TW543314B - Security module of electronic ticket credit adding system for transportation providing distributed security management architecture - Google Patents

Abstract

A security module of electronic ticket credit adding system for transportation providing distributed security management architecture is dedicated to the requirement of adding credit to a card for an electronic token application system in transportation to bring up the security module of electronic ticket credit adding system for transportation providing distributed security management architecture. The system comprises a random number generation module, a command encryption module, a varied transmission key matching activation module, a key management module and a transaction token verification module. Features of verification of personal identify, card and transmitted data and anti-falsification can be executed free of worry by using the microprocessor function of system and the application of logic processing circuit. With multi-layer security protection action, it makes the possibility to falsely add credit of electronic ticket extremely low so as to attain the goal of secure transaction.

Description

543314 A7 PA880522.TWP-3/13 B7 V. Description of the Invention (Technical Field) (Read the precautions on the back before filling out this page) The present invention relates to a transportation electronic ticket with a decentralized security management architecture. The check-in security module, in particular, relates to a need for adding value to a card in a transportation electronic ticket application system, and proposes a transportation electronic ticket value-added security module with a decentralized 5 security management architecture. [Previous technology] With the rapid development of science and technology, various equipments developed using electronic information technology will also flourish. Therefore, the present invention is directed to the needs of transportation electronic ticket application systems when adding value to cards, and provides multiple layers of security protection measures. 10, reducing the chance of counterfeit and value-added electronic ticket cards to achieve the purpose of secure transactions. In view of the various shortcomings derived from the conventional value-added technology, the inventor of this case was eager to improve and innovate. After years of painstaking and meticulous research, he finally successfully developed this transport electronic ticket with a decentralized security management structure. Check-in security module. [Objective of the Invention]… Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economics The purpose of the present invention is to provide a transportation electronic ticket value-added machine security module with a decentralized security management structure, which can provide transportation electronic ticket charges The charge card used in the system is used to perform card value-added services of 20 credits, so that cardholders have a convenient, reliable and non-controversial value-added service in the value-added process, while also achieving overall security, Correct basic requirements. A secondary objective of the present invention is to provide a security module for a transport electronic ticket value-added machine with a decentralized security management structure, in order to prevent the paper size of the card from applying the Chinese National Standard (CNS) A4 specification (210 X 297 mm) , 543314 Α7 PA880522.TWP-4/13 Β7 V. Description of the invention 〇) (Please read the notes on the back before filling this page) The value is illegally added, and the most commonly used method is to use a unique base code for data Doing confusing operators makes it impossible for people outside the outside world who do n’t know the format of the data, let alone to tamper with the card content. [Technical content] '5 The transportation e-ticket value-added machine security module with the above-mentioned advantages and a decentralized security management structure is designed to address the need for transportation electronic ticket application systems to add value to card security, and proposes decentralized security Security technology security module for transportation electronic ticket value-added machines. The so-called decentralized security management technology is to control a security certification level with independent attributes 10 and golden keys. The invention is mainly composed of a random number generating module, a command encryption module, a multi-variable transmission key pair enabling module, a key management module and a transaction token verification module. Through the microprocessor function and logic processing circuit application in the system, functions such as secure personal identification, card authentication, transmission data authentication, and transaction data prevention can be performed. Utilizing multiple layers of security protection measures, the probability of value-added traffic cards is extremely low to achieve the purpose of secure transactions. [Brief description of the drawings] Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economics Please refer to the following detailed description of a preferred embodiment of the present invention and the accompanying drawings, which will further understand the technical content of the present invention and its effects; 20 The drawings related to this embodiment are: FIG. 1 is a structural diagram of a random number generator of a transportation electronic ticket value-added machine security module with a decentralized security management structure according to the present invention; Diagram of the calculation architecture of the key manager of the security module of the transportation electronic ticket value-added machine; and -4- This paper size applies to the Chinese National Standard (CNS) A4 specification (210 X 297 mm) Employees of the Intellectual Property Bureau of the Ministry of Economic Affairs Printed by the Consumer Cooperative 543314 '-----: ----- PA880522.TWP-5/13 V. Description of the invention (") Table 1 shows the security of the transportation electronic ticket value-added machine with decentralized security management structure. Module command safety condition table. [Preferred embodiment] The system is mainly composed of a random number generating module, a command encryption module, a multi-variable transmission key pairing enabling module, a golden key management module, and a transaction token verification module. It can be implemented through the microprocessor function and logic processing circuit in the system to perform secure personal identification card ^ also, transmission ^ material authentication, transaction data is prevented from being tampered with and other functions. Use multiple layers of security protection measures In order to achieve the purpose of secure transactions, the electronic ticket card has a 10% chance of being counterfeited. For the first part, please refer to FIG. 1, which is a security module of a transportation electronic ticket value-added machine with a decentralized security management structure according to the present invention. The composition of the random number generator ¥ can be seen from the figure. 'Generally speaking, the longer the shift register, the more data can be made, but if the bit string participating in the calculation is not arranged ## it is still not enough. 15 safe enough theory Chen Yuan's linear feedback shift register can generate a pseudo-random sequence with a length of N 1 bit at most. In addition to the linear feedback shift register described above, in addition to using the The linear feedback shift register performs XQR ^ operation to get a larger period. 'We can find out its initial 20 states through 2N output bits under the condition of N-bit linear feedback _ shift register H. And feedback strains, μ l ~, more than 1 such as C⑻ = χΛ3 + χΛ2 + 1. The initial value state is ⑽'1) The sequence produced by the household caterer is (WA0J), if the plaintext M is (, L '' ' 〇) Then the fork C is (丨, 1, 0, 0, 1 ,!). From the structure of the linear feedback shift register, we can easily get the following matrix equation: --- (Please read the back (Please note this page before filling out this page) Ting i ----- line 丨 ·

543314 A7 B7 PA880522.TWP-6/13 V. Description of the invention (ψ kl k2 k3 k2 k3 k4 k3 k4 k5 cO cl c2 k4 k5 k6 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economy can get C0 = 1, C1 = 0 , C2 = 1, so the feedback polynomial C (X) = XA3 + XA2 +: l. 5 The second part is the description of the command encryption module. It is allowed to protect the security module commands from being tampered or recognized during transmission. The command sent to the card by the terminal device or the response code returned by the card to the terminal device can be encrypted and transmitted so that it cannot be recognized. The transmitted security module command or response code can also be the same as the original To verify the order or response of the command, that is, to add a verification code to the command or response sent by 10. This can prevent the command or response from being tampered with. The security attributes of a command have the following format: INS + LEN + CLA-A + KID1 + ·· ... + KID (LEN-1), where INS is the instruction code and LEN is the security attribute length of the command, including CLA_A * LEN-1 KIDs (password 15 or key code), CLA_A * indicates The security conditions in the CLA represent when executing the INS instruction code Whether the command is required to respond to the encryption or verification, the combination is shown in Table 1. KID1, KID2, ..., KID (LEN-l) can be the password or key used for confirmation / authentication, only in all KIDs The INS commands are allowed to be executed only after they have been successfully verified / verified. 20 The third part describes the multi-variable transmission key pairing and enabling module. (Please read the precautions on the back before filling this page) Order- ------- Line __ This paper size applies to China National Standard (CNS) A4 (210 X 297 mm) J ^ 314 A7 PA880522.TWP-7/13 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs V. Description of the invention (yy This security module uses a decentralized mechanism to store passwords and golden keys. Each file has its own unique password and golden key, making it impossible for people outside the world who do not know this type of data to pass. The inspection of layered passwords, let alone tampering with the card content. During the chip manufacturing period of the security module, a set of 5 gold keys was written to a confidential address. This information cannot be read or modified by the terminal device. The generation method can have the following There are two ways to achieve the purpose of generating multiple gold keys: (1) consult the user data table, according to the user data of each card, so that the transmission gold 4 of each security module is different. (2) ) Use a golden key to generate an algorithm. According to different user data, a special algorithm can be selected. Each group of transmission golden keys generated after the user data is disrupted is naturally different. In this way, there will be no lawful elements. Learned its coding rules. After generating the transmission key, the user must also establish his own master base code, so 11 sets of systems are protected with layers of password levels. Even if a single link is broken, the overall security is not compromised. The biggest advantage of this system is Where it is. Establish the main Kima II = 2 power on, get the boot reset code of the security module. (2) Read the user data on the security module 'to check the data value according to the data form. (3) Calculate the transmission key based on user data by table lookup method or predetermined algorithm. ⑷ Use the random number generator to get -groups of random values. (5) Use the transmission gold key to perform a triple-symmetric block encryption operation on the random value, and send the encryption result to the security module to verify the authenticity of the transmission gold. If the verification fails, repeat ㈣ 4 ~ 5. (6) Write the relevant key and user password to complete the multi-variable transmission key activation process. After activation, the security module and the value-added machine must be equipped with 10 15 20 ^ The paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 public love (read the precautions on the back before filling this page) ---. --- · —Order ---------. 543314 PA880522.TWP-8 / 13 Printed by the Consumers ’Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7 Invention Description (b) For use, each time you add value The two sides will mutually authenticate to ensure the security of the transaction, and if the security module and the value-added machine are changed, the authentication fails and the value cannot be added. / The fourth part is the key management shown in Figure 2. All the key passwords need to be managed in order to prevent unauthorized disclosure, modification and replacement. The key generation is performed using a random number generator. All values should be randomly generated and need to be generated. Two or more individuals separately hold a part of a cryptographic key to manage this key together. However, some secrets held by individual individuals will not be able to obtain any information on the cryptographic key. Simply explain 10 For example: Golden spoon: 100110000 Golden spoon one: 101010100 Golden spoon two: 101011010 Golden spoon three: 110010010 Golden spoon four: 010111000 Golden spoon = one golden spoon, two golden spoons, three golden spoons, and four golden spoons. According to the result of the XOR calculation above, we can know how the golden spoons are held. .Of course, in actual application, we can add a shift register to shift individual gold keys left and right to shift the data. 20 The fifth part describes the transaction token verification module, which mainly In order to avoid that the person who wrote the application program of the value-added machine did not obtain authorization from the host, and directly executed the value-added command, the security module will generate a set of random numbers during the value-added, which will be brought to the security server host. At the same time as the authorization code, the transaction mark is returned to the security module for confirmation. The value-added machine program is developed. The paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm). Please fill in this page again) Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs 543314 A7 B7, _PA880522.TWP-9/13 V. Description of the invention (7) The person cannot know the rules for the generation of the transaction mark, so it cannot be faked. Self-value-added. This is to provide cardholders with a reliable and non-controversial value-added service in the value-added process. [Features and Effects] .5 Transportation electronics with decentralized security management structure provided by the present invention Compared with other conventional technologies, the security module of the ticket value-added machine has the following advantages: 1. The present invention provides a security module of a transportation electronic ticket value-added machine with a decentralized security management structure, which can be provided to traffic. The electronic card 10 is used to charge the stored value of the card in the electronic ticket 10 charging system to provide value-added services, so that cardholders have a convenient, reliable and non-controversial value-added service in the value-added process. Achieve overall safety and correct basic requirements. 2. The present invention has a decentralized security management architecture for transportation. 15 Electronic ticket value-added machine security module, in order to prevent the card from being illegally recharged, the most commonly used method is to use a unique base code to confuse the data. Operator makes it impossible for anyone outside of the outside to know this data format, let alone to change the card content. The above detailed description is a specific description of a feasible embodiment of the present invention. However, this embodiment is not intended to limit the scope of the patent of the present invention. Any equivalent implementation or change without departing from the technical spirit of the present invention should be Included in the patent scope of this case. To sum up, this case is not only technically innovative, but also can improve many of the above-mentioned functions compared with conventional items. It should have fully met the novelty and progress. This paper standard applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm), --------------------- Order --------- line (Please read the precautions on the back before filling this page) 543314 A7 B7_PA880522.TWP-10/13 V. Description of invention (f) A statutory invention patent element, apply in accordance with the law, and kindly ask your office to approve this invention patent application, in order to encourage the invention, to the greatest degree. (Please read the precautions on the back before filling out this page) 0 packs · Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs This paper size applies to China National Standard (CNS) A4 (210 X 297 mm)

Claims (1)

543314 8888 ABCD PA880522.TWP-11/13 6. Scope of patent application 1. A transportation electronic ticket value-added machine security module with a decentralized security management structure, including:. An random number generation module, which uses a linear return .Feed shift register for XOR operation to get a larger cycle; ί 5 A command encryption module, which protects security module commands from being modified or recognized during transmission, and is sent to the card via the terminal device. The command or response code sent back to the terminal device by the card can be encrypted and sent; a multi-variable transmission key pairing activation module uses a distributed mechanism to store passwords and golden keys, and each file Each has its own 10 unique passwords and golden keys, so that people who do not know the data format at all cannot pass the layered password inspection. During the chip manufacturing period of the security module, a set of transmission keys are written into the secret. Address, this information cannot be read or modified by the terminal device; a key management module, all key passwords need to be managed to prevent 15 unauthorized disclosure, Change and replace; the key is generated using a random number generator. All values should be randomly generated, and two or more individuals need to hold a part of a cryptographic key to jointly manage this key. Key; a transaction token (Token) verification module, in order to avoid the person who wrote the 20 application of the value-added machine from obtaining the authorization from the host, and directly execute the value-added command, the security module will generate a set of disorder during the value-added When the authorization code is generated, the transaction mark is returned to the security module for confirmation. The value-added program developer cannot know the rules of the transaction mark generation and cannot forge it without authorization. Plus -11------------- • install i: ---- 1 order --------- ^ 0 ·. (Please read the precautions on the back before filling in this Page) Printed by the Intellectual Property Bureau Employees ’Cooperatives of the Ministry of Economics This paper is printed in accordance with Chinese National Standard (CNS) A4 (210 X 297 mm), 543314 Printed by the Employees’ Cooperatives of Intellectual Property Bureau of the Ministry of Economics A8 B8 C8 D8 PA880522.TWP -12/13 VI. Patent application scope value; 'through The microprocessor functions and logic processing circuits in the system can perform functions such as secure personal identification confirmation, card authentication, transmission data authentication, transaction data being prevented from being tampered, and the use of multiple layers of security protection measures to make electronic tickets The chance of the card being counterfeit and adding value is extremely low to achieve the purpose of secure transactions. 2. As described in item 1 of the scope of the patent application, the security module of the transport / transport electronic ticket value-added machine with a decentralized security management structure, in which the transmission " golden key generation method can be viewed by the user The data table and user data of each card are different, so that the transmission key of each security module is different. 3. As described in Item 1 of the scope of the patent application, the transportation electronic ticket value-added machine security module with a decentralized security management structure, wherein the transmission key generation method can also use the golden key generation algorithm. 15 Different user data can choose a special algorithm that will be used. Each set of transmission keys generated after tampering with the user data is naturally different. 4. As described in item 1 of the scope of the patent application, the transportation electronic ticket value-added machine security module with a decentralized security management structure, in which after the transmission of 20 gold keys is generated, the user needs to establish a master base code to obtain multiple Its protection. 5. As described in item 4 of the scope of the patent application, the transportation electronic ticket value-added machine security module with a decentralized security management structure, wherein the procedure for establishing the main base code is as follows: (1) Turn on the power to obtain the security module Kai-12- (Please read the precautions on the back before filling this page) · «Loading% This paper size applies to China National Standard (CNS) A4 (210 X 297 mm) 543314 8888 ABCD 5 VI. Application scope Machine reset code '(2) Read the user data on the security module and check the data value according to the data form; (3) Calculate the transmission golden key based on the user data by table lookup method or predetermined differentiating method; ⑷ Use a random number generator to get a set of random values; (5) use the transmission golden key to do the triple of the random values; weigh the block encryption operation and send the encrypted result to the security module to verify the authenticity of the transmitted golden key. If the verification fails, repeat steps (4) ~ (5); _ person related keys and user passwords, and complete the multi-variable transmission key activation process. ------------: ---: —tT ·· ^ -------- line (please read the note on the back? Matters before filling out this page) Bureau of Intellectual Property, Ministry of Economic Affairs Printed by Employee Consumer Cooperatives 13-