CN104639538A - Identity card information obtaining method and system - Google Patents
Identity card information obtaining method and system Download PDFInfo
- Publication number
- CN104639538A CN104639538A CN201510022961.7A CN201510022961A CN104639538A CN 104639538 A CN104639538 A CN 104639538A CN 201510022961 A CN201510022961 A CN 201510022961A CN 104639538 A CN104639538 A CN 104639538A
- Authority
- CN
- China
- Prior art keywords
- identity card
- sam
- card reader
- authentication
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 60
- 230000004044 response Effects 0.000 claims abstract description 75
- 230000008569 process Effects 0.000 description 13
- 230000003993 interaction Effects 0.000 description 11
- 230000005540 biological transmission Effects 0.000 description 10
- 238000010586 diagram Methods 0.000 description 8
- 230000006870 function Effects 0.000 description 7
- 238000004891 communication Methods 0.000 description 2
- 230000009467 reduction Effects 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000002441 reversible effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 230000002123 temporal effect Effects 0.000 description 1
Landscapes
- Credit Cards Or The Like (AREA)
Abstract
The invention discloses an identity card information obtaining method and system. The method comprises the following steps that a front end identity card reader receives and sends an SAM authentication request sent by a resident identity card; pre-selected background SAM equipment generates SAM authentication response and sends the SAM authentication response to the front end identity card reader; the front end identity card reader sends the SAM authentication response to the resident identity card, and receives and sends an SAM authentication result sent by the resident identity card; the pre-selected background SAM equipment sends a resident identity card authentication request to the front end identity card reader; the front end identity card reader sends the resident identity card authentication request to the resident identity card, and receives and sends resident identity card authentication response generated by the resident identity card; the pre-selected background SAM equipment authenticates the resident identity card authentication response, generates a resident identity card authentication passing result after the authentication passes, and sends the resident identity card authentication passing result to the front end identity card reader; the front end identity card reader obtains identity card information.
Description
Technical Field
The invention relates to the technical field of electronics, in particular to an identity card information acquisition method and system.
Background
The existing identity card reader has at least two modules, including a reading module and an SAM (resident identity card verification security control) module. Because each identity card reader needs to be provided with the SAM module, the manufacturing cost of the existing identity card reader is high; in addition, in the existing identity card reader, the SAM module can only carry out identity verification on resident identity card information read by the reading module in the identity card reader, and if the existing identity card reader does not read the resident identity card, the SAM module is idle, so that the utilization rate of the existing identity card reader is low.
Disclosure of Invention
The present invention is directed to solving one of the problems set forth above.
The invention mainly aims to provide an identity card information acquisition method;
another object of the present invention is to provide an identity card information acquisition system.
The invention provides an identity card information acquisition method, which is applied to a system comprising a front-end identity card reader and a preselected background SAM device, and comprises the following steps: the front-end identity card reader receives an SAM authentication request sent by a resident identity card and sends the SAM authentication request to a pre-selection background SAM device; the pre-selection background SAM equipment receives the SAM authentication request, generates an SAM authentication response and sends the SAM authentication response to the front-end identity card reader; the front-end identity card reader receives the SAM authentication response, sends the SAM authentication response to the resident identity card, receives an SAM authentication passing result sent by the resident identity card, and sends the SAM authentication passing result to the pre-selection background SAM equipment; the pre-selection background SAM equipment receives the SAM authentication passing result and sends a resident identity card authentication request to the front-end identity card reader; the front-end identity card reader receives a resident identity card authentication request, sends the resident identity card authentication request to a resident identity card, receives a resident identity card authentication response generated by the resident identity card, and sends the resident identity card authentication response to the pre-selection background SAM equipment; the pre-selection background SAM equipment authenticates the resident identity card authentication response, generates a resident identity card authentication passing result after the resident identity card authentication passing result is passed, and sends the resident identity card authentication passing result to the front-end identity card reader; and the front-end identity card reader receives the passing result of the identity card authentication of the residents and acquires identity card information.
Optionally, before the pre-selected background SAM device generates the SAM authentication response, the method further comprises: the front-end identity card reader sends authentication information of the front-end identity card reader to the SAM equipment of the pre-selection background; and authenticating the authentication information of the front-end identity card reader by the pre-selection background SAM equipment.
Optionally, the obtaining, by the front-end identity card reader, identity card information includes: the front-end identity card reader reads first plaintext information and ciphertext information from the resident identity card and sends the ciphertext information to the pre-selection background SAM equipment; the pre-selection background SAM equipment decrypts the ciphertext information to obtain second plaintext information, and sends the second plaintext information to the front-end identity card reader; the front-end identity card reader acquires identity card information, wherein the identity card information at least comprises first plaintext information and second plaintext information.
Optionally, the method further comprises: and the front-end identity card reader displays identity card information.
Optionally, the pre-selection background SAM equipment sends information to the front-end identity card reader through the server; and the pre-selection background SAM equipment receives information from the front-end identity card reader through the server.
Optionally, the server stores a corresponding relationship between at least one front-end identity card reader and one pre-selected background SAM device; before the server sends the SAM authentication request to the pre-selected background SAM device, the method further includes: and the server selects a pre-selection background SAM device corresponding to the front-end identity card reader according to the corresponding relation.
Optionally, the server records the working state of each pre-selected background SAM device; before the server sends the SAM authentication request to the pre-selected background SAM device, the method further comprises: the server selects the preselection background SAM equipment with the current working state of being idle as the preselection background SAM equipment, and marks the working state of the preselection background SAM equipment as non-idle.
Optionally, the method further comprises: and the server marks the working state of the pre-selection background SAM equipment as idle after the front-end identity card reader is communicated with the pre-selection background SAM equipment.
Optionally, the front-end identity card reader sends information to the pre-selection background SAM equipment through the terminal; the front-end identity card reader receives information from the pre-selection background SAM equipment through the terminal.
Optionally, after the front-end identity card reader acquires the identity card information, the method further includes: the front-end identity card reader sends identity card information to the terminal; and the terminal displays the identity card information.
Another aspect of the present invention provides an identity card information acquiring system, including: a front-end identity card reader and a background SAM (SAM) preselection system; wherein, front end ID card reader includes: the device comprises a first transceiver module, a second transceiver module and an acquisition module; the pre-selection background SAM equipment comprises: the third transceiver module, the generating module and the authentication module; the first transceiver module is used for receiving an SAM authentication request sent by a resident identification card; the second transceiver module is used for sending the SAM authentication request received by the first transceiver module to the pre-selection background SAM equipment; a third transceiving module for receiving a SAM authentication request; the generation module is used for generating SAM authentication response after the third transceiver module receives the SAM authentication request; the third transceiving module is also used for sending the SAM authentication response to the front-end identity card reader; the second transceiver module is also used for receiving the SAM authentication response; the first transceiver module is also used for sending the SAM authentication response received by the second transceiver module to the resident identification card and receiving the SAM authentication passing result sent by the resident identification card; the second transceiver module is also used for sending the SAM authentication passing result received by the first transceiver module to the pre-selection background SAM equipment; the third transceiving module is also used for receiving the result of SAM authentication and sending the resident identity card authentication request to the front-end identity card reader; the second transceiver module is also used for receiving the resident identification card authentication request; the first transceiver module is also used for sending the resident identification card authentication request received by the second transceiver module to the resident identification card and receiving a resident identification card authentication response generated by the resident identification card; the second transceiver module is also used for sending the resident identification card authentication response received by the first transceiver module to the pre-selection background SAM equipment; the third transceiving module is also used for receiving the resident identity card authentication response; the authentication module is used for authenticating the resident identification card authentication response received by the third transceiver module and generating a resident identification card authentication passing result after the authentication passes; the third transceiving module is also used for sending the result of passing the resident identification card authentication to the front-end identification card reader; the second transceiver module is also used for receiving the result of passing the authentication of the resident identification card; and the acquisition module is used for acquiring the identity card information after the second transceiver module receives the result of passing the identity authentication of the residents.
Optionally, the second transceiver module is further configured to send authentication information of the identity card reader to the preselected background SAM device; the third transceiving module is also used for receiving authentication information of the identity card reader; and the authentication module is also used for authenticating the authentication information of the identity card reader.
Optionally, the obtaining module is further configured to read first plaintext information and ciphertext information from the resident identification card; the second transceiving module is also used for sending the ciphertext information to the SAM equipment of the preselection background; receiving second plaintext information obtained after the pre-selection background SAM equipment decrypts the ciphertext information; the obtaining module is further configured to obtain the identity card information, where the identity card information at least includes first plaintext information and second plaintext information.
Optionally, the front-end identity card reader further comprises: a display module; and the display module is used for displaying the information of the identity card.
Optionally, the system further comprises: the server is connected with the SAM equipment of the preselection background; the server is used for forwarding information sent by the pre-selection background SAM equipment to the identity card reader; and forwarding the information sent by the identity card reader to the pre-selection background SAM equipment.
Optionally, the server is further configured to store a correspondence between at least one front-end identity card reader and one pre-selected background SAM device; and selecting the pre-selection background SAM equipment corresponding to the identity card reader according to the corresponding relation.
Optionally, the server is further configured to record an operating state of each preselected background SAM device; and selecting the preselection background SAM equipment with the current working state as idle, and marking the working state of the preselection background SAM equipment as non-idle.
Optionally, the server is further configured to mark the working state of the preselection background SAM device as idle after the front-end identity card reader finishes communication with the preselection background SAM device.
Optionally, the system further comprises: the terminal is connected with the front-end identity card reader; the terminal is used for forwarding information sent by the front-end identity card reader to the SAM equipment of the preselection background; and forwarding the information sent by the pre-selection background SAM equipment to the front-end identity card reader.
Optionally, the terminal is further configured to receive the identity card information sent by the front-end identity card reader, and display the identity card information.
It can be seen from the foregoing technical solutions provided by the present invention that, in the solutions provided in the embodiments of the present invention, the SAM module is removed from the identity card reader, the identity card reader only performs the function of reading identity information, and the identity authentication is performed by an external SAM device, so that the cost of the identity card reader can be reduced, and a plurality of identity card readers can be authenticated by the same SAM device, thereby improving the utilization rate of the SAM device.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on the drawings without creative efforts.
Fig. 1 is a schematic structural diagram of an identity card information acquisition system according to embodiment 1 of the present invention;
fig. 2 is a schematic structural diagram of an identity card reader provided in embodiment 1 of the present invention;
fig. 3 is a schematic structural diagram of a preselected background SAM device provided in embodiment 1 of the present invention;
fig. 4 is a schematic structural diagram of an optional identity card information acquisition system according to embodiment 1 of the present invention;
fig. 5 is a schematic structural diagram of another alternative identification card information acquisition system according to embodiment 1 of the present invention;
fig. 6 is a schematic structural diagram of another optional identity card information acquisition system according to embodiment 1 of the present invention;
fig. 7 is a flowchart of an identity card information obtaining method according to embodiment 1 of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention are clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the present invention without making any creative effort, shall fall within the protection scope of the present invention.
Furthermore, the terms "first," "second," and the like are used for descriptive purposes only and are not to be construed as indicating or implying a relative importance or quantity or location.
In the description of the present invention, it should be noted that, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, e.g., as meaning either a fixed connection, a removable connection, or an integral connection; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meanings of the above terms in the present invention can be understood in specific cases to those skilled in the art.
Embodiments of the present invention will be described in further detail below with reference to the accompanying drawings.
The embodiment of the invention provides an identity card information acquisition method and system, aiming at the problems that in the prior art, each identity card reader needs to be provided with an SAM module, so that the cost of an identity main card reader is high and the utilization rate of the SAM module is low. In the scheme provided by the embodiment of the invention, the SAM module is removed from the identity card reader, the identity card reader only has the function of reading identity information, and the identity authentication is completed by the external SAM equipment, so that the cost of the identity card reader can be reduced, and a plurality of identity card readers can be authenticated by the same SAM equipment, so that the utilization rate of the SAM equipment is improved.
Example 1
This embodiment provides an identification card information acquisition system, as shown in fig. 1, the system includes: n front-end identity card readers 10 and m background SAM devices 20, where n is greater than or equal to m, preferably, n is greater than m, that is, the plurality of front-end identity card readers 10 correspond to one or more background SAM devices 20.
Fig. 2 is a schematic structural diagram of any one of the n identity card readers 10 in this embodiment, as shown in fig. 2, where any one of the n identity card readers 10 may include: a first transceiver module 101, a second transceiver module 102 and an acquisition module 103. Fig. 3 is a schematic structural diagram of one background SAM device 20 in the m SAM devices 20 in the present embodiment (the background SAM device 20 is a background SAM device that processes information read by the id card reader 10, and for convenience of description, it will be referred to as a pre-selection background SAM device 20 in the following description), and as shown in fig. 3, the pre-selection background SAM device 20 may include: a third transceiver module 201, a generation module 202 and an authentication module 203.
In the embodiment of the present invention, the first transceiver module 101 of the identity card reader 10 is configured to send and receive information interacting with a resident identity card, and the second transceiver module 102 is configured to send and receive information interacting with the preselected background SAM device 20 through a network. The third transceiving module 201 of the preselection background SAM device 20 is configured to send and receive information interacting with the identity host card reader via a network. The preselected SAM device 20 may be any SAM device in the system, or may also set the SAM device 20 corresponding to each identity card reader 10 according to a certain rule, for example, the SAM devices may be divided according to geographical areas, and the identity card readers 10 in the same area correspond to the same SAM device 20, or each identity card reader 10 may be assigned an ID, and the SAM devices may be divided according to ID numbers, where the identity card readers with IDs in the same range correspond to the same SAM device 20, or the SAM devices may also be divided according to addresses (for example, IP addresses) of the identity card readers 10 in a network, which is not limited in the embodiment of the present invention.
As an optional implementation manner of the embodiment of the present invention, the identity card reader 10 may perform information interaction with the resident identity card in a non-contact manner, for example, in an NFC manner. The identity card reader 10 can perform information interaction with the SAM device in a wired manner or a wireless manner, for example: the wired mode can adopt an audio mode, a USB mode or a serial port mode and the like; the wireless mode can adopt a Bluetooth mode, a WIFI mode, an infrared mode, a 2G mode, a 3G mode, a 4G mode, a 2.4G mode, a 900M mode, a zigbee mode and the like. At this time, the identity card reader 10 and the preselection background SAM device 20 may perform information interaction in a matching manner, for example, if the identity card reader 10 performs information interaction with the SAM device 20 in a bluetooth manner, the preselection background SAM device 20 may also perform a matching bluetooth manner. Because the identity card reader 10 can perform information interaction with the preselection background SAM device 20 in a plurality of ways, the flexibility and convenience of the identity card reader 10 are improved.
In a specific application, during the process of reading the identity information by the identity card reader 10, the SAM device 20 needs to verify the read resident identity card to ensure that the read identity information is legal, and the resident identity card also needs to verify the SAM device 20 to prevent the identity information from being illegally read. Meanwhile, the identity card reader 10 and the SAM equipment are arranged separately, so that the application flexibility of the identity card reader 10 is enhanced.
Specifically, in the process of verifying the SAM device 20, the first transceiver module 101 is configured to receive a SAM authentication request sent by a resident identification card; a second transceiver module 102, configured to send the SAM authentication request received by the first transceiver module 101 to the preselected backend SAM device 20; a third transceiving module 201, configured to receive a SAM authentication request; a generating module 202, configured to generate a SAM authentication response after the third transceiver module 201 receives the SAM authentication request; the third transceiving module 201 is further configured to send the SAM authentication response to the identity card reader 10; the second transceiver module 102 is further configured to receive a SAM authentication response; the first transceiver module 101 is further configured to send the SAM authentication response received by the second transceiver module 102 to the resident identification card, and receive a SAM authentication passing result sent by the resident identification card; the second transceiver module 102 is further configured to send the SAM authentication passing result received by the first transceiver module 101 to the preselected backend SAM device 20; the third transceiving module 201 is further configured to receive a SAM authentication pass result.
As an optional implementation manner of the embodiment of the present invention, the SAM authentication request sent by the resident identification card may include at least one random factor, and the random factor is sent to the preselection background SAM device 20, so that the preselection background SAM device 20 processes the random factor to obtain an SAM authentication response, and then the resident identification card receives the SAM authentication response, authenticates the SAM authentication response, and after the SAM authentication is passed, generates an SAM authentication pass result and returns the SAM authentication pass result to the preselection background SAM device 20. In the embodiment of the present invention, the random factor may be one of a time factor, an event factor, a random number, a random character, and the like, or any combination thereof. Specifically, the authentication may be performed as follows:
each SAM device stores a main key, each resident identity card stores a sub-key, the resident identity card generates a random number and carries the random number in an SAM Authentication request, after the pre-selection background SAM device 20 obtains the random number, the main key is used for carrying out hash calculation on preset information to obtain the sub-key of the resident identity card, MAC (Message Authentication Code) calculation is carried out on the random number by using the obtained sub-key to obtain an MAC value, the MAC value is carried in an SAM Authentication response and returned to the resident identity card, the resident identity card obtains the MAC value, MAC calculation is carried out on the generated random number by using the sub-key stored in the resident identity card to obtain an MAC check value, whether the MAC value sent by the pre-selection background SAM device 20 is the same as the MAC check value obtained by calculation or not is compared, and after the comparison is the same, the Authentication pre-selection background SAM device 20 is confirmed to pass, a SAM authentication pass result is generated and returned to the pre-selection background SAM device 20.
In the process of verifying the resident identification card, the third transceiver module 201 is further configured to send a resident identification card authentication request to the identification card reader 10; the second transceiver module 102 is further configured to receive a resident identification card authentication request; the first transceiver module 101 is further configured to send the resident identification card authentication request received by the second transceiver module 102 to the resident identification card, and receive a resident identification card authentication response generated by the resident identification card; the second transceiver module 102 is further configured to send the resident identification authentication response received by the first transceiver module 101 to the pre-selection background SAM device; the third transceiving module 201 is further configured to receive a resident identification card authentication response; the authentication module 203 is configured to authenticate the resident identification card authentication response received by the third transceiving module 201, and generate a result of passing the resident identification card authentication after the authentication is passed; the third transceiving module 201 is further configured to send the passing result of the resident identification card authentication to the identification card reader 10; the second transceiver module 102 is further configured to receive a result of passing the authentication of the resident identification card; the obtaining module 103 is configured to obtain the identity card information after the second transceiver module 102 receives the result of passing the identity authentication of the resident.
As an optional implementation manner of the embodiment of the present invention, the resident identification card authentication request sent by the preselection background SAM device 20 may also include at least one random factor, and the random factor is sent to the resident identification card, so that the resident identification card processes the random factor to obtain a resident identification card authentication response, and then, the preselection background SAM device 20 receives the resident identification card authentication response, authenticates the resident identification card authentication response, and generates a result of the resident identification card authentication and returns the result to the identification card reader 10 after the authentication is passed. In the embodiment of the present invention, the random factor may be one of a time factor, an event factor, a random number, a random character, and the like, or any combination thereof. Specifically, the authentication may be performed as follows:
each SAM device stores a main key, each resident identification card stores a sub-key, the pre-selection background SAM device 20 generates a random number and carries the random number in a resident identification card authentication request, after the resident identification card obtains the random number, the MAC calculation is carried out on the received random number by using the sub-key stored by the pre-selection background SAM device 20 to obtain an MAC value, the MAC value is carried in a resident identification card authentication response and returned to the pre-selection background SAM device 20, after the pre-selection background SAM device 20 receives the resident identification card authentication response, the hash calculation is carried out on preset information by using the main key to obtain the sub-key of the resident identification card, the MAC calculation is carried out on the generated random number by using the obtained sub-key to obtain an MAC check value, whether the MAC value sent by the resident identification card is the same as the MAC check value obtained by the calculation or not is compared, and after the MAC value sent by the resident identification card is the compared to be the same, and generating a resident identification card authentication passing result and returning the result to the identification card reader 10.
Through the above system provided in this embodiment, the SAM function is removed from the identity card reader 10, the identity card reader 10 sends the authentication request and the authentication data of the resident identity card to the preselection background SAM device 20, and the preselection background SAM device 20 sends the authentication request and the authentication data to the resident identity card through the identity card reader 10. The pre-selection background SAM device 20 authenticates the authentication data (carried in the SAM authentication response) of the identity card, sends the authentication result to the identity card reader 10, and the identity card reader 10 receives the authentication result of the identity card authenticating the authentication data (carried in the SAM authentication response) of the SAM device 20. If the authentication of the resident identification card and the authentication of the SAM device 20 are both passed, the identification card reader 10 acquires the identification information stored in the resident identification card. The identity card information acquisition system provided by the embodiment can reduce the cost of the identity card reader 10, and meanwhile, because a plurality of identity card readers 10 can share one pre-selection background SAM device 20, the utilization rate of the SAM device 20 can be improved.
In addition, by adopting the technical scheme provided by the embodiment of the invention, the number of the SAM equipment can be smaller than that of the identity card readers, the equipment cost and the labor cost are reduced, and the expansibility of the SAM equipment can be enhanced, such as: if all SAM equipment can not satisfy the demand of all ID card readers, only need increase SAM equipment can, if all SAM equipment can satisfy the demand of all ID card readers, and other capacities in addition, then can only increase the ID card reader.
In an optional implementation manner of the embodiment of the present invention, the SAM device 20 may also authenticate the identity of the identity card reader 10 to ensure the validity of the identity card reader 10. In this optional embodiment, the second transceiver module 102 is further configured to send the identification card reader authentication information to the preselected backend SAM device 20; the third transceiving module 201 is further configured to receive authentication information of the identity card reader; the authentication module 203 is further configured to authenticate the authentication information of the identity card reader. In a specific implementation process, the identity card reader 10 may actively send the identity card reader authentication information to the preselected background SAM device, that is, the second transceiver module 102 of the identity card reader 10 may send the identity card reader authentication information before or simultaneously with sending the SAM authentication request to the preselected background SAM device 20. Or, the identity card reader 10 may also send the identity card reader authentication information to the preselection background SAM device 20 at the request of the preselection background SAM device 20, that is, after the third transceiver module 201 of the preselection background SAM device 20 receives the SAM authentication request, in order to ensure the validity of the identity card reader, the third transceiver module 201 may send the authentication request to the identity card reader, request the identity card reader 10 to send the identity card authentication information, and after the second transceiver module 102 receives the authentication request, send the identity card authentication information. Specifically, the interface between the identity card reader 10 and the preselected background SAM device 20 can be implemented by one of the following ways:
the first method is as follows: the identity card reader 10 sends the certificate to the pre-selection background SAM equipment 20, and the pre-selection background SAM equipment 20 authenticates the certificate of the identity card reader;
the second method comprises the following steps: after the identity card reader 10 signs the certificate thereof by using the private key thereof, the certificate and the signature thereof are sent to the preselection background SAM device 20 to authenticate the certificate and then to check the signature.
As an optional implementation manner of the embodiment of the present invention, information transmitted between the identity card reader 10 and the preselected background SAM device 20 may be encrypted and then transmitted, for example: the identity card reader 10 negotiates with the pre-selection background SAM device 20 to obtain a transmission key, and then the transmission key is encrypted by using the negotiated transmission key and then transmitted; or, the identity card reader 10 encrypts and transmits the public key of the preselected background SAM device 20; or, the symmetric key is pre-stored in the identity card reader 10 and the pre-selection background SAM device 20, and the symmetric key is used for transmission after encryption, so long as the mode of information encryption transmission can be ensured, which all fall within the protection scope of the present invention.
In an optional implementation manner of the embodiment of the present invention, the identity card reader 10 may send the read ciphertext information to the preselection background SAM device 20, and the preselection background SAM device 20 decrypts the ciphertext. Specifically, in this optional embodiment, the obtaining module 103 is further configured to read first plaintext information and ciphertext information from the resident identification card; the second transceiver module is further configured to send the ciphertext information to the preselected background SAM device 20; receiving second plaintext information obtained after the pre-selection background SAM equipment 20 decrypts the ciphertext information; the obtaining module 102 is further configured to obtain the identity card information, where the obtained identity card information at least includes first plaintext information and second plaintext information. Through the optional implementation mode, the identity card reader 10 can acquire ciphertext information stored in the resident identity card, and the function of the identity card reader is expanded.
In order to facilitate the user to read the acquired identity information, in an optional implementation manner of the embodiment of the present invention, the identity card reader 10 may further include: and the display module is used for displaying the identity card information acquired by the acquisition module 103.
In an alternative implementation of the embodiment of the present invention, as shown in fig. 4, the system may further include: the server 30 of the background SAM device 20 is connected. The preselected background SAM device 20 may send the information sent to the identity card reader 10 to the server through the third transceiving module 201, and the server sends the information to the identity card reader 10, and the information sent to the preselected background SAM device 20 by the identity card reader 10 through the second transceiving module 102 may be received by the server and then sent to the preselected background SAM device 20. With this alternative embodiment, the individual SAM devices 20 can be managed by the server, providing flexibility to the system.
As an optional implementation of the embodiment of the present invention, the server 30 may also be disposed on the SAM system. For example, the SAM system has a control section, a plurality of SAM device interfaces, and a plurality of SAM devices. That is, the server 30 is not necessarily a separate device, but may be integrated with a SAM device.
In an optional implementation of the embodiment of the present invention, the server 30 may be further configured to store a correspondence between at least one of the n identity card readers and one of the m SAM devices; when receiving the information from the identity card reader 10 for the first time, the server may select, according to the correspondence, a preselected background SAM device 20 corresponding to the identity card reader 10 from the m SAM devices, and forward the information to the preselected background SAM device 20. The corresponding relationship may also be set according to a certain rule, for example, the corresponding relationship may be divided according to a geographical area, and the ID card readers 10 in the same area correspond to the same SAM device 20, or each ID card reader 10 may be assigned an ID and divided according to an ID number, where the ID card readers with the same ID in the same range correspond to the same SAM device 20, or the corresponding relationship may also be divided according to addresses (for example, IP addresses) of the respective ID card readers 10 in the network. Through the optional embodiment, a plurality of identity card readers can be corresponding to one SAM device through the server, so that the manageability of the system is improved, and the plurality of identity card readers can be corresponding to one SAM device, so that the fault can be quickly positioned if the fault occurs.
In an optional implementation manner of the embodiment of the present invention, the server 30 may be further configured to record an operating state of each SAM device 10 in the m SAM devices in the system, and when receiving the information from the identity card reader 10 for the first time, the server may select, according to the operating states of the respective SAM devices 10, a SAM device whose current operating state is idle as the preselected background SAM device, and mark the operating state of the preselected background SAM device as non-idle. By the alternative embodiment, the situation that one SAM device receives authentication requests of a plurality of identity card readers at the same time to cause efficiency reduction can be avoided.
In an optional implementation of the embodiment of the present invention, in order to quickly release an unused SAM device, the server may be further configured to mark the operating state of the preselected background SAM device 20 as idle after the identity card reader 10 finishes communicating with the preselected background SAM device 20.
In an alternative implementation of the embodiment of the present invention, as shown in fig. 5 and 6, the system may further include: a terminal 40 is connected to the identification card reader 10. The terminal is configured to forward information sent by the identity card reader 10 to the preselection background SAM device 20 (in a case that the system includes a server, as shown in fig. 4, the terminal sends the information to the server, and then the server sends the information to the preselection background SAM device 20), and forward information sent by the preselection background SAM device 20 (in a case that the system includes a server, as shown in fig. 4, the preselection background SAM device 20 sends the information to the server, and then the server sends the information to the terminal) to the identity card reader 10.
As an optional implementation manner of the embodiment of the present invention, the terminal 40 may be a fixed terminal or a mobile terminal, for example, the fixed terminal may be a PC, and the mobile terminal may be a tablet computer (PAD), a smart phone, or a smart watch. Of course, the terminal 40 may also perform information and/or instruction input, etc., which will not be described herein.
In an optional implementation of the embodiment of the present invention, the identity card reader 10 may further send the read identity card information to the terminal, and the terminal may be configured to receive the identity card information sent by the identity card reader 10 and display the identity card information. Therefore, the user can conveniently look up the identity card information.
Example 2
The embodiment provides an identity card information acquisition method, which is applied to the system implementation described in embodiment 1.
Fig. 7 is a flowchart of the method for acquiring information of an identity card provided in this embodiment, and as shown in fig. 7, for any one of n identity card readers in the system, the method includes the following steps:
step S701, the identity card reader receives an SAM authentication request sent by a resident identity card, and sends the SAM authentication request to a pre-selection background SAM device.
As an optional implementation manner of the embodiment of the present invention, the identity card reader may perform information interaction with the resident identity card in a non-contact manner, for example, in an NFC manner. The identity card reader can perform information interaction with the SAM device in a wired or wireless manner, for example: the wired mode can adopt an audio mode, a USB mode or a serial port mode and the like; the wireless mode can adopt a Bluetooth mode, a WIFI mode, an infrared mode, a 2G mode, a 3G mode, a 4G mode, a 2.4G mode, a 900M mode, a zigbee mode and the like. At this time, the identity card reader and the preselection background SAM device may perform information interaction in a matching manner, for example, if the identity card reader performs information interaction with the SAM device in a bluetooth manner, the preselection background SAM device may also perform information interaction in a matching bluetooth manner. Because the identity card reader can adopt a plurality of modes to carry out information interaction with the pre-selection background SAM equipment, the flexibility and the convenience of the identity card reader are improved.
Step S702, the pre-selection background SAM equipment receives the SAM authentication request, generates an SAM authentication response, and sends the SAM authentication response to the identity card reader.
And step S703, the identity card reader receives the SAM authentication response, sends the SAM authentication response to the resident identity card, receives the SAM authentication passing result sent by the resident identity card, and sends the SAM authentication passing result to the pre-selection background SAM equipment.
Step S704, the preselection background SAM device receives the SAM authentication pass result.
As an optional implementation manner of the embodiment of the present invention, the flow from step S701 to step S704 is a flow for authenticating the pre-selection background SAM device by the resident identification card, where the SAM authentication request sent by the resident identification card may include at least one random factor, and the random factor is sent to the pre-selection background SAM device, so that the pre-selection background SAM device processes the random factor to obtain an SAM authentication response, and then the resident identification card receives the SAM authentication response, authenticates the SAM authentication response, and after the authentication is passed, generates an SAM authentication pass result and returns the SAM authentication pass result to the pre-selection background SAM device. In the embodiment of the present invention, the random factor may be one of a time factor, an event factor, a random number, a random character, and the like, or any combination thereof. Specifically, the authentication may be performed as follows:
each SAM device stores a main key, each resident identity card stores a sub-key, the resident identity card generates a random number and carries the random number in an SAM Authentication request, after the pre-selection background SAM device obtains the random number, the main key is used for carrying out hash calculation on preset information to obtain the sub-key of the resident identity card, the obtained sub-key is used for carrying out MAC (Message Authentication Code) calculation on the random number to obtain an MAC value, the MAC value is carried in an SAM Authentication response and returned to the resident identity card, the resident identity card obtains the MAC value, the sub-key stored by the resident identity card is used for carrying out MAC calculation on the generated random number to obtain an MAC check value, whether the MAC value sent by the pre-selection background SAM device is the same as the MAC check value obtained by calculation is compared, and after the MAC value is compared to be the same, the Authentication pre-selection background SAM device is confirmed to pass, and an SAM Authentication pass result is generated, and returns the result to the pre-selected background SAM device.
After the resident identification card authenticates the pre-selection background SAM equipment, the resident identification card permits the identification card reader to read the stored identification card information.
Step S705, the preselection background SAM device sends the resident identification card authentication request to the identification card reader.
Step S706, the identity card reader receives the resident identity card authentication request, sends the resident identity card authentication request to the resident identity card, receives a resident identity card authentication response generated by the resident identity card, and sends the resident identity card authentication response to the pre-selection background SAM equipment.
And step S707, authenticating the resident identity card authentication response by the pre-selection background SAM equipment, generating a resident identity card authentication passing result after the authentication passes, and sending the resident identity card authentication passing result to the identity card reader.
In step S708, the id card reader receives the result of passing the authentication of the resident id card.
The identity card reader can also send the result of passing the identity card authentication of the residents to the resident identity card.
The above-mentioned steps S705 to S708 are a procedure of authenticating the resident identification card by the preselection background SAM device. As an optional implementation manner of the embodiment of the present invention, the resident identification card authentication request sent by the preselection background SAM device may also include at least one random factor, and the random factor is sent to the resident identification card, so that the resident identification card processes the random factor to obtain a resident identification card authentication response, and then, the preselection background SAM device receives the resident identification card authentication response, authenticates the resident identification card authentication response, and generates a resident identification card authentication pass result and returns the resident identification card authentication pass result to the identification card reader after the authentication passes. In the embodiment of the present invention, the random factor may be one of a time factor, an event factor, a random number, a random character, and the like, or any combination thereof. Specifically, the authentication may be performed as follows:
each SAM device stores a main key, each resident identification card stores a sub-key, the pre-selection background SAM device generates a random number and carries the random number in a resident identification card authentication request, after the resident identification card obtains the random number, the MAC calculation is carried out on the received random number by using the sub-key stored by the pre-selection background SAM device to obtain an MAC value, the MAC value is carried in a resident identification card authentication response and returned to the pre-selection background SAM device, after the pre-selection background SAM device receives the resident identification card authentication response, the hash calculation is carried out on preset information by using the main key to obtain the sub-key of the resident identification card, the MAC calculation is carried out on the generated random number by using the obtained sub-key to obtain an MAC check value, whether the MAC value sent by the resident identification card obtained by comparison is the same as the MAC check value obtained by calculation or not, and after the comparison is the same, the resident identification card is confirmed to pass authentication, and generating a resident identity card authentication passing result and returning the result to the identity card reader.
In the specific implementation process, there is no temporal relationship between the authentication of the resident identification card on the preselection background SAM device and the authentication of the resident identification card by the preselection background SAM device, that is, step S705 to step S708 may be performed first, and then step S701 to step S704 may be performed.
Step S709, the identification card reader obtains identification card information.
After the two parties pass the authentication, the identity card reader acquires the identity card information stored in the resident identity card.
By the method provided by the embodiment, the SAM function is moved out of the identity card reader, the identity card reader sends the authentication request and the authentication data of the resident identity card to the pre-selection background SAM equipment, and the pre-selection background SAM equipment sends the authentication request and the authentication data to the resident identity card through the identity card reader. The pre-selection background SAM equipment authenticates the authentication data (carried in the resident identity card authentication response) of the identity card, sends the authentication result to the identity card reader, and the identity card reader receives the authentication result of the resident identity card authenticating the authentication data (carried in the SAM authentication response) of the SAM equipment. And if the authentication on the resident identification card and the authentication on the SAM equipment are both passed, the identification card reader acquires the identification information stored in the resident identification card. The method for acquiring the identity card information can reduce the cost of the identity card reader, and simultaneously, a plurality of identity card readers can share one SAM device, so that the utilization rate of the SAM device can be improved.
In an optional implementation manner of the embodiment of the present invention, the SAM device may further authenticate the identity of the identity card reader, so as to ensure the validity of the identity card reader. In this alternative embodiment, before the pre-selected background SAM device generates the SAM authentication response, the method may further comprise: the identity card reader sends authentication information of the identity card reader to the SAM equipment of the preselected background; and authenticating the authentication information of the identity card reader by using the pre-selection background SAM equipment. In a specific implementation process, the identity card reader can actively send the authentication information of the identity card reader to the preselected background SAM device, that is, the identity card reader can send the authentication information of the identity card reader before or at the same time of sending the SAM authentication request to the preselected background SAM device. Or, the identity card reader may also send the authentication information of the identity card reader to the preselection background SAM device at the request of the preselection background SAM device, that is, after the preselection background SAM device receives the SAM authentication request, the preselection background SAM device may send the authentication request to the identity card reader to request the identity card reader to send the identity card authentication information, and after the identity card reader receives the authentication request, the identity card reader sends the identity card authentication information.
Specifically, the identity card reader and the pre-selection background SAM device may be implemented in one of the following ways:
the first method is as follows: the identity card reader sends the certificate to the pre-selection background SAM equipment, and the pre-selection background SAM equipment authenticates the certificate of the identity card reader;
the second method comprises the following steps: after the identity card reader signs the certificate by using the private key, the certificate and the signature are sent to the pre-selection background SAM equipment to authenticate the certificate, and then the signature is verified.
As an optional implementation manner of the embodiment of the present invention, information transmitted between the identity card reader and the preselected background SAM device may be encrypted and then transmitted, for example: the identity card reader negotiates with the pre-selection background SAM equipment to obtain a transmission key, and then the transmission key is encrypted by using the negotiated transmission key and then transmitted; or, the identity card reader encrypts and transmits the encrypted public key by using the public key of the pre-selected background SAM equipment; or, the symmetric key is pre-stored in the identity card reader and the pre-selected background SAM device, and the symmetric key is used for transmission after encryption, so long as the mode of information encryption transmission can be ensured, which all fall within the protection scope of the present invention.
In an optional implementation manner of the embodiment of the present invention, the step of obtaining the identity card information by the identity card reader 10 may include: the identity card reader reads first plaintext information and ciphertext information from the resident identity card and sends the ciphertext information to the SAM equipment of the preselection background; the pre-selection background SAM equipment decrypts the ciphertext information to obtain second plaintext information, and sends the second plaintext information to the identity card reader; the identity card reader acquires identity card information, wherein the identity card information at least comprises first plaintext information and second plaintext information. Through the optional implementation mode, the identity card reader 10 can acquire ciphertext information stored in the resident identity card, and the function of the identity card reader is expanded.
In order to facilitate the user to read the acquired identity information, in an optional implementation manner of the embodiment of the present invention, after the identity card information is acquired, the identity card reader displays the acquired identity card information.
In an optional implementation of the embodiment of the present invention, the preselected background SAM device may send information to the identity card reader through the server and receive information from the identity card reader through the server. That is, a server may be included in the system, and the server manages the respective SAM devices, providing flexibility of the system.
In an optional implementation of the embodiment of the present invention, the server may store a correspondence between at least one of the n identity card readers and one of the m SAM devices. Before the server sends the SAM authentication request to the SAM equipment in the preselection background, the server selects the SAM equipment corresponding to the identity card reader from the m SAM equipment according to the corresponding relation, namely the SAM equipment in the preselection background. The corresponding relationship may also be set according to a certain rule, for example, the corresponding relationship may be divided according to a geographical area, and the ID card readers 10 in the same area correspond to the same SAM device 20, or each ID card reader 10 may be assigned an ID and divided according to an ID number, where the ID card readers with the same ID in the same range correspond to the same SAM device 20, or the corresponding relationship may also be divided according to addresses (for example, IP addresses) of the respective ID card readers 10 in the network. Through the optional embodiment, a plurality of identity card readers can be corresponding to one SAM device through the server, so that the manageability of the system is improved, and the plurality of identity card readers can be corresponding to one SAM device, so that the fault can be quickly positioned if the fault occurs.
In an optional implementation of the embodiment of the present invention, the server may be further configured to record an operating state of each SAM device of the m SAM devices in the system, and before sending the SAM authentication request to the preselected background SAM device, the server selects a SAM device whose current operating state is idle from the m SAM devices as the preselected background SAM device, and marks the operating state of the preselected background SAM device as non-idle. By the alternative embodiment, the situation that one SAM device receives authentication requests of a plurality of identity card readers at the same time to cause efficiency reduction can be avoided.
In an alternative implementation of this embodiment of the present invention, in order to quickly release an unused SAM device, the method may further comprise: and after the communication between the identity card reader and the SAM equipment is finished, the server marks the working state of the pre-selection background SAM equipment as idle.
In an optional implementation of the embodiment of the present invention, the system may further comprise: and the terminal is connected with the identity card reader. In this optional implementation, the terminal forwards the information sent by the identity card reader to the preselection background SAM device (in the case that the system includes the server, the terminal sends the information to the server, and then the server sends the information to the preselection background SAM device), and forwards the information sent by the preselection background SAM device (in the case that the system includes the server, the preselection background SAM device sends the information to the server, and then the server sends the information to the terminal) to the identity card reader.
In an optional implementation of the embodiment of the present invention, after the identity card reader acquires the identity card information, the method may further include: the identity card reader sends identity card information to the terminal; and the terminal displays the identity card information. Therefore, the user can conveniently look up the identity card information.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and alternate implementations are included within the scope of the preferred embodiment of the present invention in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the present invention.
It should be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
It will be understood by those skilled in the art that all or part of the steps carried by the method for implementing the above embodiments may be implemented by hardware related to instructions of a program, which may be stored in a computer readable storage medium, and when the program is executed, the program includes one or a combination of the steps of the method embodiments.
In addition, functional units in the embodiments of the present invention may be integrated into one processing module, or each unit may exist alone physically, or two or more units are integrated into one module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. The integrated module, if implemented in the form of a software functional module and sold or used as a stand-alone product, may also be stored in a computer readable storage medium.
The storage medium mentioned above may be a read-only memory, a magnetic or optical disk, etc.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made in the above embodiments by those of ordinary skill in the art without departing from the principle and spirit of the present invention. The scope of the invention is defined by the appended claims and equivalents thereof.
Claims (20)
1. An identity card information acquisition method is applied to a system comprising a front-end identity card reader and a preselected background SAM device, and comprises the following steps:
the front-end identity card reader receives an SAM authentication request sent by a resident identity card and sends the SAM authentication request to the pre-selection background SAM equipment;
the pre-selection background SAM equipment receives the SAM authentication request, generates an SAM authentication response, and sends the SAM authentication response to the front-end identity card reader;
the front-end identity card reader receives the SAM authentication response, sends the SAM authentication response to the resident identity card, receives an SAM authentication passing result sent by the resident identity card, and sends the SAM authentication passing result to the pre-selection background SAM equipment;
the pre-selection background SAM equipment receives the SAM authentication passing result and sends a resident identity card authentication request to the front-end identity card reader;
the front-end identity card reader receives the resident identity card authentication request, sends the resident identity card authentication request to the resident identity card, receives a resident identity card authentication response generated by the resident identity card, and sends the resident identity card authentication response to the pre-selection background SAM equipment;
the pre-selection background SAM equipment authenticates the resident identification card authentication response, generates a resident identification card authentication passing result after the resident identification card authentication passing result passes, and sends the resident identification card authentication passing result to the front-end identification card reader;
and the front-end identity card reader receives the result of passing the authentication of the resident identity card and acquires identity card information.
2. The method of claim 1, wherein prior to the preselected background SAM device generating a SAM authentication response, the method further comprises:
the front-end identity card reader sends authentication information of the front-end identity card reader to the pre-selection background SAM equipment;
and the pre-selection background SAM equipment authenticates the authentication information of the front-end identity card reader.
3. The method of claim 1 or 2, wherein the obtaining of the identification card information by the front-end identification card reader comprises:
the front-end identity card reader reads first plaintext information and ciphertext information from the resident identity card and sends the ciphertext information to the pre-selection background SAM equipment;
the pre-selection background SAM equipment decrypts the ciphertext information to obtain second plaintext information, and sends the second plaintext information to the front-end identity card reader;
and the front-end identity card reader acquires the identity card information, wherein the identity card information at least comprises the first plaintext information and the second plaintext information.
4. The method according to any one of claims 1 to 3, further comprising:
and the front-end identity card reader displays the identity card information.
5. The method according to any one of claims 1 to 4,
the pre-selection background SAM equipment sends information to the front-end identity card reader through a server;
and the pre-selection background SAM equipment receives information from the front-end identity card reader through a server.
6. The method of claim 5,
the server stores the corresponding relation between at least one front-end identity card reader and one pre-selected background SAM device;
before the server sends the SAM authentication request to a pre-selected backend SAM device, the method further comprises:
and the server selects the pre-selection background SAM equipment corresponding to the front-end identity card reader according to the corresponding relation.
7. The method of claim 5,
the server records the working state of each pre-selected background SAM device;
before the server sends the SAM authentication request to a pre-selected backend SAM device, the method further comprises:
the server selects a preselected background SAM device with an idle current working state as the preselected background SAM device, and marks the working state of the preselected background SAM device as non-idle.
8. The method of claim 7, further comprising:
and the server marks the working state of the pre-selection background SAM equipment as idle after the front-end identity card reader is communicated with the pre-selection background SAM equipment.
9. The method according to any one of claims 1 to 8,
the front-end identity card reader sends information to the pre-selection background SAM equipment through a terminal;
and the front-end identity card reader receives information from the pre-selection background SAM equipment through the terminal.
10. The method of claim 9, wherein after the front-end identification card reader obtains the identification card information, the method further comprises:
the front-end identity card reader sends the identity card information to the terminal;
and the terminal displays the identity card information.
11. An identification card information acquisition system, comprising: a front-end identity card reader and a background SAM (SAM) preselection system; wherein,
the front-end identity card reader comprises: the device comprises a first transceiver module, a second transceiver module and an acquisition module;
the pre-selected background SAM device comprises: the third transceiver module, the generating module and the authentication module;
the first transceiver module is used for receiving an SAM authentication request sent by a resident identification card;
the second transceiver module is used for sending the SAM authentication request received by the first transceiver module to a preselected background SAM device;
the third transceiver module is configured to receive the SAM authentication request;
the generating module is configured to generate a SAM authentication response after the third transceiver module receives the SAM authentication request;
the third transceiver module is further configured to send the SAM authentication response to the front-end identity card reader;
the second transceiver module is further configured to receive the SAM authentication response;
the first transceiver module is further configured to send the SAM authentication response received by the second transceiver module to the resident identification card, and receive an SAM authentication passing result sent by the resident identification card;
the second transceiver module is further configured to send the SAM authentication passing result received by the first transceiver module to the preselected background SAM device;
the third transceiver module is further configured to receive the SAM authentication passing result, and send a resident identification card authentication request to the front-end identification card reader;
the second transceiver module is further configured to receive the resident identification card authentication request;
the first transceiver module is further configured to send the resident identification card authentication request received by the second transceiver module to the resident identification card, and receive a resident identification card authentication response generated by the resident identification card;
the second transceiver module is further configured to send the resident identification authentication response received by the first transceiver module to the preselected background SAM device;
the third transceiver module is further configured to receive the resident identification card authentication response;
the authentication module is configured to authenticate the resident identification card authentication response received by the third transceiver module, and generate a result of passing the resident identification card authentication after the authentication is passed;
the third transceiving module is further configured to send the result of passing the authentication of the resident identification card to the front-end identification card reader;
the second transceiver module is further configured to receive the result of passing the authentication of the resident identification card;
and the acquisition module is used for acquiring the identity card information after the second transceiver module receives the result of passing the identity authentication of the resident.
12. The system of claim 11,
the second transceiver module is further configured to send authentication information of the identity card reader to the preselected background SAM device;
the third transceiver module is further configured to receive authentication information of the identity card reader;
the authentication module is also used for authenticating the authentication information of the identity card reader.
13. The system of claim 11 or 12,
the acquiring module is further used for reading first plaintext information and ciphertext information from the resident identification card;
the second transceiver module is further configured to send the ciphertext information to the preselected background SAM device; receiving second plaintext information obtained after the pre-selection background SAM equipment decrypts the ciphertext information;
the obtaining module is further configured to obtain the identity card information, where the identity card information at least includes the first plaintext information and the second plaintext information.
14. The system of any of claims 11 to 13, wherein the front-end identification card reader further comprises: a display module;
and the display module is used for displaying the identity card information.
15. The system of any one of claims 11 to 14, further comprising: a server connected with the pre-selected background SAM equipment;
the server is used for forwarding information sent by the pre-selection background SAM equipment to the identity card reader; and forwarding the information sent by the identity card reader to the pre-selection background SAM equipment.
16. The system of claim 15,
the server is also used for storing the corresponding relation between at least one front-end identity card reader and one pre-selection background SAM device; and selecting the pre-selection background SAM equipment corresponding to the identity card reader according to the corresponding relation.
17. The system of claim 15,
the server is also used for recording the working state of each pre-selected background SAM device; and selecting the preselected background SAM equipment with the current working state as idle, and marking the working state of the preselected background SAM equipment as non-idle.
18. The system of claim 17,
and the server is also used for marking the working state of the pre-selection background SAM equipment as idle after the front-end identity card reader is communicated with the pre-selection background SAM equipment.
19. The system of any one of claims 11 to 18, further comprising: the terminal is connected with the front-end identity card reader;
the terminal is used for forwarding information sent by the front-end identity card reader to the pre-selection background SAM equipment; and forwarding the information sent by the pre-selection background SAM equipment to the front-end identity card reader.
20. The system according to claim 19, wherein the terminal is further configured to receive the identification card information sent by the front-end identification card reader and display the identification card information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510022961.7A CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510022961.7A CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104639538A true CN104639538A (en) | 2015-05-20 |
Family
ID=53217852
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510022961.7A Pending CN104639538A (en) | 2015-01-15 | 2015-01-15 | Identity card information obtaining method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104639538A (en) |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104902465A (en) * | 2015-06-10 | 2015-09-09 | 广州市森锐电子科技有限公司 | Long-distance card-writing method and system for opening an account with the real-name system |
| CN105046136A (en) * | 2015-05-20 | 2015-11-11 | 李明 | Identity card information obtaining method, terminal and identity card information obtaining system |
| CN105391555A (en) * | 2015-11-19 | 2016-03-09 | 李明 | Method for accessing SAM device, background, and system for accessing SAM device |
| CN105488367A (en) * | 2015-11-19 | 2016-04-13 | 李明 | SAM apparatus protection method, background and system |
| CN105991649A (en) * | 2016-01-21 | 2016-10-05 | 李明 | Scheduling system for reading identity card |
| CN106027471A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Scheduling server applied to identity card reading |
| CN106027464A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Safety information control method and identity card reading terminal |
| CN106027249A (en) * | 2015-11-10 | 2016-10-12 | 天地融科技股份有限公司 | Identity card reading method and system |
| CN106027482A (en) * | 2016-04-18 | 2016-10-12 | 李明 | Identity card reading response method and device |
| CN106027463A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Data transmission method |
| CN106027474A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Identity card reading terminal in identity card authentication system |
| CN106027475A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key obtaining method and identity card information transmission method and system |
| CN106027254A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key use method for identity card reading terminal in identity card authentication system |
| CN106372557A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Method, device and system for acquiring certificate card information |
| CN106372554A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Certificate card information collection method and system |
| CN106446731A (en) * | 2015-08-05 | 2017-02-22 | 合肥格易集成电路有限公司 | Card reader device authenticity discrimination method and card reader device |
| CN108881268A (en) * | 2018-07-03 | 2018-11-23 | 上海常仁信息科技有限公司 | A kind of identity card system of whole world robot |
| CN109101821A (en) * | 2018-06-26 | 2018-12-28 | 上海常仁信息科技有限公司 | A kind of robot ID card information acquisition system and method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102402654A (en) * | 2010-09-16 | 2012-04-04 | 上海芯邦泰智能科技有限公司 | card reader security module sharing system and method |
| CN102930441A (en) * | 2012-09-20 | 2013-02-13 | 华东理工大学 | Radio frequency identification (RFID)-based wine anti-counterfeiting system, RFID label and RFID reader authenticating method |
| CN103593634A (en) * | 2013-11-08 | 2014-02-19 | 国家电网公司 | Network centralized decoding system and method of identity card identifier |
-
2015
- 2015-01-15 CN CN201510022961.7A patent/CN104639538A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102402654A (en) * | 2010-09-16 | 2012-04-04 | 上海芯邦泰智能科技有限公司 | card reader security module sharing system and method |
| CN102930441A (en) * | 2012-09-20 | 2013-02-13 | 华东理工大学 | Radio frequency identification (RFID)-based wine anti-counterfeiting system, RFID label and RFID reader authenticating method |
| CN103593634A (en) * | 2013-11-08 | 2014-02-19 | 国家电网公司 | Network centralized decoding system and method of identity card identifier |
Non-Patent Citations (6)
| Title |
|---|
| 中国标准出版社总编室: "《中国国家标准汇编》", 31 January 2003 * |
| 宁焕生: "《RFID重大工程与国家物联网》", 29 February 2012 * |
| 梁雪梅,路亚: "《数字身份认证技术》", 30 September 2014 * |
| 熊平: "《信息安全原理及应用》", 31 January 2012 * |
| 许毅 陈建军: "《RFID原理与应用》", 31 January 2013 * |
| 马春光: "《现代密码学》", 31 August 2014 * |
Cited By (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105046136A (en) * | 2015-05-20 | 2015-11-11 | 李明 | Identity card information obtaining method, terminal and identity card information obtaining system |
| CN105046136B (en) * | 2015-05-20 | 2018-03-20 | 李明 | ID card information acquisition methods, terminal and ID card information obtain system |
| CN104902465A (en) * | 2015-06-10 | 2015-09-09 | 广州市森锐电子科技有限公司 | Long-distance card-writing method and system for opening an account with the real-name system |
| CN104902465B (en) * | 2015-06-10 | 2019-01-01 | 广州市森锐科技股份有限公司 | System of real name is opened an account remote writing-card method and system |
| CN106446731A (en) * | 2015-08-05 | 2017-02-22 | 合肥格易集成电路有限公司 | Card reader device authenticity discrimination method and card reader device |
| CN106027249A (en) * | 2015-11-10 | 2016-10-12 | 天地融科技股份有限公司 | Identity card reading method and system |
| CN106027249B (en) * | 2015-11-10 | 2019-09-06 | 天地融科技股份有限公司 | Identity card card reading method and system |
| CN105488367B (en) * | 2015-11-19 | 2019-05-21 | 李明 | A kind of guard method, backstage and the system of SAM device |
| CN105391555B (en) * | 2015-11-19 | 2019-10-01 | 李明 | A kind of method, backstage and system accessing SAM device |
| CN105391555A (en) * | 2015-11-19 | 2016-03-09 | 李明 | Method for accessing SAM device, background, and system for accessing SAM device |
| CN105488367A (en) * | 2015-11-19 | 2016-04-13 | 李明 | SAM apparatus protection method, background and system |
| CN106027471A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Scheduling server applied to identity card reading |
| CN105991649B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of scheduling system of reading identity card |
| CN106027463B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of method of data transmission |
| CN106027471B (en) * | 2016-01-21 | 2019-10-01 | 李明 | Scheduling server applied to identity card reading |
| CN106027464A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Safety information control method and identity card reading terminal |
| CN106027475A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key obtaining method and identity card information transmission method and system |
| CN106027464B (en) * | 2016-01-21 | 2019-10-01 | 李明 | A kind of security information control method and identity card card-reading terminal |
| CN106027254A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Secret key use method for identity card reading terminal in identity card authentication system |
| CN105991649A (en) * | 2016-01-21 | 2016-10-05 | 李明 | Scheduling system for reading identity card |
| CN106027254B (en) * | 2016-01-21 | 2019-05-21 | 李明 | A kind of method that identity card card-reading terminal uses key in authentication ids system |
| CN106027474A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Identity card reading terminal in identity card authentication system |
| CN106027475B (en) * | 2016-01-21 | 2019-06-28 | 李明 | The transmission method and system of a kind of key acquisition method, ID card information |
| CN106027463A (en) * | 2016-01-21 | 2016-10-12 | 李明 | Data transmission method |
| CN106027482B (en) * | 2016-04-18 | 2019-11-15 | 李明 | A kind of identity card card reading response method and device |
| CN106027482A (en) * | 2016-04-18 | 2016-10-12 | 李明 | Identity card reading response method and device |
| CN106372557A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Method, device and system for acquiring certificate card information |
| CN106372554A (en) * | 2016-08-30 | 2017-02-01 | 李明 | Certificate card information collection method and system |
| CN109101821A (en) * | 2018-06-26 | 2018-12-28 | 上海常仁信息科技有限公司 | A kind of robot ID card information acquisition system and method |
| CN108881268A (en) * | 2018-07-03 | 2018-11-23 | 上海常仁信息科技有限公司 | A kind of identity card system of whole world robot |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104639538A (en) | Identity card information obtaining method and system | |
| CN104636777B (en) | ID card information obtains system | |
| JP6400583B2 (en) | Method for realizing encryption in memory card, decryption method and device | |
| CN109992949A (en) | Device authentication method, air card writing method and device authentication device | |
| JP5380583B1 (en) | Device authentication method and system | |
| KR101745706B1 (en) | Apparatus and method for authentication based on biometric information | |
| CN106027250A (en) | Identity card information safety transmission method and system | |
| CN106027457B (en) | A kind of ID card information transmission method and system | |
| CN103198401B (en) | There is smart card method of commerce and the system of electronic signature functionality | |
| CN104899533B (en) | ID card information acquisition methods, apparatus and system | |
| CN106357627B (en) | Method, system and terminal for reading resident certificate card information | |
| EP2993856B1 (en) | Establishment of communication connection between mobile device and secure element | |
| CN106886891A (en) | A kind of near field payment method, relevant device and system | |
| CN204559616U (en) | ID card information obtains system | |
| CN106372557B (en) | Certificate card information acquisition method, device and system | |
| CN109525395B (en) | Signature information transmission method and device, storage medium and electronic device | |
| CN102393836B (en) | Mobile memory and access control method and system for mobile memory | |
| CN104899621A (en) | Method, apparatus and system for acquiring identify card information | |
| CN106022140B (en) | Identity card read method and system | |
| CN203338403U (en) | Intelligent card transaction system with an electronic signature function | |
| CN105046136A (en) | Identity card information obtaining method, terminal and identity card information obtaining system | |
| CN111224926B (en) | Cloud identity card realization method and system | |
| CN111222108B (en) | Cloud identity card implementation method and system | |
| KR101505735B1 (en) | Method for Authenticating Near Field Communication Card by using Time Verification | |
| CN106407859B (en) | Certificate card information acquisition method, terminal and certificate card information acquisition system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150520 |