KR20180127080A - System and method for verifying entry by using quick response code - Google Patents

Abstract

The present invention discloses a system and method for verifying entrance by using a quick response (QR) code. According to an embodiment of the present invention, provided is a management server for verifying entrance by using a code, which includes: an entrance approval management unit that generates an instant approval code based on an entrance request received from a visitor portable device, and generates server hash data by using a visitor login token corresponding to the received entrance request, the generated instant approval code, an approval time, and an entrance device identifier; a communication control unit that controls a communication unit to transmit the generated instant approval code, the visitor login token, and the approval time to the visitor portable device; a first entrance verification unit that receives text data and an entrance device identifier associated with a code image displayed on the visitor portable device from an entrance device, determines whether the text data and the server hash data correspond to each other, and then performs primary verification; and a second entrance verification unit that determines whether the visitor portable device displays the code image and performs secondary verification for the entrance when the text data and the server hash data correspond to each other.

Description

FIELD OF THE INVENTION The present invention relates to a system and method for verifying access using a QR code,

The present invention relates to a technical idea for verifying entrance and exit using an instant code. More specifically, an instant code is issued to a passenger portable device, an issued instant code is displayed on a passenger portable device, And to a system and method for verifying access if it is recognized.

In general, an access device located in a home or office is controlled based on a user's fingerprint, personal data (e.g., a password or a password) and a key (e.g., access card, metal key, etc.). That is, the user can release the lock state of the access device or set the lock state using the fingerprint, personal data and key of the user.

On the other hand, in the case of an access device controlled through personal data, when a user inputs personal data for accessing, personal data may be exposed by a video device or a person, which may be located in the vicinity of the access device, have.

In addition, when the user is visiting a guest who is out of the office, personal data is transmitted to the guest so that the guest can cancel the lock state of the access device. However, the personal data delivered to the guest may cause a security problem, and therefore a change is required.

Further, when the locked state of the access device is controlled by using the key, there is an inconvenience that the user is required to carry the key.

Therefore, there is a need to study a method and an apparatus for solving security problems due to exposure of personal data, and for easily controlling the locking state of an access device without any additional equipment.

Korean Patent No. 10-1496646, "Access Control Method Using Instant QR Code" Korean Patent No. 10-1698580, "QR Code Recognition / Output Method and Mobile Device Recognizing QR Code" Korean Patent Publication No. 10-2016-0140363, "Method and system for providing door lock control service based on object Internet"

The present invention seeks to provide a system and method for verifying access using a QR code.

SUMMARY OF THE INVENTION The present invention provides a system and method for controlling the locking state of an access device through an access portable device without any additional equipment.

The present invention provides a system and method for preventing a security accident by exposure of a QR code by using an instant QR code.

SUMMARY OF THE INVENTION The present invention seeks to provide a system and method for remotely accessing an external person without exposing the external person to personal data.

SUMMARY OF THE INVENTION The present invention seeks to provide a system and method for verifying the access of a large number of people without the addition of physical keys.

An object of the present invention is to provide a system and method for increasing the security of an instant QR code through an approval code and an approval time issued at the request of a portable device.

The present invention provides a system and method for generating hash data by combining an access device identifier, a user login token, an instant approval code, and an approval time, and generating and verifying an instant QR code using the generated hash data.

The present invention seeks to provide a system and method for verifying the validity of text data associated with a QR code image by comparing the approval time and the current time.

The present invention provides a system and method for controlling access control of a plurality of access devices by time and period.

The present invention provides a system and method for controlling the entrance and exit management of a plurality of accessing portable devices by time and period.

The present invention intends to provide a system and method for increasing the security of a QR code image by processing data used in the QR code image as hash data before generating the QR code image.

SUMMARY OF THE INVENTION The present invention provides a system and method for improving the inconvenience of opening and closing an access device even when an intruder does not intend to access the device.

 According to an embodiment of the present invention, the management server generates an instant approval code based on an access request received from the portable electronic device, and transmits the instant access code corresponding to the entrance access token corresponding to the received access request, An entrance approval management unit for generating server hash data using the access device identifier, a communication control unit for controlling the communication unit to transmit the generated instant approval code, the entrance signing token, and the approval time to the accessing portable device, A first access verification unit for receiving the text data and the accessory device identifier associated with the code image displayed on the portable electronic device and for determining whether the text data and the server hash data correspond to each other to perform first verification of access, Data and the server hash data If the response may include the chulipja mobile device is a second access verification to determine whether displaying the code image verifying the access secondary.

According to an embodiment of the present invention, the management server determines whether or not the access portable device has access right based on the received access request, and when the access portable device has access right to the access device, You can generate code.

According to an embodiment of the present invention, the management server may further include a storage unit for storing the guest login token, the instant approval code, the approval time, the access device identifier, and the server hash data.

According to an embodiment of the present invention, the management server uses the stored accessor login token, the stored instant authorization code, the stored authorization time, the stored access device identifier, and the stored server hash using the access device identifier received from the access device Data can be retrieved.

According to an embodiment of the present invention, when the difference between the retrieved approval time and the reception time of the text data is larger than the reference time, the management server determines the text data as verification error data, When the difference between the reception time of the text data is smaller than the reference time, the text data can be determined as the verification data.

According to an embodiment of the present invention, the portable mobile device receives the generated instant approval code, the guest login token, and the approval time, and then transmits the received instant approval code, the received approval time, And generating a visitor hash data using the received visitor login token, converting the generated visitor hash data into the code image, and controlling the display to display the converted code image.

According to an embodiment of the present invention, the management server searches a session of the portable electronic device connected through the guest log-in token, requests the text data through the searched session, It is possible to receive the accessing hash data from the device, and determine whether the received accessing hash data and the server hash data correspond to each other, thereby performing second verification of the access.

According to an embodiment of the present invention, when the access hash data and the server hash data correspond, the management server can transmit a command related to the lock state release to the access device.

According to an embodiment of the present invention, the management server may search the access device list including the access device identifier based on the access request, and control the communication unit to transmit the retrieved access device list to the access portable device have.

According to an embodiment of the present invention, a portable electronic device includes a communication control unit for controlling a communication unit to receive a user's login token, an instant approval code, an approval time, and an access device identifier according to an access request from a management server, A hash data generating unit for generating hash data of a guest using the received approval time, the access device identifier and the received guest sign-in token, and a hash data generating unit for converting the generated guest hash data into a code image, Wherein the management server generates the instant approval code based on the access request, and transmits the generated instant approval code, the guest login token, the approval time, and the entrance Server hash using device identifier Data is generated, and text data and an access device identifier associated with a code image displayed on the display are received from an access device, and the access is firstly verified by determining whether or not the text data and the server hash data correspond to each other, When the text data and the server hash data correspond to each other, it is possible to perform a secondary verification of the access by determining whether the portable display device displays the code image.

According to an embodiment of the present invention, the access device controls the camera to recognize the code image displayed on the portable device, and controls the communication unit to transmit the text data and the access device identifier related to the recognized code image to the management server. Wherein the management server generates an instant approval code based on an access request received from the portable electronic device and displays the instant access code corresponding to the entrance access token corresponding to the received access request, And a server for transmitting the created instant approval code, the guest login token, and the approval time to the portable electronic device using the access device identifier, Text data and access The portable handset device displays the code image when the text data and the server hash data correspond to each other by determining whether or not the text data and the server hash data correspond to each other, And the second access can be verified.

According to an embodiment of the present invention, there is provided a method of operating a management server, the method comprising: generating, in an access management unit, an instant approval code based on an access request received from an accessory portable device; Generating the server hash data using the corresponding entrance signing token, the generated instant approval code, the approval time, and the access device identifier, and in the communication control unit, generating the instant access code Token and the approval time, a first access verification unit for receiving text data and an access device identifier associated with the code image displayed on the portable electronic device from the access device, Whether the server hash data is corresponded Determining whether or not the portable portable device displays the code image when the text data and the server hash data correspond to each other; .

According to an embodiment of the present invention, an operation method of a management server further includes storing, in a storage unit, the generated instant approval code, the guest login token, the approval time, the access device identifier and the server hash data can do.

According to an embodiment of the present invention, an operation method of a management server may include: a first access verification unit that accesses the stored entrance sign-in token, the stored instant approval code, the stored approval time And retrieving at least one of the stored access device identifier and the stored server hash data.

According to an embodiment of the present invention, when the difference between the retrieved approval time and the reception time of the text data is larger than the reference time, And determining the text data as verification data when the difference between the retrieved approval time and the reception time of the text data is smaller than the reference time in the first access verification unit.

According to an embodiment of the present invention, in the method of operation of the management server, after the received portable terminal has received the generated instant approval code, the visitor's login token and the approval time, the portable terminal transmits the received instant approval code, The entrance hash data using the approval time, the access device identifier, and the received guest sign-in token, converts the generated visitor hash data into the code image, and controls the display to display the converted code image can do.

According to an embodiment of the present invention, a system for verifying access using a QR code can control a locked state of an access device through a portable device without a separate device.

According to an embodiment of the present invention, a system for verifying access using a QR code can prevent a security incident due to exposure of a QR code by using an instant QR code.

In addition, according to an embodiment of the present invention, a system for verifying access using a QR code generated based on encrypted data can approve the access of an external person remotely without exposing the external data to the external person.

In addition, according to an embodiment of the present invention, a system for verifying access using a QR code can control access of a plurality of users without adding a physical key.

According to an embodiment of the present invention, the system for verifying the access using the QR code can increase the security of the instant QR code through the approval code and the approval time issued at the request of the portable device.

According to an embodiment of the present invention, a system for verifying an entrance / exit using a QR code generates hash data by combining an access device identifier, a user's login token, an instant approval code, and an approval time and uses the generated hash data And generate and verify an instant QR code.

According to an embodiment of the present invention, a system for verifying access using a QR code can verify the validity of text data related to a QR code image by comparing an approval time and a current time.

In addition, according to an embodiment of the present invention, a system for verifying access using a QR code can control access control of a plurality of access devices by time and period.

According to an embodiment of the present invention, a system for verifying access using a QR code can control the access management of a plurality of accessing portable devices by time and period.

In addition, according to an embodiment of the present invention, a system for verifying access using a QR code processes data used in a QR code image as hash data before generating a QR code image, Can be increased.

1 shows a block diagram of an access verification system according to an embodiment of the present invention.
2 shows a block diagram of a management server according to an embodiment of the present invention.
3 shows a block diagram of an accessory portable device according to an embodiment of the present invention.
4 shows a block diagram of an access device according to an embodiment of the invention.
5 shows a flow chart associated with a method of operation of a management server according to an embodiment of the present invention.
Figures 6 and 7 illustrate a flow diagram associated with a method of operation of an access verification system in accordance with an embodiment of the present invention.

Hereinafter, various embodiments of the present document will be described with reference to the accompanying drawings.

It is to be understood that the embodiments and terminologies used herein are not intended to limit the invention to the particular embodiments described, but to include various modifications, equivalents, and / or alternatives of the embodiments.

In the following description, well-known functions or constructions are not described in detail since they would obscure the invention in unnecessary detail.

The following terms are defined in consideration of functions in various embodiments and may vary depending on the intention of a user, an operator, or the like. Therefore, the definition should be based on the contents throughout this specification.

In connection with the description of the drawings, like reference numerals may be used for similar components.

The singular expressions may include plural expressions unless the context clearly dictates otherwise.

In this document, the expressions "A or B" or "at least one of A and / or B" and the like may include all possible combinations of the items listed together.

Expressions such as " first, "" second," " first, "or" second, " But is not limited to those components.

When it is mentioned that some (e.g., first) component is "(functionally or communicatively) connected" or "connected" to another (second) component, May be connected directly to the component, or may be connected through another component (e.g., a third component).

As used herein, the term "configured to" is intended to encompass all types of information, including, but not limited to, " , "" Made to "," can do ", or" designed to ".

In some situations, the expression "a device configured to" may mean that the device can "do " with other devices or components.

For example, a processor configured (or configured) to perform the phrases "A, B, and C" may be implemented by executing one or more software programs stored in a memory device or a dedicated processor (e.g., an embedded processor) , And a general purpose processor (e.g., a CPU or an application processor) capable of performing the corresponding operations.

Also, the term 'or' implies an inclusive or 'inclusive' rather than an exclusive or 'exclusive'.

That is, unless expressly stated otherwise or clear from the context, the expression 'x uses a or b' means any of the natural inclusive permutations.

Hereinafter, terms such as "part," "group," and the like are used to denote units for processing at least one function or operation, and may be implemented by hardware, software, or a combination of hardware and software.

1 shows a block diagram of an access verification system according to an embodiment of the present invention.

Specifically, Figure 1 illustrates components of an access verification system in accordance with an embodiment of the present invention.

Referring to FIG. 1, an access verification system according to an embodiment of the present invention includes a management server 100, a portable device 120, and an access device 140. For example, the management server 100 can transmit and receive data to and from the access portable device 120 via a network. Also, the management server 100 can transmit and receive data to / from the access device 140 via a network.

The management server 100 may receive information from the entrance portable device 120 and the entrance device 140 or may transmit information to the entrance portable device 120 and the entrance device 140 according to an embodiment of the present invention. For example, the management server 100 may receive the access device identifier from the access device 140, store the received access device identifier in the storage device, and generate list data for the stored access device identifier.

In addition, the management server 100 may receive an access request from the access portable device 120, and may determine whether the accessing portable device 120 has acquired the access right to the access device 140 based on the received access request .

After the management server 100 receives the log-in request from the portable logger 120, the management server 100 may forward the log-on token corresponding to the received log-in request to the portable logger 120.

After receiving the access device list request from the visiting portable device 120, the management server 100 searches the access device data stored in the storage unit based on the received access device list request, Can be provided to the portable device (120).

In addition, after the management server 100 receives the access authorization request for the specific access device included in the access device list from the accessing mobile device 120, the management server 100 determines whether the accessing mobile device 120 has the access right to the specific access device Can be determined.

According to an embodiment of the present invention, the management server 100 may receive an access request including at least one of a login request, an access device list request, and an access approval request from the portable mobile device 120.

For example, when the management server 100 determines that the access portable device 120 has access right to the access device 140, the management server 100 generates an instant authentication code for the portable physical device 120, The approval time associated with the code and the time at which the instant approval code was generated may be communicated to the attendant portable device 120. [

According to an embodiment of the present invention, the portable mobile device 120 receives the entrance token in response to the login request from the management server 100 and receives the access device list including the access device identifier in response to the access device list request And receive an instant approval code and approval time corresponding to the approval request.

The portable traveler 120 generates a visitor hash code by combining the visitor token, the access device identifier, the instant approval code, and the approval time received from the management server 100, and then generates a visitor hash code using the QR You can generate a code image.

That is, according to an embodiment of the present invention, a system for controlling an access device using a QR code can increase the security of an instant QR code through an approval code and an approval time issued at the request of the portable device.

The portable traveler 120 may display the generated QR code image and recognize the QR code image through the camera of the access device 140. [

According to an embodiment of the present invention, a system for controlling an access device using a QR code generates hash data by combining an access device identifier, a user login token, an instant approval code, and an approval time, To generate and verify an instant QR code.

That is, according to the embodiment of the present invention, the system for controlling the access device using the QR code can control the locked state of the access device through the access portable device without any additional equipment.

According to an embodiment of the present invention, a system for controlling an access device using a QR code can prevent a security accident caused by exposure of a QR code by using an instant QR code.

The access device 140 according to an embodiment of the present invention may recognize the QR code image and then convert the recognized QR code image into text data.

In addition, the access device 140 may transmit the converted text data and the access device identifier to the management server 100. [

In one example, the access device 140 may detect an error and repeat of the input password during access for unlocking and an attempt to force-unlock the access device 140.

In addition, the access device 140 may collect information about an object that is continuously grasped around by using the camera, and may determine whether the object is invaded by using the collected information.

Also, the access device 140 may receive a control command for releasing the lock state from the management server 100. [

That is, according to the embodiment of the present invention, the system for controlling the access device using the QR code can approve the access of the external person remotely without exposing the external data to the external person.

Also, according to an embodiment of the present invention, a system for controlling an access device using a QR code can control access to and from a plurality of entrances without adding a physical key.

Hereinafter, the operation of the management server 100, the guest portable device 120, and the access device 140 will be described in detail.

2 shows a block diagram of a management server according to an embodiment of the present invention.

Specifically, FIG. 2 illustrates components of a management server according to an embodiment of the present invention.

Referring to FIG. 2, the management server 200 according to an exemplary embodiment of the present invention includes a controller 230.

The control unit 230 may include an access management unit 232, a communication control unit 234, a first access verification unit 236, and a second access verification unit 238 according to an embodiment of the present invention.

For example, the access management unit 232 can generate an instant approval code based on the access request received from the accessing portable device.

Also, after generating the instant approval code, the access management unit 232 can determine the approval time based on the generation time of the instant approval code.

The access management unit 232 can determine whether or not the accessing portable device has the access right to the access device based on the access authorization request included in the access request.

The access management unit 232 can generate an instant approval code for approving the one-time access of the portable device when the portable device has the access right.

According to an embodiment of the present invention, the access management unit 232 may generate server hash data by combining the access log-in token, the instant access code, the access time, and the access device identifier corresponding to the access request.

That is, according to an embodiment of the present invention, a system for controlling an access device using a QR code processes data used in a QR code image as hash data before generating a QR code image, It is possible to increase the property.

According to an embodiment of the present invention, the communication controller 234 may control the communication unit 210 to receive an access request including a login request, an access device list request, and an access approval request from the portable mobile device.

The communication control unit 234 can also control the communication unit 210 to transmit the entrance sign-in token corresponding to the login request to the entrance portable device when receiving the login request from the entry-side mobile device.

In addition, the communication control unit 234 can control the communication unit 210 to transmit the access device list corresponding to the access device list request to the accessing portable device when receiving the access device list request from the accessing mobile device. Here, the access device list may include an access device identifier. Here, the communication control unit 234 can control the communication unit 210 to transmit or receive data.

Therefore, the management server 200 can transmit the guest login token, the access device identifier, the instant approval code, and the approval time to the portable device.

According to an embodiment of the present invention, the first access verification unit 236 receives the text data and the access device identifier related to the QR code image displayed on the passenger portable device from the access device, and then reads the text data and the server hash data It is possible to verify the access and to verify the access first.

For example, the first access verification unit 236 receives the text data converted from the QR code image and the access device identifier of the access device, and then uses the received access device identifier to identify the server hash data corresponding to the access device identifier Can be searched.

Also, the first access verification unit 236 may compare the retrieved server hash data with the text data, and determine whether the retrieved server hash data and the text data correspond to each other to verify the access first.

According to an embodiment of the present invention, the first access verification unit 236 uses the access device identifier received from the access device to identify the accessing user login token, the instant approval code, the approval time, and the server hash data corresponding to the access device identifier You can search.

If the difference between the retrieved approval time and the reception time of the text data is larger than the reference time, the first access verification unit 236 can determine the text data as verification error data.

The first access verification unit 236 can determine the text data as verification data when the difference between the retrieved approval time and the reception time of the text data is smaller than the reference time.

The first access verification unit 236 verifies that the text data received from the access device is the text data converted from the QR code image generated from the accessibility hash code generated on the basis of the instant approval code and the approval time provided to the portable electronic device Can be verified.

That is, the first access verification unit 236 can verify the text data received from the access device by comparing the approval time indicating the generation time of the instant approval code with the current time corresponding to the reception time of the text data.

In other words, according to an embodiment of the present invention, a system for controlling an access device using a QR code can verify the validity of text data related to a QR code image by comparing an approval time and a current time.

In addition, according to an embodiment of the present invention, a system for controlling an access device using a QR code can control access control of a plurality of access devices by time and period.

According to an embodiment of the present invention, when the text data and the server hash data correspond, the second access verification unit 238 can determine whether or not the portable display device displays the QR code image, .

That is, the second access verification unit 238 searches the portable access device connected to the user through the access log-in token used to generate the server hash data, determines whether the retrieved access portable device displays the corresponding QR code image, Can be verified.

For example, the second access verification unit 238 can determine the text data as verification data when the retrieved portable display device displays the corresponding QR code image.

For example, the second access verification unit 238 may search for a session of a portable access device connected through a visitor login token, and may request access visitor hash data corresponding to the text data through the retrieved session.

Also, the second access verification unit 238 can access the access hash data through the searched session, and then determine whether or not the server hash data corresponds to the access hash data, thereby performing the second access verification.

According to another embodiment of the present invention, the management server 200 may include a communication unit 210 and a storage unit 220.

For example, the communication unit 210 and the storage unit 220 may be controlled by the control unit 230.

The communication unit 210 may perform a function of converting a baseband signal and a bit string according to a physical layer specification of the system.

For example, the communication unit 210 may generate complex symbols by encoding and modulating transmission bit streams during data transmission.

In addition, the communication unit 210 can recover the received bit stream through demodulation and decoding of the baseband signal upon receiving the data.

In addition, the communication unit 210 may up-convert the baseband signal to an RF (radio frequency) band signal, transmit the signal through the antenna, and downconvert the RF band signal received through the antenna to a baseband signal.

The communication unit 210 may include a transmission filter, a reception filter, an amplifier, a mixer, an oscillator, a digital to analog converter (DAC), an analog to digital converter (ADC)

In addition, the communication unit 210 may include different communication modules for processing signals of different frequency bands.

According to an embodiment of the present invention, the storage unit 220 may store data such as a basic program, an application program, and setting information for the operation of the management server 200. [

In one example, the storage 220 may store at least one set of instructions (e.g., applications) for managing files in accordance with various embodiments.

In addition, the storage unit 220 may provide the stored data at the request of the control unit 230. In addition, the storage 220 may include volatile and / or non-volatile memory.

In one example, the storage unit 220 may store instructions or data related to at least one other component of the management server 200. [

Also, the storage unit 220 is included in the management server 200 and may be referred to as an 'internal storage' or an 'internal storage'.

According to an embodiment of the present invention, the storage unit 220 may store a guest login token, an instant approval code, an approval time, an access device identifier, and server hash data.

3 shows a block diagram of an accessory portable device according to an embodiment of the present invention.

Specifically, FIG. 3 illustrates components of a portable device according to an embodiment of the present invention.

Referring to FIG. 3, the portable device 300 includes a control unit 330.

The control unit 330 may include a communication control unit 332, a hash data generation unit 334, and a display control unit 336 according to an embodiment of the present invention.

For example, the communication control unit 332 may control the communication unit 310 to receive the entrance sign-in token, the instant approval code, the approval time, and the access device identifier according to the access request from the management server.

The communication control unit 332 may control the communication unit 310 to transmit an access request including at least one of a login request, an access device list request, and an access approval request to the management server.

Also, the communication control unit 332 can control the communication unit 310 to receive the entrance sign-in token corresponding to the login request from the management server. Here, the communication control unit 332 can maintain a session with the management server using the guest login token.

Also, the communication control unit 332 can control the communication unit 310 to receive the access device list corresponding to the access device list request from the management server. Here, the access device list may include an access device identifier.

Also, the communication control unit 332 can control the communication unit 310 to receive the instant approval code and the approval time corresponding to the access approval request from the management server.

For example, the communication control unit 332 can control the communication unit 310 to receive the instant approval code and the approval time from the management server when the access portable device 300 has the access right to the specific access device.

According to an embodiment of the present invention, the portable mobile device 300 can sequentially receive the login request, the access device list request, and the access approval request, and then sequentially receive the corresponding data.

Also, the portable traveler apparatus 300 can collectively receive the corresponding data after collectively transmitting the login request, the access device list request, and the access approval request.

According to an embodiment of the present invention, the hash data generation unit 334 generates the accessory hash data using the accessor's login token received from the management server, the instant approval code, the approval time, and the access device identifier selected from the received access device list can do.

In addition, according to an embodiment of the present invention, the display control unit 336 can convert the generated visitor hash data into a QR code image.

Also, according to an embodiment of the present invention, the display control unit 336 may control the display to display the converted QR code image.

The display can output the command or data received from the display control unit 336 through the input / output device.

The display may be referred to as a user interface.

For example, the display may include a liquid crystal display (LCD), a light emitting diode (LED) display, an organic light emitting diode (OLED) display, or a microelectromechanical system (MEMS) display, or an electronic paper display .

According to another embodiment of the present invention, the portable terminal device 300 may include a communication unit 310 and a storage unit 320.

For example, the communication unit 310 and the storage unit 320 may be controlled by the control unit 330.

The communication unit 310 may perform a function of converting a baseband signal and a bit string according to a physical layer standard of the system.

For example, the communication unit 310 can generate complex symbols by encoding and modulating transmission bit streams during data transmission.

In addition, the communication unit 310 may recover the received bit stream through demodulation and decoding of the baseband signal upon receiving the data.

Also, the communication unit 310 may upconvert the baseband signal to an RF (radio frequency) band signal, transmit the signal through an antenna, and downconvert the RF band signal received through the antenna to a baseband signal.

The communication unit 310 may include a transmission filter, a reception filter, an amplifier, a mixer, an oscillator, a digital to analog converter (DAC), and an analog to digital converter (ADC).

In addition, the communication unit 310 may include different communication modules for processing signals of different frequency bands.

According to an embodiment of the present invention, the storage unit 320 may store data such as a basic program, an application program, and setting information for the operation of the portable device 300.

In one example, the storage 320 may store at least one set of instructions (e.g., applications) for managing files in accordance with various embodiments.

In addition, the storage unit 320 may provide the stored data at the request of the control unit 330. In addition, the storage 320 may include volatile and / or non-volatile memory.

In one example, the storage unit 320 may store commands or data related to at least one other component of the portable mobile device 300. [

In addition, the storage unit 320 is included in the portable terminal device 300 and may be referred to as an 'internal storage' or an 'internal storage device'.

According to an embodiment of the present invention, the storage unit 320 may store the guest login token received from the management server, the instant approval code, the approval time, the access device identifier, and the guest hash data.

4 shows a block diagram of an access device according to an embodiment of the invention.

Specifically, FIG. 4 illustrates components of an access device in accordance with an embodiment of the present invention.

Referring to FIG. 4, the access device 400 includes a control unit 430.

According to an embodiment of the present invention, the control unit 430 may control the camera to recognize the QR code image displayed on the portable device.

That is, the controller 430 can control the camera 420 to recognize the QR code image displayed on the display of the portable device.

In addition, the controller 430 may convert the QR code image into text data. That is, the control unit 430 can convert the QR code image recognized by the portable electronic device into text data.

According to an embodiment of the present invention, the controller 430 may control the communication unit 410 to transmit the text data related to the QR code image and the access device identifier of the access device to the management server.

According to an embodiment of the present invention, when the management server determines that the entrance hash data and the server hash data correspond, the control unit 430 controls the communication unit 410 to receive a command related to the release of the lock state from the management server .

5 shows a flow chart associated with a method of operation of a management server according to an embodiment of the present invention.

5 is a flowchart illustrating an operation method of a management server according to an exemplary embodiment of the present invention. The method includes receiving an access request from an accessing portable device, providing an access permission code to the accessing portable device, The text data is verified in order to control the locked state of the access device.

Referring to FIG. 5, in operation 501, an operation method of the management server generates an instant approval code based on an access request. That is, the operation method of the management server determines that the accessing portable device has access right to the access device based on the access request, and generates an instant approval code. The operation method of the management server determines the time at which the instant approval code is generated as the approval time.

In operation 503, the operation method of the management server generates server hash data. That is, the method of operation of the management server includes: a guest sign-in token used for maintaining a session with the portable device at the time the guest-mobile device logs in; an instant approval code and approval time generated at step 501; The server hash data can be generated using the access device identifier of the device.

In step 505, the method of operation of the management server transmits a guest sign-in token, an instant approval code, and an approval time to the guest portable device. That is, the operation method of the management server transmits the instant approval code and the approval time to the portable device. For example, the portable mobile device transmits an access request to the management server, receives the entrance sign-in token, the access device identifier, transmits an access approval request to the access device corresponding to the received access device identifier, And can receive the instant approval code and the approval time that are generated based thereon.

In operation 507, the operation method of the management server receives the access device identifier and the text data from the access device. That is, in the operation method of the management server, when the access device recognizes the QR code image from the passenger portable device, when converting the recognized QR code image into text data and transmitting the converted text data and the access device identifier, And receives data.

In step 509, the method of operation of the management server determines whether the text data and server hash data correspond. That is, the operation method of the management server can search the server hash data using the access device identifier received from the access device, determine whether the retrieved server hash data corresponds to the received text data, and verify the access first . For example, the operation method of the management server may proceed to step 511 if the server hash data and the text data correspond. In another embodiment, if the server hash data does not correspond to the text data, the corresponding procedure can be terminated.

In operation 511, the operation method of the management server can determine whether or not the portable display device displays the QR code image to verify the access secondarily. Specifically, the method of operation of the management server searches for an accessing portable device that forms a session through a visitor login token stored in association with the retrieved server hash data. When the portable device is searched, it can be verified whether or not a QR code image corresponding to the text data is displayed on the portable device by the user, and the access can be secondarily verified. When the QR code image is displayed, the text data is determined as the verification data. If the QR code image is not displayed, the text data is determined as the verification error data. According to another embodiment of the present invention, the operation method of the management server can end the procedure when the portable device does not display the QR code image.

Figure 6 shows a flow chart associated with a method of operation of an access verification system in accordance with an embodiment of the present invention.

Specifically, FIG. 6 illustrates an operation method of an access verification system according to an exemplary embodiment of the present invention, which transmits an access request to a management server, acquires data corresponding to a transmitted access request to generate a QR code image, The procedure for recognizing a code image to an access device is illustrated.

Referring to FIG. 6, in step 631, the portable mobile device 610 performs a login procedure to the management server 600. That is, the portable traveler device 610 sends a login request to the management server 600.

In step 632, the management server 600 returns a passenger login token to the attending portable device 610. [ That is, the management server 600 returns the guest login token in response to the login request at step 631. [ For example, the management server 600 and the guest portable device 610 maintain a session through a guest login token.

In step 633, the guest portable device 610 requests the management server 600 for an access device list. That is, the portable traveler device 610 requests a list of access devices to select an access device to be an access-released object.

In step 634, the management server 600 searches the access device list and returns the retrieved access device list to the portable device 610.

At step 635, the portable traveler device 610 selects the access device 620 from the access device list, and then requests issuance of an approval code for the selected access device 620.

In step 636, the management server 600 inquires about the access right to the access device 620 of the accessing portable device 610 and then determines whether or not the accessing portable device 610 has the access right to the access device 620 , An instant approval code is generated. Here, the management server 600 may determine the time at which the instant approval code was generated as the approval time.

In step 637, the management server 600 generates server hash data and stores the generated server hash data. Specifically, the management server 600 generates an access log-in token used for forming a session of the access portable device 610, an access device identifier of the access device 620 requested by the access portable device 610, After generating the server hash data by combining an instant approval code and the approval time, the generated server hash data, the guest login token, the access device identifier, the instant approval code, and the approval time are stored.

In step 638, the management server 600 transmits the instant approval code and the approval time to the guest portable device 610. [

At step 639, the portable traveler device 610 transmits the visitor's login token received at step 632, the access device identifier selected at step 635, the instant authorization code received at step 638, And generates hash data.

In step 640, the portable traveler device 610 generates a QR code image using the generated visitor hash data. In other words, the portable traveler device 610 generates a QR code image corresponding to the visitor's hash data.

At step 641, the portable traveler device 610 controls the display to display the QR code image.

In step 642, the access device 620 controls the camera to recognize the QR code image.

In step 643, the access device 620 converts the QR code image into text data.

The access device 620 may transmit the converted text data to the management server to request verification of the text data to determine whether the QR code image is approved. The verification procedure for text data will be described in detail in FIG.

Figure 7 shows a flow diagram associated with a method of operation of an access verification system in accordance with an embodiment of the present invention.

7 is a flowchart illustrating an operation method of an access verification system according to an exemplary embodiment of the present invention. Referring to FIG. 7, when the management server verifies text data received from an access device, The procedure for transmitting the command is illustrated.

Referring to FIG. 7, in step 731, the access device 720 controls the communication unit to transmit the access device identifier and the text data to the management server 700.

In step 732, the management server 700 retrieves the instant approval code, the approval time, the guest login token, and the server hash data using the access device identifier. That is, the management server 700 searches for the instant approval code, the approval time, the guest login token, and the server hash data stored in association with the access device identifier.

In step 733, the management server 700 compares the reference time with the difference time between the approval time and the current time searched. If the difference time is less than the reference time, the management server 700 proceeds to step 734, and if the difference time is shorter than the reference time, the management server 700 ends the procedure. That is, when the difference time is smaller than the reference time, the management server 700 primarily determines the text data as the verification data.

In step 734, the management server 700 determines whether the text data and the server hash data correspond. If the text data corresponds to the server hash data, the management server 700 proceeds to step 735, and if not, terminates the corresponding procedure. That is, when the text data corresponds to the server hash data, the management server 700 primarily determines the text data as the verification data.

In step 735, the management server 700 searches for the accessing portable device that is connected through the access log-in token retrieved in step 732.

In step 736, the management server 700 requests the retrieved portable electronic device 710 to retrieve a QR code image. Specifically, the management server 700 requests the retrieved portable device 710 to retrieve data related to the QR code image displayed by the retrieved portable electronic device 710.

In step 737, the portable traveler device 710 controls the communication unit to transmit the guest hash data to the management server 700 in response to a request from the management server 700. [

In step 738, the management server 700 determines whether the server hash data and the guest hash data correspond. For example, when the server hash data and the visitor hash data correspond to each other, the management server 700 determines text data as verification data in a tertiary manner, and then proceeds to step 739. [ In another embodiment, when the server hash data and the guest hash data do not correspond, the management server 700 ends the procedure. That is, the management server 700 determines the text data as verification error data.

In step 739, the management server 700 transmits an unlock command to the access device 720. [ Then, the access device 720 releases the lock state in accordance with the unlock command.

In the above-described specific embodiments, elements included in the invention have been expressed singular or plural in accordance with the specific embodiments shown.

It should be understood, however, that the singular or plural representations are selected appropriately for the sake of convenience of description and that the above-described embodiments are not limited to the singular or plural constituent elements, , And may be composed of a plurality of elements even if they are represented by a single number.

While the invention has been shown and described with reference to certain exemplary embodiments thereof, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention as defined by the appended claims.

Therefore, the scope of the present invention should not be limited by the illustrated embodiments, but should be determined by the scope of the appended claims, as well as the appended claims.

100: management server 120: portable terminal
140: access device 200: management server
210: Communication control unit 220:
230: Control section 232: Access control section
236: first access verification unit 238: second access verification unit
300: Entrant portable device 310: Communication controller
320: storage unit 330: control unit
332: Hash data generator 334:
400: access device 410: communication unit
420: camera 430:

Claims (17)

Generates an instant approval code based on an access request received from the accessory portable device, and generates server hash data using the entrance sign token corresponding to the received access request, the generated instant approval code, the approval time, and the access device identifier An access approval management section for generating an access authorization;
A communication control unit for controlling the communication unit to transmit the generated instant approval code, the guest login token, and the approval time to the portable electronic device;
A first access verification unit which receives text data and an accessory device identifier associated with a code image displayed on the accessing portable device from an access device, and determines whether the text data and the server hash data correspond to each other, ; And
And a second access verification unit for determining whether the portable portable device displays the code image and performing second verification of the access when the text data and the server hash data correspond to each other
A management server that uses code to verify access.
The method according to claim 1,
The access authorization management unit,
Determining whether or not the access portable device is authorized to access based on the received access request, and when the access portable device has an access right to the access device, generates the instant approval code
A management server that uses code to verify access.
The method according to claim 1,
Further comprising: a storage unit for storing the guest login token, the instant approval code, the approval time, the access device identifier, and the server hash data
A management server that uses code to verify access.
The method of claim 3,
The first access verification unit
Retrieves at least one of the stored visitor login token, the stored instant approval code, the stored approval time, the stored access device identifier, and the stored server hash data using the access device identifier received from the access device
A management server that uses code to verify access.
5. The method of claim 4,
The first entrance /
Determining the text data as verification error data when the difference between the retrieved approval time and the reception time of the text data is greater than a reference time,
When the difference between the retrieved approval time and the reception time of the text data is smaller than the reference time, the text data is determined as the verification data
A management server that uses code to verify access.
The method according to claim 1,
The accessory portable device comprises:
After receiving the generated instant approval code, the guest login token, and the approval time, using the received instant approval code, the received approval time, the access device identifier and the received guest login token, Data is generated,
Converts the generated entrance hash data into the code image, and controls the display to display the converted code image
A management server that uses code to verify access.
The method according to claim 6,
And the second entrance /
Searching for a session of the portable physical device accessed through the guest's login token, requesting the text data through the searched session, receiving the guest's hash data from the portable physical device, Determines whether or not there is correspondence between the received visitor hash data and the server hash data, and performs second verification of the access
A management server that uses code to verify access.
8. The method of claim 7,
The communication control unit,
When the access hash data and the server hash data correspond to each other, a command relating to the release of the lock state is transmitted to the access device
A management server that uses code to verify access.
The method according to claim 1,
The communication control unit,
The control unit searches the access device list including the access device identifier based on the access request and controls the communication unit to transmit the retrieved access device list to the portable device
A management server that uses code to verify access.
A communication control unit for controlling the communication unit to receive the entrance signing token, the instant approval code, the approval time, and the entrance device identifier according to the access request from the management server;
A hash data generation unit that generates access hash data using the received instant approval code, the received approval time, the access device identifier, and the received guest sign-in token; And
And a display control unit for controlling the display to display the converted code image after converting the generated entrance hash data into a code image,
The management server includes:
Generating the instant approval code based on the access request, generating server hash data using the generated instant approval code, the guest login token, the approval time, and the access device identifier, Wherein the server receives the text data and the accessory device identifier associated with the displayed code image and then determines whether the text data and the server hash data correspond to each other to firstly verify the access and if the text data and the server hash data correspond, Determines whether or not the portable display device displays the code image, and performs second verification of the access
A portable access device for verifying access using a code.
11. The method of claim 10,
The management server includes:
The mobile terminal searches for a session of the portable mobile device connected through the guest log-in token, requests the text data through the searched session, receives the guest's hash data from the portable mobile device, Determines whether or not there is correspondence between the received visitor hash data and the server hash data, and performs second verification of the access
A portable access device for verifying access using a code.
And a control unit for controlling the communication unit to control the camera to recognize the code image displayed on the portable electronic device and transmit the text data and the access device identifier related to the recognized code image to the management server,
The management server includes:
Generates an instant approval code based on an access request received from the portable electronic device, and generates server hash data using the user's login token corresponding to the received access request, the generated instant approval code, the approval time and the access device identifier Transmits the generated instant approval code, the guest login token and the approval time to the portable electronic device, receives the text data and the access device identifier related to the code image displayed on the portable electronic device from the entrance device Determines whether the text data and the server hash data correspond to each other, first verifies the access, and, if the text data and the server hash data correspond, determines whether the portable display device displays the code image The entrance is referred to as a secondary inspection To
An access device that verifies access using code.
Generating an instant approval code on the basis of an access request received from an accessory portable device in an access management unit;
Generating server hash data in the access management unit using a user login token corresponding to the received access request, the generated instant approval code, the approval time, and the access device identifier;
Controlling, by the communication control unit, the communication unit to transmit the generated access authorization token and the corresponding entrance sign-in token and the approval time to the accessing portable device;
The first access verification unit determines whether or not the text data and the server hash data correspond to each other after receiving the text data and the accessory device identifier related to the code image displayed on the portable display device from the access device, Verifying; And
Determining whether the portable portable device displays the code image if the text data and the server hash data correspond to each other and then performing second verification of the entrance and exit by the second entrance verification unit
A method of operating a management server for verifying access using code.
14. The method of claim 13,
And storing the generated instant approval code, the guest login token, the approval time, the access device identifier and the server hash data in a storage unit
A method of operating a management server for verifying access using code.
15. The method of claim 14,
Wherein the step of determining correspondence between the text data and the server hash data comprises:
The first access verification unit identifies the stored accessor login token, the stored instant access code, the stored access time, and the stored accessory device identifier and the stored server hash data using the access device identifier received from the access device Searching for at least one of
A method of operating a management server for verifying access using code.
16. The method of claim 15,
Wherein the step of determining correspondence between the text data and the server hash data comprises:
Determining, as the verification error data, the text data when the difference between the retrieved approval time and the reception time of the text data is larger than the reference time in the first access verification unit; And
And determining the text data as verification data if the difference between the retrieved approval time and the reception time of the text data is smaller than the reference time in the first access verification unit
A method of operating a management server for verifying access using code.
14. The method of claim 13,
The accessory portable device comprises:
After receiving the generated instant approval code, the guest sign-in token, and the approval time, using the received instant approval code, the received approval time, the access device identifier, and the received guest sign-in token, Lt; / RTI >
Converts the generated entrance hash data into the code image, and controls the display to display the converted code image
A method of operating a management server for verifying access using code.

Images