TWI452204B - Security system with mulitple safety controls and method for processing the security signals - Google Patents

Description

Multiple security control security system and security message processing method

The invention relates to a multi-security control security system and a security message processing method, in particular to a security measure for the entry and exit of a specific security site, and a security system with multiple security authentication technologies.

In order to ensure the safety of specific occasions, such as bank vaults and access to the portal, the prior art proposes various security measures, including dispatching security personnel, controlling the entry of personnel in these occasions with complex authentication mechanisms, and improving the strength of the portal. Measures to ensure safety.

The conventional technology is applied to a general safe or a vault. The security technology in this aspect mainly provides a solid outer body with damage prevention and a lock with security and anti-theft functions. The related technology has been known as the new technology patent M335550 of the Republic of China. The disclosed treasury code lock anti-theft mechanism cooperates with the treasury electronic code lock disclosed in No. 158304, but these are mainly the techniques of applying the traditional cipher lock and the design of the special structure therein.

For the safety measures of the safe or the vault, there may be an alarm measure. When there is improper invasion or opening behavior, the alarm may be issued. The conventional technology has a security system with a warning system disclosed in the Republic of China Patent No. 148345. The technology is mainly to set up an alarm line in the safe, which will generate a wireless signal after being triggered, and generate an alarm after being received by the alarm.

In recent years, due to the development of short-range wireless communication, such a secure communication method can also be applied to security measures in specific occasions. The conventional technology shown in FIG. 1 is an active RFID door lock security control structure. (Republic of China Patent No. M388690, Announcement Date: 2010/09/11), which should The use of radio frequency identification (RFID) technology is used in door lock security.

The door lock security control structure shown in FIG. 1 includes an active radio frequency unit 10 in which the components mainly have a first antenna 101 and a wafer 103, and the wafer 103 carries an identification code. When the active radio frequency unit 10 is activated, the identification code is converted into a signal via a circuit and transmitted by the first antenna 101.

The structure has a control host 12, wherein the component mainly has a second antenna 121, a receiver 123 and a processor 125, and forms a signal corresponding to the first antenna 101 in the active radio frequency unit 10, and controls the processor of the host 12. 125 is connected by a signal line to control the opening and closing of an alarm 16.

The system formed by each of the above end elements also includes a sensing device 14 disposed outside the protection object, the function of which is to sense the sensing range of the intruder entering the device.

The means of this technology mainly applies the radio frequency identification technology between the active radio frequency unit 10 and the control host 12 as an authentication method for starting or closing the security measures. When the sensing device 14 senses that a person enters the range, the person should use the active radio frequency unit 10 to transmit the identification code contained therein to the control host 12, and after receiving the receiver 123, determine whether it is registered. The identification code matches, thereby judging whether or not the alarm 16 is used to generate an alarm.

In view of the fact that various protection measures proposed by the prior art still have the defects of the system itself, such as being easily falsified and invaded, there may still be concerns about lack of security and insufficient security. Therefore, the disclosure is proposed on a specific occasion (such as a vault). , multiple access control measures, multiple security measures, through a variety of security measures to match each other, exchange of information to enhance security.

The disclosure describes a multiple security control security system and a security message processing method. According to an embodiment, wherein the multiple security control security system includes a security device connected to the external control center and the internal protected body door lock, the security device is connected to the control center by a communication function, and the control center can communicate with the system security device, and Master the operational status.

The security device includes a micro processing unit that performs signal processing of each component in the security device, an authentication interface unit that performs identity authentication by the person, an access control unit that is connected to the door lock of the protected body, a communication unit, and a memory that records authentication information. The memory contains a program for computing a dynamic password.

According to an embodiment, the authentication interface unit is an interface for receiving an identification signal (identification code) and a dynamic password input generated by an authentication device held by a person. For example, a wireless receiver can receive the action of the person performing the authentication by using the chip card, and can also include an input interface for the person to input the authentication information.

According to an embodiment, the protected subject may be a vault, and the access control unit is a door lock connected to the vault. The dynamic password can generate a frequently random and dynamic password (second authentication procedure) according to the time information of the multiple security control security system, and can cooperate with the first authentication procedure of the wafer card to provide the vault or a specific occasion. Safer security measures.

According to an embodiment, the security device includes a proximity sensing unit, whereby the proximity of the person is sensed, and the person is required to perform the identity authentication.

According to an embodiment of the security message processing method applied to the multiple security control security system described above, the method includes at least two authentication procedures, wherein the first authentication procedure is initiated when the personnel approach the security device, and the system will require personnel Perform the first authentication, for example, using an inductive chip card to access the authentication interface of the security device. After successful authentication, the second authentication procedure is initiated, and the personnel is required to perform the second authentication.

According to an embodiment, the second authentication procedure dynamically generates a dynamic password that is transmitted to the personnel after the operation of the security device, and then the password is input by the personnel. After the comparison, the second authentication succeeds, and the multiple security control security system is also completed. The authentication procedure opens the door lock of the protected subject.

The dynamically generated dynamic password is generated by the security device according to the data in the first authentication procedure, and may also include the time information of the system, prompting the personnel, and the personnel input to complete the authentication.

In order to provide a security-preserving system, the present invention proposes a security measure in combination with multiple authentications in a process. The disclosed multiple security control security system embodiment may refer to the usage embodiment shown in FIG.

The figure shows that a security device 20 is provided in a place (such as the vault 2), and the multiple security control and preservation system disclosed in the disclosure is introduced in a place where security is particularly emphasized, wherein the security device 20 is connected to the entrance and exit. The entrance and exit 20, especially the connection of the door lock, is entered after multiple authentication.

In this example, the security device 20 disposed at the entrance and exit 201 of the vault 2 provides at least two authentication procedures. The security device 20 is electrically coupled to the door lock that controls the opening and closing of the access port 201. The external component includes a wireless sensor 203 and an input interface 204. .

In the figure, a person 22 holds a sensor card 205, such as using a radio frequency. An identification card (RFID) IC card, the sensor card 205 carries an identification code, and is sensed by the wireless sensor 203 on the security device 20, and the identification code (required decryption) can be read, thereby identifying the identity of the holder. This is one of the authentication methods of the present invention and is not intended to limit the implementation of the present invention.

In addition, the input interface 204 on the security device 20 can be a numeric keypad connected to an internal circuit or a keyboard with specific letters and symbols. In addition to using the authentication card 205 authentication, the personnel 22 needs to input a password through at least two channels. The certification process completes a more secure certification.

In the above authentication method, the sensor card 205 held by the person 22 carries the identification code that the system has already registered, so each person 22 holds the exclusive card. When the person leaves the company or changes the transaction, the system authentication database should be updated. .

In other embodiments of the present invention, techniques using biometric recognition (such as faces, fingerprints, vein images, irises, voice prints, etc.) are not excluded for authentication.

In another embodiment, the security device 20 can be connected to the remote control center through a network. The control center can receive the signals (such as alarms, power status, error information, etc.) sent by the security device 20, and can be remotely accessed. The security device of the line can change the internal settings (such as password, access authority), and can obtain the operation information (such as damage, fault, power status) of the device remotely. The control center can further execute the data in the security device 20. End updates, including databases, passwords, and program updates.

3 is a flow chart showing an embodiment of a security message processing method for applying the present invention to a multiple security control security system. The security message processing method is particularly applied to security measures for entry and exit of a specific security site, and a multi-security authentication technology is established. Security system.

In this example, the multiple security control security system includes a security device that is linked to the protected entity, and this process is the step of maintaining the device in the system for this purpose. Beginning as described in step S301, the process starts a first authentication procedure when a person approaches the security device, and requires the person to perform the first authentication. The first authentication may select one of the plurality of authentication methods, such as being held by the personnel. The sensor card uses wireless communication technology (such as RFID, NFC) to exchange information with the security device to authenticate the identity of the person.

Then, in step S303, the process determines whether the first authentication is successful. If the first authentication fails (No), the first warning message is sent (such as using the light number, message, sound), or the first authentication procedure is re-executed (step S305); if the first authentication is successful ( Yes), a second authentication procedure will be initiated, requiring the person to perform a second authentication (step S307).

The second authentication procedure may be a step different from the first authentication procedure, such as requiring the person to enter a password, the password including a static password (which can be recorded in an authentication database in the security device) and dynamic generation by executing the program through the handheld device. Or the dynamic password received, the password confirmation procedure can be used for this second certification procedure. Others do not rule out the identification of biometrics, gestures, etc. to replace the second certification process.

Then, as step S309, it is determined whether the second authentication procedure is successful? If the second authentication fails (No), the device will send a second warning message (such as using the light number, message, sound), or re-execute this second authentication procedure, or you can return to the second An authentication procedure is shown in the dotted arrow in the figure (step S311); if the second authentication is successful (Yes), the authentication procedure of the multiple security control security system is completed (step S313), and the locked door of the protected subject is opened.

Figure 4 illustrates an embodiment of the multiple security control security system of the present invention A schematic diagram of one.

The function of each component in the multiple security control security system 40 is described. The computing core is a microprocessor 401 for performing signal processing of each circuit component, and the other is a communication module 405 electrically connected to the microprocessor 401. For connecting to the external control center 4, especially through the network; including the authentication interface 403 for providing personnel authentication, if the authentication interface 403 provides functions such as RFID, NFC and other near-end communication technologies, the user can hold the sensor as if The authentication device 43 of the chip card is close to the authentication interface 403, and mutually senses and exchanges information. In addition, the authentication interface 403 can also be an interface for inputting data, including a touch and physical keyboard, and the person can input the password 44 for authentication; Further, the access control unit 407 is connected to the door lock 409 of the protected main body 42. The access control unit 407 is an interface between the protected main body 42 and the security system, thereby transmitting a signal that allows the door lock 409 to be opened because the authentication is successful. The same message that the door lock 409 is closed can also be transmitted to the security system via the unit 407. The system 40 may further include a memory 402 in which contents such as authentication data, a system program, a password generation program, and the like are described.

Through the multiple security control method of the two authentication procedures shown in FIG. 3, FIG. 5 then shows the steps of the embodiment of the security message processing method of the present invention using identity recognition and dynamic password.

When a person enters a specific security device having multiple security control functions, in step S501, the person can perform the first authentication by using the identity recognition device held, such as using a chip card, a radio transceiver (dongle), Or biometric identification through the identification device on the device. If the chip card is taken as an example, the technology of swiping or wireless card reading can be used, and the card reader and the memory are provided in the security device, and the identification data in the memory is used for authentication. It is not excluded to connect to the remotely located authentication database during authentication. End certification.

Then, in step S503, the security device will determine whether the identification is successful. If the identification fails (No), according to the set rules (such as the number of failures allowed, the time interval, etc.), the security device may generate an alarm or perform the re-identification in step S501. Action (step S505).

Once the authentication is successful (Yes), the second authentication step is performed as in step S507. In this example, the security device reminds the person to type the password by means of voice, display or light. According to an embodiment, the password may be a password that is memorized or checked by a person, and may still be periodically updated. The input interface (such as a keyboard and a touch panel) provided by the security device may be entered in the field. Other embodiments do not preclude authentication in a different way than the first authentication procedure, such as using image recognition technology to determine the identity of the person, determining whether the gesture password is correct, or using other biometric methods, or second The password is authenticated.

In this example, in step S509, the second authentication procedure is that the person receives a dynamically generated password by using a specific carrier, and the dynamic password is provided to the person according to the actual state, and the dynamic generated by the person according to the indication. Password input, after receiving the dynamic password through the system, it is necessary to judge whether the second authentication procedure is passed.

The above-mentioned dynamic password authentication method mainly displays a password consistent with the system on a device worn or held by a person, and such technology mainly uses a time difference as a system (a server capable of providing a password generating function) and a device held by an entry and exit person. The synchronization condition of the password generator on it. When authentication is required, a password is generated by the password generator. The password should be entered in the security device within the set time limit. Otherwise, the password will be invalid. The next authentication must use another newly generated dynamic. Password, with strict security .

For example, a person entering a particular location holds a carrier, which can be a dynamic password generator called Token, with a display on the top, after entering the second authentication procedure (not excluded from the first authentication procedure) Using this authentication method, the dynamic password can be transmitted by the monitoring center or any of the connected authentication centers, and displayed on the display on the Token device, and then input to the security device by the personnel; and the security device can be based on internal information (such as The system time information, or the password generator) or the information of the first authentication of the personnel is calculated, and then the dynamic password is displayed by the device on the person's hand, and the personnel input and perform the authentication according to this; another embodiment can be utilized by the remote monitoring center. The simple message service (SMS) transmits the dynamic password to the mobile phone held by the person in the person, and the person can input according to the step (step S511), and the security device has a mechanism for synchronizing the message to determine whether the input is correct.

In the above-mentioned method of generating a random and variable password by a specific cryptographic algorithm, the non-original holder of the chip card can be prevented from entering the arbitrarily, although the first authentication procedure may be passed, but may not be held because For example, Token's device is still difficult to pass the second certification process. Such dynamic passwords are generated by the personnel handheld device after the completion of the first authentication procedure, wherein the information will be synchronized with the security device, so that authentication can be obtained.

Then, as shown in step S513, the authentication program will determine whether the authentication is successful. If the second authentication procedure fails (NO), step S515 is performed, the system generates any type of alarm or requests to re-enter the password, and the step can still return to the first authentication step, such as step S501, re-execute the authentication; If it is required to re-enter another password, a new set of dynamic passwords can also be generated as described above.

The number of authentications of the dynamic password may be determined according to the system design, and the steps may be resumed by the first authentication procedure, or another dynamic password may be retrieved again. After the second authentication is successful (Yes), as described in step S517, the security system will allow access to the protected subject, such as driving the door lock.

When performing the authentication process, according to the system design, there may be different ways of starting each authentication procedure. According to one of the embodiments, when the above-mentioned person enters a specific security device with multiple security control functions, if the person holds or With the induction of multiple security control system booting items, such as the use of a sensor chip card, the sensor chip and the security device are connected by a radio frequency identification communication method. When the sensor wafer (including the device or carrier carrying the wafer) is held close to the security device, the first authentication procedure can be initiated immediately. In this example, the first authentication procedure includes the security device receiving the identification code transmitted from the sensing chip card for comparing the authentication database built in or out of the security device to confirm whether the identification code is secure. List. At this time, if the identification code is not a security list, it is determined that the first authentication fails according to the above step S503; if the identification code is a security list, the first authentication is successful.

Figure 6 again shows a schematic diagram of another embodiment of the system of the present invention.

In this example, the multiple security control security system is provided with a security device 60 connected to the protected entity 64. The security device 60 includes a micro processing unit 601 that performs signal processing of each component in the security device 60 according to the circuit function. The security device 60 A communication unit 602 is included, thereby being connectable to the control center 62. The communication unit 602 is electrically connected to the micro processing unit 601. The micro processing unit 601 will process the communication signal generated by the communication unit 602, and the control center 62 is composed of the communication unit. 602 receives the signal of the security device 60. Protected subject 64 such as a vault.

The security device 60 further includes an authentication interface unit 604 for performing identity authentication, and the authentication interface unit 604 is electrically connected to the micro processing unit 601. The micro processing unit 601 processes the authentication signals generated by the various authentication interface units 604, including the signal addition. Decrypt, identify, compare, etc., and initiate related authentication procedures. The authentication interface unit 604 is configured to receive an interface between the identification signal (identification code) generated by the authentication device and the dynamic password input, such as a touch panel, a keyboard, and a non-contact type (such as using near field communication technology such as RFID). Or a contact-type (swipe-card) card reading device, etc., in this example, an external sensing interface 641 can be connected, such as a touch area, or a reader that can read the chip signal, and can also be connected to the input interface 642. , providing personnel input data.

The security device 60 has a memory unit 605, wherein the memory stores the authentication data, including the statically stored data, such as an authentication database that records the identification code of the authentication device; and the program for calculating the dynamic password, and the dynamic password authentication is initiated. After the program, the above-mentioned micro processing unit 601 will load the relevant operation program, dynamically generate a password, and can synchronize with the external authentication device.

In the embodiment of the present invention, the multiple security control security system is specially designed to protect the entrance and exit of a specific place, and the security device 60 is disposed on the protected body 64 and can be coupled to the door lock of the protected body 64. 60 is provided with an access control unit 606. The access control unit 606 is electrically connected to the micro processing unit 601, and is connected to the door lock (such as the door lock of the vault). The control circuit for controlling the opening and closing of the door lock for the security device 60 will be based on the micro processing. The signal generated by the unit 601 after the authentication drives the opening and closing door lock, and the door lock is, for example, an electromagnetic door lock that is opened and closed according to the electric signal.

If the multiple security control system is to perform dynamic password authentication, the security device 60 includes a dynamic password processing unit 607, and the dynamic password processing unit 607 is electrically connected to the micro processing unit 601. According to the authentication procedure executed by the micro processing unit 601, the system will be transparent. The computing power-enabled dynamic cryptographic processing unit 607 executes a dynamic cryptographic program and dynamically generates dynamic ciphers based on information from multiple security control security systems, such as time information. The authentication data managed by the dynamic cryptographic processing unit 607 is mostly a randomly changing password, which will change with time and be synchronized with the opposite authentication device. Therefore, the person entering the protected subject 64 needs to hold the corresponding password. The generation device can perform authentication correctly.

The display device 631 is connected to the person outside the security device 60 and has a display unit 603 electrically connected to the micro processing unit 601 for processing the display signal. The display can be used to display the prompting person to perform each step or display the authentication result. Includes warning content.

To ensure the security of the multiple security control security system, the power supply of the security device 60 may include both AC power provided by the power company (such as the power source 682) and DC power provided by the internal battery 681. The device 60 has a power management unit 608 for managing the power configuration within the device, including monitoring the state of the device operating power, and ensuring that the device 60 operates stably.

The security device 60 provides a function of sensing proximity to an object, such as a proximity sensing unit 609 having an electrical connection to the microprocessor unit 601, externally coupled to an inductor 691, utilizing optical, wireless signal sensing, image sensing, temperature sensing, or other The sensing method can be judged according to the environmental change to determine whether an object is approaching, so that the system can further require the approaching person to perform identity authentication.

For example, if the implementation of the above dynamic password is used for authentication, see The flow shown in Figure 7.

When the dynamic password program is started in the first authentication program or the second authentication program (step S701), the corresponding security device will calculate a dynamic password according to the system information (step S703). The system information may include time information of the system (71) or information (72) of another sensing device sensed by the security device, by which the password is generated.

Then, the security device can prompt the person-related dynamic password through the display on the holding password generator (such as the token device 75 such as Token) (step S705), but does not exclude other prompting methods, such as the relevant personnel can hold through The telephone (74) receives a short message, and the dynamic password for the authentication is recorded in the newsletter.

The person receives the dynamic password number, the system will perform the authentication within the set time, and the personnel should complete the input within this period (step S707).

According to the embodiment of the present invention, the multiple security control security system mainly uses multiple authentication methods to control the entry and exit personnel to ensure the security of a specific location. In the preferred embodiment, at least two authentication procedures are sequentially executed, preferably different implementation states. Such a method of authentication, such as requiring a person to perform a password identification in the first authentication procedure, and then using a biometric method (such as voice, motion, fingerprint, palm print, voiceprint, iris, retina, vein) in another authentication procedure Identification, face recognition, etc.), or dynamic passwords to perform authentication. When an event with a false authentication occurs, the control center can be notified, a warning message can be displayed, or a second identity confirmation can be requested.

Therefore, the multiple security control security system and the security message processing method described in the present disclosure utilize different aspects of two or more authentication procedures to ensure the security of a specific place.

However, the above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention. Therefore, equivalent structural changes that are made by using the specification and the contents of the present invention are equally included in the present invention. Within the scope, it is combined with Chen Ming.

10‧‧‧Active radio frequency unit

101‧‧‧first antenna

103‧‧‧ wafer

14‧‧‧Sensing device

12‧‧‧Control host

123‧‧‧ Receiver

121‧‧‧second antenna

125‧‧‧ processor

16‧‧‧Alarm

22‧‧‧ Personnel

20‧‧‧Security device

203‧‧‧Wireless sensor

204‧‧‧Input interface

2‧‧ ‧ treasury

201‧‧‧ entrances and exits

205‧‧‧Induction card

40‧‧‧Multiple Security Control System

4‧‧‧Control Center

42‧‧‧Protected subject

43‧‧‧Authorized device

44‧‧‧ password

401‧‧‧Microprocessor

403‧‧‧Authentication interface

405‧‧‧Communication Module

407‧‧‧Access Control Unit

409‧‧‧door lock

402‧‧‧ memory

62‧‧‧Control Center

64‧‧‧Protected subject

601‧‧‧Microprocessing unit

602‧‧‧Communication unit

603‧‧‧Display unit

604‧‧‧Certified interface unit

605‧‧‧ memory unit

606‧‧‧Access Control Unit

607‧‧‧Dynamic cryptographic processing unit

608‧‧‧Power Management Unit

609‧‧‧Proximity sensing unit

60‧‧‧Security device

631‧‧‧ display

641‧‧‧Induction interface

642‧‧‧Input interface

691‧‧‧ sensor

681‧‧‧Battery

682‧‧‧Power supply

71‧‧‧System time

72‧‧‧Induction device information

73‧‧‧Phone

74‧‧‧Voucher device

Step S301~S313‧‧‧One of the security message processing procedures

Step S501~S513‧‧‧Security message processing process 2

Step S701~S707‧‧‧Dynamic password processing flow

1 is a schematic diagram of a conventional RFID active door lock security control structure; FIG. 2 is a schematic diagram showing a use embodiment of the multiple security control security system of the present invention; FIG. 3 is a flow chart showing an embodiment of the security message processing method of the present invention. FIG. 4 is a schematic diagram showing an embodiment of a multiple security control security system of the present invention; FIG. 6 is a flowchart showing an embodiment of the security message processing method of the present invention; FIG. 6 is a schematic diagram showing an embodiment of the system of the present invention; The flow shown in Figure 7 describes the operational steps of the dynamic password of the present invention.

4‧‧‧Control Center

42‧‧‧Protected subject

43‧‧‧Authorized device

44‧‧‧ password

401‧‧‧Microprocessor

402‧‧‧ memory

403‧‧‧Authentication interface

405‧‧‧Communication Module

407‧‧‧Access Control Unit

409‧‧‧door lock

40‧‧‧Multiple Security Control System

Claims (9)

A multiple security control security system is coupled to a protected entity, the system comprising: at least one control center connected to the security device, the control center receiving the signal of the security device; and being connected to the protected entity The security device includes: a micro processing unit that performs signal processing of each component in the security device; an authentication interface unit that accepts a person to perform identity authentication, and the authentication interface unit is electrically connected to the micro processing unit, wherein the security device The authentication interface unit reads the identification data generated by one of the wafer cards held by the person, the identification data contained in the radio transceiver, or the biometric identification in the first authentication procedure; the authentication interface unit is in the second channel. The authentication program receives a dynamic password input by the person according to the display of an authentication device; an access control unit is connected to a door lock of the protected object, and the access control unit is electrically connected to the micro processing unit for controlling the security device a control circuit for opening and closing the door lock; a communication unit, wherein the security device is connected to the communication unit Control center, the communication unit is electrically connected to the microprocessor unit; and a memory unit, the memory unit electrically connected to the microprocessor unit, according to the authentication identifying information of the operational personnel of the OTP Program. The multiple security control security system of claim 1, wherein the security device further comprises a program for executing the dynamic password, and generating a dynamic password processing unit of the dynamic password according to the time information of the multiple security control security system. The dynamic cryptographic processing unit is electrically connected to the micro processing unit. The multiple security control security system of claim 1, wherein the protected subject is a vault, and the access control unit is coupled to the vault of the vault. The multiple security control security system of claim 1, wherein the security device further comprises one of the proximity processing units electrically connected to the micro processing unit, wherein the proximity sensing unit senses that the person is close to the request This person performs identity authentication. A security message processing method for a multiple security control security system, wherein the multiple security control security system includes a security device coupled to a protected entity, including: when a person approaches the security device, initiates a first The channel authentication procedure requires the person to perform the first authentication by reading an identification card contained in a chip card, a radio transceiver, or identification data generated by biometric identification by an authentication interface unit in the security device; If the first authentication fails, a first warning message is sent, or the first authentication procedure is re-executed; if the first authentication is successful, a second authentication procedure is initiated, and the person is required to perform the second authentication. Receiving, by the authentication interface unit in the security device, the person input according to the display by an authentication device Dynamic password; if the second authentication fails, a second warning message is sent, or the second authentication procedure or the first authentication procedure is re-executed; if the second authentication is successful, the multiple security control preservation is completed. The system's authentication program opens the door lock of the protected subject. The method for processing a security message according to claim 5, wherein the first authentication procedure is initiated when the person uses the wafer card to access the security device, the first authentication procedure further comprising: receiving the security device Receiving, by the chip card, an identification code; and after receiving the identification data of the wafer card, confirming whether the identification data is a safe list compared to an authentication database in the security device; if the identification data is not a security list The first authentication fails; if the identification data is a security list, the first authentication is successful. The method for processing a security message according to claim 6, wherein the chip card and the security device are connected by a radio frequency identification communication method. The method for processing a security message according to claim 5, wherein the second authentication procedure is started after the first authentication is successful, and the second authentication procedure comprises: the security device receiving the dynamic password, The security device confirms whether the dynamic password is correct; if the password is incorrect, the second authentication fails; and if the password is correct, the second authentication succeeds. The method for processing a security message as described in claim 8 of the patent application, wherein The dynamic generated dynamic password is generated by the security device according to the time data of the multiple security control security system, and is presented to the person; and one of the security devices records the program for calculating the dynamic password.