200929986 九、發明說明: 【發明所屬之技術領域】 本發明係有關於一種認證系統及方法,更詳 係有關於種應用安全認證模組之系統及方法。 【先前技術】 目前智慧ic卡已普遍應用於社會的各個 日应普及的趨勢’―個人身上同時具有多張1C卡已不足 為奇。在1C卡的應用領域中,通常卡片本身係 〇 =看Γ—部份、然而單靠卡片是無^成整體系統的 運作,後端電腦、應用軟體、讀卡機設備等都是不可缺少 的要件,其中該讀卡機設備負責後端的軟硬體與扣卡^ ,的資訊傳遞工作。而就功能設計而言,由於其應用環境的 差異而有顯著的不同,基本上,有接觸式與非接觸式的區 別。 相較於接觸式1C卡系統,非接觸式IC卡由於卡片與 ❹讀卡機的訊息傳遞不必直接接觸,所以在使用上較為便 利,且可免除許多接觸式IC系統的接點磨損等缺點因 此,在社會上各階層的應用越來越多,其應用範圍包括會 員卡、金融卡、***、門禁卡、校園卡、儲值卡、記帳 卡'掛號證、保險證、以及捷運及公車所用的悠遊卡等。 非接觸式1C卡又以RHD之技術為主,RFm是「Radi〇 Frequency Identification」的縮寫,中文可以稱為「無線 射頻識別系統」。通常是由感應器(Reader)* RFID標籤 (Tag)所組成的系統,其運作的原理是利用感應器發射無 110681 5 200929986 秦i電)皮、滷動感應範圍内的RFID標籤,藉由電磁感應產 生電流,供應RFID標籤上的晶片運作並發出電磁波回應 感應器。 由於上述的非接觸式1C卡大部分只有辨識功能而少 有安全認證設計,故僅是用於低安全性且簡單的識別。為 解決非接觸式1C卡之低安全性問題,遂有針對其安全性 問題而開發的非接觸式智慧1C卡的出現,目前非接觸式 智慧1C卡讀卡機及智慧1C卡大都使用飛利浦的Mifare 〇技術,該技術係遵照ISO 14443非接觸式智慧卡與讀卡機 國際標準。其中所用的Mifare卡内晶片可讀/寫資料, 更在每個磁區獨立加密,使其具備更好的安全性。 然而,目前的非接觸式RFID讀卡機仍有其安全上的 顧慮,即,SAM卡若被竊取等於得到可以任意存取或修 改非接觸1C卡的權限,因此控管機制較差,故有需要提 供額外的控管機制以增加RFID讀卡機之安全性,也可同 時降低金鑰在讀卡機外部被侧錄的情況發生。 〇 綜上所述,如何解決上述非接觸式RFID讀卡機之安 全上的顧慮,以防止安全認證模組卡被盜取後被任意使 用,遂成為目前亟待解決之問題。 【發明内容】 鑒於以上習知技術之缺點,本發明之主要目的在於提 供一種安全認證模組之認證系統及方法,係應用於具有 RFID電路之讀卡機與Mifare卡上,透過此認證機制,可 防止SAM被拿到該對應讀卡機以外的地方使用。 6 110681 200929986 本‘發―之另一目的在於提供一種安全認證模組之認 證系統及方法,係應用於具有RFID電路之讀卡機與 Mifare卡上,透過此認證機制,可在安全認證模組卡被盜 取後防止取得複製金鑰(A/B key)。 本發明之又一目的在於提供一種安全認證模組之認 證系統及方法’係應用於具有RFID電路之讀卡機與 Mifare卡上,透過此認證機制,可增加非接觸式讀卡機之 安全性。 〇 為達上揭及其它目的’本發明提供一種安全認證模組 之認證系統,係應用於具有RFID電路之讀卡機與]viifare 卡,該讀卡機具有可分別插置安全認證模組卡與認證卡之 安全認證模組卡插槽及認證卡插槽,該安全認證模組卡與 該認證卡分別具有金錄儲存區,且該安全認證模組卡之金 鑰儲存區儲存有複製金鑰,該安全認證模組之認證系統包 括·金錄生成父換模組’係内建於該安全認證模組卡,用 以令該安全認證模組卡產生包括公錄與私錄之RS A金餘 ®對,並將該金錄對中的公瑜傳送至該讀卡機,該私錄則係 儲存於該安全認證模組卡中;金錄傳送模組,係内建於該 認證卡,用以令該讀卡機將其所接收的公鑰傳入該認證卡 中;認證金瑜生成模組,係内建於該認證卡,用以在該認 證卡上產生認證金鑰,並將該認證金鑰儲存於該認證卡之 金鑰儲存區中;認證金鑰加密模組,係内建於該認證卡, 用以將認證金鑰生成模組所產生之認證金鑰透過該金鑰 傳送模組所傳入之公鑰予以加密,並透過該金鑰傳送模組 7 110681 200929986 回傳該加密過之認證金鑰給該讀卡機;以及金鑰註冊功能 模組,係内建於該安全認證模組卡,用以將該讀卡機所接 收之加密過的認證金鑰傳入該安全認證模組卡内,再使用 其私錄將該加岔過的这、證金餘解密,並判斷該認證金錄解 密是否成功’若是,則將該認證金鑰儲存至該安全認證模 組卡之金錄儲存區中;若否,則不予以儲存。 前述安全認證模組之認證系統的另一實施例中,該安 全認證模組之認證系統復包括複製金鑰加密模組,係内建 ❹於該安全認證模組卡,用以當Mifare卡***該讀卡機時, 呼叫安全認證模組卡取得該複製金鑰,接著令該安全認證 模組卡使用該認證金錄將該複製金鑰加密,並傳給認證 卡;以及複製金錄解密模組,係内建於該認證卡,用以解 密加密過後的複製金鑰,換言之,將該加密過的複製金鑰 傳入該認證卡並令儲存於該認證卡中的認證金錄將該加 密過的複製金錄解密,並將該解密過之複製金餘傳送至該200929986 IX. INSTRUCTIONS: TECHNICAL FIELD OF THE INVENTION The present invention relates to an authentication system and method, and more particularly to a system and method for applying a security authentication module. [Prior Art] At present, smart ic cards have been widely used in various trends in society. It is not surprising that individuals have multiple 1C cards at the same time. In the field of application of 1C card, usually the card itself is 〇 = see Γ - part, but the card alone is the operation of the whole system, the back-end computer, application software, card reader equipment, etc. are indispensable Essentials, wherein the card reader device is responsible for the information transfer work of the back end of the software and hardware and the card. In terms of functional design, there are significant differences due to differences in their application environments. Basically, there are contact and non-contact differences. Compared with the contact type 1C card system, the non-contact IC card does not have to be in direct contact with the message transmission of the card and the card reader, so it is convenient in use and can eliminate the disadvantages of contact wear of many contact IC systems. There are more and more applications in all walks of life in society. Its application scope includes membership card, financial card, credit card, access card, campus card, stored value card, debit card, registration card, insurance card, and use by MRT and bus. The leisure card and so on. The non-contact 1C card is based on the technology of RHD. RFm is the abbreviation of "Radi〇 Frequency Identification", which can be called "radio frequency identification system" in Chinese. It is usually a system consisting of a Reader* RFID tag. The principle of its operation is to use the sensor to transmit RFID tags in the range of 125681 5 200929986. Inductively generates current, supplies the wafer on the RFID tag to operate and emits an electromagnetic wave response sensor. Since most of the above-mentioned non-contact type 1C cards have only an identification function and few safety certification designs, they are only used for low security and simple identification. In order to solve the low security problem of the non-contact 1C card, there is a non-contact smart 1C card developed for its security problem. At present, the non-contact smart 1C card reader and the smart 1C card mostly use Philips's. Mifare® technology, which complies with ISO 14443 international standards for contactless smart cards and card readers. The Mifare card readable/writable data used in it is independently encrypted in each magnetic zone, which makes it more secure. However, the current non-contact RFID card reader still has its security concerns. If the SAM card is stolen, it is equivalent to obtaining the right to access or modify the non-contact 1C card. Therefore, the control mechanism is poor, so there is a need. Additional control mechanisms are provided to increase the security of the RFID reader, and at the same time reduce the occurrence of the side being recorded on the outside of the reader.综 In summary, how to solve the security concerns of the above-mentioned non-contact RFID readers to prevent the security authentication module card from being stolen and used arbitrarily becomes a problem to be solved. SUMMARY OF THE INVENTION In view of the above disadvantages of the prior art, the main object of the present invention is to provide an authentication system and method for a security authentication module, which is applied to a card reader with an RFID circuit and a Mifare card, through which the authentication mechanism is It can prevent the SAM from being used outside the corresponding card reader. 6 110681 200929986 Another purpose of this 'issue' is to provide a security authentication module authentication system and method, which is applied to a card reader with an RFID circuit and a Mifare card. Through this authentication mechanism, the security authentication module can be used. After the card is stolen, the copy key (A/B key) is prevented. Another object of the present invention is to provide a security authentication module authentication system and method for applying to a card reader with an RFID circuit and a Mifare card, and the authentication mechanism can increase the security of the contactless card reader. . The present invention provides an authentication system for a security authentication module, which is applied to a card reader with an RFID circuit and a viifare card, which has a security authentication module card that can be separately inserted. The security authentication module card slot and the authentication card slot of the authentication card respectively have a gold record storage area, and the key storage area of the security authentication module card stores a copy gold Key, the authentication system of the security authentication module includes: the golden record generation parent replacement module is built in the security authentication module card, so that the security authentication module card generates RS A including public and private records. Jinyu® pair, and the public record of the pair is transmitted to the card reader, the private record is stored in the security certification module card; the gold record transmission module is built in the authentication card The card reader is used to transmit the public key received by the card reader to the authentication card; the authentication Jinyu generating module is built in the authentication card to generate an authentication key on the authentication card, and Storing the authentication key in the key storage area of the authentication card; The key encryption module is built in the authentication card, and the authentication key generated by the authentication key generation module is encrypted by the public key transmitted by the key transmission module, and the gold is encrypted. The key transfer module 7 110681 200929986 returns the encrypted authentication key to the card reader; and the key registration function module is built in the security authentication module card for receiving the card reader The encrypted authentication key is transmitted into the security authentication module card, and then the encrypted account is decrypted using the private record, and the authentication decryption is successful. If yes, the The authentication key is stored in the golden record storage area of the security authentication module card; if not, it is not stored. In another embodiment of the authentication system of the security authentication module, the authentication system of the security authentication module includes a copy key encryption module, and is built in the security authentication module card for inserting the Mifare card. When the card reader is in use, the call security authentication module card obtains the copy key, and then causes the security authentication module card to encrypt the copy key and transmit the copy key to the authentication card; and copy the decryption mode. The group is built in the authentication card to decrypt the encrypted copy key, in other words, the encrypted copy key is transmitted to the authentication card and the authentication record stored in the authentication card is encrypted. The copy of the copy is decrypted, and the decrypted copy is transferred to the
Mifare 卡。Mifare card.
Q 本發明之安全認證模組之認證方法,係應用於具有 RFID電路之讀卡機與Mifare卡’該讀卡機具有可分別插 置安全認證模組卡與認證卡之安全認證模組卡插槽及認 證卡插槽’該安全認證模組卡與該認證卡分別具有金錄儲 存區’且該安全認證模組卡之金錄儲存區儲存有複製金 鑰,該安全認證模組之方法包括:透過該安全認證模組卡 產生包括公鑰與私鑰之RSA金鑰對’並將該金鑰對其中 的公鑰傳送至該讀卡機;透過該讀卡機將其所接收的公鑰 8 110681 200929986 #入認證卡中,並在該認證卡上產生認證金鑰;將該認 證金鑰儲存於該認證卡之金鑰儲存區中,同時將該認證金 鑰透過該讀卡機所傳入之公鑰予以加密,再傳送該加密過 之認證金錄至該讀卡機;令該讀卡機所接收之加密過的認 證金錄傳入該安全認證模組卡内,並透過該私輸將該加密 過的認證金鑰解密;以及判斷認證金鑰解密是否成功,若 是’則將該認證金錄儲存至該安全認證模組卡之金錄儲存 區中;若否,則不予以儲存。 ❹ 前述安全認證模組之認證方法的另一實施例復包 括:將Mifare卡***讀卡機中;呼叫安全認證模組卡取 得該複製金錄;令該安全認證模組卡使用認證金錄加密該 複製金錄’並傳給5忍證卡;令該認證卡使用認證金餘將該 加密過的複製金鑰解密;以及將該解密過之複製金錄傳送 至該Mifare卡。 因此,本發明之安全認證模組之認證系統及方法係透 〇 過插置有安全認證模組卡及認證卡之RFID讀卡機來施行 認證機制,首先由該RFID讀卡機呼叫安全認證模組卡交 換金錄產生功能,然後將讀卡機電路板上所產生RS A金 錄對傳送至安全認證模組卡並回傳其中的公餘(pUblic key)、將該公鑰傳入讀卡機之認證卡並於該認證卡之電路 板上產生認證金綠(Des3)、使用該公錄加密此認證金錄並 回傳加密過之該認證金錄、將該加密過之認證金餘傳入該 安全認證模組卡中並使用該安全認證模組卡中之RSA私 鑰(private key)解密、若解密成功則將該認證金鑰儲存至 9 110681 200929986 安全認證模組卡中,藉此’以後若需要透過該讀卡機取得 該安全認證模組卡之複製金鑰時,就需要透過該讀卡機之 該認證金鑰來認證,因此可防止盜取安全認證模組卡及防 止側錄之情形發生,因而提高非接觸式RFID讀卡機之安 全性。 【實施方式】 以下係藉由特定的具體實施例說明本發明之實施方 式’熟悉此技藝之人士可由本說明書所揭示之内容輕易地 ❹瞭解本發明之其他優點與功效。本發明亦可藉由其他不同 的具體實施例加以施行或應用,本說明書中的各項細節亦 可基於不同觀點與應用,在不悖離本發明之精神下進行各 種修飾與變更。 請參閱第1(A)圖,用以顯示本發明之安全認證模組 之認證系統1之一實施例的系統架構方塊示意圖。本發明Q The authentication method of the security authentication module of the present invention is applied to a card reader with an RFID circuit and a Mifare card. The card reader has a security authentication module card inserted into a security authentication module card and an authentication card. The slot and the authentication card slot 'the security authentication module card and the authentication card respectively have a golden record storage area' and the golden record storage area of the security authentication module card stores a copy key, and the method of the security authentication module includes : generating an RSA key pair including a public key and a private key through the secure authentication module card and transmitting the public key of the key to the card reader; and receiving the public key through the card reader 8 110681 200929986 #Enter the authentication card, and generate an authentication key on the authentication card; store the authentication key in the key storage area of the authentication card, and transmit the authentication key through the card reader The public key entered is encrypted, and the encrypted certificate is transmitted to the card reader; the encrypted certificate received by the card reader is transmitted to the security authentication module card, and the private certificate is transmitted through the private card. Lose the encrypted authentication key And determining whether the decrypted authentication keys successful, if the 'gold is recorded to store the authentication storage region of the metal recording security module card in the authentication; if not, will not be stored.另一 Another embodiment of the authentication method of the foregoing security authentication module includes: inserting the Mifare card into the card reader; calling the security authentication module card to obtain the copy record; and enabling the security authentication module card to use the authentication file to encrypt The copy is recorded and transmitted to the 5 fortune card; the authentication card is used to decrypt the encrypted copy key using the authentication fee; and the decrypted copy is transferred to the Mifare card. Therefore, the authentication system and method of the security authentication module of the present invention implements an authentication mechanism by using an RFID card reader with a security authentication module card and an authentication card. First, the RFID card reader calls the security authentication mode. The group card exchanges the gold record generation function, and then transmits the RS A gold record pair generated on the card reader circuit board to the security authentication module card and returns the public (pUblic key) therein, and transmits the public key to the card reading. The authentication card of the machine generates a certificate green (Des3) on the circuit board of the authentication card, encrypts the certificate record by using the public record, and returns the encrypted certificate record, and the encrypted certificate is passed. Enter the security authentication module card and use the RSA private key in the security authentication module card to decrypt. If the decryption is successful, the authentication key is stored in the 9 110681 200929986 security authentication module card. If you need to obtain the copy key of the security authentication module card through the card reader in the future, you need to authenticate with the authentication key of the card reader, thus preventing theft of the security authentication module card and preventing the side. The situation happened, To improve safety of non-contact type of the RFID reader. [Embodiment] The following is a description of the embodiments of the present invention by way of specific examples. Those skilled in the art can readily appreciate the advantages and advantages of the present invention. The present invention may be embodied or applied in various other specific embodiments, and various modifications and changes may be made without departing from the spirit and scope of the invention. Please refer to FIG. 1(A) for a block diagram showing the system architecture of an embodiment of the authentication system 1 of the security authentication module of the present invention. this invention
之安全認證模組之認證系統係例如建構在具有RFID電路 之Mifare讀卡機上,該讀卡機具有可分別插置安全認證 模組卡與認證卡之安全認證模組卡插槽及認證卡插槽,該 安全認證模組卡與該認證卡分別具有金鑰儲存區,且該安 全認證模組卡之金鑰儲存區儲存有複製金鑰,藉由本發明 之安全認證模組之認證系統1之建置可以增加RFID讀卡 機之安全性。如圖所示,該安全認證模組之認證系統1 包括安全認證模組卡1 〇内的金錄生成交換模組12、與金 鑰註冊功能模組14、以及認證卡20内的金鑰傳送模組 22、認證金鑰生成模組23、和認證金鑰加密模組24。該 10 110681 200929986 安全認證彳莫組係如同讀卡機之識別機制,亦即讀卡機上 傳、更新、開機確認時都需要使用到安全認證模組卡1〇。 當欲進行本發明安全認證模組認證之初始設定時,需 先同時準備兩張安控卡,一張為安全認證模組卡,另一張 則為讀卡機認證卡。讀卡機認證卡是空白卡,發給々賣卡機 廠商並内建於讀卡機中;而安全認證模組卡提供Mifare 複製金鑰’其預儲存於安全認證模組卡之儲存區内,用來 提供存取Mifare卡認證使用’其中該Mifare卡可例如為 ❹符合ISO 14443標準之塑膠卡片,其可以是pvc、ABS 或更高級的合成塑膠材質,内含有微處理或記憶體與控制 邏輯所組成的晶片以及與該讀卡機通訊的介面。 使用者取得安全認證模組卡後安裝於讀卡機1的安 全認證模組插槽(未顯示於圖中)中,然後啟動初始設定, 於疋該讀卡機1透過内建於該安全認證模組卡10之金餘 生成交換模組12而令該安全認證模組卡產生包括公錄與 ❹私鑰之RSA金鑰對(RSA key pair),並將該金鑰對其中 的公鑰(Kpuk)傳送至該讀卡機1,其中該rs A金鑰對係結 合讀卡機上的序號產生,且該RS A金錄對包括一把公錄 (public key)和一把私錄(private key),由於該私錄(Kpvk) 係於該安全認證模組卡中,故無法回傳。需補充說明者, 較佳者’ RSA金錄對係以〇nb〇ard方式產生,則私錄係 onboard於該安全認證模組卡中。 金鑰傳送模組22係内建於該認證卡20,用以令該讀 卡機1將其所接收的公鑰(Kpuk)傳入該認證卡2〇中,亦 11 110681 200929986 gp,一亘該‘讀卡機1接收到公鑰(Kpuk)便會通知該金輪傳 送模組22立即擷取該公鑰(Kpuk)。 認證金錄生成模組2 3,係内建於該認s登卡2 0 ’用以 在該認證卡20上產生認證金鑰(Triple-DES,Kdes3),教將 該認證金鑰(Kdes3)儲存於該認證卡之金鑰儲存區中,其 中該認證金鑰係屬於一種三重資料加密標準(Triple Encryption Standard)演算法的基底類別,所有Triple I) 實作(Implementation)必須從它衍生。需補充說明者,麵 ¢)佳者,認證金錄係以onboard方式產生。 認證金鑰加密模組24,係内建於該認證卡20,用 將認證金鑰生成模組23所產生之認證金鑰(Kdes3)透過兮 金鑰傳送模組22所傳入之公鑰(Kpuk)予以加密並透過兮 金鑰傳送模組22回傳該加密過之認證金鑰(E(Kpuk Kdes3))給該讀卡機1。 ’ 金鑰註冊功能模組14,係内建於該安全認證模纟且卞 ❹10 ’用以將該讀卡機丨所接收之加密過的認證金輪 (E(Kpuk,Kdes3))傳入該安全認證模組卡1〇内,並使用其 私鑰(Kpvk)將該加密過的認證金鑰解密(E(Kpuk Kdes3)),若解密成功,則將該認證金鑰(Kdes3)儲存至該 安全認證模組卡10之金鑰儲存區(圖中未顯示)中,此時 即完成SA1V[認證之初始設定,若否,則不予以儲存。 上述内容.中’需要附加說明的是該安全認證模組卡 10中的金鑰對產生及認證金鑰註冊被設計成只能被寫入 一次,而且是無法被讀取的(write 〇nly & 〇nce),而認證 110681 12 200929986 + 20‘乏認證金鑰(Kdes3)產生被設計成只能被寫入無法讀 取,但能覆寫多次(write only)。由此可知,安全認證模組 設計成write only & once表示一經設定就無法更改,認證 卡20允許覆寫是因為可能需要更換安全認證模組卡10, 一旦更換該安全認證模組卡10就須重新設定認證卡20 中的認證金鑰(Kdes3),由於兩者都無法被讀取金鑰,因 此,可確保認證金鑰(Kdes3)不會被側錄外洩。 請參閱第1(B)圖,其用以顯示本發明之安全認證模 〇組之認證系統Γ之另一實施例的系統架構方塊示意圖。 本實施例之安全認證模組之認證系統Γ,其中除複製金 鑰加密模組16與複製金鑰解密模組21外,各系統構件間 的運作關係與第1(A)圖相同,故在此將不另贅述,惟本 圖加入一 Mifare卡3 0作為該安全認證模組認證初始設定 完成後之示範操作實施例。透過本實施例可瞭解Mifare 卡30如何取得安全認證模組卡1〇之複製金鑰及如何透過 讀卡機1之認證金鑰(kdes3)來認證。 複製金鑰加密模組16,係内建於該安全認證模組卡 1〇,用以當Mifare卡30***該讀卡機1,時,令該安全認 證模組卡10使用該認證金鑰(kdes3)將該複製金鑰加密, 並傳給認證卡20。 複製金鑰解密模組21,係内建於認證卡20 ’用以解 密加密過後的複製金鑰,換言之,將該加密過的複製金鑰 傳入認證卡20並令儲存於該認證卡中的認證金鑰(kdes3) 將該加密過的複製金鑰解密,並將該解密過之複製金鑰傳 13 110681 200929986 遠至該Miiare卡。 請參閱第2圖’係顯示本發明之安全認證模組之認證 方法的基本運作流程示意圖,其係應用於具有電路 之讀卡機與Mifare卡,該讀卡機具有可分別插置於其安 全$忍證模組卡插槽及認證卡插槽之安全認證模組卡與認 證卡’透過本方法之設定,可初始該安全認證模組認證之 設定,該流程包括以下步驟。 於步驟S22中,令該安全認證模組卡產生包括公鑰與 ❹私錄之RS A金錄對(RSA key pair),並將該金錄對其中 的公鑰(Kpuk)傳送至該讀卡機,需補充說明者,較佳者, RSA金錄對係以onboard方式產生。接著進行步驟S23。 RSA係由羅納德·李維斯特(Ron Rivest)、阿迪·薩莫爾 (Adi Shamir)和倫納德·阿德曼(Leonard Adleman)於 1977 年共同提出的非對稱加密演算法。 於步驟S23中,令該讀卡機將其所接收的公鑰(Kpuk) 傳入該認證卡中,並在該認證卡上產生認證金錄 ¥ (Kdes3),需補充說明者,較佳者,認證金鑰係以onboard 方式產生。接著進行步驟S24。 於步驟S24中,將該認證金鑰(Kdes3)儲存於該認證 卡之金鑰儲存區中,同時將該認證金鑰(Kdes3)透過該讀 卡機所傳入之公錄(Kpuk)予以加密,然後傳送該加密過之 認證金鑰E(Kpuk,Kdes3)至該讀卡機,接著進行步驟S25。 於步驟S25中,令該讀卡機所接收之加密過的認證金 鑰E(Kpuk,Kdes3)傳入該安全認證模組卡内,並透過其私 14 110681 200929986 鑰(Kj3vk)麻該加密過的認證金錄E(KPuk,Kdes3)解密’若 解密成功,接著進行步驟S 2 6,若否,則不儲存。 於步驟S26中,令該認證金錄(Kdes3)儲存至該安全 認證模組卡之金鑰儲存區中。 請參閱第3圖,係顯示本發明之使用Mifare卡取得 複製金鑰之加解密方法的一實施例的運作流程示意圖,用 以說明依據第2圖所完成SAM認證初始設定後之運作流 程式示意圖。透過該流程可讓使用者瞭解認證卡與該讀卡 〇機(安全認證模組卡)間的運作及如何加解密複製金錄,該 流程包括以下步驟。 於步驟S30中,將Mifare卡***讀卡機中,接著進 行步驟S31。 於步驟S31中,呼叫安全認證模組卡取得複製金鑰, 接著進行步驟S32。 於步驟S32中’令該安全認證模組卡使用認證金鑰加 密該複製金鑰,接著進行步驟S34。 〇 於步驟S34中,令該加密過的複製金鑰傳送至認證卡 中’接著進行步驟S36。 於步驟S36中’令該認證卡使用認證金鑰解密該加密 過之複製金鑰,接著進行步驟S38。 於步驟S38中,將該解密過之複製金鑰傳送至該 Mifare 卡。 综上所述’本發明之安全認證模組之認證系統及方法 係透過插置有安全認證模組卡及認證卡之RFID讀卡機來 15 110681 200929986 4行fe'證贏制,透過此認證機制,安全認證模組卡一經設 定就無法更改、覆寫,且其所產生之認證金鑰亦無法被讀 取,因此可防止安全認證模組卡被盜取及防止側錄之情形 發生,因而提高非接觸式RFID讀卡機之安全性。 上述實施例僅為例示性說明本發明之原理及其功 效,而非用於限制本發明。任何熟習此項技藝之人士均可 在不違背本發明之精神及範疇下,對上述實施例進行修飾 與變化。因此,本發明之權利保護範圍,應如後述之申請 〇專利範圍所列。 【圖式簡單說明】 第1(A)圖係用以顯示本發明之安全認證模組之認證 系統1之一實施例的系統架構方塊示意圖; 第1 (B)圖係用以顯示本發明之安全認證模組之認證 系統1’之另一實施例的系統架構方塊示意圖。; 第2圖係顯示本發明之安全認證模組之認證方法的 基本運作流程示意圖;以及The authentication system of the security authentication module is, for example, constructed on a Mifare card reader with an RFID circuit, and the card reader has a security authentication module card slot and an authentication card that can respectively insert a security authentication module card and an authentication card. a slot, the security authentication module card and the authentication card respectively have a key storage area, and the key storage area of the security authentication module card stores a copy key, and the authentication system 1 of the security authentication module of the present invention The construction can increase the security of the RFID reader. As shown in the figure, the authentication system 1 of the security authentication module includes a golden record generation switch module 12 in the secure authentication module card 1 , a key registration function module 14 , and a key transfer in the authentication card 20 . The module 22, the authentication key generation module 23, and the authentication key encryption module 24. The 10 110681 200929986 safety certification system is like the recognition mechanism of the card reader, that is, the card authentication machine uploads, updates, and confirms the need to use the security authentication module card. When the initial setting of the security authentication module authentication of the present invention is to be performed, two security cards must be prepared at the same time, one for the security authentication module card and the other for the card reader authentication card. The card reader authentication card is a blank card, which is sent to the credit card manufacturer and built into the card reader; and the security authentication module card provides the Mifare copy key, which is pre-stored in the storage area of the security authentication module card. Used to provide access to Mifare card authentication. 'The Mifare card can be, for example, a plastic card that conforms to the ISO 14443 standard. It can be a pvc, ABS or higher synthetic plastic material containing micro-processing or memory and control. A chip composed of logic and an interface for communicating with the card reader. After the user obtains the security authentication module card, it is installed in the security authentication module slot (not shown) of the card reader 1, and then starts the initial setting, after the card reader 1 is built in the security certification. The gold card of the module card 10 generates the switching module 12, so that the security authentication module card generates an RSA key pair including the public key and the private key, and pairs the key to the public key ( Kpuk) is transmitted to the card reader 1, wherein the rs A key pair is generated in conjunction with the serial number on the card reader, and the RS A gold record pair includes a public key and a private record (private) Key), because the private record (Kpvk) is in the security authentication module card, it cannot be returned. If you need to add a note, the preferred one is that the RSA record is generated in the 〇nb〇ard mode, and the private record is onboard in the security authentication module card. The key transmission module 22 is built in the authentication card 20 for causing the card reader 1 to transmit the public key (Kpuk) it receives to the authentication card 2, also 11 110681 200929986 gp, a glimpse When the 'card reader 1 receives the public key (Kpuk), it will notify the golden wheel transfer module 22 to immediately retrieve the public key (Kpuk). The authentication record generating module 2 3 is built in the identification card 2 0 ' to generate an authentication key (Triple-DES, Kdes3) on the authentication card 20, and teaches the authentication key (Kdes3) It is stored in the key storage area of the authentication card, wherein the authentication key belongs to a base class of a Triple Encryption Standard algorithm, and all Triple I) implementations must be derived therefrom. Those who need to add a note, face ¢), the certification record is generated onboard. The authentication key encryption module 24 is built in the authentication card 20, and transmits the authentication key (Kdes3) generated by the authentication key generation module 23 to the public key transmitted by the key transmission module 22 ( Kpuk) encrypts and passes back the encrypted authentication key (E(Kpuk Kdes3)) to the card reader 1 via the key transfer module 22. The key registration function module 14 is built in the security authentication module and is used to pass the encrypted authentication gold wheel (E(Kpuk, Kdes3)) received by the card reader to the security. The authentication module card is encrypted and decrypted (E(Kpuk Kdes3)) using its private key (Kpvk). If the decryption is successful, the authentication key (Kdes3) is stored to the security. In the key storage area of the authentication module card 10 (not shown), the SA1V [initial setting of authentication is completed at this time, and if not, it is not stored. In the above content, it is necessary to note that the key pair generation and authentication key registration in the security authentication module card 10 is designed to be written only once and cannot be read (write 〇nly & ; 〇nce), and the certification 110681 12 200929986 + 20's lack of authentication key (Kdes3) generation is designed to be written only unreadable, but can be overwritten multiple times (write only). It can be seen that the security authentication module is designed to write only & once indicates that it cannot be changed once it is set. The authentication card 20 allows overwriting because the security authentication module card 10 may need to be replaced. Once the security authentication module card 10 is replaced, The authentication key (Kdes3) in the authentication card 20 must be reset. Since neither of them can be read, it is ensured that the authentication key (Kdes3) will not be marginally leaked. Please refer to FIG. 1(B), which is a block diagram showing the system architecture of another embodiment of the authentication system of the security authentication module of the present invention. In the authentication system of the security authentication module of the embodiment, except for the copy key encryption module 16 and the copy key decryption module 21, the operational relationship between the system components is the same as that of the first (A) figure, so This will not be described again, but this figure adds a Mifare card 30 as an exemplary operation example after the initial setting of the security authentication module authentication is completed. Through this embodiment, it is understood how the Mifare card 30 obtains the copy key of the secure authentication module card and how it is authenticated by the authentication key (kdes3) of the card reader 1. The security key module 16 is built in the security authentication module card 1 to enable the security authentication module card 10 to use the authentication key when the Mifare card 30 is inserted into the card reader 1 ( Kdes3) encrypts the copy key and transmits it to the authentication card 20. The copy key decryption module 21 is built in the authentication card 20' to decrypt the encrypted copy key, in other words, the encrypted copy key is transmitted to the authentication card 20 and stored in the authentication card. The authentication key (kdes3) decrypts the encrypted copy key and passes the decrypted copy key to 13 110681 200929986 as far as the Miiare card. Please refer to FIG. 2, which is a schematic diagram showing the basic operation flow of the authentication method of the security authentication module of the present invention, which is applied to a card reader with a circuit and a Mifare card, and the card reader can be separately inserted into the security card. The security authentication module card and the authentication card of the fortune module card slot and the authentication card slot can be initially set by the method of the method, and the process includes the following steps. In step S22, the security authentication module card is configured to generate an RSA key pair including a public key and a private record, and the public key (Kpuk) of the golden record is transmitted to the read card. Machine, need to add a note, better, RSA gold record is produced onboard. Next, step S23 is performed. RSA is an asymmetric encryption algorithm jointly proposed by Ron Rivest, Adi Shamir and Leonard Adleman in 1977. In step S23, the card reader is caused to transmit the public key (Kpuk) received by the card reader to the authentication card, and a certificate is issued on the authentication card (Kdes3), which is required to be supplemented, preferably The authentication key is generated onboard. Next, step S24 is performed. In step S24, the authentication key (Kdes3) is stored in the key storage area of the authentication card, and the authentication key (Kdes3) is encrypted through the public record (Kpuk) introduced by the card reader. Then, the encrypted authentication key E (Kpuk, Kdes3) is transmitted to the card reader, and then step S25 is performed. In step S25, the encrypted authentication key E (Kpuk, Kdes3) received by the card reader is transmitted to the security authentication module card, and is encrypted by its private 14 110681 200929986 key (Kj3vk). Certificate E (KPuk, Kdes3) decryption 'If the decryption is successful, then proceed to step S 2 6, if not, it will not be stored. In step S26, the authentication record (Kdes3) is stored in the key storage area of the secure authentication module card. Please refer to FIG. 3, which is a schematic diagram showing the operation of an embodiment of the encryption and decryption method for obtaining a copy key using the Mifare card according to the present invention, which is used to illustrate the operational flow diagram after the initial setting of the SAM authentication according to FIG. . Through this process, the user can understand the operation between the authentication card and the card reader (secure authentication module card) and how to encrypt and decrypt the copy record. The process includes the following steps. In step S30, the Mifare card is inserted into the card reader, and then step S31 is performed. In step S31, the call security authentication module card obtains the copy key, and then proceeds to step S32. In step S32, the security authentication module card is used to encrypt the copy key using the authentication key, and then step S34 is performed. In step S34, the encrypted copy key is transferred to the authentication card, and then step S36 is performed. In step S36, the authentication card is caused to decrypt the encrypted copy key using the authentication key, and then proceeds to step S38. In step S38, the decrypted copy key is transmitted to the Mifare card. In summary, the authentication system and method of the security authentication module of the present invention is based on the RFID card reader with the security authentication module card and the authentication card. The mechanism, the security authentication module card cannot be changed or overwritten once it is set, and the authentication key generated by the security authentication module card cannot be read, thereby preventing the security authentication module card from being stolen and preventing the side recording from occurring. Improve the security of contactless RFID readers. The above embodiments are merely illustrative of the principles and effects of the invention and are not intended to limit the invention. Modifications and variations of the above-described embodiments can be made by those skilled in the art without departing from the spirit and scope of the invention. Therefore, the scope of protection of the present invention should be as set forth in the scope of the application hereinafter. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1(A) is a block diagram showing the system architecture of an embodiment of the authentication system 1 of the security authentication module of the present invention; FIG. 1(B) is a diagram showing the present invention. A block diagram of a system architecture of another embodiment of the authentication system 1' of the secure authentication module. Figure 2 is a schematic diagram showing the basic operational flow of the authentication method of the security authentication module of the present invention;
Q 第3圖係顯示本發明之使用Mifare卡取得複製金鑰 之加解密方法的一實施例的運作流程示意圖。 【主要元件符號說明】 1,Γ 讀卡機 2 讀卡機本身 10 安全認證模組卡 12 金錄生成交換模組 14 金鑰註冊功能模組 16 110681 200929986 16 ' ^複製金鑰加密模組 20 認證卡 21 複製金鑰解密模組 22 金鑰傳送模組 23 認證金鑰生成模組 24 認證金鑰加密模組 30 Mifare 卡 步驟 S22, S23, S24, S25, S23 步驟 〇 S30, S31, S32, S34, S36, S38 Ο 17 110681Q Fig. 3 is a flow chart showing the operation of an embodiment of the encryption and decryption method for obtaining a copy key using the Mifare card of the present invention. [Main component symbol description] 1, 读 card reader 2 card reader itself 10 security authentication module card 12 gold record generation switching module 14 key registration function module 16 110681 200929986 16 ' ^ copy key encryption module 20 Authentication card 21 Copy key decryption module 22 Key transfer module 23 Authentication key generation module 24 Authentication key encryption module 30 Mifare card Steps S22, S23, S24, S25, S23 Steps 〇S30, S31, S32, S34, S36, S38 Ο 17 110681