CN203799402U - Electronic identification card chip card, card reader, electronic identification card authentication system - Google Patents
Electronic identification card chip card, card reader, electronic identification card authentication system Download PDFInfo
- Publication number
- CN203799402U CN203799402U CN201420198047.9U CN201420198047U CN203799402U CN 203799402 U CN203799402 U CN 203799402U CN 201420198047 U CN201420198047 U CN 201420198047U CN 203799402 U CN203799402 U CN 203799402U
- Authority
- CN
- China
- Prior art keywords
- card
- electronic
- chip
- reader
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
- 238000012545 processing Methods 0.000 claims abstract description 47
- 230000006698 induction Effects 0.000 claims abstract description 5
- 238000012795 verification Methods 0.000 claims description 50
- 238000004891 communication Methods 0.000 claims description 26
- 230000001939 inductive effect Effects 0.000 claims description 3
- 238000000034 method Methods 0.000 description 14
- 230000006870 function Effects 0.000 description 13
- 238000010586 diagram Methods 0.000 description 6
- 230000008569 process Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 230000009977 dual effect Effects 0.000 description 3
- 101100520142 Caenorhabditis elegans pin-2 gene Proteins 0.000 description 2
- 230000008901 benefit Effects 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 2
- 238000012790 confirmation Methods 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 238000003556 assay Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- 238000000151 deposition Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 238000007689 inspection Methods 0.000 description 1
- 239000000463 material Substances 0.000 description 1
- 230000008450 motivation Effects 0.000 description 1
- 238000004080 punching Methods 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 238000011144 upstream manufacturing Methods 0.000 description 1
Landscapes
- Credit Cards Or The Like (AREA)
Abstract
The utility model discloses an electronic identification card chip card, which comprises an electronic identification card chip card body as well as an integrated circuit IC chip and an induction coil arranged thereon. The IC chip comprises a microprocessor MPU, a first electrically erasable programmable read-only memory EEPROM, a second EEPROM, a first read-only memory ROM, a second ROM, and an input/output IO interface, wherein the microprocessor MPU is used for data processing and storage management of the electronic identification card chip card; the first electrically erasable programmable read-only memory EEPROM is connected with the MPU through a bus, and is used for storing electronic identification card applications; the second EEPROM is connected with the MPU through a bus, and is used for storing other applications except the electronic identification card applications on the electronic identification card chip card; the first read-only memory ROM is connected with the MPU through a bus, and is used for storing individualized instance data of the electronic identification card applications; the second ROM is connected with the MPU through a bus, and is used for storing individualized instance data of the other applications except the electronic identification card applications on the electronic identification card chip card; and the input/output IO interface is connected with the MPU through a bus, and is used for inputting and outputting data of the electronic identification card chip card. The utility model further discloses a card reader and an electronic identification card authentication system. According to the electronic identification card chip card, the card reader and the electronic identification card authentication system, the safety of identity authentication can be improved.
Description
Technical field
The utility model relates to field of information security technology, relates in particular to electronic ID card chip card, card reader, electronic identity card verification system.
Background technology
Genuine cyber identification certification is that subscriber data authenticity is verified to examination & verification, proves user real identification, ensures all families legitimate rights and interests, thus basis of credit, the reliable internet of Erecting and improving.The mode of genuine cyber identification certification is at present mainly authentication ids.But there are following two kinds of deficiencies in this kind of authentication mode at present:
1, the hidden danger that information exposes: client's sensitive information is preserved respectively by each website, the safety coefficient of each website is depended in the security of this information, also depends on information preserver's motivation; Simultaneously the network user is in the time of registration real-name authentication information, the risk that exists authentication information to be ravesdropping.
2, can not ensure that user identity is true completely, the network user's real-name authentication is only suitable for, in this inside, website, failing to realize the general of internet on the one hand; The network user only need fill in any ID (identity number) card No. and name can complete certification on the other hand, through having the certification of legal effect, fails the authentic representative network user's true identity.
So how carrying out the problem that network ID authentication solves genuine cyber identification authentication is the problems that people are inquiring into always.
Utility model content
The utility model embodiment provides a kind of electronic ID card chip card, and in order to improve the security of authentication, this electronic ID card chip card comprises:
Electronic ID card chip card body, is located at IC (Integrated Circuit, integrated circuit) chip and inductive coil on electronic ID card chip card body;
Described IC chip comprises:
MPU (Micro Processor Unit, microprocessor), for data processing and the memory management of electronic ID card chip card;
The one EEPROM (Electrically Erasable Programmable Read-Only Memory, EEPROM (Electrically Erasable Programmable Read Only Memo)), is connected by bus with MPU, applies for store electrons I.D.;
The 2nd EEPROM, is connected by bus with MPU, for other application except electronic ID card application on store electrons I.D. chip card;
The one ROM (Read-Only Memory, ROM (read-only memory)), is connected by bus with MPU, for the individualized instance data of store electrons I.D. application;
The 2nd ROM, is connected by bus with MPU, for the individualized instance data of other application except electronic ID card application on store electrons I.D. chip card;
IO (Input Output, input and output) interface, is connected by bus with MPU, for the input and output of electronic ID card chip card data.
In an embodiment, described IC chip also comprises:
RAM (Random Access Memory, random access memory), is connected by bus with MPU, for the odd-job data of store electrons I.D. chip card.
In an embodiment, described IC chip also comprises:
CAU (Cipher Arithmetic Unit, encryption-decryption coprocessor), is connected by bus with MPU, for the computing of electronic ID card chip card data encrypting and deciphering.
In an embodiment, described IC chip also comprises:
SL (master control safety equipment), is connected by bus with MPU, for the inner each equipment of electronic ID card chip card is carried out to hardware protection.
The utility model embodiment also provides a kind of electronic ID card card reader of above-mentioned electronic ID card chip card, and in order to improve the security of authentication, this electronic ID card card reader comprises:
Central processing unit, for data processing and the memory management of electronic ID card card reader;
IC-card read write line, is connected with central processing unit, for electronic ID card chip card is carried out to reading and writing data;
Storer, is connected with central processing unit, for operating system and the application of store electrons card reader of ID card;
Electronic ID card secure firmware, is connected with central processing unit, for security information and the electronic ID card chip card transaction information of store electrons I.D..
In an embodiment, described electronic ID card card reader also comprises:
IC-card safety chip, is connected with central processing unit, carries out authentication processing for the electronic ID card chip card data that IC-card read write line is read.
In an embodiment, described electronic ID card card reader also comprises:
Communication encryption chip, is connected with central processing unit, for encrypted electronic card reader of ID card output data, and deciphering electronic ID card card reader input data;
Wireless communication module, is connected with communication encryption chip, and the data after encrypting for output communication encryption chip, send the external data of reception to communication encryption decryption chip.
In an embodiment, described wireless communication module comprises:
Bluetooth module, and/or, GPS (Global Positioning System, GPS) module.
In an embodiment, described electronic ID card card reader also comprises:
Display, is connected with central processing unit, for showing electronic ID card chip card transaction information.
In an embodiment, described electronic ID card card reader also comprises:
Keyboard, is connected with central processing unit, for the inputting interface of electronic ID card chip card transaction information is provided.
In an embodiment, described electronic ID card card reader also comprises:
Battery, is connected with central processing unit, for power supply.
In an embodiment, described electronic ID card card reader also comprises:
Micro USB (Universal Serial Bus, USB (universal serial bus)) socket, is connected with central processing unit, for powering and communication interface being provided.
In an embodiment, described IC-card read write line comprises:
Contact IC card reader-writer, for carrying out reading and writing data to the electronic ID card chip card inserting;
Radio-frequency (RF) IC card read write line, for carrying out reading and writing data with non-contacting RF-wise to electronic ID card chip card.
In an embodiment, described electronic ID card card reader also comprises:
Shell, described shell is provided with: electronic ID card chip card socket and electronic ID card chip card radio frequency induction district.
The utility model embodiment also provides a kind of electronic identity card verification system, and in order to improve the security of authentication, this electronic identity card verification system comprises:
Above-mentioned electronic ID card chip card;
The above-mentioned electronic ID card card reader being connected with described electronic ID card chip card.
Electronic ID card chip card in the utility model embodiment, card reader, electronic identity card verification system, can improve the security of authentication, wherein IC chip card is as the higher medium of a kind of current safety coefficient, to be commonly China citizen and hold, there is very high coverage rate and utilization rate.The authentication of other field in IC chip card and society is carried out to combination, can improve security and the convenience of citizen's routine use Internet resources; EID chip card is equipped with special eID card reader, has ensured the security of session data in eID chip card internal data and verification process; Along with the expansion of following eID application, the type of service that eID chip card is supported can constantly be upgraded.
Brief description of the drawings
In order to be illustrated more clearly in the utility model embodiment or technical scheme of the prior art, to the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described below, apparently, accompanying drawing in the following describes is only embodiment more of the present utility model, for those of ordinary skill in the art, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.In the accompanying drawings:
Fig. 1 is the structural representation of electronic ID card chip card in the utility model embodiment;
Fig. 2 is the possible position schematic diagram of each several part on electronic ID card chip card in the utility model embodiment;
Fig. 3 is the IC chip structure figure of electronic ID card chip card in the utility model embodiment;
Fig. 4 is the schematic diagram of electronic ID card chip card dual master control key technique in the utility model embodiment;
Fig. 5 is the structural representation of electronic ID card card reader in the utility model embodiment;
Fig. 6 is the vertical view of electronic ID card card reader in the utility model embodiment;
Fig. 7 is the front view of electronic ID card card reader in the utility model embodiment:
Fig. 8 is the upward view of electronic ID card card reader in the utility model embodiment;
Fig. 9 is the exemplary plot of electronic identity card verification system in the utility model embodiment;
Figure 10 is the reciprocal process schematic diagram of electronic ID card chip card and electronic ID card card reader in the utility model embodiment;
Figure 11 is electronic identity card verification system exemplifying embodiment figure in the utility model embodiment.
Embodiment
For making object, technical scheme and the advantage of the utility model embodiment clearer, below in conjunction with accompanying drawing, the utility model embodiment is described in further details.At this, schematic description and description of the present utility model is used for explaining the utility model, but not as to restriction of the present utility model.
Inventor considers, along with the popularization of chip card, the bank card of chip medium will progressively be replaced the bank card of magnetic strip medium.Chip card has more high-grade safety technique, and card image can distort or copy without technology at present temporarily, and therefore every chip card has stronger uniqueness.But owing to not setting up information interaction channel between China's official status Verification System and banking system, the network user and network environment, so chip card cannot represent that holder carries out authentication at each application of society at present.In the utility model embodiment, substitute the trend of magnetic stripe card in connection with IC chip card, electronic ID card (eID) chip card, card reader, electronic identity card verification system are proposed, object is to make electronic ID card chip card to possess citizen's information, electronic ID card chip card and social other non-banking field authentications are carried out to combination, solve the safety issue of genuine cyber identification authentication.
Electronic ID card chip card in the utility model embodiment can have national structure and authenticate the unique ID issuing, and makes electronic ID card chip card possess real name authentication information.Fig. 1 is the structural representation of electronic ID card chip card in the utility model embodiment.As shown in Figure 1, in the utility model embodiment, electronic ID card chip card comprises: electronic ID card chip card body, be located at IC chip and inductive coil on electronic ID card chip card body.Wherein, IC chip can use the product such as Infineon, NXP semiconductor company, and chip model can be P5CD041, P5CD081 etc., supports RSA Algorithm, domestic SM2 algorithm.Electronic ID card chip card in the utility model embodiment not only can be applied to standard chips card, also can be applicable to the special-shaped card of difformity, material, for example can make the shapes such as key chain, necklace, wrist-watch, decorative pendant, and can be connected with other ornaments such as lanyard, chaining.Fig. 2 is the possible position schematic diagram of each several part on electronic ID card chip card in the utility model embodiment.As shown in Figure 2, on electronic ID card chip card, can also comprise the magnetic stripe position (magnetic track 1,2,3) that ISO7811-4 and ISO7811-5 specify, signature strip, and the punching press Raised Character position that specifies of ISO7811-3.
Fig. 3 is the IC chip structure figure of electronic ID card chip card in the utility model embodiment.As shown in Figure 3, IC chip can comprise:
MPU, for data processing and the memory management of electronic ID card chip card; When enforcement, can be responsible for central operation, processing and the management function of system;
The one EEPROM, is connected by bus with MPU, applies for store electrons I.D.; When enforcement, can be implemented as eID program storage (eID EEPROM), use hard mask technique storage eID applet (application);
The 2nd EEPROM, is connected by bus with MPU, for other application except electronic ID card application on store electrons I.D. chip card; When enforcement, can be implemented as ordinary procedure storer (OTHER EEPROM), other application of storage eID chip card (as sector application) applet;
The one ROM, is connected by bus with MPU, for the individualized instance data of store electrons I.D. application; When enforcement, can be implemented as eID data-carrier store (eID ROM), the individualized instance data of storage eID applet;
The 2nd ROM, is connected by bus with MPU, for the individualized instance data of other application except electronic ID card application on store electrons I.D. chip card; When enforcement, can be implemented as general data storer (OTHER ROM), the individualized instance data of storage eID chip card other application (as financial application, sector application) applet;
IO interface, is connected by bus with MPU, for the input and output of electronic ID card chip card data, provides communications function when enforcement.
Again as shown in Figure 3, while specifically enforcement, IC chip can also comprise:
RAM, is connected by bus with MPU, for the odd-job data of store electrons I.D. chip card.
When concrete enforcement, IC chip can also comprise:
CAU, is connected by bus with MPU, for the computing of electronic ID card chip card data encrypting and deciphering.When enforcement, can be implemented as eID encryption-decryption coprocessor (CAU), carry out encryption, the decrypt operation of eID electronic identity authentication information and other application messages.
When concrete enforcement, IC chip can also comprise:
SL (master control safety equipment), is connected by bus with MPU, for the inner each equipment of electronic ID card chip card is carried out to hardware protection.
Fig. 4 is the schematic diagram of electronic ID card chip card dual master control key technique in the utility model embodiment.As shown in Figure 4, in the utility model embodiment, electronic ID card chip card chip internal structure adopts card dual master control key technique (binary channels technology), and chip card chip controls ensures that financial application and eID application in IC-card are used respectively card master control key (KMC key) independent maintenance separately.Issuer security domain (ISD) exists with card issuer's identity on card, and its major responsibility is the responsibility in Ka Shang execute card publisher.The function that the application that has pair publisher or its application supplier to provide is loaded, installs, deleted.EID chip card has two ISD, and the system resource (ROM and EEPROM) that these two ISD can manage is independently, and certain ISD can not do any operation (read and write) to the system resource of another ISD management.Because the independence of resource, so to any order, the performance results of many ISD is identical with single ISD.By above-mentioned control, thereby ensure to deposit in eID in eID ROM application (eID applet) and deposit in the individualized instance data of eID in EEPROM, and deposit in financial application, the sector application (applets) in common ROM and the individualized instance data of depositing in common EEPROM and be independent of each other.
The utility model embodiment also provides a kind of electronic ID card card reader of above-mentioned electronic ID card chip card, the device that eID chip card is carried out verification, revises off-line cipher, obtains citizen's digital certificate and carry out authentication by network insertion to public security verification system, authentication and payment are carried out by connecting eID verification system in the fields such as social security, medical treatment, traffic, public the Internet that can be applicable to.
Fig. 5 is the structural representation of electronic ID card card reader in the utility model embodiment.As shown in Figure 5, in the utility model embodiment, electronic ID card card reader can comprise:
Central processing unit 101, for data processing and the memory management of electronic ID card card reader; The functions such as data operation, Data Control and module controls are provided for equipment when enforcement;
IC-card read write line 102,103, is connected with central processing unit 101, for electronic ID card chip card is carried out to reading and writing data; When enforcement, IC-card read write line 102,103 can comprise: contact IC card reader-writer 102, for the electronic ID card chip card inserting is carried out to reading and writing data, meets when enforcement and be not limited to ISO7816 protocol requirement; Radio-frequency (RF) IC card read write line 103, for non-contacting RF-wise, electronic ID card chip card being carried out to reading and writing data, meets when enforcement and is not limited to ISO14443 protocol requirement.
Storer 105, is connected with central processing unit 101, for operating system and the application of store electrons card reader of ID card; When enforcement, meet and be not limited to SPI agreement, model can be ST M25P64, ATMEL AT45DB642 etc.;
Electronic ID card secure firmware 112, be connected with central processing unit 101, for security information and the electronic ID card chip card transaction information of store electrons I.D., when enforcement, the security information of electronic ID card can be for example eID maintenance key, and electronic ID card secure firmware model can be ST M25P64, ATMEL AT45DB642 etc.
Again as shown in Figure 5, while specifically enforcement, electronic ID card card reader can also comprise:
IC-card safety chip 104, is connected with central processing unit 101, carries out authentication processing for the electronic ID card chip card data that IC-card read write line 102,103 is read.
When concrete enforcement, electronic ID card card reader can also comprise:
Communication encryption chip 106, is connected with central processing unit 101, for encrypted electronic card reader of ID card output data, and deciphering electronic ID card card reader input data;
Wireless communication module 107, is connected with communication encryption chip 106, and the data after encrypting for output communication encryption chip 106, send the external data of reception to communication encryption chip 106 and decipher.
When concrete enforcement, wireless communication module can comprise:
Bluetooth module, and/or, GPS module etc.; Wireless communication module and outer PC wireless connections, the input data that transmit for receiving outer PC, and export the output data after encrypting to outer PC.
When concrete enforcement, electronic ID card card reader can also comprise:
Display 108, is connected with central processing unit 101, for showing electronic ID card chip card transaction information.
When concrete enforcement, electronic ID card card reader can also comprise:
Keyboard 109, is connected with central processing unit 101, for the inputting interface of electronic ID card chip card transaction information is provided; When enforcement, meet and be not limited to GPIO agreement.
When concrete enforcement, electronic ID card card reader can also comprise:
Battery 110, is connected with central processing unit 101, for power supply.
When concrete enforcement, electronic ID card card reader can also comprise:
Micro USB (Micro USB) socket 111, is connected with central processing unit 101, for powering and communication interface being provided; When enforcement, for equipment provides power supply, provide communication interface with host computer, meet and be not limited to the requirement of USB communications protocol.
When concrete enforcement, electronic ID card card reader can also comprise: shell, shell is provided with: electronic ID card chip card socket and electronic ID card chip card radio frequency induction district.Fig. 6 is the vertical view of electronic ID card card reader, and Fig. 7 is the front view of electronic ID card card reader, and Fig. 8 is the upward view of electronic ID card card reader.As shown in Fig. 6,7,8, electronic ID card card reader also comprises: shell 100, this shell 100 comprises: IC-card socket 102', USB mouth 111' and IC-card radio frequency induction district 103'.On shell 100, be also provided with display 108.Electronic ID card card reader not only can be read and write eID chip card standard card, and its noncontact coil also can be read and write eID chip card special-shaped card.
The utility model embodiment also provides a kind of electronic identity card verification system, and this electronic identity card verification system comprises:
Above-mentioned electronic ID card chip card;
The above-mentioned electronic ID card card reader being connected with described electronic ID card chip card.
When concrete enforcement, described electronic identity card verification system can also comprise:
Client's PC, be connected with electronic ID card card reader, third-party server, carry out electronic ID card verification operation for logging on third party server, obtain electronic ID card information according to the instruction triggering electronic ID card card reader of third-party server from electronic ID card chip card and offer third-party server;
Third-party server, is connected with client's PC, electronic ID card card reader, and for providing services on the Internet to client, the electronic ID card information that electron gain card reader of ID card provides, connects public security verification system electronic ID card information is verified;
Public security verification system, is connected with third-party server, for electronic ID card information is carried out to authentication.
Fig. 9 is the exemplary plot of electronic identity card verification system in the utility model embodiment.Client 1, eID chip card 2, eID card reader 3, internet 4, public security verification system 5, third-party server 6 and client's PC 7 have been shown in Fig. 9.Wherein:
Client 1 refers to the eID chip card of holding issued by banks and the bank client of holding eID card reader.
EID chip card 2 is the financial chip card with eID application as described above.
EID card reader 3 is as described abovely can carry out verification to eID chip card, revise off-line cipher, obtain citizen's digital certificate (electronic ID card information), be connected with eID chip card 2 by Contact Type Ic Card card reader or radio-frequency IC card reader, be connected with client's PC 7 by Micro USB socket (or other modes), and be linked into by internet 4 device that public security verification system 5 carries out authentication by client's PC 7.
Internet 4 refers to the internet for connecting public security verification system 5, third-party server 6 and client's PC 7.
Public security verification system 5 refers to storage citizen's digital certificate (being stored in the electronic ID card information in electronic ID card chip card) and individual citizens information, the verification system of being safeguarded by the Ministry of Public Security, inquire about individual citizens information and carry out authentication by citizen's digital certificate, being connected with third-party server 6, client's PC 7 by internet.
Third-party server 6 is to point to the Internet resources that client provides services on the Internet and can connect public security verification system and carry out authentication, is connected with public security verification system 5, client's PC 7 by internet.
Client's PC 7 refers to the computing machine of the operated use eID authentication of client 1, is connected with eID card reader 3 by USB interface (or other modes), is connected with public security verification system 5, third-party server 6 by internet 4.
In the utility model embodiment, the electronic ID card proof procedure of above-mentioned electronic identity card verification system can comprise:
Electronic ID card chip card is connected with electronic ID card card reader;
Electronic ID card card reader obtains the electronic ID card chip card off line PIN (Personal Identification Number, individual recognition code) of user's typing, is sent to electronic ID card chip card;
Electronic ID card chip card mates the electronic ID card chip card off line PIN of user's typing with the electronic ID card chip card off line PIN of storage, back-checking success instruction in the time that the match is successful.
When concrete enforcement, before electronic ID card chip card is connected with electronic ID card card reader, also comprise:
User carries out electronic ID card verification operation by client's PC logging on third party server;
Third-party server instruction triggers electronic ID card verification operation.
When concrete enforcement, can also comprise:
Electronic ID card card reader, receiving after the verification succeeds instruction that electronic ID card chip card returns, is obtained electronic ID card information from electronic ID card chip card;
Electronic ID card card reader offers third-party server by electronic ID card information and carries out authentication.
When concrete enforcement, third-party server carries out authentication, comprising:
Electronic ID card information is offered public security verification system by third-party server;
Public security verification system is verified electronic ID card information;
Third-party server receives the result that public security verification system returns.
Figure 10 is the reciprocal process schematic diagram of eID chip card and eID card reader.As shown in figure 10, for ensureing security when reading out data in eID card reader of eID chip card, eID card reader and eID chip card have customized a processing procedure that is enclosed within data transmission in hardware layer in the time of data interaction.Before using eID chip card to carry out proof of identity taking user below, the necessary verification off line PIN operating is as example at every turn, and concrete flow chart of data processing is as follows:
Step 1, client are connected into eID card reader by eID chip card by contact IC card reader-writer or radio-frequency (RF) IC card read write line;
Step 2, client install eID function software in client's PC, and according to menu, " eID authentication " function is selected in prompting;
After step 3, customer selecting corresponding function, eID function software calls the eID device driver being installed in client's PC, generates verification eID chip card off line PIN instruction to eID card reader;
Step 4, eID card reader Micro USB socket receive after the off line PIN checking command that upstream eID device driver sends, call storer by central processing unit and obtain related application, and call eID card reader display screen demonstration " please input off line PIN "; Client, by the off line PIN of this eID chip card of eID card reader keyboard typing, clicks " confirmation " button; Central processing unit obtains the typing off line PIN of client institute value, call eID secure firmware and obtain eID off line PIN check key, calling communication encryption chip is encrypted off line PIN, and form eID chip card off line PIN checking command, by contact IC card reader-writer or radio-frequency IC card reader, instruction is sent to eID chip card;
Step 5, eID chip card obtain by IO interface the off line PIN checking command that eID card reader sends, and microprocessor MPU is resolved off line PIN checking command, obtain the off line PIN-E encrypting through eID card reader of client's typing; Microprocessor MPU calls eID encryption-decryption coprocessor CAU by master control safety equipment the off line PIN-E encrypting is decrypted, and obtains the off line PIN-1 of client's typing; Obtain the off line PIN-2 being stored in eID data-carrier store eID EEPROM by master control safety equipment, off line PIN-1 and off line PIN-2 are compared, as identical, by IO interface back-checking success instruction, as difference, back-checking failure;
Step 6, eID card reader are called the legitimacy of the eID chip card back-checking result that IC-card safety chip checking contact IC card reader-writer or radio-frequency IC card reader obtain, after being verified, central processing unit is back to eID function software by eID chip card off line PIN check results by Micro USB socket.
Step 7, eID function software receive after off line PIN check results, carry out follow-up processing flow according to programmed logic.
From above-mentioned flow process, can recognize, the typing of eID chip card off line PIN, transmission, verification complete in eID card reader and card inside completely.EID card reader is to ensure that user cipher do not listened by key in user is input to the process of card reader, client is after eID card reader input off-line cipher, by eID card reader use after eID off line PIN secret key encryption directly and eID chip card mutual, off-line cipher is without operating system, keep off-line cipher security and can not tamper.
Lift the concrete enforcement of an instantiation explanation electronic identity card verification system below.Figure 11 is the exemplifying embodiment figure of electronic identity card verification system in this example.In this example, client uses the notebook personal computer of connecting Internet to login certain forum website, this prompting user of forum carries out authentication login, client is connected to its notebook computer by eID card reader by USB interface, eID chip card is inserted to eID card reader IC-card socket, on notebook personal computer, open eID function software, select " eID authentication " function, eID card reader display screen shows " please input off line PIN ", the client eID chip card off line PIN that typing is held in eID card reader, click " confirmation " button, authentication can normally be logined forum by rear client and be carried out regular job.Idiographic flow is as follows:
Step 1, user's logging on third party server are carried out regular job and specific transactions operation;
Step 2, third-party server, according to the content of the performed operation of user, if relate to the operation that need to carry out authentication, point out user to carry out authentication, as " please use your eID chip card to carry out authentication and could continue this time operation ";
Step 3, user point out according to third-party server, use eID card reader to be connected into PC, and eID chip card, by putting into eID card reader, is selected eID identity to recognize and tested transaction in eID function software;
Step 4, eID card reader are obtained eID authentication instruction, and prompting requires typing off line PIN in eID reader display, user is according to prompting this eID chip card off line of typing PIN in eID card reader, and verification off line PIN instruction is sent to eID chip card by eID card reader;
Step 5, eID chip card receive after inspection off line PIN instruction, carry out off line PIN verification operation, after upchecking, assay are returned to eID card reader;
Step 6, eID card reader receive off line PIN check results, generate eID authentication information application instruction and are sent to eID chip card;
Step 7, eID chip card receive and obtain after eID authentication information application instruction, and the eID authentication information ciphertext of this eID chip card is sent to eID card reader;
Obtained eID information ciphertext is returned to third-party server by step 8, eID card reader, calls Ministry of Public Security's authentication interface connection public security system carry out authentication by third-party server;
Step 9, public security verification system obtain the eID information ciphertext that third-party server sends, and the private key that uses public security verification system to store is decrypted, and identity authentication result is returned to third-party server;
Step 10, third-party server complete authentication transaction according to the Ministry of Public Security according to result, complete subsequent transaction.
In sum, the utility model embodiment substitutes the trend of magnetic stripe card in conjunction with IC chip card, propose a kind ofly to there is national structure and authenticate eID chip card, card reader, the electronic identity card verification system of issuing unique ID, object is to make IC chip card to possess national authentication citizen information, IC chip card and social other non-banking field authentications are carried out to combination, solve the safety issue of genuine cyber identification authentication.The utility model embodiment has advantages of following:
1.IC chip card, as the higher medium of a kind of current safety coefficient, will be commonly China citizen and hold, and have very high coverage rate and utilization rate.The authentication of other field in IC chip card and society is carried out to combination, can improve security and the convenience of citizen's routine use Internet resources.
2.eID chip card has the unified citizen's digital certificate signed and issued of the Ministry of Public Security of China, has uniqueness with authoritative, and citizen uses eID chip card to carry out digital signature, certification, has legal effect.
3.eID chip card is equipped with special eID card reader, has ensured the security of session data in eID chip card internal data and verification process.
4. along with the expansion of following eID application, the type of service that eID chip card is supported can constantly be upgraded.The security that in eID chip card, citizen's digital certificate possesses and authority, can pass through eID card reader and Verification System, is applied to social more areas.
Above-described specific embodiment; the purpose of this utility model, technical scheme and beneficial effect are further described; institute is understood that; the foregoing is only specific embodiment of the utility model; and be not used in limit protection domain of the present utility model; all within spirit of the present utility model and principle, any amendment of making, be equal to replacement, improvement etc., within all should being included in protection domain of the present utility model.
Claims (15)
1. an electronic ID card chip card, is characterized in that, comprising:
Electronic ID card chip card body, is located at integrated circuit (IC) chip and inductive coil on electronic ID card chip card body;
Described IC chip comprises:
Microprocessor MPU, for data processing and the memory management of electronic ID card chip card;
The first EEPROM (Electrically Erasable Programmable Read Only Memo) EEPROM, is connected by bus with MPU, applies for store electrons I.D.;
The 2nd EEPROM, is connected by bus with MPU, for other application except electronic ID card application on store electrons I.D. chip card;
The first read only memory ROM, is connected by bus with MPU, for the individualized instance data of store electrons I.D. application;
The 2nd ROM, is connected by bus with MPU, for the individualized instance data of other application except electronic ID card application on store electrons I.D. chip card;
Input and output IO interface, is connected by bus with MPU, for the input and output of electronic ID card chip card data.
2. electronic ID card chip card as claimed in claim 1, is characterized in that, described IC chip also comprises:
Random access memory ram, is connected by bus with MPU, for the odd-job data of store electrons I.D. chip card.
3. electronic ID card chip card as claimed in claim 1, is characterized in that, described IC chip also comprises:
Encryption-decryption coprocessor CAU, is connected by bus with MPU, for the computing of electronic ID card chip card data encrypting and deciphering.
4. the electronic ID card chip card as described in as arbitrary in claims 1 to 3, is characterized in that, described IC chip also comprises:
Master control safety equipment SL, is connected by bus with MPU, for the inner each equipment of electronic ID card chip card is carried out to hardware protection.
5. an electronic ID card card reader for the arbitrary described electronic ID card chip card of claim 1 to 4, is characterized in that, comprising:
Central processing unit, for data processing and the memory management of electronic ID card card reader;
IC-card read write line, is connected with central processing unit, for electronic ID card chip card is carried out to reading and writing data;
Storer, is connected with central processing unit, for operating system and the application of store electrons card reader of ID card;
Electronic ID card secure firmware, is connected with central processing unit, for security information and the electronic ID card chip card transaction information of store electrons I.D..
6. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprises:
IC-card safety chip, is connected with central processing unit, carries out authentication processing for the electronic ID card chip card data that IC-card read write line is read.
7. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprises:
Communication encryption chip, is connected with central processing unit, for encrypted electronic card reader of ID card output data, and deciphering electronic ID card card reader input data;
Wireless communication module, is connected with communication encryption chip, and the data after encrypting for output communication encryption chip, send the external data of reception to communication encryption decryption chip.
8. electronic ID card card reader as claimed in claim 7, is characterized in that, described wireless communication module comprises:
Bluetooth module, and/or, global position system GPS module.
9. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprises:
Display, is connected with central processing unit, for showing electronic ID card chip card transaction information.
10. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprises:
Keyboard, is connected with central processing unit, for the inputting interface of electronic ID card chip card transaction information is provided.
11. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprise:
Battery, is connected with central processing unit, for power supply.
12. electronic ID card card reader as claimed in claim 5, is characterized in that, also comprise:
Micro universal serial bus USB socket, is connected with central processing unit, for powering and communication interface being provided.
13. electronic ID card card reader as described in as arbitrary in claim 5 to 12, is characterized in that, described IC-card read write line comprises:
Contact IC card reader-writer, for carrying out reading and writing data to the electronic ID card chip card inserting;
Radio-frequency (RF) IC card read write line, for carrying out reading and writing data with non-contacting RF-wise to electronic ID card chip card.
14. electronic ID card card reader as claimed in claim 13, is characterized in that, also comprise:
Shell, described shell is provided with: electronic ID card chip card socket and electronic ID card chip card radio frequency induction district.
15. 1 kinds of electronic identity card verification systems, is characterized in that, comprising:
The arbitrary described electronic ID card chip card of claim 1 to 4;
The arbitrary described electronic ID card card reader of claim 5 to 14 being connected with described electronic ID card chip card.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201420198047.9U CN203799402U (en) | 2014-04-22 | 2014-04-22 | Electronic identification card chip card, card reader, electronic identification card authentication system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201420198047.9U CN203799402U (en) | 2014-04-22 | 2014-04-22 | Electronic identification card chip card, card reader, electronic identification card authentication system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN203799402U true CN203799402U (en) | 2014-08-27 |
Family
ID=51381600
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201420198047.9U Expired - Lifetime CN203799402U (en) | 2014-04-22 | 2014-04-22 | Electronic identification card chip card, card reader, electronic identification card authentication system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN203799402U (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103955733A (en) * | 2014-04-22 | 2014-07-30 | 中国工商银行股份有限公司 | Electronic identity card chip card, card reader and electronic identity card verification system and method |
| WO2017166084A1 (en) * | 2016-03-30 | 2017-10-05 | 魏晓敏 | Client and identity verification system |
| CN113489592A (en) * | 2021-07-01 | 2021-10-08 | 公安部第三研究所 | System and method for achieving opening processing of shortcut clearance capability aiming at eID electronic license |
-
2014
- 2014-04-22 CN CN201420198047.9U patent/CN203799402U/en not_active Expired - Lifetime
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103955733A (en) * | 2014-04-22 | 2014-07-30 | 中国工商银行股份有限公司 | Electronic identity card chip card, card reader and electronic identity card verification system and method |
| WO2017166084A1 (en) * | 2016-03-30 | 2017-10-05 | 魏晓敏 | Client and identity verification system |
| CN113489592A (en) * | 2021-07-01 | 2021-10-08 | 公安部第三研究所 | System and method for achieving opening processing of shortcut clearance capability aiming at eID electronic license |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11664997B2 (en) | Authentication in ubiquitous environment | |
| CN103955733B (en) | Electronic identity card chip card, card reader and electronic identity card verification system and method | |
| US8255688B2 (en) | Systems and methods for mutual authentication using one time codes | |
| CN107077670B (en) | Method and apparatus for transmitting and processing transaction message, computer readable storage medium | |
| CN102118251B (en) | Security authentication method for internet banking remote payment based on multi-interface intelligent safety card | |
| CN105814590B (en) | Person-to-person payment using an electronic device | |
| CN112823335A (en) | System and method for password authentication of contactless cards | |
| CA2914956C (en) | System and method for encryption | |
| US20200356984A1 (en) | Transaction recording | |
| US20140289129A1 (en) | Method for secure contactless communication of a smart card and a point of sale terminal | |
| CN112602104A (en) | System and method for password authentication of contactless cards | |
| US11750368B2 (en) | Provisioning method and system with message conversion | |
| CN113196813A (en) | Provisioning initiated from a contactless device | |
| CN112889046A (en) | System and method for password authentication of contactless cards | |
| US20190043045A1 (en) | Limited operational life password for digital transactions | |
| CN113168631A (en) | System and method for password authentication of contactless cards | |
| CN112036847A (en) | Anti-counterfeiting verification method and system for offline payment of digital currency | |
| EP4154148A1 (en) | Enabling communications between applications in a mobile operating system | |
| US9325504B2 (en) | Method for secure transfer of an application from a server into a reading device unit | |
| CN203799402U (en) | Electronic identification card chip card, card reader, electronic identification card authentication system | |
| CN106779672A (en) | The method and device that mobile terminal safety pays | |
| CN102118394A (en) | Safety authentication method for remote payment through internet banking based on dual-interface safety intelligent card | |
| AU2017210752A1 (en) | Indirect security system and method | |
| KR101103189B1 (en) | System and Method for Issueing Public Certificate of Attestation using USIM Information and Recording Medium | |
| CN201947283U (en) | Security certificate device of Internet banking remote payment based on multi-interface safety smart card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term |
Granted publication date: 20140827 |
|
| CX01 | Expiry of patent term |