CN105374075B - PSAM, manager, management method and system, vehicle toll management system - Google Patents
PSAM, manager, management method and system, vehicle toll management system Download PDFInfo
- Publication number
- CN105374075B CN105374075B CN201410428084.9A CN201410428084A CN105374075B CN 105374075 B CN105374075 B CN 105374075B CN 201410428084 A CN201410428084 A CN 201410428084A CN 105374075 B CN105374075 B CN 105374075B
- Authority
- CN
- China
- Prior art keywords
- psam
- manager
- state
- module
- modification command
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000007726 management method Methods 0.000 title claims abstract description 49
- 230000008859 change Effects 0.000 claims abstract description 16
- 238000012795 verification Methods 0.000 claims abstract description 15
- 238000012986 modification Methods 0.000 claims description 125
- 230000004048 modification Effects 0.000 claims description 125
- 238000012544 monitoring process Methods 0.000 claims description 36
- 238000012545 processing Methods 0.000 claims description 17
- 239000004973 liquid crystal related substance Substances 0.000 claims description 4
- 239000003607 modifier Substances 0.000 abstract 3
- 238000010586 diagram Methods 0.000 description 10
- 238000005242 forging Methods 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 238000013459 approach Methods 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 230000008676 import Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
Landscapes
- Mobile Radio Communication Systems (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of PSAM, manager, management method and system, vehicle toll management system.The PSAM management methods include:Manager location verification step:PSAM managers obtain the positional information of itself;PSAM managers judge whether the position of PSAM managers changes or ask supervision and management center to judge whether the position of PSAM managers changes, and when PSAM managers position does not change, determine that the position of itself is legal;PSAM status modifier steps:PSAM is to PSAM manager broadcast state querying commands;PSAM managers obtain the ID of the PSAM, and when judging that the ID is in the ID lists pre-registered, return to status modifier order;Its global state value is revised as can use by PSAM when the ID in judging the status modifier order is self ID;PSAM instructions perform step:It is legal in the position of PSAM managers, and the global state value of the PSAM is that the PSAM carries out relevant work according to the instruction of read write line when can use.Implement technical scheme, can eliminate safe hidden trouble.
Description
Technical Field
The invention relates to the field of intelligent safety management, in particular to a PSAM (Power System Access Module), a manager, a management method and system and a vehicle charging management system.
Background
The PSAM (terminal security Module) is widely applied to devices such as commercial POS machines, network point terminals, direct connection terminals and the like, has a security control management function, and is suitable for multi-application environments.
For example, parking lots currently used in offices, malls, office buildings, residential quarters, and the like generally operate an independent parking lot system by property to charge vehicles entering and exiting the parking lot, the parking lot generally charges a fee by data communication between a smart card held by a user and a transaction terminal at a lane entrance/exit, a secure transaction based on the smart card is guaranteed by a key system in order to ensure the accuracy of the fee, and the user card needs to be authenticated by a PSAM installed at the transaction terminal when the user card performs a transaction at the terminal. The PSAM has an associated consumption key if consumption is involved. The manager manages the key of the PSAM and the key of the user to achieve control of authentication and consumption. The security of the transaction is guaranteed by the security of the key.
Another typical application based on smart cards, such as: for example, PSAMs are installed at an entrance and an exit of an Electronic Toll Collection (ETC) lane of an expressway, respectively. Only if the PSAM is obtained, the user card can write entrance information when entering the ETC lane, and can consume deductions when exiting.
Theoretically, no matter whether the PSAM is used for a parking lot, an expressway and other smart card systems, once the PSAM comes out of a monitoring management center (the monitoring management center issues the PSAM in a unified manner), the use of the PSAM cannot be limited, and effective monitoring cannot be achieved. Any PSAM can be used within the capability of the PSAM as long as the PSAM is available. If the PSAM is lost internally, an attacker transfers the PSAM and a matched program to another place for use, the content of the user card can be checked at will, the information of the user card can be rewritten at will, even the amount of money of the user card can be deducted at will, and hidden danger is brought to the safety of transaction.
Disclosure of Invention
The technical problem to be solved by the invention is to provide a PSAM, a manager, a management method and a system, and a vehicle charging management system, aiming at the defect of potential safety hazard of the PSAM in the prior art, so that the potential safety hazard can be eliminated.
The technical scheme adopted by the invention for solving the technical problems is as follows: a PSAM management method is constructed, and comprises the following steps:
manager location verification step:
a1, the PSAM manager acquires the position information of the PSAM manager;
the PSAM manager judges whether the position of the PSAM manager changes or requests the monitoring management center to judge whether the position of the PSAM manager changes, and when the position of the PSAM manager does not change, the position of the PSAM manager is determined to be legal;
PSAM state modification step:
PSAM broadcasts a status query command to a PSAM manager, wherein the status query command comprises an ID of the PSAM manager;
the PSAM manager obtains the ID of the PSAM according to a status query command, and returns a status modification command when the ID is judged to be in a pre-registered ID list, wherein the status modification command comprises the ID and a status available value of the PSAM;
PSAM receives the state modification command, and when the ID in the state modification command is judged to be the self ID, the global state value of the state modification command is modified to be available according to the state available value in the state modification command;
PSAM instruction execution step:
and when the position of the PSAM manager is legal and the global state value of the PSAM is available, the PSAM performs corresponding work according to the instruction of the reader-writer.
In the PSAM management method of the present invention,
in step B1, the status query command further includes a random number generated by the PSAM;
in step B2, when it is determined that the ID is in the pre-registered ID list, the random number is encrypted by using the global key stored in the random number itself, and then a status modification command is returned, where the status modification command further includes the encrypted random number;
in step B3, when determining that the ID in the state modification command is the self ID, the PSAM decrypts the encrypted random number using the global key stored in itself, and modifies the global state value to be usable according to the state available value in the state modification command when the decrypted data is the same as the generated random number.
In the PSAM management method of the present invention,
in step B2, when it is determined that the ID is in the pre-registered ID list, the ID is checked by using the global key stored in the ID to generate a first check code, and then a status modification command is returned, where the status modification command further includes the first check code;
in step B3, when determining that the ID in the status modification command is the self ID, the PSAM firstly verifies the self ID by using the global key stored in the PSAM to generate a second check code, and when the second check code is the same as the first check code, modifies the global status value to be usable according to the status usable value in the status modification command.
In the PSAM management method of the present invention,
the step A2 includes:
the PSAM manager judges whether the acquired position information is out of a preset allowable use range or whether the difference value of the acquired position information and the preset allowable use position information exceeds a first threshold value, if so, the step A22 is executed, otherwise, the position of the PSAM manager is not changed;
a22, the PSAM manager sends the position change information to the monitoring management center; or,
the step A2 is as follows:
and A23, the PSAM manager sends an application request to the monitoring management center, the application request comprises the acquired position information, the monitoring management center judges whether the acquired position information is out of a preset allowable use range or whether a difference value between the acquired position information and the preset allowable use position information exceeds a second threshold value, and if not, the PSAM manager is replied to indicate that the position of the PSAM manager is not changed.
The invention also constructs a PSAM management system, which comprises PSAM managers arranged at different sites and at least one PSAM arranged at each site, wherein the PSAM comprises a first radio frequency module, a modification module and an execution module; the PSAM manager comprises a micro-processing module, a second radio frequency module and a positioning module, wherein the second radio frequency module and the positioning module are connected with the micro-processing module; furthermore, it is possible to provide a liquid crystal display device,
the first radio frequency module is used for broadcasting a state query command to a PSAM manager and receiving a state modification command, wherein the state query command comprises an ID of the first radio frequency module, and the state modification command comprises the ID and a state available value of the PSAM;
the modification module is used for modifying the global state value of the state modification command into an available state value according to the state available value in the state modification command when the ID in the state modification command is judged to be the self ID;
the execution module is used for performing corresponding work according to the instruction of the reader-writer when the position of the PSAM manager is legal and the global state value is available;
the second radio frequency module is used for receiving a state inquiry command and returning a state modification command under the control of the microprocessor module;
the microprocessing module is used for acquiring the ID of the PSAM according to the status query command and generating a status modification command when the ID is judged to be in a pre-registered ID list; the PSAM management system is used for judging whether the position of the PSAM manager changes or requesting the monitoring management center to judge the position change of the PSAM manager through the network interface module, and when the position of the PSAM manager does not change, determining that the position of the PSAM manager is legal;
and the positioning module is used for acquiring the position information of the positioning module under the control of the micro-processing module.
The invention also constructs a PSAM manager, which comprises a micro-processing module, a second radio frequency module and a positioning module, wherein the second radio frequency module and the positioning module are connected with the micro-processing module; furthermore, it is possible to provide a liquid crystal display device,
the second radio frequency module is used for receiving a state query command from a PSAM (power system access module) and returning a state modification command to the PSAM under the control of the microprocessor module, wherein the state query command comprises an ID (identity) of the PSAM, and the state modification command comprises the ID and a state available value of the PSAM;
the positioning module is used for acquiring the position information of the positioning module under the control of the micro-processing module;
the microprocessing module is used for acquiring the ID of the PSAM according to the status query command and generating a status modification command when the ID is judged to be in a pre-registered ID list; and the monitoring management center is used for judging whether the position of the PSAM manager changes or requesting the monitoring management center to judge the position change of the PSAM manager through the network interface module, and when the position of the PSAM manager does not change, the position of the monitoring management center is determined to be legal.
The present invention also constructs a PSAM comprising a first radio frequency module, a modification module, an execution module, and,
the first radio frequency module is used for broadcasting a state query command to a PSAM manager and receiving a state modification command, wherein the state query command comprises an ID of the first radio frequency module, and the state modification command comprises the ID and a state available value of the PSAM;
the modification module is used for modifying the global state value of the state modification command into an available state value according to the state available value in the state modification command when the ID in the state modification command is judged to be the self ID;
and the execution module is used for performing corresponding work according to the instruction of the reader-writer when the position of the PSAM manager is legal and the global state value is available.
In the PSAM of the present invention, the PSAM further includes a random number generation module and a decryption module, and,
the random number generating module is used for generating a random number, and the state inquiry command also comprises the random number;
the decryption module is used for decrypting the encrypted random number by using a global key stored by the decryption module when the ID in the state modification command is judged to be the ID of the decryption module, wherein the encrypted random number is included in the state modification command, and is data obtained by encrypting the random number by using the global key stored by the decryption module when the PSAM manager judges that the received ID is in a pre-registered ID list;
and the modification module is used for modifying the global state value of the decrypted data into usable global state value according to the state usable value in the state modification command when the decrypted data is the same as the generated random number.
In the PSAM of the present invention, the PSAM further includes a check module, and,
the verification module is used for verifying the self ID by using the global key stored by the self to generate a second verification code when the ID in the state modification command is judged to be the self ID;
and the modification module is further used for modifying the global state value of the received ID into an available global state value according to the state available value in the state modification command when the second check code is the same as the first check code, wherein the first check code is included in the state modification command and is generated by verifying the received ID by using a global key stored by the PSAM manager when the PSAM manager judges that the ID is in a pre-registered ID list.
The present invention also constructs a vehicle toll management system including a server and an on-board unit mounted on a vehicle, the vehicle toll management system further including a first PSAM manager and at least one first PSAM provided at an entrance, a second PSAM manager and at least one second PSAM provided at an exit, the first PSAM manager and the second PSAM manager being the above-described PSAM managers, respectively, the first PSAM and the second PSAM being the above-described PSAM managers, respectively, and,
the first PSAM is used for encrypting the entrance information to be written into the vehicle-mounted unit when the position of the first PSAM manager is legal and the global state value of the first PSAM manager is available;
the second PSAM is used for decrypting the entry information read out from the vehicle-mounted unit when the position of the second PSAM manager is legal and the global state value of the second PSAM manager is available;
and the server is used for calculating the parking fee according to the export information and the decrypted entry information and deducting the parking fee from the corresponding account according to the pre-stored corresponding relationship between the vehicle-mounted unit and the user account.
By implementing the technical scheme of the invention, the PSAM manager judges whether the position is changed or not after acquiring the position information of the PSAM manager, or requests the monitoring management center to judge whether the position of the PSAM manager is changed or not, and the position of the PSAM manager is legal only when the position of the PSAM manager is not changed. In addition, the PSAM also sends a status query command to the PSAM manager, modifying its global status value to available only if the ID of the PSAM is in the ID list registered in advance. When the position of the PSAM manager is legal and the global state value of the PSAM is available, the PSAM can be normally used, so that an attacker can be prevented from transferring the PSAM and a matched program to other places for use, and potential safety hazards are eliminated.
Drawings
The invention will be further described with reference to the accompanying drawings and examples, in which:
FIG. 1 is a flow chart of a PSAM management method according to a first embodiment of the present invention;
FIG. 2 is a flow chart of a PSAM management method according to a second embodiment of the present invention;
FIG. 3 is a flow chart of a third embodiment of a PSAM management method of the present invention;
FIG. 4 is a flow chart of a fourth embodiment of a PSAM management method of the present invention;
FIG. 5 is a logic diagram of a PSAM management system according to a first embodiment of the present invention;
FIG. 6 is a logical diagram of one embodiment of the PSAM manager of FIG. 5;
FIG. 7 is a logic diagram of a first embodiment of the PSAM of FIG. 5;
FIG. 8 is a logic diagram of the second embodiment of the PSAM of FIG. 5;
FIG. 9 is a logic diagram of the third embodiment of the PSAM of FIG. 5;
FIG. 10 is a flow chart of a first embodiment of a vehicle toll management method of the present invention;
FIG. 11 is a logic diagram of a first embodiment of the vehicle toll management system of the present invention.
Detailed Description
Fig. 1 is a flowchart of a first embodiment of a PSAM management method according to the present invention, where the PSAM management method includes:
A. a manager position verification step;
b, PSAM state modification;
the PSAM instruction executes the step. It should be noted that, in step C, only when the position of the PSAM manager is legal and the global state value of the PSAM is available, the PSAM performs corresponding work according to the instruction of the reader/writer. Moreover, step a and step B are not in a sequential relationship, and step a may be performed first, and then step B may be performed. Alternatively, step B may be performed first, followed by step A. Two steps may also be performed simultaneously. In a preferred mode, the step a is executed first, because before the PSAM manager does not complete the location verification of itself, no information such as a status query command sent by any PSAM is replied, and at this time, the PSAM is unavailable; in the case of performing step B first, once the PSAM sends the status query command, it must wait for the PSAM manager to complete location verification, otherwise the PSAM manager returns no information or error status information.
The PSAM management method is specifically described below with reference to fig. 2, and it should be noted that, in this embodiment, step a is performed first, and then step B is performed.
Firstly, in the manager position verification step, the PSAM manager acquires the position information of the PSAM manager, and sends an application request to the monitoring management center according to the acquired position information so as to request the monitoring management center to verify whether the current position is a legal position. After receiving the application request, the monitoring management center verifies the validity of the current position of the PSAM manager, for example, the monitoring management center judges whether the acquired position information is out of a preset allowable use range or whether a difference value with the preset allowable use position information exceeds a second threshold value, if so, the current position of the PSAM manager is determined to be illegal, and the monitoring management center can prompt an administrator to see the current position and can also inform the PSAM manager; if not, indicating that the PSAM manager location has not changed, then determining that the PSAM manager's current location is legitimate, and returning an approval reply to the PSAM manager. In other examples, the monitoring management center may further display the location information of the corresponding PSAM manager for the administrator to view and compare, and the administrator sends the reply information back to the corresponding PSAM manager only when the administrator considers that the location of the PSAM manager is not changed.
After the PSAM manager location verification is passed, when the PSAM sends a query instruction to the PSAM manager whether the PSAM is available, the PSAM manager responds to the query instruction so that the PSAM completes status modification and subsequent instructions.
Secondly, in the PSAM status modification step, it is first explained that a parameter attribute needs to be set in the PSAM: global state (S). When the PSAM is powered on or reset, S is 0, indicating that the PSAM is not available at this time, and all commands issued from the card reader return an error code. Only when S is 1, the PSAM becomes available, and thereafter the command issued by the card reader operates in normal logic. The modification of the global state value of the PSAM may be performed as follows: after the PSAM is initialized at power-on, a status query command is broadcasted to the PSAM manager, where the status query command includes its own ID, and the status query command is, for example: F00F + (physical ID number of 4-byte PSAM), where F00F is a command byte indicating that PSAM issues a status query command; the physical ID number of the 4-byte PSAM is a unique ID number, and the ID number of each PSAM is globally unique and will not be repeated. After receiving the status query command broadcasted by the PSAM, the PSAM manager obtains the ID of the PSAM, and determines whether the ID is in a pre-registered ID list, and if the ID is in the managed range, returns a status modification command, and the status modification command includes the ID of the PSAM and a status available value, and the status modification command is, for example: F0F0+ (physical ID number of 4 byte PSAM) +01, where F0F0 is a command byte indicating that the PSAM manager returns a status modification command; 01 represents a state available value; the 4-byte PSAM physical ID number indicates that the data frame is a reply to the PSAM for that ID, and that other PSAMs may discard the frame as they receive it. In addition, if the ID is not within the managed range, it is not returned. After receiving the state modification command, and when determining that the ID in the state modification command is the self ID, the PSAM modifies its global state value to be usable according to the state available value in the state modification command, that is, modifies S ═ 0 at the initial time to S ═ 1.
And finally, when the position of the PSAM manager is legal and the global state value of the PSAM is available, the PSAM can normally work and correspondingly work according to the instruction of the reader-writer.
Finally, it should be noted that the PSAM, if it does not receive the response, will transmit the response once again at intervals, such as 2 seconds. And the data is not sent again as long as the confirmation is received once, and then the normal use state is entered.
Fig. 3 is a flowchart of a third embodiment of a PSAM management method of the present invention, in which, firstly, it is explained that a global key is stored in both a PSAM and a PSAM manager, and compared with the embodiment shown in fig. 2, the difference of this embodiment is only the following points in the PSAM status modification step: (1) the status query command broadcast by the PSAM to the PSAM manager also includes a random number generated by the PSAM. (2) When the PSAM manager judges that the ID is in the pre-registered ID list, the PSAM manager firstly encrypts the random number by using the global key stored by the PSAM manager, and then returns a state modification command, wherein the state modification command also comprises the encrypted random number. (3) When the PSAM judges that the ID in the state modification command is the self ID, the PSAM firstly decrypts the encrypted random number by using the global key stored by the PSAM, compares the decrypted random number with the generated random number, and modifies the global state value of the PSAM to be usable according to the state usable value in the state modification command if the decrypted data is the same as the generated random number.
By implementing the technical scheme of the embodiment, an attacker can be prevented from forging a PSAM manager to attack the PSAM.
Fig. 4 is a flowchart of a fourth embodiment of a PSAM management method of the present invention, in this embodiment, it is first explained that a global key is stored in both a PSAM and a PSAM manager, and this embodiment is different from the embodiment shown in fig. 2 only in the following points in a PSAM status modification step: (1) when the PSAM manager judges that the ID is in the pre-registered ID list, the PSAM manager firstly verifies the ID by using the global key stored by the PSAM manager to generate a first verification code, and then returns a state modification command, wherein the state modification command also comprises the first verification code. (2) When the PSAM judges that the ID in the state modification command is the self ID, the PSAM firstly uses the global key stored by the PSAM to check the self ID to generate a second check code, compares whether the second check code is the same as the first check code, and modifies the global state value to be available according to the state available value in the state modification command when the second check code is the same as the first check code.
By implementing the technical scheme of the embodiment, an attacker can be prevented from forging a PSAM manager to attack the PSAM.
It should be noted that in the embodiments shown in fig. 2 to 4, when performing manager location verification, after the PSAM manager acquires location information, the PSAM manager sends an application request to the monitoring management center, and the monitoring management center determines whether the location is legal. Of course, in some other embodiments, after obtaining the location information, the PSAM manager may also determine whether the current location is legal by itself, for example, by: the PSAM manager judges whether the acquired position information is out of a preset allowable use range or whether the difference value of the acquired position information and the preset allowable use position information exceeds a first threshold value, if so, the position of the PSAM manager is determined to be illegal, and position change information is sent to the PSAM manager to a monitoring management center; if not, the PSAM manager position is not changed, and the position of the PSAM manager is determined to be legal.
Fig. 5 is a logic diagram of a first embodiment of the PSAM management system according to the present invention, which includes a monitoring management center 10, PSAM managers 20, …, and 20 'disposed at different sites, and at least one PSAM30, …, and 30' disposed at each site. The logical structures of the PSAM manager and the PSAM are described below by taking only one PSAM manager 20 and one PSAM30 as examples, and it should be understood that the logical structures of other PSAM managers and other PSAMs are the same as those of the PSAM manager and other PSAMs, and thus are not described herein again. Referring to fig. 6, the PSAM manager 20 includes a microprocessor module 21, and a second rf module 22, a positioning module 23, and a network interface module 24 connected to the microprocessor module 21. Referring to fig. 7, the PSAM30 includes a first rf module 31, a modification module 32, and an execution module 33. Wherein,
in the PSAM30, the first radio frequency module 31 is configured to broadcast a status query command to a PSAM manager, and receive a status modification command, where the status query command includes its own ID, and the status modification command includes the ID and a status available value of the PSAM; the modification module 32 is configured to modify the global state value of the state modification command to be available according to the state available value in the state modification command when it is determined that the ID in the state modification command is the self ID; the execution module 33 is configured to perform corresponding work according to the instruction of the reader/writer when the position of the PSAM manager is legal and the global state value is available.
In the PSAM manager 20, the second rf module 22 is configured to receive a status query command and a return status modification command under the control of the microprocessor module 21; the microprocessor module 21 is used for obtaining the ID of the PSAM according to the status query command and generating a status modification command when judging that the ID is in a pre-registered ID list; and is used for judging whether the position of the PSAM manager changes or requesting the monitoring management center to judge the position change of the PSAM manager through the network interface module 24, and when the position of the PSAM manager does not change, determining that the position of the PSAM manager is legal; the positioning module 23 is used for acquiring the position information of itself under the control of the micro-processing module 21.
It should be noted here that, regarding the micro-processing module 21 of the PSAM manager, it can determine the validity of its own location by the following two ways: firstly, judging whether the position is legal by the micro-processing module 21; after the self position information is obtained, the micro-processing module 21 sends an application request to the monitoring management center 10 through the network interface module 24, and the monitoring management center judges whether the position is legal or not. If the first approach is used in some embodiments, this embodiment may omit the monitoring management center 10.
Fig. 8 is a logic diagram of a second embodiment of the PSAM in fig. 5, which differs from the embodiment shown in fig. 7 only in that the PSAM further includes a random number generation module 34 and a decryption module 35, and the random number generation module 34 is configured to generate a random number, and the state query command further includes the random number. Accordingly, the microprocessor module 21 in the PSAM manager is further configured to encrypt the random number by using the global key stored in the microprocessor module when determining that the ID is in the ID list registered in advance, and the state modification command further includes the encrypted random number. The decryption module 35 is configured to decrypt the encrypted random number by using the global key stored in the state modification command when it is determined that the ID in the state modification command is the self ID. In addition, the modification module 32 is configured to modify the global state value to be usable according to the state available value in the state modification command when the decrypted data is the same as the generated random number.
Fig. 9 is a logic diagram of a third embodiment of the PSAM in fig. 5, which differs from the embodiment shown in fig. 7 only in that the PSAM further includes a check module 36. And, the micro-processing module 21 in the PSAM manager is further configured to, when determining that the ID is in the ID list registered in advance, check the ID using the global key stored in itself to generate a first check code, and the status modification command further includes the first check code. The checking module 36 is configured to, when it is determined that the ID in the status modification command is the self ID, first check the self ID by using the global key stored in the self to generate a second check code. In addition, the modification module 32 is further configured to modify the global state value to be available according to the state available value in the state modification command when the second check code is identical to the first check code.
Fig. 10 is a flowchart of a first embodiment of the vehicle charging management method according to the present invention, the vehicle charging management method includes:
s1, at an entrance, when the position of a PSAM manager at the entrance is legal and the global state value of the PSAM at the entrance is available, the PSAM at the entrance encrypts entrance information to write the entrance information into a vehicle-mounted unit. In this step, it should be noted that the entrance may be a parking lot entrance or a highway entrance. The entry information includes an entry identifier and an entry time. When a vehicle passes through a parking lot entrance or a highway entrance, a PSAM at the entrance reads entrance information from an external system, and judges whether the position of a PSAM manager at the entrance is legal and whether the global state value of the PSAM at the entrance is available by using the PSAM management method described in the above embodiment, and when the position of the PSAM manager at the entrance is legal and the global state value of the PSAM at the entrance is available, the PSAM at the entrance encrypts the entrance information to write the entrance information into a vehicle-mounted unit;
and S2, at the exit, when the position of the PSAM manager at the exit is legal and the global state value of the PSAM at the exit is available, decrypting the entry information read out from the vehicle-mounted unit. In this step, it should also be noted that the exit may be a parking lot exit or a highway exit. When a vehicle passes through an exit of a parking lot or an exit of a highway, the on-board unit sends the encrypted entrance information to the PSAM at the exit, then judges whether the position of the PSAM manager at the exit is legal and whether the global state value of the PSAM at the exit is available by using the PSAM management method described in the above embodiment, and decrypts the entrance information read from the on-board unit when the position of the PSAM manager at the exit is legal and the global state value of the PSAM at the exit is available, so that the entrance information of the vehicle is obtained. In addition, the terminal security module also reads the outlet information from an external system;
and S3, the server calculates the parking fee according to the export information and the decrypted entry information, and deducts the parking fee from the corresponding account according to the pre-stored corresponding relationship between the vehicle-mounted unit and the user account.
Fig. 11 is a logic diagram of a first embodiment of the vehicle toll management system of the present invention, which includes a server 50, an on-board unit 40 mounted on a vehicle, a monitoring management center 10, a first PSAM manager 20 and a first PSAM30 provided at an entrance, and a second PSAM manager 20 'and a second PSAM 30' provided at an exit. The logical structures of the first PSAM manager 20, the second PSAM manager 20 ', the first PSAM30, and the second PSAM 30' are all referred to above, and are not described herein again. Also, the first PSAM30 is configured to encrypt the entry information to be written to the in-vehicle unit 40 when the location of the first PSAM manager 20 is legitimate and its global state value is available; the second PSAM30 'is used to decrypt the entry information read out from the on-board unit 40 when the location of the second PSAM manager 20' is legitimate and its global state value is available. The server 50 is configured to calculate parking fees according to the export information and the decrypted import information, and deduct the parking fees from corresponding accounts according to a pre-stored correspondence between the on-board units and the user accounts.
Likewise, in some other embodiments of the vehicle toll management system, the monitoring management center 10 may be omitted if the PSAM manager judges whether the location is legitimate by itself when determining the legitimacy of the location itself.
Finally, it should be noted that although the above embodiments show only one on-board unit, one first PSAM at the inlet and one second PSAM at the outlet, it should be understood that in practical cases, the number of on-board units, the number of first PSAMs at the inlet and the number of second PSAMs at the outlet are not only one.
The invention is not limited to the parking lot and vehicle management, can be widely used in various technical fields needing to realize security authentication, such as logistics, storage, smart cards and the like, and can effectively improve the transaction security and prevent or reduce the loss caused by attack behaviors.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the scope of the claims of the present invention.
Claims (10)
1. A PSAM management method, comprising:
manager location verification step:
a1, the PSAM manager acquires the position information of the PSAM manager;
the PSAM manager judges whether the position of the PSAM manager changes or requests the monitoring management center to judge whether the position of the PSAM manager changes, and when the position of the PSAM manager does not change, the position of the PSAM manager is determined to be legal;
PSAM state modification step:
PSAM broadcasts a status query command to a PSAM manager, wherein the status query command comprises an ID of the PSAM manager;
the PSAM manager obtains the ID of the PSAM according to a status query command, and returns a status modification command when the ID is judged to be in a pre-registered ID list, wherein the status modification command comprises the ID and a status available value of the PSAM;
PSAM receives the state modification command, and when the ID in the state modification command is judged to be the self ID, the global state value of the state modification command is modified to be available according to the state available value in the state modification command;
PSAM instruction execution step:
and when the position of the PSAM manager is legal and the global state value of the PSAM is available, the PSAM performs corresponding work according to the instruction of the reader-writer.
2. The PSAM management method according to claim 1,
in step B1, the status query command further includes a random number generated by the PSAM;
in step B2, when it is determined that the ID is in the pre-registered ID list, the random number is encrypted by using the global key stored in the random number itself, and then a status modification command is returned, where the status modification command further includes the encrypted random number;
in step B3, when determining that the ID in the state modification command is the self ID, the PSAM decrypts the encrypted random number using the global key stored in itself, and modifies the global state value to be usable according to the state available value in the state modification command when the decrypted data is the same as the generated random number.
3. The PSAM management method according to claim 1,
in step B2, when it is determined that the ID is in the pre-registered ID list, the ID is checked by using the global key stored in the ID to generate a first check code, and then a status modification command is returned, where the status modification command further includes the first check code;
in step B3, when determining that the ID in the status modification command is the self ID, the PSAM firstly verifies the self ID by using the global key stored in the PSAM to generate a second check code, and when the second check code is the same as the first check code, modifies the global status value to be usable according to the status usable value in the status modification command.
4. The PSAM management method according to any one of claims 1-3,
the step A2 includes:
the PSAM manager judges whether the acquired position information is out of a preset allowable use range or whether the difference value of the acquired position information and the preset allowable use position information exceeds a first threshold value, if so, the step A22 is executed, otherwise, the position of the PSAM manager is not changed;
a22, the PSAM manager sends the position change information to the monitoring management center; or,
the step A2 is as follows:
and A23, the PSAM manager sends an application request to the monitoring management center, the application request comprises the acquired position information, the monitoring management center judges whether the acquired position information is out of a preset allowable use range or whether a difference value between the acquired position information and the preset allowable use position information exceeds a second threshold value, and if not, the PSAM manager is replied to indicate that the position of the PSAM manager is not changed.
5. The PSAM management system is characterized by comprising PSAM managers arranged at different sites and at least one PSAM arranged at each site, wherein the PSAM comprises a first radio frequency module, a modification module and an execution module; the PSAM manager comprises a micro-processing module, a second radio frequency module and a positioning module, wherein the second radio frequency module and the positioning module are connected with the micro-processing module; furthermore, it is possible to provide a liquid crystal display device,
the first radio frequency module is used for broadcasting a state query command to a PSAM manager and receiving a state modification command, wherein the state query command comprises an ID of the first radio frequency module, and the state modification command comprises the ID and a state available value of the PSAM;
the modification module is used for modifying the global state value of the state modification command into an available state value according to the state available value in the state modification command when the ID in the state modification command is judged to be the self ID;
the execution module is used for performing corresponding work according to the instruction of the reader-writer when the position of the PSAM manager is legal and the global state value is available;
the second radio frequency module is used for receiving a state inquiry command and returning a state modification command under the control of the microprocessor module;
the microprocessing module is used for acquiring the ID of the PSAM according to the status query command and generating a status modification command when the ID is judged to be in a pre-registered ID list; the PSAM management system is used for judging whether the position of the PSAM manager changes or requesting the monitoring management center to judge the position change of the PSAM manager through the network interface module, and when the position of the PSAM manager does not change, determining that the position of the PSAM manager is legal;
and the positioning module is used for acquiring the position information of the positioning module under the control of the micro-processing module.
6. The PSAM manager is characterized by comprising a micro-processing module, a second radio frequency module and a positioning module, wherein the second radio frequency module and the positioning module are connected with the micro-processing module; furthermore, it is possible to provide a liquid crystal display device,
the second radio frequency module is used for receiving a state query command from a PSAM (power system access module) and returning a state modification command to the PSAM under the control of the microprocessor module, wherein the state query command comprises an ID (identity) of the PSAM, and the state modification command comprises the ID and a state available value of the PSAM;
the positioning module is used for acquiring the position information of the positioning module under the control of the micro-processing module;
the microprocessing module is used for acquiring the ID of the PSAM according to the status query command and generating a status modification command when the ID is judged to be in a pre-registered ID list; and the monitoring management center is used for judging whether the position of the PSAM manager changes or requesting the monitoring management center to judge the position change of the PSAM manager through the network interface module, and when the position of the PSAM manager does not change, the position of the monitoring management center is determined to be legal.
7. A PSAM comprising a first radio frequency module, a modification module, an execution module, and,
the first radio frequency module is used for broadcasting a state query command to a PSAM manager and receiving a state modification command, wherein the state query command comprises an ID of the first radio frequency module, and the state modification command comprises the ID and a state available value of the PSAM;
the modification module is used for modifying the global state value of the state modification command into an available state value according to the state available value in the state modification command when the ID in the state modification command is judged to be the self ID;
and the execution module is used for performing corresponding work according to the instruction of the reader-writer when the position of the PSAM manager is legal and the global state value is available.
8. A PSAM according to claim 7, further comprising a random number generation module and a decryption module, and,
the random number generating module is used for generating a random number, and the state inquiry command also comprises the random number;
the decryption module is used for decrypting the encrypted random number by using a global key stored by the decryption module when the ID in the state modification command is judged to be the ID of the decryption module, wherein the encrypted random number is included in the state modification command, and is data obtained by encrypting the random number by using the global key stored by the decryption module when the PSAM manager judges that the received ID is in a pre-registered ID list;
and the modification module is used for modifying the global state value of the decrypted data into usable global state value according to the state usable value in the state modification command when the decrypted data is the same as the generated random number.
9. A PSAM as claimed in claim 7, characterized in that the PSAM further comprises a check module and,
the verification module is used for verifying the self ID by using the global key stored by the self to generate a second verification code when the ID in the state modification command is judged to be the self ID;
and the modification module is further used for modifying the global state value of the received ID into an available global state value according to the state available value in the state modification command when the second check code is the same as the first check code, wherein the first check code is included in the state modification command and is generated by verifying the received ID by using a global key stored by the PSAM manager when the PSAM manager judges that the ID is in a pre-registered ID list.
10. A vehicle toll management system comprising a server and an on-board unit mounted on a vehicle, characterized in that the vehicle toll management system further comprises a first PSAM manager and at least one first PSAM provided at an entrance, a second PSAM manager and at least one second PSAM provided at an exit, the first PSAM manager and the second PSAM manager being the PSAM manager of claim 6, respectively, the first PSAM manager and the second PSAM manager being the PSAM of any one of claims 7 to 9, respectively, and further,
the first PSAM is used for encrypting the entrance information to be written into the vehicle-mounted unit when the position of the first PSAM manager is legal and the global state value of the first PSAM manager is available;
the second PSAM is used for decrypting the entry information read out from the vehicle-mounted unit when the position of the second PSAM manager is legal and the global state value of the second PSAM manager is available;
and the server is used for calculating the parking fee according to the export information and the decrypted entry information and deducting the parking fee from the corresponding account according to the pre-stored corresponding relationship between the vehicle-mounted unit and the user account.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410428084.9A CN105374075B (en) | 2014-08-27 | 2014-08-27 | PSAM, manager, management method and system, vehicle toll management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410428084.9A CN105374075B (en) | 2014-08-27 | 2014-08-27 | PSAM, manager, management method and system, vehicle toll management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105374075A CN105374075A (en) | 2016-03-02 |
| CN105374075B true CN105374075B (en) | 2017-07-28 |
Family
ID=55376243
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410428084.9A Active CN105374075B (en) | 2014-08-27 | 2014-08-27 | PSAM, manager, management method and system, vehicle toll management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105374075B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114584965B (en) * | 2022-05-09 | 2022-07-29 | 飞天诚信科技股份有限公司 | Automatic PSAM card identification and display method and device |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101373528A (en) * | 2007-08-21 | 2009-02-25 | 联想(北京)有限公司 | Electronic payment system, device and method based on position authentication |
| CN101593389A (en) * | 2009-07-01 | 2009-12-02 | 中国建设银行股份有限公司 | A kind of key management method and system that is used for the POS terminal |
| CN102713953A (en) * | 2010-07-29 | 2012-10-03 | 英特尔公司 | Device, system, and method forlocation-based payment authorization |
| CN103514640A (en) * | 2012-06-19 | 2014-01-15 | 中兴通讯股份有限公司 | Multilane free flow system and parallel operation method and apparatus thereof |
| CN103546878A (en) * | 2012-07-12 | 2014-01-29 | 深圳市财付通科技有限公司 | Control method and control system of mobile data terminal |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7503489B2 (en) * | 2005-04-26 | 2009-03-17 | Bpriv, Llc | Method and system for monitoring electronic purchases and cash-withdrawals |
-
2014
- 2014-08-27 CN CN201410428084.9A patent/CN105374075B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101373528A (en) * | 2007-08-21 | 2009-02-25 | 联想(北京)有限公司 | Electronic payment system, device and method based on position authentication |
| CN101593389A (en) * | 2009-07-01 | 2009-12-02 | 中国建设银行股份有限公司 | A kind of key management method and system that is used for the POS terminal |
| CN102713953A (en) * | 2010-07-29 | 2012-10-03 | 英特尔公司 | Device, system, and method forlocation-based payment authorization |
| CN103514640A (en) * | 2012-06-19 | 2014-01-15 | 中兴通讯股份有限公司 | Multilane free flow system and parallel operation method and apparatus thereof |
| CN103546878A (en) * | 2012-07-12 | 2014-01-29 | 深圳市财付通科技有限公司 | Control method and control system of mobile data terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105374075A (en) | 2016-03-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3410374B1 (en) | Credit payment method and device based on mobile terminal p2p | |
| CN100559391C (en) | A kind of distributing method of ETC electronic tag | |
| JP6859519B2 (en) | Credit card payment methods and devices based on mobile terminal card emulation | |
| CN102081806B (en) | Convenient socialized issuing method of ETC (Electronic Temperature Controller) electronic tags | |
| JP3156562B2 (en) | Vehicle communication device and traveling vehicle monitoring system | |
| CN203386245U (en) | Electronic toll collection (ETC) on board unit on-line issuing system combining mobile terminal | |
| CN105610871B (en) | A kind of vehicle input-output control system and control method based on semi-on-line key | |
| CN102184575A (en) | System and method for carrying out toll authentication in intelligent transport system | |
| US20130096995A1 (en) | Electric vehicle charging services | |
| CN111724494B (en) | Traffic information processing method and device, electronic equipment and storage medium | |
| US11663427B1 (en) | Vehicle tracking system using transponders | |
| CN112396712A (en) | ETC electronic tag secondary issuing method, system and storage medium | |
| KR20190103925A (en) | Method, terminal and server for charging. vehicle | |
| CN106682905B (en) | Application unlocking method | |
| JP2004139380A (en) | On-vehicle equipment setup method and its system, and on-vehicle equipment | |
| CN201984541U (en) | System, vehicle unit and authentication label used for carrying out charging authentication | |
| CN104574535A (en) | PSAM (Purchase Secure Access Module) and management method and system thereof as well as vehicle charge management method and system | |
| CN105374075B (en) | PSAM, manager, management method and system, vehicle toll management system | |
| CN105447608B (en) | PSAM management method, system, PSAM manager, vehicle charging management method and system | |
| KR101356682B1 (en) | Prepayment electricity meter, system and method for authentication for prepayment electricity meter | |
| CN113077558B (en) | PSAM card two-stage online authorization authentication method, device and system | |
| KR102406519B1 (en) | Hi-Pass System and Method for operating thereof | |
| CN104579674B (en) | Terminal security module and its management method, vehicle toll management method and system | |
| CN113487756A (en) | Application implementation method and system of ETC vehicle digital currency hard wallet | |
| JP2019511794A (en) | System for checking user device validity |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |