TWI527393B - Authentication device of short-range wireless communication and method thereof - Google Patents

Authentication device of short-range wireless communication and method thereof Download PDF

Info

Publication number
TWI527393B
TWI527393B TW102115114A TW102115114A TWI527393B TW I527393 B TWI527393 B TW I527393B TW 102115114 A TW102115114 A TW 102115114A TW 102115114 A TW102115114 A TW 102115114A TW I527393 B TWI527393 B TW I527393B
Authority
TW
Taiwan
Prior art keywords
information
wireless communication
unit
card
encrypted
Prior art date
Application number
TW102115114A
Other languages
Chinese (zh)
Other versions
TW201442450A (en
Inventor
陳佳宏
Original Assignee
義隆電子股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 義隆電子股份有限公司 filed Critical 義隆電子股份有限公司
Priority to TW102115114A priority Critical patent/TWI527393B/en
Priority to CN201310216831.8A priority patent/CN104125065A/en
Publication of TW201442450A publication Critical patent/TW201442450A/en
Application granted granted Critical
Publication of TWI527393B publication Critical patent/TWI527393B/en

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)
  • User Interface Of Digital Computer (AREA)
  • Storage Device Security (AREA)

Description

短距離無線通訊認證裝置及其方法 Short-distance wireless communication authentication device and method thereof

本發明有關於一種短距離無線通訊認證裝置及其方法,以避免短距離無線通訊卡被盜刷的風險。 The invention relates to a short-range wireless communication authentication device and a method thereof, so as to avoid the risk of the short-distance wireless communication card being stolen.

現代人購物的習慣已從傳統店面開始走向網路,線上刷卡已是不可或缺的方式,然而,在這網路發達的時代,用鍵盤輸入信用卡卡號,容易有被不明程式側錄而遭駭客竊取盜刷的風險。另一方面,雖然目前短距離無線通訊(如無線射頻傳輸辨識(Radio Frequency Identification,RFID)、近距離無線通訊(near field communication,NFC)等)刷卡已能大幅降低資料被竊的機率,但使用時並未再搭配一層的安全防護機制,因此,若信用卡或電子錢包不小心遺失,陌生人就可直接盜刷。 The habit of modern people's shopping has started from the traditional storefront to the Internet. Online credit card is an indispensable way. However, in this era of developed Internet, using the keyboard to input the credit card number is easy to be smashed by unknown programs. The risk of stealing stolen brushes. On the other hand, although short-distance wireless communication (such as radio frequency identification (RFID), near field communication (NFC), etc.) has been able to significantly reduce the risk of data theft, it is used. There is no layer of security protection, so if a credit card or e-wallet is accidentally lost, strangers can directly steal it.

為解決上述短距離無線通訊卡被盜刷的問題,因此提出本發明。 In order to solve the problem that the short-range wireless communication card is stolen, the present invention has been proposed.

根據本發明之一實施例,係提供一種短距離無線通訊認證方法,其包含以下步驟:讀取一無線通訊卡,以 得到一卡片資料,其中該卡片資料包含一帳戶資訊;暫存該卡片資料;經由一觸控板輸入一解密資訊,並比較該解密資訊及一加密資訊;以及,當該解密資訊及該加密資訊相符時,將該帳戶資訊傳送至一伺服單元。 According to an embodiment of the present invention, a short-range wireless communication authentication method is provided, which includes the following steps: reading a wireless communication card to Obtaining a card data, wherein the card data includes an account information; temporarily storing the card data; inputting a decryption information via a touchpad, and comparing the decryption information and an encrypted information; and, when the decryption information and the encrypted information When the match is met, the account information is transmitted to a server unit.

根據本發明之另一實施例,係提供一種短距離無線通訊認證方法,其包含以下步驟:讀取一無線通訊卡,以得到一卡片資料,其中該卡片資料包含一加密資訊及一帳戶資訊;暫存該卡片資料於一伺服單元中;輸入一解密資訊,該伺服單元係比較該解密資訊及一加密資訊;以及,當該解密資訊及該加密資訊相符時,允許該伺服單元讀取該帳戶資訊。 According to another embodiment of the present invention, a short-range wireless communication authentication method is provided, which includes the steps of: reading a wireless communication card to obtain a card data, wherein the card data includes an encrypted information and an account information; Temporarily storing the card data in a servo unit; inputting a decryption information, the servo unit comparing the decrypted information and an encrypted information; and, when the decrypted information and the encrypted information match, allowing the servo unit to read the account News.

根據本發明之另一實施例,係提供一種短距離無線通訊認證裝置,包含:一觸控板,供手寫輸入並對應產生一感測訊號;一觸控板控制單元,耦接該觸控板;一讀取單元,設置於該觸控板之一表面,用以讀取一無線通訊卡;以及,一通訊控制單元,耦接該讀取單元及該觸控板控制單元;其中,當該讀取單元讀取該無線通訊卡時,比較該無線通訊卡之一加密資訊與一使用者經由該觸控板輸入之一解密資訊,若該解密資訊及該加密資訊相符時,則允許傳送該無線通訊卡之一帳戶資訊。 According to another embodiment of the present invention, a short-range wireless communication authentication device is provided, including: a touch panel for handwriting input and correspondingly generating a sensing signal; and a touch panel control unit coupled to the touch panel a reading unit disposed on a surface of the touch panel for reading a wireless communication card; and a communication control unit coupled to the reading unit and the touch panel control unit; wherein, when When the reading unit reads the wireless communication card, comparing one of the encrypted information of the wireless communication card with a user to decrypt the information via one of the touchpad inputs, and if the decrypted information and the encrypted information match, allowing the transmission of the wireless communication card One of the wireless communication card account information.

茲配合下列圖示、實施例之詳細說明及申請專利範圍,將上述及本發明之其他目的與優點詳述於後。 The above and other objects and advantages of the present invention will be described in detail with reference to the accompanying drawings.

100‧‧‧短距離無線通訊認證裝置 100‧‧‧Short-range wireless communication authentication device

110‧‧‧觸控板控制單元 110‧‧‧Touchpad Control Unit

120‧‧‧通訊介面 120‧‧‧Communication interface

130‧‧‧觸控板 130‧‧‧Touchpad

140‧‧‧讀取單元 140‧‧‧Reading unit

140a‧‧‧無線通訊區域 140a‧‧‧Wireless communication area

150‧‧‧通訊控制單元 150‧‧‧Communication Control Unit

160‧‧‧辨識單元 160‧‧‧ Identification unit

170‧‧‧儲存單元 170‧‧‧ storage unit

180‧‧‧用戶端 180‧‧‧User

190‧‧‧伺服單元 190‧‧‧Servo unit

210a‧‧‧加密無線通訊卡 210a‧‧‧Encrypted wireless communication card

210b‧‧‧未加密無線通訊卡 210b‧‧‧Unencrypted wireless communication card

220‧‧‧屏蔽接地層 220‧‧‧Shield ground plane

251‧‧‧觸控面 251‧‧‧ touch surface

252‧‧‧組裝面 252‧‧‧Assembled surface

步驟S602‧‧‧讀取位於無線通訊區140a內之加密無線通訊卡210a Step S602‧‧‧ reads the encrypted wireless communication card 210a located in the wireless communication area 140a

步驟S603‧‧‧將加密無線通訊卡210a之加密卡片資料暫存於認證裝置100中 Step S603‧‧‧ temporarily storing the encrypted card data of the encrypted wireless communication card 210a in the authentication device 100

步驟S604‧‧‧將加密無線通訊卡210a之加密卡片資料解密並暫存於認證裝置100中 Step S604‧‧‧ decrypts and temporarily stores the encrypted card data of the encrypted wireless communication card 210a in the authentication device 100

步驟S606‧‧‧產生輸入解密資訊的視窗 Step S606‧‧‧ Generate a window for inputting decrypted information

步驟S608‧‧‧透過觸控板130輸入解密資訊 Step S608‧‧‧ Entering decryption information through the touchpad 130

步驟S610‧‧‧判斷解密資訊是否輸入完畢 Step S610‧‧‧Determining whether the decrypted information has been input

步驟S612‧‧‧判斷加密無線通訊卡210a是否仍放在無線通訊區140a內 Step S612‧‧‧ determines whether the encrypted wireless communication card 210a is still placed in the wireless communication area 140a

步驟S614‧‧‧判斷二筆加/解密資訊是否相符 Step S614‧‧‧Check if the two-in-one encryption/decryption information matches

步驟S616‧‧‧將帳戶資訊傳送給用戶端180及伺服單元190 Step S616‧‧‧ transmits the account information to the client 180 and the server unit 190

步驟S618‧‧‧封鎖帳戶資訊 Step S618‧‧‧ Block account information

步驟S630‧‧‧將該輸入解密資訊及該加密卡片資料傳送至伺服單元190 Step S630‧‧‧ transmits the input decryption information and the encrypted card data to the servo unit 190

步驟S632‧‧‧比對該輸入解密資訊及該加密資訊是否相符 Step S632‧‧‧ is more consistent with the input decryption information and the encrypted information

步驟S634‧‧‧讀取該帳戶資訊 Step S634‧‧‧Read the account information

步驟S636‧‧‧封鎖該帳戶資訊 Step S636‧‧‧ Block the account information

步驟S802‧‧‧讀取位於無線通訊區140a內之未加密無線通訊卡210b Step S802‧‧‧ reads the unencrypted wireless communication card 210b located in the wireless communication area 140a

步驟S804‧‧‧將帳戶資訊暫存於認證裝置100中 Step S804‧‧‧ temporarily storing the account information in the authentication device 100

步驟S806‧‧‧產生輸入解密資訊的視窗 Step S806‧‧‧ Generate window for inputting decryption information

步驟S808‧‧‧透過觸控板130輸入解密資訊 Step S808‧‧‧ Enter the decryption information through the touchpad 130

步驟S810‧‧‧判斷解密資訊是否輸入完畢 Step S810‧‧‧Determine whether the decryption information has been input

步驟S812‧‧‧判斷未加密無線通訊卡210b是否仍放在無線通訊區140a內 Step S812‧‧‧ determines whether the unencrypted wireless communication card 210b is still placed in the wireless communication area 140a

步驟S814‧‧‧將該輸入解密資訊及該帳戶資訊之識別碼傳送至該伺服單元190 Step S814‧‧‧ transmits the input decryption information and the identification code of the account information to the servo unit 190

步驟S816‧‧‧伺服單元190比對該輸入解密資訊及該加密資訊 Step S816‧‧‧ The servo unit 190 decrypts the information and the encrypted information compared to the input

步驟S818‧‧‧將比較結果訊息由伺服單元190回傳給認證裝置100 Step S818‧‧‧ returns the comparison result message to the authentication device 100 by the servo unit 190

步驟S820‧‧‧該比較結果訊息表示二筆加/解密資訊是否相符 Step S820‧‧‧ The comparison result message indicates whether the two encryption/decryption information matches

步驟S822‧‧‧將帳戶資訊傳送給用戶端180及伺服單元190 Step S822‧‧‧ transmits the account information to the client 180 and the server unit 190

步驟S824‧‧‧封鎖該帳戶資訊 Step S824‧‧‧ Block the account information

步驟S830‧‧‧認證裝置將該帳戶資訊及該輸入解密資訊加密轉換為加密卡片資料 Step S830‧‧‧ The authentication device encrypts the account information and the input decryption information into encrypted card data

步驟S832‧‧‧將該加密卡片資料由認證裝置100傳送至伺服單元190 Step S832‧‧‧ transmits the encrypted card data from the authentication device 100 to the servo unit 190

步驟S834‧‧‧判斷該輸入解密資訊及該加密資訊是否相符 Step S834‧‧‧ determines whether the input decryption information and the encrypted information match

步驟S836‧‧‧讀取該帳戶資訊 Step S836‧‧‧Read the account information

步驟S838‧‧‧封鎖該帳戶資訊 Step S838‧‧‧ Block the account information

第1圖為本發明一實施例之短距離無線通訊認證裝置的架構示意圖。 FIG. 1 is a schematic structural diagram of a short-range wireless communication authentication apparatus according to an embodiment of the present invention.

第2a圖本發明認證裝置之無線通訊區及觸控板之俯視圖。 Figure 2a is a plan view of the wireless communication area and the touch panel of the authentication device of the present invention.

第2b圖本發明認證裝置之觸控板及讀取單元之側面圖,其中讀取單元的天線輻射方向(向上)係朝向觸控面的方向。 2b is a side view of the touch panel and the reading unit of the authentication device of the present invention, wherein the antenna radiation direction (upward) of the reading unit is toward the touch surface.

第2c圖本發明認證裝置之觸控板及讀取單元之側面圖,其中讀取單元的天線輻射方向(向下)係朝向往觸控面的反方向。 2c is a side view of the touch panel and the reading unit of the authentication device of the present invention, wherein the antenna radiation direction (downward) of the reading unit is directed in the opposite direction to the touch surface.

第3圖顯示電腦螢幕顯示之輸入密碼/簽名視窗的一個例子。 Figure 3 shows an example of the input password/signature window displayed on the computer screen.

第4a圖顯示於觸控板使用單指輸入一字元的一個例子。 Figure 4a shows an example of a character input using a single finger on a touchpad.

第4b圖顯示於觸控板使用多指輸入點擊虛擬鍵盤的一個例子。 Figure 4b shows an example of clicking on a virtual keyboard on a touchpad using multi-finger input.

第4c圖顯示於觸控板同時使用多指外滑手勢以輸入密碼的一個例子。 Figure 4c shows an example of using a multi-finger external swipe gesture to enter a password on the touchpad.

第4d~4h圖顯示於觸控板同時使用多指旋轉、上滑、下滑、右滑、左滑手勢以輸入密碼的例子。 The 4th to 4th images show an example in which the touchpad uses a multi-finger rotation, an upswing, a slide, a right slide, and a left slide gesture to input a password.

第5a~5d圖本發明無線通訊卡、認證裝置及伺服單元之間的不同資料流示意圖。 5a~5d are schematic diagrams showing different data flows between the wireless communication card, the authentication device and the servo unit of the present invention.

第6圖為本發明第一實施例之短距離無線通訊認證方法的流程圖。 Figure 6 is a flow chart showing a short-range wireless communication authentication method according to the first embodiment of the present invention.

第7圖為本發明第二實施例之短距離無線通訊認證方法的流程圖。 FIG. 7 is a flowchart of a short-range wireless communication authentication method according to a second embodiment of the present invention.

第8a圖為本發明第三實施例之短距離無線通訊認證方法的流程圖。 FIG. 8a is a flowchart of a short-range wireless communication authentication method according to a third embodiment of the present invention.

第8a~8b圖為本發明第四實施例之短距離無線通訊認證方法的流程圖。 8a-8b are flowcharts of a short-range wireless communication authentication method according to a fourth embodiment of the present invention.

目前採用短距離無線通訊技術,例如信用卡,在網路上的資訊傳輸已有一套完善的加密機制(NFC金融認証機制)。本發明的特色之一是在讀取無線通訊卡之後及使用帳戶資訊前,在認證裝置/伺服單元多設一層安全認證機制,以避免有卡即刷的風險。 At present, short-range wireless communication technologies, such as credit cards, have a complete encryption mechanism (NFC financial authentication mechanism) for information transmission over the Internet. One of the features of the present invention is to set up a layer of security authentication mechanism in the authentication device/servo unit after reading the wireless communication card and before using the account information to avoid the risk of having a card or brush.

有鑒於NFC讀卡機與筆記型電腦(note book)整合應用日漸普及,尤其與觸控板整合技術也日趨成熟。本發明的另一特色係整合讀取單元與觸控板以進行資料傳輸,同時搭配手指偵測技術、手寫辨識及手勢辨識的演算法,可在不經過電腦主機(或用戶端)讀取密碼/簽名的情況下,於認證裝置/伺服單元完成密碼/簽名的輸入/比對後,再進行帳戶資料的傳送或處理。由於本發明不透過電腦主機(或用戶端)來輸入/比對持卡人的密碼/簽名,因此可大幅降低密碼被側錄 的風險。 In view of the increasing popularity of NFC readers and notebooks, the integration technology with touchpads is becoming more mature. Another feature of the present invention is that the reading unit and the touchpad are integrated for data transmission, and the algorithm of finger detection technology, handwriting recognition and gesture recognition can be used to read the password without going through the host computer (or the user terminal). In the case of signature, after the authentication device/servo unit completes the input/alignment of the password/signature, the account data is transmitted or processed. Since the present invention does not input/match the cardholder's password/signature through the host computer (or the client), the password can be greatly reduced. risks of.

本發明短距離無線通訊認證裝置及其方法適用於加密無線通訊卡210a及未加密無線通訊卡210b。加密無線通訊卡210a內含一加密卡片資料,而該加密卡片資料加密時包含但不限於以下二種方式:第一種加密方式(以下稱之為加密金鑰法)是根據一加密演算法,利用一加密資訊對一帳戶資訊進行加密而成;第二種加密方式(以下稱之為加密轉換法)是根據多份轉換密碼表之第n份轉換密碼表,對該加密資訊及該帳戶資訊進行加密而成,其中,n值存放在該加密卡片資料的特定位置(例如第一個位元組或最後一個位元組)。相對而言,上述加密卡片資料解密時包含但不限於以下二種方式:第一種解密方式(以下稱之為解密金鑰法)係根據一解密演算法(相對於該加密演算法),利用使用者輸入的解密資訊對上述加密卡片資料進行解密或解碼,以還原成該帳戶資訊,並對該帳戶資訊進行一資料校驗或檢查,例如但不限於循環冗餘校驗(cyclic redundancy check,CRC),來判斷該使用者輸入的解密資訊是否正確。第二種解密方式(以下稱之為解密轉換法)是根據該加密卡片資料的特定位置取出的n值,從多份轉換密碼表中擷取出第n份轉換密碼表,來對上述加密卡片資料進行解密,以還原成該加密資訊及該帳戶資訊。請注意,前述各種加解密方法,僅為本發明之一實施例,而非本發明的限制。其中,上述加/解密資訊可以是 一組密碼或一組圖案(包含但不限於簽名)。 The short-range wireless communication authentication apparatus and method thereof are applicable to an encrypted wireless communication card 210a and an unencrypted wireless communication card 210b. The encrypted wireless communication card 210a includes an encrypted card data, and the encrypted card data includes, but is not limited to, the following two methods: the first encryption method (hereinafter referred to as an encryption key method) is based on an encryption algorithm. Encrypting an account information by using an encrypted information; the second encryption method (hereinafter referred to as encryption conversion method) is based on the nth conversion password table of the multiple conversion password table, the encrypted information and the account information Encrypted, where the value of n is stored in a specific location of the encrypted card material (for example, the first byte or the last byte). Relatively speaking, the decryption of the encrypted card data includes but is not limited to the following two methods: the first decryption method (hereinafter referred to as a decryption key method) is performed according to a decryption algorithm (relative to the encryption algorithm) The decrypted information input by the user decrypts or decodes the encrypted card data to restore the account information, and performs a data check or check on the account information, such as but not limited to a cyclic redundancy check (cyclic redundancy check). CRC) to determine whether the decryption information entered by the user is correct. The second decryption method (hereinafter referred to as decryption conversion method) is to extract the n-th conversion password table from the plurality of conversion password tables according to the n value extracted from the specific location of the encrypted card data, to encrypt the card data. Decrypt to restore the encrypted information and the account information. Please note that the various encryption and decryption methods described above are merely one embodiment of the present invention and are not limiting of the present invention. Wherein, the above encryption/decryption information may be A set of passwords or a set of patterns (including but not limited to signatures).

至於,未加密無線通訊卡210b僅包含有一帳戶資訊。其中,帳戶資訊包含但不限於卡片識別碼、持卡人身份識別碼、交易資料、交易日期等 As for the unencrypted wireless communication card 210b, only one account information is included. Among them, account information includes but is not limited to card identification code, cardholder identification code, transaction data, transaction date, etc.

第1圖為本發明一實施例之短距離無線通訊認證裝置的架構示意圖。請參考第1圖,本發明短距離無線通訊認證裝置100包含一觸控板控制單元110、一通訊介面120、一觸控板(包含多個感測器)130、一讀取單元140、一通訊控制單元150、一辨識單元160及一儲存單元170。 FIG. 1 is a schematic structural diagram of a short-range wireless communication authentication apparatus according to an embodiment of the present invention. Referring to FIG. 1 , the short-range wireless communication authentication device 100 includes a touch panel control unit 110 , a communication interface 120 , a touch panel (including a plurality of sensors) 130 , a reading unit 140 , and a The communication control unit 150, an identification unit 160 and a storage unit 170.

一實施例中,讀取單元140係用NFC天線模組來實施。 In one embodiment, the reading unit 140 is implemented using an NFC antenna module.

本發明係整合讀取單元140與觸控板130,以進行持卡人認證及帳戶資訊傳輸。實際應用時,為縮小整體裝置面積,將讀取單元140及觸控板130重疊設置。一般來說,觸控板130具有一觸控面251及一組裝面252,觸控面251可供使用者透過手指或物件在其上進行觸控行為,組裝面252會對應地鋪設一屏蔽接地層220。在本發明之讀取單元140及觸控板130為重疊設置的情形下,若希望能讓無線通訊卡210a/210b在鄰近觸控面251(於無線通訊區140a)的位置被讀取單元140讀取到,讀取單元140的輻射方向就必須是往上的(即朝向觸控面251的方向)。而為了讀取單元140發出的訊號能從觸控板130走線間的空隙中輻射出來,且不被屏蔽接地層 220屏蔽掉,讀取單元140及觸控板130之間就不能鋪設屏蔽接地層220,當然,在讀取單元140及觸控板130的非重疊部分仍舊可以鋪設屏蔽接地層220,如第2a及2b圖所示。一實施例中,如第2c圖所示,讀取單元140及觸控板130之間依然重疊設置,但讀取單元140的輻射方向是往下(即朝向觸控板模組的外側、或往觸控面251的反方向),換言之,讀取單元140發出的訊號沒有被屏蔽接地層220屏蔽的問題,所以觸控板的組裝面252仍會鋪設一屏蔽接地層220。在另一實施例中,讀取單元140及觸控板130之間非重疊設置(圖未示,例如但不限於二者都設在觸控面251上),此時,觸控板模組的組裝面252也會鋪設一接地層。在以下的實施例及圖式中,係以重疊設置的讀取單元140及觸控板130而且天線輻射方向係朝向觸控面251的方向(如第2b圖)為例作說明。 The invention integrates the reading unit 140 and the touchpad 130 for cardholder authentication and account information transmission. In actual application, in order to reduce the overall device area, the reading unit 140 and the touch panel 130 are overlapped. Generally, the touch panel 130 has a touch surface 251 and an assembly surface 252. The touch surface 251 allows the user to perform a touch action on the finger or the object. The assembly surface 252 is correspondingly laid with a shield. Formation 220. In the case where the reading unit 140 and the touch panel 130 of the present invention are arranged in an overlapping manner, if it is desired to allow the wireless communication card 210a/210b to be read by the reading unit 140 at a position adjacent to the touch surface 251 (in the wireless communication area 140a) It is read that the radiation direction of the reading unit 140 must be upward (ie, the direction toward the touch surface 251). The signal sent from the reading unit 140 can be radiated from the gap between the lines of the touch panel 130 and is not shielded by the ground layer. The shielding ground layer 220 can not be laid between the reading unit 140 and the touch panel 130. Of course, the shielding ground layer 220 can still be laid on the non-overlapping portion of the reading unit 140 and the touch panel 130, such as the 2a. And 2b shown. In an embodiment, as shown in FIG. 2c, the reading unit 140 and the touch panel 130 are still overlapped, but the radiation direction of the reading unit 140 is downward (ie, toward the outside of the touch panel module, or In the opposite direction of the touch surface 251, in other words, the signal from the reading unit 140 is not shielded by the shield ground layer 220, the shield surface assembly surface 252 still has a shield ground layer 220. In another embodiment, the reading unit 140 and the touch panel 130 are non-overlapping (not shown, for example, but not limited to, both are disposed on the touch surface 251). At this time, the touch panel module The assembly surface 252 also has a ground plane. In the following embodiments and drawings, the reading unit 140 and the touch panel 130 are disposed in an overlapping manner, and the direction in which the antenna radiation direction is directed toward the touch surface 251 (as shown in FIG. 2b) is taken as an example.

回到第1圖,當用戶端180需讀取無線通訊卡210a/210b時,透過通訊介面120,傳送一啟動讀卡指令給觸控板控制單元110及通訊控制單元150,以啟動相關控制功能及讀卡功能。其中,通訊介面120可以利用有線或無線方式,在認證裝置100及一用戶端180之間互相傳遞資料、訊息或命令。通訊介面120支援的有線界面例如但不限於USB及RS232等界面,而通訊介面120支援的無線界面例如但不限於藍芽(bluetooth)及無線高保真(Wi-Fi)等界面。另外,用戶端180包含但不限於電腦主機、個人電腦(PC)、筆記型電腦(NB)、 平板電腦(Tablet)、手持行動裝置及NFC讀卡機。 Returning to FIG. 1 , when the user terminal 180 needs to read the wireless communication card 210a/210b, a startup card reading command is transmitted to the touch panel control unit 110 and the communication control unit 150 through the communication interface 120 to activate the related control function. And card reading function. The communication interface 120 can transfer data, messages or commands between the authentication device 100 and a client 180 by using a wired or wireless method. The wired interface supported by the communication interface 120 is, for example, but not limited to, an interface such as USB and RS232, and the wireless interface supported by the communication interface 120 is, for example but not limited to, an interface such as Bluetooth and Wireless High Fidelity (Wi-Fi). In addition, the client 180 includes, but is not limited to, a computer host, a personal computer (PC), a notebook computer (NB), Tablets, handheld mobile devices and NFC readers.

觸控板130,包含多個感測器(sensor),用以感測手寫輸入以產生一感測訊號。當一張加密無線通訊卡210a放置在觸控面251的一無線通訊區域(或稱天線感應區)140a(如2a圖所示)附近且與觸控板模組垂直距離約0~10公分處時,加密無線通訊卡片210a內之加密卡片資料會從讀取單元140傳送到通訊控制單元150,並暫存於一儲存單元170。通訊控制單元150收到加密的卡片資料後,會發出成功讀取卡片訊息給觸控板控制單元110,觸控板控制單元110再透過通訊介面120,傳送一個產生輸入解密資訊(密碼或簽名)界面的訊息給用戶端180,使用戶端180產生一個輸入解密資訊(密碼或簽名)的界面,例如,使用戶端180的螢幕180a產生一個輸入解密資訊(密碼或簽名)的視窗,如第3圖所示,之後,認證裝置100及用戶端180就開始等待使用者依序輸入解密資訊(密碼或圖案)。 The touch panel 130 includes a plurality of sensors for sensing handwriting input to generate a sensing signal. When an encrypted wireless communication card 210a is placed in a wireless communication area (or antenna sensing area) 140a of the touch surface 251 (as shown in FIG. 2a) and is perpendicular to the touch panel module by about 0 to 10 cm. The encrypted card data in the encrypted wireless communication card 210a is transmitted from the reading unit 140 to the communication control unit 150 and temporarily stored in a storage unit 170. After receiving the encrypted card data, the communication control unit 150 sends a successful card reading message to the touch panel control unit 110. The touch panel control unit 110 transmits a generated input decryption information (password or signature) through the communication interface 120. The interface message is sent to the client 180, so that the client 180 generates an interface for inputting decryption information (password or signature), for example, causing the screen 180a of the client 180 to generate a window for inputting decryption information (password or signature), such as the third. As shown in the figure, the authentication device 100 and the client 180 then wait for the user to sequentially input decryption information (password or pattern).

根據本發明,若使用者需輸入一組密碼,可透過觸控板130以下列方式輸入:可利用單隻手指在觸控板130(與無線通訊區域140a重疊)內進行手寫數字、符號、或文字,如第4a圖所示;或者,可利用單隻手指或多指點擊觸控板130上的虛擬鍵盤,如第4b圖所示;或者,可用一隻或多隻手指在觸控板130內執行外滑、旋轉、上滑、下滑、左滑、右滑等手勢或其組合,如第4c~4h圖所示。根據使用者輸入 的密碼,觸控板130產生一感測訊號,觸控板控制單元110將這感測訊號轉換出一組座標資料,之後觸控板控制單元110將這些座標資料傳送至辨識單元160,以分析這些座標資料是手寫數字、或手繪符號、或手寫各國文字、或單指手勢、或多指手勢、或單指點擊虛擬鍵盤、或多指點擊虛擬鍵盤,並將辨識出的對應代碼,傳送給通訊控制單元150,由通訊控制單元150暫存輸入密碼。使用者透過觸控板130輸入的一組密碼可以為一組數字、一組符號、一組文字、一組手勢以及一組虛擬鍵之其一。 According to the present invention, if the user needs to input a set of passwords, the touch panel 130 can be input through the following manner: a single finger can be used to perform handwritten numerals, symbols, or in the touch panel 130 (overlap with the wireless communication area 140a). The text is as shown in FIG. 4a; or, the virtual keyboard on the touchpad 130 can be clicked with a single finger or multiple fingers, as shown in FIG. 4b; or one or more fingers can be used on the touchpad 130. Perform gestures such as external slip, rotation, slide, slide, left slide, and right slide, or a combination thereof, as shown in Figures 4c~4h. According to user input The touch panel 130 generates a sensing signal, and the touch panel control unit 110 converts the sensing signal into a set of coordinate data, and then the touch panel control unit 110 transmits the coordinate data to the identification unit 160 for analysis. These coordinate data are handwritten numbers, or hand-drawn symbols, or handwritten national characters, or single-finger gestures, or multi-finger gestures, or single-click virtual keyboards, or multi-finger clicks on virtual keyboards, and transmit the identified corresponding codes to The communication control unit 150 temporarily stores the input password by the communication control unit 150. The set of passwords input by the user through the touchpad 130 can be one of a set of numbers, a set of symbols, a set of characters, a set of gestures, and a set of virtual keys.

另一方面,若使用者透過觸控板130輸入一組圖案,例如簽名,則觸控板控制單元110直接將相關座標資料傳送給通訊控制單元150,而無須透過該辨識單元160進行辨識。因此,因該辨識單元160並非必要元件,故在第1圖中以虛線繪示。 On the other hand, if the user inputs a set of patterns, such as a signature, through the touch panel 130, the touch panel control unit 110 directly transmits the relevant coordinate data to the communication control unit 150 without being recognized by the identification unit 160. Therefore, since the identification unit 160 is not an essential component, it is shown by a broken line in FIG.

在收到密碼或簽名後,通訊控制單元150發出一個成功輸入密碼/簽名訊息給觸控板控制單元110,觸控板控制單元110再透過通訊介面120,傳送一個成功輸入解密資訊訊息給用戶端180,使螢幕180a的視窗中對應顯示出一個符號(例如但不限於”*”)。請注意,此訊息並非密碼資料,而是一個固定資料。每當使用者成功輸入一個密碼/簽名,螢幕180a的視窗中就會對應顯示出一個符號(例如但不限於”*”),而不會顯示使用者輸入的真實密碼,以防密碼外洩 或被木馬程式側錄。如第3圖的例子中,使用者已成功輸入二個密碼/簽名。另外,請注意,密碼輸入過程中,因無法透過用戶端180顯示候選字,因此一組密碼僅能選擇一種辨識模式,例如但不限於數字辨識模式、符號辨識模式、文字辨識模式、虛擬鍵盤辨識模式、手勢辨識模式等,以提升辨識的成功率。 After receiving the password or signature, the communication control unit 150 sends a successful password/signature message to the touch panel control unit 110, and the touch panel control unit 110 transmits a successful input decryption information message to the client through the communication interface 120. 180, causing a symbol (such as but not limited to "*") to be displayed in the window of the screen 180a. Please note that this message is not a password, but a fixed profile. Whenever the user successfully enters a password/signature, a symbol (such as but not limited to "*") is displayed in the window of the screen 180a, and the real password input by the user is not displayed, so as to prevent the password from being leaked. Or be recorded by a Trojan horse. As in the example of Figure 3, the user has successfully entered two passwords/signatures. In addition, please note that during the password input process, because the candidate word cannot be displayed through the user terminal 180, only one identification mode can be selected for a group of passwords, such as but not limited to the digital identification mode, the symbol recognition mode, the character recognition mode, and the virtual keyboard identification. Mode, gesture recognition mode, etc., to improve the success rate of recognition.

一實施例中,通訊控制單元150收到卡片210a內加密卡片資料後,根據前述解密轉換法,根據n值,取出通訊控制單元150之韌體預存的多份轉換密碼表之該特定轉換密碼表n,對該加密卡片資料解密以還原為一加密資訊及一帳戶資訊,接著等待使用者輸入一解密資訊,並比對二筆加/解密資訊是否相符,若二筆加/解密資訊相符才會將帳戶資訊透過通訊介面120及用戶端180傳送給伺服單元190;若二筆加/解密資訊不符,就封鎖帳戶資訊。 In an embodiment, after receiving the encrypted card data in the card 210a, the communication control unit 150 extracts the specific converted password table of the plurality of converted password tables pre-stored by the firmware of the communication control unit 150 according to the value of n according to the decryption conversion method. n, decrypt the encrypted card data to restore an encrypted information and an account information, and then wait for the user to input a decryption information, and compare the two encryption/decryption information, if the two encryption/decryption information match The account information is transmitted to the server unit 190 through the communication interface 120 and the client terminal 180; if the two-digit encryption/decryption information does not match, the account information is blocked.

另一實施例中,通訊控制單元150收到卡片210a內加密卡片資料後,便等待使用者輸入一解密資訊。當收到使用者輸入的解密資訊後,根據前述解密金鑰法,通訊控制單元150根據一解密演算法對該加密卡片資料解密以還原帳戶資訊,並對被還原的帳戶資訊進行資料驗證或檢查,例如但不限於CRC驗證,以得到一驗證結果值,最後,根據該驗證結果值是否等於一預設值來判斷該使用者輸入的解密資訊是否正確。若使用者輸入的解密資訊正確才會將帳戶資訊 透過通訊介面120及用戶端180傳送給伺服單元190;若不正確,就封鎖帳戶資訊。 In another embodiment, after receiving the encrypted card data in the card 210a, the communication control unit 150 waits for the user to input a decryption message. After receiving the decryption information input by the user, according to the decryption key method, the communication control unit 150 decrypts the encrypted card data according to a decryption algorithm to restore account information, and performs data verification or check on the restored account information. For example, but not limited to, CRC verification to obtain a verification result value. Finally, it is determined whether the decryption information input by the user is correct according to whether the verification result value is equal to a preset value. If the user enters the decryption information correctly, the account information will be The communication unit 120 is transmitted to the servo unit 190 through the communication interface 120 and the user terminal 180; if not, the account information is blocked.

為簡化敘述,以下第5a~5d圖、第6圖、第7圖及第8a~8b圖係以加/解密轉換法為例進行說明,然而,這僅只為本發明之一實施例,而非本發明的限制,實際應用時,亦適用其他的加/解密方式。 In order to simplify the description, the following 5th to 5d, 6th, 7th, and 8th to 8th are illustrated by the encryption/decryption conversion method. However, this is only an embodiment of the present invention, and The limitation of the present invention, in actual application, is also applicable to other encryption/decryption methods.

第5a~5d圖本發明無線通訊卡、認證裝置及伺服單元之間的不同資料流示意圖。第6圖為本發明第一實施例之短距離無線通訊認證方法的流程圖。以下,請參考第1、3、4a~4h、5a及6圖,說明本實施例的所有步驟。 5a~5d are schematic diagrams showing different data flows between the wireless communication card, the authentication device and the servo unit of the present invention. Figure 6 is a flow chart showing a short-range wireless communication authentication method according to the first embodiment of the present invention. Hereinafter, please refer to the figures 1, 3, 4a to 4h, 5a and 6 to explain all the steps of the embodiment.

步驟S602:讀取位於無線通訊區140a內之加密無線通訊卡210a。若完成讀取,跳到步驟S604;否則,重覆本步驟。本實施例中,係利用讀取單元140讀取加密無線通訊卡210a內的加密卡片資料。 Step S602: Reading the encrypted wireless communication card 210a located in the wireless communication area 140a. If the reading is completed, the process goes to step S604; otherwise, the step is repeated. In this embodiment, the encrypted card data in the encrypted wireless communication card 210a is read by the reading unit 140.

步驟S604:將加密無線通訊卡210a之加密卡片資料解密並暫存於認證裝置100中。本實施例中,通訊控制單元150將該加密卡片資料解密為一加密資訊及一帳戶資訊後,暫存於儲存單元170。 Step S604: The encrypted card data of the encrypted wireless communication card 210a is decrypted and temporarily stored in the authentication apparatus 100. In this embodiment, the communication control unit 150 decrypts the encrypted card data into an encrypted information and an account information, and temporarily stores it in the storage unit 170.

步驟S606:產生一個輸入解密資訊的視窗。當通訊控制單元150收到加密卡片資料後,會發出成功讀取卡片訊息給觸控板控制單元110,觸控板控制單元110再透過通訊介面120,傳送一個產生輸入解密資訊界面給用戶端180, 使用戶端180的螢幕180a產生一個輸入解密資訊(簽名/密碼)的視窗,如第3圖所示。 Step S606: Generate a window for inputting decryption information. After receiving the encrypted card data, the communication control unit 150 sends a successful card reading message to the touch panel control unit 110. The touch panel control unit 110 transmits an input decryption information interface to the user terminal 180 through the communication interface 120. , The screen 180a of the client 180 is caused to generate a window for inputting decryption information (signature/password) as shown in FIG.

步驟S608:透過觸控板130輸入一解密資訊(密碼/圖案)。若使用者係透過觸控板130輸入一組密碼,該組密碼可以是為一組數字、一組符號、一組文字、一組手勢以及一組虛擬鍵之其一。 Step S608: Input a decryption information (password/pattern) through the touch panel 130. If the user enters a set of passwords through the touchpad 130, the set of passwords can be one of a set of numbers, a set of symbols, a set of text, a set of gestures, and a set of virtual keys.

步驟S610:判斷解密資訊是否輸入完畢。若是,跳到步驟S612;若否,回到步驟S608。 Step S610: Determine whether the decryption information is input. If yes, go to step S612; if no, go back to step S608.

步驟S612:判斷加密無線通訊卡210a是否仍位在無線通訊區140a內。若是,跳到步驟S614;否則,重新回到步驟S602。 Step S612: It is determined whether the encrypted wireless communication card 210a is still in the wireless communication area 140a. If yes, go to step S614; otherwise, go back to step S602.

步驟S614:判斷二筆加/解密資訊是否相符。若相符,跳到步驟S616;否則,跳到步驟S618。 Step S614: It is judged whether the two-character encryption/decryption information matches. If yes, go to step S616; otherwise, go to step S618.

步驟S616:將帳戶資訊傳送給用戶端180,再透過網際網路傳給伺服單元190,即完成本發明認證方法。 Step S616: The account information is transmitted to the client 180, and then transmitted to the server unit 190 through the Internet, thereby completing the authentication method of the present invention.

步驟S618:封鎖帳戶資訊,不允許外傳至用戶端180,並結束執行本發明認證方法。 Step S618: Blocking the account information, excluding the external transmission to the client 180, and ending the execution of the authentication method of the present invention.

第7圖為本發明第二實施例之短距離無線通訊認證方法的流程圖。請注意,在第二實施例中,步驟S602、S606~S612與第一實施例的步驟相同,因此不于贅述,以下,請同時參考第5b圖的資料流及第7圖,僅說明步驟S603、S630~S636。另外,請注意,第二實施例的應用不限於認證 裝置100,亦可適用於分開或獨立的觸控板及讀卡機。 FIG. 7 is a flowchart of a short-range wireless communication authentication method according to a second embodiment of the present invention. Please note that in the second embodiment, the steps S602 and S606 to S612 are the same as the steps of the first embodiment, and therefore, the description will be omitted. In the following, please refer to the data flow of FIG. 5b and FIG. 7 simultaneously, and only step S603 will be described. , S630~S636. In addition, please note that the application of the second embodiment is not limited to authentication. The device 100 can also be applied to separate or independent touchpads and card readers.

步驟S603:將加密無線通訊卡210a之加密卡片資料暫存於認證裝置100中。本實施例中,通訊控制單元150將該加密卡片資料暫存於儲存單元170。 Step S603: The encrypted card data of the encrypted wireless communication card 210a is temporarily stored in the authentication apparatus 100. In this embodiment, the communication control unit 150 temporarily stores the encrypted card data in the storage unit 170.

步驟S630:將該輸入解密資訊及該加密卡片資料傳送至伺服單元190。一實施例中,該輸入解密資訊及該加密卡片資料係由認證裝置100傳送至該伺服單元190之一儲存單元(圖未示),然後該伺服單元190再將該加密卡片資料解密為一加密資訊及一帳戶資訊。 Step S630: The input decryption information and the encrypted card data are transmitted to the servo unit 190. In one embodiment, the input decryption information and the encrypted card data are transmitted by the authentication device 100 to a storage unit (not shown) of the servo unit 190, and then the server unit 190 decrypts the encrypted card data into an encryption. Information and one account information.

步驟S632:伺服單元190比對該輸入解密資訊及該加密資訊是否相符。若相符,跳到步驟S634;否則,跳到步驟S636。。 Step S632: The servo unit 190 matches whether the input decryption information and the encrypted information match. If yes, go to step S634; otherwise, go to step S636. .

步驟S634:伺服單元190讀取該帳戶資訊,以進行後續處理。 Step S634: The server unit 190 reads the account information for subsequent processing.

步驟S636:伺服單元190封鎖該帳戶資訊,不允許後續處理。 Step S636: The server unit 190 blocks the account information and does not allow subsequent processing.

第8a圖為本發明第三實施例之短距離無線通訊認證方法的流程圖。以下,請參考第1、3、5c及8a圖,說明本實施例的所有步驟。 FIG. 8a is a flowchart of a short-range wireless communication authentication method according to a third embodiment of the present invention. Hereinafter, please refer to the figures 1, 3, 5c and 8a to explain all the steps of the embodiment.

步驟S802:讀取位於無線通訊區140a內之未加密無線通訊卡210b。若完成讀取,跳到步驟S804;若否,重覆本步驟。本實施例中,係利用讀取單元140讀取未加密無 線通訊卡210b內的帳戶資訊。 Step S802: Reading the unencrypted wireless communication card 210b located in the wireless communication area 140a. If the reading is completed, the process goes to step S804; if not, the step is repeated. In this embodiment, the reading unit 140 reads the unencrypted no. Account information in the line communication card 210b.

步驟S804:將未加密無線通訊卡210b之帳戶資訊暫存於認證裝置100中。本實施例中,通訊控制單元150將該帳戶資訊暫存於儲存單元170。 Step S804: The account information of the unencrypted wireless communication card 210b is temporarily stored in the authentication apparatus 100. In this embodiment, the communication control unit 150 temporarily stores the account information in the storage unit 170.

步驟S806:產生一個輸入解密資訊的視窗。當通訊控制單元150收到帳戶資訊後,會發出成功讀取卡片訊息給觸控板控制單元110,觸控板控制單元110再透過通訊介面120,傳送一個產生輸入解密資訊視窗給用戶端180,使用戶端180的螢幕180a產生一個輸入簽名或密碼的視窗,如第3圖所示。 Step S806: Generate a window for inputting decryption information. After receiving the account information, the communication control unit 150 sends a successful card reading message to the touch panel control unit 110. The touch panel control unit 110 transmits a window for generating the input decryption information to the client 180 through the communication interface 120. The screen 180a of the client 180 is caused to generate a window for entering a signature or password, as shown in FIG.

步驟S808:透過觸控板輸入一解密資訊。確切而言,若使用者係透過觸控板130輸入一組圖案(如簽名),觸控板控制單元110直接將相關座標資料直接傳送給通訊控制單元150,而不需經過該辨識單元160;若使用者係透過觸控板130輸入一組密碼,觸控板控制單元110先將相關座標資料傳送給該辨識單元160,供該辨識單元160進行辨識,該辨識單元160再將辨識出的對應代碼,傳送給通訊控制單元150。 Step S808: input a decryption information through the touchpad. Specifically, if the user inputs a set of patterns (such as a signature) through the touch panel 130, the touch panel control unit 110 directly transmits the related coordinate data directly to the communication control unit 150 without passing through the identification unit 160. If the user inputs a set of passwords through the touch panel 130, the touch panel control unit 110 first transmits the relevant coordinate data to the identification unit 160 for identification by the identification unit 160, and the identification unit 160 will recognize the identification. The corresponding code is transmitted to the communication control unit 150.

步驟S810:判斷解密資訊是否輸入完畢。若是,跳到步驟S812;若否,回到步驟S808。 Step S810: Determine whether the decryption information is input. If yes, go to step S812; if no, go back to step S808.

步驟S812:判斷未加密無線通訊卡210b是否仍放在無線通訊區140a內。若是,跳到步驟S814;若否,重新回到步驟S802。 Step S812: It is judged whether the unencrypted wireless communication card 210b is still placed in the wireless communication area 140a. If yes, go to step S814; if no, go back to step S802.

步驟S814:將該輸入解密資訊及該帳戶資訊之一識別碼傳送至該伺服單元190。其中,該識別碼例如但不限於卡片識別碼或持卡人身份識別碼。一實施例中,該輸入解密資訊及該識別碼係由認證裝置100傳送至該伺服單元190之一儲存單元(圖未示)。 Step S814: The input decryption information and the account information identification code are transmitted to the servo unit 190. The identification code is, for example but not limited to, a card identification code or a cardholder identification code. In one embodiment, the input decryption information and the identification code are transmitted by the authentication device 100 to a storage unit (not shown) of the servo unit 190.

步驟S816:伺服單元190係根據該識別碼,搜尋本身資料庫以得到一加密資訊,再比對該輸入解密資訊及該加密資訊,以產生一比較結果訊息。 Step S816: The servo unit 190 searches the database according to the identification code to obtain an encrypted information, and decrypts the information and the encrypted information according to the input to generate a comparison result message.

步驟S818:將該比較結果訊息由伺服單元190回傳給認證裝置100。一實施例中,該比較結果訊息由伺服單元190回傳給認證裝置100之通訊控制單元150。 Step S818: The comparison result message is transmitted back to the authentication apparatus 100 by the servo unit 190. In one embodiment, the comparison result message is transmitted back to the communication control unit 150 of the authentication device 100 by the servo unit 190.

步驟S820:該比較結果訊息表示二筆加/解密資訊是否相符。若相符,跳到步驟S822;否則,跳到步驟S824。 Step S820: The comparison result message indicates whether the two-character encryption/decryption information matches. If yes, go to step S822; otherwise, go to step S824.

步驟S822:將帳戶資訊由認證裝置100傳送給用戶端180,再透過網際網路傳給伺服單元190,並完成本發明認證方法。一實施例中,該帳戶資訊由通訊控制單元150傳送給伺服單元190。 Step S822: The account information is transmitted from the authentication device 100 to the client 180, and then transmitted to the server unit 190 through the Internet, and the authentication method of the present invention is completed. In one embodiment, the account information is transmitted by the communication control unit 150 to the servo unit 190.

步驟S824:認證裝置100封鎖該帳戶資訊,不允許外傳至用戶端180,並結束執行本發明認證方法。 Step S824: The authentication apparatus 100 blocks the account information, does not allow the external transmission to the client 180, and ends the execution of the authentication method of the present invention.

第8a~8b圖為本發明第四實施例之短距離無線通訊認證方法的流程圖。本發明第四實施例之短距離無線通訊認證方法的流程圖包含步驟S802~S812及S830~S838。請注 意,在第四實施例中,步驟S802~S812與第三實施例的步驟相同,因此不于贅述,以下,請同時參考第5d圖的資料流及第8a~8b圖,僅說明步驟S S830~S838。 8a-8b are flowcharts of a short-range wireless communication authentication method according to a fourth embodiment of the present invention. A flowchart of the short-range wireless communication authentication method according to the fourth embodiment of the present invention includes steps S802 to S812 and S830 to S838. Please note In the fourth embodiment, the steps S802 to S812 are the same as the steps of the third embodiment, and therefore, the details are not described above. In the following, please refer to the data stream of FIG. 5d and the 8th to 8bth diagrams, and only step S S830 will be described. ~S838.

步驟S830:將該帳戶資訊及該輸入解密資訊加密成為一加密卡片資料。一實施例中,利用通訊控制單元150根據一特定轉換密碼表n,將該帳戶資訊及該輸入解密資訊轉換加密成一加密卡片資料,其中,n值存放在該加密卡片資料的特定位置。 Step S830: encrypt the account information and the input decryption information into an encrypted card data. In one embodiment, the account control unit 150 converts the account information and the input decryption information into an encrypted card data according to a specific conversion password table n, wherein the value of n is stored in a specific location of the encrypted card data.

步驟S832:將該加密卡片資料由認證裝置100傳送至一伺服單元190。一實施例中,該加密卡片資料係由認證裝置100傳送至該伺服單元190之一儲存單元(圖未示)。 Step S832: The encrypted card data is transmitted from the authentication device 100 to a servo unit 190. In one embodiment, the encrypted card data is transmitted by the authentication device 100 to a storage unit (not shown) of the servo unit 190.

步驟S834:以伺服單元190判斷該輸入解密資訊及該加密資訊是否相符。一實施例中,伺服單元190根據該加密卡片資料的特定位置取出的n值,從多份轉換密碼表中擷取出第n份轉換密碼表,來對上述加密卡片資料進行解密,以還原該輸入解密資訊及該帳戶資訊後,再根據該帳戶資訊之識別碼,搜尋本身資料庫以得到一加密資訊,再比對該輸入解密資訊及該加密資訊。若該輸入解密資訊及該加密資訊相符,跳到步驟S836;否則,跳到步驟S838。 Step S834: The servo unit 190 determines whether the input decryption information and the encrypted information match. In one embodiment, the servo unit 190 extracts the nth conversion password table from the plurality of conversion password tables according to the n value extracted from the specific location of the encrypted card data, to decrypt the encrypted card data to restore the input. After decrypting the information and the account information, it searches the database according to the identification code of the account information to obtain an encrypted information, and decrypts the information and the encrypted information. If the input decryption information and the encrypted information match, the process goes to step S836; otherwise, the process goes to step S838.

步驟S836:以伺服單元190讀取該帳戶資訊,以進行後續處理。 Step S836: The account information is read by the servo unit 190 for subsequent processing.

步驟S838:以伺服單元190封鎖該帳戶資訊,不 允許後續處理。 Step S838: Blocking the account information by the server unit 190, Allow subsequent processing.

請注意,根據不同應用或需求,第1圖中的觸控板控制單元110、通訊控制單元150及辨識單元160之至少其二可設在同一顆積體電路IC、或三者分別設於不同IC。 Please note that at least two of the touch panel control unit 110, the communication control unit 150, and the identification unit 160 in FIG. 1 may be disposed in the same integrated circuit IC, or the three are respectively set to be different according to different applications or requirements. IC.

上述僅為本發明之較佳實施例而已,而並非用以限定本發明的申請專利範圍;凡其他未脫離本發明所揭示之精神下所完成的等效改變或修飾,均應包含在下述申請專利範圍內。 The above is only the preferred embodiment of the present invention, and is not intended to limit the scope of the present invention; all other equivalent changes or modifications which are not departing from the spirit of the present invention should be included in the following application. Within the scope of the patent.

100‧‧‧短距離無線通訊認證裝置 100‧‧‧Short-range wireless communication authentication device

110‧‧‧觸控板控制單元 110‧‧‧Touchpad Control Unit

120‧‧‧通訊介面 120‧‧‧Communication interface

130‧‧‧觸控板 130‧‧‧Touchpad

140‧‧‧讀取單元 140‧‧‧Reading unit

150‧‧‧通訊控制單元 150‧‧‧Communication Control Unit

160‧‧‧辨識單元 160‧‧‧ Identification unit

170‧‧‧儲存單元 170‧‧‧ storage unit

180‧‧‧用戶端 180‧‧‧User

190‧‧‧伺服單元 190‧‧‧Servo unit

Claims (19)

一種短距離無線通訊認證方法,其包含以下步驟:藉由一讀取單元讀取一無線通訊卡,以得到一卡片資料,其中該卡片資料包含一帳戶資訊;暫存該卡片資料;在獲得該帳戶資訊並暫存該帳戶資訊之後,經由一觸控板輸入一解密資訊,並比較該解密資訊及一加密資訊,其中該觸控板及該讀取單元係位於一認證裝置中;以及當該解密資訊及該加密資訊相符時,將該帳戶資訊傳送至一伺服單元。 A short-range wireless communication authentication method includes the following steps: reading a wireless communication card by a reading unit to obtain a card data, wherein the card data includes an account information; temporarily storing the card data; After the account information is temporarily stored, the decryption information is input through a touchpad, and the decryption information and an encrypted information are compared, wherein the touchpad and the reading unit are located in an authentication device; When the decrypted information and the encrypted information match, the account information is transmitted to a server unit. 如申請專利範圍第1項所記載之方法,其中該加密資訊係被包含在該卡片資料中,且該卡片資料暫存於一儲存單元中。 The method of claim 1, wherein the encrypted information is included in the card data, and the card data is temporarily stored in a storage unit. 如申請專利範圍第2項所記載之方法,其中係經由一通訊控制單元進行比較該解密資訊及該加密資訊的步驟。 The method of claim 2, wherein the step of comparing the decrypted information and the encrypted information is performed via a communication control unit. 如申請專利範圍第1項所記載之方法,其中該加密資訊儲存於該伺服單元中,而該卡片資料暫存於一儲存單元中。 The method of claim 1, wherein the encrypted information is stored in the server unit, and the card data is temporarily stored in a storage unit. 如申請專利範圍第4項所記載之方法,其中係經由該伺服單元進行比較該解密資訊及該加密資訊的步驟。 The method of claim 4, wherein the step of comparing the decrypted information and the encrypted information is performed via the servo unit. 如申請專利範圍第1項所記載之方法,其中在讀取該無線通訊卡步驟後,更包含:傳送一第一訊息至一用戶端,使該用戶端顯示一個輸入 介面。 The method of claim 1, wherein after the step of reading the wireless communication card, the method further comprises: transmitting a first message to a client, so that the client displays an input. interface. 如申請專利範圍第6項所記載之方法,其中在經由該觸控板輸入該解密資訊的步驟中,更包含:該觸控板將一第二訊息傳送至該用戶端,使該用戶端之輸入介面顯示一對應符號。 The method of claim 6, wherein the step of inputting the decrypted information via the touchpad further comprises: the touchpad transmitting a second message to the user terminal, so that the user terminal The input interface displays a corresponding symbol. 如申請專利範圍第7項所記載之方法,其中當經由該觸控板輸入該解密資訊時進一步包含:當讀取物件在該觸控板上時,該觸控板產生一感測訊號;將該感測訊號轉換成相關座標資料;以及一辨識單元根據該相關座標資料進行手寫辨識,以對應地產生該解密資訊。 The method of claim 7, wherein when the decryption information is input through the touchpad, the touchpad further generates: when the object is read on the touchpad, the touchpad generates a sensing signal; The sensing signal is converted into related coordinate data; and an identification unit performs handwriting recognition according to the related coordinate data to correspondingly generate the decrypted information. 如申請專利範圍第1項所記載之方法,其中該解密資訊為一組數字、一組符號、一組文字、一組手勢、一組圖案以及一組虛擬鍵之其一。 The method of claim 1, wherein the decrypted information is one of a set of numbers, a set of symbols, a set of characters, a set of gestures, a set of patterns, and a set of virtual keys. 一種短距離無線通訊認證方法,其包含以下步驟:藉由一讀取單元讀取一無線通訊卡,以得到一卡片資料,其中該卡片資料包含一加密資訊及一帳戶資訊;將該卡片資料傳送至一伺服單元中;暫存該卡片資料於該伺服單元中;在獲得該帳戶資料並暫存該帳戶資料之後,經由一觸控板輸入一解密資訊,並將該解密資訊傳送至該伺服單元; 該伺服單元比較該解密資訊及一加密資訊;以及當該解密資訊及該加密資訊相符時,允許該伺服單元讀取該帳戶資訊。 A short-range wireless communication authentication method includes the following steps: reading a wireless communication card by a reading unit to obtain a card data, wherein the card data includes an encrypted information and an account information; and the card data is transmitted Up to the servlet unit; temporarily storing the card data in the SERVOPACK; after obtaining the account data and temporarily storing the account data, inputting a decryption information via a touchpad, and transmitting the decrypted information to the SERVOPACK ; The servo unit compares the decrypted information with an encrypted information; and when the decrypted information and the encrypted information match, the servo unit is allowed to read the account information. 如申請專利範圍第10項所記載之方法,其中該解密資訊為一組數字、一組符號、一組文字、一組手勢、一組圖案以及一組虛擬鍵之其一。 The method of claim 10, wherein the decrypted information is one of a set of numbers, a set of symbols, a set of characters, a set of gestures, a set of patterns, and a set of virtual keys. 一種短距離無線通訊認證裝置,包含:一觸控板,供一使用者輸入並對應產生一解密資訊;一觸控板控制單元,耦接該觸控板;一讀取單元,設置於該觸控板之一表面,用以讀取一無線通訊卡,以得到一卡片資料,其中該卡片資料包含一帳戶資訊;以及一通訊控制單元,耦接該讀取單元及該觸控板控制單元;其中,在該讀取單元讀取該無線通訊卡以獲得該帳戶資訊並暫存該帳戶資訊之後,比較該無線通訊卡之一加密資訊與該使用者經由該觸控板輸入之該解密資訊,若該解密資訊及該加密資訊相符時,則允許傳送該無線通訊卡之該帳戶資訊。 A short-range wireless communication authentication device includes: a touch panel for inputting a user and correspondingly generating a decryption information; a touch panel control unit coupled to the touch panel; and a reading unit disposed at the touch a surface of the control panel for reading a wireless communication card to obtain a card data, wherein the card data includes an account information; and a communication control unit coupled to the reading unit and the touch panel control unit; After the reading unit reads the wireless communication card to obtain the account information and temporarily stores the account information, comparing the encrypted information of the wireless communication card with the decrypted information input by the user via the touch panel, If the decrypted information and the encrypted information match, the account information of the wireless communication card is allowed to be transmitted. 如申請專利範圍第12項所記載之裝置,其中該通訊控制單元比較該解密資訊及該加密資訊。 The device of claim 12, wherein the communication control unit compares the decrypted information with the encrypted information. 如申請專利範圍第12項所記載之裝置,更包含: 一通訊介面,耦接該通訊控制單元、該觸控板控制單元以及一用戶端。 For example, the device described in claim 12 of the patent scope further includes: A communication interface is coupled to the communication control unit, the touch panel control unit, and a user terminal. 如申請專利範圍第14項所記載之裝置,其中當該使用者經由該觸控板輸入該解密資訊時,該觸控板控制單元傳送一訊息至該用戶端,使該用戶端之輸入介面顯示一對應符號。 The device of claim 14, wherein when the user inputs the decryption information via the touchpad, the touchpad control unit transmits a message to the user terminal, so that the input interface of the user terminal is displayed. A corresponding symbol. 如申請專利範圍第12項所記載之裝置,更包含:一辨識單元,耦接在該觸控板控制單元及該通訊控制單元之間,用以根據該相關座標資料進行手寫辨識,以對應地產生該解密資訊。 The device of claim 12, further comprising: an identification unit coupled between the touch panel control unit and the communication control unit for performing handwriting recognition according to the related coordinate data, to correspondingly Generate the decrypted information. 如申請專利範圍第12項所記載之裝置,其中該解密資訊是一組數字、一組符號、一組文字、一組手勢、一組圖案以及一組虛擬鍵之其一。 The device of claim 12, wherein the decrypted information is one of a set of numbers, a set of symbols, a set of characters, a set of gestures, a set of patterns, and a set of virtual keys. 如申請專利範圍第12項所記載之裝置,其中該讀取單元為一天線模組。 The device of claim 12, wherein the reading unit is an antenna module. 如申請專利範圍第18項所記載之裝置,其中該觸控板之相對二側面分別為一觸控面及一組裝面,該讀取單元直接貼設於該觸控板之組裝面。 The device of claim 18, wherein the opposite sides of the touch panel are respectively a touch surface and an assembly surface, and the reading unit is directly attached to the assembly surface of the touch panel.
TW102115114A 2013-04-26 2013-04-26 Authentication device of short-range wireless communication and method thereof TWI527393B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TW102115114A TWI527393B (en) 2013-04-26 2013-04-26 Authentication device of short-range wireless communication and method thereof
CN201310216831.8A CN104125065A (en) 2013-04-26 2013-06-03 Short-distance wireless communication authentication device and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW102115114A TWI527393B (en) 2013-04-26 2013-04-26 Authentication device of short-range wireless communication and method thereof

Publications (2)

Publication Number Publication Date
TW201442450A TW201442450A (en) 2014-11-01
TWI527393B true TWI527393B (en) 2016-03-21

Family

ID=51770338

Family Applications (1)

Application Number Title Priority Date Filing Date
TW102115114A TWI527393B (en) 2013-04-26 2013-04-26 Authentication device of short-range wireless communication and method thereof

Country Status (2)

Country Link
CN (1) CN104125065A (en)
TW (1) TWI527393B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
SE539942C2 (en) * 2015-03-25 2018-02-06 Crunchfish Ab Asset authentication in a dynamic, proximity-based network of communication devices

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1403942A (en) * 2001-09-03 2003-03-19 王柏东 Biological specificity confirming equipment based on network
CN101373507A (en) * 2007-08-24 2009-02-25 英业达股份有限公司 Data management method and data management system using the same
CN101667060A (en) * 2008-09-04 2010-03-10 黄轶 Input equipment and input method
KR20120076676A (en) * 2010-12-13 2012-07-09 삼성전자주식회사 Device and method for certificating security in wireless terminal
CN102143482B (en) * 2011-04-13 2013-11-13 中国工商银行股份有限公司 Method and system for authenticating mobile banking client information, and mobile terminal

Also Published As

Publication number Publication date
TW201442450A (en) 2014-11-01
CN104125065A (en) 2014-10-29

Similar Documents

Publication Publication Date Title
US10409976B2 (en) System and method for PIN entry on mobile devices
US10592653B2 (en) Encoding methods and systems
US11171968B1 (en) Method and system for user credential security
US9940503B2 (en) Authentication device including template validation and related methods
EP2713328B1 (en) Validating a transaction with a secure input without requiring pin code entry
TW201627914A (en) Electronic apparatus having fingerprint sensor operating in vector mode
US20150006405A1 (en) System and methods for secure entry of a personal identification number (pin) using multi-touch trackpad technologies
JP5685737B1 (en) Information processing apparatus, information processing method, information processing program, and recording medium
US8896559B2 (en) Wire-array pressure and movement sensor
TWI527393B (en) Authentication device of short-range wireless communication and method thereof
TW202324969A (en) Method and system for authenticating a user using biometrics and digitized handwritten signature
TWI831082B (en) Biosignature verification system and biosignature verification method
CN103619015A (en) Method, device and system for using mobile terminal to carry out information verification
JP2022184078A (en) Information input device and information processing system
JP5620599B1 (en) Information processing apparatus, information processing method, information processing program, and recording medium
KR20200132053A (en) Method and Apparatus for Fingerprint Recognition for Security Unlocking
KR20160058403A (en) Electronic signature device and including system and method of electronic signature
WO2013074096A1 (en) Authentication device including template validation and related methods

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees