[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

TWI452204B - Security system with mulitple safety controls and method for processing the security signals - Google Patents

Security system with mulitple safety controls and method for processing the security signals Download PDF

Info

Publication number
TWI452204B
TWI452204B TW101114688A TW101114688A TWI452204B TW I452204 B TWI452204 B TW I452204B TW 101114688 A TW101114688 A TW 101114688A TW 101114688 A TW101114688 A TW 101114688A TW I452204 B TWI452204 B TW I452204B
Authority
TW
Taiwan
Prior art keywords
authentication
security
security device
person
unit
Prior art date
Application number
TW101114688A
Other languages
Chinese (zh)
Other versions
TW201344026A (en
Inventor
Hung Sheng Lee
Cheng Yuan Hsu
Original Assignee
Shinsoft Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shinsoft Co Ltd filed Critical Shinsoft Co Ltd
Priority to TW101114688A priority Critical patent/TWI452204B/en
Publication of TW201344026A publication Critical patent/TW201344026A/en
Application granted granted Critical
Publication of TWI452204B publication Critical patent/TWI452204B/en

Links

Landscapes

  • Lock And Its Accessories (AREA)

Description

多重安全管制保全系統與保全訊息處理方法Multiple security control security system and security message processing method

本發明為一種多重安全管制保全系統與保全訊息處理方法,特別是應用於特定保全場所進出入口的保全措施,建立一具有多重安全認證技術的保全系統。The invention relates to a multi-security control security system and a security message processing method, in particular to a security measure for the entry and exit of a specific security site, and a security system with multiple security authentication technologies.

為了確保特定場合的安全性,特別如銀行金庫、進出入門戶,習知技術提出多樣的安全措施,包括派任保全人員、以複雜的認證機制管制這些場合的進入人員與提高門戶機構的強度等措施來確保安全性。In order to ensure the safety of specific occasions, such as bank vaults and access to the portal, the prior art proposes various security measures, including dispatching security personnel, controlling the entry of personnel in these occasions with complex authentication mechanisms, and improving the strength of the portal. Measures to ensure safety.

習知技術如應用於一般的保險箱或金庫,這方面的保全技術主要提供一個具有防止破壞的堅固外體與具有保密與防盜功能的鎖,相關技術曾有習知技術如中華民國新型專利M335550所揭露的金庫密碼鎖防盜開機構與第158304號揭露的金庫電子密碼鎖之配合結構,但這些主要是應用傳統密碼鎖的技術與其中特殊結構的設計。The conventional technology is applied to a general safe or a vault. The security technology in this aspect mainly provides a solid outer body with damage prevention and a lock with security and anti-theft functions. The related technology has been known as the new technology patent M335550 of the Republic of China. The disclosed treasury code lock anti-theft mechanism cooperates with the treasury electronic code lock disclosed in No. 158304, but these are mainly the techniques of applying the traditional cipher lock and the design of the special structure therein.

針對保險箱或金庫的保全措施,則可能具有警報的措施,當有不當入侵或是開啟的行為時,可以發出警報,習知技術曾有中華民國專利第148345號揭露的具警戒系統之保險箱,此技術主要是在保險箱中設置有警報線路,經觸發後會產生無線訊號,由警報器接收後產生警報。For the safety measures of the safe or the vault, there may be an alarm measure. When there is improper invasion or opening behavior, the alarm may be issued. The conventional technology has a security system with a warning system disclosed in the Republic of China Patent No. 148345. The technology is mainly to set up an alarm line in the safe, which will generate a wireless signal after being triggered, and generate an alarm after being received by the alarm.

近年來,由於短距離的無線通訊的發展,此類具有安全性的通訊方式也可應用於特定場合的保全措施中,如圖1所示之習知技術為一種主動式RFID門鎖保全控制結構(中華民國專利第M388690號,公告日:2010/09/11),其中應 用了用射頻識別(RFID)技術使用在門鎖保全中。In recent years, due to the development of short-range wireless communication, such a secure communication method can also be applied to security measures in specific occasions. The conventional technology shown in FIG. 1 is an active RFID door lock security control structure. (Republic of China Patent No. M388690, Announcement Date: 2010/09/11), which should The use of radio frequency identification (RFID) technology is used in door lock security.

圖1中顯示之門鎖保全控制結構包括一主動式無線射頻單元10,其中元件主要有第一天線101與晶片103,晶片103中載有識別碼。當此主動式無線射頻單元10啟動時,識別碼經由電路轉化成訊號,藉由第一天線101傳輸。The door lock security control structure shown in FIG. 1 includes an active radio frequency unit 10 in which the components mainly have a first antenna 101 and a wafer 103, and the wafer 103 carries an identification code. When the active radio frequency unit 10 is activated, the identification code is converted into a signal via a circuit and transmitted by the first antenna 101.

結構中具有一控制主機12,其中元件主要有第二天線121、接收器123與處理器125,與主動式無線射頻單元10內的第一天線101形成訊號對應,控制主機12的處理器125以訊號線連接控制一警報器16之啟閉。The structure has a control host 12, wherein the component mainly has a second antenna 121, a receiver 123 and a processor 125, and forms a signal corresponding to the first antenna 101 in the active radio frequency unit 10, and controls the processor of the host 12. 125 is connected by a signal line to control the opening and closing of an alarm 16.

上述各端元件形成的系統亦包括有一設於保護對象外側的感測裝置14,功能是感應入侵者進入裝置的感測範圍。The system formed by each of the above end elements also includes a sensing device 14 disposed outside the protection object, the function of which is to sense the sensing range of the intruder entering the device.

此技術的手段主要是應用主動式無線射頻單元10與控制主機12間的無線射頻識別技術作為是否啟動或關閉保全措施的認證方式。當感測裝置14感應到有人員進入範圍內時,人員應該利用主動式無線射頻單元10將其中所載的識別碼傳送至控制主機12,由其中接收器123接收後,判斷出是否與已登記的識別碼相符,藉此判斷是否利用警報器16產生警報。The means of this technology mainly applies the radio frequency identification technology between the active radio frequency unit 10 and the control host 12 as an authentication method for starting or closing the security measures. When the sensing device 14 senses that a person enters the range, the person should use the active radio frequency unit 10 to transmit the identification code contained therein to the control host 12, and after receiving the receiver 123, determine whether it is registered. The identification code matches, thereby judging whether or not the alarm 16 is used to generate an alarm.

鑑於習知技術所提出的各種保全措施仍具備有系統本身的缺陷,如容易被竄改、入侵,仍可能有安全上的缺失與安全性不足的疑慮,因此本揭露書提出在特定場合(如金庫、進出入口)的一種多重安全管制措施,透過多種保全措施彼此搭配、訊息交換來加強保全能力。In view of the fact that various protection measures proposed by the prior art still have the defects of the system itself, such as being easily falsified and invaded, there may still be concerns about lack of security and insufficient security. Therefore, the disclosure is proposed on a specific occasion (such as a vault). , multiple access control measures, multiple security measures, through a variety of security measures to match each other, exchange of information to enhance security.

本揭露書描述一種多重安全管制保全系統與保全訊息處理方法。根據實施例,其中多重安全管制保全系統包括一連結於外部管制中心與內部被保護主體門鎖的保全裝置,保全裝置以通訊功能連線於管制中心,管制中心可以與系統內保全裝置通訊,並掌握運作狀態。The disclosure describes a multiple security control security system and a security message processing method. According to an embodiment, wherein the multiple security control security system includes a security device connected to the external control center and the internal protected body door lock, the security device is connected to the control center by a communication function, and the control center can communicate with the system security device, and Master the operational status.

保全裝置包括有執行保全裝置內各元件訊號處理的微處理單元、接受人員執行身份認證之認證介面單元、連結於被保護主體之門鎖的門禁控制單元、通訊單元與記載認證資訊的記憶體,記憶體記載有運算動態密碼(dynamic password)的程式。The security device includes a micro processing unit that performs signal processing of each component in the security device, an authentication interface unit that performs identity authentication by the person, an access control unit that is connected to the door lock of the protected body, a communication unit, and a memory that records authentication information. The memory contains a program for computing a dynamic password.

根據實施例,上述認證介面單元係為接收自人員所持之一認證裝置產生的識別訊號(識別碼)與動態密碼輸入的介面。比如為一無線接收器,可以接收到人員利用晶片卡執行認證的動作,亦可包括提供人員鍵入認證資訊的輸入介面。According to an embodiment, the authentication interface unit is an interface for receiving an identification signal (identification code) and a dynamic password input generated by an authentication device held by a person. For example, a wireless receiver can receive the action of the person performing the authentication by using the chip card, and can also include an input interface for the person to input the authentication information.

根據實施例,被保護主體可為一金庫,門禁控制單元即連結於金庫之門鎖。上述動態密碼可根據多重安全管制保全系統之時間資訊產生經常性隨機而變動的動態密碼(第二道認證程序),配合人員利用晶片卡的第一道認證程序,可以提供此金庫或是特定場合更安全的保全措施。According to an embodiment, the protected subject may be a vault, and the access control unit is a door lock connected to the vault. The dynamic password can generate a frequently random and dynamic password (second authentication procedure) according to the time information of the multiple security control security system, and can cooperate with the first authentication procedure of the wafer card to provide the vault or a specific occasion. Safer security measures.

再根據一實施例,保全裝置包括有一接近感知單元,可以藉此感測到人員接近,再要求人員執行上述身份認證。According to an embodiment, the security device includes a proximity sensing unit, whereby the proximity of the person is sensed, and the person is required to perform the identity authentication.

根據應用於上述多重安全管制保全系統的保全訊息處理方法的實施例,方法至少包括兩道認證程序,其中第一道認證程序於人員接近保全裝置時啟動,系統將要求人員 執行第一次認證,比如利用一感應晶片卡接近此保全裝置的認證介面,經認證成功後,啟動第二道認證程序,要求該人員執行第二次認證。According to an embodiment of the security message processing method applied to the multiple security control security system described above, the method includes at least two authentication procedures, wherein the first authentication procedure is initiated when the personnel approach the security device, and the system will require personnel Perform the first authentication, for example, using an inductive chip card to access the authentication interface of the security device. After successful authentication, the second authentication procedure is initiated, and the personnel is required to perform the second authentication.

根據實施例,此第二道認證程序比如由保全裝置運算後動態產生傳遞給人員的動態密碼,再由人員輸入此密碼,經比對後,第二次認證成功,也完成多重安全管制保全系統的認證程序,開啟被保護主體之門鎖。According to an embodiment, the second authentication procedure dynamically generates a dynamic password that is transmitted to the personnel after the operation of the security device, and then the password is input by the personnel. After the comparison, the second authentication succeeds, and the multiple security control security system is also completed. The authentication procedure opens the door lock of the protected subject.

上述動態產生的動態密碼係為保全裝置根據第一次認證程序中的資料產生,亦可包括系統的時間資訊,提示於人員,由人員據以輸入完成認證。The dynamically generated dynamic password is generated by the security device according to the data in the first authentication procedure, and may also include the time information of the system, prompting the personnel, and the personnel input to complete the authentication.

為了提供安全性更好的保全系統,本發明提出一種結合多種認證於一個流程中的保全措施,其中所揭示的多重安全管制保全系統實施例可參考圖2所示的使用實施例示意圖。In order to provide a security-preserving system, the present invention proposes a security measure in combination with multiple authentications in a process. The disclosed multiple security control security system embodiment may refer to the usage embodiment shown in FIG.

圖中顯示在一個場所(如金庫2)中設有一保全裝置20,在特別重視安全性的場所引入本揭露書所揭示的多重安全管制保全系統,由其中保全裝置20連接於進出入此場所的出入口20,特別是連接門鎖,經過多重認證後才使得進入。The figure shows that a security device 20 is provided in a place (such as the vault 2), and the multiple security control and preservation system disclosed in the disclosure is introduced in a place where security is particularly emphasized, wherein the security device 20 is connected to the entrance and exit. The entrance and exit 20, especially the connection of the door lock, is entered after multiple authentication.

此例中,設於金庫2出入口201的保全裝置20提供至少兩道認證程序,保全裝置20電性連結於控制出入口201開啟或關閉的門鎖,外部元件包括有一無線感應器203與輸入介面204。In this example, the security device 20 disposed at the entrance and exit 201 of the vault 2 provides at least two authentication procedures. The security device 20 is electrically coupled to the door lock that controls the opening and closing of the access port 201. The external component includes a wireless sensor 203 and an input interface 204. .

圖中有人員22手持一感應卡片205,比如是使用射頻 識別技術(RFID)的IC卡,感應卡片205載有識別碼,經與保全裝置20上的無線感應器203感應,可以讀取其中識別碼(需解密),藉此識別持有人的身份,此為本發明的認證方式之一,並非用於限制本發明之實施。In the figure, a person 22 holds a sensor card 205, such as using a radio frequency. An identification card (RFID) IC card, the sensor card 205 carries an identification code, and is sensed by the wireless sensor 203 on the security device 20, and the identification code (required decryption) can be read, thereby identifying the identity of the holder. This is one of the authentication methods of the present invention and is not intended to limit the implementation of the present invention.

另外,保全裝置20上的輸入介面204可為一連結內部電路的數字鍵盤或是具有特定字母與符號的鍵盤,人員22到現場除了利用感應卡片205認證外,更需輸入密碼,透過至少兩道認證程序完成更具安全性的認證。In addition, the input interface 204 on the security device 20 can be a numeric keypad connected to an internal circuit or a keyboard with specific letters and symbols. In addition to using the authentication card 205 authentication, the personnel 22 needs to input a password through at least two channels. The certification process completes a more secure certification.

在上述的認證方式中,人員22所持有的感應卡片205因為載有系統已經登錄的識別碼,因此各人員22所持為專屬的卡片,在人員離職或異動時,應更新系統內認證資料庫。In the above authentication method, the sensor card 205 held by the person 22 carries the identification code that the system has already registered, so each person 22 holds the exclusive card. When the person leaves the company or changes the transaction, the system authentication database should be updated. .

在本發明其他實施例中,並不排除利用生物辨識(biometric recognition)的技術(如臉部、指紋、靜脈圖像、虹膜、聲紋等)進行認證。In other embodiments of the present invention, techniques using biometric recognition (such as faces, fingerprints, vein images, irises, voice prints, etc.) are not excluded for authentication.

在另一實施例中,保全裝置20可透過網路連線遠端管制中心,管制中心除了可以接收保全裝置20發出的訊號(如警報、電力狀態、錯誤資訊等),可遠端存取連線的保全裝置以變更內部設定(如密碼、進出入人員權限),並可遠端取得裝置的運作資訊(如損害、故障、電力狀態),管制中心更能對保全裝置20內的資料執行遠端更新,包括其中資料庫、密碼與程式更新等。In another embodiment, the security device 20 can be connected to the remote control center through a network. The control center can receive the signals (such as alarms, power status, error information, etc.) sent by the security device 20, and can be remotely accessed. The security device of the line can change the internal settings (such as password, access authority), and can obtain the operation information (such as damage, fault, power status) of the device remotely. The control center can further execute the data in the security device 20. End updates, including databases, passwords, and program updates.

圖3接著顯示描述本發明應用於多重安全管制保全系統的保全訊息處理方法的實施例的流程,此保全訊息處理方法特別是應用於特定保全場所進出入口的保全措施,建立一具有多重安全認證技術的保全系統。3 is a flow chart showing an embodiment of a security message processing method for applying the present invention to a multiple security control security system. The security message processing method is particularly applied to security measures for entry and exit of a specific security site, and a multi-security authentication technology is established. Security system.

此例中,多重安全管制保全系統包括連結於被保護主體的保全裝置,此流程即為此保全裝置在系統中的步驟。開始如步驟S301所述,流程於一人員接近此保全裝置時啟動第一道認證程序,要求人員執行第一次認證,第一次認證可以在眾多認證方式中選擇其一,比如由人員手中所持的感應卡片利用無線通訊技術(如RFID,NFC)與保全裝置交換資訊,以此認證人員身份。In this example, the multiple security control security system includes a security device that is linked to the protected entity, and this process is the step of maintaining the device in the system for this purpose. Beginning as described in step S301, the process starts a first authentication procedure when a person approaches the security device, and requires the person to perform the first authentication. The first authentication may select one of the plurality of authentication methods, such as being held by the personnel. The sensor card uses wireless communication technology (such as RFID, NFC) to exchange information with the security device to authenticate the identity of the person.

接著如步驟S303,流程判斷第一次認證是否成功?若第一次認證失敗(否),發出第一次警示訊息(如利用燈號、訊息、聲響的方式),或是重新執行第一道認證程序(步驟S305);若第一次認證成功(是),將啟動第二道認證程序,要求人員執行第二次認證(步驟S307)。Then, in step S303, the process determines whether the first authentication is successful. If the first authentication fails (No), the first warning message is sent (such as using the light number, message, sound), or the first authentication procedure is re-executed (step S305); if the first authentication is successful ( Yes), a second authentication procedure will be initiated, requiring the person to perform a second authentication (step S307).

第二道認證程序可為不同於第一道認證程序的步驟,比如要求人員鍵入密碼,密碼包括記憶的靜態密碼(可記載於保全裝置內的一認證資料庫)與透過手持裝置執行程式動態產生或是接收的動態密碼,密碼確認的程序可為此第二道認證程序。其他亦不排除可以生物特徵、手勢等的辨識方式取代第二道認證程序。The second authentication procedure may be a step different from the first authentication procedure, such as requiring the person to enter a password, the password including a static password (which can be recorded in an authentication database in the security device) and dynamic generation by executing the program through the handheld device. Or the dynamic password received, the password confirmation procedure can be used for this second certification procedure. Others do not rule out the identification of biometrics, gestures, etc. to replace the second certification process.

接著如步驟S309,判斷第二道認證程序是否成功?若第二次認證失敗(否),裝置將發出第二次警示訊息(如利用燈號、訊息、聲響的方式),或是重新執行此第二道認證程序,更或著可以再次回到第一道認證程序,如圖中虛線箭頭所示(步驟S311);若第二次認證成功(是),即完成多重安全管制保全系統的認證程序(步驟S313),開啟被保護主體之門鎖。Then, as step S309, it is determined whether the second authentication procedure is successful? If the second authentication fails (No), the device will send a second warning message (such as using the light number, message, sound), or re-execute this second authentication procedure, or you can return to the second An authentication procedure is shown in the dotted arrow in the figure (step S311); if the second authentication is successful (Yes), the authentication procedure of the multiple security control security system is completed (step S313), and the locked door of the protected subject is opened.

圖4揭露本發明多重安全管制保全系統的實施態樣之 一的示意圖。Figure 4 illustrates an embodiment of the multiple security control security system of the present invention A schematic diagram of one.

其中描述一多重安全管制保全系統40中的各元件功能,運算核心為一用於執行各電路元件訊號處理的微處理器401,其他為與此微處理器401電性連接的通訊模組405,用以連接外部管制中心4,特別可透過網路相連;包括有提供人員認證的認證介面403,若認證介面403提供如RFID、NFC等近端通訊技術的功能,使用者可手持一如感應晶片卡的認證裝置43接近認證介面403,相互感應而交換資訊;另外,認證介面403亦可為一可輸入資料的介面,包括觸控與實體的鍵盤,人員可輸入密碼44進行認證;系統40再包括有連結被保護主體42上門鎖409的門禁控制單元407,門禁控制單元407為被保護主體42與此保全系統間的介面,藉此可以傳遞因為認證成功而允許開啟門鎖409的訊號,同樣門鎖409是否關閉的訊息亦可經此單元407傳遞給保全系統。系統40中更可包括記載有認證資料、系統程式、密碼產生程式等內容的記憶體402。The function of each component in the multiple security control security system 40 is described. The computing core is a microprocessor 401 for performing signal processing of each circuit component, and the other is a communication module 405 electrically connected to the microprocessor 401. For connecting to the external control center 4, especially through the network; including the authentication interface 403 for providing personnel authentication, if the authentication interface 403 provides functions such as RFID, NFC and other near-end communication technologies, the user can hold the sensor as if The authentication device 43 of the chip card is close to the authentication interface 403, and mutually senses and exchanges information. In addition, the authentication interface 403 can also be an interface for inputting data, including a touch and physical keyboard, and the person can input the password 44 for authentication; Further, the access control unit 407 is connected to the door lock 409 of the protected main body 42. The access control unit 407 is an interface between the protected main body 42 and the security system, thereby transmitting a signal that allows the door lock 409 to be opened because the authentication is successful. The same message that the door lock 409 is closed can also be transmitted to the security system via the unit 407. The system 40 may further include a memory 402 in which contents such as authentication data, a system program, a password generation program, and the like are described.

經圖3所示兩道認證程序的多重安全管制方法,圖5接著顯示本發明保全訊息處理方法利用身份識別與動態密碼的實施例步驟。Through the multiple security control method of the two authentication procedures shown in FIG. 3, FIG. 5 then shows the steps of the embodiment of the security message processing method of the present invention using identity recognition and dynamic password.

當有人員進入特定設有多重安全管制功能的保全裝置的場合時,如步驟S501,人員可以利用所持有的身份識別裝置進行第一道認證,如使用晶片卡、無線電收發器(dongle)、或是透過裝置上的識別裝置進行生物辨識。若以晶片卡為例,可以使用刷卡或是無線讀卡的技術,保全裝置內設有讀卡器與記憶體,利用記憶體內的識別資料進行認證。另不排除在認證時連線到設於遠端的認證資料庫,進行遠 端認證。When a person enters a specific security device having multiple security control functions, in step S501, the person can perform the first authentication by using the identity recognition device held, such as using a chip card, a radio transceiver (dongle), Or biometric identification through the identification device on the device. If the chip card is taken as an example, the technology of swiping or wireless card reading can be used, and the card reader and the memory are provided in the security device, and the identification data in the memory is used for authentication. It is not excluded to connect to the remotely located authentication database during authentication. End certification.

之後如步驟S503,保全裝置將會判斷是否成功識別,若識別失敗(否),依照設定的規則(比如允許失敗次數、時間間隔等),保全裝置將可產生警報或再進行步驟S501重新識別身份的動作(步驟S505)。Then, in step S503, the security device will determine whether the identification is successful. If the identification fails (No), according to the set rules (such as the number of failures allowed, the time interval, etc.), the security device may generate an alarm or perform the re-identification in step S501. Action (step S505).

一旦成功認證(是),即進入如步驟S507的第二道認證步驟,此例為保全裝置透過語音、顯示器或是燈號等方式提醒人員鍵入密碼。根據實施例,密碼可為由人員所記憶或是查表的一種靜態設定(仍可能定時更新)的密碼,於現場透過保全裝置提供的輸入介面(如鍵盤、觸控面板)鍵入當下應該輸入密碼;另有實施例則不排除以另外一種不同於第一道認證程序的方式進行認證,比如利用影像辨識技術判斷人員身份、判斷手勢口令是否正確,或可使用其他生物識別方式,更可以第二道密碼進行認證。Once the authentication is successful (Yes), the second authentication step is performed as in step S507. In this example, the security device reminds the person to type the password by means of voice, display or light. According to an embodiment, the password may be a password that is memorized or checked by a person, and may still be periodically updated. The input interface (such as a keyboard and a touch panel) provided by the security device may be entered in the field. Other embodiments do not preclude authentication in a different way than the first authentication procedure, such as using image recognition technology to determine the identity of the person, determining whether the gesture password is correct, or using other biometric methods, or second The password is authenticated.

在此例中,如步驟S509,第二道認證程序係為由人員利用特定載體接收到一種動態產生的密碼,此動態密碼為根據實際狀態提供給該人員,由人員依照指示的動態產生的動態密碼輸入,經系統接收此動態密碼後,才得判斷是否通過第二道認證程序。In this example, in step S509, the second authentication procedure is that the person receives a dynamically generated password by using a specific carrier, and the dynamic password is provided to the person according to the actual state, and the dynamic generated by the person according to the indication. Password input, after receiving the dynamic password through the system, it is necessary to judge whether the second authentication procedure is passed.

上述動態密碼的認證方式主要是在人員配戴或手持的裝置上顯示與系統一致的密碼,此類技術主要是以時間差做為系統(可設有密碼產生功能的伺服器)與進出人員所持裝置上的密碼產生器的同步條件。在需要認證的時候,就利用密碼產生器產生一動態密碼,應在所設定的時間限制內於保全裝置輸入密碼,否則該組密碼即失效,下次認證則須使用新產生的另一組動態密碼,具有嚴密的安全性 。The above-mentioned dynamic password authentication method mainly displays a password consistent with the system on a device worn or held by a person, and such technology mainly uses a time difference as a system (a server capable of providing a password generating function) and a device held by an entry and exit person. The synchronization condition of the password generator on it. When authentication is required, a password is generated by the password generator. The password should be entered in the security device within the set time limit. Otherwise, the password will be invalid. The next authentication must use another newly generated dynamic. Password, with strict security .

舉例來說,進入此特定場所的人員手中持有一種載體,可為一種稱為Token的動態密碼產生器,上方具有顯示器,當進入第二道認證程序後(不排除於第一道認證程序即使用此認證方式),可由監控中心,或是連線的任一認證中心傳遞動態密碼,並顯示於此Token裝置上的顯示器,再由人員輸入至保全裝置;另可由保全裝置根據內部資訊(如系統時間資訊、或是密碼產生器)或是人員第一次認證的資訊進行演算,進而透過人員手上的裝置顯示動態密碼,人員依此輸入執行認證;另有實施例可由遠端監控中心利用簡訊方式(simple message service,SMS)傳遞動態密碼至人員手中持有的手機,人員即可據此輸入(步驟S511),保全裝置有同步此訊息的機制可以判斷出是否輸入正確。For example, a person entering a particular location holds a carrier, which can be a dynamic password generator called Token, with a display on the top, after entering the second authentication procedure (not excluded from the first authentication procedure) Using this authentication method, the dynamic password can be transmitted by the monitoring center or any of the connected authentication centers, and displayed on the display on the Token device, and then input to the security device by the personnel; and the security device can be based on internal information (such as The system time information, or the password generator) or the information of the first authentication of the personnel is calculated, and then the dynamic password is displayed by the device on the person's hand, and the personnel input and perform the authentication according to this; another embodiment can be utilized by the remote monitoring center. The simple message service (SMS) transmits the dynamic password to the mobile phone held by the person in the person, and the person can input according to the step (step S511), and the security device has a mechanism for synchronizing the message to determine whether the input is correct.

在上述由特定密碼演算法所產生一組隨機而變動的密碼的方式,主要可避免非原持有晶片卡的人擅自闖入,雖可能通過第一道認證程序,但可能因為未持有另一如Token的裝置,仍難以通過第二道認證程序。此類動態密碼由人員手持裝置於完成第一道認證程序後自行產生,其中資訊將與保全裝置同步,因此可以取得認證。In the above-mentioned method of generating a random and variable password by a specific cryptographic algorithm, the non-original holder of the chip card can be prevented from entering the arbitrarily, although the first authentication procedure may be passed, but may not be held because For example, Token's device is still difficult to pass the second certification process. Such dynamic passwords are generated by the personnel handheld device after the completion of the first authentication procedure, wherein the information will be synchronized with the security device, so that authentication can be obtained.

接著如S513步驟所示,認證程序將判斷是否成功認證?若此第二道認證程序失敗(否),即執行步驟S515,系統產生任何型式的警報或要求重新輸入密碼,步驟仍可回到第一道認證步驟中,如步驟S501,重新執行認證;但若被要求重新輸入另一次密碼,同樣可如上述密碼的產生方式產生一組新的動態密碼。Then, as shown in step S513, the authentication program will determine whether the authentication is successful. If the second authentication procedure fails (NO), step S515 is performed, the system generates any type of alarm or requests to re-enter the password, and the step can still return to the first authentication step, such as step S501, re-execute the authentication; If it is required to re-enter another password, a new set of dynamic passwords can also be generated as described above.

動態密碼的認證次數可依據系統設計而定,步驟可以重新由第一道認證程序繼續進行,或重新再次取得另一動態密碼。經第二道認證成功後(是),即如步驟S517所述,保全系統將允許進入被保護主體,比如將驅動開啟門鎖。The number of authentications of the dynamic password may be determined according to the system design, and the steps may be resumed by the first authentication procedure, or another dynamic password may be retrieved again. After the second authentication is successful (Yes), as described in step S517, the security system will allow access to the protected subject, such as driving the door lock.

在執行認證程序時,依照系統設計可以有不同啟動各認證程序的方式,根據實施例之一,當上述人員進入特定設有多重安全管制功能的保全裝置的場合時,若該人員持有或是配戴著可感應多重安全管制保全系統啟動的物品,如使用一感應晶片卡,感應晶片與保全裝置之間係以一射頻識別通訊方法連線。當持有此感應晶片(包括載有此晶片的裝置或載體)接近保全裝置時,可即刻啟動第一道認證程序。在此例中,第一道認證程序包括保全裝置接收來自感應晶片卡所傳遞的身份識別碼,用以比對保全裝置內建或連外取得的認證資料庫,以確認身份識別碼是否為安全名單。此時,若身份識別碼並非為安全名單,則如上述步驟S503判斷為第一次認證失敗;若身份識別碼為安全名單,則第一次認證成功。When performing the authentication process, according to the system design, there may be different ways of starting each authentication procedure. According to one of the embodiments, when the above-mentioned person enters a specific security device with multiple security control functions, if the person holds or With the induction of multiple security control system booting items, such as the use of a sensor chip card, the sensor chip and the security device are connected by a radio frequency identification communication method. When the sensor wafer (including the device or carrier carrying the wafer) is held close to the security device, the first authentication procedure can be initiated immediately. In this example, the first authentication procedure includes the security device receiving the identification code transmitted from the sensing chip card for comparing the authentication database built in or out of the security device to confirm whether the identification code is secure. List. At this time, if the identification code is not a security list, it is determined that the first authentication fails according to the above step S503; if the identification code is a security list, the first authentication is successful.

圖6再顯示本發明系統的另一實施例示意圖。Figure 6 again shows a schematic diagram of another embodiment of the system of the present invention.

此例中,多重安全管制保全系統中設有連結於被保護主體64的保全裝置60,保全裝置60中根據電路功能包括有執行保全裝置60內各元件訊號處理的微處理單元601,保全裝置60包括有通訊單元602,藉此可連線於管制中心62,通訊單元602電性連接微處理單元601,微處理單元601將處理自通訊單元602產生的通訊訊號,而管制中心62即由通訊單元602接收保全裝置60的訊號。被保護主體 64如一金庫。In this example, the multiple security control security system is provided with a security device 60 connected to the protected entity 64. The security device 60 includes a micro processing unit 601 that performs signal processing of each component in the security device 60 according to the circuit function. The security device 60 A communication unit 602 is included, thereby being connectable to the control center 62. The communication unit 602 is electrically connected to the micro processing unit 601. The micro processing unit 601 will process the communication signal generated by the communication unit 602, and the control center 62 is composed of the communication unit. 602 receives the signal of the security device 60. Protected subject 64 such as a vault.

保全裝置60中更包括有接受人員執行身份認證之認證介面單元604,認證介面單元604電性連接微處理單元601,由微處理單元601處理各種認證介面單元604產生的認證訊號,包括訊號的加解密、識別、比對等動作,並啟動相關的認證程序。認證介面單元604用以接收自人員所持之認證裝置產生的識別訊號(識別碼)與動態密碼輸入的介面,比如是一個觸控面板、鍵盤、非接觸式(如使用RFID等近場通訊技術)或接觸式(刷卡)的讀卡裝置等,此例中可連接一設於外部的感應介面641,如一個觸控區域,或是可以讀取晶片訊號的讀取器,另可連接輸入介面642,提供人員輸入資料。The security device 60 further includes an authentication interface unit 604 for performing identity authentication, and the authentication interface unit 604 is electrically connected to the micro processing unit 601. The micro processing unit 601 processes the authentication signals generated by the various authentication interface units 604, including the signal addition. Decrypt, identify, compare, etc., and initiate related authentication procedures. The authentication interface unit 604 is configured to receive an interface between the identification signal (identification code) generated by the authentication device and the dynamic password input, such as a touch panel, a keyboard, and a non-contact type (such as using near field communication technology such as RFID). Or a contact-type (swipe-card) card reading device, etc., in this example, an external sensing interface 641 can be connected, such as a touch area, or a reader that can read the chip signal, and can also be connected to the input interface 642. , providing personnel input data.

保全裝置60具有記憶單元605,利用其中記憶體儲存認證資料,包括靜態儲存的資料,如記載認證上述認證裝置之識別碼的認證資料庫;亦可包括運算動態密碼之程式,經啟動動態密碼認證程序後,上述微處理單元601將載入相關運算程式,動態產生密碼,可與外部認證裝置同步。The security device 60 has a memory unit 605, wherein the memory stores the authentication data, including the statically stored data, such as an authentication database that records the identification code of the authentication device; and the program for calculating the dynamic password, and the dynamic password authentication is initiated. After the program, the above-mentioned micro processing unit 601 will load the relevant operation program, dynamically generate a password, and can synchronize with the external authentication device.

在本發明實施例中,多重安全管制保全系統特別是設計用於保護特定場所的進出入口,保全裝置60將設置於被保護主體64上,並可連結於被保護主體64之門鎖上,裝置60內設有門禁控制單元606,門禁控制單元606電性連接微處理單元601,連結於門鎖(如金庫之門鎖),為保全裝置60控制門鎖啟閉之控制電路,將根據微處理單元601於認證後產生的訊號驅動啟閉門鎖,門鎖比如是一種根據電訊號啟閉的電磁門鎖。In the embodiment of the present invention, the multiple security control security system is specially designed to protect the entrance and exit of a specific place, and the security device 60 is disposed on the protected body 64 and can be coupled to the door lock of the protected body 64. 60 is provided with an access control unit 606. The access control unit 606 is electrically connected to the micro processing unit 601, and is connected to the door lock (such as the door lock of the vault). The control circuit for controlling the opening and closing of the door lock for the security device 60 will be based on the micro processing. The signal generated by the unit 601 after the authentication drives the opening and closing door lock, and the door lock is, for example, an electromagnetic door lock that is opened and closed according to the electric signal.

若多重安全管制保全系統為執行動態密碼認證,保全裝置60包括動態密碼處理單元607,動態密碼處理單元607電性連接微處理單元601,根據微處理單元601所執行的認證程序,系統將可透過此具有運算能力的動態密碼處理單元607執行動態密碼程式,並可根據多重安全管制保全系統之資訊(如時間資訊)動態產生動態密碼。這些由動態密碼處理單元607所管理的認證資料多數為隨機變動的密碼,將隨著時間變動而改變,與相對的認證裝置進行同步,因此進入此被保護主體64的人員需要持有對應的密碼產生裝置才能正確執行認證。If the multiple security control system is to perform dynamic password authentication, the security device 60 includes a dynamic password processing unit 607, and the dynamic password processing unit 607 is electrically connected to the micro processing unit 601. According to the authentication procedure executed by the micro processing unit 601, the system will be transparent. The computing power-enabled dynamic cryptographic processing unit 607 executes a dynamic cryptographic program and dynamically generates dynamic ciphers based on information from multiple security control security systems, such as time information. The authentication data managed by the dynamic cryptographic processing unit 607 is mostly a randomly changing password, which will change with time and be synchronized with the opposite authentication device. Therefore, the person entering the protected subject 64 needs to hold the corresponding password. The generation device can perform authentication correctly.

保全裝置60外不可連接與人員溝通的顯示器631,內部具有電性連接微處理單元601的顯示單元603,用以處理顯示訊號,顯示器可用來顯示提示人員進行每一步動作,或是顯示認證結果,包括警告內容。The display device 631 is connected to the person outside the security device 60 and has a display unit 603 electrically connected to the micro processing unit 601 for processing the display signal. The display can be used to display the prompting person to perform each step or display the authentication result. Includes warning content.

為確保多重安全管制保全系統的安全性,保全裝置60的電力供應可以同時包括電力公司提供的交流電力(如電源682)與內部電池681提供的直流電力。裝置60內具有一電力管理單元608,用以管理裝置內的電力配置,包括監控裝置運作電力的狀態,確保裝置60穩定運作。To ensure the security of the multiple security control security system, the power supply of the security device 60 may include both AC power provided by the power company (such as the power source 682) and DC power provided by the internal battery 681. The device 60 has a power management unit 608 for managing the power configuration within the device, including monitoring the state of the device operating power, and ensuring that the device 60 operates stably.

保全裝置60提供感應接近物體的功能,如其中具有電性連接微處理單元601的接近感知單元609,外部連接一感應器691,利用光學、無線訊號感應、影像感測、溫度感測、或其他可根據環境變化判斷是否有物體接近的感應方式感測人員接近,使系統可進一步要求接近人員執行身份認證。The security device 60 provides a function of sensing proximity to an object, such as a proximity sensing unit 609 having an electrical connection to the microprocessor unit 601, externally coupled to an inductor 691, utilizing optical, wireless signal sensing, image sensing, temperature sensing, or other The sensing method can be judged according to the environmental change to determine whether an object is approaching, so that the system can further require the approaching person to perform identity authentication.

若以上述動態密碼執行認證的實施方式為例,可參閱 圖7所示之流程。For example, if the implementation of the above dynamic password is used for authentication, see The flow shown in Figure 7.

當於第一道認證程序或是第二道認證程序中啟動動態密碼程序時(步驟S701),對應之保全裝置內將根據系統資訊運算,以動態產生一組動態密碼(步驟S703),此例中,系統資訊可包括系統的時間資訊(71),或是由保全裝置感應到的另一感應裝置的資訊(72),藉著這些資訊產生密碼。When the dynamic password program is started in the first authentication program or the second authentication program (step S701), the corresponding security device will calculate a dynamic password according to the system information (step S703). The system information may include time information of the system (71) or information (72) of another sensing device sensed by the security device, by which the password is generated.

接著,保全裝置可透過所持的密碼產生器(如Token之類的憑證裝置75)上的顯示器提示人員相關的動態密碼(步驟S705),但不排除其他提示方式,如相關人員可透過持有的電話(74)接收一簡訊,簡訊中記載此次認證用的動態密碼。Then, the security device can prompt the person-related dynamic password through the display on the holding password generator (such as the token device 75 such as Token) (step S705), but does not exclude other prompting methods, such as the relevant personnel can hold through The telephone (74) receives a short message, and the dynamic password for the authentication is recorded in the newsletter.

人員收到動態密碼號,系統將於設定時間內進行認證,人員應於此期限內完成輸入(步驟S707)。The person receives the dynamic password number, the system will perform the authentication within the set time, and the personnel should complete the input within this period (step S707).

根據本發明實施例,多重安全管制保全系統主要是利用多重認證方式管制進出入人員,確保特定場所的安全性,於較佳實施例中,順序執行至少兩道認證程序,較佳為不同實施態樣的認證方式,如可於第一道認證程序中要求人員執行一密碼辨識,再於另一道認證程序中利用生物辨識方式(如語音、動作、指紋、掌紋、聲紋、虹膜、視網膜、靜脈辨識、臉部辨識…等),或是動態密碼等執行認證。當有錯誤認證的事件產生時,可以通知管制中心、顯示警告訊息,或是要求第二次身份確認。According to the embodiment of the present invention, the multiple security control security system mainly uses multiple authentication methods to control the entry and exit personnel to ensure the security of a specific location. In the preferred embodiment, at least two authentication procedures are sequentially executed, preferably different implementation states. Such a method of authentication, such as requiring a person to perform a password identification in the first authentication procedure, and then using a biometric method (such as voice, motion, fingerprint, palm print, voiceprint, iris, retina, vein) in another authentication procedure Identification, face recognition, etc.), or dynamic passwords to perform authentication. When an event with a false authentication occurs, the control center can be notified, a warning message can be displayed, or a second identity confirmation can be requested.

因此,本揭露書描述的多重安全管制保全系統與保全訊息處理方法係利用了不同態樣的二或多重的認證程序確保特定場所的安全性。Therefore, the multiple security control security system and the security message processing method described in the present disclosure utilize different aspects of two or more authentication procedures to ensure the security of a specific place.

惟以上所述僅為本發明之較佳可行實施例,非因此即侷限本發明之專利範圍,故舉凡運用本發明說明書及圖示內容所為之等效結構變化,均同理包含於本發明之範圍內,合予陳明。However, the above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention. Therefore, equivalent structural changes that are made by using the specification and the contents of the present invention are equally included in the present invention. Within the scope, it is combined with Chen Ming.

10‧‧‧主動式無線射頻單元10‧‧‧Active radio frequency unit

101‧‧‧第一天線101‧‧‧first antenna

103‧‧‧晶片103‧‧‧ wafer

14‧‧‧感測裝置14‧‧‧Sensing device

12‧‧‧控制主機12‧‧‧Control host

123‧‧‧接收器123‧‧‧ Receiver

121‧‧‧第二天線121‧‧‧second antenna

125‧‧‧處理器125‧‧‧ processor

16‧‧‧警報器16‧‧‧Alarm

22‧‧‧人員22‧‧‧ Personnel

20‧‧‧保全裝置20‧‧‧Security device

203‧‧‧無線感應器203‧‧‧Wireless sensor

204‧‧‧輸入介面204‧‧‧Input interface

2‧‧‧金庫2‧‧ ‧ treasury

201‧‧‧出入口201‧‧‧ entrances and exits

205‧‧‧感應卡片205‧‧‧Induction card

40‧‧‧多重安全管制保全系統40‧‧‧Multiple Security Control System

4‧‧‧管制中心4‧‧‧Control Center

42‧‧‧被保護主體42‧‧‧Protected subject

43‧‧‧認證裝置43‧‧‧Authorized device

44‧‧‧密碼44‧‧‧ password

401‧‧‧微處理器401‧‧‧Microprocessor

403‧‧‧認證介面403‧‧‧Authentication interface

405‧‧‧通訊模組405‧‧‧Communication Module

407‧‧‧門禁控制單元407‧‧‧Access Control Unit

409‧‧‧門鎖409‧‧‧door lock

402‧‧‧記憶體402‧‧‧ memory

62‧‧‧管制中心62‧‧‧Control Center

64‧‧‧被保護主體64‧‧‧Protected subject

601‧‧‧微處理單元601‧‧‧Microprocessing unit

602‧‧‧通訊單元602‧‧‧Communication unit

603‧‧‧顯示單元603‧‧‧Display unit

604‧‧‧認證介面單元604‧‧‧Certified interface unit

605‧‧‧記憶單元605‧‧‧ memory unit

606‧‧‧門禁控制單元606‧‧‧Access Control Unit

607‧‧‧動態密碼處理單元607‧‧‧Dynamic cryptographic processing unit

608‧‧‧電力管理單元608‧‧‧Power Management Unit

609‧‧‧接近感知單元609‧‧‧Proximity sensing unit

60‧‧‧保全裝置60‧‧‧Security device

631‧‧‧顯示器631‧‧‧ display

641‧‧‧感應介面641‧‧‧Induction interface

642‧‧‧輸入介面642‧‧‧Input interface

691‧‧‧感應器691‧‧‧ sensor

681‧‧‧電池681‧‧‧Battery

682‧‧‧電源682‧‧‧Power supply

71‧‧‧系統時間71‧‧‧System time

72‧‧‧感應裝置資訊72‧‧‧Induction device information

73‧‧‧電話73‧‧‧Phone

74‧‧‧憑證裝置74‧‧‧Voucher device

步驟S301~S313‧‧‧保全訊息處理流程之一Step S301~S313‧‧‧One of the security message processing procedures

步驟S501~S513‧‧‧保全訊息處理流程之二Step S501~S513‧‧‧Security message processing process 2

步驟S701~S707‧‧‧動態密碼處理流程Step S701~S707‧‧‧Dynamic password processing flow

圖1顯示為習知技術主動式RFID門鎖保全控制結構示意圖;圖2揭示本發明多重安全管制保全系統的使用實施例示意圖;圖3所示之流程描述本發明保全訊息處理方法的實施例之一步驟;圖4揭露本發明多重安全管制保全系統的實施例示意圖;圖5所示之流程描述本發明保全訊息處理方法的實施例之二步驟;圖6顯示本發明系統的實施例示意圖;圖7所示之流程描述本發明動態密碼的運作步驟。1 is a schematic diagram of a conventional RFID active door lock security control structure; FIG. 2 is a schematic diagram showing a use embodiment of the multiple security control security system of the present invention; FIG. 3 is a flow chart showing an embodiment of the security message processing method of the present invention. FIG. 4 is a schematic diagram showing an embodiment of a multiple security control security system of the present invention; FIG. 6 is a flowchart showing an embodiment of the security message processing method of the present invention; FIG. 6 is a schematic diagram showing an embodiment of the system of the present invention; The flow shown in Figure 7 describes the operational steps of the dynamic password of the present invention.

4‧‧‧管制中心4‧‧‧Control Center

42‧‧‧被保護主體42‧‧‧Protected subject

43‧‧‧認證裝置43‧‧‧Authorized device

44‧‧‧密碼44‧‧‧ password

401‧‧‧微處理器401‧‧‧Microprocessor

402‧‧‧記憶體402‧‧‧ memory

403‧‧‧認證介面403‧‧‧Authentication interface

405‧‧‧通訊模組405‧‧‧Communication Module

407‧‧‧門禁控制單元407‧‧‧Access Control Unit

409‧‧‧門鎖409‧‧‧door lock

40‧‧‧多重安全管制保全系統40‧‧‧Multiple Security Control System

Claims (9)

一種多重安全管制保全系統,係連結於一被保護主體,該系統至少包括:一連線於該保全裝置之一管制中心,該管制中心接收該保全裝置之訊號;一連結於該被保護主體之保全裝置,該保全裝置包括:一微處理單元,執行該保全裝置內各元件訊號處理的;一認證介面單元,接受一人員執行身份認證,該認證介面單元電性連接該微處理單元,其中該認證介面單元係於第一道認證程序中讀取自該人員所持之一晶片卡、一無線電收發器所載的識別資料或進行生物辨識所產生的識別資料;該認證介面單元係於第二道認證程序中接收該人員根據一認證裝置所顯示而輸入的動態密碼;一門禁控制單元,連結於該被保護主體之一門鎖,該門禁控制單元電性連接該微處理單元,為該保全裝置控制該門鎖啟閉之控制電路;一通訊單元,該保全裝置藉該通訊單元連線於該管制中心,該通訊單元電性連接該微處理單元;以及一記憶單元,該記憶單元電性連接該微處理單元,用以記載認證該人員的識別資料與運算該動態密碼之程式。 A multiple security control security system is coupled to a protected entity, the system comprising: at least one control center connected to the security device, the control center receiving the signal of the security device; and being connected to the protected entity The security device includes: a micro processing unit that performs signal processing of each component in the security device; an authentication interface unit that accepts a person to perform identity authentication, and the authentication interface unit is electrically connected to the micro processing unit, wherein the security device The authentication interface unit reads the identification data generated by one of the wafer cards held by the person, the identification data contained in the radio transceiver, or the biometric identification in the first authentication procedure; the authentication interface unit is in the second channel. The authentication program receives a dynamic password input by the person according to the display of an authentication device; an access control unit is connected to a door lock of the protected object, and the access control unit is electrically connected to the micro processing unit for controlling the security device a control circuit for opening and closing the door lock; a communication unit, wherein the security device is connected to the communication unit Control center, the communication unit is electrically connected to the microprocessor unit; and a memory unit, the memory unit electrically connected to the microprocessor unit, according to the authentication identifying information of the operational personnel of the OTP Program. 如申請專利範圍第1項所述的多重安全管制保全系統,其中該保全裝置更包括執行該動態密碼之程式,並根據該多重安全管制保全系統之時間資訊產生該動態密碼的一動態密碼處理單元,該動態密碼處理單元電性連接該微處理單元。 The multiple security control security system of claim 1, wherein the security device further comprises a program for executing the dynamic password, and generating a dynamic password processing unit of the dynamic password according to the time information of the multiple security control security system. The dynamic cryptographic processing unit is electrically connected to the micro processing unit. 如申請專利範圍第1項所述的多重安全管制保全系統,其中該被保護主體為一金庫,該門禁控制單元係連結於該金庫之門鎖。 The multiple security control security system of claim 1, wherein the protected subject is a vault, and the access control unit is coupled to the vault of the vault. 如申請專利範圍第1項所述的多重安全管制保全系統,其中該保全裝置更包括電性連接該微處理單元之一接近感知單元,其中於該接近感知單元感測到該人員接近後,要求該人員執行身份認證。 The multiple security control security system of claim 1, wherein the security device further comprises one of the proximity processing units electrically connected to the micro processing unit, wherein the proximity sensing unit senses that the person is close to the request This person performs identity authentication. 一種應用於一多重安全管制保全系統的保全訊息處理方法,其中該多重安全管制保全系統包括連結於一被保護主體的一保全裝置,包括:於一人員接近該保全裝置時,啟動一第一道認證程序,要求該人員執行第一次認證,係以該保全裝置中的一認證介面單元讀取一晶片卡、一無線電收發器所載的識別資料,或進行生物辨識所產生的識別資料;若第一次認證失敗,發出一第一次警示訊息,或是重新執行該第一道認證程序;若第一次認證成功,啟動一第二道認證程序,要求該人員執行第二次認證,係以該保全裝置中的該認證介面單元接收該人員根據一認證裝置所顯示而輸入 的動態密碼;若第二次認證失敗,發出一第二次警示訊息,或是重新執行該第二道認證程序或該第一道認證程序;若第二次認證成功,完成該多重安全管制保全系統的認證程序,開啟該被保護主體之門鎖。 A security message processing method for a multiple security control security system, wherein the multiple security control security system includes a security device coupled to a protected entity, including: when a person approaches the security device, initiates a first The channel authentication procedure requires the person to perform the first authentication by reading an identification card contained in a chip card, a radio transceiver, or identification data generated by biometric identification by an authentication interface unit in the security device; If the first authentication fails, a first warning message is sent, or the first authentication procedure is re-executed; if the first authentication is successful, a second authentication procedure is initiated, and the person is required to perform the second authentication. Receiving, by the authentication interface unit in the security device, the person input according to the display by an authentication device Dynamic password; if the second authentication fails, a second warning message is sent, or the second authentication procedure or the first authentication procedure is re-executed; if the second authentication is successful, the multiple security control preservation is completed. The system's authentication program opens the door lock of the protected subject. 如申請專利範圍第5項所述的保全訊息處理方法,其中於該人員使用該晶片卡接近該保全裝置時,啟動該第一道認證程序,該第一道認證程序更包括:該保全裝置接收該晶片卡所傳遞之一識別碼;以及於接收該晶片卡的識別資料後,比對該保全裝置內的一認證資料庫,確認該識別資料是否為安全名單;若該識別資料非為安全名單,則第一次認證失敗;若該識別資料為安全名單,則第一次認證成功。 The method for processing a security message according to claim 5, wherein the first authentication procedure is initiated when the person uses the wafer card to access the security device, the first authentication procedure further comprising: receiving the security device Receiving, by the chip card, an identification code; and after receiving the identification data of the wafer card, confirming whether the identification data is a safe list compared to an authentication database in the security device; if the identification data is not a security list The first authentication fails; if the identification data is a security list, the first authentication is successful. 如申請專利範圍第6項所述的保全訊息處理方法,其中該晶片卡與該保全裝置之間係以一射頻識別通訊方法連線。 The method for processing a security message according to claim 6, wherein the chip card and the security device are connected by a radio frequency identification communication method. 如申請專利範圍第5項所述的保全訊息處理方法,其中於該第一次認證成功,啟動該第二道認證程序,該第二道認證程序包括:該保全裝置接收該動態密碼,經該保全裝置確認該動態密碼是否正確;若該密碼不正確,則第二次認證失敗;以及若該密碼正確,則第二次認證成功。 The method for processing a security message according to claim 5, wherein the second authentication procedure is started after the first authentication is successful, and the second authentication procedure comprises: the security device receiving the dynamic password, The security device confirms whether the dynamic password is correct; if the password is incorrect, the second authentication fails; and if the password is correct, the second authentication succeeds. 如申請專利範圍第8項所述的保全訊息處理方法,其中 該動態產生的動態密碼係為該保全裝置根據該多重安全管制保全系統的時間資料產生,並提示於該人員;該保全裝置之一記憶單元記載運算該動態密碼之程式。 The method for processing a security message as described in claim 8 of the patent application, wherein The dynamic generated dynamic password is generated by the security device according to the time data of the multiple security control security system, and is presented to the person; and one of the security devices records the program for calculating the dynamic password.
TW101114688A 2012-04-25 2012-04-25 Security system with mulitple safety controls and method for processing the security signals TWI452204B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW101114688A TWI452204B (en) 2012-04-25 2012-04-25 Security system with mulitple safety controls and method for processing the security signals

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW101114688A TWI452204B (en) 2012-04-25 2012-04-25 Security system with mulitple safety controls and method for processing the security signals

Publications (2)

Publication Number Publication Date
TW201344026A TW201344026A (en) 2013-11-01
TWI452204B true TWI452204B (en) 2014-09-11

Family

ID=49990109

Family Applications (1)

Application Number Title Priority Date Filing Date
TW101114688A TWI452204B (en) 2012-04-25 2012-04-25 Security system with mulitple safety controls and method for processing the security signals

Country Status (1)

Country Link
TW (1) TWI452204B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI614391B (en) * 2017-03-17 2018-02-11 I Tek Metal Manufacturing Co Ltd Locking device control system

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI722752B (en) * 2020-01-03 2021-03-21 大鵬科技股份有限公司 Smart home security system and method of disarming a security setting

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW513512B (en) * 2002-03-08 2002-12-11 Li-Chiau Wu Security lock system and the administration way thereof

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW513512B (en) * 2002-03-08 2002-12-11 Li-Chiau Wu Security lock system and the administration way thereof

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI614391B (en) * 2017-03-17 2018-02-11 I Tek Metal Manufacturing Co Ltd Locking device control system

Also Published As

Publication number Publication date
TW201344026A (en) 2013-11-01

Similar Documents

Publication Publication Date Title
US11170592B2 (en) Electronic access control system
US20170264608A1 (en) Visual biometric authentication supplemented with a time-based secondary authentication factor
JP6188938B2 (en) Security card for performing fingerprint authentication, security card processing system using the same, and processing method therefor
US20180262891A1 (en) Electronic access control systems and methods using near-field communications, mobile devices and cloud computing
KR101668958B1 (en) Security system using a mobile smart terminal and facial recognition
US20170195322A1 (en) Entry and exit control method and apparatus, and user terminal and server for the same
CN103390297A (en) Multiple security control security system and security information processing method
US20080028230A1 (en) Biometric authentication proximity card
JP2018515830A (en) System and apparatus for biometric authentication and authorization of a unique user
US20130076482A1 (en) Secure access system employing biometric identification
WO2016054263A1 (en) Biometric device pairing
KR101345018B1 (en) Teminal and security certification system therewith
CN108701383A (en) Attack resistance bio-identification authorization device
KR20150134806A (en) System and method for controlling entrance and exit
JP5359848B2 (en) IC card authentication system and IC card authentication method
US9111084B2 (en) Authentication platform and related method of operation
KR20180087088A (en) User authentication system using face recognition and biometric authentication card, and method thereof
JP2004348478A (en) Authentication system using ic card and ic card
Govindraj et al. Smart door using biometric NFC band and OTP based methods
KR20150056711A (en) Access management system using smart access card and method
TWM439229U (en) Security apparatus with mulitple safety controls and system using the same
JP4274283B1 (en) ID signal transmission device provided with biometric authentication means
KR20140093556A (en) Security System Using Two factor Authentication And Security Method of Electronic Equipment Using Thereof
KR101219957B1 (en) Authentication method, device and system using biometrics and recording medium for the same
TWI452204B (en) Security system with mulitple safety controls and method for processing the security signals