CN104639538A - Identity card information obtaining method and system - Google Patents
Identity card information obtaining method and system Download PDFInfo
- Publication number
- CN104639538A CN104639538A CN201510022961.7A CN201510022961A CN104639538A CN 104639538 A CN104639538 A CN 104639538A CN 201510022961 A CN201510022961 A CN 201510022961A CN 104639538 A CN104639538 A CN 104639538A
- Authority
- CN
- China
- Prior art keywords
- card
- sam
- backstage
- preliminary election
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Credit Cards Or The Like (AREA)
Abstract
The invention discloses an identity card information obtaining method and system. The method comprises the following steps that a front end identity card reader receives and sends an SAM authentication request sent by a resident identity card; pre-selected background SAM equipment generates SAM authentication response and sends the SAM authentication response to the front end identity card reader; the front end identity card reader sends the SAM authentication response to the resident identity card, and receives and sends an SAM authentication result sent by the resident identity card; the pre-selected background SAM equipment sends a resident identity card authentication request to the front end identity card reader; the front end identity card reader sends the resident identity card authentication request to the resident identity card, and receives and sends resident identity card authentication response generated by the resident identity card; the pre-selected background SAM equipment authenticates the resident identity card authentication response, generates a resident identity card authentication passing result after the authentication passes, and sends the resident identity card authentication passing result to the front end identity card reader; the front end identity card reader obtains identity card information.
Description
Technical field
The present invention relates to a kind of electronic technology field, particularly relate to a kind of ID card information acquisition methods and system.
Background technology
Existing card reader of ID card has at least two modules, comprises read through model and SAM (residence card verifying security control) module.Because each card reader of ID card all needs to arrange SAM module, therefore, the manufacturing cost of existing card reader of ID card is high; And, in existing card reader of ID card, SAM module the resident identification card information that reads of the read through model in this card reader of ID card can only carry out authentication, if this card reader of ID card current does not read resident identification card, then SAM module is idle, therefore, existing card reader of ID card utilance is lower.
Summary of the invention
The present invention is intended to one of solve the problem.
Main purpose of the present invention is to provide a kind of ID card information acquisition methods;
Another object of the present invention is to provide a kind of ID card information to obtain system.
One aspect of the present invention provides a kind of ID card information acquisition methods, be applied to the system comprising front end card reader of ID card and preliminary election backstage SAM equipment, the method comprises: front end card reader of ID card receives the SAM authentication request that resident identification card sends, and SAM authentication request is sent to preliminary election backstage SAM equipment; Preliminary election backstage SAM equipment receives SAM authentication request, generates SAM authentication response, and SAM authentication response is sent to front end card reader of ID card; Front end card reader of ID card receives SAM authentication response, and SAM authentication response is sent to resident identification card, and receives SAM certification that resident identification card sends by result, and SAM certification is sent to preliminary election backstage SAM equipment by result; Preliminary election backstage SAM equipment receives SAM certification by result, and resident identification card authentication request is sent to front end card reader of ID card; Front end card reader of ID card receives resident identification card authentication request, resident identification card authentication request is sent to resident identification card, receive the resident identification card authentication response that resident identification card generates, and resident identification card authentication response is sent to preliminary election backstage SAM equipment; Preliminary election backstage SAM equipment carries out certification to resident identification card authentication response, passes through result, and resident identification card certification is sent to front end card reader of ID card by result in certification by the certification of rear generation resident identification card; Front end card reader of ID card receives resident identification card certification by result, obtains ID card information.
Alternatively, before preliminary election backstage SAM equipment generates SAM authentication response, the method also comprises: front end card reader of ID card authentication information is sent to preliminary election backstage SAM equipment by front end card reader of ID card; Preliminary election backstage SAM equipment carries out certification to front end card reader of ID card authentication information.
Alternatively, front end card reader of ID card acquisition ID card information comprises: front end card reader of ID card reads the first cleartext information and cipher-text information from resident identification card, and cipher-text information is sent to preliminary election backstage SAM equipment; Preliminary election backstage SAM equipment is decrypted rear acquisition second plaintext information to cipher-text information, and second plaintext information is sent to front end card reader of ID card; Front end card reader of ID card obtains ID card information, and wherein, ID card information at least comprises the first cleartext information and second plaintext information.
Alternatively, the method also comprises: front end card reader of ID card display ID card information.
Alternatively, SAM equipment in preliminary election backstage sends information by server forward end card reader of ID card; Preliminary election backstage SAM equipment receives the information from front end card reader of ID card by server.
Alternatively, at least one front end card reader of ID card of server stores and the corresponding relation of a preliminary election backstage SAM equipment; Before SAM authentication request is sent to preliminary election backstage SAM equipment by server, this also comprises: server, according to corresponding relation, selects the preliminary election backstage SAM equipment corresponding with front end card reader of ID card.
Alternatively, the operating state of server record each preliminary election backstage SAM equipment; Before SAM authentication request is sent to preliminary election backstage SAM equipment by server, the method also comprises: server select current operating state be idle preliminary election backstage SAM equipment as preliminary election backstage SAM equipment, and the operating state of preliminary election backstage SAM equipment is labeled as busy.
Alternatively, the method also comprises: the operating state of preliminary election backstage SAM equipment, after front end card reader of ID card and preliminary election backstage SAM devices communicating terminate, is labeled as the free time by server.
Alternatively, front end card reader of ID card sends information by terminal to preliminary election backstage SAM equipment; Front end card reader of ID card receives the information from preliminary election backstage SAM equipment by terminal.
Alternatively, after front end card reader of ID card obtains ID card information, the method also comprises: ID card information is sent to terminal by front end card reader of ID card; Terminal demonstration ID card information.
The present invention another aspect provides a kind of ID card information and obtains system, comprising: the system of front end card reader of ID card and backstage preliminary election SAM equipment; Wherein, front end card reader of ID card comprises: the first transceiver module, the second transceiver module and acquisition module; Preliminary election backstage SAM equipment comprises: the 3rd transceiver module, generation module and authentication module; First transceiver module, for receiving the SAM authentication request that resident identification card sends; Second transceiver module, for and by first transceiver module receive SAM authentication request be sent to preliminary election backstage SAM equipment; 3rd transceiver module, for receiving SAM authentication request; Generation module, for after the 3rd transceiver module receives SAM authentication request, generates SAM authentication response; 3rd transceiver module, also for SAM authentication response is sent to front end card reader of ID card; Second transceiver module, also for receiving SAM authentication response; First transceiver module, the SAM authentication response also for being received by the second transceiver module is sent to resident identification card, and result is passed through in the SAM certification receiving resident identification card transmission; Second transceiver module, the SAM certification also for being received by the first transceiver module is sent to preliminary election backstage SAM equipment by result; 3rd transceiver module, also for receiving SAM certification by result, and is sent to front end card reader of ID card by resident identification card authentication request; Second transceiver module, also for receiving resident identification card authentication request; First transceiver module, the resident identification card authentication request also for being received by the second transceiver module is sent to resident identification card, receives the resident identification card authentication response that resident identification card generates; Second transceiver module, the resident identification card authentication response also for being received by the first transceiver module is sent to preliminary election backstage SAM equipment; 3rd transceiver module, also for receiving resident identification card authentication response; Authentication module, carries out certification for the resident identification card authentication response received the 3rd transceiver module, passes through result in certification by the certification of rear generation resident identification card; 3rd transceiver module, also for resident identification card certification is sent to front end card reader of ID card by result; Second transceiver module, also passes through result for receiving resident identification card certification; Acquisition module, for receive at the second transceiver module residential identity certification by result after, obtain ID card information.
Alternatively, the second transceiver module, also for card reader of ID card authentication information is sent to preliminary election backstage SAM equipment; 3rd transceiver module, also for receiving card reader of ID card authentication information; Authentication module, also for carrying out certification to card reader of ID card authentication information.
Alternatively, acquisition module, also for reading the first cleartext information and cipher-text information from resident identification card; Second transceiver module, also for cipher-text information being sent to preliminary election backstage SAM equipment; Receive preliminary election backstage SAM equipment is decrypted rear acquisition second plaintext information to cipher-text information; Acquisition module, also for obtaining ID card information, wherein, ID card information at least comprises the first cleartext information and second plaintext information.
Alternatively, front end card reader of ID card also comprises: display module; Display module, for showing ID card information.
Alternatively, system also comprises: the server connecting preliminary election backstage SAM equipment; Server, is forwarded to card reader of ID card for the information sent by preliminary election backstage SAM equipment; And the information that card reader of ID card sends is forwarded to preliminary election backstage SAM equipment.
Alternatively, server, also for storing the corresponding relation of at least one front end card reader of ID card and a preliminary election backstage SAM equipment; According to corresponding relation, select the preliminary election backstage SAM equipment corresponding with card reader of ID card.
Alternatively, server, also for recording the operating state of each preliminary election backstage SAM equipment; Select current operating state to be idle preliminary election backstage SAM equipment, and the operating state of preliminary election backstage SAM equipment is labeled as busy.
Alternatively, server, also for after front end card reader of ID card and preliminary election backstage SAM devices communicating terminate, is labeled as the free time by the operating state of preliminary election backstage SAM equipment.
Alternatively, system also comprises: the terminal connecting front end card reader of ID card; Terminal, the information for being sent by front end card reader of ID card is forwarded to preliminary election backstage SAM equipment; And the information that preliminary election backstage SAM equipment sends is forwarded to front end card reader of ID card.
Alternatively, terminal, also for the ID card information that receiving front-end card reader of ID card sends, and shows ID card information.
As seen from the above technical solution provided by the invention, in the scheme that the embodiment of the present invention provides, SAM module is removed from card reader of ID card, card reader of ID card only makes the function that identity information reads, authentication is completed by the SAM equipment of outside, thus can reduce the cost of card reader of ID card, and, multiple card reader of ID card can be verified by same SAM equipment, thus improves the utilance of SAM equipment.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme of the embodiment of the present invention, below the accompanying drawing used required in describing embodiment is briefly described, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
The configuration diagram of the ID card information acquisition system that Fig. 1 provides for the embodiment of the present invention 1;
The structural representation of the card reader of ID card that Fig. 2 provides for the embodiment of the present invention 1;
The structural representation of the preliminary election backstage SAM equipment that Fig. 3 provides for the embodiment of the present invention 1;
The configuration diagram of a kind of optional ID card information acquisition system that Fig. 4 provides for the embodiment of the present invention 1;
The configuration diagram of the another kind optional ID card information acquisition system that Fig. 5 provides for the embodiment of the present invention 1;
The configuration diagram of another optional ID card information acquisition system that Fig. 6 provides for the embodiment of the present invention 1;
The flow chart of the ID card information acquisition methods that Fig. 7 provides for the embodiment of the present invention 1.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, be clearly and completely described the technical scheme in the embodiment of the present invention, obviously, described embodiment is only the present invention's part embodiment, instead of whole embodiments.Based on embodiments of the invention, those of ordinary skill in the art, not making the every other embodiment obtained under creative work prerequisite, belong to protection scope of the present invention.
In addition, term " first ", " second " only for describing object, and can not be interpreted as instruction or hint relative importance or quantity or position.
In describing the invention, it should be noted that, unless otherwise clearly defined and limited, term " installation ", " being connected ", " connection " should be interpreted broadly, and such as, can be fixedly connected with, also can be removably connect, or connect integratedly; Can be mechanical connection, also can be electrical connection; Can be directly be connected, also indirectly can be connected by intermediary, can be the connection of two element internals.For the ordinary skill in the art, concrete condition above-mentioned term concrete meaning in the present invention can be understood.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
A SAM module is set for all needing in card reader of ID card each in prior art, thus causes the problem that the cost of the main card reader of identity utilance that is high and SAM module is low, embodiments provide a kind of ID card information acquisition methods and system.In the scheme that the embodiment of the present invention provides, SAM module is removed from card reader of ID card, card reader of ID card only makes the function that identity information reads, authentication is completed by the SAM equipment of outside, thus the cost of card reader of ID card can be reduced, further, multiple card reader of ID card can be verified by same SAM equipment, thus improves the utilance of SAM equipment.
Embodiment 1
Present embodiments provide a kind of ID card information and obtain system, as shown in Figure 1, this system comprises: n front end card reader of ID card 10 and m backstage SAM equipment 20, n is more than or equal to m, preferably, n is greater than m, i.e. multiple front ends card reader of ID card 10 corresponding one or more backstages SAM equipment 20.
Fig. 2 is the structural representation of the arbitrary card reader of ID card 10 in the present embodiment in n card reader of ID card 10, as shown in Figure 2, wherein, the arbitrary card reader of ID card 10 in n card reader of ID card can comprise: the first transceiver module 101, second transceiver module 102 and acquisition module 103.Fig. 3 is that (this backstage SAM equipment 20 is the backstage SAM equipment that process card reader of ID card 10 reads information to a backstage SAM equipment in m SAM equipment 20 in the present embodiment 20, for convenience of description, follow-uply be referred to as preliminary election backstage SAM equipment 20) structural representation, as shown in Figure 3, preliminary election backstage SAM equipment 20 can comprise: the 3rd transceiver module 201, generation module 202 and authentication module 203.
In embodiments of the present invention, first transceiver module 101 of card reader of ID card 10 carries out mutual information for sending and receiving with resident identification card, and the second transceiver module 102 carries out mutual information for being sent by network and receiving with preliminary election backstage SAM equipment 20.3rd transceiver module 201 of preliminary election backstage SAM equipment 20 carries out mutual information for being sent and receive the main card reader with identity by network.Wherein, preliminary election backstage SAM equipment 20 can be any one the SAM equipment in system, or, also can according to the SAM equipment 20 of each card reader of ID card 10 correspondence of certain rule settings, such as, can divide according to geographic area, the corresponding same SAM equipment 20 of card reader of ID card 10 in same region, or, distribute an ID also can to each card reader of ID card 10, divide according to No. ID, the corresponding same SAM equipment 20 of the card reader of ID card of ID in same scope, or, also can divide according to each card reader of ID card 10 address in a network (such as IP address), the concrete embodiment of the present invention is not construed as limiting.
As an Alternate embodiments of the embodiment of the present invention, card reader of ID card 10 can adopt between cordless and resident identification card and carry out information interaction, such as, adopt NFC mode etc.Card reader of ID card 10 can adopt wired mode or carry out information interaction between wireless mode and SAM equipment, such as: wired mode can adopt audible, USB mode or serial mode etc.; Wireless mode can adopt bluetooth approach, WIFI mode, infrared mode, 2G mode, 3G mode, 4G mode, 2.4G mode, 900M mode or zigbee mode etc.Now, the mode of mating can be adopted between card reader of ID card 10 with preliminary election backstage SAM equipment 20 to carry out information interaction, if such as card reader of ID card 10 adopts bluetooth approach and SAM equipment 20 to carry out information interaction, then preliminary election backstage SAM equipment 20 also adopts the bluetooth approach of coupling.Because card reader of ID card 10 can adopt various ways and preliminary election backstage SAM equipment 20 to carry out information interaction, improve flexibility and the convenience of card reader of ID card 10.
In a particular application, read in the process of identity information at card reader of ID card 10, SAM equipment 20 needs the resident identification card to reading to verify, legal to ensure the identity information read, and resident identification card also needs to verify SAM equipment 20, identity information is avoided illegally to be read.Meanwhile, because card reader of ID card 10 and SAM equipment are provided separately, the flexibility that card reader of ID card 10 uses is strengthened.
Particularly, in the process verified SAM equipment 20, the first transceiver module 101, for receiving the SAM authentication request that resident identification card sends; Second transceiver module 102, for and the SAM authentication request that the first transceiver module 101 receives is sent to preliminary election backstage SAM equipment 20; 3rd transceiver module 201, for receiving SAM authentication request; Generation module 202, for after the 3rd transceiver module 201 receives SAM authentication request, generates SAM authentication response; 3rd transceiver module 201, also for SAM authentication response is sent to card reader of ID card 10; Second transceiver module 102, also for receiving SAM authentication response; First transceiver module 101, the SAM authentication response also for being received by the second transceiver module 102 is sent to resident identification card, and result is passed through in the SAM certification receiving resident identification card transmission; Second transceiver module 102, the SAM certification also for being received by the first transceiver module 101 is sent to preliminary election backstage SAM equipment 20 by result; 3rd transceiver module 201, also passes through result for receiving SAM certification.
As an Alternate embodiments of the embodiment of the present invention, a random factor at least can be comprised in the SAM authentication request that resident identification card sends, this random factor is sent to preliminary election backstage SAM equipment 20, so that preliminary election backstage SAM equipment 20 obtains SAM authentication response after processing this random factor, afterwards, resident identification card receives SAM authentication response, carries out certification to SAM authentication response, and after certification is passed through, generate SAM certification and be back to preliminary election backstage SAM equipment 20 by result.In embodiments of the present invention, random factor can be one or its combination in any such as time factor, event factor, random number and random character.Concrete, certification can be carried out in the following way:
Each SAM equipment all stores master key, sub-key is stored in each resident identification card, resident identification card generates a random number, and this random number is carried in SAM authentication request, after preliminary election backstage SAM equipment 20 obtains this random number, master key is utilized to carry out hash calculating to the information preset, obtain the sub-key of this resident identification card, the sub-key obtained is utilized to carry out MAC (Message Authentication Code to random number, message authentication code) calculate MAC value, and this MAC value is carried in SAM authentication response is back to resident identification card, resident identification card obtains this MAC value, the sub-key utilizing self to store carries out MAC calculating to the random number generated, obtain MAC check value, whether the MAC value that the preliminary election backstage SAM equipment 20 relatively obtained sends is identical with the MAC check value calculated, and after more identical, confirm that certification preliminary election backstage SAM equipment 20 passes through, generate SAM certification and pass through result, and this result is back to preliminary election backstage SAM equipment 20.
In the process verified resident identification card, the 3rd transceiver module 201, also for resident identification card authentication request is sent to card reader of ID card 10; Second transceiver module 102, also for receiving resident identification card authentication request; First transceiver module 101, the resident identification card authentication request also for being received by the second transceiver module 102 is sent to resident identification card, receives the resident identification card authentication response that resident identification card generates; Second transceiver module 102, the resident identification card authentication response also for being received by the first transceiver module 101 is sent to preliminary election backstage SAM equipment; 3rd transceiver module 201, also for receiving resident identification card authentication response; Authentication module 203, carries out certification for the resident identification card authentication response received the 3rd transceiver module 201, passes through result in certification by the certification of rear generation resident identification card; 3rd transceiver module 201, also for resident identification card certification is sent to card reader of ID card 10 by result; Second transceiver module 102, also passes through result for receiving resident identification card certification; Acquisition module 103, for receive at the second transceiver module 102 residential identity certification by result after, obtain ID card information.
As an Alternate embodiments of the embodiment of the present invention, also a random factor at least can be comprised in the resident identification card authentication request that preliminary election backstage SAM equipment 20 sends, this random factor is sent to resident identification card, so that resident identification card obtains resident identification card authentication response after processing this random factor, afterwards, preliminary election backstage SAM equipment 20 receives resident identification card authentication response, certification is carried out to resident identification card authentication response, and after certification is passed through, generate resident identification card certification and be back to card reader of ID card 10 by result.In embodiments of the present invention, random factor can be one or its combination in any such as time factor, event factor, random number and random character.Concrete, certification can be carried out in the following way:
Each SAM equipment all stores master key, sub-key is stored in each resident identification card, preliminary election backstage SAM equipment 20 generates a random number, and this random number is carried in resident identification card authentication request, after resident identification card obtains this random number, the sub-key utilizing self to store carries out MAC calculating to the random number received, obtain MAC value, and this MAC value is carried in resident identification card authentication response is back to preliminary election backstage SAM equipment 20, after preliminary election backstage SAM equipment 20 receives resident identification card authentication response, master key is utilized to carry out hash calculating to the information preset, obtain the sub-key of this resident identification card, utilize the sub-key obtained to carry out MAC to the random number generated and calculate MAC check value, whether the MAC value that the resident identification card relatively obtained sends is identical with the MAC check value calculated, and after more identical, confirm that certification resident identification card passes through, generate resident identification card certification and pass through result, and this result is back to card reader of ID card 10.
By the said system that the present embodiment provides, SAM function is shifted out card reader of ID card 10, the authentication request of resident identification card and verify data are sent to preliminary election backstage SAM equipment 20 by card reader of ID card 10, and authentication request and verify data are sent to resident identification card by card reader of ID card 10 by preliminary election backstage SAM equipment 20.The verify data (being carried in resident identification card authentication response) of preliminary election backstage SAM equipment 20 pairs of identity cards carries out certification, authentication result is sent to card reader of ID card 10, card reader of ID card 10 receives the authentication result that the verify data (be carried in SAM authentication response) of resident identification card to SAM equipment 20 carries out certification.If all passed through to resident identification card and to the certification of SAM equipment 20, then card reader of ID card 10 obtains the identity information stored in resident identification card.The ID card information provided by the present embodiment obtains system, can reduce the cost of card reader of ID card 10, meanwhile, because multiple card reader of ID card 10 can share a preliminary election backstage SAM equipment 20, thus can improve the utilance of SAM equipment 20.
In addition, adopt the technical scheme that the embodiment of the present invention provides, the quantity of SAM equipment can be less than the quantity of card reader of ID card, reduce equipment cost, reduce cost of labor simultaneously, the autgmentability of SAM equipment can also be strengthened simultaneously, such as: if whole SAM equipment can not meet the demand of whole card reader of ID card, only need to increase SAM equipment, if whole SAM equipment can meet the demand of whole card reader of ID card, and also have other capacity, then only can increase card reader of ID card.
In an Alternate embodiments of the embodiment of the present invention, SAM equipment 20 can also carry out certification to the identity of card reader of ID card 10, to guarantee the legitimacy of card reader of ID card 10.In this Alternate embodiments, the second transceiver module 102, also for card reader of ID card authentication information is sent to preliminary election backstage SAM equipment 20; 3rd transceiver module 201, also for receiving card reader of ID card authentication information; Authentication module 203, also for carrying out certification to card reader of ID card authentication information.In specific implementation process, card reader of ID card 10 initiatively can send card reader of ID card authentication information to preliminary election backstage SAM equipment, and namely the second transceiver module 102 of card reader of ID card 10 can send card reader of ID card authentication information before sending SAM authentication request to preliminary election backstage SAM equipment 20 or simultaneously.Or, card reader of ID card 10 also can under the request of preliminary election backstage SAM equipment 20, card reader of ID card authentication information is sent to preliminary election backstage SAM equipment 20, namely the 3rd transceiver module 201 of preliminary election backstage SAM equipment 20 is after receiving SAM authentication request, in order to ensure the legitimacy of card reader of ID card, 3rd transceiver module 201 can send authentication request to card reader of ID card, request card reader of ID card 10 sends authentication ids information, after second transceiver module 102 receives this authentication request, send authentication ids information.Concrete, can realize one of in the following way between card reader of ID card 10 and preliminary election backstage SAM equipment 20:
Mode one: its certificate is sent to preliminary election backstage SAM equipment 20 by card reader of ID card 10, the certificate of this card reader of ID card of preliminary election backstage SAM equipment 20 certification;
Mode two: after card reader of ID card 10 utilizes its private key to sign to its certificate, is sent to its certificate and signature after SAM equipment 20 pairs of certificates in preliminary election backstage carry out certification and carries out sign test again.
As an Alternate embodiments of the embodiment of the present invention, transmit after the information transmitted between card reader of ID card 10 and preliminary election backstage SAM equipment 20 all can be encrypted, such as: card reader of ID card 10 and preliminary election backstage SAM equipment 20 negotiate transmission security key, afterwards, the transmission security key negotiated is utilized to be encrypted rear transmission; Or card reader of ID card 10 utilizes the PKI of preliminary election backstage SAM equipment 20 to be encrypted rear transmission; Or prestore symmetric key in card reader of ID card 10 and preliminary election backstage SAM equipment 20, utilizes this symmetric key to be encrypted the modes such as rear transmission, as long as the mode of guarantee information encrypted transmission protection scope of the present invention can all should be belonged to.
Card reader of ID card 10 is when obtaining the identity information stored in resident identification card, may need to obtain the cipher-text information wherein stored, in an Alternate embodiments of the embodiment of the present invention, the cipher-text information of reading can be sent to preliminary election backstage SAM equipment 20 by card reader of ID card 10, is decrypted by preliminary election backstage SAM equipment 20 pairs of ciphertexts.Particularly, in this Alternate embodiments, acquisition module 103, also for reading the first cleartext information and cipher-text information from resident identification card; Second transceiver module, also for cipher-text information being sent to preliminary election backstage SAM equipment 20; And receive the second plaintext information that SAM equipment 20 pairs of cipher-text information in preliminary election backstage are decrypted rear acquisition; Acquisition module 102, also for obtaining ID card information, wherein, the ID card information of acquisition at least comprises the first cleartext information and second plaintext information.By this Alternate embodiments, card reader of ID card 10 can get the cipher-text information stored in resident identification card, extends the function of card reader of ID card.
Read the identity information of acquisition for the ease of user, in an Alternate embodiments of the embodiment of the present invention, card reader of ID card 10 can also comprise: display module, for showing the ID card information that acquisition module 103 obtains.
In an alternative of the embodiment of the present invention, as shown in Figure 4, this system can also comprise: the server 30 connecting backstage SAM equipment 20.Preliminary election backstage SAM equipment 20 can send to server by the 3rd transceiver module 201 by sending to the information of card reader of ID card 10, by server, information is sent to card reader of ID card 10, and card reader of ID card 10 sends to preliminary election backstage SAM equipment 20 after sending to the information of preliminary election backstage SAM equipment 20 can be received by server by the second transceiver module 102 again.By this Alternate embodiments, can be managed each SAM equipment 20 by server, the flexibility of system is provided.
As an Alternate embodiments of the embodiment of the present invention, this server 30 can also be arranged in SAM system.Such as, this SAM system has a control section, multiple SAM equipment interface, and multiple SAM equipment.Namely this server 30 might not be individualism equipment, can also carry out integrated with SAM equipment.
In an alternative of the embodiment of the present invention, server 30 can also for storing the corresponding relation of a SAM equipment in n card reader of ID card at least one card reader of ID card and m SAM equipment; When first time receives the information from card reader of ID card 10, server according to this corresponding relation, can be selected the preliminary election backstage SAM equipment 20 corresponding with card reader of ID card 10, this information is transmitted to preliminary election backstage SAM equipment 20 from m SAM equipment.Wherein, this corresponding relation also can set according to certain rule, such as, can divide according to geographic area, the corresponding same SAM equipment 20 of card reader of ID card 10 in same region, or, distribute an ID also can to each card reader of ID card 10, divide according to No. ID, the corresponding same SAM equipment 20 of the card reader of ID card of ID in same scope, or, also can divide according to each card reader of ID card 10 address in a network (such as IP address).By this alternative, can server be passed through, multiple card reader of ID card be corresponded to a SAM equipment, improve system manageability, and, by multiple card reader of ID card is corresponded to a SAM equipment, if there is fault, also can promptly position fault.
In an alternative of the embodiment of the present invention, server 30 can also be used for the operating state of each SAM equipment 10 in m SAM equipment in register system, when first time receives the information from card reader of ID card 10, server can according to the operating state of each SAM equipment 10, select current operating state be idle SAM equipment as described preliminary election backstage SAM equipment, and the operating state of described preliminary election backstage SAM equipment is labeled as busy.By this alternative, a SAM equipment can be avoided simultaneously to receive the authentication request of multiple card reader of ID card, and cause the situation of decrease in efficiency.
In an alternative of the embodiment of the present invention, in order to discharge untapped SAM equipment fast, server can also be used for, after card reader of ID card 10 with preliminary election backstage SAM equipment 20 sign off, the operating state of preliminary election backstage SAM equipment 20 being labeled as the free time.
In an alternative of the embodiment of the present invention, as illustrated in Figures 5 and 6, this system can also comprise: the terminal 40 connecting card reader of ID card 10.Terminal is used for the information that card reader of ID card 10 sends to be forwarded to preliminary election backstage SAM equipment 20 (when system comprises server, as shown in Figure 4, this information is sent to server by terminal, send to preliminary election backstage SAM equipment 20 by server again) and information that preliminary election backstage SAM equipment 20 is sent (when system comprises server, as shown in Figure 4, this information is sent to server by preliminary election backstage SAM equipment 20, then sends to terminal by server) be forwarded to card reader of ID card 10.
As an Alternate embodiments of the embodiment of the present invention, terminal 40 can be fixed terminal or mobile terminal, and such as fixed terminal can be PC etc., and mobile terminal can be panel computer (PAD), smart mobile phone or intelligent wristwatch etc.Certainly, terminal 40 can also carry out information and/or instruction input etc., does not repeat them here.
In an alternative of the embodiment of the present invention, the ID card information of reading can also be sent to terminal by card reader of ID card 10, and terminal may be used for the described ID card information receiving card reader of ID card 10 transmission, and shows ID card information.Thus user can be facilitated to consult ID card information.
Embodiment 2
Present embodiments provide a kind of ID card information acquisition methods, this identity card acquisition methods is applied to the system described in embodiment 1 and realizes.
The flow chart of the ID card information acquisition methods that Fig. 7 provides for the present embodiment, as shown in Figure 7, for arbitrary card reader of ID card of the card reader of ID card of n in system, the method will comprise the following steps:
Step S701, card reader of ID card receives the SAM authentication request that resident identification card sends, and SAM authentication request is sent to a preliminary election backstage SAM equipment.
As an Alternate embodiments of the embodiment of the present invention, card reader of ID card can adopt between cordless and resident identification card and carry out information interaction, such as, adopt NFC mode etc.Card reader of ID card can adopt wired mode or carry out information interaction between wireless mode and SAM equipment, such as: wired mode can adopt audible, USB mode or serial mode etc.; Wireless mode can adopt bluetooth approach, WIFI mode, infrared mode, 2G mode, 3G mode, 4G mode, 2.4G mode, 900M mode or zigbee mode etc.Now, the mode of mating can be adopted between card reader of ID card with preliminary election backstage SAM equipment to carry out information interaction, if such as card reader of ID card adopts bluetooth approach and SAM equipment to carry out information interaction, then SAM equipment in preliminary election backstage also adopts the bluetooth approach of coupling.Because card reader of ID card can adopt various ways and preliminary election backstage SAM equipment to carry out information interaction, improve flexibility and the convenience of card reader of ID card.
Step S702, preliminary election backstage SAM equipment receives SAM authentication request, generates SAM authentication response, and SAM authentication response is sent to card reader of ID card.
Step S703, card reader of ID card receives SAM authentication response, and SAM authentication response is sent to resident identification card, and receives SAM certification that resident identification card sends by result, and SAM certification is sent to preliminary election backstage SAM equipment by result.
Step S704, preliminary election backstage SAM equipment receives SAM certification and passes through result.
Above-mentioned steps S701 to step S704 is that resident identification card carries out the flow process of certification to preliminary election backstage SAM equipment, as an Alternate embodiments of the embodiment of the present invention, a random factor at least can be comprised in the SAM authentication request that resident identification card sends, this random factor is sent to preliminary election backstage SAM equipment, so that preliminary election backstage SAM equipment obtains SAM authentication response after processing this random factor, afterwards, resident identification card receives SAM authentication response, certification is carried out to SAM authentication response, and after certification is passed through, generate SAM certification and be back to preliminary election backstage SAM equipment by result.In embodiments of the present invention, random factor can be one or its combination in any such as time factor, event factor, random number and random character.Concrete, certification can be carried out in the following way:
Each SAM equipment all stores master key, sub-key is stored in each resident identification card, resident identification card generates a random number, and this random number is carried in SAM authentication request, after preliminary election backstage SAM equipment obtains this random number, master key is utilized to carry out hash calculating to the information preset, obtain the sub-key of this resident identification card, the sub-key obtained is utilized to carry out MAC (Message Authentication Code to random number, message authentication code) calculate MAC value, and this MAC value is carried in SAM authentication response is back to resident identification card, resident identification card obtains this MAC value, the sub-key utilizing self to store carries out MAC calculating to the random number generated, obtain MAC check value, whether the MAC value that the preliminary election backstage SAM equipment relatively obtained sends is identical with the MAC check value calculated, and after more identical, confirm that certification preliminary election backstage SAM equipment passes through, generate SAM certification and pass through result, and this result is back to preliminary election backstage SAM equipment.
Resident identification card carries out after certification passes through to preliminary election backstage SAM equipment, and resident identification card just granted identities card card reader reads its ID card information stored.
Step S705, resident identification card authentication request is sent to card reader of ID card by preliminary election backstage SAM equipment.
Step S706, card reader of ID card receives resident identification card authentication request, resident identification card authentication request is sent to resident identification card, receives the resident identification card authentication response that resident identification card generates, and resident identification card authentication response is sent to preliminary election backstage SAM equipment.
Step S707, preliminary election backstage SAM equipment carries out certification to resident identification card authentication response, passes through result, and resident identification card certification is sent to card reader of ID card by result in certification by the certification of rear generation resident identification card.
Step S708, card reader of ID card receives resident identification card certification and passes through result.
Resident identification card certification can also be sent to resident identification card by result by card reader of ID card.
Above-mentioned steps S705 to step S708 is preliminary election backstage SAM equipment carries out certification flow process to resident identification card.As an Alternate embodiments of the embodiment of the present invention, also a random factor at least can be comprised in the resident identification card authentication request that preliminary election backstage SAM equipment sends, this random factor is sent to resident identification card, so that resident identification card obtains resident identification card authentication response after processing this random factor, afterwards, preliminary election backstage SAM equipment receives resident identification card authentication response, certification is carried out to resident identification card authentication response, and after certification is passed through, generate resident identification card certification and be back to card reader of ID card by result.In embodiments of the present invention, random factor can be one or its combination in any such as time factor, event factor, random number and random character.Concrete, certification can be carried out in the following way:
Each SAM equipment all stores master key, sub-key is stored in each resident identification card, preliminary election backstage SAM equipment generates a random number, and this random number is carried in resident identification card authentication request, after resident identification card obtains this random number, the sub-key utilizing self to store carries out MAC calculating to the random number received, obtain MAC value, and this MAC value is carried in resident identification card authentication response is back to preliminary election backstage SAM equipment, after preliminary election backstage SAM equipment receives resident identification card authentication response, master key is utilized to carry out hash calculating to the information preset, obtain the sub-key of this resident identification card, utilize the sub-key obtained to carry out MAC to the random number generated and calculate MAC check value, whether the MAC value that the resident identification card relatively obtained sends is identical with the MAC check value calculated, and after more identical, confirm that certification resident identification card passes through, generate resident identification card certification and pass through result, and this result is back to card reader of ID card.
In specific implementation process, resident identification card carries out certification and preliminary election backstage SAM equipment to preliminary election backstage SAM equipment and carries out certification not precedence relationship in time to resident identification card, namely also step S705-step S708 can first be performed, rear execution step S701-step S704.
Step S709, card reader of ID card obtains ID card information.
After mutual authentication passes through, card reader of ID card obtains the ID card information stored in resident identification card.
By the said method that the present embodiment provides, SAM function is shifted out card reader of ID card, the authentication request of resident identification card and verify data are sent to preliminary election backstage SAM equipment by card reader of ID card, and authentication request and verify data are sent to resident identification card by card reader of ID card by preliminary election backstage SAM equipment.The verify data (be carried in resident identification card authentication response) of preliminary election backstage SAM equipment to identity card carries out certification, authentication result is sent to card reader of ID card, and card reader of ID card receives the authentication result that the verify data (be carried in SAM authentication response) of resident identification card to SAM equipment carries out certification.If all passed through to resident identification card and to the certification of SAM equipment, then card reader of ID card obtains the identity information stored in resident identification card.The ID card information acquisition methods provided by the present embodiment, can reduce the cost of card reader of ID card, meanwhile, because multiple card reader of ID card can share a SAM equipment, thus can improve the utilance of SAM equipment.
In an Alternate embodiments of the embodiment of the present invention, SAM equipment can also carry out certification to the identity of card reader of ID card, to guarantee the legitimacy of card reader of ID card.In this Alternate embodiments, before preliminary election backstage SAM equipment generates SAM authentication response, the method can also comprise: card reader of ID card authentication information is sent to preliminary election backstage SAM equipment by card reader of ID card; Preliminary election backstage SAM equipment carries out certification to described card reader of ID card authentication information.In specific implementation process, card reader of ID card initiatively can send card reader of ID card authentication information to preliminary election backstage SAM equipment, and namely card reader of ID card can send card reader of ID card authentication information before sending SAM authentication request to preliminary election backstage SAM equipment or simultaneously.Or, card reader of ID card also can under the request of preliminary election backstage SAM equipment, card reader of ID card authentication information is sent to preliminary election backstage SAM equipment, namely SAM equipment in preliminary election backstage is after receiving SAM authentication request, in order to ensure the legitimacy of card reader of ID card, preliminary election backstage SAM equipment can send authentication request to card reader of ID card, and request card reader of ID card sends authentication ids information, after card reader of ID card receives this authentication request, send authentication ids information.
Concrete, can realize one of in the following way between card reader of ID card and preliminary election backstage SAM equipment:
Mode one: its certificate is sent to preliminary election backstage SAM equipment by card reader of ID card, the certificate of preliminary election backstage this card reader of ID card of SAM device authentication;
Mode two: after card reader of ID card utilizes its private key to sign to its certificate, is sent to its certificate and signature after preliminary election backstage SAM equipment carries out certification to certificate and carries out sign test again.
As an Alternate embodiments of the embodiment of the present invention, transmit after the information transmitted between card reader of ID card and preliminary election backstage SAM equipment all can be encrypted, such as: card reader of ID card and preliminary election backstage SAM equipment negotiate transmission security key, afterwards, the transmission security key negotiated is utilized to be encrypted rear transmission; Or card reader of ID card utilizes the PKI of preliminary election backstage SAM equipment to be encrypted rear transmission; Or prestore symmetric key in card reader of ID card and preliminary election backstage SAM equipment, utilizes this symmetric key to be encrypted the modes such as rear transmission, as long as the mode of guarantee information encrypted transmission protection scope of the present invention can all should be belonged to.
Card reader of ID card 10 is when obtaining the identity information stored in resident identification card, may need to obtain the cipher-text information wherein stored, in an Alternate embodiments of the embodiment of the present invention, the step that card reader of ID card obtains ID card information can comprise: card reader of ID card reads the first cleartext information and cipher-text information from resident identification card, and cipher-text information is sent to preliminary election backstage SAM equipment; Preliminary election backstage SAM equipment is decrypted rear acquisition second plaintext information to cipher-text information, and second plaintext information is sent to card reader of ID card; Card reader of ID card obtains ID card information, and wherein, ID card information at least comprises the first cleartext information and second plaintext information.By this Alternate embodiments, card reader of ID card 10 can get the cipher-text information stored in resident identification card, extends the function of card reader of ID card.
The identity information of acquisition is read for the ease of user, in an Alternate embodiments of the embodiment of the present invention, after getting ID card information, the ID card information that card reader of ID card display obtains.
In an alternative of the embodiment of the present invention, preliminary election backstage SAM equipment can by server to card reader of ID card transmission information and by the information of server reception from card reader of ID card.Namely can comprise server in system, by server, each SAM equipment be managed, the flexibility of system is provided.
In an alternative of the embodiment of the present invention, server can store the corresponding relation of a SAM equipment in n card reader of ID card at least one card reader of ID card and m SAM equipment.Before SAM authentication request is sent to preliminary election backstage SAM equipment by server, server, according to this corresponding relation, selects the SAM equipment corresponding with card reader of ID card, i.e. preliminary election backstage SAM equipment from m SAM equipment.Wherein, this corresponding relation also can set according to certain rule, such as, can divide according to geographic area, the corresponding same SAM equipment 20 of card reader of ID card 10 in same region, or, distribute an ID also can to each card reader of ID card 10, divide according to No. ID, the corresponding same SAM equipment 20 of the card reader of ID card of ID in same scope, or, also can divide according to each card reader of ID card 10 address in a network (such as IP address).By this alternative, can server be passed through, multiple card reader of ID card be corresponded to a SAM equipment, improve system manageability, and, by multiple card reader of ID card is corresponded to a SAM equipment, if there is fault, also can promptly position fault.
In an alternative of the embodiment of the present invention, server can also be used for the operating state of each SAM equipment in m SAM equipment in register system, before SAM authentication request is sent to preliminary election backstage SAM equipment, server select to select from m SAM equipment current operating state be the SAM equipment of free time as preliminary election backstage SAM equipment, and the operating state of preliminary election backstage SAM equipment is labeled as busy.By this alternative, a SAM equipment can be avoided simultaneously to receive the authentication request of multiple card reader of ID card, and cause the situation of decrease in efficiency.
In an alternative of the embodiment of the present invention, in order to discharge untapped SAM equipment fast, the method can also comprise: the operating state of preliminary election backstage SAM equipment, after card reader of ID card and SAM devices communicating terminate, is labeled as the free time by server.
In an alternative of the embodiment of the present invention, this system can also comprise: the terminal connecting card reader of ID card.In this alternative, the information that card reader of ID card sends is forwarded to preliminary election backstage SAM equipment (when system comprises server by this terminal, this information is sent to server by terminal, send to preliminary election backstage SAM equipment by server again) and by preliminary election backstage SAM equipment send information (when system comprises server, this information is sent to server by preliminary election backstage SAM equipment, then sends to terminal by server) be forwarded to card reader of ID card.
In an alternative of the embodiment of the present invention, after card reader of ID card obtains ID card information, the method can also comprise: ID card information is sent to terminal by card reader of ID card; Terminal demonstration ID card information.Thus user can be facilitated to consult ID card information.
Describe and can be understood in flow chart or in this any process otherwise described or method, represent and comprise one or more for realizing the module of the code of the executable instruction of the step of specific logical function or process, fragment or part, and the scope of the preferred embodiment of the present invention comprises other realization, wherein can not according to order that is shown or that discuss, comprise according to involved function by the mode while of basic or by contrary order, carry out n-back test, this should understand by embodiments of the invention person of ordinary skill in the field.
Should be appreciated that each several part of the present invention can realize with hardware, software, firmware or their combination.In the above-described embodiment, multiple step or method can with to store in memory and the software performed by suitable instruction execution system or firmware realize.Such as, if realized with hardware, the same in another embodiment, can realize by any one in following technology well known in the art or their combination: the discrete logic with the logic gates for realizing logic function to data-signal, there is the application-specific integrated circuit (ASIC) of suitable combinational logic gate circuit, programmable gate array (PGA), field programmable gate array (FPGA) etc.
Those skilled in the art are appreciated that realizing all or part of step that above-described embodiment method carries is that the hardware that can carry out instruction relevant by program completes, described program can be stored in a kind of computer-readable recording medium, this program perform time, step comprising embodiment of the method one or a combination set of.
In addition, each functional unit in each embodiment of the present invention can be integrated in a processing module, also can be that the independent physics of unit exists, also can be integrated in a module by two or more unit.Above-mentioned integrated module both can adopt the form of hardware to realize, and the form of software function module also can be adopted to realize.If described integrated module using the form of software function module realize and as independently production marketing or use time, also can be stored in a computer read/write memory medium.
The above-mentioned storage medium mentioned can be read-only memory, disk or CD etc.
In the description of this specification, specific features, structure, material or feature that the description of reference term " embodiment ", " some embodiments ", " example ", " concrete example " or " some examples " etc. means to describe in conjunction with this embodiment or example are contained at least one embodiment of the present invention or example.In this manual, identical embodiment or example are not necessarily referred to the schematic representation of above-mentioned term.And the specific features of description, structure, material or feature can combine in an appropriate manner in any one or more embodiment or example.
Although illustrate and describe embodiments of the invention above, be understandable that, above-described embodiment is exemplary, can not be interpreted as limitation of the present invention, those of ordinary skill in the art can change above-described embodiment within the scope of the invention when not departing from principle of the present invention and aim, revising, replacing and modification.Scope of the present invention is by claims and equivalency thereof.
Claims (20)
1. an ID card information acquisition methods, is characterized in that, be applied to the system comprising front end card reader of ID card and preliminary election backstage SAM equipment, described method comprises:
Described front end card reader of ID card receives the SAM authentication request that resident identification card sends, and described SAM authentication request is sent to described preliminary election backstage SAM equipment;
Described preliminary election backstage SAM equipment receives described SAM authentication request, generates SAM authentication response, and described SAM authentication response is sent to described front end card reader of ID card;
Described front end card reader of ID card receives described SAM authentication response, described SAM authentication response is sent to described resident identification card, and receive SAM certification that described resident identification card sends by result, and described SAM certification is sent to described preliminary election backstage SAM equipment by result;
Described preliminary election backstage SAM equipment receives described SAM certification by result, and resident identification card authentication request is sent to described front end card reader of ID card;
Described front end card reader of ID card receives described resident identification card authentication request, described resident identification card authentication request is sent to described resident identification card, receive the resident identification card authentication response that described resident identification card generates, and described resident identification card authentication response is sent to described preliminary election backstage SAM equipment;
Described preliminary election backstage SAM equipment carries out certification to described resident identification card authentication response, passes through result, and described resident identification card certification is sent to described front end card reader of ID card by result in certification by the certification of rear generation resident identification card;
Described front end card reader of ID card receives described resident identification card certification by result, obtains ID card information.
2. method according to claim 1, is characterized in that, before described preliminary election backstage SAM equipment generates SAM authentication response, described method also comprises:
Front end card reader of ID card authentication information is sent to described preliminary election backstage SAM equipment by described front end card reader of ID card;
Described preliminary election backstage SAM equipment carries out certification to described front end card reader of ID card authentication information.
3. method according to claim 1 and 2, is characterized in that, described front end card reader of ID card obtains ID card information and comprises:
Described front end card reader of ID card reads the first cleartext information and cipher-text information from described resident identification card, and described cipher-text information is sent to described preliminary election backstage SAM equipment;
Described preliminary election backstage SAM equipment is decrypted rear acquisition second plaintext information to described cipher-text information, and described second plaintext information is sent to described front end card reader of ID card;
Described front end card reader of ID card obtains described ID card information, and wherein, described ID card information at least comprises described first cleartext information and second plaintext information.
4. the method according to any one of claims 1 to 3, is characterized in that, described method also comprises:
Described front end card reader of ID card shows described ID card information.
5. the method according to any one of Claims 1-4, is characterized in that,
Described preliminary election backstage SAM equipment sends information by server to described front end card reader of ID card;
Described preliminary election backstage SAM equipment receives the information from described front end card reader of ID card by server.
6. method according to claim 5, is characterized in that,
At least one front end card reader of ID card of described server stores and the corresponding relation of a preliminary election backstage SAM equipment;
Before described SAM authentication request is sent to preliminary election backstage SAM equipment by described server, described method also comprises:
Described server, according to described corresponding relation, selects the described preliminary election backstage SAM equipment corresponding with described front end card reader of ID card.
7. method according to claim 5, is characterized in that,
The operating state of described server record each preliminary election backstage SAM equipment;
Before described SAM authentication request is sent to preliminary election backstage SAM equipment by described server, described method also comprises:
Described server select current operating state be idle preliminary election backstage SAM equipment as described preliminary election backstage SAM equipment, and the operating state of described preliminary election backstage SAM equipment is labeled as busy.
8. method according to claim 7, is characterized in that, described method also comprises:
The operating state of described preliminary election backstage SAM equipment, after described front end card reader of ID card and described preliminary election backstage SAM devices communicating terminate, is labeled as the free time by described server.
9. the method according to any one of claim 1 to 8, is characterized in that,
Described front end card reader of ID card sends information by terminal to described preliminary election backstage SAM equipment;
Described front end card reader of ID card receives the information from described preliminary election backstage SAM equipment by described terminal.
10. method according to claim 9, is characterized in that, after described front end card reader of ID card obtains ID card information, described method also comprises:
Described ID card information is sent to described terminal by described front end card reader of ID card;
ID card information described in described terminal demonstration.
11. 1 kinds of ID card informations obtain system, it is characterized in that, comprising: the system of front end card reader of ID card and backstage preliminary election SAM equipment; Wherein,
Described front end card reader of ID card comprises: the first transceiver module, the second transceiver module and acquisition module;
Described preliminary election backstage SAM equipment comprises: the 3rd transceiver module, generation module and authentication module;
Described first transceiver module, for receiving the SAM authentication request that resident identification card sends;
Described second transceiver module, for and by described first transceiver module receive described SAM authentication request be sent to preliminary election backstage SAM equipment;
Described 3rd transceiver module, for receiving described SAM authentication request;
Described generation module, for after described 3rd transceiver module receives described SAM authentication request, generates SAM authentication response;
Described 3rd transceiver module, also for described SAM authentication response is sent to described front end card reader of ID card;
Described second transceiver module, also for receiving described SAM authentication response;
Described first transceiver module, the described SAM authentication response also for being received by described second transceiver module is sent to described resident identification card, and result is passed through in the SAM certification receiving the transmission of described resident identification card;
Described second transceiver module, the described SAM certification also for being received by described first transceiver module is sent to described preliminary election backstage SAM equipment by result;
Described 3rd transceiver module, also for receiving described SAM certification by result, and is sent to described front end card reader of ID card by resident identification card authentication request;
Described second transceiver module, also for receiving described resident identification card authentication request;
Described first transceiver module, the described resident identification card authentication request also for being received by described second transceiver module is sent to described resident identification card, receives the resident identification card authentication response that described resident identification card generates;
Described second transceiver module, the described resident identification card authentication response also for being received by described first transceiver module is sent to described preliminary election backstage SAM equipment;
Described 3rd transceiver module, also for receiving described resident identification card authentication response;
Described authentication module, carries out certification for the described resident identification card authentication response received described 3rd transceiver module, passes through result in certification by the certification of rear generation resident identification card;
Described 3rd transceiver module, also for described resident identification card certification is sent to described front end card reader of ID card by result;
Described second transceiver module, also passes through result for receiving described resident identification card certification;
Described acquisition module, for receive at described second transceiver module described residential identity certification by result after, obtain ID card information.
12. systems according to claim 11, is characterized in that,
Described second transceiver module, also for card reader of ID card authentication information being sent to described preliminary election backstage SAM equipment;
Described 3rd transceiver module, also for receiving described card reader of ID card authentication information;
Described authentication module, also for carrying out certification to described card reader of ID card authentication information.
13. systems according to claim 11 or 12, is characterized in that,
Described acquisition module, also for reading the first cleartext information and cipher-text information from described resident identification card;
Described second transceiver module, also for described cipher-text information being sent to described preliminary election backstage SAM equipment; Receive described preliminary election backstage SAM equipment is decrypted rear acquisition second plaintext information to described cipher-text information;
Described acquisition module, also for obtaining described ID card information, wherein, described ID card information at least comprises described first cleartext information and second plaintext information.
14., according to claim 11 to the system described in 13 any one, is characterized in that, described front end card reader of ID card also comprises: display module;
Described display module, for showing described ID card information.
15., according to claim 11 to the system described in 14 any one, is characterized in that, described system also comprises: the server connecting described preliminary election backstage SAM equipment;
Described server, is forwarded to described card reader of ID card for the information sent by described preliminary election backstage SAM equipment; And the information that described card reader of ID card sends is forwarded to described preliminary election backstage SAM equipment.
16. systems according to claim 15, is characterized in that,
Described server, also for storing the corresponding relation of at least one front end card reader of ID card and a preliminary election backstage SAM equipment; According to described corresponding relation, select the described preliminary election backstage SAM equipment corresponding with described card reader of ID card.
17. systems according to claim 15, is characterized in that,
Described server, also for recording the operating state of each preliminary election backstage SAM equipment; Select current operating state to be idle described preliminary election backstage SAM equipment, and the operating state of described preliminary election backstage SAM equipment is labeled as busy.
18. systems according to claim 17, is characterized in that,
Described server, also for after described front end card reader of ID card and described preliminary election backstage SAM devices communicating terminate, is labeled as the free time by the operating state of described preliminary election backstage SAM equipment.
19., according to claim 11 to the system described in 18 any one, is characterized in that, described system also comprises: the terminal connecting described front end card reader of ID card;
Described terminal, the information for being sent by described front end card reader of ID card is forwarded to described preliminary election backstage SAM equipment; And the information that described preliminary election backstage SAM equipment sends is forwarded to described front end card reader of ID card.
20. systems according to claim 19, is characterized in that, described terminal, also for receiving the described ID card information that described front end card reader of ID card sends, and show described ID card information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510022961.7A CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510022961.7A CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104639538A true CN104639538A (en) | 2015-05-20 |
Family
ID=53217852
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510022961.7A Pending CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104639538A (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104902465A (en) * | 2015-06-10 | 2015-09-09 | 广州市森锐电子科技有限公司 | Long-distance card-writing method and system for opening an account with the real-name system |
| CN105046136A (en) * | 2015-05-20 | 2015-11-11 | 李明 | Identity card information obtaining method, terminal and identity card information obtaining system |
| CN105391555A (en) * | 2015-11-19 | 2016-03-09 | 李明 | Method for accessing SAM device, background, and system for accessing SAM device |
| CN105488367A (en) * | 2015-11-19 | 2016-04-13 | 李明 | SAM apparatus protection method, background and system |
| CN105991649A (en) * | 2016-01-21 | 2016-10-05 | 李明 | Scheduling system for reading identity card |
| CN106027464A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Safety information control method and identity card reading terminal |
| CN106027471A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Scheduling server applied to identity card reading |
| CN106027474A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Identity card reading terminal in identity card authentication system |
| CN106027254A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key use method for identity card reading terminal in identity card authentication system |
| CN106027482A (en) * | 2016-04-18 | 2016-10-12 | 李明 | Identity card reading response method and device |
| CN106027475A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key obtaining method and identity card information transmission method and system |
| CN106027249A (en) * | 2015-11-10 | 2016-10-12 | 天地融科技股份有限公司 | Identity card reading method and system |
| CN106027463A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Data transmission method |
| CN106372557A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Method, device and system for acquiring certificate card information |
| CN106372554A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Certificate card information collection method and system |
| CN106446731A (en) * | 2015-08-05 | 2017-02-22 | 合肥格易集成电路有限公司 | Card reader device authenticity discrimination method and card reader device |
| CN108881268A (en) * | 2018-07-03 | 2018-11-23 | 上海常仁信息科技有限公司 | A kind of identity card system of whole world robot |
| CN109101821A (en) * | 2018-06-26 | 2018-12-28 | 上海常仁信息科技有限公司 | A kind of robot ID card information acquisition system and method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102402654A (en) * | 2010-09-16 | 2012-04-04 | 上海芯邦泰智能科技有限公司 | System and method for sharing security module by card readers |
| CN102930441A (en) * | 2012-09-20 | 2013-02-13 | 华东理工大学 | Radio frequency identification (RFID)-based wine anti-counterfeiting system, RFID label and RFID reader authenticating method |
| CN103593634A (en) * | 2013-11-08 | 2014-02-19 | 国家电网公司 | Network centralized decoding system and method of identity card identifier |
-
2015
- 2015-01-15 CN CN201510022961.7A patent/CN104639538A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102402654A (en) * | 2010-09-16 | 2012-04-04 | 上海芯邦泰智能科技有限公司 | System and method for sharing security module by card readers |
| CN102930441A (en) * | 2012-09-20 | 2013-02-13 | 华东理工大学 | Radio frequency identification (RFID)-based wine anti-counterfeiting system, RFID label and RFID reader authenticating method |
| CN103593634A (en) * | 2013-11-08 | 2014-02-19 | 国家电网公司 | Network centralized decoding system and method of identity card identifier |
Non-Patent Citations (6)
| Title |
|---|
| 中国标准出版社总编室: "《中国国家标准汇编》", 31 January 2003 * |
| 宁焕生: "《RFID重大工程与国家物联网》", 29 February 2012 * |
| 梁雪梅,路亚: "《数字身份认证技术》", 30 September 2014 * |
| 熊平: "《信息安全原理及应用》", 31 January 2012 * |
| 许毅 陈建军: "《RFID原理与应用》", 31 January 2013 * |
| 马春光: "《现代密码学》", 31 August 2014 * |
Cited By (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105046136A (en) * | 2015-05-20 | 2015-11-11 | 李明 | Identity card information obtaining method, terminal and identity card information obtaining system |
| CN105046136B (en) * | 2015-05-20 | 2018-03-20 | 李明 | ID card information acquisition methods, terminal and ID card information obtain system |
| CN104902465A (en) * | 2015-06-10 | 2015-09-09 | 广州市森锐电子科技有限公司 | Long-distance card-writing method and system for opening an account with the real-name system |
| CN104902465B (en) * | 2015-06-10 | 2019-01-01 | 广州市森锐科技股份有限公司 | System of real name is opened an account remote writing-card method and system |
| CN106446731A (en) * | 2015-08-05 | 2017-02-22 | 合肥格易集成电路有限公司 | Card reader device authenticity discrimination method and card reader device |
| CN106027249A (en) * | 2015-11-10 | 2016-10-12 | 天地融科技股份有限公司 | Identity card reading method and system |
| CN106027249B (en) * | 2015-11-10 | 2019-09-06 | 天地融科技股份有限公司 | Identity card card reading method and system |
| CN105391555A (en) * | 2015-11-19 | 2016-03-09 | 李明 | Method for accessing SAM device, background, and system for accessing SAM device |
| CN105488367A (en) * | 2015-11-19 | 2016-04-13 | 李明 | SAM apparatus protection method, background and system |
| CN105391555B (en) * | 2015-11-19 | 2019-10-01 | 李明 | A kind of method, backstage and system accessing SAM device |
| CN105488367B (en) * | 2015-11-19 | 2019-05-21 | 李明 | A kind of guard method, backstage and the system of SAM device |
| CN106027474A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Identity card reading terminal in identity card authentication system |
| CN105991649B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of scheduling system of reading identity card |
| CN106027464B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of security information control method and identity card card-reading terminal |
| CN106027463B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of method of data transmission |
| CN106027475A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key obtaining method and identity card information transmission method and system |
| CN106027471B (en) * | 2016-01-21 | 2019-10-01 | 李明 | Scheduling server applied to identity card reading |
| CN105991649A (en) * | 2016-01-21 | 2016-10-05 | 李明 | Scheduling system for reading identity card |
| CN106027463A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Data transmission method |
| CN106027254A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key use method for identity card reading terminal in identity card authentication system |
| CN106027254B (en) * | 2016-01-21 | 2019-05-21 | 李明 | A kind of method that identity card card-reading terminal uses key in authentication ids system |
| CN106027471A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Scheduling server applied to identity card reading |
| CN106027475B (en) * | 2016-01-21 | 2019-06-28 | 李明 | The transmission method and system of a kind of key acquisition method, ID card information |
| CN106027464A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Safety information control method and identity card reading terminal |
| CN106027482A (en) * | 2016-04-18 | 2016-10-12 | 李明 | Identity card reading response method and device |
| CN106027482B (en) * | 2016-04-18 | 2019-11-15 | 李明 | A kind of identity card card reading response method and device |
| CN106372554A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Certificate card information collection method and system |
| CN106372557A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Method, device and system for acquiring certificate card information |
| CN109101821A (en) * | 2018-06-26 | 2018-12-28 | 上海常仁信息科技有限公司 | A kind of robot ID card information acquisition system and method |
| CN108881268A (en) * | 2018-07-03 | 2018-11-23 | 上海常仁信息科技有限公司 | A kind of identity card system of whole world robot |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104639538A (en) | Identity card information obtaining method and system | |
| CN105472192B (en) | The smart machine, terminal device and method realizing control security certificate and sharing | |
| CN105471974B (en) | Realize smart machine, terminal device and the method remotely controlled | |
| CN107358441B (en) | Payment verification method and system, mobile device and security authentication device | |
| CN104636777A (en) | Identity card information obtaining system | |
| US9756036B2 (en) | Mechanisms for certificate revocation status verification on constrained devices | |
| CN112165712B (en) | Method, device, system and storage medium for intelligent device to access wireless network | |
| CN110235424A (en) | For providing the device and method with managing security information in a communications system | |
| CN105245552B (en) | Realize smart machine, terminal device and the method for security control authorization | |
| CN103220148B (en) | The method of electronic signature token operation response request, system and electronic signature token | |
| CN105263141A (en) | Household electrical appliance and control method thereof | |
| CN102111265A (en) | Method for encrypting embedded secure access module (ESAM) of power system acquisition terminal | |
| CN103650554A (en) | Data integrity for proximity-based communication | |
| CN103248491B (en) | A kind of backup method of electronic signature token private key and system | |
| CN103136664A (en) | Trading system and trading method of smart card with electronic signature function | |
| CN109327823B (en) | Networking method, device and system, ZigBee equipment and storage medium | |
| CN112187470B (en) | Internet of things certificate distribution method, device and system, storage medium and electronic device | |
| CN104899532A (en) | Method, apparatus and system for acquiring identity card information | |
| CN112165713B (en) | Method, device, system and storage medium for intelligent device to access wireless network | |
| CN104935435A (en) | Login methods, terminal and application server | |
| CN106027250A (en) | Identity card information safety transmission method and system | |
| EP2890083B1 (en) | Key distribution system and method | |
| CN106452999B (en) | Intelligent household appliance and method and device for safely accessing intelligent household appliance | |
| CN105376059A (en) | Method and system for performing application signature based on electronic key | |
| CN104966035A (en) | Identity card information acquiring method, device, and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150520 |