A kind of method and system verifying gate inhibition's password
Technical field
The present invention relates to control field, particularly relate to a kind of method and system verifying gate inhibition's password.
Background technology
Gate control system is applied the most on a large scale in the whole nation, typically by access control system, and gate inhibition's authentication unit, and identity
Password unit forms.
Access control system record identity password, needs the identity password being verified to first have to be recorded in entrance guard management system
Inside system, such as rfid card number, fingerprint collecting, or the data of recognition of face, it is required for elder generation data acquisition to entrance guard management
System, saves by the mode of data base.
Gate inhibition's authentication unit, verifying identity password when, goes the data that lane database verification is the most saved, if
Lane database exists, then be verified, if it is not, think and can not be verified, refused.
Identity password common are fingerprint, recognition of face, key number password, and rfid card, various identity passwords at present
There is different strengths and weaknesses.
Fingerprint recognition, needs to gather the fingerprint being verified people, and is stored in inside data base, and advantage is: need not carry card,
Directly use fingerprint authentication.Shortcoming is, checking equipment must be equipped with fingerprint identification device, and the application on the gate inhibition of community is less, often
Individual owner needs to go to enroll fingerprint, and owner can worry that identity information is stolen.
Recognition of face, is also to need to gather data, and is saved in lane database, advantage is: can carry card, directly
Recognition of face just can be by checking.Shortcoming is: needing to configure face identification device, current price is the highest, at community door
Apply less in taboo.
Key number password, a kind of method of numerical ciphers Ye Shi community gate inhibition, but in the middle of real life, be also application
Less, because the change of key number password is limited, after as you know, gate inhibition just becomes the safest, if given
Each owner provides a different numerical ciphers, then management becomes the most again relatively difficult.
Rfid card, this is the identity password carrying mode being most widely used in the middle of daily access control system of residential community, one
In the case of as, owner carries access card, is reached the function of authentication by gate inhibition's identity recognition device, and advantage is: Yong Hujie
High by degree, advantage of lower cost, safety is moderate.Shortcoming is: need owner to carry with, and is also easier to be replicated.
Above-mentioned method typically requires networking and just can ensure that real-time change and the safety of checking password.
Summary of the invention
In view of this, the present invention provides a kind of method and system verifying gate inhibition's password, with solve prior art must be
Networking situation just can ensure that password real-time change and the problem of safety.
Specifically, the present invention is achieved through the following technical solutions:
The present invention provides a kind of method verifying gate inhibition's password, and described method includes:
Gate control system arranges the first password and the AES being encrypted described first password, and by described first
Password and described AES are sent to user for the mobile terminal that gate inhibition verifies, described first password is for can not more withdraw the previous remark
Order;
Described first password is encrypted as the second password by described AES by gate control system;And,
Described first password is encrypted as the 3rd password by described AES by mobile terminal, and by described 3rd password
Being sent to described gate control system, described gate control system carries out described encryption with mobile terminal based on identical time shaft;
Described 3rd password and the second password are compared by gate control system: if identical, be then verified, if not
With, then authentication failed.
Present invention also offers a kind of system verifying gate inhibition's password, described system includes:
Gate control system, for arranging the first password and the AES being encrypted described first password, and by institute
State the first password and described AES is sent to user for the mobile terminal that gate inhibition verifies, by described AES by institute
State the first password and be encrypted as the second password, receive the 3rd password that described mobile terminal sends, by described 3rd password and second
Password is compared: if identical, be then verified, if it is different, then authentication failed, described first password is for can not more withdraw the previous remark
Order;
At least one mobile terminal, for receiving the first password and the AES that described gate control system sends, by institute
State AES and described first password is encrypted as the 3rd password, and described 3rd password is sent to described gate control system, institute
State gate control system and carry out described encryption with mobile terminal based on identical time shaft.
The embodiment of the present invention, gate control system and mobile terminal preserve identical password and AES respectively, identical
Time shaft, uses the AES preserved to be encrypted the password preserved so that gate control system and mobile terminal are not being carried out
Identical checking password can be generated, simultaneously because the checking password of gate control system and mobile terminal is being preset in the case of networking
Time interval do not stop conversion, thereby ensure that the safety of checking password.
Accompanying drawing explanation
Fig. 1 is a kind of flow chart verifying gate inhibition's password method shown in the present invention one exemplary embodiment;
Fig. 2 is a kind of structure chart verifying gate inhibition's password system shown in the present invention one exemplary embodiment.
Detailed description of the invention
Here will illustrate exemplary embodiment in detail, its example represents in the accompanying drawings.Explained below relates to
During accompanying drawing, unless otherwise indicated, the same numbers in different accompanying drawings represents same or analogous key element.Following exemplary embodiment
Described in embodiment do not represent all embodiments consistent with the present invention.On the contrary, they are only with the most appended
The example of the apparatus and method that some aspects that described in detail in claims, the present invention are consistent.
It is only merely for describing the purpose of specific embodiment in terminology used in the present invention, and is not intended to be limiting the present invention.
" a kind of ", " described " and " being somebody's turn to do " of singulative used in the present invention and appended claims is also intended to include majority
Form, unless context clearly shows that other implications.It is also understood that term "and/or" used herein refers to and wraps
Any or all containing one or more projects of listing being associated may combination.
Although should be appreciated that in the present invention possible employing term first, second, third, etc. to describe various information, but this
A little information should not necessarily be limited by these terms.These terms are only used for same type of information is distinguished from each other out.Such as, without departing from
In the case of the scope of the invention, the first information can also be referred to as the second information, and similarly, the second information can also be referred to as
One information.Depend on linguistic context, word as used in this " if " can be construed to " ... time " or " when ...
Time " or " in response to determining ".
Embodiment one
It is illustrated in figure 1 a kind of flow chart verifying gate inhibition's password method shown in the present invention one exemplary embodiment, institute
State guard method to comprise the following steps:
Step S101, gate control system arranges the first password and the AES being encrypted described first password, and
Described first password and described AES being sent to user and is used for the mobile terminal of gate inhibition's checking, described first password is not
Password can be changed.
In embodiments of the present invention, gate control system is provided with the first password and to adding that this first password is encrypted
Close algorithm, this first password is for can not change password, after being set in gate control system, unless restarted gate control system, the most not
Allowing to be modified, this first password and AES manually can be arranged by user, it is also possible to periodically restarted gate inhibition by machine
After reset, this is not specifically limited by the present invention.Receive gate inhibition's password can be that the various user of convenience carries out gate inhibition's mouth
The mobile terminal of order checking, such as: mobile phone, palm PC etc..
After gate control system is provided with the first password and AES, this first password and AES are sent to
Mobile terminal, concrete, the first password and AES can be sent to mobile whole by Radio Transmission Technology by gate control system
End, it is also possible to the first password and AES are sent to mobile terminal by wire transmission technology, this is not made to have by the present invention
Body limits.
Step S102, described first password is encrypted as the second password by described AES by gate control system;And,
Described first password is encrypted as the 3rd password by described AES by mobile terminal, and by described 3rd password
Being sent to described gate control system, described gate control system carries out described encryption with mobile terminal based on identical time shaft.
In embodiments of the present invention, gate control system and mobile terminal use identical AES to enter the first password respectively
Row encryption, obtains the second password by encryption gate control system, mobile terminal obtains the 3rd password, and, mobile terminal by this
Three passwords send gate control system.It is pointed out that gate control system and mobile terminal are to be encrypted based on identical time shaft
, such as: need to carry out gate inhibition's checking when at 7 in user evening gets home, then gate control system and mobile terminal are based on 19:00:00's
Time shaft is encrypted.
It is pointed out that the 3rd password is sent to gate inhibition by any one in bluetooth, optical signal and is by mobile terminal
System, owing to mobile terminal can use different transmission means, therefore can ensure that the 3rd password is successfully sent by mobile terminal
To gate control system.
It is pointed out that gate control system and mobile terminal carry out the most described encryption every default time interval, such as:
The time interval preset is that 1 second, then gate control system and mobile terminal were once encrypted every 1 second, i.e. 19:00:01,19:
00:02,19:00:03 ... are all encrypted, it should be pointed out that gate control system and mobile terminal are all the time based on time identical
Countershaft is encrypted.
Step S103, described 3rd password and the second password are compared by gate control system: if identical, then verify logical
Cross, if it is different, then authentication failed.
In embodiments of the present invention, after gate control system receives the 3rd password, by the 3rd password with local second mouthful
Order is compared, and carries out follow-up step according to the result of comparison: if identical, be then verified, and gate control system releases gate inhibition,
If it is different, then authentication failed, gate control system cannot release gate inhibition.Owing to gate control system and mobile terminal are based on time identical
Countershaft uses identical AES to be encrypted identical password, and the second password and the 3rd password should be identical.
The embodiment of the present invention, gate control system and mobile terminal preserve identical password and AES respectively, identical
Time shaft, uses the AES preserved to be encrypted the password preserved so that gate control system and mobile terminal are not being carried out
Identical checking password can be generated, simultaneously because the checking password of gate control system and mobile terminal is being preset in the case of networking
Time interval do not stop conversion, thereby ensure that the safety of checking password.
As an alternative embodiment of the present invention, in described gate control system, described 3rd password and the second password are carried out
After the step of comparison, described method also includes:
If authentication failed, local zone time, the first password and AES are corrected by mobile terminal.
In embodiments of the present invention, identical encryption is used to calculate with gate control system at identical time shaft due to mobile terminal
Identical password is encrypted by method, and therefore the 3rd password and the second password should be identical.If authentication failed, then it represents that generate
The key element of the 3rd password: time shaft, the first password, AES occur in that error, it is therefore desirable to above three key element is carried out
Correction.
Embodiment two
It is illustrated in figure 2 a kind of structure chart verifying gate inhibition's password system shown in the present invention one exemplary embodiment, for
It is easy to explanation, part related to the present embodiment is only shown, including:
Gate control system 201, for arranging the first password and the AES that described first password is encrypted, and will
Described first password and described AES are sent to user for the mobile terminal 202 that gate inhibition verifies, are calculated by described encryption
Described first password is encrypted as the second password by method, receives the 3rd password that described mobile terminal 202 sends, by described 3rd mouthful
Order is compared with the second password: if identical, being then verified, if it is different, then authentication failed, described first password is not
Password can be changed;
At least one mobile terminal 202, for receiving the first password and the AES that described gate control system 201 sends,
By described AES, described first password is encrypted as the 3rd password, and described 3rd password is sent to described gate inhibition system
System 201, described gate control system 201 carries out described encryption with mobile terminal 202 based on identical time shaft.
In embodiments of the present invention, gate control system is provided with the first password and to adding that this first password is encrypted
Close algorithm, this first password is for can not change password, after being set in gate control system, unless restarted gate control system, the most not
Allowing to be modified, this first password and AES manually can be arranged by user, it is also possible to periodically restarted gate inhibition by machine
After reset, this is not specifically limited by the present invention.Receive gate inhibition's password can be that the various user of convenience carries out gate inhibition's mouth
The mobile terminal of order checking, such as: mobile phone, palm PC etc..
After gate control system is provided with the first password and AES, this first password and AES are sent to
Mobile terminal, concrete, the first password and AES can be sent to mobile whole by Radio Transmission Technology by gate control system
End, it is also possible to the first password and AES are sent to mobile terminal by wire transmission technology, this is not made to have by the present invention
Body limits.
Gate control system and mobile terminal use identical AES to be encrypted the first password respectively, by encryption door
Access control system obtains the second password, mobile terminal obtains the 3rd password, and, the 3rd password is sent gate inhibition system by mobile terminal
System.It is pointed out that gate control system and mobile terminal are to be encrypted, such as based on identical time shaft: when user evening 7
Point is got home and is needed to carry out gate inhibition's checking, then gate control system and mobile terminal are based on the time shaft of 19:00:00 and are encrypted.
It is pointed out that the 3rd password is sent to gate inhibition by any one in bluetooth, optical signal and is by mobile terminal
System, owing to mobile terminal can use different transmission means, therefore can ensure that the 3rd password is successfully sent by mobile terminal
To gate control system.
It is pointed out that gate control system and mobile terminal carry out the most described encryption every default time interval, such as:
The time interval preset is that 1 second, then gate control system and mobile terminal were once encrypted every 1 second, i.e. 19:00:01,19:
00:02,19:00:03 ... are all encrypted, it should be pointed out that gate control system and mobile terminal are all the time based on time identical
Countershaft is encrypted.
In embodiments of the present invention, after gate control system receives the 3rd password, by the 3rd password with local second mouthful
Order is compared, and carries out follow-up step according to the result of comparison: if identical, be then verified, and gate control system releases gate inhibition,
If it is different, then authentication failed, gate control system cannot release gate inhibition.Owing to gate control system and mobile terminal are based on time identical
Countershaft uses identical AES to be encrypted identical password, and the second password and the 3rd password should be identical.
The embodiment of the present invention, gate control system and mobile terminal preserve identical password and AES respectively, identical
Time shaft, uses the AES preserved to be encrypted the password preserved so that gate control system and mobile terminal are not being carried out
Identical checking password can be generated, simultaneously because the checking password of gate control system and mobile terminal is being preset in the case of networking
Time interval do not stop conversion, thereby ensure that the safety of checking password.
As an alternative embodiment of the present invention, described mobile terminal 202 is additionally operable to:
If authentication failed, local zone time, the first password and AES are corrected.
In embodiments of the present invention, identical encryption is used to calculate with gate control system at identical time shaft due to mobile terminal
Identical password is encrypted by method, and therefore the 3rd password and the second password should be identical.If authentication failed, then it represents that generate
The key element of the 3rd password: time shaft, the first password, AES occur in that error, it is therefore desirable to above three key element is carried out
Correction.
For device embodiment, owing to it corresponds essentially to embodiment of the method, so relevant part sees method in fact
The part executing example illustrates.Device embodiment described above is only schematically, wherein said as separating component
The unit illustrated can be or may not be physically separate, and the parts shown as unit can be or can also
It not physical location, i.e. may be located at a place, or can also be distributed on multiple NE.Can be according to reality
Need to select some or all of module therein to realize the purpose of the present invention program.Those of ordinary skill in the art are not paying
In the case of going out creative work, i.e. it is appreciated that and implements.
The foregoing is only presently preferred embodiments of the present invention, not in order to limit the present invention, all essences in the present invention
Within god and principle, any modification, equivalent substitution and improvement etc. done, within should be included in the scope of protection of the invention.