a dot pattern when the data amount is large, the digital encryption authorization apparatus may communicate data with the user terminal in a bluetooth manner or a radio frequency manner in this case. In order to conveniently identify whether the data volume of the target data is too large, a preset data volume threshold value may be set, and a person skilled in the art may set the specific size of the preset data volume threshold value according to actual needs. Specifically, the microprocessor 102 determines whether the data amount of the target data is greater than a preset data amount threshold; if the data volume is larger than the preset data volume threshold, the microprocessor 102 controls the first bluetooth communication module 104 or the first radio frequency communication module 105 to be connected with a communication module corresponding to the user terminal, establishes a communication channel between the digital encryption authorization device and the user terminal through the first bluetooth communication module 104 or the first radio frequency communication module 105, and sends target data to the user terminal through the communication channel; if the data amount is less than or equal to the preset data amount threshold, the microprocessor 102 sends the target data to the optical communication module 102 for processing, the optical communication module 102 generates an optical signal feedback control instruction corresponding to the target data, and controls the at least one light emitting element 1013 to generate a dot pattern within a preset time period according to the optical signal feedback control instruction, so that the dot pattern is acquired by the user terminal.
Optionally, the digital encryption authorization device may further include one or more of the following modules: a fingerprint recognition module 106, a key input module 107, a face recognition module 108, and an information display module 109. The fingerprint identification module 106, the key input module 107, the face identification module 108 and the information display module 109 are respectively connected with the microprocessor 102, the fingerprint identification module 106 is used for verifying whether the fingerprint of the user is consistent with the pre-stored fingerprint, the key input module 107 is used for receiving data input by the user through keys, the face identification module 108 is used for verifying whether the face image of the user is consistent with the pre-stored face image, and the information display module 109 is used for displaying information required to be displayed. When the digital encryption authorization device is used, verification is required by means of human faces, fingerprints, input PIN codes (namely personal identification numbers) and the like, the digital encryption authorization device can be used only after the verification is passed, and otherwise the digital encryption authorization device cannot be used. By the processing mode, the legality of the user can be effectively ensured, and even if the digital encryption authorization device is picked up by others after being lost, others cannot use the digital encryption authorization device, so that the condition that the user is greatly lost due to the loss of the digital encryption authorization device is effectively avoided.
In order to facilitate the user to carry the digital encryption authorization device, the structure of the digital encryption authorization device can be made into a sticky film structure, and preferably, the film structure can be pasted and used for multiple times. The user can attach the adhesive to the surface of an object according to actual needs, such as the inner side surface of a backpack, the inner side surface of a purse, or the surface of clothes. The material of the film structure can be set by those skilled in the art according to actual needs, and is not limited specifically here.
According to the digital encryption authorization device provided by the embodiment, the optical communication module can receive optical signal data sent by the user terminal and convert the optical signal data into a user operation instruction, the microprocessor performs corresponding processing according to the user operation instruction to obtain target data needing to be fed back to the user terminal, then the optical communication module generates an optical signal feedback control instruction corresponding to the target data and controls at least one light-emitting element to generate a dot pattern in a preset time period for the user terminal to obtain, so that data communication between the digital encryption authorization device and the user terminal is conveniently realized through an optical communication mode, the use and the operation are simple, and even if the optical signal data or the dot pattern is illegally obtained by others, the correct analysis is difficult to perform, so that the safety of data transmission is effectively improved, and the risk that user assets are stolen and swiped is reduced; in addition, the power supply module can receive electric energy, can also receive non-electric energy such as optical energy, sound energy, mechanical energy, electromagnetic energy and the like and convert the non-electric energy into the electric energy to supply power for the digital encryption authorization device, so that resources are fully utilized, and the power supply mode of the digital encryption authorization device is optimized.
Fig. 2 is a timing diagram illustrating a digital encryption authorization processing method according to an embodiment of the present invention, as shown in fig. 2, the method includes the following steps:
step S201, the user terminal obtains a user operation instruction, generates an optical signal control instruction corresponding to the optical signal data according to the user operation instruction, and controls a light emitting module of the user terminal to send the optical signal data according to the optical signal control instruction.
The user terminal may include, but is not limited to: smart phones, notebook computers, personal computers, and the like. In order to facilitate data communication between the user terminal and the digital encryption authorization device, corresponding application programs need to be installed in the user terminal, for example, a specially designed digital wallet APP, a digital certificate APP, and the like. In the process of operating the application program by a user, a user terminal acquires a user operation instruction, then codes the user operation instruction according to a preset coding rule to generate an optical signal control instruction corresponding to optical signal data, then controls a light emitting module of the user terminal to send the optical signal data according to the optical signal control instruction so that a digital encryption authorization device receives the optical signal data, performs encryption processing, decryption processing, signature processing or signature verification processing according to the optical signal data, and then generates a light point pattern in a preset time period according to target data obtained by the processing. The preset encoding rule may include a pulse encoding rule, or the preset encoding rule may include a pulse encoding rule, a two-dimensional code encoding rule, and the like. The light emitting module of the user terminal may include a flash or the like.
In this case, in order to generate an optical signal control command for controlling the flash lamp, a pulse coding rule may be used to code the user operation command, so as to generate an optical signal control command corresponding to the optical signal data, and then the flash lamp is controlled to be turned on or off according to the optical signal control command, so as to enable the flash lamp to transmit the optical signal data.
Step S202, the digital encryption authorization device receives optical signal data sent by the user terminal, converts the optical signal data into a user operation instruction, and performs encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction to obtain target data.
In order to enable the digital encryption authorization device and the user terminal to carry out optical communication, an optical communication module is arranged in the digital encryption authorization device, and the digital encryption authorization device carries out analysis processing on optical signal data through the optical communication module according to a preset coding rule to obtain a user operation instruction, so that the optical signal data sent by the user terminal is conveniently restored into the user operation instruction which the user terminal actually wants to send. And after the user operation instruction is obtained, carrying out encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction to obtain target data. The user operation instruction may include, but is not limited to, the following instructions: the system comprises a transaction signature generation instruction, a key creation instruction, a transaction signature verification instruction, a user information encryption instruction, a user information decryption instruction and the like. Specifically, if the user operation instruction is a transaction signature generation instruction, the target data may be a generated transaction key; if the user operation instruction is a key creation instruction, the target data can be the generated mnemonic code; if the user operation instruction is a transaction signature verification instruction, the target data can be a verification result aiming at the transaction signature; if the user operation instruction is a user information encryption instruction, the target data can be an encryption result of the user information; if the user operation instruction is a user information decryption instruction, the target data may be a decryption result of the user information.
Step S203, the digital encryption authorization device judges whether the data volume of the target data is larger than a preset data volume threshold value; if yes, go to step S204; if not, go to step S205.
In this case, the digital encryption authority may perform data communication with the user terminal by a bluetooth method or a radio frequency method, considering that it may be inconvenient to perform representation by a form of a dot pattern when the data amount of the target data is large. Specifically, the digital encryption authorization device determines whether the data volume of the target data is greater than a preset data volume threshold. If the data size obtained by interpretation is larger than the preset data size threshold, which indicates that the data size of the target data is large and is not convenient to be represented in the form of the dot pattern, then step S204 is executed; if the data amount is determined to be less than or equal to the preset data amount threshold, which indicates that the data amount of the target data is small and is convenient to represent in the form of a dot pattern, step S205 is executed.
And step S204, the digital encryption authorization device establishes a communication channel between the digital encryption authorization device and the user terminal through the first Bluetooth communication module or the first radio frequency communication module, and sends the target data to the user terminal through the communication channel.
And under the condition that the data volume obtained by interpretation is larger than the preset data volume threshold value, the digital encryption authorization device sends the target data to the user terminal in a Bluetooth mode or a radio frequency mode. The digital encryption authorization device can comprise a first Bluetooth communication module and/or a first radio frequency communication module. Taking data communication with the user terminal in a Bluetooth mode as an example, the digital encryption authorization device is connected with a second Bluetooth communication module in the user terminal through the first Bluetooth communication module, so that a Bluetooth communication channel is established between the digital encryption authorization device and the user terminal, and target data are sent to the user terminal through the Bluetooth communication channel. Taking data communication with a user terminal in a radio frequency mode as an example, the digital encryption authorization device is connected with a second radio frequency communication module in the user terminal through a first radio frequency communication module, so that a radio frequency communication channel is established between the digital encryption authorization device and the user terminal, and target data are sent to the user terminal through the radio frequency communication channel.
In step S205, the digital encryption authorization apparatus generates an optical signal feedback control instruction corresponding to the target data, and controls at least one light emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction.
And under the condition that the data volume is judged to be less than or equal to the preset data volume threshold value, the digital encryption authorization device encodes the target data through the optical communication module according to a preset encoding rule to generate an optical signal feedback control instruction corresponding to the target data, and controls the on and off of at least one light-emitting element according to the optical signal feedback control instruction, so that the at least one light-emitting element generates a static light point pattern or a dynamically changing light point pattern within a preset time period. The skilled person can set the length of the preset time period according to actual needs, for example, the length of the preset time period can be set to 30 seconds, etc.
In an alternative embodiment, the dot pattern generated within a preset time period may be used directly to represent the target data; in another optional implementation manner, the light point pattern generated within the preset time period may also form a complete two-dimensional code pattern with the two-dimensional code partial pattern set on the digital encryption authorization apparatus, and the target data is represented by the complete two-dimensional code pattern.
When the number of light emitting elements can satisfy a condition that the complete content of the target data can be represented by static light emission, which in the present invention means that the light emitting elements are always in an on state or an off state for a preset period of time, at least one light emitting element may be caused to generate a static light pattern for a preset period of time, for example, the target data may be represented by generating a static light pattern for a preset period of time by 4 or 8 or even more light emitting elements; when the number of light emitting elements does not satisfy the condition that the entire content of the target data can be represented by static light emission, at least one light emitting element is required to generate a dynamically changing light point pattern within a preset time period, for example, when there are only 4 or even less light emitting elements, the light emitting elements may represent the target data by cycling, blinking, or the like. In the present invention, the changing light intensity generated by at least one light emitting element within a preset time period is referred to as a dynamically changing light point pattern.
The following respectively describes the pulse coding rule and the two-dimension code coding rule in the preset coding rule.
(1) The pulse coding rules may specify: the long pulse is "1", the short pulse is "0"; when the data to be converted is data (such as user operation instructions or target data) in the form of an electrical signal containing N M-ary numbers, the data to be converted is subjected to encoding processing, different M-ary numbers are converted into light signals with different light time periods (wherein '1' in the light signals represents lighting of a corresponding light-emitting element, and '0' in the light signals represents extinguishing of a corresponding light-emitting element), so that the data to be converted containing the N M-ary numbers are converted into a series of light signals, and the series of light signals obtained through conversion serve as control instructions corresponding to the data to be converted and are used for controlling the on and off of at least one light-emitting element, wherein M, N is a natural number; when the data to be converted is data in an optical signal form (such as optical signal data or a light spot pattern), the data is analyzed, the light duration, interval, sequence and the like of a light signal corresponding to each light spot in the data are analyzed, and then the data is converted into data in an electric signal form containing a plurality of M-ary numbers according to an analysis result. Specifically, if the data to be converted is a user operation instruction, the control instruction corresponding to the data to be converted obtained through conversion is an optical signal control instruction; if the data to be converted is target data, converting the obtained control instruction corresponding to the data to be converted into an optical signal feedback control instruction corresponding to the target data; if the data to be converted is optical signal data, converting the obtained data in the form of electric signals containing a plurality of M-ary numbers into user operation instructions; and if the data to be converted is the light spot pattern, converting the obtained data in the form of electric signals containing a plurality of M-ary numbers into target data.
In a specific application, it is assumed that the pulse coding rules specify: for the octal number, "0" in the octal number corresponds to the light signal for the 2 second light time, "1" in the octal number corresponds to the light signal for the 4 second light time, "2" in the octal number corresponds to the light signal for the 6 second light time, "3" in the octal number corresponds to the light signal for the 8 second light time, "4" in the octal number corresponds to the light signal for the 10 second light time, "5" in the octal number corresponds to the light signal for the 12 second light time, "6" in the octal number corresponds to the light signal for the 14 second light time, and "7" in the octal number corresponds to the light signal for the 16 second light time. If the user operation instruction is a key creation instruction, the digital encryption authorization device processes the target data according to the key creation instruction to obtain a mnemonic code containing 4 octaves of data, taking the mnemonic code as '3210', and according to the pulse coding rule, it is necessary to represent "3" in the mnemonic code by a light signal with a light time of 8 seconds, "2" by a light signal with a light time of 6 seconds, "1" by a light signal with a light time of 4 seconds, and "0" by a light signal with a light time of 2 seconds, so as to generate an optical signal feedback control instruction corresponding to the target data.
When the digital encryption authorization device comprises 4 light-emitting elements arranged in a preset arrangement structure such as a row, a column, a dot matrix and the like, the 4 light-emitting elements are respectively an LED1, an LED2, an LED3 and an LED4, wherein the LED1 is used for representing a first digit in the mnemonic code, the LED2 is used for representing a second digit in the mnemonic code, the LED3 is used for representing a third digit in the mnemonic code, and the LED4 is used for representing a fourth digit in the mnemonic code, according to an optical signal feedback control instruction, the LED1 is controlled to be turned on for 8 seconds and then turned off, the LED2 is controlled to be turned on for 6 seconds and then turned off, the LED3 is controlled to be turned on for 4 seconds and then turned off, the LED4 is controlled to be turned on for 2 seconds and then turned off, so that the mnemonic code is generated to a user terminal in a form of a dot pattern through the 4 light-emitting elements, so that the user terminal collects the light pattern and obtains target data, namely the mne.
When the digital encryption authorization device only comprises 2 light-emitting elements, the 2 light-emitting elements are respectively an LED1 and an LED2, wherein the LED1 is used for representing a first digit and a second digit in the mnemonic code, and the LED2 is used for representing a third digit and a fourth digit in the mnemonic code, then according to the optical signal feedback control instruction, in a preset time period, for the LED1, the LED1 can be controlled to be turned on for 8 seconds and then turned off, then the LED1 is controlled to be turned on again for 6 seconds and then turned off, for the LED2, the LED 3668 is controlled to be turned on for 4 seconds and then turned off, then the LED2 is controlled to be turned on again for 2 seconds and then turned off, so that the mnemonic code is generated to the user terminal in the form of a light point pattern by the 2 light-emitting elements, and the user terminal collects and analyzes the light point pattern.
And when the digital encryption authorization device only comprises 1 light-emitting element, the light-emitting element is LED1, and then the LED1 needs to be used for representing the first digit to the fourth digit in the mnemonic code, then according to the optical signal feedback control instruction, within a preset time period, the LED1 can be controlled to be turned on for 8 seconds and then turned off, then the LED1 is controlled to be turned on for 6 seconds and then turned off, then the LED1 is controlled to be turned on for 4 seconds and then turned off, and finally the LED1 is controlled to be turned on for 2 seconds and then turned off, so that the mnemonic code is generated to the user terminal in the form of a light point pattern through 1 light-emitting element, so that the user terminal can collect and analyze the light point pattern.
(2) In a specific embodiment, the preset encoding rule may further include a two-dimensional code encoding rule, considering that the dot pattern generated by the at least one light-emitting element of the digital encryption authorization device in the preset time period and the two-dimensional code partial pattern arranged on the digital encryption authorization device may form a complete two-dimensional code pattern, and the complete two-dimensional code pattern represents the target data.
The two-dimensional code encoding rule can be specified as follows: when the data to be converted is target data containing N M-ary numbers, the data to be converted is coded to obtain one or more complete two-dimensional code patterns, wherein the two-dimensional code patterns are composed of the target patterns and two-dimensional code partial patterns on a digital encryption authorization device, corresponding light signals (1 in the light signals represents that a corresponding light-emitting element is lightened, and 0 in the light signals represents that the corresponding light-emitting element is extinguished) are converted according to the target patterns, so that the target patterns are converted into a series of light signals, the series of light signals obtained through conversion are used as control instructions (namely light signal feedback control instructions corresponding to the target data) corresponding to the data to be converted for controlling the lightening and extinguishing of at least one light-emitting element to enable the at least one light-emitting element to generate light point patterns in a preset time period, the contents of the dot pattern are the same as those of the target pattern, wherein M, N is a natural number.
When the dot pattern generated by at least one light-emitting element in the preset time period and the two-dimensional code part pattern arranged on the digital encryption authorization device form a complete two-dimensional code pattern, the user terminal can collect one or more complete two-dimensional code patterns, analyze the two-dimensional code patterns, convert the two-dimensional code patterns into data in the form of electric signals containing a plurality of M-system numbers, and the data obtained through conversion and containing the plurality of M-system numbers is target data.
Step S206, the user terminal collects the light spot pattern and analyzes the light spot pattern to obtain the target data.
The user terminal may collect the light spot pattern through its collection module, which may include a camera, etc. Taking a user terminal as a mobile phone as an example, a camera in the mobile phone can be used as an acquisition module, the camera acquires a static light point pattern or a dynamically changing light point pattern generated by the digital encryption authorization device within a preset time period, and the acquired static light point pattern or the dynamically changing light point pattern is analyzed according to a preset coding rule to obtain target data.
In addition, when the light point pattern and the two-dimensional code part pattern arranged on the digital encryption authorization device form a complete two-dimensional code pattern, the user terminal can acquire the complete two-dimensional code pattern formed by the light point pattern generated by the digital encryption authorization device in a preset time period and the two-dimensional code part pattern arranged on the digital encryption authorization device through the camera, and analyze the acquired two-dimensional code pattern according to a preset coding rule to obtain target data.
The specific content of the preset encoding rule, the dot pattern, or the resolution method of the two-dimensional code pattern including the dot pattern are already described above, and are not described herein again.
And step S207, the user terminal carries out transaction processing according to the target data.
After the target data is analyzed by the user terminal, the user terminal may perform transaction processing, such as transaction payment, transaction query, and the like, according to the target data.
It should be noted that, in the present invention, the digital encryption authorization device can receive the optical signal data sent by the user terminal, and can perform processes such as conversion and encryption according to the received optical signal data to obtain the target data that needs to be fed back to the user terminal, and send the target data through the light point pattern for the user terminal to obtain, and the user terminal can send the user operation instruction that needs to be correspondingly operated by the digital encryption authorization device through the optical signal data, and can obtain the target data that is obtained by the digital encryption authorization device through corresponding processes according to the user operation instruction by adopting the light point pattern. Therefore, in the invention, both the digital encryption authorization device and the user terminal have the functions of receiving data and sending data in an optical communication mode, and a complete closed loop is formed on a data processing link. However, although the mobile phone in the prior art can display the two-dimensional code on the screen, a complete closed loop is not formed on a data processing link, so that the technical scheme for data transmission by the digital encryption authorization device and the user terminal in the optical communication mode provided by the invention is different from the scheme for displaying the two-dimensional code by terminals such as the mobile phone in the prior art.
According to the digital encryption authorization processing method provided by the embodiment, the user terminal conveniently sends out the user operation instruction in the form of optical signal data by controlling the light emitting of the light emitting module of the user terminal; the digital encryption authorization device converts optical signal data sent by a user terminal into a user operation instruction, performs corresponding processing according to the user operation instruction to obtain target data needing to be fed back to the user terminal, then generates a corresponding optical signal feedback control instruction, controls at least one light-emitting element to generate a dot pattern within a preset time period, and conveniently represents the target data in a dot pattern form; the user terminal can conveniently obtain target data by collecting and analyzing the dot pattern; according to the scheme, the data communication between the digital encryption authorization device and the user terminal is conveniently realized in an optical communication mode, the use and the operation are simple, and even if optical signal data or a light spot pattern is illegally acquired by other people, the data is difficult to analyze correctly, so that the safety of data transmission is effectively improved, and the risk that the user assets are stolen and brushed is reduced.
Fig. 3 is a flow chart illustrating a working method of a digital encryption authorization device according to an embodiment of the present invention, and as shown in fig. 3, the method includes the following steps:
step S301, receiving optical signal data sent by the user terminal through an optical communication module in the digital encryption authorization apparatus, and converting the optical signal data into a user operation instruction.
When the user terminal needs to send a user operation instruction to the digital encryption authorization device, an optical signal control instruction corresponding to the optical signal data can be generated according to the user operation instruction, and then the optical signal data is sent through the light emitting module according to the optical signal control instruction. The digital encryption authorization device receives optical signal data sent by a user terminal through an optical communication module of the digital encryption authorization device, and analyzes and processes the optical signal data according to a preset coding rule to obtain a user operation instruction. The preset encoding rules can be set by those skilled in the art according to actual needs. For example, the preset encoding rule specifies a correspondence conversion relationship between data in the form of an electrical signal and data in the form of an optical signal.
And step S302, performing encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction through a microprocessor in the digital encryption authorization device to obtain target data.
The user operation instruction may include, but is not limited to, the following instructions: the system comprises a transaction signature generation instruction, a key creation instruction, a transaction signature verification instruction, a user information encryption instruction, a user information decryption instruction and the like. And performing corresponding processing according to the user operation instruction through the microprocessor to obtain target data.
Step S303, generating an optical signal feedback control instruction corresponding to the target data through the optical communication module, and controlling at least one light emitting element to generate a dot pattern within a preset time period according to the optical signal feedback control instruction, so as to be acquired by the user terminal.
Specifically, the target data is encoded through the optical communication module according to a preset encoding rule, an optical signal feedback control instruction corresponding to the target data is generated, and the on and off of at least one light-emitting element is controlled according to the optical signal feedback control instruction, so that a static dot pattern or a dynamically changing dot pattern is generated by the at least one light-emitting element within a preset time period.
In an alternative embodiment, the dot pattern generated within a preset time period may be used directly to represent the target data; in another optional implementation manner, the light point pattern generated within the preset time period may also form a complete two-dimensional code pattern with the two-dimensional code partial pattern set on the digital encryption authorization apparatus, and the target data is represented by the complete two-dimensional code pattern.
And step S304, receiving external energy through a power supply module in the digital encryption authorization device, and supplying power to the optical communication module and the microprocessor by using the external energy.
Wherein, the external energy includes non-electric energy and electric energy, and the non-electric energy may specifically include one or more of the following: optical energy, acoustic energy, mechanical energy, electromagnetic energy, and the like. For non-electric energy, the non-electric energy can be received through the power module, and the non-electric energy is converted into electric energy to supply power for the optical communication module and the microprocessor. For the electric energy, the electric energy may be provided by a battery or a power supply device, and the power supply device may include: the mobile power supply, the municipal power supply circuit and the like can receive electric energy provided by a battery or power supply equipment through the power supply module and supply power to the optical communication module and the microprocessor by utilizing the electric energy. Specifically, the power module may be connected to the power supply device through a power line or a charger, etc. to receive the electric power provided by the power supply device.
It is considered that when the data amount of the target data obtained by the microprocessor is large, it may be inconvenient to express by the form of the dot pattern. Optionally, before step S303, the method may further include: and judging whether the data volume of the target data is larger than a preset data volume threshold value or not through a microprocessor. If the data volume is larger than the preset data volume threshold, the data volume of the target data is larger, and the target data is not conveniently represented in a form of a dot pattern, a communication channel is established between the digital encryption authorization device and the user terminal through a first Bluetooth communication module or a first radio frequency communication module in the digital encryption authorization device, and the target data is sent to the user terminal through the communication channel; if the data amount is less than or equal to the preset data amount threshold, which indicates that the data amount of the target data is small and is convenient to represent through the form of the dot pattern, step S303 is executed, and an optical signal feedback control instruction corresponding to the target data is generated through the optical communication module.
According to the working method of the digital encryption authorization device provided by the embodiment, the optical communication module can receive the optical signal data sent by the user terminal and convert the optical signal data into the user operation instruction, the microprocessor carries out corresponding processing according to the user operation instruction to obtain target data which needs to be fed back to the user terminal, then the optical communication module generates an optical signal feedback control instruction corresponding to the target data, controls at least one light-emitting element to generate a light point pattern in a preset time period for a user terminal to obtain, thereby realizing the data communication between the digital encryption authorization device and the user terminal conveniently and quickly in an optical communication mode, having simple use and operation, and even if the optical signal data or the dot pattern is illegally acquired by others, it is difficult to correctly analyze, therefore, the safety of data transmission is effectively improved, and the risk of embezzlement of user assets is reduced; in addition, the power supply module can receive electric energy, can also receive non-electric energy such as optical energy, sound energy, mechanical energy, electromagnetic energy and the like and convert the non-electric energy into the electric energy to supply power for the digital encryption authorization device, so that resources are fully utilized, and the power supply mode of the digital encryption authorization device is optimized.
Fig. 4 is a flow chart illustrating a digital encryption authorization processing method according to another embodiment of the present invention, which is executed by a user terminal, as shown in fig. 4, and includes the following steps:
step S401, acquiring a user operation instruction, and generating an optical signal control instruction corresponding to the optical signal data according to the user operation instruction.
The user terminal may include, but is not limited to: smart phones, notebook computers, personal computers, and the like. In order to facilitate data communication between the user terminal and the digital encryption authorization device, corresponding application programs, such as a digital wallet APP, a digital certificate APP, and the like, need to be installed in the user terminal. In the process of operating the application program by the user, the user terminal obtains a user operation instruction, and specifically, the user operation instruction may include, but is not limited to, the following instructions: the system comprises a transaction signature generation instruction, a key creation instruction, a transaction signature verification instruction, a user information encryption instruction, a user information decryption instruction and the like. After the user terminal obtains the user operation instruction, the user operation instruction is coded according to a preset coding rule, and an optical signal control instruction corresponding to the optical signal data is generated.
Step S402, controlling the light emitting module of the user terminal to send the optical signal data according to the optical signal control instruction.
Specifically, the light emitting module may include a flash lamp, etc., and in order to generate an optical signal control command for conveniently controlling the flash lamp, in step S401, the user terminal may encode the user operation command by using a pulse encoding rule, so as to generate an optical signal control command corresponding to the optical signal data, in step S402, according to the optical signal control command, control on and off of the flash lamp, so that the flash lamp transmits the optical signal data, so that the digital encryption authorization apparatus receives the optical signal data, and performs encryption, decryption, signature, or signature verification according to the optical signal data, and generates a dot pattern within a preset time period according to the target data obtained by the processing.
Step S403, collecting the dot pattern through a collection module of the user terminal, and analyzing the dot pattern to obtain target data.
The user terminal may collect the light spot pattern through its collection module, which may include a camera, etc. The method comprises the steps of acquiring a static light point pattern or a dynamically changing light point pattern generated by a digital encryption authorization device within a preset time period through a camera, and analyzing and processing the acquired static light point pattern or the dynamically changing light point pattern according to a preset coding rule to obtain target data.
In addition, when the light point pattern and the two-dimensional code part pattern arranged on the digital encryption authorization device form a complete two-dimensional code pattern, the user terminal can acquire the complete two-dimensional code pattern formed by the light point pattern generated by the digital encryption authorization device in a preset time period and the two-dimensional code part pattern arranged on the digital encryption authorization device through the camera, and analyze the acquired two-dimensional code pattern according to a preset coding rule to obtain target data.
And step S404, performing transaction processing according to the target data.
After the target data is analyzed by the user terminal, the user terminal may perform transaction processing, such as transaction payment, transaction query, and the like, according to the target data.
Optionally, the method may further comprise: and establishing a Bluetooth communication channel or a radio frequency communication channel between the user terminal and the digital encryption authorization device, and transmitting data through the Bluetooth communication channel or the radio frequency communication channel. For example, when the data volume of the target data processed by the digital encryption authorization device is large and is not convenient to be represented in the form of the dot pattern, the digital encryption authorization device may send the target data to the user terminal through the established bluetooth communication channel or radio frequency communication channel, and then the user terminal receives the target data through the established bluetooth communication channel or radio frequency communication channel, and in addition, when the data volume of other data to be transmitted (such as user information, transaction information, operation instructions, and the like) is large and is not convenient to be sent through the light emitting module of the user terminal, the user terminal may also send the data to be transmitted to the digital encryption authorization device through the established bluetooth communication channel or radio frequency communication channel.
According to the digital encryption authorization processing method provided by the embodiment, the user terminal conveniently sends out the user operation instruction in the form of optical signal data by controlling the light emission of the light emitting module of the user terminal so that the digital encryption authorization device receives the optical signal data, performs corresponding processing according to the optical signal data, and generates a dot pattern in a preset time period according to the target data obtained by the processing; the user terminal can conveniently obtain target data by collecting and analyzing the dot pattern; according to the scheme, the data communication between the digital encryption authorization device and the user terminal is conveniently realized in an optical communication mode, the use and the operation are simple, and even if optical signal data or a light spot pattern is illegally acquired by other people, the data is difficult to analyze correctly, so that the safety of data transmission is effectively improved, and the risk that the user assets are stolen and brushed is reduced.
Fig. 5 is a block diagram illustrating a structure of a user terminal according to an embodiment of the present invention, as shown in fig. 5, the user terminal includes: the system comprises an instruction processing module 501, a control module 502, a light-emitting module 503 and an acquisition module 504.
The instruction processing module 501 is configured to: and acquiring a user operation instruction, and generating an optical signal control instruction corresponding to the optical signal data according to the user operation instruction.
The control module 502 is configured to: and controlling the light-emitting module according to the light signal control instruction.
The light emitting module 503 is configured to: and responding to the optical signal control instruction, sending optical signal data for a digital encryption authorization device to receive the optical signal data, performing encryption processing, decryption processing, signature processing or signature verification processing according to the optical signal data, and generating a light spot pattern within a preset time period according to target data obtained by processing.
The acquisition module 504 is configured to: and collecting the light spot pattern, and analyzing the light spot pattern to obtain target data. The collecting module 504 may be connected to the control module 502, and the control module 502 controls the collecting module 504 to collect the dot pattern.
Optionally, the instruction processing module 501 is further configured to: and according to a preset coding rule, coding the user operation instruction to generate an optical signal control instruction corresponding to the optical signal data.
Optionally, the light emitting module 503 includes: a flash lamp; the control module 502 is further configured to: and controlling the flash lamp to be on or off according to the light signal control instruction so as to enable the flash lamp to send light signal data.
Optionally, the acquisition module 504 includes: a camera; the acquisition module 504 is further configured to: acquiring a static light point pattern or a dynamically changing light point pattern generated by a digital encryption authorization device within a preset time period through a camera, and analyzing and processing the acquired static light point pattern or the dynamically changing light point pattern according to a preset coding rule to obtain target data; or, acquiring a complete two-dimensional code pattern consisting of a light point pattern generated by the digital encryption authorization device within a preset time period and a two-dimensional code partial pattern arranged on the digital encryption authorization device through a camera, and analyzing the acquired two-dimensional code pattern according to a preset coding rule to obtain target data.
Optionally, the user terminal may further include: and the transaction processing module 505 is configured to perform transaction processing according to the target data.
Optionally, the user terminal may further include: a second bluetooth communication module 506 and/or a second radio frequency communication module 507. The second bluetooth communication module 506 and the second rf communication module 507 may be respectively connected to the control module 502, and the control module 502 controls the second bluetooth communication module 506 and/or the second rf communication module 507 to establish a communication channel with the digital encryption authorization apparatus. Specifically, the second bluetooth communication module 506 is configured to: establishing a Bluetooth communication channel between a user terminal and a digital encryption authorization device; the second radio frequency communication module 507 is configured to: and establishing a radio frequency communication channel between the user terminal and the digital encryption authorization device.
According to the user terminal provided by the embodiment, the user operation instruction is conveniently sent out in the form of optical signal data by controlling the light emission of the light emitting module of the user terminal, so that the digital encryption authorization device receives the optical signal data, corresponding processing is carried out according to the optical signal data, and a dot pattern is generated in a preset time period according to target data obtained by the processing; target data can be conveniently obtained by collecting and analyzing the dot patterns; according to the scheme, the data communication between the digital encryption authorization device and the user terminal is conveniently realized in an optical communication mode, the use and the operation are simple, and even if optical signal data or a light spot pattern is illegally acquired by other people, the data is difficult to analyze correctly, so that the safety of data transmission is effectively improved, and the risk that the user assets are stolen and brushed is reduced.
The invention also provides a nonvolatile computer storage medium, wherein the computer storage medium stores at least one executable instruction, and the executable instruction can execute the working method of the digital encryption authorization device in any method embodiment.
The invention also provides a nonvolatile computer storage medium, wherein the computer storage medium stores at least one executable instruction, and the executable instruction can execute the digital encryption authorization processing method executed in the user terminal in any method embodiment.
Fig. 6 is a schematic structural diagram of a computing device according to an embodiment of the present invention, and the specific embodiment of the present invention does not limit the specific implementation of the computing device. As shown in fig. 6, the computing device may include: a processor (processor)602, a communication Interface 604, a memory 606, and a communication bus 608. Wherein: the processor 602, communication interface 604, and memory 606 communicate with one another via a communication bus 608. A communication interface 604 for communicating with network elements of other devices, such as clients or other servers. The processor 602 is configured to execute the program 610, and may specifically execute relevant steps in the working method embodiment of the digital encryption authorization apparatus. In particular, program 610 may include program code comprising computer operating instructions. The processor 602 may be a central processing unit CPU or an application Specific Integrated circuit asic or one or more Integrated circuits configured to implement embodiments of the present invention. The computing device includes one or more processors, which may be the same type of processor, such as one or more CPUs; or may be different types of processors such as one or more CPUs and one or more ASICs. And a memory 606 for storing a program 610. Memory 606 may comprise high-speed RAM memory, and may also include non-volatile memory (non-volatile memory), such as at least one disk memory. The program 610 may be specifically configured to enable the processor 602 to execute the working method of the digital encryption authorization apparatus in any of the method embodiments described above. For specific implementation of each step in the program 610, reference may be made to corresponding steps and corresponding descriptions in units in the above embodiments related to the digital encryption authorization apparatus, which are not described herein again. It can be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described devices and modules may refer to the corresponding process descriptions in the foregoing method embodiments, and are not described herein again.
In addition, an embodiment of the present invention further provides a computing device, including: the processor, the memory and the communication interface complete mutual communication through the communication bus; the memory is used for storing at least one executable instruction, and the executable instruction enables the processor to execute the operation corresponding to the digital encryption authorization processing method executed on the user terminal. The structural schematic diagram of the computing device is the same as that of the computing device shown in fig. 6, and is not repeated here.
The algorithms and displays presented herein are not inherently related to any particular computer, virtual machine, or other apparatus. Various general purpose systems may also be used with the teachings herein. The required structure for constructing such a system will be apparent from the description above. Moreover, the present invention is not directed to any particular programming language. It is appreciated that a variety of programming languages may be used to implement the teachings of the present invention as described herein, and any descriptions of specific languages are provided above to disclose the best mode of the invention.
In the description provided herein, numerous specific details are set forth. It is understood, however, that embodiments of the invention may be practiced without these specific details. In some instances, well-known methods, structures and techniques have not been shown in detail in order not to obscure an understanding of this description.
Similarly, it should be appreciated that in the foregoing description of exemplary embodiments of the invention, various features of the invention are sometimes grouped together in a single embodiment, figure, or description thereof for the purpose of streamlining the disclosure and aiding in the understanding of one or more of the various inventive aspects. However, the disclosed method should not be interpreted as reflecting an intention that: that the invention as claimed requires more features than are expressly recited in each claim. Rather, as the following claims reflect, inventive aspects lie in less than all features of a single foregoing disclosed embodiment. Thus, the claims following the detailed description are hereby expressly incorporated into this detailed description, with each claim standing on its own as a separate embodiment of this invention.
Those skilled in the art will appreciate that the modules in the device in an embodiment may be adaptively changed and disposed in one or more devices different from the embodiment. The modules or units or components of the embodiments may be combined into one module or unit or component, and furthermore they may be divided into a plurality of sub-modules or sub-units or sub-components. All of the features disclosed in this specification (including any accompanying claims, abstract and drawings), and all of the processes or elements of any method or apparatus so disclosed, may be combined in any combination, except combinations where at least some of such features and/or processes or elements are mutually exclusive. Each feature disclosed in this specification (including any accompanying claims, abstract and drawings) may be replaced by alternative features serving the same, equivalent or similar purpose, unless expressly stated otherwise.
Furthermore, those skilled in the art will appreciate that while some embodiments described herein include some features included in other embodiments, rather than other features, combinations of features of different embodiments are meant to be within the scope of the invention and form different embodiments. For example, in the claims, any of the claimed embodiments may be used in any combination.
The various component embodiments of the invention may be implemented in hardware, or in software modules running on one or more processors, or in a combination thereof. Those skilled in the art will appreciate that a microprocessor or Digital Signal Processor (DSP) may be used in practice to implement some or all of the functionality of some or all of the components in accordance with embodiments of the present invention. The present invention may also be embodied as apparatus or device programs (e.g., computer programs and computer program products) for performing a portion or all of the methods described herein. Such programs implementing the present invention may be stored on computer-readable media or may be in the form of one or more signals. Such a signal may be downloaded from an internet website or provided on a carrier signal or in any other form.
It should be noted that the above-mentioned embodiments illustrate rather than limit the invention, and that those skilled in the art will be able to design alternative embodiments without departing from the scope of the appended claims. In the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention may be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In the unit claims enumerating several means, several of these means may be embodied by one and the same item of hardware. The usage of the words first, second and third, etcetera do not indicate any ordering. These words may be interpreted as names.

Claims (10)

1. A digital encryption authorization apparatus, characterized in that the digital encryption authorization apparatus comprises: the device comprises an optical communication module, a microprocessor and a power supply module; wherein the content of the first and second substances,
the optical communication module is connected with the microprocessor and used for receiving optical signal data sent by a user terminal, converting the optical signal data into a user operation instruction and sending the user operation instruction to the microprocessor;
the microprocessor is configured to: carrying out encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction to obtain target data, and sending the target data to the optical communication module;
the optical communication module is further configured to: generating an optical signal feedback control instruction corresponding to the target data, and controlling at least one light-emitting element to generate a light point pattern according to the optical signal feedback control instruction so as to be acquired by the user terminal;
the power module is connected with the microprocessor and used for receiving external energy and supplying power to the optical communication module and the microprocessor by using the external energy.
2. The device of claim 1, wherein the number of the light emitting elements is plural, and the plural light emitting elements are arranged in a predetermined arrangement structure to form a light emitting element lattice; and controlling the luminous element lattice to generate a dot pattern according to the optical signal feedback control instruction so as to be acquired by the user terminal.
3. The device according to any one of claims 1-2, wherein the dot pattern and the two-dimensional code partial pattern arranged on the digital encryption authorization device form a complete two-dimensional code pattern.
4. The device of any one of claims 1-3, wherein the external energy comprises non-electrical energy; the power module is further configured to: and receiving non-electric energy, converting the non-electric energy into electric energy, and supplying power to the optical communication module and the microprocessor.
5. The apparatus of claim 4, wherein the non-electrical energy comprises one or more of: optical energy, acoustic energy, mechanical energy, and electromagnetic energy.
6. The apparatus according to any one of claims 1-5, wherein the digital encryption authorization apparatus further comprises: the first Bluetooth communication module and/or the first radio frequency communication module;
the first Bluetooth communication module is used for: establishing a Bluetooth communication channel between the digital encryption authorization device and the user terminal;
the first radio frequency communication module is configured to: and establishing a radio frequency communication channel between the digital encryption authorization device and the user terminal.
7. The apparatus according to any one of claims 1-6, wherein the digital encryption authorization apparatus further comprises one or more of the following modules: fingerprint identification module, button input module, face identification module and information display module.
8. A method of operating a digital encryption authorization apparatus according to any of claims 1 to 7, the method comprising:
receiving optical signal data sent by a user terminal through an optical communication module in a digital encryption authorization device, and converting the optical signal data into a user operation instruction;
performing encryption processing, decryption processing, signature processing or signature verification processing according to the user operation instruction through a microprocessor in the digital encryption authorization device to obtain target data;
and generating an optical signal feedback control instruction corresponding to the target data through the optical communication module, and controlling at least one light-emitting element to generate a dot pattern according to the optical signal feedback control instruction so as to be acquired by the user terminal.
9. A computing device, comprising: the system comprises a processor, a memory, a communication interface and a communication bus, wherein the processor, the memory and the communication interface complete mutual communication through the communication bus;
the memory is used for storing at least one executable instruction, and the executable instruction causes the processor to execute the operation corresponding to the working method of the digital encryption authorization device according to claim 8.
10. A computer storage medium having at least one executable instruction stored therein, the executable instruction causing a processor to perform operations corresponding to the method of operating the digital encryption authority device of claim 8.
CN202010144091.1A 2020-02-25 2020-03-04 Digital encryption authorization device and working method thereof Pending CN111371788A (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2020101151733 2020-02-25
CN202010115173 2020-02-25

Publications (1)

Publication Number Publication Date
CN111371788A true CN111371788A (en) 2020-07-03

Family

ID=71206657

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010144091.1A Pending CN111371788A (en) 2020-02-25 2020-03-04 Digital encryption authorization device and working method thereof

Country Status (1)

Country Link
CN (1) CN111371788A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113225129A (en) * 2021-05-07 2021-08-06 中国科学院半导体研究所 Conformal space optical communication omnidirectional receiving equipment and method
CN113283265A (en) * 2021-05-14 2021-08-20 苏州惟信易量智能科技有限公司 Data reading device, method and system

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103310260A (en) * 2013-06-19 2013-09-18 深圳市正鑫源实业有限公司 Double-layer two-dimensional code and anti-counterfeiting or/and capacity-enlarging method based on same
CN103490815A (en) * 2013-09-25 2014-01-01 中国人民解放军信息工程大学 Payment method based on visible light, middle equipment and intelligent terminal and system
CN103546213A (en) * 2013-10-16 2014-01-29 深圳市宏电技术股份有限公司 Optical communication transmission method and system
CN105117905A (en) * 2015-07-21 2015-12-02 北京邮电大学 Wireless Key payment system based on visible light communications and payment method
CN105471512A (en) * 2014-09-05 2016-04-06 深圳光启智能光子技术有限公司 Photon receiving end and decoding method
CN108306795A (en) * 2017-12-29 2018-07-20 维沃移动通信有限公司 The method, apparatus and mobile terminal of a kind of electronic equipment control
CN110110831A (en) * 2019-05-17 2019-08-09 深圳智控佳科技有限公司 A kind of compound two dimensional code and its generation, display methods, electronic equipment

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103310260A (en) * 2013-06-19 2013-09-18 深圳市正鑫源实业有限公司 Double-layer two-dimensional code and anti-counterfeiting or/and capacity-enlarging method based on same
CN103490815A (en) * 2013-09-25 2014-01-01 中国人民解放军信息工程大学 Payment method based on visible light, middle equipment and intelligent terminal and system
CN103546213A (en) * 2013-10-16 2014-01-29 深圳市宏电技术股份有限公司 Optical communication transmission method and system
CN105471512A (en) * 2014-09-05 2016-04-06 深圳光启智能光子技术有限公司 Photon receiving end and decoding method
CN105117905A (en) * 2015-07-21 2015-12-02 北京邮电大学 Wireless Key payment system based on visible light communications and payment method
CN108306795A (en) * 2017-12-29 2018-07-20 维沃移动通信有限公司 The method, apparatus and mobile terminal of a kind of electronic equipment control
CN110110831A (en) * 2019-05-17 2019-08-09 深圳智控佳科技有限公司 A kind of compound two dimensional code and its generation, display methods, electronic equipment

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
陈嘉兴;赵华;张书景: "《现代通信技术导论 第2版》", 31 January 2018 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113225129A (en) * 2021-05-07 2021-08-06 中国科学院半导体研究所 Conformal space optical communication omnidirectional receiving equipment and method
CN113283265A (en) * 2021-05-14 2021-08-20 苏州惟信易量智能科技有限公司 Data reading device, method and system

Similar Documents

Publication Publication Date Title
US11392927B2 (en) Multi-function data key
CN111275122B (en) Label labeling method, device, equipment and readable storage medium
CN102222390B (en) Multifunctional intelligent key device and working method thereof
TW201643787A (en) Card and application program product
CN111357014B (en) AI model development method and device
AU2014281070A1 (en) Systems and methods for EMV chip and pin payments
CN111371788A (en) Digital encryption authorization device and working method thereof
CN104811310A (en) Display method and wearing device
CN102611551A (en) Physical authentication method, physical authentication device, and dynamic password token
CN108021500A (en) A kind of test method of application, device and equipment
CN109522146A (en) The method, apparatus and storage medium of abnormality test are carried out to client
CN105225102A (en) Method of mobile payment and the wearable mobile payment device for the method under line
US20220351201A1 (en) Multi-Function Data Key
CN104063786A (en) Smartcard, smartcard system and method for configuring a smartcard
CN107908942A (en) Electronic equipment, display system, integrated control device and biological characteristic verification method
CN111369249A (en) Digital encryption authorization processing method and user terminal
CN110462662A (en) The device and method paid using language
CN103854181B (en) A kind of electric endorsement method and electronic signature equipment, client and system
CN112990909A (en) Voice payment method and electronic equipment
CN103824182A (en) Method and device for carrying out information interaction based on POS machine
US20210089856A1 (en) Transaction token that exhibits indication-related detectable changes on the transaction token
CN211830840U (en) Lid and electronic equipment behind smart machine
CN114581091A (en) Identity authentication method and device, computer equipment and storage medium
CN107172718B (en) Information processing method and electronic equipment
CN111582420B (en) Smart card and data processing method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20200703

RJ01 Rejection of invention patent application after publication