CN101567055B - Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method - Google Patents
Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method Download PDFInfo
- Publication number
- CN101567055B CN101567055B CN2009101077673A CN200910107767A CN101567055B CN 101567055 B CN101567055 B CN 101567055B CN 2009101077673 A CN2009101077673 A CN 2009101077673A CN 200910107767 A CN200910107767 A CN 200910107767A CN 101567055 B CN101567055 B CN 101567055B
- Authority
- CN
- China
- Prior art keywords
- certificate
- password
- testimony
- information
- sign indicating
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to a testimony password interlock device, a testimony verification device, a testimony password interlock and testimony verification system, and a testimony password interlock and testimony verification method of legal certificate. The method has the steps of: the testimony password interlock device reads an information code from information written by certificate, and encrypts the information code into a certificate password, and then the certificate password is calculated into the an accredited code by setting a arithmetic relation, further more the certificate passwordand the accredited code constitute a arithmetic relation, then the accredited code is covered and outputted with the certificate for issuing to the legal holder; the testimony verification device reads an information code from certificate and encrypts into a certificate password to be verified; then the holder inputs the accredited code to be verified for verifying whether both of the sides are in accordance with the arithmetic relation, thereby realizing synchronous confirmations of the certificate and the holder. In addition, the device has perfect self-destroying protection function, so the device operator can not interfere and know the password generation, as well as the holder and the certificate rely on each other and verify mutually with a single corresponding relationship.
Description
Technical field
The present invention relates to certificate making, certificate and licensee's identity validation, more particularly, testimony password interlock, the testimony verification method that relates to a kind of testimony password interlock device, testimony verification device, testimony password interlock and testimony verification system of legal certificate and use this system.
Background technology
Certificate is the foundation that is used for confirming licensee's identity, and particularly legal certificate plays crucial effects in human society life.
Because of legal certificate such as I.D., passport exist loss, stolen, falsely use, pseudo-alter etc. may, the certificate that everybody worries oneself is used for being engaged in the thing that jeopardizes self legitimate rights and interests by other people, or is falsely used by other people because of the certificate of oneself and to be engaged in criminal activity with among the right and wrong and even case lawsuit that oneself are involved in for no reason.Even more serious is that it is current that the terrorist mostly uses the certificate of false papers or adulterium to obtain, and starts to target approach the attack of terrorism.
At present, false proof boundary only concentrates sight and rest on the truth identification to certificate itself, and rarely has substantive breakthroughs, and this can not address the above problem at all.Because even certificate is real, leak still exists, run into hold other people certificate person similar to legal holder appearance, be same sex twins, be blood brother, when being situations such as full sister, the photo of only going up with certificate can't be made accurate judgement to licensee's true identity at all.Existing certificate false proof has been ignored when confirming the certificate authenticity, and how whether instant exactly confirmation of synchronization licensee is the substantive issue at this key of legal holder.That is to say, so long as to the similar person of certificate photograph appearance, just can illegally hold and use this certificate, greatly reduce the accuracy of licensee's identity being confirmed with certificate.
Though identification means such as existing at present fingerprint, iris, DNA, these means are numerous and diverse because of the operation implementation procedure, and the instant confirmation of synchronization of certificate and holder identity is not still possessed feasibility.
Summary of the invention
Technical matters to be solved by this invention is, can't be constituted the defective of unique corresponding relation easily with holder by imitated, adulterium, certificate at certificate in the prior art, a kind of testimony password interlock device that can constitute unique corresponding relation by the mechanism controls of awaring a certificate, with certificate and holder is provided.
Another technical matters to be solved by this invention is, can't constitute the defective of unique corresponding relation with holder at certificate in the prior art, provide a kind of unique corresponding relation of utilizing certificate and holder to be constituted that certificate and licensee's identity are carried out the testimony verification device that interaction is examined.
Another technical matters to be solved by this invention is, can't be constituted the defective of unique corresponding relation easily with holder by imitated, adulterium, certificate at certificate in the prior art, provide a kind of can be respectively by the testimony password interlock and the testimony verification system that award a certificate, certifying organization's control, certificate and holder constitute unique corresponding relation.
Another technical matters to be solved by this invention is, at certificate in the prior art easily by imitated, adulterium, certificate can't with holder constitute unique corresponding relation defective, provide a kind of can be respectively by awaring a certificate, certifying organization's control, certificate and holder being constituted unique corresponding relation, certificate and licensee's identity are carried out the testimony verification method that interaction is examined.
The technical solution adopted for the present invention to solve the technical problems is: a kind of testimony password interlock device is provided, it is characterized in that, comprising:
The interlock information read module is used for reading information code from certificate with certificate under the collaborative work state;
The interlocking cryptographic module is connected with described interlock information read module, is used for the described information code that reads is encrypted, and forms the certificate password, and the computing that described certificate password work is set operation relation draws accredited sign indicating number;
Accredited code printing module is connected with described interlocking cryptographic module, is used for described accredited code printing at media, and described accredited sign indicating number is covered.
Wherein, described testimony password interlock device also comprises working power and self-destruction protection module; Described self-destruction protection module comprises the self-destruction battery charger that is connected with described working power, by the self-destruction rechargeable battery of described self-destruction battery charger charging, provide the self-destruction executive circuit of power supply and the self-destruction trigger circuit that control starts the work of described self-destruction executive circuit by described self-destruction rechargeable battery; Described self-destruction executive circuit is connected with described interlocking cryptographic module with described interlock information read module, and damages described interlock information read module and described interlocking cryptographic module when described self-destruction trigger circuit are triggered.
Wherein, described testimony password interlock device also comprise can with the information writing module of described certificate collaborative work, be used for holder customized information and/or random information sign indicating number are written to described certificate.
The present invention solves the technical scheme that its another technical matters adopts: a kind of testimony verification device is provided, comprises:
The verified information read module is used for reading from certificate under the collaborative work state with certificate and treats the verified information sign indicating number;
Examine cryptographic module, be connected, be used for the described verified information sign indicating number for the treatment of that is read is encrypted, form and wait to examine the certificate password with described verified information read module;
Accredited sign indicating number load module waits to examine accredited sign indicating number for licensee's input;
The password validating module is connected with described accredited sign indicating number load module with the described cryptographic module of examining respectively, is used for receiving and examines describedly waiting to examine the certificate password and describedly waiting to examine between accredited yard whether meet the setting operation relation, and draw verification result;
The verification result output module is connected with described password validating module, is used to show and/or the described verification result of the described password validating module of voice suggestion.
Wherein, described testimony verification device also comprises working power and self-destruction protection module; Described self-destruction protection module comprises the self-destruction battery charger that is connected with described working power, by the self-destruction rechargeable battery of described self-destruction battery charger charging, provide the self-destruction executive circuit of power supply and the self-destruction trigger circuit that control starts the work of described self-destruction executive circuit by described self-destruction rechargeable battery; Described self-destruction executive circuit is connected with described password validating module with described verified information read module, the described cryptographic module of examining, and when described self-destruction trigger circuit are triggered, damage described verified information read module, described cryptographic module and the described password validating module examined.
The present invention solves the technical scheme that its another technical matters adopts: a kind of testimony password interlock and testimony verification system are provided, comprise the certificate, testimony password interlock device and the testimony verification device that are provided with the Card read/write function; Described certificate has write customized information and/or random information sign indicating number by the information writing module;
Described testimony password interlock device comprises:
The interlock information read module is used for reading information code from described certificate with described certificate under the collaborative work state;
The interlocking cryptographic module is connected with described interlock information read module, is used to encrypt the described information code that reads, and the computing that forms the certificate password and described certificate password work is set operation relation draws accredited sign indicating number;
Accredited code printing module is connected with described interlocking cryptographic module, is used for described accredited code printing at media, and described accredited sign indicating number is covered;
Described testimony verification device comprises:
The verified information read module is used for reading from described certificate under the collaborative work state with described certificate and treats the verified information sign indicating number;
Examine cryptographic module, be connected, be used for the described verified information sign indicating number for the treatment of that reads is encrypted, form and wait to examine the certificate password with described verified information read module;
Accredited sign indicating number load module waits to examine accredited sign indicating number for licensee's input;
The password validating module is connected with described accredited sign indicating number load module with the described cryptographic module of examining respectively, is used for receiving and examines describedly waiting to examine the certificate password and describedly waiting to examine between accredited yard whether meet described setting operation relation, and draw verification result;
The verification result output module is connected with described password validating module, is used to show and/or the described verification result of the described password validating module of voice suggestion.
Wherein, in this testimony password interlock and testimony verification system, described customized information that described certificate writes and/or random information sign indicating number are at least a in binary code, magnet bar code, bar code, two-dimension code, the infrared information sign indicating number; The information interaction state that described collaborative work state is set up at least a mode by less radio-frequency, in contacting, swipe the card, scanning.
The present invention solves the technical scheme that its another technical matters adopts: a kind of testimony password interlock and testimony verification method are provided, comprise testimony password interlock step and testimony verification step, be written into customized information and/or random information sign indicating number in the described certificate;
Described testimony password interlock step comprises:
A1: described certificate and testimony password interlock device are set up the collaborative work state, start described testimony password interlock device, from the customized information of described certificate and/or random information sign indicating number, read information code;
A2: the described information code that is read is arranged in the certificate information sign indicating number;
A3: described certificate information code encryption is become the certificate password,
A4: the computing that described certificate password is set operation relation draws accredited sign indicating number;
A5: described accredited code printing to media, and with the covering of maintaining secrecy of described accredited sign indicating number, is presented to described media the holder in due course of described certificate again together with described certificate;
Described testimony verification step comprises:
B1: described testimony verification device and described certificate are set up the collaborative work state, start described testimony verification device, from described customized information that described certificate write and/or random information sign indicating number, read and treat the verified information sign indicating number;
B2: describedly treated that the verified information sign indicating number is arranged in and wait to examine the certificate information sign indicating number with what read;
B3: wait to examine the certificate information code encryption and become to wait to examine the certificate password with described;
B4: prompting licensee input waits to examine accredited sign indicating number;
B5: wait to examine the certificate password and describedly wait to examine accredited sign indicating number and check described by described testimony verification device, examine whether meet described setting operation relation between the two;
B6: show and/or the voice suggestion verification result.
Wherein, in the described steps A 1 of this testimony password interlock and testimony verification method, described testimony password interlock device by the identification from described customized information that described certificate write and/or random information sign indicating number of the information fetch program of setting, instruction, read out the described information code of disperseing to be hidden in wherein;
Described steps A 2 comprises: by the information code alignment problem of setting, instruction the information code that is read is arranged in the certificate information sign indicating number;
Described steps A 3 comprises:
Described testimony password interlock device carries out a step or above encryption, one or more cryptographic algorithm of a step, key is arranged and/or does not have the encryption of secret key cryptographic algorithm described certificate information sign indicating number by the encipheror of setting and cryptographic algorithm, encrypts described certificate password;
Described steps A 4 comprises: described certificate password is carried out computing by above setting operation relation of a step or a step, one or more setting operation relation, the setting operation relation that key is arranged and/or do not have a key, draw described accredited sign indicating number.
Wherein, the described step B1 of this testimony password interlock and testimony verification method comprises:
Described testimony verification device by the identification from described customized information that described certificate write and/or random information sign indicating number of information fetch program of the described setting consistent, instruction with described steps A 1, read out the described verified information sign indicating number for the treatment of that disperses to be hidden in wherein; And treat that the verified information sign indicating number is arranged in and wait to examine the certificate information sign indicating number described by the information code alignment problem of the described setting consistent, instruction with described steps A 2;
Described step B3 comprises: described testimony verification device is waited to examine the certificate information sign indicating number and is carried out a step or above encryption, one or more cryptographic algorithm of a step, key is arranged and/or do not have the encryption of secret key cryptographic algorithm described by the encipheror of the described setting consistent with described steps A 3 and cryptographic algorithm, encrypts the described certificate password of waiting to examine;
Wait to examine the certificate password described in the described step B5 and describedly wait to examine that accredited sign indicating number carried out checks to be meant to examine whether meet the setting operation relation described in the described steps A 4 between the two.
Implement the present invention and have following beneficial effect:
Extract information codes customized information that the present invention is stored from certificate itself and/or the random information sign indicating number, encrypt the certificate password, calculate accredited sign indicating number by the certificate password by setting operation relation again, award a certificate mechanism after the true identity of confirming legal holder, just to legal holder issue certificates and accredited sign indicating number, make and form unique corresponding, relation of locking each other between certificate and the holder; The existence of accredited sign indicating number makes forgery, adulterium certificate lose meaning because of obtaining accredited sign indicating number; And, reading of information code is to be read by identification by the testimony password interlock device, the operator of mechanism of awaring a certificate can't intervene, know the generation of accredited sign indicating number, and accredited sign indicating number has only the legal keeping talent of certificate to know, and has fundamentally stopped to falsely use the possibility of other people certificate; Have only at certificate true and licensee's input wait examine accredited sign indicating number with encrypt according to certificate wait to examine when meeting the setting operation relation between the certificate password, can pass through testimony verification; Legal certificate and legal holder are logically relied on each other, and indispensable, having realized having only legal holder to hold the true certificate of oneself could be by the instant confirmation of synchronization of certificate and holder identity.
Description of drawings
The invention will be further described below in conjunction with drawings and Examples, in the accompanying drawing:
Fig. 1 is the schematic block diagram of testimony of a witness password interlock device of the present invention;
Fig. 2 is the schematic block diagram of testimony of a witness validation apparatus of the present invention;
Fig. 3 is the process flow diagram of testimony of a witness password interlock step of the present invention;
Fig. 4 is the process flow diagram that the testimony of a witness of the present invention is examined step.
Embodiment
In an embodiment of testimony password interlock of the present invention and testimony verification system, comprise the certificate 300, testimony password interlock device 100 and the testimony verification device 200 that are provided with the Card read/write function.Testimony password interlock device 100 and testimony verification device 200 can be used as independently separately manufacturing of product, use.
This certificate 300 (be used for as I.D., passport, bank card etc. media that licensee's identity is confirmed) can be inserted the chip read-write system at suitable position, this chip read-write system comprises information interactive device and storer, can be by the Card read/write system with in the information write-in memory.The information that writes can comprise customized information, random information sign indicating number of holder etc.The present invention does not influence and certificate 300 is carried out other information loads (as photographic printing, to the inserting of holder customized information, number is provided with etc.), can not produce obstacle to the normal production process of certificate.
As shown in Figure 1, this testimony password interlock device 100 is controlled to be configured in the legal mechanism that awards a certificate, thereby realizes the control of certificate 300 is issued.This testimony password interlock device 100 comprises interlock information read module 105, interlocking cryptographic module 104, accredited code printing module 102 etc.Certainly, this testimony password interlock device 100 is provided with shell, and above-mentioned module close and protect is got up.Interlock information read module 105, interlocking cryptographic module 104, self-destruction protection module can be integrated in the microprocessor chip, also can separately be born by more than one a plurality of microprocessor chips; And accredited code printing module 102 can be integrated in the shell with interlock information read module 105, interlocking cryptographic module 104 and self-destruction protection module, also can divide to be arranged.
This interlock information read module 105 can be set up the collaborative work state with certificate 300, and reads the information code in the certificate 300.Wherein, interlock information read module 105 and the collaborative work state of certificate 300 can be the information interaction states that at least a means by less radio-frequency, in contacting, swipe the card, scanning are set up; This collaborative work state has been avoided carrying out the risk that the online data transmission is attacked by network, and is safe and reliable.
Interlock information read module 105 is by sending instructions to the information interactive device of certificate 300, and by information fetch program, the instruction set, read the information code in the certificate 300, for example, interlock information read module 105 includes address information in the instruction of the information interactive device inlet transmission of certificate 300, discern, read corresponding address institute canned data sign indicating number by interlock information read module 105, be arranged in the certificate information sign indicating number by interlock information read module 105 by the information code alignment problem of setting, instruction again.For example: by the information fetch program of setting, instruction from the A address, read out " 1 ", from (A+B) address, read out " 0 ", from (A+C) address, read out " 1 " ... from (A+X) address, read out the 24th information code " 0 ", just can arrange out certificate information code " 0,010 10,111,001 0,110 0,101 0111 " according to the information code alignment problem of setting, instruction.Certainly, the address that information code is read and to putting in order of reading information code can carry out random procedure as required, instruction is set.
This interlocking cryptographic module 104 is connected with interlock information read module 105, receives the certificate information sign indicating number of being arranged out by interlock information read module 105, and this certificate information sign indicating number is encrypted to the certificate password by encipheror and the cryptographic algorithm set; Then, according to setting operation relation, the certificate crypto-operation is become accredited sign indicating number again.Wherein, according to encipheror and the cryptographic algorithm set, can carry out a step or above encryption, one or more cryptographic algorithm of a step, key is arranged and/or not have the encryption of key algorithm, encrypt the certificate password the certificate information code; Again the certificate password is carried out computing by the setting operation relation of above setting operation relation of a step or a step, one or more operational methods, the setting operation relation that key arranged and/or do not have a key, calculate accredited sign indicating number.For example, also can be simply the operation relation between certificate password and the accredited sign indicating number be set at the certificate password is 1 with accredited yard ratio.Be a comparatively complicated cryptographic algorithm and set the operation relation example that certainly, the present invention can select any encryption method as required and set operation relation arbitrarily and table 1 provides.
The encryption of table 1 certificate password and the setting operation relation that forms accredited sign indicating number are for example
| Step | The program that sets, instruction and cryptographic algorithm, operation relation | Corresponding code character or result |
| 1 | From certificate, discern, read and list the certificate information sign indicating number side by side | 0010?1011?1001?0110?0101?0111 |
| 2 | Cryptographic calculation goes out the complement code of certificate information code | 1101?0100?0110?1001?1010?1001 |
| 3 | Cryptographic calculation goes out the sign indicating number of putting upside down of certificate information code | 1110?1010?0110?1001?1101?0100 |
| 4 | With complement code with put upside down the sign indicating number carry out the false add computing, draw the false add sign indicating number | 0011?1110?0000?0000?0111?1101 |
| Be set in the key in the testimony password interlock device | 0100?1010?1001?0101?0001?0110 | |
| 5 | False add sign indicating number and key are added computing entirely, draw the certificate password | 1000?1000?1001?0101?1001?0011 |
| With scale-of-two certificate password representation (in fact the certificate password is not because of appearing, and can not carry out this decoding, for ease of statement, representation decimally herein) decimally | 8 8 9 5 9 3 | |
| 6 | (the setting operation relation of present embodiment is: accredited sign indicating number=certificate password * 3+7) computing draws accredited sign indicating number by setting operation relation with the certificate password | 889593×3+7=2668786 |
This accredited code printing module 102 is connected with interlocking cryptographic module 104, interlocking cryptographic module 104 is encrypted and accredited sign indicating number that computing obtains is printed on the media with decimal code, and accredited yard is covered.For example, by printhead with accredited code printing on the scraps of paper or film, and have the position of accredited sign indicating number to cover in printing can to scrape coating, hide etc. with strip of paper used for sealing.Then this media is presented to legal holder together with certificate 300.This accredited code printing module 102 can be arranged in the same shell with interlocking cryptographic module 104, interlock information read module 105, information writing module 103, self-destruction protection module etc., also can be arranged to split-type structural.
Certainly, hold more code character, so that to the memory of accredited sign indicating number and promote the anti-attack strength of accredited sign indicating number, accredited also available sexadecimal of sign indicating number or duotricemary notation even 60 quaternary codes are represented for realizing limited figure place.For example: six decimal codes can only be held the accredited sign indicating number of 999999+1 group, and six duotricemary notation sign indicating numbers just can hold the accredited sign indicating number of 1073741823+1 group, be to adopt six bit codes equally, the accredited code character that the duotricemary notation sign indicating number is held has but had more one over thousands of times than decimal code.In actual applications, as long as 26 English alphabets are removed B, I, O, L, these five letters of P,, all can form the duotricemary notation sign indicating number jointly with 0 to 9 these ten arabic numeral easily no matter adopt upper case or lower case.
Further, this testimony password interlock device 100 also can comprise information writing module 103.This information writing module 103 can be written to holder customized information and/or random information sign indicating number in the certificate 300 with certificate 300 under the collaborative work state.The information code that writes can be the customized information stream that machine selects magnanimity random data code stream or holder.The information writing module also can not be arranged in the testimony password interlock device 100, and directly finished by original intelligent certificate making device certificate is carried out writing of customized information.
Customized information that this information writing module 103 writes in certificate 300 and/or random information sign indicating number are at least a in binary code, magnet bar code, one dimension sign indicating number, two-dimension code, the infrared information sign indicating number.
Further, be not cracked and keep its operate as normal in order to guarantee testimony password interlock device 100, this device also is provided with working power 101 and self-destruction protection module.The self-destruction protection module comprises the self-destruction battery charger 108 that is connected with working power 101, by the self-destruction rechargeable battery 109 of self-destruction battery charger 108 chargings, provide the self-destruction executive circuit 107 of power supply and the self-destruction trigger circuit 110 that control starts 107 work of self-destruction executive circuit by self-destruction rechargeable battery 109.This working power 101 is for having the working power of mu balanced circuit and under-voltage prompting, is respectively interlock information read module 105, interlocking cryptographic module 104, information writing module 103, accredited code printing module 102, self-destruction battery charger 108 power supply is provided.Working power 101 can be built-in battery in the enclosure, also can be external civil power.The output terminal of self-destruction executive circuit 107 is connected with the self-destruction input end of interlock information read module 105 and interlocking cryptographic module 104; implement the high-voltage breakdown damage by self-destruction trigger circuit 110 controls startup the, 107 pairs of interlock information read modules 105 of self-destruction executive circuit and interlocking cryptographic module 104 and maybe program, instruction, the key set are deleted, covered, realize the self-destruction protection.
These self-destruction trigger circuit 110 comprise at least a circuit in magnetic control trigger circuit, photosensitive trigger circuit, vacuum forfeiture trigger circuit, dismounting movement trigger circuit and the under-voltage trigger circuit.Be connected on the controlled input end of self-destruction executive circuit 107 after the output terminal parallel connection of each trigger circuit in these self-destruction trigger circuit 110.
Wherein, the magnetic control trigger circuit comprise a pair or more of magnet and are symmetric offset spread; Magnetic switch in the magnetic control trigger circuit is in the balance magnetic field of magnet center of symmetric offset spread.Because homopolarity is relative, magnetic field offsets and not to magnetic switch generation effect, an in case shell of dismounting testimony password interlock device 100, can cause one in the magnet to produce displacement, no longer cancelling out each other in the magnetic field of two magnet generations, is subjected to the action of a magnetic field of the single magnet in the magnet, and the magnetic switch state takes place to change and the magnetic control trigger circuit are triggered, and export control signal immediately, start 107 work of self-destruction executive circuit.
These photosensitive trigger circuit are provided with photosensitive device; In case pry open the shell of testimony password interlock device 100, the photosensitive trigger circuit in the shell can be triggered because of seeing light, and export control signal immediately, start 107 work of self-destruction executive circuit.
After containing interlock information read module 105, interlocking cryptographic module 104 etc. by sealing bag or closed container, these vacuum forfeiture trigger circuit vacuumize; form the vacuum protection state; when hermetically-sealed construction destroyed and make vacuum state when forfeiture; the draught head sensor that is provided with in it changes state and triggers this circuit; export control signal immediately, start 107 work of self-destruction executive circuit.
These dismounting movement trigger circuit comprise trigger switch.This trigger switch is by being arranged on the array that is chained together on the circuit board that comprises interlock information read module 105 and interlocking cryptographic module 104, being positioned at circuit board and tightening the anti-dismounting contact and the securing member termination of pressing under the position firmware termination and form, in case the securing member of loosening any one fixing circuit board, the trigger switch that just can cause being chained together triggers the dismounting trigger circuit because of disconnection, and export control signal immediately, start 107 work of self-destruction executive circuit.
These under-voltage trigger circuit are voltage comparator circuits, and when the voltage of self-destruction rechargeable battery 109 dropped to the under-voltage value of setting, these under-voltage trigger circuit were triggered, and export control signal immediately, start 107 work of self-destruction executive circuit.
More than in five trigger circuit, as long as one or more are triggered, self-destruction trigger circuit 110 can be immediately to the controlled end input control signal of self-destruction executive circuit 107, start 107 work of self-destruction executive circuit, if self-destruction executive circuit 107 has been activated, then at the output terminal of self-destruction executive circuit output high pressure or deletion, covering signal self-destruction input end, its punch through damage is maybe deleted the program that sets, instruction, key etc., cover in moment to interlock information read module 105 and interlocking cryptographic module 104.
This self-destruction executive circuit 107 can be booster circuit or program, instruction, key deletion, cover circuit; When adopting booster circuit, when being activated, the output high pressure is implemented punch through damage to the chip at interlock information read module 105 and interlocking cryptographic module 104 places; And when adopt deletion, when covering circuit, can be by the output write signal, with the program in interlock information read module 105 and the interlocking cryptographic module 104, instruction, key etc. delete, operation such as covering.
Cause damage for fear of testimony password interlock device 100 107 pairs of interlock information read modules 105 of self-destruction executive circuit and interlocking cryptographic module 104 in the assembly and adjustment process, can be in advance between the self-destruction input end of the output terminal of self-destruction executive circuit 107 and interlock information read module 105 and interlocking cryptographic module 104, insert para tape, after finishing assembling test, pull out this para tape again, and the outlet of sealing para tape, the output terminal of self-destruction executive circuit 107 and the self-destruction input end of interlock information read module 105 and interlocking cryptographic module 104 are connected, thereby enabled self-destruction trigger circuit 107.
As shown in Figure 2, testimony verification device 200 is controlled to be disposed at needs mechanism that certificate and licensee's identity are examined, be used for certificate 300 and licensee's identity are examined immediately synchronously, this testimony verification device 200 comprises verified information read module 206, examines cryptographic module 205, accredited sign indicating number load module 204, password validating module 203, verification result output module 202 etc.Certainly, this testimony verification device 200 also is provided with shell, and above-mentioned module close and protect is got up.Verified information read module 206, examine cryptographic module 205, accredited sign indicating number load module 204, password validating module 203, verification result output module 202 etc. and can be integrated in the microprocessor chip, also can separately bear by more than one a plurality of microprocessor chips.
This verified information read module 206 can read under the collaborative work state with certificate 300 and treat the verified information sign indicating number in the certificate 300.Wherein, the information interaction state that can set up at least a means of the collaborative work state of verified information read module 206 and certificate 300 by less radio-frequency, in contacting, swipe the card, scanning.This collaborative work state has been avoided carrying out the risk that the online data transmission is attacked by network, and is safe and reliable.Certainly, this collaborative work state should be consistent with the collaborative work state that testimony password interlock device and certificate 300 are set up.
Verified information read module 206 is by sending instructions to the information interactive device of certificate 300, and by information fetch program, the instruction set, read and treat the verified information sign indicating number in the certificate 300, for example, verified information read module 206 includes address information in the instruction of the information interactive device inlet transmission of certificate 300, by verified information read module 206 identification, read that corresponding address stores treat the verified information sign indicating number, be arranged in by verified information read module 206 by the information code alignment problem of setting, instruction again and wait to examine the certificate information sign indicating number.For example: from the A address, read out " 1 ", from (A+B) address, read out " 0 ", from (A+C) address, read out " 1 " ... from (A+X) address, read out the 24th information code " 0 ", just can arrange out certificate information code " 0,010 1,011 1,001 01,100,101 0111 " according to the information code alignment problem of setting, instruction.Its read information code the address and should be consistent to putting in order of reading information code with information code alignment problem, the instruction of information fetch program, instruction and the setting set in the interlock information read module 105 of testimony password interlock device 100.
This is examined cryptographic module 205 and is connected with verified information read module 206, reception is waited to examine the certificate information sign indicating number by what verified information read module 206 arranged out, and treat and examine the certificate information sign indicating number and encrypt according to encipheror and the cryptographic algorithm set, draw and wait to examine the certificate password.Certainly, this waits to examine that the encipheror of certificate password and cryptographic algorithm should to form the encipheror and the cryptographic algorithm of certificate passwords consistent with testimony password interlock device 100.
This accredited sign indicating number load module 204 is used for waiting to examine accredited sign indicating number for licensee's input, and for true certificate 300, waiting to examine accredited sign indicating number should be consistent with the accredited sign indicating number that testimony password interlock device 100 forms.Accredited sign indicating number load module 204 can be input medias such as input keyboard, touch-screen.
This password validating module 203 respectively with examine cryptographic module 205 and be connected with accredited sign indicating number load module 204, be used to examine and wait to examine the certificate password and wait to examine whether meet the operation relation that sets that testimony password interlock device 100 becomes the certificate crypto-operation accredited sign indicating number between the accredited sign indicating number, and verification result is sent to verification result output module 202 from password validating module 203, this verification result output module 202 can be display screen, pilot lamp and/or sound prompt device etc., by showing and/or voice suggestion output verification result.
What table 2 provided is the testimony verification example of accepting table 1.
Table 2: wait to examine the encryption of certificate password and wait to examine accredited sign indicating number and give an example with the setting inverse operation of waiting to examine between the certificate password
| Step | The program that sets, instruction and cryptographic algorithm, operation relation | Corresponding code character or result |
| 1 | From certificate, discern, read and list the certificate information sign indicating number side by side | 0010?1011?1001?0110?0101?0111 |
| 2 | Cryptographic calculation goes out the complement code of certificate information code | 1101?0100?0110?1001?1010?1001 |
| 3 | Cryptographic calculation goes out the sign indicating number of putting upside down of certificate information code | 1110?1010?0110?1001?1101?0100 |
| 4 | With complement code with put upside down the sign indicating number carry out the false add computing, draw the false add sign indicating number | 0011?1110?0000?0000?0111?1101 |
| Be set in the key in the testimony verification device | 0100?1010?1001?0101?0001?0110 | |
| 5 | False add sign indicating number and key are added computing entirely, draw and wait to examine the certificate password | 1000?1000?1001?0101?1001?0011 |
| 6 | What the licensee imported waits to examine accredited yard | 2668786 |
| 7 | Wait to examine the inverse operation sign indicating number of accredited sign indicating number | (2668786-7)÷3=889593 |
| 8 | The binary code of inverse operation sign indicating number correspondence | 1000?1000?1001?0101?1001?0011 |
As can be known, the setting computing that is gone out accredited sign indicating number by the certificate crypto-operation is: accredited sign indicating number=certificate password * 3+7 from the embodiment of previously described testimony password interlock device 100; Clearly, check and wait to examine accredited sign indicating number and wait to examine whether meet this setting operation relation between the certificate password, just must treat and examine the inverse operation that accredited sign indicating number carries out above-mentioned setting computing, that is: ÷ 3=waits to examine the certificate password (to wait to examine accredited sign indicating number-7); So far, whether whether with the wait inverse operation sign indicating number of examining accredited sign indicating number of licensee input conform to as long as check waiting that testimony of a witness validation apparatus encrypts if examining the certificate password, just can confirm to wait to examine accredited sign indicating number and wait to examine to meet between the certificate password to set operation relation.In the present embodiment, the 8th in the table 2 conforms to the 5th.
Examine by above-mentioned, confirmation of synchronization certificate 300 is legal certificate, and the licensee is the legal holder of this certificate.Otherwise, regard as to examine and do not pass through.
In order to guarantee that testimony of a witness validation apparatus 200 is not cracked, and keep its operate as normal, this device also is provided with working power 201 and self-destruction protection module.This self-destruction protection module comprises the self-destruction battery charger 209 that is connected with working power 201, by the self-destruction rechargeable battery 210 of self-destruction battery charger 209 chargings, provide the self-destruction executive circuit 208 of power supply and the self-destruction trigger circuit 211 that control starts 208 work of self-destruction executive circuit by self-destruction rechargeable battery 210; Self-destruction executive circuit 208 with verified information read module 206, examine cryptographic module 205 and be connected with password validating module 203, and when self-destruction trigger circuit 211 are triggered, damage verified information read module 206, examine cryptographic module 205 and password validating module 203, or deletion, cover verified information read module 206, examine the program, instruction, the key that set in cryptographic module 205 and the password validating module 203.
These self-destruction trigger circuit 211 can comprise at least a circuit in magnetic control trigger circuit, photosensitive trigger circuit, vacuum forfeiture trigger circuit, dismounting movement trigger circuit and the under-voltage trigger circuit equally, are connected on the controlled input end of self-destruction executive circuit 208 after the output terminal parallel connection of each trigger circuit in these self-destruction trigger circuit 211.Its principle of work can not repeat them here with reference to testimony password interlock device 100.
Shown in Fig. 3,4, be respectively the process flow diagram of an embodiment of testimony password interlock and testimony verification method, comprising testimony password interlock step and testimony verification step.
As shown in Figure 3, in the testimony password interlock step, at first certificate is placed the collaborative work state with the testimony password interlock device, and the startup/stop key 106 on the operation testimony password interlock device, 100 work (step 301) of testimony password interlock device started; When adopting contactless state, only need certificate 300 is got final product near testimony password interlock device 100; And when adopting contact condition, in testimony password interlock device 100, be provided with the interface that certificate 300 is inserted, can set up collaborative work state between the two.
Then, attempt from certificate 300, reading information code (step 302) by the information reading module of testimony password interlock device; If fail the sense information sign indicating number, then log-on message writing module voluntarily writes customized information and/or random information sign indicating number (step 303) in certificate, turns back to step 302 again.This customized information and/or random information sign indicating number are only originated as raw information, and do not have function and effects such as sign, password.Certainly, these information codes also can be written in the certificate 300 by other read-write equipment, and not necessarily will be write by testimony password interlock device 100.
If can the sense information sign indicating number, then the information code of being read is arranged in the certificate information sign indicating number, and the certificate information code encryption is become the certificate password by interlock information read module 105, again the certificate password is drawn accredited sign indicating number by setting the operation relation computing.In the present embodiment, at first send reading command to certificate 300 by the information fetch program of setting, instruction by interlock information read module 105, comprised the address of the information that reads etc. in the program of this setting, the instruction, the information code in certificate 300 corresponding address is discerned, read to information interaction inlet by certificate 300, send it back interlock information read module 105, and be arranged in certificate information sign indicating number (step 304) by the information code alignment problem of setting, instruction; Then, interlock information read module 105 sends the certificate information sign indicating number of arranging out to interlocking cryptographic module 104, by encipheror and the cryptographic algorithm set the certificate information code encryption is become certificate password (step 305) by interlocking cryptographic module 104; According to setting operation relation, the certificate password is set computing draw accredited sign indicating number (step 306) again.After this step, can check certificate password and accredited sign indicating number whether to meet and set operation relation (step 307), if do not meet, then return step 302 again, attempt reading the information code in the certificate 300, and repeat above-mentioned steps.
Certificate password and accredited sign indicating number through check meet set operation relation after, by accredited code printing module 102 with accredited code printing to media (for example scraps of paper, film etc.); And cover processing (as scraping coating by coating, hide etc.) with strip of paper used for sealing to printing the position that accredited sign indicating number is arranged on the media, by testimony password interlock device 100 output mediums (step 308), by the mechanism that awards a certificate media is presented to legal holder (step 309) together with certificate, finishes testimony password interlock (step 310).In whole process, even the operating personnel of testimony password interlock device 100 also can't intervene the generation of accredited sign indicating number and know accredited sign indicating number, guaranteed to have only the legal holder of certificate 300 can learn the accredited sign indicating number that this certificate 300 is unique, accredited sign indicating number is after certificate 300 and testimony password interlock device 100 break away from, exist only in the brain of legal holder, stop the certificate 300 that other people falsely use legal holder with this.
As shown in Figure 4, in the testimony verification step, at first certificate 300 and testimony verification device 200 are set up the collaborative work state, and the startup/stop key 207 on the operation testimony of a witness validation apparatus 200, start 200 work (step 401) of testimony verification device: when adopting contactless state, only need certificate 300 is got final product near testimony verification device 200; And when adopting contact condition, in testimony verification device 200, be provided with the interface that certificate 300 is inserted, can set up collaborative work state between the two.
Then, the verified information read module 206 of testimony verification device 200 reads from certificate 300 and treats the verified information sign indicating number by the information fetch program of setting, instruction.In the present embodiment, at first send reading command to certificate 300 by verified information read module 206, comprise address that information reads etc. in this instruction, by verified information read module 206 identification, read corresponding address in the certificate 300 treat verified information sign indicating number (step 402), send to verified information read module 206, and be arranged in and wait to examine certificate information sign indicating number (step 403) by the information code alignment problem of setting, instruction.To wait to examine the certificate information sign indicating number and be sent to and examine cryptographic module 205, and examine cryptographic module 205 and will wait to examine the certificate information code encryption by the encipheror of setting with cryptographic algorithm and become to wait to examine certificate password (step 404); Then, judge whether to draw and wait to examine certificate password (step 405), wait to examine the certificate password if fail to draw, then show and/or voice suggestion is failed to encrypt and waited to examine certificate password (step 412) by verification result output module 202, show that certificate 300 is wrong, there is the pseudo-possibility that alters, finishes testimony verification.
If can encrypt and wait to examine the certificate password, then point out the licensee to wait to examine accredited sign indicating number (step 406) by accredited sign indicating number load module 204 (as keyboard, touch-screen etc.) input; To wait to examine accredited sign indicating number and wait to examine the certificate password and be sent to password validating module 203, and check and wait to examine the certificate password and wait to examine whether meet setting operation relation (step 407) between the accredited sign indicating number; When meeting between the two when setting operation relation, show and/or the auditory tone cues result's (step 408) that conforms to by the verification result output module; Confirm that certificate 300 is that legal certificate and licensee are legal holders; Certificate is returned licensee's (step 410); Finish testimony verification (step 412).And when the corresponding relation between two yards does not meet the setting operation relation, then by verification result output module 202 by showing and/or the voice suggestion result's (step 409) that do not conform to, confirm to exist illegal relation (step 411) between certificate 300 and the licensee, finish testimony verification (step 412).
By the present invention can be exactly whether be that legal holder is carried out instant confirmation of synchronization to the authenticity and the licensee of certificate 300, make forgery, adulterium certificate 300 and falsely use other people certificate 300 to lose meaning, set up legal certificate 300 and the solve relation of legal holder on mathematical logic.Specifically comprise:
The first, in the present invention, the certificate password as testimony password interlock and testimony verification hinge is a virtual pin.The maximum characteristics of this yard are neither in certificate, also not in the device of encryption system, just be not present among any space-time when it does not operate, it can only be when legal certificate and testimony password interlock device or legal certificate and testimony verification device be in the collaborative work state, just immediate interactive is encrypted and is generated, and is not subjected to any interference from human factor, is not known by anyone, exist only in form accredited sign indicating number or with wait to examine the moment that accredited sign indicating number is checked, and disappear at once; The certificate password because of have do not have set in advance, do not have password storage, do not have the operation input, no information transmits, do not have " five do not have " performance that appears, and can not it be intercepted and captured, and not to the intercepting and capturing of password, does not just have the decoding to password.
The second, the hardware and software of testimony password interlock and testimony verification system is placed among the perfect self-destruction protection function; see light, residing vacuum state when the shell of dismounting testimony password interlock device or dismounting testimony verification device, when the inner hardware of device and lose, be disassembled, the self-destruction rechargeable battery is under-voltage or electric energy is about to exhaust; as long as wherein at least a situation takes place; the self-destruction immediately of the hardware and software of system, permanent failure.The loading of system software is selected the independent controlled enforcement of mode with machine, in case realize loading, system enters the self-destruction guard mode at random, and the hardware and software that can't obtain encryption system is used as its parent that cracks or model.This software comprises the information fetch program that sets, the information code alignment problem that instructs, sets, the encipheror that instructs, sets and cryptographic algorithm, key and the certificate password that relate in aforementioned and the setting operation relation between the accredited sign indicating number etc.
The 3rd, the secret of accredited sign indicating number is, from the theory of probability category each group is deduced by accredited yard the distribution that the certificate crypto-operation goes out, what presented is unordered, complicated, at random, accidental state, because it is to read the extremely finite information sign indicating number that disperses to be hidden in wherein by the encryption system of determining from the customized information of magnanimity and/or random information sign indicating number, the uncertain password that forms through multiple One-Way Encryption, randomness because of raw information, and meet the Chaos principle of " producing indeterminacy phenomenon " by the system that determines, why chaos can develop into an independently science, be because within the category that chaos phenomenon can not have been resolved in the mathematics institute, in like manner, utilize mathematical measure to decode out in certain one digit number sign indicating number and the corresponding certificate in the accredited sign indicating number of each group overlapping how many which type of cryptographic calculations of layer concern between which information code at random the magnanimity raw information sign indicating number, just become impossible thing.
The 4th, certificate password in the existing anti-counterfeiting technology, bank card password etc., because when being provided with, do not belong to the password on the strict difinition through cryptographic calculation, can only can be regarded as the identification password, and must be through setting in advance and store in the database, when needs are examined, must operate input by the password holder, and carry out information interaction by network, these processes and link all can cause divulging a secret because of being attacked, simultaneously, the safety of database is because of forming great risk on the personal integrity that lies in the data base administrator, and certificate password among the present invention and accredited sign indicating number all are individual off-line running, do not relate to network and database, do not have the fatal weakness of being intercepted and captured because of attacking, can solely arrogate to oneself and win the field.
Five, inform accredited card person again after existing card clip pin is mostly stored password, or stored after independently being provided with by accredited card person, must operate input by accredited card person when examining, and the affirmation of directly comparing, password and accredited card person are pass-through state, and any one party suffers to attack and all can cause divulging a secret.And the accredited sign indicating number among the present invention is not the foundation that password is examined, and only is " key " that enters this hinge of certificate password, and what finally check only is a kind of setting operation relation but not password itself; Even accredited sign indicating number is divulged a secret, also can't obtain the certificate password.If certificate is provided with the holder photo,, also can disagrees by testimony verification mechanism and refuse because of the certificate photograph and the person's appearance of falsely using the certificate though accredited sign indicating number is forced to ask for by other people.
Six, certificate password and accredited sign indicating number all are only to encrypt and non-decrypting One-Way Encryption password, because of there not being DecryptDecryption difficulty problem, just can carry out unlimited cryptographic calculation, in cryptography, password is whenever increased a step encryption, a kind of cryptographic algorithm, one key, the capital makes to be cracked difficulty and is geometric series ground and increases, and reach with this can't limit.
Seven, above-mentioned six the arbitrary conditions in can not the decoding condition of certificate password and/or accredited sign indicating number all on positive logic, constitute jointly with all the other five conditions " or " logic state, it equals to desire to decode, just six conditions must be constituted on negative logic simultaneously jointly " with " logic state, that is to say as long as the arbitrary condition in six conditions is set up on positive logic, decoding just becomes condition invalid " 0 " state, loses meaning and make to decode.Six conditions are set up simultaneously, and its anti-decoding power more needn't be given unnecessary details.
Eight, except that the logic function described in the 7th, each condition in six anti-decoding conditions of certificate password and/or accredited sign indicating number is not isolated the existence, six big conditions have constituted a dynamic closed flogic system that is relative to each other, strengthens each other, being condensed into intercepting and capturing with aspect from different perspectives is prerequisite, again can not decode the System of Logic that backs.This system tightness logically and anti-aggressive, the category of the 1+1+1+1+1+1=6 that won far away.
Nine, can't intercept and capture because of the certificate password, more can't decode, not have the certificate password, just can not make false papers, stop false papers with this; Because of accredited sign indicating number can only produce from the testimony password interlock device of the legal mechanism that awards a certificate immediately, not there is the source, and different because of certificate, there is not accredited sign indicating number, just make have more than is needed certificate, realize with the legal holder identity of accredited sign indicating number locking; Have only certificate password that legal certificate encrypts could and the accredited sign indicating number of legal holder input rely on each other in the testimony verification device, confirm mutually that the legal certificate that assurance has only legal holder to hold oneself could pass through testimony verification.
Ten, the present invention does not increase the making and the use cost of certificate, even to originally not possessing the certificate of Card read/write function, only can increase limited certificate information yet and load cost.
In addition, testimony verification device 200 is encrypted to wait to examine the certificate password also can the device 100 certificate passwords that are encrypted to be inequality mutually with testimony password, that is to say information fetch program, the instruction of the setting that testimony verification device 200 adopts, the information code alignment problem, the instruction that set, encipheror that sets and cryptographic algorithm, keys etc. are inequality with testimony password interlock device 100; Wait to examine the certificate password and wait to examine setting operation relation between the accredited sign indicating number also to be different from setting operation relation between certificate password and the accredited sign indicating number, concern but should meet certain password interlock; Just can make testimony password interlock device 100 and the anti-aggressiveness of testimony verification device 200 because of encryption rule and setting operation relation enhanced system inequality.
Claims (10)
1. a testimony password interlock device is characterized in that, comprising:
The interlock information read module is used for reading information code from certificate with certificate under the collaborative work state;
The interlocking cryptographic module is connected with described interlock information read module, is used for the described information code that reads is encrypted, and forms the certificate password, and the computing that described certificate password work is set operation relation draws accredited sign indicating number;
Accredited code printing module is connected with described interlocking cryptographic module, is used for described accredited code printing at media, and described accredited sign indicating number is covered.
2. testimony password interlock device according to claim 1 is characterized in that, described testimony password interlock device also comprises working power and self-destruction protection module; Described self-destruction protection module comprises the self-destruction battery charger that is connected with described working power, by the self-destruction rechargeable battery of described self-destruction battery charger charging, provide the self-destruction executive circuit of power supply and the self-destruction trigger circuit that control starts the work of described self-destruction executive circuit by described self-destruction rechargeable battery; Described self-destruction executive circuit is connected with described interlocking cryptographic module with described interlock information read module, and damages described interlock information read module and described interlocking cryptographic module when described self-destruction trigger circuit are triggered.
3. testimony password interlock device according to claim 1, it is characterized in that, described testimony password interlock device also comprise can with the information writing module of described certificate collaborative work, be used for holder customized information and/or random information sign indicating number are written to described certificate.
4. a testimony verification device is characterized in that, comprising:
The verified information read module is used for reading from certificate under the collaborative work state with certificate and treats the verified information sign indicating number;
Examine cryptographic module, be connected, be used for the described verified information sign indicating number for the treatment of that is read is encrypted, form and wait to examine the certificate password with described verified information read module;
Accredited sign indicating number load module waits to examine accredited sign indicating number for licensee's input;
The password validating module is connected with described accredited sign indicating number load module with the described cryptographic module of examining respectively, is used for receiving and examines describedly waiting to examine the certificate password and describedly waiting to examine between accredited yard whether meet the setting operation relation, and draw verification result;
The verification result output module is connected with described password validating module, is used to show and/or the described verification result of the described password validating module of voice suggestion.
5. testimony verification device according to claim 4 is characterized in that, described testimony verification device also comprises working power and self-destruction protection module; Described self-destruction protection module comprises the self-destruction battery charger that is connected with described working power, by the self-destruction rechargeable battery of described self-destruction battery charger charging, provide the self-destruction executive circuit of power supply and the self-destruction trigger circuit that control starts the work of described self-destruction executive circuit by described self-destruction rechargeable battery; Described self-destruction executive circuit is connected with described password validating module with described verified information read module, the described cryptographic module of examining, and when described self-destruction trigger circuit are triggered, damage described verified information read module, described cryptographic module and the described password validating module examined.
6. testimony password interlock and testimony verification system is characterized in that, comprise the certificate, testimony password interlock device and the testimony verification device that are provided with the Card read/write function; Described certificate has write customized information and/or random information sign indicating number by the information writing module;
Described testimony password interlock device comprises:
The interlock information read module is used for reading information code from described certificate with described certificate under the collaborative work state;
The interlocking cryptographic module is connected with described interlock information read module, is used to encrypt the described information code that reads, and the computing that forms the certificate password and described certificate password work is set operation relation draws accredited sign indicating number;
Accredited code printing module is connected with described interlocking cryptographic module, is used for described accredited code printing at media, and described accredited sign indicating number is covered;
Described testimony verification device comprises:
The verified information read module is used for reading from described certificate under the collaborative work state with described certificate and treats the verified information sign indicating number;
Examine cryptographic module, be connected, be used for the described verified information sign indicating number for the treatment of that reads is encrypted, form and wait to examine the certificate password with described verified information read module;
Accredited sign indicating number load module waits to examine accredited sign indicating number for licensee's input;
The password validating module is connected with described accredited sign indicating number load module with the described cryptographic module of examining respectively, is used for receiving and examines describedly waiting to examine the certificate password and describedly waiting to examine between accredited yard whether meet described setting operation relation, and draw verification result;
The verification result output module is connected with described password validating module, is used to show and/or the described verification result of the described password validating module of voice suggestion.
7. testimony password interlock according to claim 6 and testimony verification system, it is characterized in that described customized information that described certificate writes and/or random information sign indicating number are at least a in binary code, magnet bar code, bar code, two-dimension code, the infrared information sign indicating number; The information interaction state of described collaborative work state for setting up by at least a mode in less radio-frequency, contact, the scanning.
8. testimony password interlock and testimony verification method is characterized in that, comprise testimony password interlock step and testimony verification step, have been written into customized information and/or random information sign indicating number in the certificate;
Described testimony password interlock step comprises:
A1: described certificate and testimony password interlock device are set up the collaborative work state, start described testimony password interlock device, from the customized information of described certificate and/or random information sign indicating number, read information code;
A2: the described information code that is read is arranged in the certificate information sign indicating number;
A3: described certificate information code encryption is become the certificate password,
A4: the computing that described certificate password is set operation relation draws accredited sign indicating number;
A5: described accredited code printing to media, and with the covering of maintaining secrecy of described accredited sign indicating number, is presented to described media the holder in due course of described certificate again together with described certificate;
Described testimony verification step comprises:
B1: testimony verification device and described certificate are set up the collaborative work state, start described testimony verification device, from described customized information that described certificate write and/or random information sign indicating number, read and treat the verified information sign indicating number;
B2: describedly treated that the verified information sign indicating number is arranged in and wait to examine the certificate information sign indicating number with what read;
B3: wait to examine the certificate information code encryption and become to wait to examine the certificate password with described;
B4: prompting licensee input waits to examine accredited sign indicating number;
B5: wait to examine the certificate password and describedly wait to examine accredited sign indicating number and check described by described testimony verification device, examine whether meet described setting operation relation between the two;
B6: show and/or the voice suggestion verification result.
9. testimony password interlock according to claim 8 and testimony verification method, it is characterized in that, in described steps A 1, described testimony password interlock device by the identification from described customized information that described certificate write and/or random information sign indicating number of the information fetch program of setting, instruction, read out the described information code of disperseing to be hidden in wherein;
Described steps A 2 comprises: by the information code alignment problem of setting, instruction the information code that is read is arranged in the certificate information sign indicating number;
Described steps A 3 comprises: described testimony password interlock device carries out a step or above encryption, one or more cryptographic algorithm of a step, key is arranged and/or does not have the encryption of secret key cryptographic algorithm described certificate information sign indicating number by the encipheror of setting and cryptographic algorithm, encrypts described certificate password;
Described steps A 4 comprises: described certificate password is carried out computing by above setting operation relation of a step or a step, one or more setting operation relation, the setting operation relation that key is arranged and/or do not have a key, draw described accredited sign indicating number.
10. testimony password interlock according to claim 9 and testimony verification method is characterized in that, described step B1 comprises:
Described testimony verification device by the identification from described customized information that described certificate write and/or random information sign indicating number of information fetch program of the described setting consistent, instruction with described steps A 1, read out the described verified information sign indicating number for the treatment of that disperses to be hidden in wherein; And treat that the verified information sign indicating number is arranged in and wait to examine the certificate information sign indicating number described by the information code alignment problem of the described setting consistent, instruction with described steps A 2;
Described step B3 comprises: described testimony verification device is waited to examine the certificate information sign indicating number and is carried out a step or above encryption, one or more cryptographic algorithm of a step, key is arranged and/or do not have the encryption of secret key cryptographic algorithm described by the encipheror of the described setting consistent with described steps A 3 and cryptographic algorithm, encrypts the described certificate password of waiting to examine;
Wait to examine the certificate password described in the described step B5 and describedly wait to examine that accredited sign indicating number carried out checks to be meant to examine whether meet the setting operation relation described in the described steps A 4 between the two.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101077673A CN101567055B (en) | 2009-06-01 | 2009-06-01 | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method |
| PCT/CN2010/073250 WO2010139250A1 (en) | 2009-06-01 | 2010-05-26 | Individual identification password interlock device, individual identification verification device and system, individual identification password interlock and individual identification verification method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101077673A CN101567055B (en) | 2009-06-01 | 2009-06-01 | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101567055A CN101567055A (en) | 2009-10-28 |
| CN101567055B true CN101567055B (en) | 2011-05-18 |
Family
ID=41283199
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009101077673A Expired - Fee Related CN101567055B (en) | 2009-06-01 | 2009-06-01 | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101567055B (en) |
| WO (1) | WO2010139250A1 (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101567055B (en) * | 2009-06-01 | 2011-05-18 | 邓平孝 | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method |
| CN102999727B (en) * | 2012-11-16 | 2016-03-30 | 惠州Tcl移动通信有限公司 | Mobile terminal and bar code image disposal route thereof |
| CN104217177A (en) * | 2013-05-31 | 2014-12-17 | 中晟国计科技有限公司 | One-computer double-network physical isolation double-display computer with switching circuit |
| CN104217178A (en) * | 2013-05-31 | 2014-12-17 | 中晟国计科技有限公司 | One-computer double-network physical isolation computer with multi-channel switching circuit |
| CN103985674B (en) * | 2014-06-03 | 2017-02-15 | 山东华芯半导体有限公司 | Anti-attack structure of security chip and anti-attack method |
| CN104408386B (en) * | 2014-11-25 | 2017-08-29 | 深圳长城开发科技股份有限公司 | A kind of detaching-proof protection device |
| US11449636B2 (en) | 2019-10-04 | 2022-09-20 | Mastercard International Incorporated | Systems and methods for secure provisioning of data using secure tokens |
| US11652813B2 (en) | 2019-10-04 | 2023-05-16 | Mastercard International Incorporated | Systems and methods for real-time identity verification using a token code |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1218841C (en) * | 2002-11-14 | 2005-09-14 | 西安朗信电子防伪技术有限公司 | Anti-counterfeit method for certificate |
| CN100570368C (en) * | 2005-04-11 | 2009-12-16 | 邓平孝 | The liquid inherent nature of commodities anti-counterfeiting detecting device and the detection method of band self-destruction protection function |
| CN1945591A (en) * | 2006-10-26 | 2007-04-11 | 天津市易雷电子标签科技有限公司 | Encryting anti-fake technology for electronic label |
| CN101567055B (en) * | 2009-06-01 | 2011-05-18 | 邓平孝 | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method |
-
2009
- 2009-06-01 CN CN2009101077673A patent/CN101567055B/en not_active Expired - Fee Related
-
2010
- 2010-05-26 WO PCT/CN2010/073250 patent/WO2010139250A1/en active Application Filing
Also Published As
| Publication number | Publication date |
|---|---|
| WO2010139250A1 (en) | 2010-12-09 |
| CN101567055A (en) | 2009-10-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101567055B (en) | Testimony password interlock device, testimony verification device and system, testimony password interlock and testimony verification method | |
| CN103580872B (en) | A kind of system and method generating for key and managing | |
| US4890323A (en) | Data communication systems and methods | |
| JP6408549B2 (en) | RFID secure authentication | |
| CN1758594B (en) | Biometric authentication device and terminal | |
| CN103942478B (en) | A kind of authentication and right management method and equipment | |
| CN107771383A (en) | At least two authenticating devices are mapped to the method for user account using certificate server | |
| CN108337093A (en) | POS terminal personal identification method, POS terminal and server | |
| CN101923619A (en) | Password key camouflage system and method | |
| AU2006321402A1 (en) | A method and apparatus for verifying a person's identity or entitlement using one-time transaction codes | |
| JPWO2003069489A1 (en) | Identification method | |
| CN101390126A (en) | Transaction authentication by a token, contingent on personal presence | |
| CN1263324A (en) | Fingerprint identification keyboard device and its identification method | |
| CN109660359A (en) | Generate the method, equipment and the method for generating the credible address of HD wallet of HD wallet business card | |
| CN106100854A (en) | The reverse authentication method of terminal unit based on authority's main body and system | |
| CN106709534A (en) | Anti-counterfeit verification system of electronic certificate | |
| JP2015210613A (en) | Automatic transaction device and automatic transaction system | |
| JP2010165323A (en) | Biometric authentication method and system | |
| Xi et al. | Bio-cryptography | |
| CN109309658A (en) | The identity identifying method and identity-validation device and identity authorization system of multiple authentication | |
| Gulsezim et al. | Two factor authentication using twofish encryption and visual cryptography algorithms for secure data communication | |
| CN102571341B (en) | A kind of Verification System based on dynamic image and authentication method | |
| JPH09179951A (en) | Portable information recording medium and its system | |
| CN205015906U (en) | Anti -fake verification system of electron certificate | |
| CN106534479A (en) | Cell phone password protection system based on implicit code identification and implicit conversion |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110518 Termination date: 20120601 |