CN104978144A - Gesture password input device and system and method for transaction based on system - Google Patents
Gesture password input device and system and method for transaction based on system Download PDFInfo
- Publication number
- CN104978144A CN104978144A CN201510363418.3A CN201510363418A CN104978144A CN 104978144 A CN104978144 A CN 104978144A CN 201510363418 A CN201510363418 A CN 201510363418A CN 104978144 A CN104978144 A CN 104978144A
- Authority
- CN
- China
- Prior art keywords
- gesture
- input equipment
- cipher input
- password
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- User Interface Of Digital Computer (AREA)
Abstract
The invention provides a gesture password input device and system and a method for transaction based on the system. The device comprises a housing, a gesture information acquisition part, an analog-digital converter, an encryption and decryption chip, a communication chip, a power supply, a memory and a central processor; the security input of a gesture password can be realized through the device. The system comprises the gesture password input device, a terminal device, an authentication server and a bank server. According to the gesture password input device and system, the technical problem in the prior art that the property security and privacy data of users cannot be effectively protected in a transaction process is solved, and the technical effect of effectively improving the data security is achieved.
Description
Technical field
The present invention relates to bank transaction technical field, particularly a kind of gesture cipher input equipment and system, and carry out the method for concluding the business based on this system.
Background technology
In recent years, along with the high speed development of internet and improving constantly of IT manufacturing process, present touch input device generally can gather the gesture of user, namely can draw some patterns on the touchscreen.
Current, smart mobile phone is very universal, and most of intelligent machine is all using touch-screen as display and the carrier inputting data, and current most of bank-user has been accustomed to operating on the touchscreen, the application program of a lot of smart mobile phone is also useful to gesture input, such as: gesture unblock etc.
But, the security incident of current smart mobile phone takes place frequently, the application that mobile phone is installed is multifarious, lack effective security monitoring, certain applications have the possibility monitored and usurp to the gesture password based on screen, comprise: the screen of supervisory user, the file stolen on subscriber equipment etc., for the individual privacy of user and property safety have buried great potential safety hazard.Flourish along with the emerging modes of payments such as Web bank, mobile payment, guarantees that the property safety of user in process of exchange also becomes the basic index considering financial service level.
Being difficult to be effectively protected for privacy of user data, there is the technical matters of potential safety hazard in the property safety in process of exchange, not yet proposes effective solution at present.
Summary of the invention
Embodiments provide a kind of gesture cipher input equipment, to reach the object effectively improving data security, this equipment comprises:
Housing;
Gesture information acquisition component, is arranged on the surface of described housing, for the interface providing user to input gesture password, and responds to the gesture encrypted message of user's input;
Analog to digital converter, is arranged in described housing, is connected with described gesture information acquisition component, and the gesture encrypted message of the simulating signal that the user for described gesture information acquisition component being sensed inputs, is converted to the gesture data of digital signal;
Deciphering chip, is arranged in described housing, is connected with described analog to digital converter, prestore the key corresponding with this gesture cipher input equipment, for being encrypted by the gesture data of digital signal described in described double secret key;
Communication chip, is arranged in described housing, and carries out data transmission between external unit;
Power supply, is arranged in described housing, provides the electric power needed for the work of described gesture cipher input equipment;
Storer, be arranged in described housing, be connected with described analog to digital converter, for the equipment unique identification of the gesture data and described gesture cipher input equipment that store described digital signal, wherein, described equipment unique identification is for verifying the legitimacy of described gesture cipher input equipment;
Central processing unit, be arranged in described housing, be connected with described storer with described gesture information acquisition component, described analog to digital converter, described deciphering chip, described communication chip, described power supply, for carrying out centralized control to described gesture information acquisition component, described analog to digital converter, described deciphering chip, described communication chip, described power supply and described storer.
In one embodiment, described communication chip is connected with described external unit by USB interface.
In one embodiment, described gesture information acquisition component comprises: the touch-screen of band Presentation Function, and, for the button selected.
In one embodiment, described storer comprises: ROM and RAM, and wherein, RAM is for storing the gesture data of described digital signal, and ROM is for storing the equipment unique identification of described gesture cipher input equipment.
Embodiments provide a kind of gesture password input system, to reach the object effectively improving data security, this system comprises: above-mentioned gesture cipher input equipment, the terminal device be connected with described gesture cipher input equipment, with the certificate server of described terminal equipment in communication and the bank server with described terminal equipment in communication, wherein:
Described terminal device, for obtaining the gesture data of digital signal from described gesture cipher input equipment, and sends to described certificate server by the gesture data of described digital signal;
Described certificate server, for carrying out certification to the gesture data of described digital signal, and after certification is passed through, sending certification to described terminal device and passing through message;
Described bank server, for get in described terminal certification by message after, perform user request banking.
Embodiments provide a kind of method of carrying out concluding the business based on above-mentioned gesture password input system, to reach the object effectively improving data security, wherein, the method comprises:
Terminal device is connected with gesture cipher input equipment;
Certificate server carries out legitimacy certification by equipment unique identification to described gesture cipher input equipment;
After certification is passed through, described terminal device obtains dealing money from described bank server, and shows;
The inputting interface of described gesture cipher input equipment display gesture password pattern, and receive the gesture encrypted message of user's input, and this gesture encrypted message is converted to the gesture data of digital signal;
Described gesture data is transferred to certificate server by described terminal device, and described gesture data contrasts with the gesture data corresponding with this gesture input device prestored by described certificate server;
When comparing result is consistent, bank server described in described premises equipment requests completes fund and draws button operation.
In one embodiment, the inputting interface of described gesture cipher input equipment display gesture password pattern, comprising:
Described gesture cipher input equipment determines the gesture password pattern that user selects when setting gesture password;
Described gesture cipher input equipment shows the inputting interface of the gesture password pattern determined.
In one embodiment, the inputting interface of described gesture cipher input equipment display gesture password pattern, comprising:
Described gesture cipher input equipment determines the gesture password pattern of acquiescence from the multiple gesture password patterns preset;
The inputting interface of the gesture password pattern of described gesture cipher input equipment display acquiescence.
In one embodiment, described gesture password pattern, comprise following one of at least: numerical ciphers, self-defined shape gesture password and nine key pattern gesture passwords.
In one embodiment, after this gesture encrypted message is converted to the gesture data of digital signal by described gesture cipher input equipment, before described gesture data is transferred to certificate server by described terminal device, described method also comprises:
Described gesture cipher input equipment reads the time that user inputs password;
The time of reading is converted to timestamp by matrix M displacement by described gesture cipher input equipment;
Described gesture cipher input equipment is according to described timestamp and dynamic key production encryption key;
Described gesture key entry device is encrypted by the gesture data of described encryption key to described digital signal, and the gesture data after encryption is sent to described terminal device.
In embodiments of the present invention, provide a kind of gesture cipher input equipment, when needs carry out Password Input, it is connected with external unit, by the gesture information acquisition component that self is built-in, analog to digital converter, deciphering chip, communication chip, storer and central processing unit etc. can realize the safety input of gesture password, again because this equipment is independent of external unit individualism, therefore can effectively to solve in prior art in process of exchange, user's property safety and private data can not get the technical matters of available protecting, reach the technique effect effectively improving data security.
Accompanying drawing explanation
Accompanying drawing described herein is used to provide a further understanding of the present invention, forms a application's part, does not form limitation of the invention.In the accompanying drawings:
Fig. 1 is the structured flowchart of the gesture cipher input equipment according to the embodiment of the present invention;
Fig. 2 is the schematic diagram of the gesture information acquisition component according to the embodiment of the present invention;
Fig. 3 is the conventional digital interface for password input schematic diagram according to the embodiment of the present invention;
Fig. 4 is the self-defined shape gesture interface for password input schematic diagram according to the embodiment of the present invention;
Fig. 5 is the nine key pattern gesture interface for password input schematic diagram according to the embodiment of the present invention;
Fig. 6 is the composition structural drawing of the gesture password input system according to the embodiment of the present invention;
Fig. 7 carries out the method flow diagram of concluding the business according to the embodiment of the present invention based on above-mentioned gesture password input system;
Fig. 8 is application according to the gesture cipher input equipment of the embodiment of the present invention and initial configuration process flow diagram;
Fig. 9 is the payment transaction process flow diagram according to the embodiment of the present invention.
Embodiment
For making the object, technical solutions and advantages of the present invention clearly understand, below in conjunction with embodiment and accompanying drawing, the present invention is described in further details.At this, exemplary embodiment of the present invention and illustrating for explaining the present invention, but not as a limitation of the invention.
In this example, provide a kind of gesture cipher input equipment, this equipment has certain arithmetic capability, can be communicated by user terminal with the certificate server of bank, to improve security in process of exchange and convenience.As shown in Figure 1, this gesture cipher input equipment comprises:
1) housing (not shown in figure 1);
2) gesture information acquisition component 100, is arranged on the surface of housing, for the interface providing user to input gesture password, and responds to the gesture encrypted message of user's input;
This gesture information acquisition component 100 can comprise: the touch-screen of band Presentation Function, and, for the button selected.Also can think that this touch-screen is the module integrating screen display and input function, can comprise as shown in Figure 2: gesture draws district 101 and operational zone 102, gesture draws district 101 for gesture induction and echo, operational zone 102 comprises action button, such as: determine, cancel, re-enter, pattern switching etc.Can support that multiple password pattern is selected by this touch-screen simultaneously, such as, conventional digital password as shown in Figure 3, self-defined shape gesture password as shown in Figure 4, nine key pattern gesture passwords etc. as shown in Figure 5;
3) analog to digital converter 200, is arranged in housing, is connected with gesture information acquisition component 100, and the gesture encrypted message of the simulating signal that the user for gesture information acquisition component 100 being sensed inputs, is converted to the gesture data of digital signal;
The gesture of touch-screen can touch by this analog to digital converter 300, slip event etc. converts signal data to and is saved in storer 600.After user confirms Transaction Information, terminal device (also can be described as transaction terminal) points out user to insert this gesture cipher input equipment, user is by after this equipment connection to terminal device, user inputs gesture password, gesture information acquisition component senses to be pressed, after the simulating signal such as touch event, these simulating signals are changed into digital signal and preserves, for follow-up.
4) deciphering chip 300, is arranged in housing, is connected with analog to digital converter 200, prestores the key corresponding with this gesture cipher input equipment, for being encrypted by the gesture data of this double secret key digital signal;
This deciphering chip is the core that gesture cipher input equipment can ensure security, can arrange independently key storage and systematic function in deciphering chip again.Enciphering and deciphering algorithm adopts the method for binding time stamp, designs the security implementation of one-time pad, thus guarantees that in remote authentication system, data stream can be transmitted safely and reliably.The key of deciphering chip 300 can be when accepting reason bank and providing this gesture cipher input equipment, is write by receiving bank, supports online to dynamically update key and other secure data, and row clock of going forward side by side is synchronous.
Particularly, when encrypting, when user determining transaction, using this gesture cipher input to input password, and reading current time, by matrix M displacement generation time stamp T; Then, personal user's key and timestamp are synthesized the one time key key of system, be more expressly encrypted with generating ciphertext with key as the double secret key of DES algorithm, finally the ciphertext obtained is sent.When deciphering, receive ciphertext, transmitting time is determined from the information of originating party, time stamp T is obtained by the displacement of identical matrix M, then detect transmitting time, if the time delay that client sends is no more than x second, then think that key is effective, and form system decrypts one time key key from the key K additional period of extracting data originating party stamp T, then with the DES algorithm of key ciphertext is decrypted and obtains plaintext.
5) communication chip 400, is arranged in housing, and carries out data transmission between external unit;
Communication chip 400 carries out for providing this gesture cipher input and terminal device the service communicated, and can be connected, that is, closed gesture cipher input and terminal device be coupled together by USB, to carry out data transport service by USB.
6) power supply 500, is arranged in housing, provides the electric power needed for the work of described gesture cipher input equipment;
This power supply can be No. 5 common batteries, No. 7 batteries, also can be a button cell, or is carried out the power supply that is connected by joint and socket.Further, in order to realize conveniently, also can being an interface carrying out being connected with terminal device, once be connected with terminal device, just can passing through power terminal equipment, and without the need to independent extraneous power supply.Specific implementation can be selected as required, and the application does not limit this.
7) storer 600, be arranged in housing, be connected with analog to digital converter 200, for the equipment unique identification of the gesture data and described gesture cipher input equipment that store described digital signal, wherein, described equipment unique identification is for verifying the legitimacy of described gesture cipher input equipment;
Storer 600 can comprise: ROM and RAM, wherein, RAM is for preserving gesture data, in ROM except the driver of safety input device and command information, also for storing the equipment unique identification of gesture cipher input equipment, this equipment unique identification is generally that user is read by receiving bank when applying for this equipment, user profile in itself and certificate server is bound, in process of exchange afterwards, all need to test to equipment unique identification, to guarantee the legal correctness of the safety input device that user uses.
8) central processing unit 700, is arranged in housing, is connected with storer 600 with gesture information acquisition component 100, analog to digital converter 200, deciphering chip 300, communication chip 400, power supply 500, for carrying out centralized control to these component units.
Central processing unit 700 in whole equipment as a scheduler module, the coordinated operation between touch-screen, memory module, encryption/decryption module etc. can be managed, make the mutual identification communication of the modules in equipment, such as: import the gesture data of the digital signal in RAM into secure transmission tunnel, from secure transmission tunnel, read authentication result, be shown to display screen.
This gesture cipher input equipment, the occasions such as finance self-help terminal, cabinet face transaction terminal, Web bank, mobile payment, proof box can be applied to, have broad application prospects, and this equipment has good extendability, gesture information acquisition component 100 can be replaced by the sensor of other type, the safety input of other induction information password can be realized, such as: induction geographical location information, audio-frequency information, gravity sensing information, distance induction information etc., also can integrated multiple sensor, the password of various dimensions is generated according to much information.Such as: the three-axis gyroscope of combined with intelligent mobile phone, mobile phone screen down time input gesture password, mobile phone screen upward time do not show encrypted message, effectively prevent user cipher and peeped, extend the usable range of user, improve financial service level.
Above-mentioned is description to gesture cipher input equipment, if need to use this equipment to conclude the business, also need the cooperation of external unit, to form a gesture password input system, particularly, can as shown in Figure 6, comprise: gesture cipher input equipment 601, the terminal device 602 be connected with gesture cipher input equipment 601, the certificate server 603 communicated with terminal device 602 and the bank server 604 communicated with terminal device 602, user 605.
Particularly:
Gesture cipher input equipment 601 can be connected by the modes such as USB, serial ports or wireless network and terminal device 602, when terminal device 602 needs input password, prompting user connects gesture cipher input equipment 601, after user inputs gesture password in gesture cipher input equipment 601, by code data encrypted transmission to terminal device 602, in order to ensure the transmission security of gesture password, the cryptographic algorithm that system can adopt security high, one-time pad is to guarantee data security;
The intelligent mobile phone terminal etc. that the PC that terminal device 602 can be cabinet plane system, Web bank uses, Mobile banking use, complete a series of trading instruction at terminal device 602 or place an order successfully, when confirming transaction, prompting user connects gesture cipher input equipment 601, after receiving gesture code data, request authentication server 603 completes the verification process of account number cipher;
Certificate server 603, when receiving the code data of terminal device 602, carries out safety certification after using secret key decryption, returns to terminal device 602 after authentication result being encrypted afterwards;
The bank server 604 i.e. core system of bank, be connected with bank background data base and realize the amount of money and draw the business such as button, terminal device 602 carries out data interaction when depositing and withdrawing transaction or online payment and between corresponding bank server 604.
More than the specific descriptions to gesture cipher input equipment and gesture password input system, below just illustratively how to be concluded the business by this gesture password input system, as shown in Figure 7, comprise the following steps:
Step 701: terminal device is connected with gesture cipher input equipment;
Step 702: certificate server carries out legitimacy certification by equipment unique identification to described gesture cipher input equipment;
Step 703: after certification is passed through, described terminal device obtains dealing money from described bank server, and shows;
Step 704: the inputting interface of gesture cipher input equipment display gesture password pattern, and receive the gesture encrypted message of user's input, and this gesture encrypted message is converted to the gesture data of digital signal;
Particularly, in this step, gesture cipher input equipment can show the inputting interface of gesture password pattern in the following ways:
The first: gesture cipher input equipment determines the gesture password pattern that user selects when setting gesture password, and gesture cipher input equipment shows the inputting interface of the gesture password pattern determined;
The second: gesture cipher input equipment determines the gesture password pattern of acquiescence from the multiple gesture password patterns preset, the inputting interface of the gesture password pattern of gesture cipher input equipment display acquiescence.
Namely, can be user has first preset unique a kind of cell phone password pattern, it be multiple also can be that user presets, but is provided with a kind of cell phone password pattern of acquiescence, when needs carry out gesture Password Input, just directly show the cell phone password pattern of acquiescence.Gesture password pattern can include but not limited to: numerical ciphers, self-defined shape gesture password and nine key pattern gesture passwords etc.
Step 705: described gesture data is transferred to certificate server by terminal device, described gesture data contrasts with the gesture data corresponding with this gesture input device prestored by certificate server;
The gesture data that terminal device receives is the data that gesture cipher input equipment has been encrypted, particularly, gesture cipher input equipment can be encrypted in such a way: read the time that user inputs password, by matrix M displacement, the time of reading is converted to timestamp, according to timestamp and dynamic key production encryption key, then be encrypted by the gesture data of encryption key to digital signal, and the gesture data after encryption is sent to terminal device.
Step 706: when comparing result is consistent, premises equipment requests bank server completes fund and draws button operation.
In the above-described embodiments, for the gesture cipher input equipment of application carries out initialization, user can select any one gesture as trading password, and this gesture after validation, can be saved in the user profile of this user of certificate server.In each process of exchange, user is directly pointed out to input gesture in this gesture cipher input equipment when confirming transaction, after gesture cipher input equipment gets the transaction gesture of user, send terminal device to, terminal device submits authentication request to certificate server, after certificate server receives user profile and gesture password, carry out data authentication, and by authentication result loopback to terminal device, if certification is passed through, premises equipment requests bank server carries out relationship trading, otherwise the information such as prompting user authentication failure.
Based on use scenes, above-mentioned gesture password input system is specifically described below, as shown in Figure 8, comprises:
Step 801, gesture cipher input equipment is opened in user's application, submits the information such as user account;
Step 802, bank counter examination & verification user profile, check its Mobile banking, whether the business such as Web bank are in upstate;
Step 803, open-minded by rear confirmation in examination & verification;
Step 804, bank counter starts to distribute equipment, prepares binding and initialization apparatus;
Step 805, prepares bound device, and bank counter obtains and is kept at the unique identification distributed in equipment ROM;
Step 806, binds the customer information in equipment unique identification and certificate server;
Step 807, completes binding, and bank cashier asks user to arrange gesture password;
Step 808, initialization apparatus, opens gesture cipher input equipment, and screen shows " please select gesture password pattern, 1 is conventional digital password, and 2 is self-defined shape gesture password, and 3 is nine key pattern gesture passwords ";
Step 809, selected pattern is sent to terminal device after selecting corresponding password pattern by user, and next step instruction is issued the central controller of gesture cipher input equipment by terminal device, screen shows " please input password ", and opens the interface for password input of corresponding pattern;
Step 810, user draws the password of respective type on the touch-screen of input equipment, and track drafting is by simultaneous display on the touchscreen; Simultaneously, the data collected are saved in storer by gesture information acquisition component, user's clicking operation district " determines " button, gesture data in storer is transferred to terminal device by deciphering chip, communication chip by central processing unit, terminal device is after the primary gesture password of acquisition, send the instruction of authentication password to input media, require that user inputs password again.
Step 811, repeats step 810, and input second time gesture password is also sent to terminal device;
Step 812, the gesture password of terminal device comparison first time typing; If inconsistent, return step 810, if unanimously, then forward step 813 to;
Step 813, by user profile, acquiescence gesture pattern, gesture cryptosync to certificate server, certificate server saves, for certification during transaction later;
Step 814, is arranged successfully or the information of failure at the touch screen display password of gesture cipher input equipment;
Step 815, repeat step 808 to step 813, user can add another gesture password pattern, when there is multiple password pattern, need to specify one pattern by default, in the ROM district that password default pattern is synchronously kept at device and certificate server, when requiring input gesture password in use procedure afterwards, acquiescence shows the interface for password input of this pattern, but can click switching push button when customer transaction, inputs corresponding password.
Just can complete whole password setting process based on above-mentioned steps 801 to step 815, in this example, additionally provide after one arranges password, carried out the process of concluding the business by setting code, as shown in Figure 9, comprise the following steps:
Step 901, user, after online shopping mall or physical stores choose commodity, determines to buy, and user prepares to open payment transaction;
Step 902, typing user account information, includes but not limited to: bank's card number, magnetic stripe are swiped the card, Net silver logs in, Mobile banking etc.;
Step 903, certificate server carries out certification to user profile, if certification is passed through, prompting logins successfully, and proceeds to step 904, otherwise prompting authentification failure, proceed to step 902;
Step 904, online shopping mall or physical stores input dealing money, be sent on the screen of terminal device by service server, confirm to pay;
Step 905, prompting user connects gesture cipher input equipment, and after connection device, the unique identification of terminal device fetch equipment is also sent to certificate server, and certificate server verifies that whether this equipment is correctly legal;
Step 906, if certification is passed through, terminal device receives the payment of bank server and sends gesture cipher input equipment to, and information displaying, after receiving information, confirms for user by this equipment on the touchscreen;
Step 907, after user clicks confirmation, terminal device sends next step instruction to gesture cipher input equipment, and prompting user inputs gesture password, and central processing unit reads the password default pattern in ROM and shows the gesture interface for password input of corresponding pattern on the touchscreen;
Step 908, user draws gesture password on the touchscreen, and gesture data is kept in the RAM of storer by gesture cipher input equipment, and user clicks cancellation and repaints, and clicks and confirms to be sent to terminal device by after gesture data encryption through communication chip;
Step 909, terminal device is by gesture password transmission to certificate server, and the gesture password of pattern corresponding with this user after the gesture password to decipher received contrasts by certificate server, if consistent, turn to step 910, otherwise, turn to step 907, user re-enters gesture password;
Step 910, the result that certification is passed through by certificate server is recycled to terminal device, and premises equipment requests bank server completes corresponding fund and draws the related services such as button, if business runs succeeded, turns to step 911, otherwise turns to step 912; After completion of transactions, and information is sent to gesture cipher input equipment, the information such as prompting " Transaction Success, altogether payment XX unit ";
Step 911, after terminal device acquisition bank server is drawn and is buckled successful result, the information of display Transaction Success, and information such as " Transaction Success please disconnect " is shown in input media;
Step 912, bank server sends failure information to terminal device, the information of terminal device display Fail Transaction.
When the gesture cipher input equipment provided by above-described embodiment carries out online transaction, when needs user confirms to pay input password, only need to input gesture on this equipment, be verified through background server, can transaction be completed.That is, this equipment provides a kind of brand-new Password Input authentication mode, is easy to carry, easy to use, and the use habit of laminating user, security is higher, and can effectively improve financial service level.Because this equipment operates in independently in software environment, do not have the risk that rogue program steals data, simultaneously to transmit with the data of background data base and be all through encrypted transmission, one-time pad, can not be reused even if enciphered message intercepts and captures, greatly ensure that the security in data transmission procedure, make user while using new gesture password, ensure that personal property and private data are not stolen.
From above description, can find out, the embodiment of the present invention achieves following technique effect: provide a kind of gesture cipher input equipment, when needs carry out Password Input, it is connected with external unit, by the gesture information acquisition component that self is built-in, analog to digital converter, deciphering chip, communication chip, storer and central processing unit etc. can realize the safety input of gesture password, again because this equipment is independent of external unit individualism, therefore can effectively to solve in prior art in process of exchange, user's property safety and private data can not get the technical matters of available protecting, reach the technique effect effectively improving data security.
Obviously, those skilled in the art should be understood that, each module of the above-mentioned embodiment of the present invention or each step can realize with general calculation element, they can concentrate on single calculation element, or be distributed on network that multiple calculation element forms, alternatively, they can realize with the executable program code of calculation element, thus, they can be stored and be performed by calculation element in the storage device, and in some cases, step shown or described by can performing with the order be different from herein, or they are made into each integrated circuit modules respectively, or the multiple module in them or step are made into single integrated circuit module to realize.Like this, the embodiment of the present invention is not restricted to any specific hardware and software combination.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the embodiment of the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. a gesture cipher input equipment, is characterized in that, comprising:
Housing;
Gesture information acquisition component, is arranged on the surface of described housing, for the interface providing user to input gesture password, and responds to the gesture encrypted message of user's input;
Analog to digital converter, is arranged in described housing, is connected with described gesture information acquisition component, and the gesture encrypted message of the simulating signal that the user for described gesture information acquisition component being sensed inputs, is converted to the gesture data of digital signal;
Deciphering chip, is arranged in described housing, is connected with described analog to digital converter, prestore the key corresponding with this gesture cipher input equipment, for being encrypted by the gesture data of digital signal described in described double secret key;
Communication chip, is arranged in described housing, and carries out data transmission between external unit;
Power supply, is arranged in described housing, provides the electric power needed for the work of described gesture cipher input equipment;
Storer, be arranged in described housing, be connected with described analog to digital converter, for the equipment unique identification of the gesture data and described gesture cipher input equipment that store described digital signal, wherein, described equipment unique identification is for verifying the legitimacy of described gesture cipher input equipment;
Central processing unit, be arranged in described housing, be connected with described storer with described gesture information acquisition component, described analog to digital converter, described deciphering chip, described communication chip, described power supply, for carrying out centralized control to described gesture information acquisition component, described analog to digital converter, described deciphering chip, described communication chip, described power supply and described storer.
2. gesture cipher input equipment as claimed in claim 1, it is characterized in that, described communication chip is connected with described external unit by USB interface.
3. gesture cipher input equipment as claimed in claim 1, it is characterized in that, described gesture information acquisition component comprises: the touch-screen of band Presentation Function, and, for the button selected.
4. gesture cipher input equipment as claimed in claim 1, it is characterized in that, described storer comprises: ROM and RAM, and wherein, RAM is for storing the gesture data of described digital signal, and ROM is for storing the equipment unique identification of described gesture cipher input equipment.
5. a gesture password input system, it is characterized in that, comprise: the gesture cipher input equipment according to any one of Claims 1-4, the terminal device be connected with described gesture cipher input equipment, with the certificate server of described terminal equipment in communication and the bank server with described terminal equipment in communication, wherein:
Described terminal device, for obtaining the gesture data of digital signal from described gesture cipher input equipment, and sends to described certificate server by the gesture data of described digital signal;
Described certificate server, for carrying out certification to the gesture data of described digital signal, and after certification is passed through, sending certification to described terminal device and passing through message;
Described bank server, for get in described terminal certification by message after, perform user request banking.
6. carry out a method of concluding the business based on the gesture password input system shown in claim 5, it is characterized in that, comprising:
Terminal device is connected with gesture cipher input equipment;
Certificate server carries out legitimacy certification by equipment unique identification to described gesture cipher input equipment;
After certification is passed through, described terminal device obtains dealing money from described bank server, and shows;
The inputting interface of described gesture cipher input equipment display gesture password pattern, and receive the gesture encrypted message of user's input, and this gesture encrypted message is converted to the gesture data of digital signal;
Described gesture data is transferred to certificate server by described terminal device, and described gesture data contrasts with the gesture data corresponding with this gesture input device prestored by described certificate server;
When comparing result is consistent, bank server described in described premises equipment requests completes fund and draws button operation.
7. method as claimed in claim 6, is characterized in that, the inputting interface of described gesture cipher input equipment display gesture password pattern, comprising:
Described gesture cipher input equipment determines the gesture password pattern that user selects when setting gesture password;
Described gesture cipher input equipment shows the inputting interface of the gesture password pattern determined.
8. method as claimed in claim 6, is characterized in that, the inputting interface of described gesture cipher input equipment display gesture password pattern, comprising:
Described gesture cipher input equipment determines the gesture password pattern of acquiescence from the multiple gesture password patterns preset;
The inputting interface of the gesture password pattern of described gesture cipher input equipment display acquiescence.
9. as claimed in claim 7 or 8 method, is characterized in that, described gesture password pattern, comprise following one of at least: numerical ciphers, self-defined shape gesture password and nine key pattern gesture passwords.
10. method as claimed in claim 6, it is characterized in that, after this gesture encrypted message is converted to the gesture data of digital signal by described gesture cipher input equipment, before described gesture data is transferred to certificate server by described terminal device, described method also comprises:
Described gesture cipher input equipment reads the time that user inputs password;
The time of reading is converted to timestamp by matrix M displacement by described gesture cipher input equipment;
Described gesture cipher input equipment is according to described timestamp and dynamic key production encryption key;
Described gesture key entry device is encrypted by the gesture data of described encryption key to described digital signal, and the gesture data after encryption is sent to described terminal device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510363418.3A CN104978144A (en) | 2015-06-26 | 2015-06-26 | Gesture password input device and system and method for transaction based on system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510363418.3A CN104978144A (en) | 2015-06-26 | 2015-06-26 | Gesture password input device and system and method for transaction based on system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104978144A true CN104978144A (en) | 2015-10-14 |
Family
ID=54274691
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510363418.3A Pending CN104978144A (en) | 2015-06-26 | 2015-06-26 | Gesture password input device and system and method for transaction based on system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104978144A (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105763536A (en) * | 2016-01-29 | 2016-07-13 | 大连秘阵科技有限公司 | Network registration method and system based on dynamic graphic password |
| CN108351957A (en) * | 2015-12-31 | 2018-07-31 | 柏思科技有限公司 | The method and system of at least one action is executed according to the gesture of user and identity |
| CN105743893B (en) * | 2016-01-29 | 2018-10-23 | 大连秘阵科技有限公司 | One-time dynamic positioning authentication method, system and password changing method |
| CN109508533A (en) * | 2018-12-14 | 2019-03-22 | 海南大学 | The expansible value of multidimensional matches account password setting method |
| CN110611562A (en) * | 2018-06-15 | 2019-12-24 | 陈超 | Contact connection control instruction-based human-computer interaction application method in field of cryptography |
| WO2020001456A1 (en) * | 2018-06-27 | 2020-01-02 | Giesecke+Devrient Mobile Security Gmbh | Bank card privacy information hiding method, bank card and computer readable storage medium |
| CN110769419A (en) * | 2019-10-21 | 2020-02-07 | 南京创维信息技术研究院有限公司 | Voice network distribution method and system for intelligent equipment |
| CN111324199A (en) * | 2018-12-13 | 2020-06-23 | 中国移动通信集团广西有限公司 | Terminal control method and device, terminal and readable storage medium |
| CN111782037A (en) * | 2020-06-23 | 2020-10-16 | 江苏微桔智能科技有限公司 | Millimeter wave-based space gesture password input acquisition method |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1574740A (en) * | 2003-05-23 | 2005-02-02 | 财团法人工业技术研究院 | Personal authentication device and method thereof |
| CN1684411A (en) * | 2004-04-13 | 2005-10-19 | 华为技术有限公司 | Method for verifying user's legitimate of mobile terminal |
| CN1889434A (en) * | 2006-07-21 | 2007-01-03 | 胡祥义 | Method for safety efficient network user identity discrimination |
| CN1959691A (en) * | 2005-11-04 | 2007-05-09 | 李东声 | Method and devices for enhancing security of electronic signature tool |
| CN101005359A (en) * | 2006-01-18 | 2007-07-25 | 华为技术有限公司 | Method and device for realizing safety communication between terminal devices |
| CN101202631A (en) * | 2007-12-21 | 2008-06-18 | 任少华 | System and method for identification authentication based on cipher key and timestamp |
| CN103259768A (en) * | 2012-02-17 | 2013-08-21 | 中兴通讯股份有限公司 | Method, system and device of message authentication |
| CN103701782A (en) * | 2013-12-16 | 2014-04-02 | 天地融科技股份有限公司 | Data transmission method and system |
| CN204103933U (en) * | 2014-08-29 | 2015-01-14 | 上海众人科技有限公司 | A kind of dynamic password generates equipment and transmission system |
| CN104363199A (en) * | 2014-09-30 | 2015-02-18 | 熊文俊 | Security authentication method based on time synchronization codes and time synchronization code module |
| KR101495034B1 (en) * | 2014-11-21 | 2015-03-02 | 주식회사 시큐브 | Method and system for remote authentication based on security token |
| CN204759393U (en) * | 2015-06-26 | 2015-11-11 | 中国工商银行股份有限公司 | Gesture password input device and system |
-
2015
- 2015-06-26 CN CN201510363418.3A patent/CN104978144A/en active Pending
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1574740A (en) * | 2003-05-23 | 2005-02-02 | 财团法人工业技术研究院 | Personal authentication device and method thereof |
| CN1684411A (en) * | 2004-04-13 | 2005-10-19 | 华为技术有限公司 | Method for verifying user's legitimate of mobile terminal |
| CN1959691A (en) * | 2005-11-04 | 2007-05-09 | 李东声 | Method and devices for enhancing security of electronic signature tool |
| CN101005359A (en) * | 2006-01-18 | 2007-07-25 | 华为技术有限公司 | Method and device for realizing safety communication between terminal devices |
| CN1889434A (en) * | 2006-07-21 | 2007-01-03 | 胡祥义 | Method for safety efficient network user identity discrimination |
| CN101202631A (en) * | 2007-12-21 | 2008-06-18 | 任少华 | System and method for identification authentication based on cipher key and timestamp |
| CN103259768A (en) * | 2012-02-17 | 2013-08-21 | 中兴通讯股份有限公司 | Method, system and device of message authentication |
| CN103701782A (en) * | 2013-12-16 | 2014-04-02 | 天地融科技股份有限公司 | Data transmission method and system |
| CN204103933U (en) * | 2014-08-29 | 2015-01-14 | 上海众人科技有限公司 | A kind of dynamic password generates equipment and transmission system |
| CN104363199A (en) * | 2014-09-30 | 2015-02-18 | 熊文俊 | Security authentication method based on time synchronization codes and time synchronization code module |
| KR101495034B1 (en) * | 2014-11-21 | 2015-03-02 | 주식회사 시큐브 | Method and system for remote authentication based on security token |
| CN204759393U (en) * | 2015-06-26 | 2015-11-11 | 中国工商银行股份有限公司 | Gesture password input device and system |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108351957A (en) * | 2015-12-31 | 2018-07-31 | 柏思科技有限公司 | The method and system of at least one action is executed according to the gesture of user and identity |
| CN108351957B (en) * | 2015-12-31 | 2022-08-02 | 柏思科技有限公司 | Method and system for performing at least one action based on a user's gesture and identity |
| US10659452B2 (en) | 2016-01-29 | 2020-05-19 | Dalian Magic Image Technology Co., Ltd. | Dynamic graphical password-based network registration method and system |
| CN105763536B (en) * | 2016-01-29 | 2018-10-19 | 大连秘阵科技有限公司 | Network registration method and system based on dynamic graphic password |
| CN105743893B (en) * | 2016-01-29 | 2018-10-23 | 大连秘阵科技有限公司 | One-time dynamic positioning authentication method, system and password changing method |
| CN105763536A (en) * | 2016-01-29 | 2016-07-13 | 大连秘阵科技有限公司 | Network registration method and system based on dynamic graphic password |
| US11233786B2 (en) | 2016-01-29 | 2022-01-25 | Dalian Magic Image Technology Co., Ltd. | One-time dynamic positioning authentication method and system and password alteration method |
| WO2017129133A1 (en) * | 2016-01-29 | 2017-08-03 | 大连秘阵科技有限公司 | Dynamic graphical password-based network registration method and system |
| CN110611562A (en) * | 2018-06-15 | 2019-12-24 | 陈超 | Contact connection control instruction-based human-computer interaction application method in field of cryptography |
| WO2020001456A1 (en) * | 2018-06-27 | 2020-01-02 | Giesecke+Devrient Mobile Security Gmbh | Bank card privacy information hiding method, bank card and computer readable storage medium |
| CN111324199A (en) * | 2018-12-13 | 2020-06-23 | 中国移动通信集团广西有限公司 | Terminal control method and device, terminal and readable storage medium |
| CN111324199B (en) * | 2018-12-13 | 2023-04-28 | 中国移动通信集团广西有限公司 | Terminal control method and device, terminal and readable storage medium |
| CN109508533A (en) * | 2018-12-14 | 2019-03-22 | 海南大学 | The expansible value of multidimensional matches account password setting method |
| CN110769419A (en) * | 2019-10-21 | 2020-02-07 | 南京创维信息技术研究院有限公司 | Voice network distribution method and system for intelligent equipment |
| CN111782037A (en) * | 2020-06-23 | 2020-10-16 | 江苏微桔智能科技有限公司 | Millimeter wave-based space gesture password input acquisition method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112805757B (en) | System and method for password authentication of contactless cards | |
| CN104978144A (en) | Gesture password input device and system and method for transaction based on system | |
| CN103701609B (en) | A kind of server and the method and system operating terminal two-way authentication | |
| CN103390124B (en) | Apparatus, system and method for secure entry and processing of passwords | |
| CN102867366B (en) | Portable bank card data processing device, system and method | |
| US12056701B2 (en) | System and method to protect privacy of Personal-Identification-Number entry on consumer mobile device and computing apparatus | |
| CN102111271B (en) | Network security certification method and device thereof | |
| CN102246181A (en) | Secure method and device of financial transaction | |
| CN102710611A (en) | Network security authentication method and system | |
| CN104182875A (en) | Payment method and payment system | |
| CN201936334U (en) | Mobile payment data secure digital card | |
| CN104835038A (en) | Networking payment device and networking payment method | |
| CN104102934B (en) | A kind of portable IC card read-write equipment, system and method | |
| CN108460597A (en) | A kind of key management system and method | |
| CN102118745B (en) | Method and device for secure encryption for mobile payment data, and mobile phone | |
| CN204759393U (en) | Gesture password input device and system | |
| CN104966193A (en) | System and method for safely transmitting ID (identity )by using Bluetooth | |
| CN104104505A (en) | Electronic signature device, realization method and client | |
| CN105989477A (en) | Data interaction method | |
| CN105991527A (en) | Data interaction system | |
| CN105991530A (en) | Data interaction system | |
| CN105989475A (en) | Data interaction method | |
| CN105989657A (en) | Data interaction system | |
| CN105991547A (en) | Data interaction system | |
| CN109191117A (en) | A kind of Intelligent key |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20151014 |
|
| RJ01 | Rejection of invention patent application after publication |