WO2015154482A1 - One-time certificate anti-counterfeiting tracing system based on mobile terminal and rfid - Google Patents

One-time certificate anti-counterfeiting tracing system based on mobile terminal and rfid Download PDF

Info

Publication number
WO2015154482A1
WO2015154482A1 PCT/CN2014/092112 CN2014092112W WO2015154482A1 WO 2015154482 A1 WO2015154482 A1 WO 2015154482A1 CN 2014092112 W CN2014092112 W CN 2014092112W WO 2015154482 A1 WO2015154482 A1 WO 2015154482A1
Authority
WO
WIPO (PCT)
Prior art keywords
message
system server
mobile terminal
commodity
rfid
Prior art date
Application number
PCT/CN2014/092112
Other languages
French (fr)
Chinese (zh)
Inventor
江峰
Original Assignee
江峰
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 江峰 filed Critical 江峰
Publication of WO2015154482A1 publication Critical patent/WO2015154482A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce

Definitions

  • the invention relates to the field of commodity anti-counterfeiting technology.
  • the technical level of counterfeiting is correspondingly improved.
  • the counterfeiters illegally obtain the encrypted authentication data in the electronic tag and illegally copy it through various means such as decryption of the electronic tag, thereby counterfeiting the electronic tag to achieve the purpose of fraud. Therefore, the existing Internet anti-counterfeiting authentication system needs to be improved and improved from the system security.
  • the entire black box system security architecture is built, and the security of the anti-counterfeiting system is ensured from the overall security architecture of the system.
  • the technical solution adopted for achieving the object of the present invention is such a one-time anti-counterfeiting traceability system based on mobile terminal and RFID, comprising a system server, an RFID electronic tag disposed on each commodity, and a read/write RFID electronic device.
  • the function of the tag of the mobile terminal device is such a one-time anti-counterfeiting traceability system based on mobile terminal and RFID, comprising a system server, an RFID electronic tag disposed on each commodity, and a read/write RFID electronic device.
  • the message MB i,j is written in the RFID tag on any item.
  • the message MB i,j is a digital identity certificate for the item.
  • the message CB i, j with the message MB i, j corresponding to, and for the message MB i, j for comparison operation, to verify the authenticity of goods.
  • the message X does not match any one of the elements of the message set S.
  • the message X is not the message MB i,j , and the detected item is false, and the system server
  • the mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
  • the system server is to the mobile terminal Send the information that the product is suspicious and true, and end the authenticity check operation.
  • the system server sends the information that the commodity is true to the mobile terminal, and enters Next step.
  • Update certificate The system server generates a message MB i, j+1 and sends it to the mobile terminal.
  • the message MB i,j+1 is written by the mobile terminal into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original MB i,j .
  • the message MB i,j+1 is a new digital identity certificate representing the commodity, and is used for the next time the user performs authenticity authentication on the commodity.
  • the message CB i,j+1 is used for the next comparison operation with the message MB i,j+1 to verify the authenticity of the commodity.
  • the CB i,j is equal to MB i,j .
  • the CB i,j is an encrypted message of MB i,j .
  • the CB i,j is the hash value after MB i,j has been hashed.
  • the message CB i,j is still stored in the system server.
  • the system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time.
  • the invention also discloses a combined encryption verification method of one-on-one certificate, that is, a one-word anti-counterfeiting traceability system based on a mobile terminal and an RFID, comprising a system server, an RFID electronic tag disposed on each commodity, and having read and write RFID
  • the electronic terminal functions as a mobile terminal device and a random number generator.
  • the system server includes a system server, an RFID electronic tag disposed on each item, a mobile terminal device having a function of reading and writing an RFID electronic tag, and a random number generator.
  • the combined message T1 i,j is written into the RFID tag on any item.
  • the message T2 i, j with the message T1 i, j corresponds to, and a message for T1 i, j for comparison operation, to verify the authenticity of goods.
  • the system server After receiving the message X sent by the reader, the system server first determines whether the format of X is the same as the combined message T1 i,j . If not, the item to be tested is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended.
  • the message X is split into two parts, XA and XB.
  • the format of the XA is the same as that of the CA i
  • the system server randomly generates a new random number MB i, j+1 .
  • the random number MB i,j+1 is used as a new digital signature certificate for the message MA i .
  • the message set S is updated to ⁇ T2 i,1 , T2 i,2 ... T2 i,j , T2 i,j+1 ⁇ .
  • the combined message T2 i, j+1 is used for the next time the user performs authenticity authentication on the item, and performs a comparison operation with the combined message T1 i, j+1 to verify the authenticity of the product.
  • the message T2 i,j is still stored in the system server.
  • the system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.
  • the pre-written combined message T1 i,j in the RFID electronic tag on each item has randomness and uniqueness.
  • the length of the message MA i or MB i,j is 8 to 1024 bits.
  • the merchandise serial number portion MA i includes a merchandise production time and a merchandise serial number.
  • the RFID reader is a mobile phone or mobile terminal with a radio frequency identification function or a short-range wireless communication NFC function.
  • a part of the bytes in MB i,j serves as a key for decrypting CA i .
  • a key for decrypting the CA i is implicitly included according to a certain rule.
  • the present invention can effectively prevent the electronic tag from being decrypted or being copied by the illegal counterfeiter due to the vulnerability of the tag itself.
  • the invention innovatively adopts a one-card dynamic signature authentication system.
  • messages written to an electronic tag are in a one-time certificate. That is, the initial MB i,j is stored in the electronic tag at the factory , and when the user successfully scans the tag to obtain the product information, the server automatically generates a new MB i,j+1 and calculates a new message CB i,j+1 .
  • the new message MB i+1 is rewritten into the electronic tag set on the product by the mobile device such as a mobile phone, and the new message CB i, j+1 is stored in the system server. The next time you scan the same item, the new MB i, j+1 will be read for verification to prevent the label from being cracked and copied.
  • the system employs a fault tolerance mechanism to prevent password replacement failures due to network delays or other causes. And the system will make a complete certification record. Once a certain product certification is illegal, it can accurately locate the illegal starting position and possible geographical area.
  • a one-pass anti-counterfeiting traceability system based on a mobile terminal and an RFID comprising a system server, an RFID electronic tag disposed on each item, and a mobile terminal device having a function of reading and writing an RFID electronic tag.
  • the message MB i,j is written in the RFID tag on any item.
  • the message MB i,j is a digital identity certificate for the item.
  • the message CB i, j with the message MB i, j corresponding to, and for the message MB i, j for comparison operation, to verify the authenticity of goods.
  • a message MB 1,1 is written in an RFID electronic tag, which is the first time the message is written into the RFID tag.
  • the message written in the RFID tag on the commercially available authenticity will be the message set ⁇ MB 1,1 , MB 2,1 ,...,MB n,1 ,...MB 1,2 ,MB 2,2 ,... ..., MB n, 2 , ... MB 1, m , MB 2, m , ... MB n, m ⁇ .
  • the system server stores the message MB i, j corresponding message CB i, j. That is, the system server stores the message set as belonging to or equal to ⁇ CB 1,1 , CB 2,1 , . . . , CB n,1 , . . . CB 1,2 , CB 2,2 , . . . , CB n,2 , ...CB 1,m ,CB 2,m ,...CB n,m ⁇ .
  • the message CB i,j is used for comparison with the message MB i,j to verify the authenticity of the commodity.
  • the relationship between CB i,j and MB i,j is one of the following three cases: a) the CB i,j is equal to MB i,j . b) The CB i,j is an encrypted message of MB i,j . c) The CB i,j is the hash value after MB i,j has been hashed.
  • the RFID electronic tag on the product to be tested After the RFID electronic tag on the product to be tested is scanned by using the mobile terminal device, the RFID electronic tag may also be an electronic tag on the authentic product, or may be an electronic tag on the counterfeit product. Transmitting the message X in the read RFID electronic tag to the system server, and performing a comparison operation with the message stored in the system server to verify that the commodity is authentic (ie, the message X may be a real message) MB i,j may or may not be required by the system server).
  • the message X does not match any one of the elements of the message set S.
  • the message X is not the message MB i,j , and the detected item is false, and the system server
  • the mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
  • Update certificate The system server generates a message MB i, j+1 and sends it to the mobile terminal.
  • the message MB i,j+1 is written by the mobile terminal into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original MB i,j .
  • the message MB i,j+1 is a new digital identity certificate representing the commodity, and is used for the next time the user performs authenticity authentication on the commodity.
  • the message CB i,j+1 is used for the next comparison operation with the message MB i,j+1 to verify the authenticity of the commodity.
  • the message CB i,j is still stored in the system server.
  • the system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time.
  • the message CB 1,1 is the hash value of the message MB 1,1
  • the message CB 2,1 is the hash value of the message MB 2,1
  • ... the message CB 10,1 is the hash of the message MB 10,1 Value, and so on.
  • the RFID electronic tag may also be an electronic tag on one of the above 10 genuine products, or may be an electronic tag on the counterfeit product.
  • the hash value does not belong to the message set S, that is, it is determined that the item to be tested is not one of the above 10 pieces of genuine products.
  • the system server sends the information that the commodity is false to the mobile terminal, and ends the authenticity verification operation.
  • the system server will increment the hash value "message CB 1,2 " of the message MB 1,2 in the message set S.
  • the system server will increment the hash value "message CB 1,3 " of the message MB 1,3 in the message set S.
  • This embodiment is a preferred mode of Embodiment 1, and further includes a random number generator for implementing combined encryption authentication of the commodity.
  • a one-pass anti-counterfeiting traceability system based on a mobile terminal and an RFID comprising a system server, an RFID electronic tag disposed on each item, a mobile terminal device having a function of reading and writing an RFID electronic tag, and a random number generator.
  • the combined message T1 i,j is written into the RFID tag on any item.
  • the message T2 i, j with the message T1 i, j corresponds to, and a message for T1 i, j for comparison operation, to verify the authenticity of goods.
  • a message T1 1,1 is written in an RFID tag, which is the first time a message is written into the RFID tag.
  • the message written in the RFID tag on the commercially available authenticity will be the message set ⁇ T1 1,1 , T1 2,1 ,...,T1 n,1 ,...T1 1,2 , T1 2,2 ,... ..., T1 n, 2 , ... T1 1, m , T1 2, m , ... T1 n, m ⁇ A value.
  • the system server stores a message T2 i,j corresponding to the message T1 i,j . That is, the system server stores the message set as belonging to or equal to ⁇ T2 1,1 , T2 2,1 , . . . , T2 n,1 , . . . T2 1,2 , T2 2,2 , . . . , T2 n, 2 , ... T2 1,m , T2 2,m ,...T2 n,m ⁇ .
  • the message T2 i,j is used for comparison with the message T1 i,j to verify the authenticity of the commodity.
  • the system server After receiving the message X sent by the reader, the system server first determines whether the format of X is the same as the combined message T1 i,j . If not, the item to be tested is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended.
  • the message X is split into two parts, XA and XB.
  • the format of the XA is the same as that of the CA i
  • Decrypting the message XA to obtain a value MXA E -1 (XA)
  • the system server randomly generates a new random number MB i, j+1 .
  • the random number MB i,j+1 is used as a new digital signature certificate for the message MA j .
  • the message set S is updated to ⁇ T2 i,j , T2 i,2 . . . T2 i,j , T2 i,j+1 ⁇ .
  • the combined message T2 i, j+1 is used for the next time the user performs authenticity authentication on the item, and performs a comparison operation with the combined message T1 i, j+1 to verify the authenticity of the product.
  • the message T2 i,j is still stored in the system server.
  • the system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Finance (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Inspection Of Paper Currency And Valuable Securities (AREA)
  • Storage Device Security (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

A one-time certificate anti-counterfeiting tracing system based on a mobile terminal and RFID, characterised in that: the system comprises a system server, RFID electronic tags arranged on each piece of merchandise and a mobile terminal device provided with a function for reading and writing the RFID electronic tags. The system implements merchandise anti-counterfeiting via the following steps: information MBi,j is written in the RFID electronic tag on any item of merchandise; the information MBi,j is a digital identity certificate of the merchandise; the system server stores an information set S={CBi,1, CBi,2 …CBi,j}, the information CBi,j corresponding to the information MBi,j; when any item of merchandise leaves a factory for the first time, MBi,1 is written to the RFID electronic tag arranged on the item of merchandise, and the system server stores the information set S={CBi,1}, i.e. j=1; the authenticity of the merchandise is verified: after the RFID electronic tag on merchandise to be tested is scanned using the mobile terminal device, information X read to the RFID electronic tag is sent to the system server, and a comparison operation with elements in the information set S is performed, so as to verify the authenticity of the merchandise.

Description

一种基于移动终端和RFID的一次一证防伪溯源系统One-time anti-counterfeiting traceability system based on mobile terminal and RFID 技术领域Technical field
本发明涉及商品防伪技术领域。The invention relates to the field of commodity anti-counterfeiting technology.
背景技术Background technique
随着移动通信技术的发展,特别是2.45GHz射频识别技术及手机近距离无线通讯技术(NFC13.56MHz)的发展,手机及移动终端的近距离识别功能日益强大。移动互联网和物联网正向人们的生活领域渗透。基于该技术的防伪识别技术层出不穷。例如,中国专利“一种基于移动终端和RFID电子标签的商品防伪系统”就是物联网通过移动互联方式在产品信息追溯和验证上的成功拓展应用。该技术在很大程度上防止了制假,实践中也得到了成功的应用。基于RFID电子标签和移动互联网的商品信息查询及防伪应用日益广泛,商品电子防伪系统的信息安全和加密系统的进一步完善越来越重要。With the development of mobile communication technology, especially the development of 2.45GHz radio frequency identification technology and mobile phone short-range wireless communication technology (NFC13.56MHz), the close-range recognition function of mobile phones and mobile terminals is increasingly powerful. The mobile Internet and the Internet of Things are infiltrating into the realm of people's lives. Anti-counterfeiting recognition technology based on this technology emerges in an endless stream. For example, the Chinese patent "a product anti-counterfeiting system based on mobile terminals and RFID electronic tags" is a successful application of the Internet of Things to trace and verify product information through mobile interconnection. This technology has largely prevented counterfeiting and has been successfully applied in practice. Based on RFID electronic tags and mobile Internet, commodity information inquiry and anti-counterfeiting applications are increasingly widespread, and the information security and encryption system of commodity electronic anti-counterfeiting systems are becoming more and more important.
目前制假的技术水平也在相应的提高,制假者通过对电子标签的解密等各种手段,非法获取电子标签中的加密认证数据并进行非法复制,从而假冒电子标签达到造假的目的。因此,现有的互联网防伪认证系统从系统安全上需要得到改进和提高。At present, the technical level of counterfeiting is correspondingly improved. The counterfeiters illegally obtain the encrypted authentication data in the electronic tag and illegally copy it through various means such as decryption of the electronic tag, thereby counterfeiting the electronic tag to achieve the purpose of fraud. Therefore, the existing Internet anti-counterfeiting authentication system needs to be improved and improved from the system security.
发明内容Summary of the invention
本发明的目的是提供一种有效防止制假者通过电子标签的安全漏洞或其他防伪系统组件的安全漏洞,规模复制RFID电子标签的系统方案。从而达到以系统的任何参与人员和系统使用的任何器件提供商均为不可靠的原则,搭建整个黑匣子式系统安全架构,从系统的整体安全架构方面,确保防伪系统的安全。It is an object of the present invention to provide a system solution for efficiently replicating RFID electronic tags by preventing counterfeiters from passing through security holes in electronic tags or security holes in other anti-counterfeiting system components. In order to achieve the unreliable principle of any participant and any device provider used by the system, the entire black box system security architecture is built, and the security of the anti-counterfeiting system is ensured from the overall security architecture of the system.
为实现本发明目的而采用的技术方案是这样的,一种基于移动终端和RFID的一次一证防伪溯源系统,包括系统服务器、设置在每一件商品上的RFID电子标签和具有读写RFID电子标签的功能的移动终端设备。The technical solution adopted for achieving the object of the present invention is such a one-time anti-counterfeiting traceability system based on mobile terminal and RFID, comprising a system server, an RFID electronic tag disposed on each commodity, and a read/write RFID electronic device. The function of the tag of the mobile terminal device.
通过以下过程实现商品防伪:Product anti-counterfeiting is achieved through the following process:
1)任意一件商品上的RFID电子标签中,写入了消息MBi,j。所述消息MBi,j是商品的数字身份证书。其中,i为商品的序号,i=1、2、……n,j为RFID电子标签被更新写入消息的次数,j=1、2、……m。系统服务器存储消息集合S={CBi,1、CBi,2……CBi,j}。所述消息CBi,j与消息MBi,j对应,用于和消息MBi,j进行比对运算,以校验商品真伪。任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入MBi,1,系统服务器存储消息集合S={CBi,1},即j=1。1) The message MB i,j is written in the RFID tag on any item. The message MB i,j is a digital identity certificate for the item. Where i is the serial number of the product, i=1, 2, . . . , n, where j is the number of times the RFID electronic tag is updated and written to the message, j=1, 2, . . . m. The system server stores the message set S={CB i,1 , CB i,2 . . . CB i,j }. The message CB i, j with the message MB i, j corresponding to, and for the message MB i, j for comparison operation, to verify the authenticity of goods. When any item is shipped for the first time, the RFID tag placed on the item is written to MB i,1 , and the system server stores the message set S={CB i,1 }, ie j=1.
2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,将读取到的RFID电子标签中的消息X发送给所述系统服务器,与所述消息集合S中的元素进行比对运算,以验证商品真伪。2) verifying the authenticity of the commodity: after scanning the RFID electronic tag on the commodity to be tested by using the mobile terminal device, transmitting the message X in the read RFID electronic tag to the system server, and the message set S The elements in the pair are compared to verify the authenticity of the item.
分以下三种情况:Divided into the following three cases:
A)若通过所述比对运算,所述消息X与消息集合S中任意一个元素均不匹配,所述消息X不是消息MBi,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信 息,并结束真伪校验操作。A) If the comparison operation is performed, the message X does not match any one of the elements of the message set S. The message X is not the message MB i,j , and the detected item is false, and the system server The mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
B)若通过所述比对运算,所述消息X与消息集合S中除子消息CBi,j外的其他元素匹配,所述消息X不是消息MBi,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作。B) if the comparison operation is performed, the message X matches another element of the message set S except the sub-message CB i,j , the message X is not the message MB i,j , the system server is to the mobile terminal Send the information that the product is suspicious and true, and end the authenticity check operation.
C)若通过所述比对运算,所述消息X与消息CBi,j匹配,即所述消息X是消息MBi,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步。C) if the comparison operation is performed, the message X matches the message CB i,j , that is, the message X is the message MB i,j , and the system server sends the information that the commodity is true to the mobile terminal, and enters Next step.
3)更新证书:所述系统服务器生成消息MBi,j+1,并发送到所述移动终端。通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有的MBi,j。所述消息MBi,j+1是新的代表商品的数字身份证书,用于用户下一次对该件商品进行真伪认证时使用。系统服务器存储与消息MBi,j+1对应的消息CBi,j+1,即所述消息集合S更新为{CBi,1、CBi,2……CBi,j、CBi,j+1}。所述消息CBi,j+1用于下一次和消息MBi,j+1进行比对运算,以校验商品真伪。3) Update certificate: The system server generates a message MB i, j+1 and sends it to the mobile terminal. The message MB i,j+1 is written by the mobile terminal into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original MB i,j . The message MB i,j+1 is a new digital identity certificate representing the commodity, and is used for the next time the user performs authenticity authentication on the commodity. The system server stores the message MB i, j + 1 corresponding to the message CB i, j + 1, i.e., the update message set S {CB i, 1, CB i , 2 ...... CB i, j, CB i, j +1 }. The message CB i,j+1 is used for the next comparison operation with the message MB i,j+1 to verify the authenticity of the commodity.
进一步,CBi,j与MBi,j的关系是以下三种情况之一:Further, the relationship between CB i,j and MB i,j is one of the following three cases:
a)所述CBi,j等于MBi,ja) The CB i,j is equal to MB i,j .
b)所述CBi,j是MBi,j的一个加密后的消息。b) The CB i,j is an encrypted message of MB i,j .
c)所述CBi,j是MBi,j经过哈希运算以后的哈希值。c) The CB i,j is the hash value after MB i,j has been hashed.
进一步,所述步骤3)结束后,所述消息CBi,j仍然储存于所述系统服务器中。在所述消息CBi,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息MBi,k,从MBi,k得到对应的CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息MBi,k已被窃取,并写入了假冒商品上的RFID电子标签中。所述系统服务器记录并提交该次扫描商品的移动终端的扫描时间和地理位置,同时调用并提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。Further, after the step 3) ends, the message CB i,j is still stored in the system server. On the premise that the message CB i,j+1 exists on the system server, the system server receives the to-be-verified message MB i,k sent by the mobile terminal , and obtains the corresponding CB from MB i,k i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, it is judged that the message MB i,k has been stolen and written In the RFID electronic tag on counterfeit goods. The system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.
本发明还公开一种一次一证的组合加密验证方式,即基于移动终端和RFID的一次一证防伪溯源系统中,包括系统服务器、设置在每一件商品上的RFID电子标签、具有读写RFID电子标签的功能的移动终端设备和随机数发生器。The invention also discloses a combined encryption verification method of one-on-one certificate, that is, a one-word anti-counterfeiting traceability system based on a mobile terminal and an RFID, comprising a system server, an RFID electronic tag disposed on each commodity, and having read and write RFID The electronic terminal functions as a mobile terminal device and a random number generator.
进一步,包括系统服务器、设置在每一件商品上的RFID电子标签、具有读写RFID电子标签的功能的移动终端设备和随机数发生器。Further, it includes a system server, an RFID electronic tag disposed on each item, a mobile terminal device having a function of reading and writing an RFID electronic tag, and a random number generator.
通过以下过程实现商品防伪:Product anti-counterfeiting is achieved through the following process:
1)任意一件商品对应一段由序列号组成的消息MAi,i=1、2、……n。任意一件商品上的RFID电子标签中,写入了组合消息T1i,j。组合消息T1i,j由消息CAi和消息MBi,j组合而成,即T1i,j=CAi&MBi,j,其中,消息CAi是对MAi实施加密运算得到的,即CAi=E(MAi),消息MBi,j是由所述随机数发生器产生的随机数,作为所述消息MAi的数字签名证书,j为RFID电子标签被更新写入消息的次数,j=1、2、……m。1) Any item corresponds to a message MA i , i=1, 2, . . . n composed of serial numbers. The combined message T1 i,j is written into the RFID tag on any item. The combined message T1 i,j is a combination of the message CA i and the message MB i,j , ie T1 i,j =CA i &MB i,j , wherein the message CA i is obtained by performing an encryption operation on the MA i , ie CA i = E(MA i ), the message MB i,j is a random number generated by the random number generator, as a digital signature certificate of the message MA i , j is the number of times the RFID electronic tag is updated and written into the message, j=1, 2, ... m.
所述系统服务器存储消息集合S={T2i,1、T2i,2……T2i,j},其中,T2i,1=MAi&CBi,1、T2i,2=MAi&CBi,1、……T2i,j=MAi&CBi,j,所述消息CBi,j是对MBi,j实施加密运算得到的,即CBi,1=H(MBi,1)、CBi,2=H(MBi,2)、……CBi,j=H(MBi,j)。所述消息T2i,j与消息T1i,j对应,用于和消息T1i,j进行比对运算,以校验商品真伪。任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入T1i,1,系统服务器存储消息集合S={T2i,1},即j=1。 The system server stores a set of messages S={T2 i,1 , T2 i,2 . . . T2 i,j }, where T2 i,1 =MA i &CB i,1 , T2 i,2 =MA i &CB i , 1 , T2 i, j = MA i & CB i, j , the message CB i, j is obtained by performing encryption operation on MB i, j , that is, CB i, 1 = H(MB i, 1 ), CB i,2 =H(MB i,2 ), ...CB i,j =H(MB i,j ). The message T2 i, j with the message T1 i, j corresponds to, and a message for T1 i, j for comparison operation, to verify the authenticity of goods. When any item is shipped for the first time, the RFID tag set on the item is written to T1 i,1 , and the system server stores the message set S={T2 i,1 }, ie j=1.
2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,将读取到的RFID电子标签中的消息X发送给所述系统服务器。2) Verification of the authenticity of the commodity: After scanning the RFID electronic tag on the commodity to be tested by using the mobile terminal device, the message X in the read RFID electronic tag is sent to the system server.
所述系统服务器收到阅读器发送的消息X后,首先判断X的格式与组合消息T1i,j是否相同。若否,则所述待测商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作。After receiving the message X sent by the reader, the system server first determines whether the format of X is the same as the combined message T1 i,j . If not, the item to be tested is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended.
若消息X的格式与组合消息T1i,j相同,则将消息X拆分为XA和XB两部分,其中,XA的格式与CAi相同,XB的格式与MBi,j相同,即X=XA&XB。对所述消息XA进行解密运算,得到值MXA=E-1(XA),若MXA≠MAi则商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作。若MXA=MAi,则找出MAi所对应的CBi,j,对XB进行单向函数运算得到CXB=H(XB),分为以下三种情况:If the format of the message X is the same as the combined message T1 i,j , the message X is split into two parts, XA and XB. The format of the XA is the same as that of the CA i , and the format of the XB is the same as MB i, j , that is, X= XA&XB. The message XA is decrypted to obtain a value of MXA=E -1 (XA). If MXA≠MA i , the commodity is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended. If MXA=MA i , find the CB i,j corresponding to MA i and perform a one-way function operation on XB to get CXB=H(XB), which is divided into the following three cases:
A)若CXB不是{CBi,1、CBi,2……CBi,j}中任意一个元素,消息X不是组合消息T1i,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作。A) If CXB is not any element of {CB i,1 , CB i,2 ... CB i,j }, message X is not a combined message T1 i,j , and the detected item is false, the system server The mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
B)若CXB是{CBi,1、CBi,2……CBi,j}中除了CBi,j外的任意一个元素,所述消息X不是消息T1i,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作。B) If CXB is any element other than CB i,j in {CB i,1 , CB i,2 ... CB i,j }, the message X is not the message T1 i,j , the system server The mobile terminal sends the information that the product is true and false, and ends the authenticity verification operation.
C)若CXB=CBi,j,则所述待测商品为真品,即读取到的消息X是组合消息T1i,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步。C) If CXB=CB i,j , the commodity to be tested is genuine, that is, the read message X is a combined message T1 i,j , and the system server sends the information that the commodity is true to the mobile terminal, and enters Next step.
3)更新证书:所述系统服务器随机生成一个新的随机数MBi,j+1。所述随机数MBi,j+1作为消息MAi的新的数字签名证书。通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有组合消息T1i,j=CAi&MBi,j中的MBi,j,使得已经被步骤2)判断为真的待测商品上的RFID电子标签中存在的组合消息更新为T1i,j+1=CAi&MBi,j+1,用于用户下一次对该件商品进行真伪认证时使用。3) Update the certificate: The system server randomly generates a new random number MB i, j+1 . The random number MB i,j+1 is used as a new digital signature certificate for the message MA i . Transmitting, by the mobile terminal, the message MB i,j+1 into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original combined message T1 i,j =CA i &MB i , MB i,j in j , so that the combined message existing in the RFID electronic tag on the commodity to be tested that has been judged to be true in step 2) is updated to T1 i, j+1 = CA i & MB i, j+1 , Used for the next time the user authenticates the item.
同时,所述系统服务器计算出CBi,j+1=H(MBi,j+1),形成新的消息组合消息T2i,j+1=MAi&CBi,j+1,保存在所述系统服务器中,即所述消息集合S更新为{T2i,1、T2i,2……T2i,j、T2i,j+1}。所述组合消息T2i,j+1用于用户下一次对该件商品进行真伪认证时,和组合消息T1i,j+1进行比对运算,以校验商品真伪。At the same time, the system server calculates CB i, j+1 = H(MB i, j+1 ), forms a new message combination message T2 i, j+1 = MA i & CB i, j+1 , and saves it in the office. In the system server, the message set S is updated to {T2 i,1 , T2 i,2 ... T2 i,j , T2 i,j+1 }. The combined message T2 i, j+1 is used for the next time the user performs authenticity authentication on the item, and performs a comparison operation with the combined message T1 i, j+1 to verify the authenticity of the product.
进一步,所述步骤3)结束后,所述消息T2i,j仍然储存于所述系统服务器中。在所述消息T2i,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息X=XA&XB=CAi&MBi,k时,计算出CBi,k=H(MBi,k),若CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息T2i,k=CAi&MBi,k已被窃取,并被写入了假冒商品上的RFID电子标签中。所述系统服务器记录并提交该次扫描商品的移动终端的扫描时间和地理位置,同时调用并提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。Further, after the step 3) ends, the message T2 i,j is still stored in the system server. On the premise that the message T2 i, j+1 exists on the system server, the system server calculates the to-be-verified message X=XA&XB=CA i &MB i,k sent by the mobile terminal. CB i,k =H(MB i,k ), if CB i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, ie It is judged that the message T2 i, k = CA i & MB i, k has been stolen and written into the RFID electronic tag on the counterfeit item. The system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.
进一步,每一件商品上的RFID电子标签内预先写入的组合消息T1i,j具有随机性和唯一性。所述CAi和MBi,j在T1i,j=CAi&MBi,j被写入RFID电子标签后,不存在于系统服务器中,T1i,j=CAi&MBi,j值不能通过攻击系统服务器被规模窃取和复制。Further, the pre-written combined message T1 i,j in the RFID electronic tag on each item has randomness and uniqueness. The CA i and MB i,j are not present in the system server after T1 i,j =CA i &MB i,j are written into the RFID electronic tag, and T1 i,j =CA i &MB i, the value of j cannot pass Attack system servers are stolen and copied on a scale.
进一步,所述消息MAi或MBi,j的长度为8~1024位。所述商品序列号部分MAi包括有商品生产时间和商品序号。Further, the length of the message MA i or MB i,j is 8 to 1024 bits. The merchandise serial number portion MA i includes a merchandise production time and a merchandise serial number.
进一步,所述商品被启用时,所述RFID电子标签被损毁。所述RFID阅读器为带有射频识别功能或近距离无线通讯NFC功能的手机或移动终端。 Further, when the commodity is activated, the RFID electronic tag is destroyed. The RFID reader is a mobile phone or mobile terminal with a radio frequency identification function or a short-range wireless communication NFC function.
进一步,所述MBi,j中的部分字节作为对CAi实施解密的密钥。Further, a part of the bytes in MB i,j serves as a key for decrypting CA i .
进一步,所述CAi中,按照一定规则,隐含有对CAi实施解密的密钥。Further, in the CA i , a key for decrypting the CA i is implicitly included according to a certain rule.
值得说明的是,本发明可以有效地防止电子标签被解密或因标签本身漏洞被非法造假者读取复制。从系统架构上,本发明创新地采用了一次一证的动态签名认证体系。在系统安全架构中,写入电子标签中的消息采用一次一证的方式。即出厂时电子标签中存储初始MBi,j,当用户成功扫描标签获取商品信息时,服务器自动产生新MBi,j+1,并运算出新的消息CBi,j+1。通过手机等移动设备将新的消息MBi+1重新写入设置在商品上的电子标签中,新的消息CBi,j+1则存入系统服务器。下一次扫描同一商品时,将会读取新的MBi,j+1进行校验,防止标签被破解和复制。It is worth noting that the present invention can effectively prevent the electronic tag from being decrypted or being copied by the illegal counterfeiter due to the vulnerability of the tag itself. From the system architecture, the invention innovatively adopts a one-card dynamic signature authentication system. In the system security architecture, messages written to an electronic tag are in a one-time certificate. That is, the initial MB i,j is stored in the electronic tag at the factory , and when the user successfully scans the tag to obtain the product information, the server automatically generates a new MB i,j+1 and calculates a new message CB i,j+1 . The new message MB i+1 is rewritten into the electronic tag set on the product by the mobile device such as a mobile phone, and the new message CB i, j+1 is stored in the system server. The next time you scan the same item, the new MB i, j+1 will be read for verification to prevent the label from being cracked and copied.
更好的是,在本发明的优选方式中,系统采用了容错机制,防止因网络延迟或其他原因的造成的密码替换失败。并且系统会做出完整的认证记录,一旦出现某一件商品认证非法时,能准确定位出认证非法的起始位置和可能的地理区域。More preferably, in a preferred form of the invention, the system employs a fault tolerance mechanism to prevent password replacement failures due to network delays or other causes. And the system will make a complete certification record. Once a certain product certification is illegal, it can accurately locate the illegal starting position and possible geographical area.
具体实施方式detailed description
下面结合实施例对本发明作进一步说明,但不应该理解为本发明上述主题范围仅限于下述实施例。在不脱离本发明上述技术思想的情况下,根据本领域普通技术知识和惯用手段,做出各种替换和变更,均应包括在本发明的保护范围内。The invention is further illustrated by the following examples, but it should not be understood that the scope of the invention described above is limited to the following examples. Various changes and modifications may be made without departing from the spirit and scope of the invention.
实施例1:Example 1:
一种基于移动终端和RFID的一次一证防伪溯源系统,包括系统服务器、设置在每一件商品上的RFID电子标签和具有读写RFID电子标签的功能的移动终端设备。A one-pass anti-counterfeiting traceability system based on a mobile terminal and an RFID, comprising a system server, an RFID electronic tag disposed on each item, and a mobile terminal device having a function of reading and writing an RFID electronic tag.
通过以下步骤实现商品防伪:Anti-counterfeiting of goods through the following steps:
1)任意一件商品上的RFID电子标签中,写入了消息MBi,j。所述消息MBi,j是商品的数字身份证书。其中,i为商品的序号,i=1、2、……n,j为RFID电子标签写入消息的次数,即RFID电子标签被更新写入消息的次数,j=1、2、……m。系统服务器存储消息集合S={CBi,1、CBi,2……CBi,j}。所述消息CBi,j与消息MBi,j对应,用于和消息MBi,j进行比对运算,以校验商品真伪。任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入MBi,1,系统服务器存储消息集合S={CBi,1},即j=1。例如,某RFID电子标签内写入了消息MB1,1,该消息是第一次写入该RFID电子标签内的消息。市售的真品上的RFID电子标签内写入的消息将是消息集合{MB1,1,MB2,1,……,MBn,1,……MB1,2,MB2,2,……,MBn,2,……MB1,m,MB2,m,……MBn,m}中的一个值。1) The message MB i,j is written in the RFID tag on any item. The message MB i,j is a digital identity certificate for the item. Where i is the serial number of the product, i=1, 2, ..., n, j is the number of times the RFID electronic tag writes the message, that is, the number of times the RFID electronic tag is updated and written to the message, j=1, 2, . . . m . The system server stores the message set S={CB i,1 , CB i,2 . . . CB i,j }. The message CB i, j with the message MB i, j corresponding to, and for the message MB i, j for comparison operation, to verify the authenticity of goods. When any item is shipped for the first time, the RFID tag placed on the item is written to MB i,1 , and the system server stores the message set S={CB i,1 }, ie j=1. For example, a message MB 1,1 is written in an RFID electronic tag, which is the first time the message is written into the RFID tag. The message written in the RFID tag on the commercially available authenticity will be the message set {MB 1,1 , MB 2,1 ,...,MB n,1 ,...MB 1,2 ,MB 2,2 ,... ..., MB n, 2 , ... MB 1, m , MB 2, m , ... MB n, m }.
系统服务器存储与消息MBi,j对应的消息CBi,j。即所述系统服务器存储消息集合属于或等于{CB1,1,CB2,1,……,CBn,1,……CB1,2,CB2,2,……,CBn,2,……CB1,m,CB2,m,……CBn,m}。所述消息CBi,j用于和消息MBi,j进行比对运算,以校验商品真伪。The system server stores the message MB i, j corresponding message CB i, j. That is, the system server stores the message set as belonging to or equal to {CB 1,1 , CB 2,1 , . . . , CB n,1 , . . . CB 1,2 , CB 2,2 , . . . , CB n,2 , ...CB 1,m ,CB 2,m ,...CB n,m }. The message CB i,j is used for comparison with the message MB i,j to verify the authenticity of the commodity.
实施例中,CBi,j与MBi,j的关系是以下三种情况之一:a)所述CBi,j等于MBi,j。b)所述CBi,j是MBi,j的一个加密后的消息。c)所述CBi,j是MBi,j经过哈希运算以后的哈希值。In an embodiment , the relationship between CB i,j and MB i,j is one of the following three cases: a) the CB i,j is equal to MB i,j . b) The CB i,j is an encrypted message of MB i,j . c) The CB i,j is the hash value after MB i,j has been hashed.
2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,该RFID电子标签也可能是真品上的电子标签,也也可能是假冒产品上的电子标签。将读取到的RFID电子标签中的消息X发送给所述系统服务器,与所述系统服务器内存储的消息进行比对运算,以验证商品真伪(即所述消息X有可能是真实的消息MBi,j,也可能不是,需要 系统服务器来判断)。2) Verification of the authenticity of the product: After the RFID electronic tag on the product to be tested is scanned by using the mobile terminal device, the RFID electronic tag may also be an electronic tag on the authentic product, or may be an electronic tag on the counterfeit product. Transmitting the message X in the read RFID electronic tag to the system server, and performing a comparison operation with the message stored in the system server to verify that the commodity is authentic (ie, the message X may be a real message) MB i,j may or may not be required by the system server).
分以下三种情况:Divided into the following three cases:
A)若通过所述比对运算,所述消息X与消息集合S中任意一个元素均不匹配,所述消息X不是消息MBi,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作。A) If the comparison operation is performed, the message X does not match any one of the elements of the message set S. The message X is not the message MB i,j , and the detected item is false, and the system server The mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
B)若通过所述比对运算,所述消息X与消息集合S中除了消息CBi,j外的其他元素匹配,所述消息X不是消息MBi,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作。B) if the comparison operation is performed, the message X matches another element of the message set S other than the message CB i,j , the message X is not the message MB i,j , and the system server sends the message to the mobile terminal The product is suspicious and the end of the authenticity verification operation.
C)若通过所述比对运算,验出待测商品为真,所述消息X与消息CBi,j匹配,即所述消息X是消息MBi,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步。C) if the comparison test is performed to verify that the item to be tested is true, the message X matches the message CB i,j , that is, the message X is the message MB i,j , and the system server sends the message to the mobile terminal The goods are true information and go to the next step.
3)更新证书:所述系统服务器生成消息MBi,j+1,并发送到所述移动终端。通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有的MBi,j。所述消息MBi,j+1是新的代表商品的数字身份证书,用于用户下一次对该件商品进行真伪认证时使用。系统服务器存储与消息MBi,j+1对应的消息CBi,j+1,即所述消息集合S更新为{CBi,1、CBi,2……CBi,j、CBi,j+1}。所述消息CBi,j+1用于下一次和消息MBi,j+1进行比对运算,以校验商品真伪。3) Update certificate: The system server generates a message MB i, j+1 and sends it to the mobile terminal. The message MB i,j+1 is written by the mobile terminal into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original MB i,j . The message MB i,j+1 is a new digital identity certificate representing the commodity, and is used for the next time the user performs authenticity authentication on the commodity. The system server stores the message MB i, j + 1 corresponding to the message CB i, j + 1, i.e., the update message set S {CB i, 1, CB i , 2 ...... CB i, j, CB i, j +1 }. The message CB i,j+1 is used for the next comparison operation with the message MB i,j+1 to verify the authenticity of the commodity.
进一步,所述步骤3)结束后,所述消息CBi,j仍然储存于所述系统服务器中。在所述消息CBi,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息MBi,k,从MBi,k得到对应的CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息MBi,k已被窃取,并写入了假冒商品上的RFID电子标签中。所述系统服务器记录并提交该次扫描商品的移动终端的扫描时间和地理位置,同时调用并提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。Further, after the step 3) ends, the message CB i,j is still stored in the system server. On the premise that the message CB i,j+1 exists on the system server, the system server receives the to-be-verified message MB i,k sent by the mobile terminal , and obtains the corresponding CB from MB i,k i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, it is judged that the message MB i,k has been stolen and written In the RFID electronic tag on counterfeit goods. The system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.
本实施例的具体实施还可以通过下面一个例子说明:The specific implementation of this embodiment can also be illustrated by the following example:
某厂商共有10件商品出厂。10件商品出厂前均贴上分别写入了消息MB1,1、MB2,1、MB3,1、MB4,1、MB5,1、MB6,1、MB7,1、MB8,1、MB9,1和MB10,1的RFID电子标签。具体地,MB1,1=101、MB2,1=102、MB3,1=103、MB4,1=104、MB5,1=105、MB6,1=106、MB7,1=107、MB8,1=108、MB9,1=109、MB10,1=110。A manufacturer has a total of 10 items shipped. 10 items were posted with messages MB 1,1 , MB 2,1 , MB 3,1 , MB 4,1 , MB 5,1 , MB 6,1 , MB 7,1 , MB 8 respectively . 1, 1 , MB 9 , 1 and MB 10, 1 RFID electronic tags. Specifically, MB 1,1 =101, MB 2,1 =102, MB 3,1 =103, MB 4,1 =104, MB 5,1 =105, MB 6,1 =106, MB 7,1 = 107, MB 8 , 1 = 108, MB 9 , 1 = 109, MB 10 , 1 = 110.
所述系统服务器存储用于验证上述10件商品真伪的消息集合S={CB1,1,CB2,1,……,CB10,1}。其中,消息CB1,1是消息MB1,1的哈希值,消息CB2,1是消息MB2,1的哈希值,……消息CB10,1是消息MB10,1的哈希值,以此类推。The system server stores a message set S={CB 1,1 , CB 2,1 , . . . , CB 10,1 } for verifying the authenticity of the above 10 items. Among them, the message CB 1,1 is the hash value of the message MB 1,1 , the message CB 2,1 is the hash value of the message MB 2,1 , ... the message CB 10,1 is the hash of the message MB 10,1 Value, and so on.
消费者使用移动终端设备扫描待测商品上的RFID电子标签后,该RFID电子标签也可能是上述10件真品中的一件上的电子标签,也也可能是假冒产品上的电子标签。After the consumer scans the RFID electronic tag on the product to be tested by using the mobile terminal device, the RFID electronic tag may also be an electronic tag on one of the above 10 genuine products, or may be an electronic tag on the counterfeit product.
如果所述移动终端读取到的RFID电子标签中的消息X=200,并将其发送给所述系统服务器,所述系统服务器收到消息X=200后,对其进行哈希运算,得到的哈希值不属于消息集合S,即判断出该待测商品不是上述10件真品中的一件。系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作。If the message X=200 in the RFID electronic tag read by the mobile terminal is sent to the system server, after receiving the message X=200, the system server performs a hash operation on the obtained message. The hash value does not belong to the message set S, that is, it is determined that the item to be tested is not one of the above 10 pieces of genuine products. The system server sends the information that the commodity is false to the mobile terminal, and ends the authenticity verification operation.
如果所述移动终端将读取到的RFID电子标签中的消息X=101,并将其发送给所述系统服务器,所述系统服务器收到消息X=101后,对其进行哈希运算,得到的哈希值属 于消息集合S,即判断出该待测商品是上述10件真品中的一件。系统服务器便会向移动终端发送商品为真的信息,并进入更新证书的操作:所述系统服务器生成消息MB1,2=1011,并将其发送到所述移动终端,通过所述移动终端将消息MB1,2=1011写入已经判断为真品的商品上的RFID电子标签中,即该商品的RFID电子标签中原有的消息MB1,1=101替换为MB1,2=1011。同时,所述系统服务器将在消息集合S内增加消息MB1,2的哈希值“消息CB1,2”。If the mobile terminal reads the message X=101 in the RFID electronic tag and sends it to the system server, the system server receives the message X=101, and then hashes it to obtain The hash value belongs to the message set S, that is, it is determined that the commodity to be tested is one of the above 10 genuine products. The system server sends the information to the mobile terminal as authentic, and enters the operation of updating the certificate: the system server generates a message MB 1, 2 = 1011 and sends it to the mobile terminal, through which the mobile terminal will The message MB 1, 2 = 1011 is written in the RFID electronic tag on the item that has been judged to be genuine, that is, the original message MB 1,1 =101 in the RFID tag of the product is replaced by MB 1,2 =1011. At the same time, the system server will increment the hash value "message CB 1,2 " of the message MB 1,2 in the message set S.
消费者再次使用移动终端设备扫描上述商品上的RFID电子标签后,所述移动终端将消息X=1011。所述系统服务器内对消息X=1011进行哈希运算,得到的哈希值即为“消息CB1,2”,其属于消息集合S,则判断出上述商品是10件真品中的一件。系统服务器便会向移动终端发送商品为真的信息,并再次进入更新证书的操作:所述系统服务器生成消息MB1,3=10111,并将其发送到所述移动终端,通过所述移动终端将消息MB1,3=10111写入已经判断为真品的商品上的RFID电子标签中,即该商品的RFID电子标签中原有的消息MB1,2=1011替换为MB1,3=10111。同时,所述系统服务器将在消息集合S内增加消息MB1,3的哈希值“消息CB1,3”。After the consumer again scans the RFID electronic tag on the item using the mobile terminal device, the mobile terminal will message X=1011. The system server hashes the message X=1011, and the obtained hash value is “message CB 1,2 ”, which belongs to the message set S, and determines that the commodity is one of 10 genuine products. The system server sends the information to the mobile terminal as authentic, and enters the operation of updating the certificate again: the system server generates a message MB 1, 3 = 10111 and sends it to the mobile terminal through the mobile terminal The message MB 1,3 = 10111 is written into the RFID electronic tag on the item that has been judged to be genuine, that is, the original message MB 1,2 = 1011 in the RFID tag of the product is replaced by MB 1,3 = 10111. At the same time, the system server will increment the hash value "message CB 1,3 " of the message MB 1,3 in the message set S.
……......
如果所述系统服务器不止一次地收到移动终端发送的消息MB1,1=101,而系统服务器内不仅存在CB1,1,还存在CB1,2,CB1,3……CB1,m中的一个或多个。即判断出消息MB1,1已被窃取,并被写入了假冒商品上的RFID电子标签中。所述系统服务器记录到历次发送的消息MB1,1=101的移动终端的扫描时间和地理位置,即为防伪打假提供制假者可能的制假时间和地理位置。If the system server receives the message MB 1,1 =101 sent by the mobile terminal more than once, and there is not only CB 1,1 in the system server, but also CB 1,2 , CB 1,3 ... CB 1,m One or more of them. That is, it is judged that the message MB 1,1 has been stolen and written into the RFID electronic tag on the counterfeit goods. The system server records the scan time and the geographical location of the mobile terminal of the previously transmitted message MB 1,1 =101, that is, the anti-counterfeiting anti-counterfeiting provides the counterfeiting time and geographical location of the counterfeiter.
实施例2Example 2
本实施例是实施例1的优选方式,还包括随机数发生器,实现对商品的组合加密认证。This embodiment is a preferred mode of Embodiment 1, and further includes a random number generator for implementing combined encryption authentication of the commodity.
一种基于移动终端和RFID的一次一证防伪溯源系统,包括系统服务器、设置在每一件商品上的RFID电子标签、具有读写RFID电子标签的功能的移动终端设备和随机数发生器。A one-pass anti-counterfeiting traceability system based on a mobile terminal and an RFID, comprising a system server, an RFID electronic tag disposed on each item, a mobile terminal device having a function of reading and writing an RFID electronic tag, and a random number generator.
通过以下步骤实现商品防伪:Anti-counterfeiting of goods through the following steps:
1)任意一件商品对应一段由序列号组成的消息MAi,i=1、2、……n。任意一件商品上的RFID电子标签中,写入了组合消息T1i,j。组合消息T1i,j由消息CAi和消息MBi,j组合而成,即T1i,j=CAi&MBi,j,其中,消息CAi是对MAi实施加密运算得到的,即CAi=E(MAi),消息MBi,j是由所述随机数发生器产生的随机数,作为所述消息MAi的数字签名证书,j为RFID电子标签被更新写入消息的次数,j=1、2、……m。1) Any item corresponds to a message MA i , i=1, 2, . . . n composed of serial numbers. The combined message T1 i,j is written into the RFID tag on any item. The combined message T1 i,j is a combination of the message CA i and the message MB i,j , ie T1 i,j =CA i &MB i,j , wherein the message CA i is obtained by performing an encryption operation on the MA i , ie CA i = E(MA i ), the message MB i,j is a random number generated by the random number generator, as a digital signature certificate of the message MA i , j is the number of times the RFID electronic tag is updated and written into the message, j=1, 2, ... m.
所述系统服务器存储消息集合S={T2i,1、T2i,2……T2i,j},其中,T2i,1=MAi&CBi,1、T2i,2=MAi&CBi,1、……T2i,j=MAi&CBi,j,所述消息CBi,j是对对MBi实施加密运算得到的,即CBi,1=H(MBi,1)、CBi,2=H(MBi,2)、……CBi,j=H(MBi,j)。实施例中,y=H(x)可以是单向函数。所述消息T2i,j与消息T1i,j对应,用于和消息T1i,j进行比对运算,以校验商品真伪。任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入T1i,1,系统服务器存储消息集合S={T2i,1},即j=1。The system server stores a set of messages S={T2 i,1 , T2 i,2 . . . T2 i,j }, where T2 i,1 =MA i &CB i,1 , T2 i,2 =MA i &CB i , 1 , T2 i, j = MA i & CB i,j , the message CB i,j is obtained by performing an encryption operation on MB i , that is, CB i,1 =H(MB i,1 ), CB i, 2 = H(MB i, 2 ), ... CB i, j = H(MB i, j ). In an embodiment, y = H(x) may be a one-way function. The message T2 i, j with the message T1 i, j corresponds to, and a message for T1 i, j for comparison operation, to verify the authenticity of goods. When any item is shipped for the first time, the RFID tag set on the item is written to T1 i,1 , and the system server stores the message set S={T2 i,1 }, ie j=1.
例如,某RFID电子标签内写入了消息T11,1,该消息是第一次写入该RFID电子标签 内的消息。市售的真品上的RFID电子标签内写入的消息将是消息集合{T11,1,T12,1,……,T1n,1,……T11,2,T12,2,……,T1n,2,……T11,m,T12,m,……T1n,m}中的一个值。For example, a message T1 1,1 is written in an RFID tag, which is the first time a message is written into the RFID tag. The message written in the RFID tag on the commercially available authenticity will be the message set {T1 1,1 , T1 2,1 ,...,T1 n,1 ,...T1 1,2 , T1 2,2 ,... ..., T1 n, 2 , ... T1 1, m , T1 2, m , ... T1 n, m } A value.
系统服务器存储与消息T1i,j对应的消息T2i,j。即所述系统服务器存储消息集合属于或等于{T21,1,T22,1,……,T2n,1,……T21,2,T22,2,……,T2n,2,……T21,m,T22,m,……T2n,m}。所述消息T2i,j用于和消息T1i,j进行比对运算,以校验商品真伪。The system server stores a message T2 i,j corresponding to the message T1 i,j . That is, the system server stores the message set as belonging to or equal to {T2 1,1 , T2 2,1 , . . . , T2 n,1 , . . . T2 1,2 , T2 2,2 , . . . , T2 n, 2 , ... T2 1,m , T2 2,m ,...T2 n,m }. The message T2 i,j is used for comparison with the message T1 i,j to verify the authenticity of the commodity.
2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,将读取到的RFID电子标签中的消息X发送给所述系统服务器。2) Verification of the authenticity of the commodity: After scanning the RFID electronic tag on the commodity to be tested by using the mobile terminal device, the message X in the read RFID electronic tag is sent to the system server.
所述系统服务器收到阅读器发送的消息X后,首先判断X的格式与组合消息T1i,j是否相同。若否,则所述待测商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作。After receiving the message X sent by the reader, the system server first determines whether the format of X is the same as the combined message T1 i,j . If not, the item to be tested is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended.
若消息X的格式与组合消息T1i,j相同,则将消息X拆分为XA和XB两部分,其中,XA的格式与CAi相同,XB的格式与MBi,j相同,即X=XA&XB。对所述消息XA进行解密运算,得到值MXA=E-1(XA),y=E(x)是加密函数,y=E-1(x)是与y=E(x)对应的解密函数。若MXA≠MAi则商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作。若MXA=MAi,则找出MAi所对应的CBi,j,对XB进行单向函数运算得到CXB=H(XB),分为以下三种情况:If the format of the message X is the same as the combined message T1 i,j , the message X is split into two parts, XA and XB. The format of the XA is the same as that of the CA i , and the format of the XB is the same as MB i, j , that is, X= XA&XB. Decrypting the message XA to obtain a value MXA=E -1 (XA), y=E(x) is an encryption function, and y=E -1 (x) is a decryption function corresponding to y=E(x) . If MXA≠MA i , the item is false, that is, message X is not combined message T1 i,j , and the authenticity check operation is ended. If MXA=MA i , find the CB i,j corresponding to MA i and perform a one-way function operation on XB to get CXB=H(XB), which is divided into the following three cases:
A)若CXB不是{CBi,1、CBi,2……CBi,j}中任意一个元素,消息X不是组合消息T1i,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作。A) If CXB is not any element of {CB i,1 , CB i,2 ... CB i,j }, message X is not a combined message T1 i,j , and the detected item is false, the system server The mobile terminal transmits the information that the item is false, and ends the authenticity verification operation.
B)若CXB是{CBi,1、CBi,2……CBi,j}中除了CBi,j外的任意一个元素,所述消息X不是消息T1i,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作。B) If CXB is any element other than CB i,j in {CB i,1 , CB i,2 ... CB i,j }, the message X is not the message T1 i,j , the system server The mobile terminal sends the information that the product is true and false, and ends the authenticity verification operation.
C)若CXB=CBi,j,则所述待测商品为真品,即读取到的消息X是组合消息T1i,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步。C) If CXB=CB i,j , the commodity to be tested is genuine, that is, the read message X is a combined message T1 i,j , and the system server sends the information that the commodity is true to the mobile terminal, and enters Next step.
3)更新证书:所述系统服务器随机生成一个新的随机数MBi,j+1。所述随机数MBi,j+1作为消息MAj的新的数字签名证书。通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有组合消息T1i,j=CAi&MBi,j中的MBi,j,使得已经被步骤2)判断为真的待测商品上的RFID电子标签中存在的组合消息更新为T1i,j+1=CAi&MBi,j+1,用于用户下一次对该件商品进行真伪认证时使用。3) Update the certificate: The system server randomly generates a new random number MB i, j+1 . The random number MB i,j+1 is used as a new digital signature certificate for the message MA j . Transmitting, by the mobile terminal, the message MB i,j+1 into the RFID electronic tag on the item to be tested that has been determined to be true in step 2) to replace the original combined message T1 i,j =CA i &MB i , MB i,j in j , so that the combined message existing in the RFID electronic tag on the commodity to be tested that has been judged to be true in step 2) is updated to T1 i, j+1 = CA i & MB i, j+1 , Used for the next time the user authenticates the item.
同时,所述系统服务器计算出CBi,j+1=H(MBi,j+1),形成新的消息组合消息T2i,j+1=MAi&CBi,j+1,保存在所述系统服务器中,即所述消息集合S更新为{T2i,j、T2i,2……T2i,j、T2i,j+1}。所述组合消息T2i,j+1用于用户下一次对该件商品进行真伪认证时,和组合消息T1i,j+1进行比对运算,以校验商品真伪。At the same time, the system server calculates CB i, j+1 = H(MB i, j+1 ), forms a new message combination message T2 i, j+1 = MA i & CB i, j+1 , and saves it in the office. In the system server, the message set S is updated to {T2 i,j , T2 i,2 . . . T2 i,j , T2 i,j+1 }. The combined message T2 i, j+1 is used for the next time the user performs authenticity authentication on the item, and performs a comparison operation with the combined message T1 i, j+1 to verify the authenticity of the product.
作为本实施例的优选方式,所述步骤3)结束后,所述消息T2i,j仍然储存于所述系统服务器中。在所述消息T2i,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息X=XA&XB=CAi&MBi,k时,计算出CBi,k=H(MBi,k),若CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息T2i,k=CAi&MBi,k已被窃取,并被写入了假冒商品上的RFID电子标签中。所述系统服务器记录并提交该次扫描商品的移动终端的扫描时间和地理位置,同时调用并提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。 As a preferred mode of this embodiment, after the step 3) ends, the message T2 i,j is still stored in the system server. On the premise that the message T2 i, j+1 exists on the system server, the system server calculates the to-be-verified message X=XA&XB=CA i &MB i,k sent by the mobile terminal. CB i,k =H(MB i,k ), if CB i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, ie It is judged that the message T2 i, k = CA i & MB i, k has been stolen and written into the RFID electronic tag on the counterfeit item. The system server records and submits the scan time and geographic location of the mobile terminal that scans the commodity, and simultaneously invokes and submits the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives the MB i,k last time. Provide counterfeiting time and geographical location for counterfeiters for anti-counterfeiting and counterfeiting.

Claims (10)

  1. 一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:包括系统服务器、设置在每一件商品上的RFID电子标签和具有读写RFID电子标签的功能的移动终端设备;A one-pass anti-counterfeiting traceability system based on mobile terminal and RFID, comprising: a system server, an RFID electronic tag disposed on each item of goods, and a mobile terminal device having the function of reading and writing RFID electronic tags;
    通过以下过程实现商品防伪:Product anti-counterfeiting is achieved through the following process:
    1)任意一件商品上的RFID电子标签中,写入了消息MBi,j;所述消息MBi,j是商品的数字身份证书;其中,i为商品的序号,i=1、2、……n,j为RFID电子标签写入消息的次数,j=1、2、……m;系统服务器存储消息集合S={CBi,1、CBi,2……CBi,j};所述消息CBi,j与消息MBi,j对应,用于和消息MBi,j进行比对运算,以校验商品真伪;任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入MBi,j,系统服务器存储消息集合S={CBi,1},即j=1;1) In the RFID electronic tag on any commodity, the message MB i,j is written; the message MB i,j is the digital identity certificate of the commodity; wherein i is the serial number of the commodity, i=1, 2 ...n,j is the number of times the RFID electronic tag writes a message, j=1, 2, . . . m; the system server stores the message set S={CB i,1 , CB i,2 . . . CB i,j }; the message CB i, j with the message MB i, j corresponding to, and for the message MB i, j for comparison operation, to verify the authenticity of goods; product of any one the first factory, the article of merchandise provided The upper RFID tag is written to MB i,j , and the system server stores the message set S={CB i,1 }, ie j=1;
    2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,将读取到的RFID电子标签中的消息X发送给所述系统服务器,与所述消息集合S中的元素进行比对运算,以验证商品真伪;2) verifying the authenticity of the commodity: after scanning the RFID electronic tag on the commodity to be tested by using the mobile terminal device, transmitting the message X in the read RFID electronic tag to the system server, and the message set S The elements in the comparison are performed to verify the authenticity of the goods;
    分以下三种情况:Divided into the following three cases:
    A)若通过所述比对运算,所述消息X与消息集合S中任意一个元素均不匹配,所述消息X不是消息MBi,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作;A) If the comparison operation is performed, the message X does not match any one of the elements of the message set S. The message X is not the message MB i,j , and the detected item is false, and the system server The mobile terminal sends the information that the commodity is false, and ends the authenticity verification operation;
    B)若通过所述比对运算,所述消息X与消息集合S中除了消息CBi,j外的其他元素匹配,所述消息X不是消息MBi,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作;B) if the comparison operation is performed, the message X matches another element of the message set S other than the message CB i,j , the message X is not the message MB i,j , and the system server sends the message to the mobile terminal The product is suspicious and the end of the authenticity verification operation;
    C)若通过所述比对运算,所述消息X与消息CBi,j匹配,即所述消息X是消息MBi,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步;C) if the comparison operation is performed, the message X matches the message CB i,j , that is, the message X is the message MB i,j , and the system server sends the information that the commodity is true to the mobile terminal, and enters Next step;
    3)更新证书:所述系统服务器生成消息MBi,j+1,并发送到所述移动终端;通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有的MBi,j;所述消息MBi,j+1是新的代表商品的数字身份证书,用于用户下一次对该件商品进行真伪认证时使用;系统服务器存储与消息MBi,j+1对应的消息CBi,j+1,即所述消息集合S更新为{CBi,1、CBi,2……CBi,j、CBi,j+1};所述消息CBi,j+1用于下一次和消息MBi,j+1进行比对运算,以校验商品真伪。3) updating the certificate: the system server generates a message MB i,j+1 and sends it to the mobile terminal; writing the message MB i,j+1 by the mobile terminal has been judged as true by step 2) In the RFID electronic tag on the product to be tested, the original MB i,j is replaced; the message MB i,j+1 is a new digital identity certificate representing the commodity, and is used for the next time the user performs the product. when used for authentication verification; system server stores the message MB i, j + message corresponding to 1 CB i, j + 1, i.e., the update message set S {CB i, 1, CB i , 2 ...... CB i, j , CB i, j+1 }; the message CB i, j+1 is used for the next comparison operation with the message MB i, j+1 to verify the authenticity of the commodity.
  2. 根据权利要求1所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:A one-time anti-counterfeiting traceability system based on mobile terminal and RFID according to claim 1, wherein:
    CBi,j与MBi,j的关系是以下三种情况之一:The relationship between CB i,j and MB i,j is one of the following three cases:
    a)所述CBi,j等于MBi,ja) said CB i,j is equal to MB i,j ;
    b)所述CBi,j是MBi,j的一个加密后的消息;b) said CB i,j is an encrypted message of MB i,j ;
    c)所述CBi,j是MBi,j经过哈希运算以后的哈希值。c) The CB i,j is the hash value after MB i,j has been hashed.
  3. 根据权利要求1或2所述的一种基于移动终端和RFID的一次证防伪溯源系统,其特征在于:所述步骤3)结束后,所述消息CBi,j仍然储存于所述系统服务器中;在所述消息CBi,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息MBi,k,从MBi,k得到对应的CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息MBi,k已被窃取,并写入了假冒商品上的RFID电子标签中;所述系统服务器记录并 提交该次扫描商品的移动终端的扫描时间和地理位置,同时调用并提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。The one-party anti-counterfeiting traceability system based on mobile terminal and RFID according to claim 1 or 2, wherein after the step 3) is finished, the message CB i,j is still stored in the system server. On the premise that the message CB i,j+1 exists on the system server, the system server receives the to-be-verified message MB i,k sent by the mobile terminal , and obtains corresponding information from MB i,k CB i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, it is judged that the message MB i,k has been stolen and written The RFID electronic tag on the counterfeit commodity; the system server records and submits the scan time and geographic location of the mobile terminal of the scanned product, and simultaneously calls and submits the last time the system server receives the MB i,k The terminal scans the time and geographical location of the commodity RFID to provide the counterfeiting time and geographical location of the counterfeiter for anti-counterfeiting and anti-counterfeiting.
  4. 一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:包括系统服务器、设置在每一件商品上的RFID电子标签、具有读写RFID电子标签的功能的移动终端设备和随机数发生器;A one-pass anti-counterfeiting traceability system based on mobile terminal and RFID, comprising: a system server, an RFID electronic tag disposed on each commodity, a mobile terminal device having a function of reading and writing an RFID electronic tag, and a random number generator;
    通过以下过程实现商品防伪:Product anti-counterfeiting is achieved through the following process:
    1)任意一件商品对应一段由序列号组成的消息MAi,i=1、2、……n;任意一件商品上的RFID电子标签中,写入了组合消息T1i,j;组合消息T1i,j由消息CAi和消息MBi,j组合而成,即T1i,j=CAi&MBi,j,其中,消息CAi是对MAi实施加密运算得到的,即CAi=E(MAi),消息MBi,j是由所述随机数发生器产生的随机数,作为所述消息MAi的数字签名证书,j为RFID电子标签被更新写入消息的次数,j=1、2、……m;1) Any one item corresponds to a message MA i , i=1, 2, . . . n composed of serial numbers; in the RFID electronic tag on any item, the combined message T1 i,j is written; the combined message T1 i,j is a combination of the message CA i and the message MB i,j , ie T1 i,j =CA i &MB i,j , wherein the message CA i is obtained by performing an encryption operation on the MA i , ie CA i = E(MA i ), the message MB i,j is a random number generated by the random number generator, as a digital signature certificate of the message MA i , j is the number of times the RFID electronic tag is updated and written into the message, j= 1, 2, ... m;
    所述系统服务器存储消息集合S={T2i,1、T2i,2……T2i,j},其中,T2i,1=MAi&CBi,1、T2i,2=MAi&CBi,2、……T2i,j=MAi&CBi,j,所述消息CBi,j是对MBi,j实施加密运算得到的,即CBi,1=H(MBi,1)、CBi,2=H(MBi,2)、……CBi,j=H(MBi,j);所述消息T2i,j与消息T1i,j对应,用于和消息T1i,j进行比对运算,以校验商品真伪;任意一件商品第一次出厂时,设置在该件商品上的RFID电子标签写入T1i,1,系统服务器存储消息集合S={T2i,1},即j=1;The system server stores a set of messages S={T2 i,1 , T2 i,2 . . . T2 i,j }, where T2 i,1 =MA i &CB i,1 , T2 i,2 =MA i &CB i , 2 , ... T2 i, j = MA i & CB i,j , the message CB i,j is obtained by performing an encryption operation on MB i,j , ie CB i,1 =H(MB i,1 ), CB i,2 =H(MB i,2 ), ...CB i,j =H(MB i,j ); the message T2 i,j corresponds to the message T1 i,j for the sum message T1 i, j performs a comparison operation to verify the authenticity of the commodity; when any product is shipped for the first time, the RFID electronic tag set on the commodity is written to T1 i,1 , and the system server stores the message set S={T2 i , 1 }, ie j=1;
    2)验证商品的真伪:使用所述移动终端设备扫描待测商品上的RFID电子标签后,将读取到的RFID电子标签中的消息X发送给所述系统服务器;2) verifying the authenticity of the commodity: after scanning the RFID electronic tag on the commodity to be tested by using the mobile terminal device, transmitting the message X in the read RFID electronic tag to the system server;
    所述系统服务器收到阅读器发送的消息X后,首先判断X的格式与组合消息T1i,j是否相同;若否,则所述待测商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作;After receiving the message X sent by the reader, the system server first determines whether the format of the X is the same as the combined message T1 i,j ; if not, the product to be tested is false, that is, the message X is not the combined message T1 i, j , end the authenticity verification operation;
    若消息X的格式与组合消息T1i,j相同,则将消息X拆分为XA和XB两部分,其中,XA的格式与CAi相同,XB的格式与MBi,j相同,即X=XA&XB;对所述消息XA进行解密运算,得到值MXA=E-1(XA),若MXA≠MAi则商品为假,即消息X不是组合消息T1i,j,结束真伪校验操作;若MXA=MAi,则找出MAi所对应的CBi,j,对XB进行单向函数运算得到CXB=H(XB),分为以下三种情况:If the format of the message X is the same as the combined message T1 i,j , the message X is split into two parts, XA and XB. The format of the XA is the same as that of the CA i , and the format of the XB is the same as MB i, j , that is, X= XA&XB; decrypting the message XA to obtain the value MXA=E -1 (XA), if MXA≠MA i , the commodity is false, that is, the message X is not the combined message T1 i,j , and the authenticity verification operation is ended; If MXA=MA i , find the CB i,j corresponding to MA i and perform a one-way function operation on XB to get CXB=H(XB), which is divided into the following three cases:
    A)若CXB不是{CBi,1、CBi,2……CBi,j}中任意一个元素,消息X不是组合消息T1i,j,验出待测商品为假,所述系统服务器向移动终端发送商品为假的信息,并结束真伪校验操作;A) If CXB is not any element of {CB i,1 , CB i,2 ... CB i,j }, message X is not a combined message T1 i,j , and the detected item is false, the system server The mobile terminal sends the information that the commodity is false, and ends the authenticity verification operation;
    B)若CXB是{CBi,1、CBi,2……CBi,j}中除了CBi,j外的任意一个元素,所述消息X不是消息T1i,j,所述系统服务器向移动终端发送商品真假可疑的信息,并结束真伪校验操作;B) If CXB is any element other than CB i,j in {CB i,1 , CB i,2 ... CB i,j }, the message X is not the message T1 i,j , the system server The mobile terminal sends the suspicious information of the commodity, and ends the authenticity verification operation;
    C)若CXB=CBi,j,则所述待测商品为真品,即读取到的消息X是组合消息T1i,j,所述系统服务器向移动终端发送商品为真的信息,并进入下一步;C) If CXB=CB i,j , the commodity to be tested is genuine, that is, the read message X is a combined message T1 i,j , and the system server sends the information that the commodity is true to the mobile terminal, and enters Next step;
    3)更新证书:所述系统服务器随机生成一个新的随机数MBi,j+1;所述随机数MBi,j+1作为消息MAi的新的数字签名证书;通过所述移动终端将消息MBi,j+1写入已经被步骤2)判断为真的待测商品上的RFID电子标签中,以替换掉原有组合消息T1i,j=CAi&MBi,j中的MBi,j,使得已经被步骤2)判断为真的待测商品上的RFID电子标签中存在的组合消息更新为T1i,j+1=CAi&MBi,j+1,用于用户下一次对该件商品进行真伪认证时使用;3) updating the certificate: the system server randomly generates a new random number MB i, j+1 ; the random number MB i, j+1 is used as a new digital signature certificate of the message MA i ; message MB i, j + 1 has been written in step 2) is true is determined on the RFID tag test product in order to replace the original message composition T1 i, j = CA i & MB i, j of the MB i , j , so that the combined message existing in the RFID electronic tag on the item to be tested that has been determined to be true in step 2) is updated to T1 i, j+1 = CA i & MB i, j+1 for the next time the user pairs This item is used for authenticity authentication;
    同时,所述系统服务器计算出CBi,j+1=H(MBi,j+1),形成新的消息组合T2i,j+1=MAi&CBi,j+1,保存在所述系统服务器中,即所述消息集合S更新为{T2i,1、T2i,2……T2i,j、 T2i,j+1};所述组合消息T2i,j+1用于用户下一次对该件商品进行真伪认证时,和组合消息T1i,j+1进行比对运算,以校验商品真伪。At the same time, the system server calculates CB i, j+1 = H(MB i, j+1 ), forms a new message combination T2 i, j+1 = MA i & CB i, j+1 , and saves in the In the system server, the message set S is updated to {T2 i,1 , T2 i,2 . . . T2 i,j , T2 i,j+1 }; the combined message T2 i,j+1 is used for the user The next time the product is authenticated, it is compared with the combined message T1 i, j+1 to verify the authenticity of the product.
  5. 根据权利要求4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:所述步骤3)结束后,所述消息T2i,j仍然储存于所述系统服务器中;在所述消息T2i,j+1存在于所述系统服务器的前提下,所述系统服务器接收到所述移动终端发来的待验证消息X=XA&XB=CAi&MBi,k时,计算出CBi,k=H(MBi,k),若CBi,k∈{CBi,1、CBi,2……CBi,j、CBi,j+1}且k≤j时,即判断出消息T2i,k=CAi&MBi,k已被窃取,并被写入了假冒商品上的RFID电子标签中;所述系统服务器记录并提交该次扫描商品的移动终端的扫描时间和地理位置,并调用提交出上次所述系统服务器接收到MBi,k时移动终端扫描商品RFID的时间和地理位置,为防伪打假提供制假者可能的制假时间和地理位置。The one-party anti-counterfeiting traceability system based on the mobile terminal and the RFID according to claim 4, wherein after the step 3) is finished, the message T2 i,j is still stored in the system server; On the premise that the message T2 i, j+1 exists on the system server, the system server calculates the to-be-verified message X=XA&XB=CA i &MB i,k sent by the mobile terminal. CB i,k =H(MB i,k ), if CB i,k ∈{CB i,1 , CB i,2 ......CB i,j ,CB i,j+1 } and k≤j, ie Determining that the message T2 i,k =CA i &MB i,k has been stolen and written into the RFID electronic tag on the counterfeit item; the system server records and submits the scan time of the mobile terminal of the scanned product and Geographical location, and call to submit the time and geographic location of the mobile terminal scanning the commodity RFID when the system server receives MB i,k last time, providing the counterfeiting time and geographical location of the counterfeiter for anti-counterfeiting and anti-counterfeiting.
  6. 根据权利要求4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:每一件商品上的RFID电子标签内预先写入的组合消息T1i,j具有随机性和唯一性;所述CAi和MBi,j在T1i,j=CAi&MBi,j被写入RFID电子标签后,不存在于系统服务器中,T1i,j=CAi&MBi,j值不能通过攻击系统服务器被规模窃取和复制。A one-party anti-counterfeiting traceability system based on mobile terminal and RFID according to claim 4, wherein the pre-written combined message T1 i,j in the RFID electronic tag on each item has randomness and Uniqueness; the CA i and MB i,j are not present in the system server after T1 i,j =CA i &MB i,j are written into the RFID electronic tag, T1 i,j =CA i &MB i,j Values cannot be stolen and copied by attacking the system server.
  7. 根据权利要求4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:所述消息MAi或MBi,j的长度为8~1024位;所述商品序列号部分MAi包括有商品生产时间和商品序号。The one-party anti-counterfeiting traceability system based on the mobile terminal and the RFID according to claim 4, wherein the length of the message MA i or MB i,j is 8 to 1024 bits; The MA i includes the product production time and the product serial number.
  8. 根据权利要求1或4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:所述商品被启用时,所述RFID电子标签被损毁;所述RFID阅读器为带有射频识别功能或近距离无线通讯NFC功能的手机或移动终端。The one-digit anti-counterfeiting traceability system based on mobile terminal and RFID according to claim 1 or 4, wherein when the commodity is activated, the RFID electronic tag is damaged; the RFID reader is a tape A mobile phone or mobile terminal with radio frequency identification or NFC function of short-range wireless communication.
  9. 根据权利要求4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:所述MBi,j中的部分字节作为对CAi实施解密的密钥。A one-party anti-counterfeiting traceability system based on mobile terminal and RFID according to claim 4, wherein a part of the bytes in the MB i,j is used as a key for decrypting the CA i .
  10. 根据权利要求4所述的一种基于移动终端和RFID的一次一证防伪溯源系统,其特征在于:所述CAi中,按照一定规则,隐含有对CAi实施解密的密钥。 The one-party anti-counterfeiting traceability system based on the mobile terminal and the RFID according to claim 4, wherein the CA i implicitly includes a key for decrypting the CA i according to a certain rule.
PCT/CN2014/092112 2014-04-09 2014-11-25 One-time certificate anti-counterfeiting tracing system based on mobile terminal and rfid WO2015154482A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410140584.2 2014-04-09
CN201410140584.2A CN103971250B (en) 2014-04-09 2014-04-09 A kind of one time one card anti-fake traceability system based on mobile terminal and RFID

Publications (1)

Publication Number Publication Date
WO2015154482A1 true WO2015154482A1 (en) 2015-10-15

Family

ID=51240710

Family Applications (4)

Application Number Title Priority Date Filing Date
PCT/CN2014/092112 WO2015154482A1 (en) 2014-04-09 2014-11-25 One-time certificate anti-counterfeiting tracing system based on mobile terminal and rfid
PCT/CN2015/073591 WO2015154595A1 (en) 2014-04-09 2015-03-03 One-time pad authentication system based on closed-loop authentication theory and internet
PCT/CN2015/075949 WO2015154646A1 (en) 2014-04-09 2015-04-07 Currency or security anti-counterfeiting tracing system based on one-time certificate technology
PCT/CN2015/075952 WO2015154647A1 (en) 2014-04-09 2015-04-07 Currency or security authentication system based on closed-loop authentication theory

Family Applications After (3)

Application Number Title Priority Date Filing Date
PCT/CN2015/073591 WO2015154595A1 (en) 2014-04-09 2015-03-03 One-time pad authentication system based on closed-loop authentication theory and internet
PCT/CN2015/075949 WO2015154646A1 (en) 2014-04-09 2015-04-07 Currency or security anti-counterfeiting tracing system based on one-time certificate technology
PCT/CN2015/075952 WO2015154647A1 (en) 2014-04-09 2015-04-07 Currency or security authentication system based on closed-loop authentication theory

Country Status (2)

Country Link
CN (1) CN103971250B (en)
WO (4) WO2015154482A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106709562A (en) * 2015-11-16 2017-05-24 四川谦泰仁投资管理有限公司 Currency counting system having RFID identification function
US11213773B2 (en) 2017-03-06 2022-01-04 Cummins Filtration Ip, Inc. Genuine filter recognition with filter monitoring system
CN115361124A (en) * 2022-08-19 2022-11-18 京东方科技集团股份有限公司 Product verification method and device, electronic equipment and computer-readable storage medium

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103971250B (en) * 2014-04-09 2017-04-05 四川谦泰仁投资管理有限公司 A kind of one time one card anti-fake traceability system based on mobile terminal and RFID
CN105844472A (en) * 2015-01-13 2016-08-10 四川谦泰仁投资管理有限公司 RFID merchandise anti-counterfeiting tracing system compatible with two-dimensional code counterfeiting prevention
CN105279470B (en) * 2015-09-24 2018-01-16 深圳市金溢科技股份有限公司 A kind of method, system and handheld terminal for handling the handing-over of money case
CN108881166B (en) * 2017-05-16 2021-03-26 江峰 Virtual account block chain verification system with external fixed physical node
CN110648143A (en) * 2018-06-11 2020-01-03 江峰 Closed-loop anti-counterfeiting verification system based on Merkle trusted tree
CN109360002A (en) * 2018-09-21 2019-02-19 蛙力买(浙江)信息科技有限公司 A kind of method for anti-counterfeit and device of product

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040000987A1 (en) * 2002-06-27 2004-01-01 Ncr Corporation Check fraud detection process using checks having radio frequency identifier (RFID) tags and a system therefor
CN101556654A (en) * 2009-05-27 2009-10-14 杨志清 Anti-counterfeiting technology for multi-variable dynamic digital signature and interactive authentication electronic tag
CN102236861A (en) * 2011-07-07 2011-11-09 江苏联博计算机信息产业有限公司 Commodity anti-counterfeiting method based on path mechanism
CN103971250A (en) * 2014-04-09 2014-08-06 四川谦泰仁投资管理有限公司 One-time-one-certificate anti-fake traceability system based on mobile terminal and RFID (radio frequency identification)

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030221098A1 (en) * 2002-05-22 2003-11-27 Kun-Huei Chen Method for automatically updating a network ciphering key
WO2007027151A1 (en) * 2005-09-01 2007-03-08 Stora Enso Oyj Verification of a product identifier
CN101183439A (en) * 2006-11-14 2008-05-21 中国民生银行股份有限公司 Electronic bill processing system and processing method
CN102469080B (en) * 2010-11-11 2015-07-15 中国电信股份有限公司 Method for pass user to realize safety login application client and system thereof
CN102186151B (en) * 2011-05-13 2016-01-13 中国电信股份有限公司 The method and system of online process tax-related service, mediating transmission device
CN203232458U (en) * 2012-03-31 2013-10-09 四川谦泰仁投资管理有限公司 Merchandise anti-counterfeiting system based on mobile terminal and RFID electronic label
CN103544511A (en) * 2013-10-29 2014-01-29 上海华彩科技有限公司 Anti-counterfeiting identification

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040000987A1 (en) * 2002-06-27 2004-01-01 Ncr Corporation Check fraud detection process using checks having radio frequency identifier (RFID) tags and a system therefor
CN101556654A (en) * 2009-05-27 2009-10-14 杨志清 Anti-counterfeiting technology for multi-variable dynamic digital signature and interactive authentication electronic tag
CN102236861A (en) * 2011-07-07 2011-11-09 江苏联博计算机信息产业有限公司 Commodity anti-counterfeiting method based on path mechanism
CN103971250A (en) * 2014-04-09 2014-08-06 四川谦泰仁投资管理有限公司 One-time-one-certificate anti-fake traceability system based on mobile terminal and RFID (radio frequency identification)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106709562A (en) * 2015-11-16 2017-05-24 四川谦泰仁投资管理有限公司 Currency counting system having RFID identification function
US11213773B2 (en) 2017-03-06 2022-01-04 Cummins Filtration Ip, Inc. Genuine filter recognition with filter monitoring system
CN115361124A (en) * 2022-08-19 2022-11-18 京东方科技集团股份有限公司 Product verification method and device, electronic equipment and computer-readable storage medium

Also Published As

Publication number Publication date
WO2015154595A1 (en) 2015-10-15
CN103971250B (en) 2017-04-05
CN103971250A (en) 2014-08-06
WO2015154647A1 (en) 2015-10-15
WO2015154646A1 (en) 2015-10-15

Similar Documents

Publication Publication Date Title
WO2015154482A1 (en) One-time certificate anti-counterfeiting tracing system based on mobile terminal and rfid
US20180308098A1 (en) Identity Management Service Using A Block Chain Providing Identity Transactions Between Devices
US10019530B2 (en) ID tag authentication system and method
TWI683567B (en) Security verification method, device, server and terminal
CN104156862A (en) Wechat-platform-based two-dimensional code anti-fake and anti-channel conflict inquiry system and method
WO2020056597A1 (en) Item identity management method, terminal, micro-processing unit, identification device and system
CN109191142B (en) Commodity tracing method, equipment and system
CN110598433B (en) Block chain-based anti-fake information processing method and device
US10158493B2 (en) Solution for generating and issuing security codes with guaranteed issuer authenticity and origin
CN104794626B (en) A kind of method for anti-counterfeit and device based on hardware information
US20180205714A1 (en) System and Method for Authenticating Electronic Tags
WO2018227685A1 (en) Method and system for secure access of terminal device to internet of things
CN103971245B (en) A kind of combined ciphering system false proof for electronic article
CN110969445A (en) Anti-counterfeiting method based on NFC
CN105844472A (en) RFID merchandise anti-counterfeiting tracing system compatible with two-dimensional code counterfeiting prevention
Falcone et al. PUF-based smart tags for supply chain management
CN103971246B (en) One-way function bidirectional encryption based electronic commodity security system
Eldefrawy et al. Banknote Validation through an Embedded RFID Chip and an NFC‐Enabled Smartphone
CN103971247B (en) A kind of combined ciphering system for commodity counterfeit prevention
CN109145543B (en) Identity authentication method
US20240022403A1 (en) Delivering random number keys securely for one-time pad symmetric key encryption
CN104732400A (en) Commodity authenticity detecting method and system based on two-dimension code
WO2014053172A1 (en) Method and system for securely authenticating entities
CN108768967B (en) RFID safety middleware
CN110648143A (en) Closed-loop anti-counterfeiting verification system based on Merkle trusted tree

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14888817

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14888817

Country of ref document: EP

Kind code of ref document: A1

122 Ep: pct application non-entry in european phase

Ref document number: 14888817

Country of ref document: EP

Kind code of ref document: A1