CN118036627B - Card data reading and writing system and method - Google Patents
Card data reading and writing system and method Download PDFInfo
- Publication number
- CN118036627B CN118036627B CN202410430470.5A CN202410430470A CN118036627B CN 118036627 B CN118036627 B CN 118036627B CN 202410430470 A CN202410430470 A CN 202410430470A CN 118036627 B CN118036627 B CN 118036627B
- Authority
- CN
- China
- Prior art keywords
- card data
- data read
- write
- card
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 40
- 238000006243 chemical reaction Methods 0.000 claims abstract description 11
- 238000012795 verification Methods 0.000 claims description 37
- 238000004891 communication Methods 0.000 claims description 19
- 238000012544 monitoring process Methods 0.000 claims description 11
- 238000012423 maintenance Methods 0.000 abstract description 7
- 230000006870 function Effects 0.000 description 17
- 230000005540 biological transmission Effects 0.000 description 7
- 238000010586 diagram Methods 0.000 description 6
- 230000015556 catabolic process Effects 0.000 description 4
- 238000007726 management method Methods 0.000 description 4
- 238000004590 computer program Methods 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- VYZAMTAEIAYCRO-UHFFFAOYSA-N Chromium Chemical compound [Cr] VYZAMTAEIAYCRO-UHFFFAOYSA-N 0.000 description 2
- 230000036651 mood Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 239000007787 solid Substances 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 239000000470 constituent Substances 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 230000010354 integration Effects 0.000 description 1
- 235000012054 meals Nutrition 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000000750 progressive effect Effects 0.000 description 1
- 238000009877 rendering Methods 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
Landscapes
- Information Transfer Between Computers (AREA)
- Telephonic Communication Services (AREA)
Abstract
The embodiment of the specification particularly relates to a card data reading and writing system and method. The system comprises: the browser client module is used for sending a card data read-write service request to the port module through the browser; the port module is used for sending the card data read-write service request to the background service module; the background service module comprises a conversion unit and a first card data read-write control unit which are connected in sequence; the conversion unit is used for receiving the card data read-write service request and converting the card data read-write service request into a card data read-write control API call in the process; the first card data read-write control unit is used for receiving the call of the card data read-write control API and driving the card reader to realize the data read-write operation of the inserted card in the card reader. The business system which needs card data reading can get rid of an IE browser, system stability and user experience are improved, and operation and maintenance cost is reduced.
Description
Technical Field
The embodiment of the specification belongs to the technical field of data reading, and particularly relates to a card data reading and writing system and method.
Background
In the current card data reading scenario, the form, the button and the card read-write control related to the service are usually placed in the same webpage. When the card data needs to be read and written, the control in the webpage is directly called through the javascript script to read and write the card.
However, only the IE browser on Windows can run such web pages with controls. Chrome, firefox, etc. are explicitly unsupported. So our business system operating terminal is bound to the IE browser of the Windows operating system.
The IE browser is old, and besides the problem of low performance, the problems of WEB page compatibility, WEB security and the like are also solved, so that the user experience is poor. And the business form and the control are in the same webpage, so that the usage is easy to cause the breakdown of the IE browser. Upon such a failure, a light then causes the web page window to be closed, and a heavy then causes the Windows system blue screen to restart. The efficiency and mood of the business of the window are seriously affected, the user is not satisfied and complaints are caused, if the self-service machine is adopted, people are required to be dispatched to the site for processing when the problems occur, and the operation and maintenance cost is increased.
Disclosure of Invention
The embodiment of the specification provides a card data read-write system and a card data read-write method, which can lead a business system to get rid of an IE browser, improve the system stability and the user experience and reduce the operation and maintenance cost.
The technical scheme is as follows:
In a first aspect, an embodiment of the present disclosure provides a card data read-write system, including a card reader, and a browser client module, a port module, and a background service module that are disposed in a host;
The browser client module is used for sending a card data read-write service request to the port module through the browser;
the port module is used for sending the card data read-write service request to the background service module;
the background service module comprises a conversion unit and a first card data read-write control unit which are connected in sequence;
The conversion unit is used for receiving the card data read-write service request and converting the card data read-write service request into a card data read-write control API call in the process;
the first card data read-write control unit is used for receiving the call of the card data read-write control API and driving the card reader to realize the data read-write operation of the inserted card in the card reader.
Preferably, a background management module for controlling the running state of the background service module is also installed in the host.
Preferably, the client CA certificate is registered in the browser client module, and the server certificate issued by the client CA certificate and used for encrypted communication and authentication with the browser client module is registered in the background service module.
Preferably, the port module includes a plurality of port units;
The background service module can monitor any one idle port unit;
The server certificate registered in the background service module and issued by the client CA certificate has uniqueness, namely the server certificate registered in the background service module is particularly used for read-write service identity verification.
Preferably, the plurality of port units are respectively provided with priorities corresponding to the plurality of port units;
The background service module monitors each port unit in sequence according to the priority corresponding to each of the port units until the monitoring is successful, and monitors the port units successfully when the port units are not monitored by other services;
The browser client module sequentially accesses each port unit according to the priorities corresponding to the port units until the access is successful, and the browser client module can carry out encrypted communication with the service monitoring the port unit through the port unit and succeed in accessing when the read-write service authentication is completed;
And the monitoring sequence of the background service module to each port unit is consistent with the access sequence of the browser client module to each port unit.
Preferably, the browser client module comprises a second card data read-write control unit;
The second card data read-write control unit is used for starting when all the port units cannot be monitored by the background service module;
And the browser client module is also used for directly driving the card reader by calling the second card data read-write control unit when the second card data read-write control unit is started so as to realize the data read-write operation of the inserted card in the card reader.
Preferably, the first card data read-write control unit comprises a calling receiving subunit, a card data reading subunit, a primary identity verification subunit and a card data writing subunit which are connected in sequence, wherein the card data writing subunit is also connected with the card data reading subunit;
The call receiving subunit is used for receiving a card data read-write control API call, wherein the card data read-write control API call comprises read-write user information;
the card data reading subunit is used for driving the card reader to realize reading operation of inserting the card into the card reader;
The primary identity verification subunit is used for carrying out primary identity verification on the card identity according to the card data read by the card data reading subunit and the read-write user information;
And the card data writing subunit is used for writing the card data read by the card data reading subunit into the browser client module after the card identity passes the identity verification once.
Preferably, the first card data read-write control unit further comprises a first abstract value generation subunit;
The first abstract value generation subunit is used for generating first abstract data corresponding to the card data read by the card data reading subunit by adopting a predefined private abstract generation function between the background service module and the browser client module;
the browser client module comprises a second abstract value generating unit and a secondary identity verification unit;
The second abstract value generating unit is used for receiving card data passing through one-time identity verification, and generating second abstract data corresponding to the received card data passing through one-time identity verification by adopting a predefined private abstract generating function between the background service module and the browser client module;
The secondary identity verification unit is used for carrying out secondary identity verification on the card data according to the first abstract data and the second abstract data, and allowing the card data to be written into the writing operation of the subunit after passing the secondary identity verification.
In a second aspect, an embodiment of the present disclosure provides a card data reading and writing method, which is based on the card data reading and writing system described in the first aspect of the foregoing embodiment, including:
the browser client module sends a card data read-write service request to the port module through the browser;
the port module sends a card data read-write service request to the background service module;
The conversion unit receives the card data read-write service request and converts the card data read-write service request into a card data read-write control API call in the process;
The first card data read-write control unit receives the card data read-write control API call and drives the card reader to realize the data read-write operation of the inserted card in the card reader.
Preferably, before the browser client module sends the card data read-write service request to the port module through the browser, the method further includes:
And registering the client CA certificate in the browser client module, and registering a server certificate which is issued by the client CA certificate and is used for carrying out encrypted communication and identity verification with the browser client module in the background service module.
In a third aspect, embodiments of the present disclosure further provide an electronic device, including a processor and a memory; the processor is connected with the memory; the memory is used for storing executable program codes; the processor runs a program corresponding to the executable program code by reading the executable program code stored in the memory for performing the steps described in the second aspect of the above embodiment.
In a fourth aspect, the present description embodiment also provides a computer storage medium storing a plurality of instructions adapted to be loaded by a processor and to perform the steps of the second aspect of the above embodiment.
The technical scheme provided by some embodiments of the present specification has the following beneficial effects:
In the card data read-write system provided by the specification, the background service module is additionally arranged in the host, and the card data read-write control unit is arranged in the background service module, namely, the card data read-write control is not arranged in the webpage, so that a business system needing card data reading can be free from an IE browser, the system stability and the user experience are improved, and the operation and maintenance cost is reduced.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present description, the drawings that are required in the embodiments will be briefly described below, and it is apparent that the drawings in the following description are only some embodiments of the present description, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic view of an application scenario of a card data read-write system according to an embodiment of the present disclosure.
Fig. 2 is a schematic structural diagram of a conventional card data reading and writing system.
Fig. 3 is a schematic structural diagram of a card data read-write system according to an embodiment of the present disclosure.
Fig. 4 is a flow chart of a card data reading and writing method according to an embodiment of the present disclosure.
Fig. 5 is a schematic structural diagram of an electronic device according to an embodiment of the present disclosure.
Detailed Description
The technical solutions in the embodiments of the present specification will be clearly and completely described below with reference to the drawings in the embodiments of the present specification.
The terms first, second, third and the like in the description and in the claims and in the above drawings are used for distinguishing between different objects and not necessarily for describing a particular sequential or chronological order. Furthermore, the terms "comprise" and "have," as well as any variations thereof, are intended to cover a non-exclusive inclusion. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those listed steps or elements but may include other steps or elements not listed or inherent to such process, method, article, or apparatus.
The following description provides examples and does not limit the scope, applicability, or examples set forth in the claims. Changes may be made in the function and arrangement of elements described without departing from the scope of the disclosure herein. Various examples may omit, replace, or add various procedures or components as appropriate. For example, the described methods may be performed in a different order than described, and various steps may be added, omitted, or combined. Furthermore, features described with respect to some examples may be combined into other examples.
The present disclosure presents a scenario in which a card data read-write system is employed prior to elaborating the card data read-write system in connection with one or more embodiments.
As shown in fig. 1, the application scenario of the card data read-write system may at least include an electronic device 101, where:
The electronic device 101 is equipped with a business system for performing various operations on user data, such as, but not limited to, modifying a user name, adjusting a user account number, recharging a card amount of a user, and the like. And the electronic device 101 needs to be connected to an external card reader.
In the real application process, an administrator can open a service system installed in the administrator through the electronic equipment 101 and correspondingly operate user data in a webpage in the service system, when a user handles a service, the administrator inserts a card into a card reader, and the administrator reads data through clicking in the webpage of the service system to call a card data reading control so as to drive the card reader to realize data reading and writing operation on the inserted card in the card reader, and displays the card in the webpage of the service system, such as displaying account balance shown in fig. 1, and further performs operations such as recharging and the like on the card through the webpage in the service system.
The card in the embodiment of the present specification may be, but is not limited to, any card that can read and write data through a card reader, such as a gas IC card, an electric IC card, a bank card, a meal card, a deposit card, and a supermarket card.
The electronic device 101 referred to in the embodiments of the present description may be a smart phone, a tablet computer, a desktop, a laptop, a notebook, an Ultra-mobile personal computer (UMPC), a handheld computer, a PC device, a personal digital assistant (PersonalDigital Assistant, PDA), a virtual reality device, or the like.
Referring next to fig. 2, fig. 2 is a schematic diagram illustrating a structure of a conventional card data read-write system.
It can be seen that the forms, buttons and card read-write controls related to the business are all placed in the same web page. When the card data needs to be read and written, the control in the webpage is directly called through the javascript script to read and write the card. However, only the IE browser on Windows can run such web pages with controls. Chrome, firefox, etc. are explicitly unsupported. So our business system operating terminal is bound to the IE browser of the Windows operating system. The IE browser is old, and besides the problem of low performance, the problems of WEB page compatibility, WEB security and the like are also solved, so that the user experience is poor. And the business form and the control are in the same webpage, so that the usage is easy to cause the breakdown of the IE browser. Upon such a failure, a light then causes the web page window to be closed, and a heavy then causes the Windows system blue screen to restart. The efficiency and mood of the business of the window are seriously affected, the user is not satisfied and complaints are caused, if the self-service machine is adopted, people are required to be dispatched to the site for processing when the problems occur, and the operation and maintenance cost is increased.
Referring next to fig. 3, fig. 3 is a schematic structural diagram of a card data reading and writing system according to an embodiment of the present disclosure.
As shown in fig. 3, the card data read-write system at least comprises a card reader, a browser client module, a port module and a background service module, wherein the browser client module, the port module and the background service module are arranged in a host;
The browser client module is used for sending a card data read-write service request to the port module through the browser;
the port module is used for sending the card data read-write service request to the background service module;
the background service module comprises a conversion unit and a first card data read-write control unit which are connected in sequence;
The conversion unit is used for receiving the card data read-write service request and converting the card data read-write service request into a card data read-write control API call in the process;
the first card data read-write control unit is used for receiving the call of the card data read-write control API and driving the card reader to realize the data read-write operation of the inserted card in the card reader.
Therefore, in the card data read-write system provided by the embodiment of the specification, the background service module is additionally arranged in the host, and the card data read-write control unit is arranged in the background service module, namely, the card data read-write control is not arranged in the webpage, so that a business system needing card data reading can be free from an IE browser, the system stability and the user experience are improved, and the operation and maintenance cost is reduced.
In one embodiment of the present disclosure, a background management module for controlling an operation state of the background service module is further installed in the host.
It can be understood that the operation state of the control background service module may be, but is not limited to, an operation state of controlling the opening, closing, restarting, etc. of the background service module, and of course, the installation, the uninstallation, etc. of the background service module may also be controlled by the background management module.
More specifically, by the card data read-write system provided in the embodiment of the present specification:
1. Our business system is no longer limited to IE browsers, and various modern browsers can run. The interface can be made more beautiful, the performance of the webpage and the script is higher, the compatibility of the layout and the style is better, and the security is better.
2. The read-write control is operated by a special background service process, the operation environment is purer, the control is not easy to crash, and the background service can be restarted automatically through the background management module quickly even if the process is killed due to errors. The service window in the front-end process is not affected, and when the background service is restarted, the front-end webpage can be repaired through simple retry, so that the user experience is remarkably improved.
3. Based on the card data read-write system provided by the embodiment of the specification, the self-service scene requirement can be met better, and the possibility of service system breakdown is greatly reduced after the card read-write service stability is obviously improved, so that unattended operation can be basically realized, and the operation and maintenance cost is greatly reduced.
In one embodiment of the present disclosure, the client CA certificate is registered in the browser client module, and the server certificate issued by the client CA certificate for encrypted communication with the browser client module and authentication is registered in the background service module.
It can be understood that in the card data read-write system provided in the embodiments of the present disclosure, the card data read-write control is separately provided in the background service module, so that the card data is not directly read-write operated by the browser, but is read-write operated by the background service module and is transmitted to the browser.
Therefore, on the basis of increasing the transmission steps, in order to ensure confidentiality in the data transmission process and avoid data leakage in the transmission process, the client CA certificate is registered in the browser client module, and the server certificate which is issued by the client CA certificate and used for encrypted communication with the browser client module is registered in the background service module. Data communication satisfying the HTTPS communication protocol is achieved, for example, by a client CA certificate, a server certificate.
And it can be understood that the authentication of the trusted identity of the background service module at the browser client module can also be realized through the certificate.
In one embodiment of the present description, the port module includes a plurality of port units;
The background service module can monitor any one idle port unit;
The server certificate registered in the background service module and issued by the client CA certificate has uniqueness, namely the server certificate registered in the background service module is particularly used for read-write service identity verification.
It will be appreciated that in addition to the card data read-write background service, there may be other background services in the host, such as data backup, authentication, etc., which all require data communication with the front-end business system through ports. Therefore, in order to ensure the normal operation of the background service module in the embodiments of the present disclosure, a plurality of port units are provided, and the background service module can monitor any one idle port unit.
Further, it can be understood that, since the port can be monitored by services such as data backup and authentication, the front-end service system needs to confirm the identity of the service before communicating with the background service module through the port, that is, needs to ensure that the card data is read and written and then communicated.
In this embodiment, therefore, the server certificate registered within the background service module, issued by the client CA certificate, is specifically used for read-write service authentication of the background service module at the browser client module.
It will be appreciated that although the background service module has registered therein a server certificate issued by the client CA certificate for encrypted communication with the browser client module and authentication, the client CA certificate may issue a plurality of identical server certificates to a plurality of services, so that different services may pass authentication through the certificate, and the front-end service system only wants to use the read-write service, so that if the read-write service authentication is to be implemented through the server certificate, the server certificate issued by the client CA certificate to the background service module needs to be unique.
In one embodiment of the present disclosure, the plurality of port units are respectively provided with respective priorities;
The background service module monitors each port unit in sequence according to the priority corresponding to each of the port units until the monitoring is successful, and monitors the port units successfully when the port units are not monitored by other services;
The browser client module sequentially accesses each port unit according to the priorities corresponding to the port units until the access is successful, and the browser client module can carry out encrypted communication with the service monitoring the port unit through the port unit and succeed in accessing when the read-write service authentication is completed;
And the monitoring sequence of the background service module to each port unit is consistent with the access sequence of the browser client module to each port unit.
According to the above embodiment, as known from the foregoing embodiment, in the card data read-write system provided by the present embodiment, the port units have a plurality of port units, the background service module may monitor any one of the idle port units, and the browser client module may perform subsequent card read-write operations after confirming the identity of the monitoring service, so in order to improve the read-write efficiency, in this embodiment, respective priorities (for example, the priority of the port unit with the highest historical read-write service usage number and/or highest usage frequency may be set higher, that is, the priority of the port unit is determined according to the historical usage number data and/or historical usage frequency data of the read-write service on the port unit) are set for the plurality of port units, and the subsequent background service module and the browser client module all perform the monitoring follow-up access according to the same priority order.
In one embodiment of the present specification, the browser client module includes a second card data read-write control unit;
The second card data read-write control unit is used for starting when all the port units cannot be monitored by the background service module;
And the browser client module is also used for directly driving the card reader by calling the second card data read-write control unit when the second card data read-write control unit is started so as to realize the data read-write operation of the inserted card in the card reader.
In this embodiment, since the second card data read-write control unit is provided for the browser client module, the browser client module needs to use a browser capable of running controls such as IE.
According to the above, it can be understood that when all the port units are monitored by other services, the read-write operation of the front end cannot be realized through the background service module, so in this embodiment, a second card data read-write control unit is set for the browser client module, and the second card data read-write control unit is only started when all the port units cannot be monitored by the background service module, so as to improve the running efficiency of the front end service system at ordinary times and reduce the breakdown frequency of the front end service system at ordinary times as much as possible.
In one embodiment of the present disclosure, the first card data read-write control unit includes a call receiving subunit, a card data reading subunit, a primary identity verification subunit, and a card data writing subunit that are sequentially connected, where the card data writing subunit is further connected to the card data reading subunit;
The call receiving subunit is used for receiving a card data read-write control API call, wherein the card data read-write control API call comprises read-write user information;
the card data reading subunit is used for driving the card reader to realize reading operation of inserting the card into the card reader;
The primary identity verification subunit is used for carrying out primary identity verification on the card identity according to the card data read by the card data reading subunit and the read-write user information;
And the card data writing subunit is used for writing the card data read by the card data reading subunit into the browser client module after the card identity passes the identity verification once.
It can be understood that in order to ensure the correctness of data reading and writing, that is, to avoid reading and writing card data of other users to the current reading and writing request user in the front-end service system. In this embodiment, an authentication function is set in the first card data read-write control unit, that is, after the card data is read, the primary identity verification subunit needs to verify the card identity according to the card data and the read-write user information, that is, verify whether the card identity is consistent with the client information in the card data read-write service request, so as to ensure the read-write accuracy of the front end.
Further, in an embodiment of the present specification, the first card data read-write control unit further includes a first digest value generation subunit;
The first abstract value generation subunit is used for generating first abstract data corresponding to the card data read by the card data reading subunit by adopting a predefined private abstract generation function between the background service module and the browser client module;
the browser client module comprises a second abstract value generating unit and a secondary identity verification unit;
The second abstract value generating unit is used for receiving card data passing through one-time identity verification, and generating second abstract data corresponding to the received card data passing through one-time identity verification by adopting a predefined private abstract generating function between the background service module and the browser client module;
The secondary identity verification unit is used for carrying out secondary identity verification on the card data according to the first abstract data and the second abstract data, and allowing the card data to be written into the writing operation of the subunit after passing the secondary identity verification.
According to the above-mentioned knowledge, the card data is not read and written directly by the browser, but is read and written through the background service module and transmitted to the browser, so that the data transmission step is increased.
The confidentiality of the data in the transmission process can be ensured through encryption transmission, but if the data is tampered before the background service module encrypts the data, the confidentiality cannot be well ensured, for example:
if the data is tampered into the data desired by the intruder after being read and before being encrypted, the front-end service system cannot find the data well, so that even through the above-mentioned one-time authentication, the user identity may still have doubtful property, and more importantly, the data written into the user of the front-end service system is likely to be tampered in the transmission process.
Therefore, in this embodiment, the first card data read-write control unit further includes a first digest value generating subunit, that is, after reading data, a first digest value corresponding to the read data is generated by using a private digest generating function, and the first digest value is also transmitted to the front-end service system, where there are two cases:
1. the data read by the card data read-write control unit is tampered, and the first abstract value is not tampered:
The browser client module comprises a second abstract value generation subunit, and a private abstract generation function defined between the browser client module and the background service module in advance can be used for generating a corresponding second abstract value, so that whether the data transmitted by the background service module are tampered or not, namely whether the identity is credible or not can be verified only by comparing the first abstract data and the second abstract data.
2. The data read by the card data read-write control unit is tampered, and the abstract value is tampered as well:
Because the private digest generation function is predefined between the background service module and the browser client module, the difficulty that an intruder wants to tamper to obtain the correct digest value corresponding to the tampered data is very large, so that the tampering risk is reduced.
It should be noted that, of course, the identity trust in this embodiment includes not only the user identity trust, but also the identity trust of the data itself, that is, whether the data itself is tampered with.
The private digest generation function may be, but is not limited to being, a hash function.
Referring to fig. 4, fig. 4 is a flowchart of a card data reading and writing method according to an embodiment of the present disclosure.
As shown in fig. 4, the card data reading and writing method at least may include:
step 402, the browser client module sends a card data read-write service request to the port module through the browser;
step 404, the port module sends a card data read-write service request to the background service module;
Step 406, the conversion unit receives the card data read-write service request and converts the card data read-write service request into a card data read-write control API call in the process;
in step 408, the first card data read-write control unit receives the card data read-write control API call and drives the card reader to implement data read-write operation on the inserted card in the card reader.
In one embodiment of the present disclosure, before the browser client module sends the card data read-write service request to the port module through the browser, the method further includes:
And registering the client CA certificate in the browser client module, and registering a server certificate which is issued by the client CA certificate and is used for carrying out encrypted communication and identity verification with the browser client module in the background service module.
In this specification, each embodiment is described in a progressive manner, and identical and similar parts of each embodiment are mutually referred to, and each embodiment mainly describes differences from other embodiments. In particular, for the card data reading and writing method embodiment, since the card data reading and writing method embodiment is basically similar to the card data reading and writing system embodiment, the description is simpler, and the relevant points are only needed to be referred to the part of the description of the card data reading and writing system embodiment.
Please refer to fig. 5, which illustrates a schematic structural diagram of an electronic device according to an embodiment of the present disclosure.
As shown in fig. 5, the electronic device 500 may include: at least one processor 501, at least one network interface 504, a user interface 503, a memory 505, and at least one communication bus 502.
Wherein the communication bus 502 may be used to enable connectivity communication of the various components described above.
The user interface 503 may include keys, and the optional user interface may also include a standard wired interface, a wireless interface, among others.
The network interface 504 may include, but is not limited to, a bluetooth module, an NFC module, a Wi-Fi module, and the like.
Wherein the processor 501 may include one or more processing cores. The processor 501 utilizes various interfaces and lines to connect various portions of the overall electronic device 500, perform various functions of the electronic device 500, and process data by executing or executing instructions, programs, code sets, or instruction sets stored in the memory 505, and invoking data stored in the memory 505. Alternatively, the processor 501 may be implemented in at least one hardware form of DSP, FPGA, PLA. The processor 501 may integrate one or a combination of several of a CPU, GPU, modem, etc. The CPU mainly processes an operating system, a user interface, an application program and the like; the GPU is used for rendering and drawing the content required to be displayed by the display screen; the modem is used to handle wireless communications. It will be appreciated that the modem may not be integrated into the processor 501 and may be implemented by a single chip.
The memory 505 may include RAM or ROM. Optionally, the memory 505 comprises a non-transitory computer readable medium. Memory 505 may be used to store instructions, programs, code sets, or instruction sets. The memory 505 may include a stored program area and a stored data area, wherein the stored program area may store instructions for implementing an operating system, instructions for at least one function (such as a touch function, a sound playing function, an image playing function, etc.), instructions for implementing the above-described various method embodiments, etc.; the storage data area may store data or the like referred to in the above respective method embodiments. The memory 505 may also optionally be at least one storage device located remotely from the processor 501. The memory 505, which is a type of computer storage medium, may include an operating system, a network communication module, a user interface module, and an application program for reading and writing card data. The processor 501 may be used to call an application program for reading and writing card data stored in the memory 505 and perform the steps of reading and writing card data mentioned in the foregoing embodiments.
The present description also provides a computer-readable storage medium having instructions stored therein, which when executed on a computer or processor, cause the computer or processor to perform the steps of one or more of the above-described method embodiments for reading and writing card data. The above-described constituent modules of the electronic apparatus may be stored in the computer-readable storage medium if implemented in the form of software functional units and sold or used as independent products.
In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When loaded and executed on a computer, produces a flow or function in accordance with embodiments of the present description, in whole or in part. The computer may be a general purpose computer, a special purpose computer, a computer network, or other programmable apparatus. The computer instructions may be stored in or transmitted across a computer-readable storage medium. The computer instructions may be transmitted from one website, computer, server, or data center to another website, computer, server, or data center by a wired (e.g., coaxial cable, fiber optic, digital subscriber line (Digital Subscriber Line, DSL)), or wireless (e.g., infrared, wireless, microwave, etc.). The computer readable storage medium may be any available medium that can be accessed by a computer or a data storage device such as a server, data center, etc. that contains an integration of one or more available media. The usable medium may be a magnetic medium (e.g., a floppy disk, a hard disk, a magnetic tape), an optical medium (e.g., a digital versatile disk (DIGITALVERSATILE DISC, DVD)), or a semiconductor medium (e.g., a Solid state disk (Solid STATE DISK, SSD)), or the like.
Those skilled in the art will appreciate that implementing all or part of the above-described embodiment methods may be accomplished by way of a computer program, which may be stored in a computer-readable storage medium, instructing relevant hardware, and which, when executed, may comprise the embodiment methods as described above. And the aforementioned storage medium includes: various media capable of storing program code, such as ROM, RAM, magnetic or optical disks. The technical features in the present examples and embodiments may be arbitrarily combined without conflict.
The above-described embodiments are merely preferred embodiments of the present disclosure, and do not limit the scope of the disclosure, and various modifications and improvements made by those skilled in the art to the technical solutions of the disclosure should fall within the protection scope defined by the claims of the disclosure without departing from the design spirit of the disclosure.
Claims (9)
1. The card data read-write system is characterized by comprising a card reader, a browser client module, a port module and a background service module, wherein the browser client module, the port module and the background service module are arranged in a host;
The browser client module is used for sending a card data read-write service request to the port module through the browser;
the port module is used for sending the card data read-write service request to the background service module;
the background service module comprises a conversion unit and a first card data read-write control unit which are connected in sequence;
The conversion unit is used for receiving the card data read-write service request and converting the card data read-write service request into a card data read-write control API call in the process;
the first card data read-write control unit is used for receiving the call of the card data read-write control API and driving the card reader to realize the data read-write operation of the inserted card in the card reader;
the first card data reading and writing control unit comprises a calling and receiving subunit, a card data reading subunit, a primary identity verification subunit and a card data writing subunit which are connected in sequence, wherein the card data writing subunit is also connected with the card data reading subunit;
The call receiving subunit is used for receiving a card data read-write control API call, wherein the card data read-write control API call comprises read-write user information;
the card data reading subunit is used for driving the card reader to realize reading operation of inserting the card into the card reader;
The primary identity verification subunit is used for carrying out primary identity verification on the card identity according to the card data read by the card data reading subunit and the read-write user information;
And the card data writing subunit is used for writing the card data read by the card data reading subunit into the browser client module after the card identity passes the identity verification once.
2. The card data read-write system according to claim 1, wherein a background management module for controlling an operation state of the background service module is further installed in the host.
3. The card data read-write system according to claim 1, wherein the browser client module has a client CA certificate registered therein, and the background service module has a server certificate issued by the client CA certificate for encrypted communication with the browser client module and authentication registered therein.
4. A card data read-write system according to claim 3, wherein the port module comprises a plurality of port units;
The background service module can monitor any one idle port unit;
The server certificate registered in the background service module and issued by the client CA certificate has uniqueness, namely the server certificate registered in the background service module is particularly used for read-write service identity verification.
5. The card data read-write system according to claim 4, wherein the plurality of port units are respectively provided with respective priorities;
The background service module monitors each port unit in sequence according to the priority corresponding to each of the port units until the monitoring is successful, and monitors the port units successfully when the port units are not monitored by other services;
The browser client module sequentially accesses each port unit according to the priorities corresponding to the port units until the access is successful, and the browser client module can carry out encrypted communication with the service monitoring the port unit through the port unit and succeed in accessing when the read-write service authentication is completed;
And the monitoring sequence of the background service module to each port unit is consistent with the access sequence of the browser client module to each port unit.
6. The card data read-write system according to claim 5, wherein the browser client module includes a second card data read-write control unit;
The second card data read-write control unit is used for starting when all the port units cannot be monitored by the background service module;
And the browser client module is also used for directly driving the card reader by calling the second card data read-write control unit when the second card data read-write control unit is started so as to realize the data read-write operation of the inserted card in the card reader.
7. The card data read-write system according to claim 1, wherein the first card data read-write control unit further comprises a first digest value generation subunit;
The first abstract value generation subunit is used for generating first abstract data corresponding to the card data read by the card data reading subunit by adopting a predefined private abstract generation function between the background service module and the browser client module;
the browser client module comprises a second abstract value generating unit and a secondary identity verification unit;
The second abstract value generating unit is used for receiving card data passing through one-time identity verification, and generating second abstract data corresponding to the received card data passing through one-time identity verification by adopting a predefined private abstract generating function between the background service module and the browser client module;
The secondary identity verification unit is used for carrying out secondary identity verification on the card data according to the first abstract data and the second abstract data, and allowing the card data to be written into the writing operation of the subunit after passing the secondary identity verification.
8. A card data reading and writing method, based on the card data reading and writing system of any one of claims 1 to 7, characterized by comprising:
the browser client module sends a card data read-write service request to the port module through the browser;
the port module sends a card data read-write service request to the background service module;
The conversion unit receives the card data read-write service request and converts the card data read-write service request into a card data read-write control API call in the process;
The first card data read-write control unit receives the card data read-write control API call and drives the card reader to realize the data read-write operation of the inserted card in the card reader.
9. The method of claim 8, wherein before the browser client module sends the card data read-write service request to the port module through the browser, the method further comprises:
And registering the client CA certificate in the browser client module, and registering a server certificate which is issued by the client CA certificate and is used for carrying out encrypted communication and identity verification with the browser client module in the background service module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410430470.5A CN118036627B (en) | 2024-04-11 | 2024-04-11 | Card data reading and writing system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410430470.5A CN118036627B (en) | 2024-04-11 | 2024-04-11 | Card data reading and writing system and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN118036627A CN118036627A (en) | 2024-05-14 |
| CN118036627B true CN118036627B (en) | 2024-06-25 |
Family
ID=90989564
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410430470.5A Active CN118036627B (en) | 2024-04-11 | 2024-04-11 | Card data reading and writing system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN118036627B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101324942A (en) * | 2007-06-13 | 2008-12-17 | 阿里巴巴集团控股有限公司 | Payment system and method performing trade by identification card including IC card |
| CN103049776A (en) * | 2012-12-31 | 2013-04-17 | 中国电子科技集团公司第十五研究所 | File exchange based B/S system card reading and writing method |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| ZA200506089B (en) * | 2004-09-01 | 2007-04-25 | Microsoft Corp | Reader application markup language schema |
| WO2017088792A1 (en) * | 2015-11-24 | 2017-06-01 | 上海卡树信息科技有限公司 | File distribution method, printable memory card for file distribution, and read-write device for same |
| CN106775751A (en) * | 2016-12-30 | 2017-05-31 | 深圳中顺易金融服务有限公司 | A kind of web front-end frame system and framework method |
| CN106878319A (en) * | 2017-03-06 | 2017-06-20 | 中国科学院数据与通信保护研究教育中心 | A kind of method and system that Digital signature service is provided |
| CN107992734B (en) * | 2017-10-25 | 2022-02-08 | 广东联合电子服务股份有限公司 | CPU card read-write service method, electronic equipment, storage medium and system |
| CN113194195B (en) * | 2021-04-28 | 2022-09-06 | 广东岭南通股份有限公司 | Opening method and using method of eID-based composite traffic card |
-
2024
- 2024-04-11 CN CN202410430470.5A patent/CN118036627B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101324942A (en) * | 2007-06-13 | 2008-12-17 | 阿里巴巴集团控股有限公司 | Payment system and method performing trade by identification card including IC card |
| CN103049776A (en) * | 2012-12-31 | 2013-04-17 | 中国电子科技集团公司第十五研究所 | File exchange based B/S system card reading and writing method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN118036627A (en) | 2024-05-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108804906B (en) | System and method for application login | |
| US8973123B2 (en) | Multifactor authentication | |
| US8606935B2 (en) | Application distribution control system, application distribution control method, information processing apparatus, and client terminal | |
| CN110515678B (en) | Information processing method, equipment and computer storage medium | |
| EP3065074A1 (en) | Fingerprint authentication method and device, intelligent terminal, and computer storage medium | |
| CN109815746B (en) | Data tamper-proofing method and system based on block chain technology | |
| CN105446713A (en) | Safe storage method and equipment | |
| CN107528830B (en) | Account login method, system and storage medium | |
| US9444817B2 (en) | Facilitating claim use by service providers | |
| TW201835808A (en) | Method and system for online ticket checking based on client interface, and intelligent equipment | |
| US20220366066A1 (en) | Display method, display device, and electronic device | |
| CN110336781A (en) | A kind of method and apparatus based on browser identification terminal uniqueness | |
| US8984599B2 (en) | Real time password generation apparatus and method | |
| CN113239397A (en) | Information access method, device, computer equipment and medium | |
| CN118036627B (en) | Card data reading and writing system and method | |
| CN115170355A (en) | Evidence obtaining data credibility verification method and device, computer equipment and storage medium | |
| CN113297557A (en) | Account data authorization method, device, equipment and computer readable storage medium | |
| CN106249911B (en) | Method and apparatus for inputting text | |
| CN110941412A (en) | Method, system and terminal for realizing multi-terminal animation co-browsing based on imaging | |
| KR20160129431A (en) | Server and method for electronic signature | |
| US11671495B2 (en) | Information processing system, information processing method and recording medium recording information processing program for presenting specific information to a user terminal | |
| CN114785691B (en) | Network security control method and device, computer equipment and storage medium | |
| CN114338148B (en) | Interaction method and device, server and storage medium | |
| CN113645239B (en) | Application login method and device, user terminal and storage medium | |
| TWI645345B (en) | System, device and method for executing certificate operation on basis of token |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |