+

CN103324971A - Smart card system and dynamic key update authentication method of smart card system - Google Patents

Smart card system and dynamic key update authentication method of smart card system Download PDF

Info

Publication number
CN103324971A
CN103324971A CN201310289791XA CN201310289791A CN103324971A CN 103324971 A CN103324971 A CN 103324971A CN 201310289791X A CN201310289791X A CN 201310289791XA CN 201310289791 A CN201310289791 A CN 201310289791A CN 103324971 A CN103324971 A CN 103324971A
Authority
CN
China
Prior art keywords
smart card
new
time stamp
remote server
module
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201310289791XA
Other languages
Chinese (zh)
Other versions
CN103324971B (en
Inventor
李彤
吕军
郭浩
武卉明
龚尧菀
岳杰
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Academy of Armored Forces Engineering of PLA
Original Assignee
Academy of Armored Forces Engineering of PLA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Academy of Armored Forces Engineering of PLA filed Critical Academy of Armored Forces Engineering of PLA
Priority to CN201310289791.XA priority Critical patent/CN103324971B/en
Publication of CN103324971A publication Critical patent/CN103324971A/en
Application granted granted Critical
Publication of CN103324971B publication Critical patent/CN103324971B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

本发明涉及一种防范通信线路传输安全隐患的智能卡系统及其动态密钥更新认证方法,其时间戳生成与验证模块用于不定时向所述射频读写器提供系统时间戳信息,并验证所述射频读写器返回的经设备指纹码加密传回的时间戳信息与所述远程服务器产生的时间戳信息是否一致;安全模块用于将射频读卡器读写的智能卡数据进行加密和解密,以使射频读卡器与服务器之间传输的都是加密信息。本发明的智能卡系统利用动态时间戳认证机制和动态密码加解密技术,保证了射频读卡器到服务器的通信线路上数据安全,堵住了应用智能卡信息系统传输线路的安全隐患,保证了智能卡数据传输的安全性,适用于人员、物资和装备的信息化管理。

Figure 201310289791

The invention relates to a smart card system and a dynamic key update authentication method for preventing potential safety hazards of communication line transmission. The time stamp generation and verification module is used to provide system time stamp information to the radio frequency reader from time to time, and verify all Whether the time stamp information returned by the device fingerprint code encryption returned by the radio frequency reader is consistent with the time stamp information generated by the remote server; the security module is used to encrypt and decrypt the smart card data read and written by the radio frequency card reader, So that all the information transmitted between the radio frequency card reader and the server is encrypted. The smart card system of the present invention utilizes the dynamic time stamp authentication mechanism and the dynamic password encryption and decryption technology to ensure the data security on the communication line from the radio frequency card reader to the server, block the potential safety hazard of the transmission line of the smart card information system, and ensure the data security of the smart card The security of transmission is suitable for information management of personnel, materials and equipment.

Figure 201310289791

Description

一种智能卡系统及其动态密钥更新认证方法A smart card system and its dynamic key update authentication method

【技术领域】【Technical field】

本发明涉及一种智能卡信息系统,具体涉及一种防范通信线路传输安全隐患的智能卡系统及其动态密钥更新认证方法,属于信息安全技术领域。The invention relates to a smart card information system, in particular to a smart card system for preventing potential safety hazards in communication line transmission and a dynamic key update authentication method thereof, belonging to the technical field of information security.

【背景技术】【Background technique】

目前,我军已大量使用智能卡信息系统,涉及到各种物资、装备和人员的管理,智能卡信息系统安全漏洞会使相关的军用信息系统面临着比一般信息系统更加严重的安全隐患。At present, our military has widely used smart card information systems, which involve the management of various materials, equipment and personnel. The security vulnerabilities of smart card information systems will make related military information systems face more serious security risks than general information systems.

在近几年的智能卡安全机制研究中,很多研究人员提出了许多安全机制,如:Sarma等人提出的Hash-Lock认证协议;Weis等人提出的随机化Hash-Lock认证协议;Rhee等人提出的分布式智能卡询问-响应认证协议;Ohkubo等人提出的Hash链认证协议;Lee等人提出的LCAP认证协议;以及Henrici等人提出的基于杂凑ID变化认证协议,等等。In the research on smart card security mechanism in recent years, many researchers have proposed many security mechanisms, such as: the Hash-Lock authentication protocol proposed by Sarma et al.; the randomized Hash-Lock authentication protocol proposed by Weis et al.; The distributed smart card inquiry-response authentication protocol; the Hash chain authentication protocol proposed by Ohkubo et al.; the LCAP authentication protocol proposed by Lee et al.; and the hash ID change authentication protocol proposed by Henrici et al., etc.

然而上述认证协议中,要么只满足智能卡系统安全需求中一项或者几项,没有完全实现整体的安全目标,要么就太过复杂,需要的存储资源与计算资源超出了现有智能卡标签资源的限度,无法具体实施。尤其是,目前很多智能卡认证协议是建立在服务器与读写器之间为安全通信信道的假设前提下,而实际上,这段传输线路大多存在安全隐患,服务器与射频读写器之间传输的是非加密数据,这样就可以通过在传输线路中间接入等方式来将服务器与读写器之间传输的数据截获,获得智能卡的相关信息,所以目前这种智能卡应用系统存在着严重的安全隐患。However, in the above authentication protocol, either only one or several of the security requirements of the smart card system are met, and the overall security goal is not fully realized, or it is too complicated, requiring storage resources and computing resources beyond the limit of existing smart card label resources , cannot be concretely implemented. In particular, many current smart card authentication protocols are based on the assumption that there is a secure communication channel between the server and the reader. It is non-encrypted data, so that the data transmitted between the server and the reader can be intercepted by accessing in the middle of the transmission line, and the relevant information of the smart card can be obtained, so the current smart card application system has serious security risks.

因此,为避免上述技术问题,确有必要提供一种防范通信线路传输安全隐患的智能卡系统及其动态密钥更新认证方法,以克服现有技术中的所述缺陷。Therefore, in order to avoid the above-mentioned technical problems, it is indeed necessary to provide a smart card system and its dynamic key update authentication method to prevent potential safety hazards in communication line transmission, so as to overcome the above-mentioned defects in the prior art.

【发明内容】【Content of invention】

为解决上述问题,本发明的目的在于提供一种在传输线路上进行数据加密传输的智能卡系统,其能防范从传输线路上进行智能卡信息截获。In order to solve the above problems, the purpose of the present invention is to provide a smart card system for encrypted data transmission on the transmission line, which can prevent smart card information interception from the transmission line.

本发明的另一目的在于提供一种防范通信线路传输安全隐患的智能卡系统的动态密钥更新认证方法。Another object of the present invention is to provide a dynamic key update authentication method of a smart card system that prevents potential safety hazards in communication line transmission.

为实现上述第一目的,本发明采取的技术方案为:一种智能卡系统,其包括智能卡,射频读写器以及远端服务器;其中,In order to achieve the above-mentioned first purpose, the technical solution adopted by the present invention is: a smart card system, which includes a smart card, a radio frequency reader and a remote server; wherein,

所述远端服务器包括时间戳生成与验证模块,安全模块,超时处理模块,监控显示屏以及警报器;其中,所述时间戳生成与验证模块用于不定时向所述射频读写器提供系统时间戳信息,并验证所述射频读写器返回的利用新、旧设备指纹码加密的时间戳信息和所述远程服务器利用该射频读写器的新、旧设备指纹码对返回值解密后的时间戳信息是否一致;所述安全模块用于将所述远端服务器与所述射频读写器之间传输的数据进行加密和解密;The remote server includes a timestamp generation and verification module, a security module, a timeout processing module, a monitoring display screen and an alarm; wherein, the timestamp generation and verification module is used to provide system information to the radio frequency reader from time to time. Timestamp information, and verify the timestamp information encrypted by the new and old device fingerprints returned by the radio frequency reader and the returned value decrypted by the remote server using the new and old device fingerprints of the radio frequency reader Whether the timestamp information is consistent; the security module is used to encrypt and decrypt the data transmitted between the remote server and the radio frequency reader;

所述射频读写器包括MCU模块,射频收发模块,通信接口模块,FLASH存储模块。其中,所述FLASH存储模块用于存储基于时间戳的新旧设备指纹码;所述MCU模块包含一个动态密码生成模块和数据加解密模块,动态密码生成模块用于当射频读写器接收到所述远端服务器发送的新时间戳时,判断新时间戳是否大于所述FLASH存储模块中保存的旧时间戳,当成立时,启动所述动态密码生成模块,生成一组动态密码作为新设备指纹码,并利用新、旧设备指纹码分别对新时间戳进行加密后作为密码更新确认返回值,发送给所述远端服务器,数据加解密模块完成数据加密和解密功能;所述通信接口模块包含RS232接口、USB接口或RS485接口。The radio frequency reader includes an MCU module, a radio frequency transceiver module, a communication interface module, and a FLASH storage module. Wherein, the FLASH storage module is used to store the old and new device fingerprints based on time stamps; the MCU module includes a dynamic password generation module and a data encryption and decryption module, and the dynamic password generation module is used when the radio frequency reader receives the When the new time stamp sent by the remote server, judge whether the new time stamp is greater than the old time stamp stored in the FLASH storage module, when established, start the dynamic password generation module to generate a group of dynamic passwords as the new device fingerprint code , and use the new and old device fingerprint codes to encrypt the new time stamp respectively as the password update confirmation return value, and send it to the remote server, and the data encryption and decryption module completes the data encryption and decryption functions; the communication interface module includes RS232 interface, USB interface or RS485 interface.

本发明的智能卡系统进一步为:所述安全模块包括用于使用对称密码通信的数据进行加解密运算的对称密码算法模块,以及用于进行哈希运算的哈希运算模块。The smart card system of the present invention further includes: the security module includes a symmetric cipher algorithm module for performing encryption and decryption operations on data communicated using symmetric ciphers, and a hash operation module for performing hash operations.

本发明的智能卡系统进一步为:所述远端服务器通过所述时间戳生成与验证模块不定时向所述射频读写器发送一组新生成的时间戳,并同时将所述时间戳通过所述安全模块生成生成一组新的设备指纹码;所述射频读写器收到新时间戳后,所述MCU模块判断收到的新时间戳是否大于旧时间戳;当新时间戳大于旧时间戳时,射频读写器重新计算后生成新的设备指纹码作为数据传输加解密码,并将新时间戳分别经新、设备指纹码加密后返传给所述远端服务器作为动态密钥更新确认信息。The smart card system of the present invention further includes: the remote server sends a group of newly generated time stamps to the radio frequency reader from time to time through the time stamp generation and verification module, and at the same time sends the time stamps through the The security module generates a set of new device fingerprints; after the radio frequency reader receives the new time stamp, the MCU module judges whether the received new time stamp is greater than the old time stamp; when the new time stamp is greater than the old time stamp , the RF reader recalculates and generates a new device fingerprint code as a data transmission encryption and decryption code, and returns the new time stamp to the remote server after being encrypted by the new device fingerprint code and the device fingerprint code respectively as a dynamic key update confirmation information.

本发明的智能卡系统进一步为:所述远端服务器及时接收到所述射频读写器返回值后,所述远端服务器分别利用该射频读写器的新、旧设备指纹码对收到的返回值解密后进行比较判定,当返回的新时间戳值与所述远端服务器已生成的新时间戳一致时,说明所述远端服务器收到所述射频读写器返回的动态密钥更新确认信息,智能卡系统动态密钥更新完成,所述智能卡系统认定线路端不存在恶意攻击的安全隐患,启用该射频读写器的新设备指纹码作为加解密密钥对收发数据进行加密和解密;当时间戳信息不一致时,重新进行一次更新认证;连续三次更新认证后,仍不一致时,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器启动;The smart card system of the present invention is further as follows: after the remote server receives the return value of the radio frequency reader in time, the remote server uses the new and old device fingerprint codes of the radio frequency reader to pair the received returns After the value is decrypted, compare and judge, and when the returned new timestamp value is consistent with the new timestamp generated by the remote server, it means that the remote server has received the dynamic key update confirmation returned by the RF reader information, the dynamic key update of the smart card system is completed, and the smart card system determines that there is no potential safety hazard of malicious attack at the line end, and the new device fingerprint code of the RF reader is used as the encryption and decryption key to encrypt and decrypt the sending and receiving data; when When the time stamp information is inconsistent, perform an update authentication again; after three consecutive update authentications, if it is still inconsistent, the smart card system determines that there is serious interference or a disconnection at the line end, terminates the communication, and activates the alarm;

本发明的智能卡系统还可为:所述远端服务器发送新生成的时间戳后,启动所示超时处理模块,当超时处理模块计时时间到时,仍未收到所述射频读写器返回的动态密钥更新完成确认信息时,重新启动所示超时处理模块,并进行再一次更新认证;重新进行一次更新认证后,所述远端服务器收到所述射频读写器返回的动态密钥更新确认信息,所述智能卡系统认定线路端不存在恶意攻击。若重新进行三次更新认证后,所述远端服务器仍未收到所述射频读写器返回的动态密钥更新确认信息,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器启动;The smart card system of the present invention can also be: after the remote server sends the newly generated timestamp, it starts the timeout processing module, and when the timeout of the timeout processing module expires, it still does not receive the response returned by the radio frequency reader When the dynamic key update completes confirmation information, restart the timeout processing module shown, and perform update authentication again; after re-update authentication, the remote server receives the dynamic key update returned by the radio frequency reader To confirm the information, the smart card system determines that there is no malicious attack on the line end. If the remote server has not received the dynamic key update confirmation information returned by the radio frequency reader after re-updating the authentication three times, the smart card system determines that there is serious interference or a disconnection at the line end, and terminates the communication. the alarm is activated;

为实现上述第二目的,本发明采取的技术方案为:一种智能卡系统的动态密钥更新认证方法,其包括如下步骤:In order to achieve the above-mentioned second purpose, the technical solution adopted by the present invention is: a dynamic key update authentication method for a smart card system, which includes the following steps:

步骤一:所述远端服务器通过所述时间戳生成与验证模块不定时向所述射频读写器发送一组新生成的时间戳,并同时将所述时间戳通过所述安全模块生成一组新的设备指纹码;Step 1: The remote server sends a set of newly generated timestamps to the RF reader from time to time through the timestamp generation and verification module, and generates a set of timestamps through the security module at the same time. new device fingerprint;

步骤二:所述射频读写器收到新时间戳后,所述MCU模块调出所述FLASH存储模块的旧时间戳,并判断新时间戳是否大于旧时间戳;Step 2: After the RF reader/writer receives the new time stamp, the MCU module calls out the old time stamp of the FLASH storage module, and judges whether the new time stamp is greater than the old time stamp;

步骤三:若新时间戳大于旧时间戳,将所述FLASH存储模块的旧时间戳更换为该新时间戳,启动所述动态密码生成模块,生成新的设备指纹码,并分别利用新、旧设备指纹码对新时间戳进行加密后作为密码更新确认值,发送给所述远端服务器;否则所述射频读写器只利用旧设备指纹码对新时间戳进行加密,作为返回值发送给所述远端服务器;Step 3: If the new time stamp is greater than the old time stamp, replace the old time stamp of the FLASH storage module with the new time stamp, start the dynamic password generation module, generate a new device fingerprint code, and use the new and old time stamps respectively The device fingerprint code encrypts the new time stamp and sends it to the remote server as a password update confirmation value; otherwise, the RF reader only uses the old device fingerprint code to encrypt the new time stamp and sends it to the remote server as a return value. the remote server;

步骤四:所述远端服务器对所述射频读卡器的返回值分别经新、旧设备指纹码解密后进行比较判断,当返回的新时间戳值与所述远端服务器生成的新时间戳一致时,所述智能卡系统动态密码更新完成,认定线路端不存在恶意攻击的安全隐患,否则所述智能卡系统启动重新更新认证程序或启动所述警报器;Step 4: The remote server compares and judges the return value of the radio frequency card reader after decrypting the fingerprint codes of the new and old devices respectively. When the returned new timestamp value is consistent with the new timestamp generated by the remote server When consistent, the update of the dynamic password of the smart card system is completed, and it is determined that there is no potential safety hazard of malicious attack at the line end, otherwise the smart card system starts a new update authentication program or starts the alarm;

步骤五:当对所述智能卡进行数据读写时,所述远程服务器利用新设备指纹码作为密钥对数据信息进行加密后传输或解密接收数据,所述射频读卡器利用新设备指纹码对所述智能卡读入数据加密后传输或解密从线路传输过来的信息。Step 5: When reading and writing data on the smart card, the remote server uses the fingerprint code of the new device as a key to encrypt the data information and then transmits or decrypts the received data, and the radio frequency card reader uses the fingerprint code of the new device to The data read by the smart card is encrypted and then transmitted or decrypted from the information transmitted from the line.

本发明的智能卡系统的动态密钥更新认证方法进一步为:The dynamic key update authentication method of the smart card system of the present invention is further as follows:

当远端服务器接收到所述射频读写器返回值后,利用所述远端服务器生成的新设备指纹码对返回值进行解密,当所解密出的时间戳值跟新时间戳值一致时,所述智能卡系统的新设备指纹码更新完毕,并可认定线路端不存在恶意攻击的安全隐患;当收到的时间戳信息与所述远端服务器时间戳不一致时,或未收到所述射频读写器返回信息时,所示超时处理模块启动,重新进行一次时间戳传输认证;连续三次更新认证后,所述远端服务器仍未收到所述射频读写器返回的正确时间戳信息,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器启动。After the remote server receives the return value of the radio frequency reader, it uses the new device fingerprint code generated by the remote server to decrypt the return value. When the decrypted timestamp value is consistent with the new timestamp value, the The fingerprint code of the new device of the smart card system has been updated, and it can be determined that there is no potential security risk of malicious attack at the line end; when the received timestamp information is inconsistent with the timestamp of the remote server, or the RF read When the writer returns information, the timeout processing module is started, and the time stamp transmission authentication is performed again; after updating the authentication three times in a row, the remote server still has not received the correct time stamp information returned by the radio frequency reader, so The smart card system determines that there is serious interference or disconnection at the line end, terminates the communication, and activates the alarm.

本发明的智能卡系统的动态密钥更新认证方法进一步为:所述智能卡系统的线路端认证后,在所述远端服务器上的所述监控显示屏显示认证结果。The dynamic key update authentication method of the smart card system of the present invention further comprises: after the line end of the smart card system is authenticated, the monitoring display screen on the remote server displays the authentication result.

与现有技术相比,本发明具有如下有益效果:本发明的防范通信线路传输安全隐患的智能卡系统利用动态时间戳认证机制和动态密码加解密技术,有效地保证了射频读卡器到服务器这段线路上通信的安全,堵住了智能卡应用信息系统传输线路的安全隐患,保证了智能卡数据的安全性,适用于人员、物资和装备的信息化管理。Compared with the prior art, the present invention has the following beneficial effects: the smart card system of the present invention for preventing potential safety hazards in communication line transmission utilizes a dynamic time stamp authentication mechanism and dynamic password encryption and decryption technology to effectively ensure the communication between the radio frequency card reader and the server. The safety of communication on the segment line blocks the hidden danger of the transmission line of the smart card application information system, ensures the security of the smart card data, and is suitable for the information management of personnel, materials and equipment.

【附图说明】【Description of drawings】

图1是本发明的智能卡系统的原理图。Fig. 1 is a schematic diagram of the smart card system of the present invention.

图2是本发明的智能卡系统另一实施方式的原理图。Fig. 2 is a schematic diagram of another embodiment of the smart card system of the present invention.

【具体实施方式】【Detailed ways】

请参阅说明书附图1所示,本发明为一种防范通信线路传输安全隐患的的智能卡系统,其包括智能卡12,射频读写器13以及远端服务器14。Please refer to the accompanying drawing 1 of the specification, the present invention is a smart card system for preventing potential safety hazards in communication line transmission, which includes a smart card 12 , a radio frequency reader 13 and a remote server 14 .

所述远端服务器包括时间戳生成与验证模块1,安全模块4,超时处理模块3,监控显示屏2以及警报器5;所述时间戳生成与验证模块1用于不定时向所述射频读写器13提供系统时间信息,并由所述远程服务器14生成的新设备指纹码对接收的信息进行解密获得所述射频读写器13返回的时间戳信息,判断时间戳信息是否一致;所述安全模块4用于将智能卡信息数据进行加密和解密。The remote server includes a timestamp generation and verification module 1, a security module 4, an overtime processing module 3, a monitoring display screen 2 and an alarm 5; The writer 13 provides system time information, and the new device fingerprint code generated by the remote server 14 decrypts the received information to obtain the timestamp information returned by the radio frequency reader 13, and judges whether the timestamp information is consistent; The security module 4 is used for encrypting and decrypting the smart card information data.

所述射频读卡器12包括MCU模块10,射频收发模块9,通信接口模块7,FLASH存储模块8。射频读写器13内的MCU模块10通过射频收发模块9、射频天线11与智能卡12相连并进行通信。射频收发模块选用频率为13.56MHZ的FM1702片。The radio frequency card reader 12 includes an MCU module 10 , a radio frequency transceiver module 9 , a communication interface module 7 and a FLASH storage module 8 . The MCU module 10 in the radio frequency reader 13 is connected and communicates with the smart card 12 through the radio frequency transceiver module 9 and the radio frequency antenna 11 . The RF transceiver module uses FM1702 with a frequency of 13.56MHZ.

射频读写器13内的MCU模块10通过通信接口模块7与远端服务器14连接。通信接口可以是RS232串口、RS485串口或USB数据口,其中射频读卡器13与远端服务器14之间的数据传输均采用密文传输。The MCU module 10 in the radio frequency reader 13 is connected with the remote server 14 through the communication interface module 7 . The communication interface can be an RS232 serial port, an RS485 serial port or a USB data port, wherein the data transmission between the radio frequency card reader 13 and the remote server 14 adopts encrypted text transmission.

所述FLASH存储模块8用于存储上一次认证成功的设备指纹码和时间戳;所述MCU模块10包含一个动态设备指纹码生成模块,MCU用于当射频读写器13接收到所述远端服务器14发送的新时间戳时,判断新时间戳是否大于所述FLASH存储模块8保存的旧时间戳,当成立时,启动所述动态设备指纹码生成模块,生成一组新的设备指纹码,并利用新、旧设备指纹码对新时间戳进行加密后作为返回值,发送给所述远端服务器14。否则仅利用旧设备指纹码对新时间戳进行加密后作为返回值,发送给所述远端服务器14。The FLASH storage module 8 is used to store the device fingerprint code and time stamp of the last successful authentication; the MCU module 10 includes a dynamic device fingerprint code generation module, and the MCU is used for when the radio frequency reader 13 receives the remote When the new timestamp sent by the server 14, judge whether the new timestamp is greater than the old timestamp saved by the FLASH storage module 8, when established, start the dynamic device fingerprint generation module to generate a group of new device fingerprints, And use the new and old device fingerprints to encrypt the new time stamp as a return value and send it to the remote server 14. Otherwise, only use the fingerprint code of the old device to encrypt the new time stamp as a return value and send it to the remote server 14 .

当远端服务器14接收到所述射频读写器13返回值后,利用所述远端服务器14生成的新设备指纹码对返回值进行解密,当所解密出的时间戳值跟新时间戳值一致时,所述智能卡系统的新设备指纹码更新完毕(线路动态加解密密码更新完毕),并可认定线路端不存在恶意攻击的安全隐患;当收到的时间戳信息与所述远端服务器14时间戳不一致时,或未收到所述射频读写器13返回信息时,所示超时处理模块启动,重新进行一次时间戳传输认证;若连续三次线路认证后,所述远端服务器14仍未收到所述射频读写器13返回的正确时间戳信息,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器5启动。After the remote server 14 receives the return value from the radio frequency reader 13, use the new device fingerprint code generated by the remote server 14 to decrypt the return value, when the decrypted timestamp value is consistent with the new timestamp value , the new device fingerprint code of the smart card system has been updated (the line dynamic encryption and decryption password has been updated), and it can be determined that there is no potential safety hazard of malicious attack at the line end; When the time stamps are inconsistent, or when the return information of the radio frequency reader 13 is not received, the timeout processing module shown starts, and a time stamp transmission authentication is performed again; if after three consecutive line authentications, the remote server 14 has not yet After receiving the correct time stamp information returned by the radio frequency reader 13, the smart card system determines that there is serious interference or an open circuit at the line end, terminates the communication, and activates the alarm 5.

进一步地,所述智能卡系统的线路端认证后,在所述远端服务器上的所述监控显示屏2显示认证结果。Further, after the line end of the smart card system is authenticated, the monitoring display screen 2 on the remote server displays an authentication result.

所述智能卡系统的线路端认证通过后(即认定线路端不存在恶意攻击的安全隐患),所述MCU模块10通过所述射频收发模块9和射频天线11启动对所述智能卡12进行数据信息的读写操作。After the line end authentication of the smart card system is passed (that is, it is determined that there is no potential safety hazard of malicious attack at the line end), the MCU module 10 starts to process data information on the smart card 12 through the radio frequency transceiver module 9 and the radio frequency antenna 11. read and write operations.

该智能卡系统适用于军队涉密物资装备的信息化管理,通过产生的动态时间戳和动态密码认证,以保证线路端通信安全的可靠性,以及信息数据的安全性。The smart card system is suitable for the information management of military secret-related materials and equipment. Through the generated dynamic time stamp and dynamic password authentication, it can ensure the reliability of line-side communication security and the security of information data.

请参阅说明书附图2所示,其为本发明的防范通信线路传输安全隐患的智能卡另一实施方式,其包括智能卡12,射频读写器13以及远端服务器14;所述远端服务器包括时间戳生成与验证模块1,安全模块4,超时处理模块3,监控显示屏2以及警报器5;所述时间戳生成与验证模块1用于不定时向所述射频读写器13提供系统时间戳信息,并验证所述射频读卡器13的返回时间戳和所述远程服务器14生成的时间戳信息是否一致;所述安全模块4用于将用户信息数据进行加密和解密,并对所述时间戳生成与验证模块1对生成的新时间戳进行加密,同时对所述射频读写器13返回所述时间戳信息进行解密。Please refer to shown in accompanying drawing 2 of specification sheet, and it is another embodiment of the smart card of the present invention to prevent potential safety hazards in communication line transmission, which includes smart card 12, radio frequency reader 13 and remote server 14; Stamp generation and verification module 1, safety module 4, overtime processing module 3, monitoring display screen 2 and alarm 5; described timestamp generation and verification module 1 is used for providing system time stamp to described radio frequency reader 13 from time to time information, and verify whether the returned time stamp of the radio frequency card reader 13 is consistent with the time stamp information generated by the remote server 14; the security module 4 is used to encrypt and decrypt user information data, and to The stamp generation and verification module 1 encrypts the generated new timestamp, and at the same time decrypts the timestamp information returned by the radio frequency reader 13 .

所述射频读卡器13包括MCU模块10,射频收发模块9,通信接口模块7,FLASH存储模块8。The radio frequency card reader 13 includes an MCU module 10 , a radio frequency transceiver module 9 , a communication interface module 7 and a FLASH storage module 8 .

所述射频读卡器13还包括一显示屏15和按键16,所述MCU模块10与显示屏15、按键16分别相连,所述按键16用来控制所述显示屏15是否显示射频读卡器13与远端服务器14连接状态。Described radio frequency card reader 13 also comprises a display screen 15 and key 16, and described MCU module 10 is connected with display screen 15, key 16 respectively, and described key 16 is used for controlling described display screen 15 whether to display radio frequency card reader 13 and remote server 14 connection state.

当所述按键16被按下时,所述显示屏15显示所述射频读卡器13与远端服务器14连接状态。When the button 16 is pressed, the display screen 15 displays the connection status between the radio frequency card reader 13 and the remote server 14 .

所述智能卡系统的线路端认证通过后,所述MCU模块10通过所述射频收发模块9和射频天线11启动所述智能卡12,对所述智能卡12进行数据信息的读取操作。进一步优选地,所述显示屏15还用显示所述智能卡数据信息的读取结果。After the line terminal authentication of the smart card system is passed, the MCU module 10 activates the smart card 12 through the radio frequency transceiver module 9 and the radio frequency antenna 11 to read data information from the smart card 12 . Further preferably, the display screen 15 is also used to display the reading result of the smart card data information.

通过动态时间戳产生和动态设备指纹码生成与验证后,才能对所述智能卡12数据进行读写操作和加密传输,所读写的数据传输成功与否在所述显示屏15上进行显示,用户可以通过所述显示屏15看到读写结果,通过该数据判断此次读写的数据是否正确,避免数据操作过程中可能导致的数据传输错误。After the generation of dynamic time stamp and the generation and verification of dynamic device fingerprint code, the data of the smart card 12 can be read, written and encrypted. The reading and writing results can be seen through the display screen 15, and the data can be used to judge whether the data read and written this time is correct, so as to avoid data transmission errors that may be caused during the data operation.

本发明的智能卡系统的动态密钥更新认证方法如下:The dynamic key renewal authentication method of smart card system of the present invention is as follows:

(1)所述远端服务器14通过所述时间戳生成与验证模块不定时向所述射频读写器13发送一组新生成的时间戳,并同时将所述时间戳通过所述安全模块生成一组新的设备指纹码;(1) The remote server 14 sends a group of newly generated time stamps to the radio frequency reader 13 from time to time through the time stamp generation and verification module, and simultaneously generates the time stamps through the security module A new set of device fingerprints;

(2)所述射频读写器收到新时间戳后,所述MCU模块10调用所述FLASH存储模块8中的旧时间戳,并判断新时间戳是否大于旧时间戳;(2) after the radio frequency reader/writer receives the new time stamp, the MCU module 10 transfers the old time stamp in the FLASH storage module 8, and judges whether the new time stamp is greater than the old time stamp;

(3)若新时间戳大于旧时间戳,所述FLASH存储模块8的旧时间戳更换为新时间戳,启动所述动态密码生成模块,生成新的设备指纹码,并利用新、旧设备指纹码分别对新时间戳进行加密后作为返回值,发送给所述远端服务器14,否则射频读写器13只返回旧设备指纹码加密的新时间戳信息返回值;(3) If the new time stamp is greater than the old time stamp, the old time stamp of the FLASH storage module 8 is replaced with a new time stamp, and the dynamic password generation module is started to generate a new device fingerprint code, and utilize new and old device fingerprints The code encrypts the new time stamp respectively as a return value and sends it to the remote server 14, otherwise the radio frequency reader 13 only returns the new time stamp information return value encrypted by the fingerprint code of the old device;

(4)所述远端服务器14对所述射频读卡器13的返回值分别经新、旧设备指纹码解密后进行判断,当返回值与所述远端服务器14生成的新时间戳一致时,所述智能卡系统动态密码更新完成,认定线路端不存在恶意攻击的安全隐患,否则所述智能卡系统启动重新更新认证程序或启动所述警报器;(4) The remote server 14 judges the return value of the radio frequency card reader 13 after decrypting the fingerprint codes of the new and old devices respectively, and when the return value is consistent with the new time stamp generated by the remote server 14 , the dynamic password update of the smart card system is completed, and it is determined that there is no potential safety hazard of malicious attack at the line end, otherwise the smart card system starts a re-update authentication program or starts the alarm;

(5)当对所述智能卡进行数据读写时,所述远程服务器14利用新设备指纹码对读取的数据信息进行加密后传输或解密从线路传输过来的信息写入智能卡。所述射频读卡器13利用新设备指纹码对所述智能卡12读出的数据加密后传输或解密线路传输过来的信息。(5) When reading and writing data to the smart card, the remote server 14 encrypts the read data information using the new device fingerprint code and then transmits or decrypts the information transmitted from the line and writes it into the smart card. The radio frequency card reader 13 encrypts the data read by the smart card 12 by using the fingerprint code of the new device, and then transmits or decrypts the information transmitted by the line.

本发明的智能卡系统的动态密钥更新认证方法进一步为:The dynamic key update authentication method of the smart card system of the present invention is further as follows:

当远端服务器14接收到所述射频读写器13返回值后,利用所述远端服务器14生成的新设备指纹码对返回值进行解密,当所解密出的时间戳值跟新时间戳值一致时,所述智能卡系统的新设备指纹码更新完毕,并可认定线路端不存在恶意攻击的安全隐患;当收到的时间戳信息与所述远端服务器14时间戳不一致时,或未收到所述射频读写器13返回信息时,所示超时处理模块启动,重新进行一次时间戳传输认证;连续三次线路认证后,所述远端服务器14仍未收到所述射频读写器13返回的正确时间戳信息,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器5启动。After the remote server 14 receives the return value from the radio frequency reader 13, use the new device fingerprint code generated by the remote server 14 to decrypt the return value, when the decrypted timestamp value is consistent with the new timestamp value , the new device fingerprint code of the smart card system has been updated, and it can be determined that there is no potential safety hazard of malicious attack at the line end; when the received timestamp information is inconsistent with the remote server 14 timestamp, or the received When the radio frequency reader 13 returns information, the timeout processing module is started, and the time stamp transmission authentication is performed again; after three consecutive line authentications, the remote server 14 has not yet received the return from the radio frequency reader 13. The correct time stamp information, the smart card system determines that there is serious interference or disconnection at the line end, terminates the communication, and the alarm 5 starts.

进一步地,所述智能卡系统的线路端认证后,在所述远端服务器上的所述监控显示屏2显示认证结果。Further, after the line end of the smart card system is authenticated, the monitoring display screen 2 on the remote server displays the authentication result.

通过动态发送时间戳,动态更新射频读卡器的设备指纹码并验证,才能安全的对所述智能卡12数据进行读写操作,其动态设备指纹码更新认证的结果还可通过所述显示屏15显示,据此可判断此次动态设备指纹码更新是否成功。By dynamically sending the time stamp, dynamically updating and verifying the device fingerprint code of the radio frequency card reader, the smart card 12 data can be safely read and written, and the result of the dynamic device fingerprint code update authentication can also be passed through the display screen 15 is displayed, based on which it can be judged whether the dynamic device fingerprint code update is successful.

以上的方法通过产生的动态时间戳,及时更新设备指纹码,并利用该指纹码对线路传输的智能卡数据进行加密和解密,以保证智能卡系统的线路端通信安全性,以及涉密信息数据的安全性。The above method updates the fingerprint code of the device in time through the generated dynamic time stamp, and uses the fingerprint code to encrypt and decrypt the smart card data transmitted by the line, so as to ensure the security of the line-side communication of the smart card system and the security of confidential information data sex.

以上的具体实施方式仅为本创作的较佳实施例,并不用以限制本创作,凡在本创作的精神及原则之内所做的任何修改、等同替换、改进等,均应包含在本创作的保护范围之内。The specific implementation above is only a preferred embodiment of this creation, and is not intended to limit this creation. Any modifications, equivalent replacements, improvements, etc. made within the spirit and principles of this creation should be included in this creation. within the scope of protection.

Claims (8)

1.一种智能卡系统,其特征在于:包括智能卡,射频读写器以及远端服务器;其中,1. A smart card system, characterized in that: comprising a smart card, a radio frequency reader and a remote server; wherein, 所述远端服务器包括时间戳生成与验证模块,安全模块,超时处理模块,监控显示屏以及警报器;其中,所述时间戳生成与验证模块用于不定时向所述射频读写器提供系统时间戳信息,并验证所述射频读写器返回的利用新、旧设备指纹码加密的时间戳信息和所述远程服务器利用射频读写器的新、旧设备指纹码对返回值解密后的时间戳信息是否一致;所述安全模块用于将所述远端服务器与所述射频读写器之间传输的数据进行加密和解密。The remote server includes a timestamp generation and verification module, a security module, a timeout processing module, a monitoring display screen and an alarm; wherein, the timestamp generation and verification module is used to provide system information to the radio frequency reader from time to time. Timestamp information, and verify the timestamp information encrypted by the new and old device fingerprints returned by the RF reader and the time after the remote server decrypts the returned value by using the new and old device fingerprints of the RF reader Whether the stamp information is consistent; the security module is used to encrypt and decrypt the data transmitted between the remote server and the radio frequency reader. 所述射频读写器包括MCU模块,射频收发模块,通信接口模块,FLASH存储模块。其中,所述FLASH存储模块用于存储基于时间戳的新旧设备指纹码;所述MCU模块包含一个动态密码生成模块和数据加解密模块,动态密码生成模块用于当射频读写器接收到所述远端服务器发送的新时间戳时,判断新时间戳是否大于所述FLASH存储模块中保存的旧时间戳,当成立时,启动所述动态密码生成模块,生成一组动态密码作为新设备指纹码,并利用新、旧设备指纹码分别对新时间戳进行加密后作为密码更新确认返回值,发送给所述远端服务器,数据加解密模块完成数据加密和解密功能;所述通信接口模块包含RS232接口、RS485接口或USB接口。The radio frequency reader includes an MCU module, a radio frequency transceiver module, a communication interface module, and a FLASH storage module. Wherein, the FLASH storage module is used to store the old and new device fingerprints based on time stamps; the MCU module includes a dynamic password generation module and a data encryption and decryption module, and the dynamic password generation module is used when the radio frequency reader receives the When the new time stamp sent by the remote server, judge whether the new time stamp is greater than the old time stamp stored in the FLASH storage module, when established, start the dynamic password generation module to generate a group of dynamic passwords as the new device fingerprint code , and use the new and old device fingerprint codes to encrypt the new time stamp respectively as the password update confirmation return value, and send it to the remote server, and the data encryption and decryption module completes the data encryption and decryption functions; the communication interface module includes RS232 interface, RS485 interface or USB interface. 2.如权利要求1所述的智能卡系统,其特征在于:所述安全模块包括用于使用对称密码通信的数据进行加解密运算的对称密码算法模块,以及用于进行哈希运算的哈希运算模块。2. The smart card system according to claim 1, characterized in that: the security module includes a symmetric cryptographic algorithm module for encrypting and decrypting data communicated using symmetric ciphers, and a hash operation for performing hash operations module. 3.如权利要求2所述的智能卡系统,其特征在于:所述远端服务器通过所述时间戳生成与验证模块不定时向所述射频读写器发送一组新生成的时间戳,并同时将所述时间戳通过所述安全模块生成一组新的设备指纹码;所述射频读写器收到新时间戳后,所述MCU模块判断收到的新时间戳是否大于旧时间戳;当新时间戳大于旧时间戳时,射频读写器重新计算后生成新的设备指纹码作为数据传输加解密码,并将新时间戳分别经新、旧设备指纹码加密后返传给所述远端服务器作为动态密钥更新确认信息。否则仅将时间戳经旧设备指纹码加密后返传给所述远端服务器作为动态密钥更新确认信息。3. The smart card system according to claim 2, wherein: the remote server sends a group of newly generated timestamps to the radio frequency reader from time to time through the timestamp generation and verification module, and simultaneously Generate a set of new device fingerprint codes with the time stamp through the security module; after the radio frequency reader receives the new time stamp, the MCU module judges whether the received new time stamp is greater than the old time stamp; when When the new time stamp is greater than the old time stamp, the RF reader will recalculate and generate a new device fingerprint code as the encryption and decryption code for data transmission, and then encrypt the new time stamp with the new and old device fingerprint codes and return it to the remote device. The end server serves as a dynamic key update confirmation message. Otherwise, only the time stamp is encrypted by the fingerprint code of the old device and sent back to the remote server as dynamic key update confirmation information. 4.如权利要求3所述的智能卡系统,其特征在于:所述远端服务器及时接收到所述射频读写器返回值后,所述远端服务器分别利用该射频读写器的新、旧设备指纹码对收到的返回信息进行解密后进行比较判定,当返回的新时间戳值与所述远端服务器已生成的新时间戳一致时,说明所述远端服务器收到所述射频读写器返回的动态密钥更新确认信息,智能卡系统动态密钥更新完成,所述智能卡系统认定线路端不存在恶意攻击的安全隐患,启用该射频读写器的新设备指纹码作为加解密密钥对收发数据进行加密和解密;当不一致时,重新进行一次更新认证。连续三次更新认证后,仍不一致时,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器启动。4. The smart card system according to claim 3, characterized in that: after the remote server receives the return value of the RF reader in time, the remote server utilizes the new and old IDs of the RF reader respectively. The device fingerprint code decrypts the returned information and compares and judges it. When the returned new timestamp value is consistent with the new timestamp generated by the remote server, it means that the remote server has received the RF read message. The dynamic key update confirmation information returned by the writer, the smart card system dynamic key update is completed, the smart card system determines that there is no potential security risk of malicious attacks at the line end, and the new device fingerprint code of the RF reader is enabled as the encryption and decryption key Encrypt and decrypt the sent and received data; if inconsistent, perform an update authentication again. After updating the authentication three times in a row, if the authentication is still inconsistent, the smart card system determines that there is serious interference or disconnection at the line end, terminates the communication, and activates the alarm. 5.如权利要求4所述的智能卡系统,其特征在于:所述远端服务器发送新生成的时间戳后,启动所示超时处理模块,当超时处理模块计时时间到时,仍未收到所述射频读写器返回的动态密钥更新完成确认信息时,重新启动所示超时处理模块,并进行再一次更新认证;重新进行一次更新认证后,所述远端服务器收到所述射频读写器返回的动态密钥更新确认信息,所述智能卡系统认定线路端不存在恶意攻击。若重新进行三次更新认证后,所述远端服务器仍未收到所述射频读写器返回的动态密钥更新确认信息,所述智能卡系统认定线路端存在严重干扰或发生断路,终止通信,所述警报器启动。5. The smart card system according to claim 4, wherein: after the remote server sends the newly generated timestamp, it starts the overtime processing module, and when the timeout of the overtime processing module expires, it still has not received the time stamp. When the dynamic key update confirmation information returned by the radio frequency reader is completed, restart the timeout processing module shown, and perform an update authentication again; after performing an update authentication again, the remote server receives the radio frequency The dynamic key update confirmation information returned by the device, the smart card system determines that there is no malicious attack on the line end. If the remote server has not received the dynamic key update confirmation information returned by the radio frequency reader after re-updating the authentication three times, the smart card system determines that there is serious interference or a disconnection at the line end, and terminates the communication. The above alarm is activated. 6.一种如权利要求1至4项任意一项所述的智能卡系统的动态密钥更新认证方法,其特征在于:包括如下步骤:6. A dynamic key update authentication method of the smart card system according to any one of claims 1 to 4, characterized in that: comprising the steps of: 步骤一:所述远端服务器通过所述时间戳生成与验证模块不定时向所述射频读写器发送一组新生成的时间戳,并同时将所述时间戳通过所述安全模块生成一组新的设备指纹码;Step 1: The remote server sends a set of newly generated timestamps to the RF reader from time to time through the timestamp generation and verification module, and generates a set of timestamps through the security module at the same time. new device fingerprint; 步骤二:所述射频读写器收到新时间戳后,所述MCU模块调出所述FLASH存储模块的旧时间戳,并判断新时间戳是否大于旧时间戳;Step 2: After the RF reader/writer receives the new time stamp, the MCU module calls out the old time stamp of the FLASH storage module, and judges whether the new time stamp is greater than the old time stamp; 步骤三:若新时间戳大于旧时间戳,将所述FLASH存储模块的旧时间戳更换为该新时间戳,启动所述动态密码生成模块,生成新的设备指纹码,并分别利用新、旧设备指纹码对新时间戳进行加密后作为密码更新确认值,发送给所述远端服务器;否则所述射频读写器只利用旧设备指纹码对新时间戳进行加密,作为返回值;Step 3: If the new time stamp is greater than the old time stamp, replace the old time stamp of the FLASH storage module with the new time stamp, start the dynamic password generation module, generate a new device fingerprint code, and use the new and old time stamps respectively The device fingerprint code encrypts the new time stamp as a password update confirmation value and sends it to the remote server; otherwise, the RF reader only uses the old device fingerprint code to encrypt the new time stamp as a return value; 步骤四:所述远端服务器对所述射频读卡器的返回值分别经新、旧设备指纹码解密后进行判断,当返回的新时间戳值与所述远端服务器已生成的新时间戳一致时,所述智能卡系统动态密码更新完成,认定线路端不存在恶意攻击的安全隐患,否则所述智能卡系统启动重新更新认证程序或启动所述警报器;Step 4: The remote server judges the return value of the radio frequency card reader after decrypting the fingerprint codes of the new and old devices respectively. When the returned new timestamp value is consistent with the new timestamp generated by the remote server When consistent, the update of the dynamic password of the smart card system is completed, and it is determined that there is no potential safety hazard of malicious attack at the line end, otherwise the smart card system starts a new update authentication program or starts the alarm; 步骤五:当对所述智能卡进行数据读写时,所述远程服务器利用新设备指纹码作为密钥对数据信息进行加密后传输或解密接收数据,所述射频读卡器利用新设备指纹码对所述智能卡读入数据加密后传输或解密从线路传输过来的信息。Step 5: When reading and writing data on the smart card, the remote server uses the fingerprint code of the new device as a key to encrypt the data information and then transmits or decrypts the received data, and the radio frequency card reader uses the fingerprint code of the new device to The data read by the smart card is encrypted and then transmitted or decrypted from the information transmitted from the line. 7.如权利要求6所述的智能卡系统的动态密钥更新认证方法,其特征在于:当远端服务器接收到所述射频读写器返回值后,利用所述远端服务器生成的新设备指纹码对返回值进行解密,当所解密出的时间戳值跟新时间戳值一致时,所述智能卡系统的新设备指纹码更新完毕,并可认定线路端不存在恶意攻击的安全隐患;收到的时间戳信息与所述远端服务器时间戳不一致时,或未收到所述射频读写器返回信息时,所示超时处理模块启动,重新进行一次时间戳传输认证;连续三次更新认证后,所述远端服务器仍未收到所述射频读写器返回的正确时间戳信息,所述智能卡系统认定线路端存在严重干扰或发生短路,终止通信,所述警报器启动。7. The dynamic key renewal authentication method of smart card system as claimed in claim 6, is characterized in that: after remote server receives described radio frequency reader return value, utilizes the new device fingerprint that described remote server generates Code to decrypt the return value, when the decrypted timestamp value is consistent with the new timestamp value, the new device fingerprint code of the smart card system has been updated, and it can be determined that there is no potential security risk of malicious attacks at the line end; the received When the time stamp information is inconsistent with the time stamp of the remote server, or when the information returned by the radio frequency reader is not received, the timeout processing module shown is started, and the time stamp transmission authentication is performed again; after three consecutive update authentications, all If the remote server has not received the correct time stamp information returned by the RF reader, the smart card system determines that there is serious interference or a short circuit at the line end, terminates the communication, and activates the alarm. 8.如权利要求7所述的智能卡系统的动态密钥更新认证方法,其特征在于:所述智能卡系统的密钥更新认证后,在所述远端服务器上的所述监控显示屏显示认证结果。8. The dynamic key renewal authentication method of smart card system as claimed in claim 7, it is characterized in that: after the key renewal authentication of described smart card system, the authentication result is displayed on the monitor screen on the remote server .
CN201310289791.XA 2013-07-11 2013-07-11 A kind of smart card system and dynamic key thereof upgrade authentication method Expired - Fee Related CN103324971B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310289791.XA CN103324971B (en) 2013-07-11 2013-07-11 A kind of smart card system and dynamic key thereof upgrade authentication method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310289791.XA CN103324971B (en) 2013-07-11 2013-07-11 A kind of smart card system and dynamic key thereof upgrade authentication method

Publications (2)

Publication Number Publication Date
CN103324971A true CN103324971A (en) 2013-09-25
CN103324971B CN103324971B (en) 2016-05-25

Family

ID=49193697

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310289791.XA Expired - Fee Related CN103324971B (en) 2013-07-11 2013-07-11 A kind of smart card system and dynamic key thereof upgrade authentication method

Country Status (1)

Country Link
CN (1) CN103324971B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104283689A (en) * 2014-10-20 2015-01-14 优仕达资讯股份有限公司 Wireless verification system and method thereof
CN105243542A (en) * 2015-11-13 2016-01-13 广西米付网络技术有限公司 System and method of dynamic electronic certificate authentication
CN105427105A (en) * 2014-09-11 2016-03-23 中兴通讯股份有限公司 Mobile payment method, system and device
CN105590071A (en) * 2015-12-16 2016-05-18 深圳雷美瑞智能控制有限公司 LED display screen encryption method, encrypted LED display screen and LED display screen control device
CN105850098A (en) * 2013-11-13 2016-08-10 金雅拓股份有限公司 System and method for ensuring communication between a card reader device and a remote server

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020188888A1 (en) * 2001-06-06 2002-12-12 Jochen Rivoir Method and apparatus for testing digital devices using transition timestamps
CN101145914A (en) * 2006-07-17 2008-03-19 捷讯研究有限公司 Automatic management of security information for a security token access device with multiple connections
CN101667308A (en) * 2008-09-04 2010-03-10 日电(中国)有限公司 Access control system, access control devices, access card and access control method
CN102687459A (en) * 2009-11-13 2012-09-19 精工电子有限公司 Server for long-term signature,terminal for long-term signature,terminal program for long-term signature,and server for long-term signature verification

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020188888A1 (en) * 2001-06-06 2002-12-12 Jochen Rivoir Method and apparatus for testing digital devices using transition timestamps
CN101145914A (en) * 2006-07-17 2008-03-19 捷讯研究有限公司 Automatic management of security information for a security token access device with multiple connections
CN101667308A (en) * 2008-09-04 2010-03-10 日电(中国)有限公司 Access control system, access control devices, access card and access control method
CN102687459A (en) * 2009-11-13 2012-09-19 精工电子有限公司 Server for long-term signature,terminal for long-term signature,terminal program for long-term signature,and server for long-term signature verification

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105850098A (en) * 2013-11-13 2016-08-10 金雅拓股份有限公司 System and method for ensuring communication between a card reader device and a remote server
CN105427105A (en) * 2014-09-11 2016-03-23 中兴通讯股份有限公司 Mobile payment method, system and device
CN104283689A (en) * 2014-10-20 2015-01-14 优仕达资讯股份有限公司 Wireless verification system and method thereof
CN105243542A (en) * 2015-11-13 2016-01-13 广西米付网络技术有限公司 System and method of dynamic electronic certificate authentication
CN105243542B (en) * 2015-11-13 2021-07-02 咪付(广西)网络技术有限公司 Dynamic electronic certificate authentication method
CN105590071A (en) * 2015-12-16 2016-05-18 深圳雷美瑞智能控制有限公司 LED display screen encryption method, encrypted LED display screen and LED display screen control device
CN105590071B (en) * 2015-12-16 2019-01-22 深圳雷美瑞智能控制有限公司 LED display encryption method, encryption LED display and LED display screen control device

Also Published As

Publication number Publication date
CN103324971B (en) 2016-05-25

Similar Documents

Publication Publication Date Title
CN112000975A (en) Key management system
CN107508679B (en) Binding and authentication method for intelligent terminal main control chip and encryption chip
CN101950347B (en) Method and system for encrypting data
CN101102194B (en) An OTP device and a method for identity authentication using the device
CN102801730B (en) Information protection method and device for communication and portable devices
CN102419805B (en) Terminal equipment and method for encrypting user information
JP2008533882A (en) How to backup and restore encryption keys
CN101483654A (en) Method and system for implementing authentication and data safe transmission
CN105989386A (en) Method and device for reading and writing radio frequency identification card
JP2007027896A (en) COMMUNICATION CARD, CONFIDENTIAL INFORMATION PROCESSING SYSTEM, CONFIDENTIAL INFORMATION TRANSFER METHOD, AND PROGRAM
CN113472793A (en) Personal data protection system based on hardware password equipment
CN103324971B (en) A kind of smart card system and dynamic key thereof upgrade authentication method
CN108900296B (en) Secret key storage method based on biological feature identification
CN104660397A (en) Secret key managing method and system
CN102468962A (en) Personal identity verification method using personal password device and personal password device
CN108270568A (en) A kind of mobile digital certificate device and its update method
CN112507296B (en) User login verification method and system based on blockchain
WO2019165571A1 (en) Method and system for transmitting data
CN101964805A (en) Method, equipment and system for safely sending and receiving data
CN101557588B (en) User certificate management and use method and mobile terminal thereof
CN103596175A (en) Mobile intelligent terminal certification system and method based on near field communication technology
CN118300905B (en) Ciphertext transmission method, device, equipment and medium based on secret authentication mode
CN101415185A (en) Mobile terminal, method and system for keeping secret of platform-striding information
CN105701390A (en) Encryption terminal remote management method, encryption terminal and manager
CN113536278B (en) Authentication method of storage device, storage device and authentication terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20160525

Termination date: 20190711

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载