TW202301290A - High security locker system based on internet of thing and method thereof - Google Patents

High security locker system based on internet of thing and method thereof Download PDF

Info

Publication number
TW202301290A
TW202301290A TW110121607A TW110121607A TW202301290A TW 202301290 A TW202301290 A TW 202301290A TW 110121607 A TW110121607 A TW 110121607A TW 110121607 A TW110121607 A TW 110121607A TW 202301290 A TW202301290 A TW 202301290A
Authority
TW
Taiwan
Prior art keywords
locker
server
value
computing device
message
Prior art date
Application number
TW110121607A
Other languages
Chinese (zh)
Inventor
俞有華
Original Assignee
南開科技大學
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 南開科技大學 filed Critical 南開科技大學
Priority to TW110121607A priority Critical patent/TW202301290A/en
Publication of TW202301290A publication Critical patent/TW202301290A/en

Links

Images

Landscapes

  • Lock And Its Accessories (AREA)

Abstract

A high security locker system based on internet of thing and method thereof is disclosed. By generating a public key and a private key through asymmetric encryption on a server, and transmitting the public key to a locker as well as transmitting the private key to a computing device, and generating a random value and encrypts it with the public key as a encrypting value for transmitting to the computing device when opening the locker, so that the computing device decrypts the encrypting value with the private key to generate a verification value for transmitting to the locker, and generating a unlock signal to control a electronic lock to become unlocked when the random value is matches the verification value, so as to control the electronic lock without using a password or radio frequency identification. The mechanism is help to improve the safety of the locker.

Description

基於物聯網的高安全性置物系統及其方法High security storage system and method based on internet of things

本發明涉及一種置物系統及其方法,特別是基於物聯網的高安全性置物系統及其方法。The invention relates to a storage system and method thereof, in particular to a high-security storage system and method based on the Internet of Things.

近年來,隨著物聯網的普及與蓬勃發展,各種基於物聯網的應用便如雨後春筍般出現,例如:智慧型置物櫃。然而,其置物安全性一直以來都是各家廠商亟欲解決的問題之一。In recent years, with the popularity and vigorous development of the Internet of Things, various applications based on the Internet of Things have sprung up, such as: smart lockers. However, the safety of its storage has always been one of the problems that manufacturers are eager to solve.

一般而言,傳統的智慧型置物櫃需要透過密碼或感應卡來進行開啟。然而,由於密碼容易遺失、遺忘或遭竊;感應卡則容易遺失、遭竊或遭非法複製,所以導致智慧型置物櫃並沒有想像中的安全,也就是說,傳統的智慧型置物櫃具有置物安全性不足的問題。Generally speaking, traditional smart lockers need to be opened by a password or a proximity card. However, because the password is easily lost, forgotten or stolen; the proximity card is easily lost, stolen or illegally copied, so the smart locker is not as safe as imagined, that is to say, the traditional smart locker has The problem of insufficient security.

有鑑於此,便有廠商提出結合簡訊的二段式驗證的技術手段,其透過在開啟置物櫃時,除了使用密碼或感應之外,還必須再輸入簡訊的識別碼,用以進行雙重確認身分。然而,根據研究指出,簡訊其實並不安全,因為容易遭到攔截,因此,使用不安全的簡訊作為認證的方式,仍然無法有效解決置物安全性不足的問題。In view of this, some manufacturers have proposed a two-stage verification technology combined with text messages. When opening the locker, in addition to using a password or sensor, you must also enter the text message identification code for double confirmation of identity. . However, according to research, text messages are actually not safe because they are easy to be intercepted. Therefore, using insecure text messages as an authentication method still cannot effectively solve the problem of insufficient security of storage.

綜上所述,可知先前技術中長期以來一直存在置物安全性不足之問題,因此實有必要提出改進的技術手段,來解決此一問題。To sum up, it can be seen that there has been a problem of insufficient security of storage in the prior art for a long time, so it is really necessary to propose improved technical means to solve this problem.

本發明揭露一種基於物聯網的高安全性置物系統及其方法。The invention discloses a high-security object storage system and method based on the Internet of Things.

首先,本發明揭露一種基於物聯網的高安全性置物系統,此系統包含:伺服器及置物櫃。其中,所述伺服器又包含:登入模組及處理模組。所述登入模組用以記錄寄貨方與收貨方的身分訊息,以及允許收貨方登入伺服器生成金鑰對,其中,金鑰對包含已設定私鑰密碼的私鑰及其相應的公鑰;處理模組連接登入模組,用以在接收到寄貨訊息時,根據其中的身分訊息載入與寄貨方相應的收貨方的金鑰對,並且根據寄貨訊息中的識別碼傳送金鑰對中的公鑰,再將相應的私鑰傳送至收貨方,以及在接收到收貨訊息時,根據其中的識別碼傳送驗證信號。接著,在置物櫃的部分,其自伺服器接收公鑰及驗證信號,所述置物櫃包含:感測模組、生成模組及驅動模組。其中,感測模組用以在接收到觸發信號時,致能網路元件以與伺服器建立連線,並且致能感測元件以感測置物櫃的使用狀態;生成模組連接感測模組,用以在使用狀態為未使用時,允許在輸入裝置輸入寄貨方的身分訊息,並且在輸入身分訊息後,產生解鎖信號以控制電子鎖成為解鎖狀態,以及將置物櫃的識別碼及身分訊息一併作為寄貨訊息傳送至伺服器,當使用狀態為已使用時,允許在輸入裝置輸入收貨方的身分訊息,並且將識別碼及輸入的身分訊息一併作為收貨訊息傳送至伺服器;以及驅動模組連接生成模組,用以在接收到公鑰且置物完成時,產生上鎖信號以控制電子鎖成為上鎖狀態,以及在接收到驗證信號時,產生隨機值且提示輸入私鑰密碼,並且以接收到的公鑰對隨機值進行加密以產生加密值,再將加密值傳送至收貨方的運算裝置,使收貨方在輸入私鑰密碼後,運算裝置根據接收到的私鑰對加密值進行解密以生成驗證值,再將驗證值傳送至置物櫃的驅動模組以與隨機值進行比對,當比對相同時,所述驅動模組產生解鎖信號以控制電子鎖成為解鎖狀態。Firstly, the present invention discloses a high-security storage system based on the Internet of Things, and the system includes: a server and a locker. Wherein, the server further includes: a login module and a processing module. The login module is used to record the identity information of the sender and the receiver, and allow the receiver to log into the server to generate a key pair, wherein the key pair includes a private key with a private key password and its corresponding key pair. Public key; the processing module connects to the login module, which is used to load the consignee’s key pair corresponding to the sender according to the identity information in the consignment message when receiving the consignment message, and according to the identification in the consignment message The code transmits the public key in the key pair, and then transmits the corresponding private key to the consignee, and when receiving the receipt message, transmits the verification signal according to the identification code therein. Then, in the part of the locker, it receives the public key and the verification signal from the server, and the locker includes: a sensing module, a generating module and a driving module. Wherein, the sensing module is used to enable the network element to establish a connection with the server when receiving the trigger signal, and enable the sensing element to sense the use status of the locker; the generation module connects the sensing module The group is used to allow the input device to input the identity information of the sender when the use state is not in use, and after the identity information is input, an unlock signal is generated to control the electronic lock to be in the unlocked state, and the identification code of the locker and The identity information is sent to the server together as the delivery message. When the use status is used, the identity information of the recipient is allowed to be input on the input device, and the identification code and the input identity information are sent together as the delivery message to The server; and the driver module is connected to the generating module, which is used to generate a locking signal to control the electronic lock to become locked when the public key is received and the placement is completed, and to generate a random value and prompt when receiving the verification signal Enter the private key password, and encrypt the random value with the received public key to generate an encrypted value, and then transmit the encrypted value to the recipient's computing device, so that after the recipient enters the private key password, the computing device The obtained private key decrypts the encrypted value to generate a verification value, and then transmits the verification value to the drive module of the locker for comparison with the random value. When the comparison is the same, the drive module generates an unlock signal to control The electronic lock becomes the unlocked state.

另外,本發明還揭露一種基於物聯網的高安全性置物方法,其步驟包括:提供伺服器及置物櫃,伺服器用以記錄寄貨方與收貨方的身分訊息,以及允許收貨方登入伺服器生成金鑰對,其中,金鑰對包含已設定私鑰密碼的私鑰及其相應的公鑰;當置物櫃接收到觸發信號時,致能網路元件以與伺服器建立連線,並且致能感測元件以感測置物櫃的使用狀態;當使用狀態為未使用時,置物櫃允許在輸入裝置輸入寄貨方的身分訊息,並且在輸入身分訊息後,產生解鎖信號以控制置物櫃的電子鎖成為解鎖狀態,以及將置物櫃的識別碼及身分訊息一併作為寄貨訊息以傳送至伺服器,當使用狀態為已使用時,置物櫃允許在輸入裝置輸入收貨方的身分訊息,並且將識別碼及輸入的身分訊息一併作為收貨訊息以傳送至伺服器;伺服器在接收到寄貨訊息時,根據其中的身分訊息載入與寄貨方相應的收貨方的金鑰對,並且將金鑰對中的公鑰傳送至與識別碼相應的置物櫃,以及將私鑰傳送至收貨方,當伺服器接收到收貨訊息時,根據其中的識別碼傳送驗證信號至相應的置物櫃;以及當置物櫃接收到公鑰且置物完成時,產生上鎖信號以控制電子鎖成為上鎖狀態,當置物櫃接收到驗證信號時,產生隨機值且提示輸入私鑰密碼,並且以接收到的公鑰對隨機值進行加密以產生加密值,再將此加密值傳送至收貨方的運算裝置,使收貨方在輸入私鑰密碼後,運算裝置根據接收到的私鑰對加密值進行解密以生成驗證值,再將此驗證值傳送至置物櫃以與隨機值進行比對,當比對相同時,置物櫃產生解鎖信號以控制電子鎖成為解鎖狀態。In addition, the present invention also discloses a high-security storage method based on the Internet of Things. The steps include: providing a server and a locker, the server is used to record the identity information of the sender and the receiver, and the receiver is allowed to log in The server generates a key pair, wherein the key pair includes a private key with a private key password and its corresponding public key; when the locker receives a trigger signal, the network element is enabled to establish a connection with the server, And enable the sensing element to sense the use state of the locker; when the use state is not in use, the locker allows the input device to input the identity information of the sender, and after the identity information is input, an unlock signal is generated to control the storage The electronic lock of the locker becomes unlocked, and the identification code and identity information of the locker are sent to the server as a delivery message. When the use status is used, the locker allows input of the identity of the recipient on the input device message, and send the identification code and the input identity information together as the receipt message to the server; when the server receives the delivery message, it loads the receiver's corresponding to the sender's The key pair, and the public key in the key pair is sent to the locker corresponding to the identification code, and the private key is sent to the receiver. When the server receives the receipt message, it sends the verification according to the identification code signal to the corresponding locker; and when the locker receives the public key and the storage is completed, a lock signal is generated to control the electronic lock to become locked; when the locker receives the verification signal, a random value is generated and a private key is prompted password, and encrypt the random value with the received public key to generate an encrypted value, and then transmit the encrypted value to the computing device of the consignee, so that after the consignee enters the private key password, the computing device The private key decrypts the encrypted value to generate a verification value, and then transmits the verification value to the locker for comparison with the random value. When the comparison is the same, the locker generates an unlock signal to control the electronic lock to be in an unlocked state.

本發明所揭露之系統與方法如上,與先前技術的差異在於本發明是透過在伺服端以非對稱式加密產生公鑰及其相應的私鑰,並且將公鑰傳送至置物櫃,以及將私鑰傳送至運算裝置,當欲開啟置物櫃時,置物櫃產生隨機值且以公鑰加密以生成加密值,再將加密值傳送至運算裝置,以便由運算裝置以私鑰對接收到的加密值解密以生成驗證值,再將驗證值傳送至置物櫃,當置物櫃比對隨機值與驗證值為相符時,產生解鎖信號以控制電子鎖成為解鎖狀態,以便在無需使用密碼或無線射頻辨識的前提下控制電子鎖。The system and method disclosed in the present invention are as above, and the difference from the prior art is that the present invention generates a public key and its corresponding private key through asymmetric encryption on the server side, and transmits the public key to the locker, and sends the private key to the locker. The key is sent to the computing device. When the locker is to be opened, the locker generates a random value and encrypts it with the public key to generate an encrypted value, and then sends the encrypted value to the computing device so that the computing device uses the private key to pair the received encrypted value. Decrypt to generate a verification value, and then send the verification value to the locker. When the locker compares the random value with the verification value, an unlock signal is generated to control the electronic lock to be in an unlocked state, so that no password or radio frequency identification is required. Control the electronic lock under the premise.

透過上述的技術手段,本發明可以達成提高置物安全性之技術功效。Through the above-mentioned technical means, the present invention can achieve the technical effect of improving the safety of storage.

以下將配合圖式及實施例來詳細說明本發明之實施方式,藉此對本發明如何應用技術手段來解決技術問題並達成技術功效的實現過程能充分理解並據以實施。The implementation of the present invention will be described in detail below in conjunction with the drawings and examples, so as to fully understand and implement the implementation process of how the present invention uses technical means to solve technical problems and achieve technical effects.

在說明本發明所揭露之基於物聯網的高安全性置物系統及其方法之前,先對本發明所自行定義的名詞作說明,本發明所述的觸發信號是指透過按壓實體按鍵、觸控螢幕或以無線射頻辨識(Radio Frequency Identification, RFID)技術感應到卡片時所產生的信號。另外,本發明所述的寄貨訊息是指在置物櫃的使用狀態為未使用時所產生的訊息,其包含有置物櫃本身的識別碼及輸入的身分訊息;所述收貨訊息則是在置物櫃的使用狀態為已使用時所產生的訊息,其同樣有置物櫃本身的識別碼及輸入的身分訊息。Before explaining the high-security object storage system and its method based on the Internet of Things disclosed in the present invention, the terms defined in the present invention will be described first. The trigger signal in the present invention refers to pressing physical buttons, touch screens or The signal generated when the card is sensed by Radio Frequency Identification (RFID) technology. In addition, the delivery message mentioned in the present invention refers to the message generated when the locker is not in use, which includes the identification code of the locker itself and the input identity information; The use status of the locker is a message generated when the locker has been used, and it also has the identification code of the locker itself and the input identity information.

以下配合圖式對本發明基於物聯網的高安全性置物系統及其方法做進一步說明,請先參閱「第1圖」,「第1圖」為本發明基於物聯網的高安全性置物系統的系統方塊圖,此系統包含:伺服器110及置物櫃120。在伺服器110的部分,其包含:登入模組111及處理模組112。所述登入模組111用以記錄寄貨方與收貨方的身分訊息,以及允許收貨方登入伺服器生成金鑰對,其中,金鑰對包含已設定私鑰密碼的私鑰及其相應的公鑰。The following is a further description of the high-security storage system and its method based on the Internet of Things of the present invention in conjunction with the drawings. Please refer to "Fig. 1" first. "Picture 1" is the system of the high-security storage system based on the Internet of Things of the present invention. As a block diagram, the system includes: a server 110 and a locker 120 . Part of the server 110 includes: a login module 111 and a processing module 112 . The login module 111 is used to record the identity information of the sender and the receiver, and allow the receiver to log into the server to generate a key pair, wherein the key pair includes a private key with a private key password and its corresponding key pair. 's public key.

處理模組112連接登入模組111,用以在接收到寄貨訊息時,根據其中的身分訊息載入與寄貨方相應的收貨方的金鑰對,並且根據寄貨訊息中的識別碼傳送金鑰對中的公鑰,再將相應的私鑰傳送至收貨方,以及在接收到收貨訊息時,根據其中的識別碼傳送驗證信號。The processing module 112 is connected to the login module 111, so as to load the consignee's key pair corresponding to the sender according to the identity information therein when receiving the consignment message, and according to the identification code in the consignment message Send the public key in the key pair, and then send the corresponding private key to the recipient, and when receiving the receipt message, send a verification signal according to the identification code therein.

接著,在置物櫃120的部分,其自伺服器110接收公鑰及驗證信號,所述置物櫃120包含:感測模組121、生成模組122及驅動模組123。其中,感測模組121用以在接收到觸發信號時,致能網路元件以與伺服器110建立連線,並且致能感測元件以感測置物櫃120的使用狀態。在實際實施上,感測元件可在感測到置物櫃120的容置空間存在貨物時,將使用狀態設定為已使用,當感測元件感測到容置空間不存在貨物時,將使用狀態設定為未使用。另外,感測模組121還可設置生物特徵感應裝置,用以感應第一生物特徵訊息(如:指紋、視網膜等等),並且將第一生物特徵訊息傳送至伺服器110,再由伺服器110轉送至運算裝置130,使運算裝置130比對接收到的第一生物特徵訊息與本身預先儲存的第二生物特徵訊息,當比對不相符時,禁止以私鑰對接收到的加密值進行解密以生成驗證值。Next, in the part of the locker 120 , it receives the public key and the verification signal from the server 110 , and the locker 120 includes: a sensing module 121 , a generating module 122 and a driving module 123 . Wherein, the sensing module 121 is used for enabling the network element to establish a connection with the server 110 when receiving the trigger signal, and enabling the sensing element to sense the use state of the locker 120 . In actual implementation, when the sensing element senses that there are goods in the storage space of the locker 120, the use state is set as used, and when the sensing element senses that there is no goods in the storage space, the use state Set to unused. In addition, the sensing module 121 can also be provided with a biometric sensing device to sense the first biometric information (such as fingerprint, retina, etc.), and transmit the first biometric information to the server 110, and then the server 110 is forwarded to the computing device 130, so that the computing device 130 compares the received first biometric message with its pre-stored second biometric message. Decrypt to generate a verification value.

生成模組122連接感測模組121,用以在使用狀態為未使用時,允許在輸入裝置輸入寄貨方的身分訊息,並且在輸入身分訊息後,產生解鎖信號以控制電子鎖成為解鎖狀態,以及將置物櫃120的識別碼及身分訊息一併作為寄貨訊息傳送至伺服器110,當使用狀態為已使用時,允許在輸入裝置輸入收貨方的身分訊息,並且將識別碼及輸入的身分訊息一併作為收貨訊息傳送至伺服器110。在實際實施上,輸入裝置可為觸控螢幕、實體按鍵等等,而輸入的身分訊息則可包含身分證字號、電話號碼及使用者帳號等等。The generating module 122 is connected to the sensing module 121, so as to allow the input device to input the sender's identity information when the use state is not in use, and after inputting the identity information, generate an unlock signal to control the electronic lock to become an unlocked state , and send the identification code and identity information of the locker 120 to the server 110 as a delivery message. The identity information of is sent to the server 110 as a receipt message. In actual implementation, the input device can be a touch screen, a physical button, etc., and the input identity information can include an ID card number, a phone number, a user account number, and the like.

驅動模組123連接生成模組122,用以在接收到公鑰且置物完成時,產生上鎖信號以控制電子鎖成為上鎖狀態,以及在接收到驗證信號時,產生隨機值且提示輸入私鑰密碼,並且以接收到的公鑰對隨機值進行加密以產生加密值,再將加密值傳送至收貨方的運算裝置130,使收貨方在輸入私鑰密碼後,由運算裝置130根據接收到的私鑰對加密值進行解密以生成驗證值,再將驗證值傳送至置物櫃120的驅動模組123以與隨機值進行比對,當比對相同時,所述驅動模組123產生解鎖信號以控制電子鎖成為解鎖狀態。在實際實施上,運算裝置130可為可攜式裝置或行動裝置,如:平板電腦、筆記型電腦、智慧型手機、智慧手環、智慧型手錶等等。The driving module 123 is connected to the generating module 122, so as to generate a locking signal to control the electronic lock to become locked when the public key is received and the placement is completed, and when the verification signal is received, a random value is generated and a private key is prompted to enter. key password, and encrypt the random value with the received public key to generate an encrypted value, and then transmit the encrypted value to the computing device 130 of the consignee, so that after the consignee enters the private key password, the computing device 130 according to The received private key decrypts the encrypted value to generate a verification value, and then sends the verification value to the drive module 123 of the locker 120 for comparison with the random value. When the comparison is the same, the drive module 123 generates The unlock signal is used to control the electronic lock to become unlocked. In actual implementation, the computing device 130 can be a portable device or a mobile device, such as a tablet computer, a notebook computer, a smart phone, a smart bracelet, a smart watch, and the like.

另外,本發明之系統還可包含定位模組124,其連接感測模組121及驅動模組123,用以通過定位系統獲得置物櫃定位座標,當感測模組121接收到觸發信號時,定位模組124計算置物櫃定位座標與運算裝置130的裝置定位座標之間的距離值,並且在此距離值超過門檻值時,觸發驅動模組123產生上鎖信號以使電子鎖維持在上鎖狀態直到距離值低於門檻值為止。舉例來說,假設置物櫃定位座標為「(1,5)」、裝置定位座標為「(1,8)」則定位模組124計算出的距離值為「3」(即:「8 – 5 = 3」),若門檻值為「2」,由於距離值「3」超過門檻值「2」,所以會觸發驅動模組123產生上鎖信號。如此一來,可避免直接在遠端開啟置物櫃120的電子鎖的情況。In addition, the system of the present invention may also include a positioning module 124, which is connected to the sensing module 121 and the driving module 123 to obtain the positioning coordinates of the locker through the positioning system. When the sensing module 121 receives the trigger signal, The positioning module 124 calculates the distance value between the location coordinates of the locker and the device location coordinates of the computing device 130, and when the distance value exceeds a threshold value, triggers the driving module 123 to generate a locking signal to keep the electronic lock locked state until the distance value falls below the threshold. For example, assuming that the positioning coordinates of the locker are "(1,5)" and the device positioning coordinates are "(1,8)", the distance value calculated by the positioning module 124 is "3" (ie: "8-5 = 3"), if the threshold value is "2", since the distance value "3" exceeds the threshold value "2", the driving module 123 will be triggered to generate a lock signal. In this way, the situation of directly opening the electronic lock of the locker 120 at the remote end can be avoided.

要補充說明的是,所述置物櫃120的電源供應方式可從直接與電源插座電性連接、由電池供電以及在置物櫃提供連接埠連接電源等三種方式中選擇至少其中之一,所述連接埠允許與運算裝置連接以提供置物櫃所需電源。其中,連接埠可為符合通用序列匯流排(Universal Serial Bus, USB)的補充標準(On-The-Go, OTG)的連接埠(即:OTG連接埠),當運算裝置通過OTG連接線電性連接至OTG連接埠時,由運算裝置通過OTG連接線為置物櫃供應電源。It should be added that the power supply mode of the locker 120 can be selected from at least one of three ways of being directly electrically connected to a power socket, powered by a battery, and providing a power supply through a port in the locker. The port allows the connection with the computing device to provide the power required by the locker. Wherein, the connection port can be a connection port conforming to the supplementary standard (On-The-Go, OTG) of Universal Serial Bus (USB) (ie: OTG connection port). When connected to the OTG port, the computing device supplies power to the locker through the OTG cable.

特別要說明的是,在實際實施上,本發明所述的模組皆可利用各種方式來實現,包含軟體、硬體或其任意組合,例如,在某些實施方式中,各模組可利用軟體及硬體或其中之一來實現,除此之外,本發明亦可部分地或完全地基於硬體來實現,例如,系統中的一個或多個模組可以透過積體電路晶片、系統單晶片(System on Chip, SoC)、複雜可程式邏輯裝置(Complex Programmable Logic Device, CPLD)、現場可程式邏輯閘陣列(Field Programmable Gate Array, FPGA)等來實現。本發明可以是系統、方法及/或電腦程式。電腦程式可以包括電腦可讀儲存媒體,其上載有用於使處理器實現本發明的各個方面的電腦可讀程式指令,電腦可讀儲存媒體可以是可以保持和儲存由指令執行設備使用的指令的有形設備。電腦可讀儲存媒體可以是但不限於電儲存設備、磁儲存設備、光儲存設備、電磁儲存設備、半導體儲存設備或上述的任意合適的組合。電腦可讀儲存媒體的更具體的例子(非窮舉的列表)包括:硬碟、隨機存取記憶體、唯讀記憶體、快閃記憶體、光碟、軟碟以及上述的任意合適的組合。此處所使用的電腦可讀儲存媒體不被解釋爲瞬時信號本身,諸如無線電波或者其它自由傳播的電磁波、通過波導或其它傳輸媒介傳播的電磁波(例如,通過光纖電纜的光信號)、或者通過電線傳輸的電信號。另外,此處所描述的電腦可讀程式指令可以從電腦可讀儲存媒體下載到各個計算/處理設備,或者通過網路,例如:網際網路、區域網路、廣域網路及/或無線網路下載到外部電腦設備或外部儲存設備。網路可以包括銅傳輸電纜、光纖傳輸、無線傳輸、路由器、防火牆、交換器、集線器及/或閘道器。每一個計算/處理設備中的網路卡或者網路介面從網路接收電腦可讀程式指令,並轉發此電腦可讀程式指令,以供儲存在各個計算/處理設備中的電腦可讀儲存媒體中。執行本發明操作的電腦程式指令可以是組合語言指令、指令集架構指令、機器指令、機器相關指令、微指令、韌體指令、或者以一種或多種程式語言的任意組合編寫的原始碼或目的碼(Object Code),所述程式語言包括物件導向的程式語言,如:Common Lisp、Python、C++、Objective-C、Smalltalk、Delphi、Java、Swift、C#、Perl、Ruby與PHP等,以及常規的程序式(Procedural)程式語言,如:C語言或類似的程式語言。所述電腦程式指令可以完全地在電腦上執行、部分地在電腦上執行、作爲一個獨立的軟體執行、部分在客戶端電腦上部分在遠端電腦上執行、或者完全在遠端電腦或伺服器上執行。In particular, it should be noted that in actual implementation, the modules described in the present invention can be implemented in various ways, including software, hardware or any combination thereof. For example, in some implementations, each module can use software and hardware or one of them. In addition, the present invention can also be realized partially or completely based on hardware. For example, one or more modules in the system can be implemented through integrated circuit chips, system Single chip (System on Chip, SoC), complex programmable logic device (Complex Programmable Logic Device, CPLD), field programmable logic gate array (Field Programmable Gate Array, FPGA) and so on. The present invention can be a system, method and/or computer program. The computer program may include a computer-readable storage medium loaded with computer-readable program instructions for causing a processor to implement various aspects of the present invention, the computer-readable storage medium may be a tangible and equipment. A computer readable storage medium may be, but is not limited to, an electrical storage device, a magnetic storage device, an optical storage device, an electromagnetic storage device, a semiconductor storage device, or any suitable combination of the foregoing. More specific examples (non-exhaustive list) of computer-readable storage media include hard disks, random access memory, read-only memory, flash memory, optical disks, floppy disks, and any suitable combination of the foregoing. As used herein, computer-readable storage media are not to be construed as transient signals per se, such as radio waves or other freely propagating electromagnetic waves, electromagnetic waves propagating through waveguides or other transmission media (for example, optical signals through fiber optic cables), or transmitted electrical signals. Additionally, the computer-readable program instructions described herein may be downloaded from a computer-readable storage medium to various computing/processing devices, or downloaded over a network, such as the Internet, local area network, wide area network, and/or wireless network to an external computer device or external storage device. The network may include copper transmission cables, fiber optic transmission, wireless transmission, routers, firewalls, switches, hubs and/or gateways. The network card or network interface in each computing/processing device receives computer-readable program instructions from the network and forwards the computer-readable program instructions for storage in computer-readable storage media in each computing/processing device middle. The computer program instructions for performing the operations of the present invention may be assembly language instructions, instruction set architecture instructions, machine instructions, machine-related instructions, micro instructions, firmware instructions, or source code or object code written in any combination of one or more programming languages (Object Code), the programming language includes object-oriented programming languages, such as: Common Lisp, Python, C++, Objective-C, Smalltalk, Delphi, Java, Swift, C#, Perl, Ruby and PHP, etc., as well as conventional programs Procedural programming language, such as: C language or similar programming language. The computer program instructions may be executed entirely on the computer, partly on the computer, as a stand-alone piece of software, partly on the client computer and partly on the remote computer, or entirely on the remote computer or server to execute.

請參閱「第2A圖」至「第2D圖」,「第2A圖」至「第2D圖」為本發明基於物聯網的高安全性置物方法的方法流程圖,其步驟包括:提供伺服器及置物櫃,伺服器用以記錄寄貨方與收貨方的身分訊息,以及允許收貨方登入伺服器生成金鑰對,其中,金鑰對包含已設定私鑰密碼的私鑰及其相應的公鑰(步驟210);當置物櫃接收到觸發信號時,致能網路元件以與伺服器建立連線,並且致能感測元件以感測置物櫃的使用狀態(步驟220);當使用狀態為未使用時,置物櫃允許在輸入裝置輸入寄貨方的身分訊息,並且在輸入身分訊息後,產生解鎖信號以控制置物櫃的電子鎖成為解鎖狀態,以及將置物櫃的識別碼及身分訊息一併作為寄貨訊息以傳送至伺服器,當使用狀態為已使用時,置物櫃允許在輸入裝置輸入收貨方的身分訊息,並且將識別碼及輸入的身分訊息一併作為收貨訊息以傳送至伺服器(步驟230);伺服器在接收到寄貨訊息時,根據其中的身分訊息載入與寄貨方相應的收貨方的金鑰對,並且將金鑰對中的公鑰傳送至與識別碼相應的置物櫃,以及將私鑰傳送至收貨方,當伺服器接收到收貨訊息時,根據其中的識別碼傳送驗證信號至相應的置物櫃(步驟240);當置物櫃接收到公鑰且置物完成時,產生上鎖信號以控制電子鎖成為上鎖狀態,當置物櫃接收到驗證信號時,產生隨機值且提示輸入私鑰密碼,並且以接收到的公鑰對隨機值進行加密以產生加密值,再將此加密值傳送至收貨方的運算裝置,使收貨方在輸入私鑰密碼後,運算裝置根據接收到的私鑰對加密值進行解密以生成驗證值,再將此驗證值傳送至置物櫃以與隨機值進行比對,當比對相同時,置物櫃產生解鎖信號以控制電子鎖成為解鎖狀態(步驟250)。透過上述步驟,即可透過在伺服端以非對稱式加密產生公鑰及其相應的私鑰,並且將公鑰傳送至置物櫃,以及將私鑰傳送至運算裝置,當欲開啟置物櫃時,置物櫃產生隨機值且以公鑰加密以生成加密值,再將加密值傳送至運算裝置,以便由運算裝置以私鑰對接收到的加密值解密以生成驗證值,再將驗證值傳送至置物櫃,當置物櫃比對隨機值與驗證值為相符時,產生解鎖信號以控制電子鎖成為解鎖狀態,以便在無需使用密碼或無線射頻辨識的前提下控制電子鎖。Please refer to "Fig. 2A" to "Fig. 2D". "Fig. 2A" to "Fig. 2D" are the flow charts of the present invention's high-security storage method based on the Internet of Things. The steps include: providing a server and Locker, the server is used to record the identity information of the sender and the receiver, and allows the receiver to log in to the server to generate a key pair, where the key pair includes a private key with a private key password and its corresponding Public key (step 210); when the locker receives the trigger signal, enable the network element to establish a connection with the server, and enable the sensing element to sense the use status of the locker (step 220); when using When the state is not in use, the locker allows the input device to input the identity information of the sender, and after inputting the identity information, an unlock signal is generated to control the electronic lock of the locker to become unlocked, and the identification code and identity of the locker The message is sent to the server together as a delivery message. When the use status is used, the locker allows input of the receiver's identity information on the input device, and the identification code and the input identity information are used together as the delivery message to send to the server (step 230); when the server receives the delivery message, it loads the consignee's key pair corresponding to the consignee according to the identity information therein, and stores the public key in the key pair Send to the locker corresponding to the identification code, and send the private key to the consignee, when the server receives the receipt message, send the verification signal to the corresponding locker according to the identification code (step 240); When the cabinet receives the public key and the storage is completed, it generates a locking signal to control the electronic lock to become locked. When the locker receives the verification signal, it generates a random value and prompts for the private key password, and uses the received public key pair The random value is encrypted to generate an encrypted value, and then the encrypted value is sent to the recipient's computing device, so that after the recipient enters the private key password, the computing device decrypts the encrypted value according to the received private key to generate a verification value, and then send the verification value to the locker for comparison with the random value, and when the comparison is the same, the locker generates an unlock signal to control the electronic lock to be in an unlocked state (step 250 ). Through the above steps, the public key and its corresponding private key can be generated by asymmetric encryption on the server side, and the public key can be transmitted to the locker, and the private key can be transmitted to the computing device. When the locker is to be opened, The locker generates a random value and encrypts it with a public key to generate an encrypted value, and then transmits the encrypted value to the computing device, so that the computing device decrypts the received encrypted value with a private key to generate a verification value, and then sends the verification value to the locker When the locker compares the random value with the verification value, an unlock signal is generated to control the electronic lock to be in an unlocked state, so that the electronic lock can be controlled without using a password or radio frequency identification.

另外,在步驟250之後,置物櫃可如「第2C圖」所示意,通過定位系統獲得置物櫃定位座標,當置物櫃接收到觸發信號時,計算置物櫃定位座標與運算裝置的裝置定位座標之間距離值,並且在此距離值超過門檻值時,產生上鎖信號以使電子鎖維持在上鎖狀態直到距離值低於門檻值為止(步驟260)。除此之外,在步驟250之後,置物櫃還可如「第2D圖」所示意,設置生物特徵感應裝置,用以感應第一生物特徵訊息,並且將第一生物特徵訊息傳送至伺服器,再由伺服器轉送至運算裝置,使運算裝置比對接收到的第一生物特徵訊息與本身預先儲存的第二生物特徵訊息,當比對不相符時,禁止以私鑰對接收到的加密值進行解密以生成驗證值(步驟251)。In addition, after step 250, the locker can obtain the location coordinates of the locker through the positioning system as shown in "Fig. 2C", and when the locker receives a trigger signal, calculate the difference between the location coordinates of the locker and the device location coordinates of the computing device and when the distance value exceeds the threshold value, a locking signal is generated to maintain the electronic lock in the locked state until the distance value is lower than the threshold value (step 260 ). In addition, after step 250, the locker can also be provided with a biometric sensing device as shown in "Fig. 2D" to sense the first biometric information and transmit the first biometric information to the server, It is then transferred to the computing device by the server, so that the computing device compares the received first biometric message with the second biometric message stored in advance. When the comparison does not match, it is prohibited to use the private key to encrypt the received value. Decryption is performed to generate a verification value (step 251).

以下配合「第3圖」及「第4圖」以實施例的方式進行如下說明,請先參閱「第3圖」,「第3圖」為應用本發明進行寄貨與取貨之示意圖。當使用者要進行寄物時,可透過觸控輸入裝置310來產生觸發信號,當置物櫃300接收到此觸發信號,將致能網路元件以與伺服器110建立連線,並且致能感測元件以感測置物櫃300的使用狀態。倘若感測到的使用狀態是未使用,置物櫃300便允許使用者(寄貨方)在輸入裝置310輸入寄貨方的身分訊息(如:帳號、身分證字號、電話號碼等等),以及在使用者輸入身分訊息後,產生解鎖信號以控制置物櫃300的電子鎖320成為解鎖狀態。接著,將身分訊息及置物櫃300本身具有唯一性的識別碼一併作為寄貨訊息,再將此寄貨訊息傳送至伺服器110;倘若感測到的使用狀態是已使用,置物櫃300便允許使用者(收貨方)在輸入裝置310輸入收貨方的身分訊息,並且將置物櫃300本身的識別碼及輸入的身分訊息一併作為收貨訊息以傳送至伺服器110。接下來,伺服器110在接收到寄貨訊息時,將根據其中的身分訊息載入與寄貨方相應的收貨方的金鑰對,並且將此金鑰對中的公鑰傳送至與識別碼相應的置物櫃300,以及將私鑰傳送至收貨方,反之,倘若伺服器110接收到收貨訊息,則根據其中的識別碼傳送驗證信號至相應的置物櫃300。接著,當置物櫃300接收到公鑰且置物完成(例如:偵測到置物櫃的容置空間存在物體且門已關閉)時,產生上鎖信號以控制電子鎖320成為上鎖狀態,反之,當置物櫃300接收到驗證信號時,則產生隨機值且提示輸入私鑰密碼,並且以接收到的公鑰對隨機值進行加密以產生加密值,再將加密值傳送至收貨方的運算裝置130,使收貨方在運算裝置130輸入私鑰密碼後,由運算裝置130根據接收到的私鑰對加密值進行解密以生成驗證值,再將此驗證值傳送至置物櫃300以與隨機值進行比對,當比對相同時,置物櫃300產生解鎖信號以控制電子鎖320成為解鎖狀態。至此,即完成使用者寄貨與取貨的流程。The following description will be made in the form of an embodiment in conjunction with "Figure 3" and "Figure 4". Please refer to "Figure 3" first. "Figure 3" is a schematic diagram of the application of the present invention for delivery and pick-up. When the user wants to drop something, a trigger signal can be generated through the touch input device 310. When the locker 300 receives the trigger signal, the network element will be enabled to establish a connection with the server 110, and the enable sense The detection element is used to sense the use status of the locker 300. If the sensed usage status is unused, the locker 300 allows the user (shipper) to input the identity information of the sender (such as account number, ID number, phone number, etc.) at the input device 310, and After the user inputs the identity information, an unlock signal is generated to control the electronic lock 320 of the locker 300 to be in an unlocked state. Then, the identity information and the unique identification code of the locker 300 itself are used together as the delivery message, and then the delivery message is sent to the server 110; if the sensed usage status is used, the locker 300 will The user (consignee) is allowed to input the identity information of the consignee in the input device 310 , and the identification code of the locker 300 itself and the input identity information are sent to the server 110 as the receipt message. Next, when the server 110 receives the delivery message, it will load the receiver's key pair corresponding to the sender according to the identity information therein, and transmit the public key in the key pair to the identification locker 300 corresponding to the code, and transmit the private key to the consignee; on the contrary, if the server 110 receives the receipt message, it will send a verification signal to the corresponding locker 300 according to the identification code therein. Then, when the locker 300 receives the public key and the storage is completed (for example: when an object is detected in the accommodating space of the locker and the door is closed), a lock signal is generated to control the electronic lock 320 to become locked, otherwise, When the locker 300 receives the verification signal, it generates a random value and prompts to enter the private key password, and encrypts the random value with the received public key to generate an encrypted value, and then transmits the encrypted value to the receiver's computing device 130, after the consignee enters the private key password in the computing device 130, the computing device 130 decrypts the encrypted value according to the received private key to generate a verification value, and then transmits the verification value to the locker 300 for comparison with the random value A comparison is performed, and when the comparison is the same, the locker 300 generates an unlock signal to control the electronic lock 320 to be in an unlocked state. At this point, the process of the user sending and picking up the goods is completed.

如「第4圖」所示意,「第4圖」為應用本發明的置物櫃的供電方式之示意圖。在實際實施上,置物櫃400的電源供應方式可以直接與電源插座電性連接,或是由電池供電,或是在置物櫃400提供一個連接埠410,此連接埠410允許與運算裝置500連接以提供置物櫃400所需電源。換句話說,寄貨方或收貨方皆可透過連接線510電性連接置物櫃400與運算裝置500,即:連接線510一端電性連接置物櫃400的連接埠410,另一端電性連接運算裝置500的連接埠,以便由運算裝置500提供置物櫃400所需電源,當置物櫃400獲得電源時,便能夠在接收到觸發信號時,執行後續步驟。如此一來,置物櫃400的設置成本與侷限性便大幅降低,即:不限於只能設置在具有電源的地方。實際上,所述連接埠410及連接線510皆為符合USB OTG的連接埠及連接線,其允許支援OTG的裝置可以從USB周邊裝置變成USB主機,並且能夠具有反向供電的能力,即:由支援OTG的運算裝置500為支援OTG的置物櫃400提供電源。As shown in "Figure 4", "Figure 4" is a schematic diagram of the power supply method of the locker of the present invention. In actual implementation, the power supply mode of the locker 400 can be directly connected to the power socket, or powered by a battery, or a connection port 410 is provided in the locker 400, and the connection port 410 allows connection with the computing device 500 to Provide the power required by the locker 400. In other words, both the sender and the receiver can electrically connect the locker 400 and the computing device 500 through the connection line 510, that is, one end of the connection line 510 is electrically connected to the connection port 410 of the locker 400, and the other end is electrically connected to The connection port of the computing device 500 is used so that the computing device 500 can provide the required power for the locker 400. When the locker 400 receives the power, it can execute subsequent steps when receiving the trigger signal. In this way, the installation cost and limitations of the locker 400 are greatly reduced, that is, it is not limited to be installed only in places with power supply. In fact, the connection port 410 and the connection line 510 are all USB OTG-compliant connection ports and connection lines, which allow an OTG-supporting device to change from a USB peripheral device to a USB host, and can have reverse power supply capabilities, namely: The computing device 500 supporting OTG provides power for the locker 400 supporting OTG.

綜上所述,可知本發明與先前技術之間的差異在於透過在伺服端以非對稱式加密產生公鑰及其相應的私鑰,並且將公鑰傳送至置物櫃,以及將私鑰傳送至運算裝置,當欲開啟置物櫃時,置物櫃產生隨機值且以公鑰加密以生成加密值,再將加密值傳送至運算裝置,以便由運算裝置以私鑰對接收到的加密值解密以生成驗證值,再將驗證值傳送至置物櫃,當置物櫃比對隨機值與驗證值為相符時,產生解鎖信號以控制電子鎖成為解鎖狀態,以便在無需使用密碼或無線射頻辨識的前提下控制電子鎖,藉由此一技術手段可以解決先前技術所存在的問題,進而達成提高置物安全性之技術功效。To sum up, it can be seen that the difference between the present invention and the prior art lies in that the public key and its corresponding private key are generated by asymmetric encryption at the server end, and the public key is transmitted to the locker, and the private key is transmitted to the locker. The computing device, when the locker is to be opened, the locker generates a random value and encrypts it with a public key to generate an encrypted value, and then transmits the encrypted value to the computing device, so that the computing device decrypts the received encrypted value with a private key to generate Verify the value, and then send the verification value to the locker. When the locker compares the random value with the verification value, an unlock signal is generated to control the electronic lock to become unlocked, so that it can be controlled without using a password or radio frequency identification. The electronic lock can solve the problems existing in the previous technology by means of this technical means, and then achieve the technical effect of improving the security of the storage.

雖然本發明以前述之實施例揭露如上,然其並非用以限定本發明,任何熟習相像技藝者,在不脫離本發明之精神和範圍內,當可作些許之更動與潤飾,因此本發明之專利保護範圍須視本說明書所附之申請專利範圍所界定者為準。Although the present invention is disclosed above with the aforementioned embodiments, it is not intended to limit the present invention. Any person familiar with similar skills may make some changes and modifications without departing from the spirit and scope of the present invention. Therefore, the present invention The scope of patent protection shall be subject to what is defined in the scope of patent application attached to this manual.

110:伺服器 111:登入模組 112:處理模組 120:置物櫃 121:感測模組 122:生成模組 123:驅動模組 124:定位模組 130:運算裝置 300,400:置物櫃 310:輸入裝置 320:電子鎖 410:連接埠 500:運算裝置 510:連接線 步驟210:提供一伺服器及一置物櫃,該伺服器用以記錄一寄貨方與一收貨方的一身分訊息,以及允許該收貨方登入該伺服器生成一金鑰對,其中,該金鑰對包含已設定一私鑰密碼的一私鑰及其相應的一公鑰 步驟220:當該置物櫃接收到一觸發信號時,致能一網路元件以與該伺服器建立連線,並且致能一感測元件以感測該置物櫃的一使用狀態 步驟230:當該使用狀態為未使用時,該置物櫃允許在一輸入裝置輸入該寄貨方的該身分訊息,並且在輸入該身分訊息後,產生一解鎖信號以控制該置物櫃的一電子鎖成為一解鎖狀態,以及將該置物櫃的一識別碼及該身分訊息一併作為一寄貨訊息以傳送至該伺服器,當該使用狀態為已使用時,該置物櫃允許在該輸入裝置輸入該收貨方的該身分訊息,並且將該識別碼及輸入的該身分訊息一併作為一收貨訊息以傳送至該伺服器 步驟240:該伺服器在接收到該寄貨訊息時,根據其中的該身分訊息載入與該寄貨方相應的該收貨方的該金鑰對,並且將該金鑰對中的該公鑰傳送至與該識別碼相應的該置物櫃,以及將該私鑰傳送至該收貨方,當該伺服器接收到該收貨訊息時,根據其中的該識別碼傳送一驗證信號至相應的該置物櫃 步驟250:當該置物櫃接收到該公鑰且置物完成時,產生一上鎖信號以控制該電子鎖成為一上鎖狀態,當該置物櫃接收到該驗證信號時,產生一隨機值且提示輸入該私鑰密碼,並且以接收到的該公鑰對該隨機值進行加密以產生一加密值,再將該加密值傳送至該收貨方的一運算裝置,使該收貨方在輸入該私鑰密碼後,該運算裝置根據接收到的該私鑰對該加密值進行解密以生成一驗證值,再將該驗證值傳送至該置物櫃以與該隨機值進行比對,當比對相同時,該置物櫃產生該解鎖信號以控制該電子鎖成為該解鎖狀態 步驟251:該置物櫃設置一生物特徵感應裝置,用以感應一第一生物特徵訊息,並且將該第一生物特徵訊息傳送至該伺服器,再由該伺服器轉送至該運算裝置,使該運算裝置比對接收到的該第一生物特徵訊息與本身預先儲存的一第二生物特徵訊息,當比對不相符時,禁止以該私鑰對接收到的該加密值進行解密以生成該驗證值 步驟260:該置物櫃通過一定位系統獲得一置物櫃定位座標,當該置物櫃接收到該觸發信號時,計算該置物櫃定位座標與該運算裝置的一裝置定位座標之間的一距離值,並且在該距離值超過一門檻值時,產生該上鎖信號以使該電子鎖維持在該上鎖狀態直到該距離值低於該門檻值為止 110: server 111: Login module 112: Processing module 120: Locker 121:Sensing module 122: Generate modules 123:Drive module 124: Positioning module 130: computing device 300,400: Lockers 310: input device 320: electronic lock 410: port 500: computing device 510: connecting line Step 210: Provide a server and a locker, the server is used to record an identity message of a sender and a receiver, and allow the receiver to log into the server to generate a key pair, wherein, The key pair includes a private key for which a private key cipher has been set and its corresponding public key Step 220: When the locker receives a trigger signal, enable a network element to establish a connection with the server, and enable a sensing element to sense a use state of the locker Step 230: When the use state is not in use, the locker allows the identity information of the sender to be input in an input device, and after inputting the identity information, an unlock signal is generated to control an electronic locker. The lock becomes an unlocked state, and an identification code of the locker and the identity information are sent to the server as a delivery message. When the use state is used, the locker allows the input device Input the identity information of the consignee, and send the identification code and the input identity information together as a receipt message to the server Step 240: When receiving the delivery message, the server loads the consignee's key pair corresponding to the consignor according to the identity information therein, and the public key pair in the key pair The key is sent to the locker corresponding to the identification code, and the private key is sent to the receiver. When the server receives the receipt message, it sends a verification signal to the corresponding locker according to the identification code. the locker Step 250: When the locker receives the public key and the storage is completed, generate a locking signal to control the electronic lock to become a locked state; when the locker receives the verification signal, generate a random value and prompt Enter the private key password, and encrypt the random value with the received public key to generate an encrypted value, and then send the encrypted value to a computing device of the consignee, so that the consignee can input the After the private key is encrypted, the computing device decrypts the encrypted value according to the received private key to generate a verification value, and then sends the verification value to the locker for comparison with the random value. , the locker generates the unlock signal to control the electronic lock to become the unlocked state Step 251: The locker is provided with a biometric sensing device for sensing a first biometric message, and the first biometric message is sent to the server, and then forwarded by the server to the computing device, so that the The computing device compares the received first biometric message with a pre-stored second biometric message, and when the comparison does not match, it is forbidden to use the private key to decrypt the received encrypted value to generate the verification value Step 260: The locker obtains a locker location coordinate through a positioning system, and when the locker receives the trigger signal, calculates a distance value between the locker location coordinate and a device location coordinate of the computing device, And when the distance value exceeds a threshold value, generate the locking signal so that the electronic lock remains in the locked state until the distance value is lower than the threshold value

第1圖為本發明基於物聯網的高安全性置物系統的系統方塊圖。 第2A圖至第2D圖為本發明基於物聯網的高安全性置物方法的方法流程圖。 第3圖為應用本發明進行寄貨與取貨之示意圖。 第4圖為應用本發明的置物櫃的供電方式之示意圖。 Fig. 1 is a system block diagram of the high security storage system based on the Internet of Things of the present invention. FIG. 2A to FIG. 2D are method flow charts of the high-security storage method based on the Internet of Things of the present invention. Fig. 3 is a schematic diagram of applying the present invention to deliver and pick up goods. Fig. 4 is a schematic diagram of the power supply method of the locker of the present invention.

110:伺服器 110: server

111:登入模組 111: Login module

112:處理模組 112: Processing module

120:置物櫃 120: Locker

121:感測模組 121:Sensing module

122:生成模組 122: Generate modules

123:驅動模組 123:Drive module

124:定位模組 124: Positioning module

130:運算裝置 130: computing device

Claims (10)

一種基於物聯網的高安全性置物系統,該系統包含: 一伺服器,該伺服器包含: 一登入模組,用以記錄一寄貨方與一收貨方的一身分訊息,以及允許該收貨方登入該伺服器生成一金鑰對,其中,該金鑰對包含已設定一私鑰密碼的一私鑰及其相應的一公鑰;以及 一處理模組,連接該登入模組,用以在接收到一寄貨訊息時,根據其中的該身分訊息載入與該寄貨方相應的該收貨方的該金鑰對,並且根據該寄貨訊息中的一識別碼傳送該金鑰對中的該公鑰,再將相應的該私鑰傳送至該收貨方,以及在接收到一收貨訊息時,根據其中的該識別碼傳送一驗證信號;以及 一置物櫃,用以自該伺服器接收該公鑰及該驗證信號,該置物櫃包含: 一感測模組,用以在接收到一觸發信號時,致能一網路元件以與該伺服器建立連線,並且致能一感測元件以感測該置物櫃的一使用狀態; 一生成模組,連接該感測模組,用以在該使用狀態為未使用時,允許在一輸入裝置輸入該寄貨方的該身分訊息,並且在輸入該身分訊息後,產生一解鎖信號以控制一電子鎖成為一解鎖狀態,以及將該置物櫃的該識別碼及該身分訊息一併作為該寄貨訊息傳送至該伺服器,當該使用狀態為已使用時,允許在該輸入裝置輸入該收貨方的該身分訊息,並且將該識別碼及輸入的該身分訊息一併作為該收貨訊息傳送至該伺服器;以及 一驅動模組,連接該生成模組,用以在接收到該公鑰且置物完成時,產生一上鎖信號以控制該電子鎖成為一上鎖狀態,以及在接收到該驗證信號時,產生一隨機值且提示輸入該私鑰密碼,並且以接收到的該公鑰對該隨機值進行加密以產生一加密值,再將該加密值傳送至該收貨方的一運算裝置,使該收貨方在輸入該私鑰密碼後,該運算裝置根據接收到的該私鑰對該加密值進行解密以生成一驗證值,再將該驗證值傳送至該置物櫃的該驅動模組以與該隨機值進行比對,當比對相同時,該驅動模組產生該解鎖信號以控制該電子鎖成為該解鎖狀態。 A high-security storage system based on the Internet of Things, the system includes: A server, the server includes: A login module, used to record an identity message of a consignor and a consignee, and allow the consignee to log in to the server to generate a key pair, wherein the key pair includes a set private key a private key of the cipher and its corresponding public key; and a processing module, connected to the login module, for loading the key pair of the consignee corresponding to the consignor according to the identity information in the consignment message when receiving a consignment message, and according to the An identification code in the delivery message transmits the public key in the key pair, and then transmits the corresponding private key to the consignee, and when receiving a delivery message, transmits according to the identification code therein a verification signal; and a locker for receiving the public key and the verification signal from the server, the locker comprising: A sensing module is used to enable a network element to establish a connection with the server when a trigger signal is received, and enable a sensing element to sense a use state of the locker; A generating module, connected to the sensing module, is used to allow input of the sender's identity information on an input device when the use state is not in use, and generate an unlocking signal after the identity information is input To control an electronic lock to become an unlocked state, and send the identification code and the identity information of the locker to the server as the delivery message, and when the use state is used, allow the input device inputting the identity information of the consignee, and sending the identification code and the inputted identity information to the server as the receipt message; and A drive module, connected to the generation module, is used to generate a locking signal to control the electronic lock to become a locked state when receiving the public key and completing the placement, and to generate a locking signal when receiving the verification signal. A random value and prompted to enter the private key password, and the random value is encrypted with the received public key to generate an encrypted value, and then the encrypted value is sent to a computing device of the recipient, so that the recipient After the buyer inputs the private key password, the computing device decrypts the encrypted value according to the received private key to generate a verification value, and then transmits the verification value to the drive module of the locker to communicate with the locker. Random values are compared, and when the comparison is the same, the driving module generates the unlock signal to control the electronic lock to be in the unlocked state. 如請求項1之基於物聯網的高安全性置物系統,其中該置物櫃的電源供應方式係選自直接與一電源插座電性連接、由一電池供電以及在該置物櫃提供一連接埠連接電源至少其中之一,該連接埠允許與該運算裝置連接以提供該置物櫃所需電源。Such as the high-security storage system based on the Internet of Things in claim 1, wherein the power supply method of the locker is selected from direct electrical connection with a power socket, powered by a battery, and providing a connection port connection power supply in the locker At least one of them, the connection port is allowed to be connected with the computing device to provide the power required by the locker. 如請求項2之基於物聯網的高安全性置物系統,其中該連接埠為一OTG連接埠,當該運算裝置通過一OTG連接線電性連接至該OTG連接埠時,由該運算裝置通過該OTG連接線為該置物櫃供應電源。Such as the high-security storage system based on the Internet of Things of claim 2, wherein the connection port is an OTG connection port, and when the computing device is electrically connected to the OTG connection port through an OTG connection line, the computing device passes through the An OTG cable supplies power to the locker. 如請求項1之基於物聯網的高安全性置物系統,其中該系統更包含一定位模組,連接該感測模組及該驅動模組,用以通過一定位系統獲得一置物櫃定位座標,當該感測模組接收到該觸發信號時,該定位模組計算該置物櫃定位座標與該運算裝置的一裝置定位座標之間的一距離值,並且在該距離值超過一門檻值時,觸發該驅動模組產生該上鎖信號以使該電子鎖維持在該上鎖狀態直到該距離值低於該門檻值為止。Such as the high-security storage system based on the Internet of Things of claim 1, wherein the system further includes a positioning module connected to the sensing module and the driving module to obtain the positioning coordinates of a locker through a positioning system, When the sensing module receives the trigger signal, the positioning module calculates a distance value between the locker positioning coordinates and a device positioning coordinate of the computing device, and when the distance value exceeds a threshold value, The driving module is triggered to generate the locking signal to maintain the electronic lock in the locked state until the distance value is lower than the threshold value. 如請求項1之基於物聯網的高安全性置物系統,其中該感測模組設置一生物特徵感應裝置,用以感應一第一生物特徵訊息,並且將該第一生物特徵訊息傳送至該伺服器,再由該伺服器轉送至該運算裝置,使該運算裝置比對接收到的該第一生物特徵訊息與本身預先儲存的一第二生物特徵訊息,當比對不相符時,禁止以該私鑰對接收到的該加密值進行解密以生成該驗證值。The high-security object storage system based on the Internet of Things as requested in item 1, wherein the sensing module is provided with a biometric sensing device for sensing a first biometric message, and sending the first biometric message to the server device, and then transferred from the server to the computing device, so that the computing device compares the received first biometric message with a second biometric message stored in itself in advance, and when the comparison does not match, it is forbidden to use the The private key decrypts the received encrypted value to generate the verification value. 一種基於物聯網的高安全性置物方法,其步驟包括: 提供一伺服器及一置物櫃,該伺服器用以記錄一寄貨方與一收貨方的一身分訊息,以及允許該收貨方登入該伺服器生成一金鑰對,其中,該金鑰對包含已設定一私鑰密碼的一私鑰及其相應的一公鑰; 當該置物櫃接收到一觸發信號時,致能一網路元件以與該伺服器建立連線,並且致能一感測元件以感測該置物櫃的一使用狀態; 當該使用狀態為未使用時,該置物櫃允許在一輸入裝置輸入該寄貨方的該身分訊息,並且在輸入該身分訊息後,產生一解鎖信號以控制該置物櫃的一電子鎖成為一解鎖狀態,以及將該置物櫃的一識別碼及該身分訊息一併作為一寄貨訊息以傳送至該伺服器,當該使用狀態為已使用時,該置物櫃允許在該輸入裝置輸入該收貨方的該身分訊息,並且將該識別碼及輸入的該身分訊息一併作為一收貨訊息以傳送至該伺服器; 該伺服器在接收到該寄貨訊息時,根據其中的該身分訊息載入與該寄貨方相應的該收貨方的該金鑰對,並且將該金鑰對中的該公鑰傳送至與該識別碼相應的該置物櫃,以及將該私鑰傳送至該收貨方,當該伺服器接收到該收貨訊息時,根據其中的該識別碼傳送一驗證信號至相應的該置物櫃;以及 當該置物櫃接收到該公鑰且置物完成時,產生一上鎖信號以控制該電子鎖成為一上鎖狀態,當該置物櫃接收到該驗證信號時,產生一隨機值且提示輸入該私鑰密碼,並且以接收到的該公鑰對該隨機值進行加密以產生一加密值,再將該加密值傳送至該收貨方的一運算裝置,使該收貨方在輸入該私鑰密碼後,該運算裝置根據接收到的該私鑰對該加密值進行解密以生成一驗證值,再將該驗證值傳送至該置物櫃以與該隨機值進行比對,當比對相同時,該置物櫃產生該解鎖信號以控制該電子鎖成為該解鎖狀態。 A method for placing objects with high security based on the Internet of Things, the steps of which include: Provide a server and a locker, the server is used to record an identity message of a sender and a receiver, and allow the receiver to log into the server to generate a key pair, wherein the key For a private key and its corresponding public key including a private key password; When the locker receives a trigger signal, enable a network element to establish a connection with the server, and enable a sensing element to sense a use state of the locker; When the use state is unused, the locker allows the identity information of the sender to be input into an input device, and after inputting the identity information, an unlocking signal is generated to control an electronic lock of the locker to become an unlocked state, and an identification code of the locker and the identity information are sent to the server as a shipping message. When the use state is used, the locker allows the input device to input the received The identity information of the cargo owner, and send the identification code and the input identity information together as a receipt message to the server; When the server receives the delivery message, it loads the consignee's key pair corresponding to the consignor according to the identity information therein, and transmits the public key in the key pair to The locker corresponding to the identification code, and the private key is sent to the consignee, and when the server receives the receipt message, it sends a verification signal to the corresponding locker according to the identification code therein ;as well as When the locker receives the public key and the storage is completed, a lock signal is generated to control the electronic lock to become a locked state. When the locker receives the verification signal, a random value is generated and the private key is prompted to enter. Key password, and encrypt the random value with the received public key to generate an encrypted value, and then send the encrypted value to a computing device of the consignee, so that the consignee can enter the private key password Afterwards, the computing device decrypts the encrypted value according to the received private key to generate a verification value, and then transmits the verification value to the locker for comparison with the random value, and when the comparison is the same, the The locker generates the unlock signal to control the electronic lock to be in the unlocked state. 如請求項6之基於物聯網的高安全性置物方法,其中該置物櫃的電源供應方式係選自直接與一電源插座電性連接、由一電池供電以及在該置物櫃提供一連接埠連接電源至少其中之一,該連接埠允許與該運算裝置連接以提供該置物櫃所需電源。Such as the high-security storage method based on the Internet of Things of claim 6, wherein the power supply method of the locker is selected from being directly electrically connected to a power socket, powered by a battery, and providing a port connection power supply in the locker At least one of them, the connection port is allowed to be connected with the computing device to provide the power required by the locker. 如請求項7之基於物聯網的高安全性置物方法,其中該連接埠為一OTG連接埠,當該運算裝置通過一OTG連接線電性連接至該OTG連接埠時,由該運算裝置通過該OTG連接線為該置物櫃供應電源。Such as the high-security storage method based on the Internet of Things of claim 7, wherein the connection port is an OTG connection port, and when the computing device is electrically connected to the OTG connection port through an OTG connection line, the computing device passes through the OTG connection port An OTG cable supplies power to the locker. 如請求項6之基於物聯網的高安全性置物方法,其中該方法更包含該置物櫃通過一定位系統獲得一置物櫃定位座標,當該置物櫃接收到該觸發信號時,計算該置物櫃定位座標與該運算裝置的一裝置定位座標之間的一距離值,並且在該距離值超過一門檻值時,產生該上鎖信號以使該電子鎖維持在該上鎖狀態直到該距離值低於該門檻值為止的步驟。For example, the high-security storage method based on the Internet of Things in claim 6, wherein the method further includes the locker obtaining a locker location coordinate through a positioning system, and calculating the locker location when the locker receives the trigger signal A distance value between coordinates and a device positioning coordinate of the computing device, and when the distance value exceeds a threshold value, the locking signal is generated so that the electronic lock remains in the locked state until the distance value is lower than steps until the threshold. 如請求項6之基於物聯網的高安全性置物方法,其中該方法更包含該置物櫃設置一生物特徵感應裝置,用以感應一第一生物特徵訊息,並且將該第一生物特徵訊息傳送至該伺服器,再由該伺服器轉送至該運算裝置,使該運算裝置比對接收到的該第一生物特徵訊息與本身預先儲存的一第二生物特徵訊息,當比對不相符時,禁止以該私鑰對接收到的該加密值進行解密以生成該驗證值的步驟。Such as the high-security storage method based on the Internet of Things in claim 6, wherein the method further includes setting a biometric sensing device on the locker to sense a first biometric message, and sending the first biometric message to The server, and then the server transfers the information to the computing device, so that the computing device compares the received first biometric information with a second biometric information stored in advance, and when the comparison does not match, prohibit the Decrypting the received encrypted value with the private key to generate the verification value.
TW110121607A 2021-06-15 2021-06-15 High security locker system based on internet of thing and method thereof TW202301290A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW110121607A TW202301290A (en) 2021-06-15 2021-06-15 High security locker system based on internet of thing and method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW110121607A TW202301290A (en) 2021-06-15 2021-06-15 High security locker system based on internet of thing and method thereof

Publications (1)

Publication Number Publication Date
TW202301290A true TW202301290A (en) 2023-01-01

Family

ID=86658141

Family Applications (1)

Application Number Title Priority Date Filing Date
TW110121607A TW202301290A (en) 2021-06-15 2021-06-15 High security locker system based on internet of thing and method thereof

Country Status (1)

Country Link
TW (1) TW202301290A (en)

Similar Documents

Publication Publication Date Title
US20230231718A1 (en) Method of using one device to unlock another device
US7735132B2 (en) System and method for encrypted smart card PIN entry
US9697371B1 (en) Remote authorization of usage of protected data in trusted execution environments
US8689013B2 (en) Dual-interface key management
CN105308925B (en) Protection calculates equipment part
US5949881A (en) Apparatus and method for cryptographic companion imprinting
US20070223685A1 (en) Secure system and method of providing same
US20010054147A1 (en) Electronic identifier
WO2013123453A1 (en) Data storage devices, systems, and methods
US20160162710A1 (en) Information handling of access security
EP2356637A1 (en) Card credential method and system
US20150264048A1 (en) Information processing apparatus, information processing method, and recording medium
KR101879326B1 (en) Method and device for transmitting and receiving instruction information
TW202301290A (en) High security locker system based on internet of thing and method thereof
US20210295009A1 (en) Electric Lock and Control Method Thereof
TWI651624B (en) Smart hardware safety carrier
TWI787704B (en) System for smart locker powered by mobile device and provided with password to unlock and method thereof
KR100472105B1 (en) Stand-alone type fingerprint recognition module and protection method of stand-alone type fingerprint recognition module
US20160196437A1 (en) Method of using touch screen device for system encryption and protection
TWI537162B (en) Controlling assembly for lock of motorcycle
WO2007092429A2 (en) Secure system and method for providing same
WO2001044898A1 (en) Cryptographic token and enabling system