CN112462980A - Password interception preventing method and device and POS machine - Google Patents
Password interception preventing method and device and POS machine Download PDFInfo
- Publication number
- CN112462980A CN112462980A CN202011480831.5A CN202011480831A CN112462980A CN 112462980 A CN112462980 A CN 112462980A CN 202011480831 A CN202011480831 A CN 202011480831A CN 112462980 A CN112462980 A CN 112462980A
- Authority
- CN
- China
- Prior art keywords
- processor
- password
- touch screen
- keyboard
- key position
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/01—Input arrangements or combined input and output arrangements for interaction between user and computer
- G06F3/03—Arrangements for converting the position or the displacement of a member into a coded form
- G06F3/041—Digitisers, e.g. for touch screens or touch pads, characterised by the transducing means
- G06F3/0412—Digitisers structurally integrated in a display
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F3/00—Input arrangements for transferring data to be processed into a form capable of being handled by the computer; Output arrangements for transferring data from processing unit to output unit, e.g. interface arrangements
- G06F3/01—Input arrangements or combined input and output arrangements for interaction between user and computer
- G06F3/048—Interaction techniques based on graphical user interfaces [GUI]
- G06F3/0487—Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser
- G06F3/0488—Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser using a touch-screen or digitiser, e.g. input of commands through traced gestures
- G06F3/04886—Interaction techniques based on graphical user interfaces [GUI] using specific features provided by the input device, e.g. functions controlled by the rotation of a mouse with dual sensing arrangements, or of the nature of the input device, e.g. tap gestures based on pressure sensed by a digitiser using a touch-screen or digitiser, e.g. input of commands through traced gestures by partitioning the display area of the touch-screen or the surface of the digitising tablet into independently controllable areas, e.g. virtual keyboards or menus
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07G—REGISTERING THE RECEIPT OF CASH, VALUABLES, OR TOKENS
- G07G1/00—Cash registers
- G07G1/0036—Checkout procedures
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07G—REGISTERING THE RECEIPT OF CASH, VALUABLES, OR TOKENS
- G07G1/00—Cash registers
- G07G1/12—Cash registers electronically operated
Abstract
The invention provides a password interception preventing method, a password interception preventing device and a POS machine. According to the invention, by arranging the first processor and the second processor, the signal output end of the touch screen is connected with the first processor in an initial state, a level change signal generated by pressing the touch screen can be only acquired by the first processor, and when a password input mode is entered, the signal output end of the touch screen is switched to acquire a signal through the second processor, so that other programs, functions or application monitoring connected and controlled by the first processor are prevented from acquiring a password; after the password is input, the signal output end of the touch screen is switched to acquire a signal through the first processor, and the security of the password is guaranteed. The invention stores keyboard attributes through the first processor, and generates the password keyboard matrix data through the second processor, so that the password keyboard is not interfered by the first processor on the premise of ensuring normal operation, the randomness of the password keyboard is ensured, and the password input safety is improved.
Description
Technical Field
The invention relates to the technical field of password security, in particular to a password interception preventing method and device and a POS machine.
Background
Based on the consideration of security design, the POS machine needs to ensure that the password input is not stolen when the password is input. At present, most terminal equipment with a touch screen adopts ways of generating a random keyboard, adopting authority control and the like to protect password input when the password is input so as to prevent the password from being stolen.
However, the generated random keyboard is easily monitored by other APPs or functions in the terminal during input, the forbidden function is troublesome and has a leak, potential safety hazards exist, the corresponding software development cost is high, and on the other hand, the safety of the permission control is limited, and a good protection effect cannot be achieved. In order to solve the above problems, a password interception prevention method capable of ensuring security is required.
Disclosure of Invention
The invention provides a password interception preventing method, a password interception preventing device and a POS machine, and aims to solve the technical problems in the background technology.
The invention firstly provides a first password interception preventing method which is applied to a first processor of a POS machine, wherein the POS machine comprises a touch screen, the first processor and a second processor, the first processor is connected with a signal output end of the touch screen arranged on the POS machine in an initial state, and the method comprises the following steps:
detecting a request instruction for inputting a password, and switching a signal output end of the touch screen to enable the signal output end to be connected with a second processor arranged on the POS machine;
sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on a touch screen arranged on the POS machine;
acquiring password keyboard matrix data sent by the second processor, wherein the password keyboard matrix data is generated by the second processor according to the keyboard attribute, the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as the value of an input password, and the second key position is used for determining the end of the state of the input password;
generating a password keyboard according to the password keyboard matrix data, and displaying the password keyboard on a display interface of the touch screen;
acquiring a password input state sent by the second processor, and displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of the acquired password input states, and the password input state is used for indicating that the second processor detects the first key position;
and acquiring encrypted data sent by the second processor, and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
Further, after the "detecting the request command of the password input, switching the signal output end of the touch screen to connect with the second processor provided on the POS", the method further includes:
and sending a preset time threshold to the second processor, wherein the preset time threshold is used for monitoring whether the POS machine is in a password input state for a time exceeding.
The invention also provides a second password interception preventing method which is applied to a second processor arranged on a POS machine, wherein the POS machine comprises a touch screen, a first processor and a second processor, and the method comprises the following steps:
the signal output end of the touch screen is connected, and the signal output end of the touch screen is switched to be connected with the second processor after the first processor arranged on the POS machine receives a password input request;
acquiring keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on the touch screen arranged on the POS machine;
generating password keyboard matrix data according to the keyboard attributes, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
acquiring a pressing signal acting on the touch screen, and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
when the first key is detected to be pressed, sequentially saving key values of the first key as a password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
and when the second key position is detected to be pressed, encrypting according to the stored password combination through the second processor to generate encrypted data, sending the encrypted data to the first processor, and switching the signal output end of the touch screen to connect the signal output end with the first processor.
Further, after the "connecting the signal output terminal of the touch screen", the method further includes:
acquiring a preset time threshold sent by the first processor;
and when the POS machine is detected to be in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
The invention also provides a third password interception preventing method which is applied to a POS machine, wherein the POS machine comprises a touch screen, a first processor and a second processor, the control instruction input end of the touch screen is connected with the first processor, and the signal output end of the touch screen is connected with the first processor in an initial state, and the method comprises the following steps:
detecting a request instruction of password input, and switching a signal output end of the touch screen to be connected with the second processor;
sending keyboard attributes to the second processor through the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on a touch screen arranged on the POS machine;
generating password keyboard matrix data according to the keyboard attributes through the second processor, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
generating a password keyboard according to the password keyboard matrix data through the first processor, and displaying the password keyboard on a display interface of the touch screen;
acquiring a pressing signal acting on the touch screen through the second processor, and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
when the second processor detects that the first key is pressed, sequentially saving key values of the first key as a password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
when the first processor receives the password input state, displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the obtained times of the password input state, and the password input state is used for indicating that the second processor detects the first key position;
and when the second processor detects that the second key position is pressed, encrypting according to the stored password combination through the second processor to generate encrypted data, sending the encrypted data to the first processor, and switching a signal output end of the touch screen to connect the signal output end with the first processor.
Further, after the "detecting the request instruction of the password input, switching the signal output terminal of the touch screen to connect with the second processor", the method further includes:
sending, by the first processor, a preset time threshold to a second processor;
and when the second processor detects that the POS machine is in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
The invention also provides a password interception preventing device, which is applied to a first processor arranged on a POS machine, wherein the POS machine comprises a touch screen, the first processor and a second processor, and the device comprises:
the detection module is used for detecting a request instruction for inputting a password and switching a signal output end of the touch screen to be connected with a second processor arranged on the POS machine;
the sending module is used for sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on a touch screen arranged on the POS machine;
the first acquisition module is used for acquiring password keyboard matrix data sent by the second processor, wherein the password keyboard matrix data is generated by the second processor according to the keyboard attribute, the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as the value of an input password, and the second key position is used for determining the end of the state of the input password;
the keyboard display module is used for generating a password keyboard according to the password keyboard matrix data and displaying the password keyboard on a display interface of the touch screen;
the password state display module is used for acquiring a password input state sent by the second processor and displaying an identification number on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of times of the acquired password input state, and the password input state is used for indicating that the second processor detects the first key position;
and the first connecting module is used for acquiring encrypted data sent by the second processor and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
The invention also provides a password interception preventing device, which is applied to a second processor arranged on a POS machine, wherein the POS machine comprises a touch screen, a first processor and a second processor, and the device comprises:
the second connection module is used for connecting the signal output end of the touch screen, and the signal output end of the touch screen is switched to be connected with the second processor after the first processor arranged on the POS machine receives a password input request;
the second acquisition module is used for acquiring the keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on the touch screen arranged on the POS machine;
the random keyboard generation module is used for generating password keyboard matrix data according to the keyboard attributes and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
the key position identification module is used for acquiring a pressing signal acting on the touch screen and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
the password storage module is used for sequentially storing key values of the first key as password combinations when the first key is detected to be pressed, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
and the ending module is used for encrypting according to the stored password combination through the second processor to generate encrypted data when the second key position is detected to be pressed, sending the encrypted data to the first processor, and switching the signal output end of the touch screen to be connected with the first processor.
The invention also provides a POS machine, which comprises a touch screen, a storage device, a first processor and a second processor, wherein the control instruction input end of the touch screen is connected with the first processor, the signal output end of the touch screen is connected with the first processor in an initial state,
the storage device is configured to store one or more programs that, when executed by the first processor, cause the first processor to perform the first cryptographic anti-intercept method described above, and when executed by the second processor, cause the first processor to perform the second cryptographic anti-intercept method described above.
The technical scheme provided by the embodiment of the disclosure can have the following beneficial effects:
(1) according to the invention, by arranging the first processor and the second processor, the signal output end of the touch screen is connected with the first processor in an initial state, a level change signal generated by pressing the touch screen can be only acquired by the first processor, and when a password input mode is entered, the signal output end of the touch screen is switched to acquire a signal through the second processor, so that other programs, functions or application monitoring connected and controlled by the first processor are prevented from acquiring a password; after the password is input, the signal output end of the touch screen is switched to acquire a signal through the first processor, and the security of the password is guaranteed.
(2) The invention stores keyboard attributes through the first processor, and generates the password keyboard matrix data through the second processor, so that the password keyboard is not interfered by the first processor on the premise of ensuring normal operation, the randomness of the password keyboard is ensured, and the password input safety is improved.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
Drawings
FIG. 1 is a flowchart illustrating steps of a first cryptographic anti-intercept method according to an embodiment of the present invention.
FIG. 2 is a block diagram of a first cryptographic anti-intercept apparatus according to an embodiment of the present invention.
FIG. 3 is a flowchart illustrating steps of a second cryptographic anti-intercept method according to an embodiment of the present invention.
FIG. 4 is a block diagram of a second cryptographic intercept prevention apparatus according to an embodiment of the present invention.
FIG. 5 is a flowchart illustrating steps of a third method for password anti-interception according to an embodiment of the present invention.
Fig. 6 is a schematic view of a partial structure of a POS machine according to an embodiment of the present invention.
Detailed Description
Reference will now be made in detail to embodiments of the present invention, examples of which are illustrated in the accompanying drawings, wherein like or similar reference numerals refer to the same or similar elements or elements having the same or similar function throughout. The embodiments described below with reference to the drawings are illustrative only and should not be construed as limiting the invention.
As used herein, the singular forms "a", "an", "the" and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It will be further understood that the terms "comprises" and/or "comprising," when used in this specification, specify the presence of stated features, integers, steps, or operations, but do not preclude the presence or addition of one or more other features, integers, steps, operations, or groups thereof.
It will be understood by those skilled in the art that, unless otherwise defined, all terms (including technical and scientific terms) used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. It will be further understood that terms, such as those defined in commonly used dictionaries, should be interpreted as having a meaning that is consistent with their meaning in the context of the prior art and will not be interpreted in an idealized or overly formal sense unless expressly so defined herein.
It will be appreciated by those skilled in the art that the terms "application," "application program," "application software," and the like, as used herein, are intended to refer to a computer software product electronically-adapted to be electronically-constructed, from a collection of computer instructions and associated data resources, in accordance with the principles of the present invention. Unless otherwise specified, such nomenclature is not itself limited by the programming language class, level, or operating system or platform upon which it depends. Of course, such concepts are not limited to any type of terminal.
It should be understood by those skilled in the art that the user interface and the display interface referred to in the present invention generally refer to a display interface capable of being used to send the control instruction to the intelligent terminal, and for example, may be an option (or a button, added by the application program, the same applies hereinafter) in a setup page of an Android/IOS/Windows Phone system, an option in a notification bar or an interaction page called from a desktop, or an option in a page constructed by an active component of the application program.
Referring to fig. 1, the present invention first provides a first password interception prevention method applied to a first processor of a POS machine, the method including the following steps:
and S101, detecting a request instruction of password input, and switching a signal output end of the touch screen to be connected with a second processor arranged on the POS machine.
The POS machine comprises a touch screen, a first processor and a second processor, wherein the first processor is connected with a signal output end of the touch screen arranged on the POS machine in an initial state. The first processor is a main processor of the terminal equipment and is used for processing the affairs and functions of the terminal equipment except password input; the second processor is a secure processor of the terminal device and is only used for processing the transactions and functions related to password input.
In this embodiment, after a request instruction for inputting a password is detected (the user may click on an input box of the password, or a transaction order generated when the user performs online shopping or places an order by swiping a card needs to input the password), the signal output end of the touch screen is switched to be connected with the second processor, that is, in a password input mode, information acting on the touch screen can only be acquired by the second processor without passing through the first processor, so that the security of password information is ensured.
And S102, sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on a touch screen arranged on the POS machine.
S103, password keyboard matrix data sent by the second processor are obtained, wherein the password keyboard matrix data are generated by the second processor according to the keyboard attributes, the password keyboard matrix data comprise a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of the state of the input password.
Specifically, the password keyboard matrix data comprises first key positions for representing input password values, such as a number key position, a letter key position, a symbol key position and the like, and when a user presses the corresponding first key position, the corresponding key position information is represented and input as a password; the password keyboard matrix data can also comprise a second key position, the second key position is used for confirming that the password input is finished, and when a user presses the second key position, the password input is finished.
In this embodiment, the control instruction input end of the touch screen is connected with the first processor, that is, the display interface of the touch screen is controlled by the first processor, and the random sequence keyboard generated by the second processor can be displayed on the touch screen only through the first processor.
On one hand, because the touch screen also comprises elements of other applications or programs besides password input, if the control instruction input end is also connected and controlled through the second processor, the second processor is inevitably associated with the other applications and/or programs, and the security of the password cannot be ensured; on the other hand, the keyboard attribute information of different applications, apps or programs may be different, and an operator or a manufacturer may modify the keyboard attribute according to the needs of different customers, which may easily cause a tampering risk if the keyboard attribute is stored in the second processor.
And S104, generating a password keyboard according to the password keyboard matrix data, and displaying the password keyboard on a display interface of the touch screen.
And S105, acquiring the password input state sent by the second processor, and displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the acquired number of times of the password input state, and the password input state is used for indicating that the second processor detects the first key position.
And S106, acquiring encrypted data sent by the second processor, and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
Further, in an embodiment of the present invention, after S101, the method further includes:
and sending a preset time threshold to the second processor, wherein the preset time threshold is used for monitoring whether the POS machine is in a password input state for a time exceeding.
Preferably, after step S101, an embodiment of the present invention sends a password specification parameter to the second processor through the first processor, where the password specification parameter includes a password minimum length and/or a password maximum length, and the method further includes:
and when the key position information corresponding to the touch instruction is detected to be the second key position, acquiring the length of the stored key position value combination.
And outputting an error reporting instruction when the length of the key bit value combination is detected to be smaller than the minimum length of the password or larger than the maximum length of the password.
In one embodiment, the present invention provides a first password interception prevention apparatus 100 applied to a first processor provided on a POS machine, the POS machine including a touch screen, a first processor and a second processor, the apparatus 100 storing a plurality of instructions, the instructions being adapted to be loaded by the processor and to execute a first password interception prevention method, including:
s101: and when a request instruction of password input is detected, switching a signal output end of the touch screen to enable the signal output end to be connected with a second processor arranged on the POS machine.
S102: and sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on a touch screen arranged on the POS machine.
S103: and acquiring password keyboard matrix data sent by the second processor, wherein the password keyboard matrix data is generated by the second processor according to the keyboard attribute, the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as the value of the input password, and the second key position is used for determining the end of the state of the input password.
S104: and generating a password keyboard according to the password keyboard matrix data, and displaying the password keyboard on a display interface of the touch screen.
S105: and acquiring a password input state sent by the second processor, and displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of times of the acquired password input state, and the password input state is used for indicating that the second processor detects the first key position.
In this embodiment, when the second processor detects that the key corresponding to the touch instruction is the first key, the second processor stores the key value of the first key and sends the password input state to the first processor, where the password input state is used as state information and does not include substantial content, such as specific key value information. After the first processor receives the password input state, the touch screen is controlled to display an identification number, which can be an identification symbol such as ' x ', ' and the like, so as to remind a user of the length of the password which has been input.
S106: and acquiring encrypted data sent by the second processor, and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
In this embodiment, by encrypting the obtained password combination (for example, after the user sequentially presses 1, 2, and 3 keys, presses the second key to complete password input, the password at this time is 123, but there is a security problem in directly outputting "123"), the encryption algorithm of the password BLOCK belongs to the prior art, and the encryption is performed according to the stored key position combination and other information (including time, status details, etc.) combination, which is not specifically set forth in the present invention.
For convenience of description, the apparatus 100 is split into a functional module architecture, as shown in fig. 2, including:
and the detection module 101 is used for detecting a request instruction for inputting a password and switching the signal output end of the touch screen to connect the signal output end with a second processor arranged on the POS machine.
And the sending module 102 is configured to send the keyboard attributes to the second processor, where the keyboard attributes include password character types, key number, and display positions of the keys on a touch screen disposed on the POS machine.
The first obtaining module 103 is configured to obtain password keyboard matrix data sent by the second processor, where the password keyboard matrix data is generated by the second processor according to the keyboard attribute, where the password keyboard matrix data includes a first key location and a second key location, the first key location is used as a value of an input password, and the second key location is used to determine an end of a password input state.
And the keyboard display module 104 is configured to generate a password keyboard according to the password keyboard matrix data, and display the password keyboard on a display interface of the touch screen.
And the password state display module 105 is configured to acquire a password input state sent by the second processor, and display an identification number on a display interface of the touch screen, where the number of the identification numbers is the same as the number of times of the acquired password input state, and the password input state is used to indicate that the second processor detects the first key.
And the first connecting module 106 is used for acquiring encrypted data sent by the second processor and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
And when the password input mode is finished, switching the signal output end of the touch screen to be connected with the first processor so as to complete a cycle and ensure that the second processor does not intervene in terminal control in a non-password input state.
Referring to fig. 3, the present invention further provides a password interception preventing method, which is applied to a second processor disposed on a POS machine, where the POS machine includes a touch screen, a first processor, and a second processor, and the method includes the following steps:
and S201, connecting a signal output end of the touch screen, and switching the signal output end of the touch screen to be connected with the second processor after the first processor arranged on the POS machine receives a password input request.
S202, obtaining the keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on the touch screen arranged on the POS machine.
And S203, generating password keyboard matrix data according to the keyboard attributes, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of the state of the input password.
S204, obtaining the pressing signal acted on the touch screen, and determining the key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute.
In this embodiment, the control instruction input end of the touch screen is connected to the first processor, that is, the display interface of the touch screen is controlled by the first processor, so that the second processor cannot know the keyboard attributes at this time, such as the number layout, the key size, the keyboard position, the current number layout of the terminal (full screen display, half screen display, partial screen display, etc.), the size of the random sequence keyboard keys, and the corresponding positions of the random sequence keyboard keys on the display interface, which are necessary attributes for assisting in judging which key to press, and sends the key size to the second processor through the first processor, so that the second processor can judge the key size according to the keyboard attributes and the acquired touch instruction.
S205, when the first key is detected to be pressed, sequentially saving the key values of the first key as password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key.
S206, when the first key is detected to be pressed, sequentially saving the key values of the first key as password combination, and sending the password input state to the first processor.
In this embodiment, after determining the key position corresponding to the touch instruction according to the touch instruction and the keyboard attribute, the second processor performs further detection, first determines whether the touch instruction corresponds to the first key position, and when the key position corresponding to the touch instruction is not the first key position, determines whether the touch instruction corresponds to the second key position, and if not, that is, the touch instruction is a null instruction, and does not perform other steps to wait for information of a next touch instruction.
Further, in an embodiment of the present invention, after S201, the method further includes:
acquiring a preset time threshold sent by the first processor;
and when the POS machine is detected to be in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
In this embodiment, the password specification parameters based on different applications, programs, or software are different, and even the password specification parameters based on different operators or clients are different, so that the password specification parameters are set in the first processor, so as to modify and adjust the parameters, and the risk of tampering with the second processor due to intervention can be avoided.
In one embodiment, the present invention provides a first password interception prevention apparatus 200 applied to a first processor provided on a POS machine, the POS machine including a touch screen, a first processor and a second processor, the apparatus 200 storing a plurality of instructions adapted to be loaded by the processor and to execute a first password interception prevention method, including:
and S201, connecting a signal output end of the touch screen, and switching the signal output end of the touch screen to be connected with the second processor after the first processor arranged on the POS machine receives a password input request.
S202, obtaining the keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on the touch screen arranged on the POS machine.
And S203, generating password keyboard matrix data according to the keyboard attributes, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of the state of the input password.
S204, obtaining the pressing signal acted on the touch screen, and determining the key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute.
S205, when the first key is detected to be pressed, sequentially saving the key values of the first key as password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key.
S206, when the second key position is detected to be pressed, the second processor encrypts according to the stored password combination to generate encrypted data, the encrypted data are sent to the first processor, and the signal output end of the touch screen is switched to be connected with the first processor.
For convenience of description, the apparatus 200 is split into a functional module architecture, as shown in fig. 4, including:
and the second connection module 201 is used for connecting the signal output end of the touch screen, and when the first processor arranged on the POS machine receives the password input request, the signal output end of the touch screen is switched to be connected with the second processor.
A second obtaining module 202, configured to obtain the keyboard attribute sent by the first processor, where the keyboard attribute includes a password character type, a key number, and a display position of a key on the touch screen disposed on the POS machine.
And the random keyboard generation module 203 is used for generating password keyboard matrix data according to the keyboard attributes and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of the state of the input password.
And the key position identification module 204 is used for acquiring the pressing signal acting on the touch screen and determining the key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute.
A password saving module 205, configured to, when it is detected that the first key is pressed, sequentially save key values of the first key as a password combination, and send a password input state to the first processor, where the password input state is used to indicate that the first key is detected by the second processor.
And an ending module 206, configured to encrypt, by the second processor, according to the stored password combination to generate encrypted data when it is detected that the second key is pressed, send the encrypted data to the first processor, and switch a signal output end of the touch screen to connect the signal output end to the first processor.
Referring to fig. 5, the present invention further provides a third password interception preventing method, which is applied to a POS machine, where the POS machine includes a touch screen, a first processor and a second processor, a control instruction input end of the touch screen is connected to the first processor, and a signal output end of the touch screen is connected to the first processor in an initial state, and the method includes the following steps:
and S301, detecting a request instruction of password input, and switching a signal output end of the touch screen to be connected with the second processor.
And S302, sending keyboard attributes to the second processor through the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on a touch screen arranged on the POS machine.
And S303, generating password keyboard matrix data according to the keyboard attributes through the second processor, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of the state of the input password.
And S304, generating a password keyboard according to the password keyboard matrix data through the first processor, and displaying the password keyboard on a display interface of the touch screen.
S305, acquiring the pressing signal acting on the touch screen through the second processor, and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute.
S306, when the second processor detects that the first key is pressed, sequentially saving key values of the first key as password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key.
When the user inputs the password, the user presses the password keyboard displayed on the touch screen, presses the first key position to output the password, and presses the second key position to determine the end of inputting the password.
S307, when the first processor receives the password input state, displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of the acquired password input state times, and the password input state is used for indicating that the second processor detects the first key position.
S308, when the second processor detects that the second key position is pressed, the second processor encrypts according to the stored password combination to generate encrypted data, sends the encrypted data to the first processor, and switches the signal output end of the touch screen to enable the signal output end to be connected with the first processor.
Further, in an embodiment of the present invention, after step S301, the method further includes:
sending, by the first processor, a preset time threshold to a second processor;
and when the second processor detects that the POS machine is in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
Referring to fig. 6, the present invention further provides a POS device 300, which includes a touch screen 31, a storage device 32, a first processor 33, and a second processor 34, wherein a control instruction input end of the touch screen 31 is connected to the first processor 33, a signal output end of the touch screen 31 is connected to the first processor 33 in an initial state,
the storage device 32 is configured to store one or more programs, which when executed by the first processor 33 cause the first processor 33 to perform the first cryptographic interception method described above, and which when executed by the second processor 34 cause the second processor 34 to perform the second cryptographic interception method described above.
The technical scheme provided by the embodiment of the disclosure can have the following beneficial effects:
(1) according to the invention, by arranging the first processor and the second processor, the signal output end of the touch screen is connected with the first processor in an initial state, a level change signal generated by pressing the touch screen can be only acquired by the first processor, and when a password input mode is entered, the signal output end of the touch screen is switched to acquire a signal through the second processor, so that other programs, functions or application monitoring connected and controlled by the first processor are prevented from acquiring a password; after the password is input, the signal output end of the touch screen is switched to acquire a signal through the first processor, and the security of the password is guaranteed.
(2) The invention stores keyboard attributes through the first processor, and generates the password keyboard matrix data through the second processor, so that the password keyboard is not interfered by the first processor on the premise of ensuring normal operation, the randomness of the password keyboard is ensured, and the password input safety is improved.
Throughout the description and claims of this application, the words "comprise/comprises" and the words "have/includes" and variations of these are used to specify the presence of stated features, values, steps or components but do not preclude the presence or addition of one or more other features, values, steps, components or groups thereof.
Some features of the invention, which are, for clarity, described in the context of separate embodiments, may also be provided in combination in a single embodiment. Conversely, certain features of the invention, which are, for brevity, described in the context of a single embodiment, may also be provided separately or in any suitable combination in different embodiments.
The above describes various embodiments of the method and apparatus for password interception prevention according to the present invention. Finally, it should be noted that the above embodiments are only used for illustrating the technical solutions of the present invention and not for limiting the same. Although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those skilled in the art that various changes in form and details may be made therein without departing from the spirit and scope of the invention as defined by the appended claims.
Claims (9)
1. A password interception preventing method is applied to a first processor of a POS machine, and is characterized in that the POS machine comprises a touch screen, the first processor and a second processor, wherein the first processor is connected with a signal output end of the touch screen arranged on the POS machine in an initial state, and the method comprises the following steps:
detecting a request instruction for inputting a password, and switching a signal output end of the touch screen to enable the signal output end to be connected with a second processor arranged on the POS machine;
sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on a touch screen arranged on the POS machine;
acquiring password keyboard matrix data sent by the second processor, wherein the password keyboard matrix data is generated by the second processor according to the keyboard attribute, the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as the value of an input password, and the second key position is used for determining the end of the state of the input password;
generating a password keyboard according to the password keyboard matrix data, and displaying the password keyboard on a display interface of the touch screen;
acquiring a password input state sent by the second processor, and displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of the acquired password input states, and the password input state is used for indicating that the second processor detects the first key position;
and acquiring encrypted data sent by the second processor, and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
2. The password interception prevention method according to claim 1, wherein, after said "request instruction for detecting password input, switching a signal output terminal of said touch screen to connect to a second processor provided on said POS machine", said method further comprises:
and sending a preset time threshold to the second processor, wherein the preset time threshold is used for monitoring whether the POS machine is in a password input state for a time exceeding.
3. A password interception preventing method is applied to a second processor arranged on a POS machine, and is characterized in that the POS machine comprises a touch screen, a first processor and a second processor, and the method comprises the following steps:
the signal output end of the touch screen is connected, and the signal output end of the touch screen is switched to be connected with the second processor after the first processor arranged on the POS machine receives a password input request;
acquiring keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on the touch screen arranged on the POS machine;
generating password keyboard matrix data according to the keyboard attributes, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
acquiring a pressing signal acting on the touch screen, and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
when the first key is detected to be pressed, sequentially saving key values of the first key as a password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
and when the second key position is detected to be pressed, encrypting according to the stored password combination through the second processor to generate encrypted data, sending the encrypted data to the first processor, and switching the signal output end of the touch screen to connect the signal output end with the first processor.
4. The password intercept prevention method of claim 3, wherein after said "connecting the signal output terminal of the touch screen", the method further comprises:
acquiring a preset time threshold sent by the first processor;
and when the POS machine is detected to be in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
5. A password interception preventing method is applied to a POS machine, and is characterized in that the POS machine comprises a touch screen, a first processor and a second processor, wherein a control instruction input end of the touch screen is connected with the first processor, and a signal output end of the touch screen is connected with the first processor in an initial state, and the method comprises the following steps:
detecting a request instruction of password input, and switching a signal output end of the touch screen to be connected with the second processor;
sending keyboard attributes to the second processor through the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on a touch screen arranged on the POS machine;
generating password keyboard matrix data according to the keyboard attributes through the second processor, and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
generating a password keyboard according to the password keyboard matrix data through the first processor, and displaying the password keyboard on a display interface of the touch screen;
acquiring a pressing signal acting on the touch screen through the second processor, and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
when the second processor detects that the first key is pressed, sequentially saving key values of the first key as a password combination, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
when the first processor receives the password input state, displaying identification numbers on a display interface of the touch screen, wherein the number of the identification numbers is the same as the obtained times of the password input state, and the password input state is used for indicating that the second processor detects the first key position;
and when the second processor detects that the second key position is pressed, encrypting according to the stored password combination through the second processor to generate encrypted data, sending the encrypted data to the first processor, and switching a signal output end of the touch screen to connect the signal output end with the first processor.
6. The password interception prevention method according to claim 5, wherein after said "request instruction to detect password input, switching the signal output terminal of the touch screen to connect to the second processor", the method further comprises:
sending, by the first processor, a preset time threshold to a second processor;
and when the second processor detects that the POS machine is in a password input state and exceeds the preset time threshold, sending a command of stopping password input and switching a signal output end of the touch screen to enable the signal output end to be connected with the first processor.
7. The utility model provides a password intercepting prevention device, is applied to the first treater of locating on the POS machine, its characterized in that, the POS machine includes touch-sensitive screen, first treater and second treater, the device includes:
the detection module is used for detecting a request instruction for inputting a password and switching a signal output end of the touch screen to be connected with a second processor arranged on the POS machine;
the sending module is used for sending keyboard attributes to the second processor, wherein the keyboard attributes comprise password character types, key number and display positions of the keys on a touch screen arranged on the POS machine;
the first acquisition module is used for acquiring password keyboard matrix data sent by the second processor, wherein the password keyboard matrix data is generated by the second processor according to the keyboard attribute, the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as the value of an input password, and the second key position is used for determining the end of the state of the input password;
the keyboard display module is used for generating a password keyboard according to the password keyboard matrix data and displaying the password keyboard on a display interface of the touch screen;
the password state display module is used for acquiring a password input state sent by the second processor and displaying an identification number on a display interface of the touch screen, wherein the number of the identification numbers is the same as the number of times of the acquired password input state, and the password input state is used for indicating that the second processor detects the first key position;
and the first connecting module is used for acquiring encrypted data sent by the second processor and connecting a signal output end of the touch screen, wherein the encrypted data is generated by encrypting the second processor according to the stored password combination when the second key position is detected to be pressed.
8. The utility model provides a password intercepting-proof device, is applied to the second treater of locating on the POS machine, its characterized in that, the POS machine includes touch-sensitive screen, first treater and second treater, the device includes:
the second connection module is used for connecting the signal output end of the touch screen, and the signal output end of the touch screen is switched to be connected with the second processor after the first processor arranged on the POS machine receives a password input request;
the second acquisition module is used for acquiring the keyboard attributes sent by the first processor, wherein the keyboard attributes comprise password character types, key number and display positions of keys on the touch screen arranged on the POS machine;
the random keyboard generation module is used for generating password keyboard matrix data according to the keyboard attributes and sending the password keyboard matrix data to the first processor, wherein the password keyboard matrix data comprises a first key position and a second key position, the first key position is used as a value of an input password, and the second key position is used for determining the end of a password input state;
the key position identification module is used for acquiring a pressing signal acting on the touch screen and determining a key position corresponding to the pressing signal according to the pressing signal and the keyboard attribute;
the password storage module is used for sequentially storing key values of the first key as password combinations when the first key is detected to be pressed, and sending a password input state to the first processor, wherein the password input state is used for indicating that the second processor detects the first key;
and the ending module is used for encrypting according to the stored password combination through the second processor to generate encrypted data when the second key position is detected to be pressed, sending the encrypted data to the first processor, and switching the signal output end of the touch screen to be connected with the first processor.
9. A POS machine is characterized by comprising a touch screen, a storage device, a first processor and a second processor, wherein the control instruction input end of the touch screen is connected with the first processor, the signal output end of the touch screen is connected with the first processor in an initial state,
the storage device is configured to store one or more programs that, when executed by the first processor, cause the first processor to perform implementing the cryptographic anti-intercept method of any of claims 1-2, and that, when executed by the second processor, cause the first processor to perform implementing the cryptographic anti-intercept method of any of claims 3-4.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011480831.5A CN112462980B (en) | 2020-12-15 | 2020-12-15 | Password interception preventing method and device and POS machine |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011480831.5A CN112462980B (en) | 2020-12-15 | 2020-12-15 | Password interception preventing method and device and POS machine |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112462980A true CN112462980A (en) | 2021-03-09 |
| CN112462980B CN112462980B (en) | 2021-07-20 |
Family
ID=74804348
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011480831.5A Active CN112462980B (en) | 2020-12-15 | 2020-12-15 | Password interception preventing method and device and POS machine |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112462980B (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104156642A (en) * | 2014-07-22 | 2014-11-19 | 杭州晟元芯片技术有限公司 | Security password input system and method based on security touch screen control chip |
| CN104866129A (en) * | 2014-07-09 | 2015-08-26 | 深圳市证通电子股份有限公司 | Computing device and password input method thereof |
| CA2766491C (en) * | 2009-06-25 | 2016-06-07 | China Unionpay Co., Ltd. | A method and system for securely and automatically downloading a master key in a bank card payment system |
| CN105957276A (en) * | 2016-05-17 | 2016-09-21 | 福建新大陆支付技术有限公司 | Android system-based intelligent POS security system, starting method and data management control method |
| CN107273736A (en) * | 2017-05-10 | 2017-10-20 | 百富计算机技术(深圳)有限公司 | Cipher-code input method, device, computer equipment and storage medium |
| CN107516215A (en) * | 2017-07-25 | 2017-12-26 | 武汉天喻信息产业股份有限公司 | The intelligent POS terminal and method of PIN code can be inputted safely |
| CN108521822A (en) * | 2017-03-15 | 2018-09-11 | 深圳大趋智能科技有限公司 | Cipher safety inputting method in POS machine and device |
| CN110764680A (en) * | 2018-07-25 | 2020-02-07 | 北京京东金融科技控股有限公司 | Method and device for generating simulation keyboard, electronic equipment and computer readable medium |
-
2020
- 2020-12-15 CN CN202011480831.5A patent/CN112462980B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CA2766491C (en) * | 2009-06-25 | 2016-06-07 | China Unionpay Co., Ltd. | A method and system for securely and automatically downloading a master key in a bank card payment system |
| CN104866129A (en) * | 2014-07-09 | 2015-08-26 | 深圳市证通电子股份有限公司 | Computing device and password input method thereof |
| CN104156642A (en) * | 2014-07-22 | 2014-11-19 | 杭州晟元芯片技术有限公司 | Security password input system and method based on security touch screen control chip |
| CN105957276A (en) * | 2016-05-17 | 2016-09-21 | 福建新大陆支付技术有限公司 | Android system-based intelligent POS security system, starting method and data management control method |
| CN108521822A (en) * | 2017-03-15 | 2018-09-11 | 深圳大趋智能科技有限公司 | Cipher safety inputting method in POS machine and device |
| CN107273736A (en) * | 2017-05-10 | 2017-10-20 | 百富计算机技术(深圳)有限公司 | Cipher-code input method, device, computer equipment and storage medium |
| CN107516215A (en) * | 2017-07-25 | 2017-12-26 | 武汉天喻信息产业股份有限公司 | The intelligent POS terminal and method of PIN code can be inputted safely |
| CN110764680A (en) * | 2018-07-25 | 2020-02-07 | 北京京东金融科技控股有限公司 | Method and device for generating simulation keyboard, electronic equipment and computer readable medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112462980B (en) | 2021-07-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US6549194B1 (en) | Method for secure pin entry on touch screen display | |
| KR101006721B1 (en) | Keyboard input information security apparatus and method thereof | |
| US7366916B2 (en) | Method and apparatus for an encrypting keyboard | |
| KR102124582B1 (en) | Methods to prevent tampering with access data, mobile terminals, devices and readable storage media | |
| US20140164252A1 (en) | User terminal and payment system | |
| US20190332765A1 (en) | File processing method and system, and data processing method | |
| CN101813992A (en) | Touch screen and password-inputting method thereof | |
| US20190377863A1 (en) | Password input method, computer device and storage medium | |
| TW201539247A (en) | Password input and verification method and system thereof | |
| CN104917607A (en) | PIN encryption equipment of touch screen key-press input and encryption method | |
| US20120317410A1 (en) | Protecting data from data leakage or misuse while supporting multiple channels and physical interfaces | |
| CN114528602B (en) | Security chip operation method and device based on attack detection behavior | |
| CN112462980B (en) | Password interception preventing method and device and POS machine | |
| CN101175268B (en) | Method and device for controlling operation authority of communication terminal chip | |
| CN104462953B (en) | A kind of information processing method and electronic equipment | |
| CN112446063A (en) | Mobile terminal PIN input method, computer storage medium and terminal device | |
| CN102930222B (en) | Antibonding disc recording method and system | |
| CN109657490B (en) | Transparent encryption and decryption method and system for office files | |
| CN106789051A (en) | A kind of method for protecting file, device and computing device | |
| CN101751522B (en) | Method, device and system for preventing keys of keyboard from being logged | |
| CN115643081A (en) | Industrial control system authentication method and device and computer equipment | |
| CN107633174B (en) | User input management method and device and terminal | |
| CN115080998A (en) | Method, system, electronic device and storage medium for preventing firmware from being illegally copied | |
| CN106296192A (en) | The safe transmission method of password, system and close shield | |
| KR101926976B1 (en) | Security method of computers |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |