[go: up one dir, main page]

CN111711634A - ID card reading system and method based on card body information - Google Patents

ID card reading system and method based on card body information Download PDF

Info

Publication number
CN111711634A
CN111711634A CN202010580085.0A CN202010580085A CN111711634A CN 111711634 A CN111711634 A CN 111711634A CN 202010580085 A CN202010580085 A CN 202010580085A CN 111711634 A CN111711634 A CN 111711634A
Authority
CN
China
Prior art keywords
card
information
identity card
verification
nfc
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010580085.0A
Other languages
Chinese (zh)
Inventor
徐乐
刘光耀
周昕
卢煜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
First Research Institute of Ministry of Public Security
Original Assignee
First Research Institute of Ministry of Public Security
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by First Research Institute of Ministry of Public Security filed Critical First Research Institute of Ministry of Public Security
Priority to CN202010580085.0A priority Critical patent/CN111711634A/en
Publication of CN111711634A publication Critical patent/CN111711634A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K17/00Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
    • G06K17/0022Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisions for transferring data to distant stations, e.g. from a sensing device
    • G06K17/0029Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations arrangements or provisions for transferring data to distant stations, e.g. from a sensing device the arrangement being specially adapted for wireless interrogation of grouped or bundled articles tagged with wireless record carriers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04BTRANSMISSION
    • H04B5/00Near-field transmission systems, e.g. inductive or capacitive transmission systems
    • H04B5/70Near-field transmission systems, e.g. inductive or capacitive transmission systems specially adapted for specific purposes
    • H04B5/77Near-field transmission systems, e.g. inductive or capacitive transmission systems specially adapted for specific purposes for interrogation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0464Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload using hop-by-hop encryption, i.e. wherein an intermediate entity decrypts the information and re-encrypts it before forwarding it
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Telephonic Communication Services (AREA)

Abstract

本发明公开了一种基于卡体信息的身份证识读系统和方法。其中,基于卡体信息的身份证识读系统,包括:NFC身份证读取终端、身份证核验网关、中心业务服务器和核查数据库;NFC身份证读取终端采用普遍集成的NFC近场通信技术识读身份证的卡体信息,然后将卡体信息通过身份证核验网关传递到中心业务服务器,中心业务服务器通过卡体信息联网查询核查数据库,获取身份证全项信息并将之返回,实现身份证信息的在线识读。在上述身份证识读过程中,NFC身份证读取终端与身份证之间只需一次交互即可识读身份证全项数据。并且,在上述识别过程中,使用居民身份证的卡体信息作为查询依据,通过后端在线核查身份证信息,将识读压力由前端改为后端,提高了处理速度。

Figure 202010580085

The invention discloses an ID card reading system and method based on card body information. Among them, the ID card reading system based on card body information includes: NFC ID card reading terminal, ID card verification gateway, central business server and verification database; NFC ID card reading terminal adopts the universally integrated NFC near field communication technology to recognize Read the card body information of the ID card, and then transmit the card body information to the central business server through the ID card verification gateway. Online reading of information. In the above ID card reading process, only one interaction between the NFC ID card reading terminal and the ID card can be used to read the entire data of the ID card. Moreover, in the above identification process, the card body information of the resident ID card is used as the query basis, and the ID card information is checked online through the back end, and the reading pressure is changed from the front end to the back end, which improves the processing speed.

Figure 202010580085

Description

基于卡体信息的身份证识读系统和方法ID card reading system and method based on card body information

技术领域technical field

本发明涉及一种基于卡体信息的身份证识读系统,同时涉及基于卡体信息的身份证识读方法。The invention relates to an ID card reading system based on card body information, and also relates to an ID card reading method based on card body information.

背景技术Background technique

近年来,移动互联网应用程序(Application,简称App)大量涌现,网络空间急需重新规划能与“人”绑定的安全服务机制,身份认证与核验成为保障网络安全可控的一种有效途径。第二代居民身份证作为中国居民最可靠、最普及的法定证件,在网络空间,通过对身份证的识读,可实现建立信任、办理任务的第一步。In recent years, a large number of mobile Internet applications (Application, referred to as App) have emerged, and the cyberspace urgently needs to re-plan the security service mechanism that can be bound to "people". Identity authentication and verification have become an effective way to ensure controllable network security. The second-generation resident ID card is the most reliable and popular legal document for Chinese residents. In cyberspace, by reading the ID card, the first step in building trust and handling tasks can be achieved.

目前主流的身份证识读技术是采用读取终端上内置或外接的蓝牙、射频等通讯方式读取身份证,由身份证解码模块(即SAM模块)与身份证多次握手交互获得加密的身份证信息片段,再对加密片段进行解密,获得身份证全项数据。其中,SAM模块集成在身份证读取终端。The current mainstream ID card reading technology is to use the built-in or external Bluetooth, radio frequency and other communication methods on the reading terminal to read the ID card, and the ID card decoding module (ie the SAM module) interacts with the ID card multiple times to obtain an encrypted identity. Then decrypt the encrypted fragment to obtain the full data of the ID card. Among them, the SAM module is integrated in the ID card reading terminal.

为实现身份认证、身份证解码等功能,现有的身份证识读技术的实现过程如图1所示,包括如下步骤:(1)主控制器单元接收到相关对身份证的识别指令;(2)主控制器单元与射频控制单元进行信令交互,由天线控制单元向外发射一定频率的射频信号;(3)当有二代身份证靠近射频信号区时,该身份证内的芯片被激活,并将芯片内的居民身份信息发射出去;(4)发射信号被射频天线接收,传递给射频控制单元;(5)射频控制单元将居民身份证信息发送至主控制器;(6)主控制器将接收的居民身份证信息发送至SAM控制单元请求认证;(7)SAM控制单元对居民身份证信息进行解析比对;(8)若比对成功,则身份证验证通过,若比对失败,则身份证验证不通过。其中,身份证读取终端与居民身份证交互的情景如图2所示,在身份证识读的过程中,身份证读取终端与居民身份证之间需要多次交互,若中途失败,则需重新读取,影响读取效率。In order to realize functions such as identity authentication and ID card decoding, the realization process of the existing ID card reading technology is shown in Figure 1, including the following steps: (1) the main controller unit receives the relevant identification instructions for the ID card; ( 2) The main controller unit and the radio frequency control unit perform signaling interaction, and the antenna control unit transmits radio frequency signals of a certain frequency; (3) When there is a second-generation ID card close to the radio frequency signal area, the chip in the ID card is blocked. activate and transmit the resident identity information in the chip; (4) the transmitted signal is received by the radio frequency antenna and transmitted to the radio frequency control unit; (5) the radio frequency control unit sends the resident identity card information to the main controller; (6) the main The controller sends the received resident identity card information to the SAM control unit to request authentication; (7) the SAM control unit analyzes and compares the resident identity card information; (8) if the comparison is successful, the identity card verification is passed, if the comparison is successful If it fails, the ID verification fails. Among them, the interaction between the ID card reading terminal and the resident ID card is shown in Figure 2. During the process of ID card reading, the ID card reading terminal and the resident ID card need to interact multiple times. It needs to be read again, which affects the reading efficiency.

此外,目前主要的身份证核验装置多受限于三方面:(1)身份证的读取方式:身份证的读取方式主要有基于射频装置的身份证阅读机具、基于蓝牙的外置身份证阅读器等,前者体积庞大,无法随身携带,还需通过电脑显示信息;后者是与移动通信装置分离的外置二代身份证阅读器,不能实现单手操作,不满足移动便携的需求。(2)联网核查:传统的身份证读取装置一般只有离线阅读身份证的功能,无法在线核查身份信息及核验信息的有效性,对于黑名单人员、重点人员等信息无法联网核验,不利于公安业务联动。(3)硬件受限:身份证的读取装置以及联网装置多为专用硬件设备,用户需购买专用设备才能完成核验功能,硬件条件受限。In addition, the current main ID verification devices are mostly limited in three aspects: (1) How to read ID cards: ID card reading methods mainly include ID card reading machines based on radio frequency devices, and external ID cards based on Bluetooth. Readers, etc., the former is bulky and cannot be carried around, and information needs to be displayed through a computer; the latter is an external second-generation ID card reader separated from the mobile communication device, which cannot be operated with one hand and does not meet the needs of mobile portability. (2) Online verification: The traditional ID card reading device generally only has the function of reading ID cards offline, and cannot verify the identity information and the validity of the verification information online. It cannot verify the information of blacklisted personnel and key personnel online, which is not conducive to the public security. Business linkage. (3) Limited hardware: Most of the ID card reading devices and networking devices are dedicated hardware devices. Users need to purchase dedicated devices to complete the verification function, and the hardware conditions are limited.

发明内容SUMMARY OF THE INVENTION

本发明所要解决的首要技术问题在于提供一种基于卡体信息的身份证识读系统。The primary technical problem to be solved by the present invention is to provide an ID card reading system based on card body information.

本发明所要解决的另一技术问题在于提供一种基于卡体信息的身份证识读方法。Another technical problem to be solved by the present invention is to provide an ID card reading method based on card body information.

为了实现上述技术目的,本发明采用下述技术方案:In order to realize above-mentioned technical purpose, the present invention adopts following technical scheme:

根据本发明实施例的第一方面,提供一种基于卡体信息的身份证识读系统,包括:According to a first aspect of the embodiments of the present invention, an ID card reading system based on card body information is provided, including:

NFC身份证读取终端,所述NFC身份证读取终端用于通过NFC近场通信技术读取身份证的卡体信息,并用于对卡体信息及终端信息进行加密签名,并发送给身份证核验网关;NFC ID card reading terminal, the NFC ID card reading terminal is used to read the card body information of the ID card through NFC near field communication technology, and is used to encrypt and sign the card body information and the terminal information, and send it to the ID card verification gateway;

身份证核验网关,所述身份证核验网关用于接收所述NFC身份证读取终端的请求信息,并对验签通过的信息进行解析,获得身份证卡体信息和终端信息,然后对身份证卡体信息、终端信息和网关信息进行加密和签名,并将经过身份证核验网关处理的信息发送到中心业务服务器;ID card verification gateway, the ID card verification gateway is used to receive the request information of the NFC ID card reading terminal, parse the information passed through the signature verification, obtain the ID card body information and terminal information, and then verify the ID card The card body information, terminal information and gateway information are encrypted and signed, and the information processed by the ID card verification gateway is sent to the central business server;

中心业务服务器和核查数据库,所述中心业务服务器用于接收身份证核验网关的请求信息,并对验签通过的信息进行解析,获得身份证卡体信息,并根据身份证卡体信息从所述核查数据库中查询身份证全项数据,然后对身份证全项数据进行加密签名保护,并将之通过身份证核验网关返回到NFC身份证读取终端。The central business server and the verification database, the central business server is used to receive the request information from the ID card verification gateway, parse the information passed through the signature verification, obtain the ID card body information, and obtain the ID card body information according to the ID card body information. Check the ID card full item data in the verification database, then encrypt and sign the ID card full item data, and return it to the NFC ID card reading terminal through the ID card verification gateway.

其中较优地,所述NFC身份证读取终端包括身份证核验中间件;Preferably, the NFC ID card reading terminal includes an ID card verification middleware;

所述身份证核验中间件包括身份证信息安全读取组件、加密模块和签名模块;其中,所述身份证信息安全读取组件用于对身份证卡体信息进行读取识别,并用于对读取到的身份证卡体信息进行一次加密;所述加密模块用于对经过一次加密的身份证卡体信息和终端信息再次进行加密;所述签名模块用于对加密模块处理后的信息进行签名;所述加密模块还用于对从所述身份证核验网关返回的信息进行解密。The ID card verification middleware includes an ID card information security reading component, an encryption module and a signature module; wherein, the ID card information security reading component is used to read and identify the ID card body information, and is used to read and identify the ID card information. The obtained ID card body information is encrypted once; the encryption module is used to encrypt the ID card body information and terminal information once encrypted; the signature module is used to sign the information processed by the encryption module ; The encryption module is also used to decrypt the information returned from the ID card verification gateway.

其中较优地,所述身份证核验中间件用于为多个客户端APP提供统一的身份证核验基础库接口。Preferably, the ID card verification middleware is used to provide a unified ID card verification basic library interface for multiple client APPs.

其中较优地,所述NFC身份证读取终端通过NFC通信模块读取身份证的卡体信息;所述NFC通信模块是集成在所述NFC身份证读取终端内部的终端NFC模块,或者,所述NFC通信模块是与所述NFC身份证读取终端连接的外扩NFC读卡器。Preferably, the NFC ID card reading terminal reads the card body information of the ID card through an NFC communication module; the NFC communication module is a terminal NFC module integrated in the NFC ID card reading terminal, or, The NFC communication module is an externally expanded NFC card reader connected to the NFC ID card reading terminal.

其中较优地,所述身份证核验网关和/或所述中心业务服务器采用双机热备技术。Preferably, the ID card verification gateway and/or the central service server adopts the dual-machine hot backup technology.

其中较优地,所述核查数据库中存储有身份证全项信息,并且可关联与身份证全项信息相关的其他信息。Preferably, the verification database stores the full-item information of the ID card, and can be associated with other information related to the full-item information of the ID card.

其中较优地,所述基于卡体信息的身份证识读系统还包括与中心业务服务器连接的监测中心,所述监测中心用于与所述身份证核验网关交互,并记录业务日志信息。Preferably, the ID card reading system based on the card body information further includes a monitoring center connected to the central business server, and the monitoring center is used for interacting with the ID card verification gateway and recording business log information.

其中较优地,所述NFC身份证读取终端与身份证核验网关之间采用APN专线,与互联网进行物理隔离,同时,所述身份证核验网关与所述中心业务服务器之间采用安全边界进行物理隔离。Preferably, an APN dedicated line is used between the NFC ID card reading terminal and the ID card verification gateway, which is physically isolated from the Internet, and at the same time, a security boundary is used between the ID card verification gateway and the central service server. Physical isolation.

根据本发明实施例的第二方面,提供一种基于卡体信息的身份证识读方法,包括如下步骤:According to a second aspect of the embodiments of the present invention, a method for reading an ID card based on card body information is provided, including the following steps:

(1)NFC身份证读取终端通过NFC近场通信技术读取居民身份证的卡体信息,并采集终端信息,然后对身份证卡体信息和终端信息进行加密和签名,然后封装成请求,发送到身份证核验网关;(1) The NFC ID card reading terminal reads the card body information of the resident ID card through NFC near field communication technology, and collects the terminal information, then encrypts and signs the ID card body information and the terminal information, and then encapsulates it into a request, Sent to the ID verification gateway;

(2)身份证核验网关接收NFC身份证读取终端的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得身份证卡体信息和终端信息,再对身份证卡体信息、终端信息和网关信息进行加密和签名,然后封装成请求,发送给中心业务服务器;(2) The ID verification gateway receives the request information from the NFC ID card reading terminal, and verifies the integrity and reliability of the message. If the verification is passed, it parses the request data, obtains the ID card body information and terminal information, and then verifies the identity The card body information, terminal information and gateway information are encrypted and signed, then encapsulated into a request and sent to the central business server;

(3)中心业务服务器接收身份证核验网关的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得身份证卡体信息,根据身份证卡体信息查询核查数据库,若卡体信息有效,则可获得身份证全项数据,对其进行加密、签名保护,返回到身份证核验网关;(3) The central business server receives the request information from the ID card verification gateway, and verifies the integrity and reliability of the message. If the verification is passed, it parses the request data, obtains the ID card body information, and queries the verification database according to the ID card body information. , if the card body information is valid, the entire ID card data can be obtained, encrypted and signed, and returned to the ID card verification gateway;

(4)身份证核验网关收到中心业务服务器返回的数据后,验证数据完整性和可靠性,若验签通过,则进行解密,再对解密后的身份证全项数据加密、签名,返回到NFC身份证读取终端;(4) After the ID card verification gateway receives the data returned by the central business server, it verifies the integrity and reliability of the data. If the verification is passed, it decrypts, and then encrypts and signs the decrypted ID card data, and returns to the NFC ID card reading terminal;

(5)NFC身份证读取终端收到身份证核验网关返回的数据后,验证数据完整性及可靠性,若验签通过,则解密得到身份证全项数据。(5) After the NFC ID card reading terminal receives the data returned by the ID card verification gateway, it verifies the integrity and reliability of the data, and if the verification is passed, it decrypts to obtain the full data of the ID card.

其中较优地,所述基于卡体信息的身份证识读方法还包括步骤(6):监测中心全程记录业务日志信息,管理员可通过监测中心查看分布在各地的身份证核验网关的运行情况。Preferably, the ID card reading method based on the card body information further includes step (6): the monitoring center records the business log information in the whole process, and the administrator can check the operation status of the ID card verification gateways distributed in various places through the monitoring center .

本发明所提供的基于卡体信息的身份证识读系统,其中,NFC身份证读取终端采用普遍集成的NFC近场通信技术识读身份证的卡体信息,然后通过身份证核验网关将身份证卡体信息发送给中心业务服务器,中心业务服务器通过身份证卡体信息联网查询核查数据库,获取身份证全项信息,实现身份证信息的在线识读。在上述身份证识读过程中,NFC身份证读取终端与身份证之间只需一次交互即可识读身份证的卡体信息,进而通过后台核查数据库获得身份证全项信息。上述身份证识读系统,使用居民身份证的卡体信息作为查询依据,通过后端在线核查身份证全项信息,而非传统的基于SAM模块在前端离线解析身份证全项信息的方式,将识读压力由前端改为后端,提高了处理速度。The ID card reading system based on the card body information provided by the present invention, wherein, the NFC ID card reading terminal adopts the generally integrated NFC near field communication technology to read the card body information of the ID card, and then passes the ID card verification gateway. The card body information is sent to the central business server, and the central business server queries and checks the database through the ID card body information network, obtains the full information of the ID card, and realizes the online reading of the ID card information. In the above ID card reading process, the NFC ID card reading terminal and the ID card only need one interaction to read the card body information of the ID card, and then obtain the full ID card information through the background verification database. The above-mentioned ID card reading system uses the card body information of the resident ID card as the query basis, and checks the full information of the ID card online through the back-end, instead of the traditional method of analyzing the full-item information of the ID card offline based on the SAM module at the front end. The reading pressure is changed from the front end to the back end, which improves the processing speed.

附图说明Description of drawings

图1是现有技术中的身份证识读技术的实现流程图;Fig. 1 is the realization flow chart of the ID card reading technology in the prior art;

图2是现有身份证识读技术中,身份证读取终端与身份证交互情景示意;Figure 2 is a schematic diagram of the interaction between the ID card reading terminal and the ID card in the existing ID card reading technology;

图3是本发明所提供的基于卡体信息的身份证识别系统的结构图;Fig. 3 is the structure diagram of the ID card identification system based on card body information provided by the present invention;

图4是本发明所提供的系统中,第一种身份证读取终端与身份证交互的情景示意;4 is a schematic diagram of the interaction between the first ID card reading terminal and the ID card in the system provided by the present invention;

图5是本发明所提供的系统中,第二种身份证读取终端与身份证交互的情景示意;5 is a schematic diagram of the interaction between the second ID card reading terminal and the ID card in the system provided by the present invention;

图6是利用本发明所提供的身份证识别方法实现身份证核验的流程示意图;Fig. 6 is the schematic flow chart that utilizes the ID card identification method provided by the present invention to realize ID card verification;

图7是利用本发明所提供的身份证识别方法实现人员车辆信息核查的流程示意图;Fig. 7 is the schematic flow chart of utilizing the ID card identification method provided by the present invention to realize the verification of personnel and vehicle information;

图8是利用本发明所提供的身份证识别方法实现移动证书申请的流程示意图。FIG. 8 is a schematic flowchart of implementing a mobile certificate application using the ID card identification method provided by the present invention.

具体实施方式Detailed ways

下面结合附图和具体的实施例对本发明的技术方案进行进一步地详细描述。The technical solutions of the present invention will be described in further detail below with reference to the accompanying drawings and specific embodiments.

移动互联网应用程序(Application,简称App)大量涌现,网络空间急需重新规划能与“人”绑定的安全服务机制,身份认证与核验成为保障网络安全可控的一种有效途径,在网络空间通过对身份证的核验,实现建立信任、办理任务的第一步。一方面,对安全性有较高要求的用户,如公安和其他政企客户,在使用各种APP应用,特别是与重点库、重点业务有关的应用时需要与人绑定,通过对身份证的核验,不仅可以核验用户身份信息的有效性,还可以获取用户的身份证全项数据,用于查询调用其他业务。另一方面,为方便人们的出行,同时确保公共场所及重要场合的安全,机场、火车站、医院、自助机等许多场景需要各种各样的身份证核验装置。为此,需要提供一种结构简单、成本低廉、便于推广的身份证识读系统,用于身份证核查。A large number of mobile Internet applications (Application, referred to as App) have emerged, and the cyberspace urgently needs to re-plan the security service mechanism that can bind with "people". Identity authentication and verification have become an effective way to ensure network security and controllability. The verification of ID cards is the first step in building trust and handling tasks. On the one hand, users who have high security requirements, such as public security and other government and enterprise customers, need to bind with people when using various APP applications, especially those related to key libraries and key businesses. It can not only verify the validity of the user's identity information, but also obtain all the data of the user's ID card, which can be used to query and call other services. On the other hand, in order to facilitate people's travel and ensure the safety of public places and important occasions, many scenarios such as airports, railway stations, hospitals, and self-service machines require various ID verification devices. Therefore, it is necessary to provide an ID card reading system with simple structure, low cost, and easy promotion, which is used for ID card verification.

目前,第二代居民身份证是中国居民最可靠、最普及的法定证件。与传统身份证相比,第二代居民身份证内置存储芯片,存有居民身份证卡体信息,该信息为密文信息,无法直接读取身份证信息。本申请所提供的基于卡体信息的身份证识读系统及方法,即通过获取身份证卡体信息并联网查询核查数据库,获取身份证全项信息,实现身份证信息的在线识读。At present, the second-generation resident ID card is the most reliable and popular legal document for Chinese residents. Compared with the traditional ID card, the second-generation resident ID card has a built-in memory chip, which stores the card body information of the resident ID card, which is cipher text information and cannot be directly read. The ID card reading system and method based on the card body information provided by this application, that is, by obtaining the ID card body information and querying the verification database online, obtaining the full item information of the ID card, and realizing the online reading of the ID card information.

具体来说,如图3所示,本发明所提供的基于卡体信息的身份证识读系统,包括:NFC身份证读取终端10、身份证核验网关20、中心业务服务器30、核查数据库40和监测中心50。Specifically, as shown in FIG. 3 , the ID card reading system based on the card body information provided by the present invention includes: an NFC ID card reading terminal 10 , an ID card verification gateway 20 , a central business server 30 , and a verification database 40 and monitoring center 50.

其中,NFC身份证读取终端10是指具有NFC功能的智能移动终端,用于通过NFC近场通信技术读取身份证1的卡体信息,并用于对卡体信息及终端信息进行加密和签名(较优地,其中包括对卡体信息进行一次加密,并包括对经过一次加密的卡体信息及终端信息进行再次加密和签名的过程),并发送给身份证核验网关20。身份证核验网关20,用于接收NFC身份证读取终端10的请求信息,并对验签通过的信息进行解析,获得身份证卡体信息(较优地,为经过一次加密的身份证卡体信息)和终端信息,然后对身份证卡体信息(较优地,为经过一次加密的身份证卡体信息)、终端信息和网关信息进行加密和签名,并将经过身份证核验网关20处理的信息发送到中心业务服务器30。中心业务服务器30用于接收身份证核验网关20的请求信息,并对验签通过的信息进行解析,获得身份证卡体信息,并根据身份证卡体信息从核查数据库40中查询身份证全项数据,然后对身份证全项数据进行加密签名保护,并将之通过身份证核验网关20返回到NFC身份证读取终端10。The NFC ID card reading terminal 10 refers to an intelligent mobile terminal with NFC function, which is used to read the card body information of the ID card 1 through the NFC near field communication technology, and is used to encrypt and sign the card body information and the terminal information. (Preferably, it includes the process of encrypting the card body information once, and including the process of re-encrypting and signing the once-encrypted card body information and terminal information), and sending it to the ID card verification gateway 20 . The ID card verification gateway 20 is used to receive the request information from the NFC ID card reading terminal 10, and analyze the information passed through the signature verification to obtain the ID card body information (preferably, the ID card body that has been encrypted once information) and terminal information, then encrypt and sign the ID card body information (preferably, the once-encrypted ID card body information), terminal information and gateway information. The information is sent to the central service server 30 . The central service server 30 is used to receive the request information from the ID card verification gateway 20, analyze the information passed through the signature verification, obtain the ID card body information, and query the ID card full items from the verification database 40 according to the ID card body information The data is then encrypted and signed to protect the entire data of the ID card, and returned to the NFC ID card reading terminal 10 through the ID card verification gateway 20 .

在上述基于卡体信息的身份证识读系统中,NFC身份证读取终端10、身份证核验网关20和中心业务服务器30采用与互联网隔离的独立网络进行数据交互,并且,在NFC身份证读取终端10、身份证核验网关20和中心业务服务器30的数据交互过程中,采用基于国密算法的数据加密、签名验签保护机制。NFC身份证读取终端10与身份证核验网关20之间、身份证核验网关20与中心业务服务器30之间、中心业务服务器30与核查数据库40之间均采用安全保护机制,具有不可否认性、完整性和机密性等。In the above-mentioned ID card reading system based on card body information, the NFC ID card reading terminal 10, the ID card verification gateway 20 and the central service server 30 use an independent network isolated from the Internet for data exchange, and the NFC ID card reader During the data exchange process between the terminal 10, the ID verification gateway 20 and the central service server 30, a data encryption and signature verification protection mechanism based on the national secret algorithm is adopted. A security protection mechanism is adopted between the NFC ID card reading terminal 10 and the ID card verification gateway 20, between the ID card verification gateway 20 and the central business server 30, and between the central business server 30 and the verification database 40, and has non-repudiation, Integrity and confidentiality, etc.

如图4和图5所示,NFC身份证读取终端10可以基于对市面广泛使用的智能移动终端(例如具有NFC功能的智能手持设备)进行改进实现,而非身份证核验专用设备,成本低、功耗低,并且,用户体验更好、更便捷。通过在普通NFC智能移动终端的基础上,安装保密性较高的安全防护系统,使其成为具有原始通用系统和安全系统双操作系统的安全加固终端,可以提高身份读取终端的安全等级。最典型地,可以使用移动警务终端作为NFC安全加固终端。安全系统内部集成安全加固组件,从核查数据库40获取的身份证全项信息在终端安全性有保障,并且后台可以对终端统一管理。As shown in FIG. 4 and FIG. 5 , the NFC ID card reading terminal 10 can be implemented based on the improvement of smart mobile terminals (such as smart handheld devices with NFC function) widely used in the market, instead of a special device for ID verification, and the cost is low , low power consumption, and user experience is better and more convenient. By installing a security protection system with high confidentiality on the basis of ordinary NFC smart mobile terminals, making it a security reinforced terminal with dual operating systems of the original general system and the security system, the security level of the identity reading terminal can be improved. Most typically, a mobile police terminal can be used as an NFC security hardening terminal. The security system is internally integrated with security reinforcement components, and the complete ID card information obtained from the verification database 40 is guaranteed in the terminal security, and the terminal can be managed uniformly in the background.

NFC身份证读取终端10采用NFC近场通信技术读取身份证1的卡体信息,而非传统的基于蓝牙或射频等通讯方式,读卡效率更高。NFC身份证读取终端10具有NFC通信模块,用于使用NFC访问身份证1,获取居民身份证1的卡体信息。其中,NFC通信模块可以是集成在NFC身份证读取终端10内部的终端NFC模块16(参见图4),或者,NFC通信模块也可以是与NFC身份证读取终端10连接的外扩NFC读卡器17(参见图5);终端NFC模块16和外扩NFC读卡器17用于读取身份证1的卡体信息。对于不具备NFC功能的智能终端,可通过外接NFC读卡器17的方式读取;对于NFC天线识别性能受限的终端,也可通过外接NFC读卡器17的方式,增强天线性能。The NFC ID card reading terminal 10 uses the NFC near field communication technology to read the card body information of the ID card 1, instead of the traditional communication methods such as Bluetooth or radio frequency, and the card reading efficiency is higher. The NFC ID card reading terminal 10 has an NFC communication module, which is used to access the ID card 1 by using NFC to obtain the card body information of the resident ID card 1 . The NFC communication module may be the terminal NFC module 16 (see FIG. 4 ) integrated inside the NFC ID card reading terminal 10 , or the NFC communication module may also be an externally expanded NFC reader connected to the NFC ID card reading terminal 10 . The card reader 17 (see FIG. 5 ); the terminal NFC module 16 and the external expansion NFC card reader 17 are used to read the card body information of the ID card 1 . For a smart terminal without NFC function, it can be read by an external NFC card reader 17; for a terminal with limited NFC antenna recognition performance, the antenna performance can also be enhanced by an external NFC card reader 17.

NFC身份证读取终端10包括身份证核验中间件12。身份证核验中间件12包括身份证信息安全读取组件13、加密模块14、签名模块15等。身份证核验中间件12的核心模块是身份证信息安全读取组件13。身份证信息安全读取组件13用于对身份证卡体信息进行读取识别,并用于对读取到的身份证卡体信息进行一次加密。加密模块14用于对经过一次加密的身份证卡体信息和终端信息再次进行加密。签名模块15用于对加密模块14处理后的信息进行签名。加密模块14还用于对从所述身份证核验网关返回的信息进行解密。The NFC ID card reading terminal 10 includes an ID card verification middleware 12 . The ID card verification middleware 12 includes an ID card information security reading component 13, an encryption module 14, a signature module 15, and the like. The core module of the ID card verification middleware 12 is the ID card information security reading component 13 . The ID card information security reading component 13 is used to read and identify the ID card body information, and is used to encrypt the read ID card body information once. The encryption module 14 is used for re-encrypting the ID card body information and terminal information that have been encrypted once. The signature module 15 is used to sign the information processed by the encryption module 14 . The encryption module 14 is also used for decrypting the information returned from the ID verification gateway.

身份证核验中间件12,集成身份证信息安全读取组件13,运行在NFC身份证读取终端10上,实现为多个客户端APP(例如,身份证核验APP客户端或兼具其他功能的第三方APP)11提供统一的身份证核验基础库接口,可对外提供,用于扩展应用,如关联重点监控人群、车/驾档案等数据库的核查业务,APP通过整合调用身份证核验中间件即可实现身份证核查认证等功能,便于后续用户的功能使用和整合等。The ID card verification middleware 12, which integrates the ID card information security reading component 13, runs on the NFC ID card reading terminal 10, and is implemented as multiple client APPs (for example, ID card verification APP client or a The third-party APP)11 provides a unified ID card verification basic library interface, which can be provided externally for extended applications, such as the verification business associated with databases such as key monitoring groups and car/driving files. The APP calls the ID verification middleware through integration. It can realize functions such as ID verification and authentication, which is convenient for subsequent users to use and integrate functions.

在NFC身份证读取终端10上,安装有身份证核验APP客户端或其他需要核验身份信息的APP(例如,核查助手APP、移动证书助手APP)客户端,各种APP客户端11通过身份证核验中间件12获取身份证全项信息。其中,身份证核验中间件12使用NFC通信模块访问身份证1,获取居民身份证卡体信息,然后与身份证核验网关20交互,获取身份证全项信息。On the NFC ID card reading terminal 10, an ID card verification APP client or other APP (eg, verification assistant APP, mobile certificate assistant APP) client that needs to verify identity information is installed, and various APP clients 11 pass the ID card The verification middleware 12 obtains the full item information of the ID card. The ID card verification middleware 12 uses the NFC communication module to access the ID card 1, obtains the card body information of the resident ID card, and then interacts with the ID card verification gateway 20 to obtain the full item information of the ID card.

上述NFC身份证读取终端10,采用二代居民身份证卡体信息作为识读身份证是否有效并获取身份证信息的依据;一次性读取卡体信息,即可在线核查身份证信息,而非传统的基于SAM模块,多次交互并离线解析,才能获取身份证详细信息的方式,显著提升读取效率,缩短响应时延。The above-mentioned NFC ID card reading terminal 10 uses the card body information of the second-generation resident ID card as the basis for reading whether the ID card is valid and obtaining the ID card information; once the card body information is read, the ID card information can be checked online, and the ID card information can be checked online. The non-traditional method based on the SAM module requires multiple interactions and offline analysis to obtain the detailed information of the ID card, which significantly improves the reading efficiency and shortens the response delay.

身份证核验网关20,通过访问中心业务服务器30,向安装在NFC身份证读取终端10上的身份证核验中间件12提供身份证信息查询服务,由身份证核验中间件12返回给各个APP客户端11。身份证核验网关20部署在各省市,在各省市部署的身份证核验网关20可以仅部署一套或双备。身份证核验网关20采用keepalive双机热备技术,可以确保稳定运行。The ID card verification gateway 20 provides ID card information query service to the ID card verification middleware 12 installed on the NFC ID card reading terminal 10 by accessing the central service server 30, and the ID card verification middleware 12 returns it to each APP client end 11. The ID card verification gateway 20 is deployed in each province and city, and the ID card verification gateway 20 deployed in each province and city may be deployed with only one set or dual backup. The ID verification gateway 20 adopts the keepalive dual-machine hot backup technology, which can ensure stable operation.

中心业务服务器30,与各地身份证核验网关20连接,统一对外提供身份证核验服务的出口,是实现通过居民身份证卡体信息查询核查数据库40的关键设备。通过中心业务服务器30返回的身份证全项信息,包括:姓名、身份证号、性别、住址等基本信息,以及人脸照片等扩展信息,便于拓展业务。与各省市部署的身份证核验网关20进行数据交互的中心业务服务器30仅集中部署一套或双备。中心业务服务器30采用keepalive双机热备技术,可以确保稳定运行。The central business server 30 is connected with the ID card verification gateways 20 in various places, and provides the export of ID card verification services to the outside world. The complete ID card information returned by the central service server 30 includes basic information such as name, ID number, gender, and address, as well as extended information such as face photos, so as to facilitate business expansion. The central business server 30 for data interaction with the ID card verification gateways 20 deployed in various provinces and cities is only centrally deployed with one set or two backups. The central service server 30 adopts the keepalive dual-machine hot backup technology, which can ensure stable operation.

核查数据库40中存储有身份证全项信息,并且可关联与身份证全项信息相关的其他信息,例如:黑名单、失信人员名单、缉逃人员名单等。采用实时查询核查数据库40的方式,可在线核验身份证信息,确保身份证信息的鲜活性、有效性,同时,可与黑名单、重点人员库等联合,实现与“人”有关的互联网扩展应用。The verification database 40 stores the complete information of the ID card, and can be associated with other information related to the complete information of the ID card, such as a blacklist, a list of dishonest persons, a list of fugitives, and the like. Using the method of real-time query and verification database 40, ID card information can be verified online to ensure the freshness and validity of ID card information. At the same time, it can be combined with blacklist and key personnel database to realize Internet expansion related to "people". application.

监测中心50,与布置在各省市的身份证核验网关20进行数据交互,用于记录业务日志信息;通过将各地身份证核验网关20的访问信息展示在网页端,便于管理员统计维护业务信息,包括身份证核验成功失败次数、业务明细、日志信息等。采用监测中心50集中对各地身份证核验网关20实时运行监控,可追踪、可审计,确保系统稳定可靠运行。The monitoring center 50 performs data interaction with the ID card verification gateways 20 arranged in various provinces and cities for recording business log information; by displaying the access information of the ID card verification gateways 20 in various places on the web page, it is convenient for administrators to count and maintain business information, Including ID verification success and failure times, business details, log information, etc. The monitoring center 50 is used to centrally monitor the real-time operation of the ID card verification gateways 20 in various places, which can be tracked and audited to ensure the stable and reliable operation of the system.

在上述基于卡体信息的身份证识读系统中,采用安全链路传输。一方面,NFC身份证读取终端10与身份证核验网关20之间采用APN专线,与互联网进行物理隔离,降低攻击风险,确保链路安全性。另一方面,身份证核验网关20与中心业务服务器30之间采用安全边界进行物理隔离,敏感数据存储在安全区域,通过安全边界防止数据泄漏。安全边界可有效阻断多种攻击方式和手段,并对请求数据进行管控、审计等,防止数据外漏,数据不会由中心业务服务器主动传送给网关,而是当网关发起请求时,并且校验通过后,才会向网关传送身份证信息。In the above-mentioned ID card reading system based on card body information, secure link transmission is adopted. On the one hand, an APN dedicated line is used between the NFC ID card reading terminal 10 and the ID card verification gateway 20, which is physically isolated from the Internet to reduce attack risks and ensure link security. On the other hand, a security boundary is used for physical isolation between the ID card verification gateway 20 and the central service server 30, and sensitive data is stored in the security area, and data leakage is prevented through the security boundary. The security boundary can effectively block a variety of attack methods and means, and control and audit the requested data to prevent data leakage. After the verification is passed, the ID card information will be sent to the gateway.

本发明所提供的基于卡体信息的身份证识读方法,利用具有NFC功能且NFC支持TYPE-B类卡的NFC身份证读取终端10(例如,移动警务终端),实时在线查询核查数据库40,并返回身份证信息,实现在线、高效、便捷的身份证识读技术。具体来说,包括如下步骤:The ID card reading method based on the card body information provided by the present invention utilizes the NFC ID card reading terminal 10 (for example, a mobile police terminal) with NFC function and NFC supports TYPE-B cards to query and check the database online in real time 40, and return ID card information to realize online, efficient and convenient ID card reading technology. Specifically, it includes the following steps:

(1)NFC身份证读取终端10通过NFC近场通信技术读取居民身份证1的卡体信息,并采集终端信息,然后对身份证卡体信息和终端信息进行加密和签名,然后封装成请求,发送到身份证核验网关20;(1) The NFC ID card reading terminal 10 reads the card body information of the resident ID card 1 through the NFC near field communication technology, and collects the terminal information, then encrypts and signs the ID card body information and the terminal information, and then encapsulates it into a The request is sent to the ID verification gateway 20;

(2)身份证核验网关20接收NFC身份证读取终端10的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得身份证卡体信息和终端信息,再对身份证卡体信息、终端信息和网关信息进行加密和签名,然后封装成请求,发送给中心业务服务器30;(2) The ID card verification gateway 20 receives the request information from the NFC ID card reading terminal 10, and verifies the integrity and reliability of the message. Encrypt and sign the ID card body information, terminal information and gateway information, then encapsulate it into a request and send it to the central service server 30;

(3)中心业务服务器30接收身份证核验网关20的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得身份证卡体信息,根据身份证卡体信息查询核查数据库40,若卡体信息有效,则可获得身份证全项数据,对其进行加密、签名保护,返回到身份证核验网关20;(3) The central service server 30 receives the request information from the ID card verification gateway 20, verifies the integrity and reliability of the message, and if the verification is passed, parses the request data, obtains the ID card body information, and inquires according to the ID card body information Checking the database 40, if the card body information is valid, the full data of the ID card can be obtained, encrypted and signed, and returned to the ID card verification gateway 20;

(4)身份证核验网关20收到中心业务服务器30返回的数据后,验证数据完整性和可靠性,若验签通过,则进行解密,再将解密后的身份证全项数据加密、签名返回到NFC身份证读取终端10;(4) After the ID card verification gateway 20 receives the data returned by the central service server 30, it verifies the integrity and reliability of the data, and if the signature verification is passed, decrypts it, and then encrypts and returns the decrypted ID card full-item data with a signature. to the NFC ID card reading terminal 10;

(5)NFC身份证读取终端10收到身份证核验网关20返回的数据后,验证数据完整性及可靠性,若验签通过,则解密得到身份证全项数据。(5) After the NFC ID card reading terminal 10 receives the data returned by the ID card verification gateway 20, it verifies the integrity and reliability of the data, and if the signature verification is passed, decrypts and obtains the entire ID card data.

优选地,在步骤(1)中,NFC身份证读取终端10通过NFC近场通信技术读取居民身份证1的卡体信息后,身份证核验中间件12中的身份证信息安全读取组件13对身份证卡体信息进行读取识别,并对读取到的身份证卡体信息进行一次加密;然后,加密模块14对经过一次加密的身份证卡体信息和终端信息再次进行加密;签名模块15对加密模块14处理后的信息签名;然后将经过加密签名的信息封装成请求,发送到身份证核验网关20。Preferably, in step (1), after the NFC ID card reading terminal 10 reads the card body information of the resident ID card 1 through the NFC near field communication technology, the ID card information security reading component in the ID card verification middleware 12 13 Read and identify the ID card body information, and encrypt the read ID card body information once; then, the encryption module 14 encrypts the once encrypted ID card body information and terminal information again; sign The module 15 signs the information processed by the encryption module 14 ; then encapsulates the encrypted and signed information into a request and sends it to the ID verification gateway 20 .

相应地,在步骤(2)中,身份证核验网关20接收NFC身份证读取终端10的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得经过一次加密的身份证卡体信息和终端信息,再对经过一次加密的身份证卡体信息、终端信息和网关信息进行加密和签名,然后封装成请求,发送给中心业务服务器30。Correspondingly, in step (2), the ID card verification gateway 20 receives the request information from the NFC ID card reading terminal 10, verifies the integrity and reliability of the message, and if the signature is passed, then parses the request data, and obtains an encrypted The ID card body information and terminal information are encrypted and signed, and the once encrypted ID card body information, terminal information and gateway information are encrypted and signed, and then encapsulated into a request and sent to the central service server 30 .

在步骤(3)中,中心业务服务器30接收身份证核验网关20的请求信息,验证消息的完整性和可靠性,若验签通过,则解析请求数据,获得原始未加密的身份证卡体信息,然后,根据身份证卡体信息查询核查数据库40,若卡体信息有效,则可获得身份证全项数据,对其进行加密、签名保护,返回到身份证核验网关20。In step (3), the central service server 30 receives the request information from the ID card verification gateway 20, verifies the integrity and reliability of the message, and if the signature is passed, parses the request data to obtain the original unencrypted ID card body information , and then query the verification database 40 according to the ID card body information. If the card body information is valid, the entire ID card data can be obtained, encrypted and signed, and returned to the ID card verification gateway 20 .

步骤(4)和步骤(5)中的数据传输过程与上述过程相同。The data transmission process in steps (4) and (5) is the same as the above-mentioned process.

此外,优选地,上述基于卡体信息的身份证识读方法,还可以包括步骤(6):监测中心全程记录业务日志信息,管理员可通过监测中心查看分布在各地的身份证核验网关的运行情况。In addition, preferably, the above-mentioned ID card reading method based on card body information can also include step (6): the monitoring center records business log information throughout the process, and the administrator can check the operation of the ID card verification gateways distributed in various places through the monitoring center. Happening.

优选地,上述基于卡体信息的身份证识读方法还可以包括步骤(7):NFC身份证读取终端10采集活体人像,结合身份证全项信息进行人像认证,验证身份证与人像是否一致。Preferably, the above-mentioned ID card reading method based on card body information may further include step (7): the NFC ID card reading terminal 10 collects the portrait of a living body, performs portrait authentication in combination with the entire information of the ID card, and verifies whether the ID card is consistent with the portrait. .

本申请所提供的基于卡体信息的二代身份证识读设备和方法,在身份证识读需求如此迫切的形势下,与传统身份证核验相比有显著优势。区别于其他识读方式,一方面本专利硬件采用市面广泛使用的智能移动终端,而非专用核验设备,成本低、功耗低;另一方面本专利采用NFC近场通信技术,而非传统的蓝牙、射频等通信技术,使用NFC近场通信技术,结合居民身份证卡体信息,只需一次交互即可获得身份证的卡体信息,进而通过核查数据库获得身份证的全项信息,效率显著提升,对于没有集成NFC模块的终端,也可以外置NFC读卡器,适用面广;再一方面,本专利采用居民身份证卡体信息作为查询依据,通过后端在线核查身份证信息,而非传统的基于SAM模块在前端离线解析身份证信息的方式,将识读压力由前端改为后端,提高了处理速度。同时,本申请还可联网实时在线核查身份证信息的有效性,特别是黑名单人员、追逃人员等敏感人员,方便公安业务联动。进一步地,NFC身份证读取终端中的身份证核验中间件可以被封装成SDK及APP,既可以独立运行,读取并显示身份证的核验结果,也可以提供给第三方APP调用,便于第三方APP应用开发商扩展应用,开发更丰富的与“人”有关的互联网应用资源,使迭代开发更高效、更灵活,例如,通过与重点人、车驾档等数据库关联,实现深度的业务查询,有很广的应用前景。The second-generation ID card reading device and method based on card body information provided by this application has significant advantages compared with traditional ID card verification under the situation of such urgent need for ID card reading. Different from other reading methods, on the one hand, the hardware of this patent adopts intelligent mobile terminals widely used in the market instead of special verification equipment, which has low cost and low power consumption; on the other hand, this patent adopts NFC near field communication technology instead of traditional Bluetooth, radio frequency and other communication technologies, using NFC near field communication technology, combined with the card body information of the resident ID card, can obtain the card body information of the ID card with only one interaction, and then obtain the full information of the ID card through the verification database, with remarkable efficiency To improve, for terminals without integrated NFC module, an external NFC card reader can also be installed, which is widely applicable; on the other hand, this patent uses the information of the resident ID card body as the query basis, and the ID card information is checked online through the back end, while the The non-traditional method based on the SAM module to parse ID card information offline at the front end changes the reading pressure from the front end to the back end, which improves the processing speed. At the same time, this application can also check the validity of ID card information online in real time, especially for sensitive persons such as blacklisted persons and fugitives, which is convenient for public security business linkage. Further, the ID verification middleware in the NFC ID card reading terminal can be encapsulated into SDK and APP, which can run independently, read and display the verification result of the ID card, and can also be called by a third-party APP, which is convenient for the first time. The third-party APP application developers expand the application and develop more abundant Internet application resources related to "people", so as to make the iterative development more efficient and flexible. There are very broad application prospects.

实施例1Example 1

当身份证核验中间件被设计为独立的客户端(“身份证核验APP”客户端)使用时,所使用的实现系统的结构与上述内容完全相同。对应的详细的实现过程如图6所示,包括如下步骤:When the ID card verification middleware is designed to be used by an independent client (“ID card verification APP” client), the structure of the implementation system used is exactly the same as the above content. The corresponding detailed implementation process is shown in Figure 6, including the following steps:

(10)用户打开“身份证核验APP”客户端,使用NFC读取居民身份证卡体信息,并采集终端信息,将所有数据采用国密算法签名,封装成TCP请求,发送到身份证核验网关;(10) The user opens the "ID verification APP" client, uses NFC to read the information of the resident ID card body, collects terminal information, signs all the data with the national secret algorithm, encapsulates it into a TCP request, and sends it to the ID card verification gateway ;

(11)身份证核验网关接收“身份证核验APP”客户端的请求消息,验证信息的可靠性和完整性,若数据不可靠不完整则直接返回错误码,若验证通过则解析请求数据,获得居民身份证卡体信息,再将终端信息、网关信息及居民身份证卡体信息等数据采用国密算法签名,封装成HTTP请求,发送给中心业务服务器;验证失败,则返回错误信息到客户端。(11) The ID card verification gateway receives the request message from the "ID card verification APP" client, and verifies the reliability and integrity of the information. If the data is unreliable and incomplete, it will directly return an error code. ID card body information, and then sign data such as terminal information, gateway information, and resident ID card body information using the national secret algorithm, encapsulate it into an HTTP request, and send it to the central business server; if the verification fails, an error message will be returned to the client.

(12)中心业务服务器接收身份证核验网关的请求消息,验证数据的可靠性和完整性,若数据不可靠不完整则直接返回错误码,若数据完整可靠则解析获得居民身份证卡体信息,根据该卡体信息查询核查数据库,若卡体信息有效,则可获得身份证全项数据,对其进行签名保护,返回到身份证核验网关;(12) The central business server receives the request message from the ID verification gateway to verify the reliability and integrity of the data. If the data is unreliable and incomplete, it will directly return an error code. If the data is complete and reliable, it will parse and obtain the resident ID card body information. Query the verification database according to the card body information. If the card body information is valid, you can obtain the full ID card data, protect it with a signature, and return to the ID card verification gateway;

(13)身份证核验网关收到中心业务服务器的响应后,验证数据的可靠性和完整性,若数据不可靠不完整则直接返回错误码,若数据完整可靠则用国密算法解密,再将解密后的身份证全项数据加密、签名,返回到客户端;(13) After the ID verification gateway receives the response from the central business server, it verifies the reliability and integrity of the data. If the data is unreliable and incomplete, it will directly return an error code. The decrypted ID card data is encrypted, signed, and returned to the client;

(14)“身份证核验APP”客户端收到身份证全项加密数据,验证数据的可靠性和完整性,验签通过后,解密并呈现到应用界面,查询结束;(14) The "ID card verification APP" client receives the encrypted data of the ID card, and verifies the reliability and integrity of the data. After the verification is passed, it decrypts and presents it to the application interface, and the query ends;

(15)监测中心全程记录业务日志信息,管理员可通过监测中心查看分布在各地的身份证核验网关的运行情况。(15) The monitoring center records the business log information throughout the process, and the administrator can view the operation of the ID verification gateways distributed in various places through the monitoring center.

下面对将身份证核验中间件设置为插件安装在NFC身份证读取终端上,并使用其他程序的客户端调用身份证核验中间件实现身份证核验,并完成其他功能(例如,查询车辆信息、申请证书)的示例进行介绍。The following is to set the ID card verification middleware as a plug-in and install it on the NFC ID card reading terminal, and use the client of other programs to call the ID card verification middleware to realize ID card verification and complete other functions (for example, query vehicle information. , apply for a certificate) example.

实施例2Example 2

本实施例提供了通过安装在NFC身份证读取终端上的“核查助手”客户端实现身份证核验并查询车辆信息的示例。This embodiment provides an example of verifying an ID card and querying vehicle information through a "verification assistant" client installed on the NFC ID card reading terminal.

具体来说,用于实现上述过程的系统包括:一个或多个NFC身份证读取终端、身份证核验网关、中心业务服务器、监测中心和车辆信息管理服务器。Specifically, the system for implementing the above process includes: one or more NFC ID card reading terminals, an ID card verification gateway, a central service server, a monitoring center, and a vehicle information management server.

其中,NFC身份证读取终端具有NFC通信功能,支持读取TYPE-B类卡,已安装“核查助手”客户端和身份证核验中间件,身份证核验中间件内部集成“身份证信息安全读取组件”,应用“核查助手”可通过调用中间件接口与身份证核验网关交互,获取身份证信息。Among them, the NFC ID card reading terminal has NFC communication function, supports reading TYPE-B cards, and has installed the "verification assistant" client and ID card verification middleware. The ID card verification middleware internally integrates "ID card information security reading". "Get Components", the application "Verification Assistant" can interact with the ID card verification gateway by calling the middleware interface to obtain ID card information.

身份证核验网关,可与“核查助手”客户端和中心业务服务器通信,通过访问中心业务服务器,向“核查助手”客户端提供身份证信息查询服务。The ID verification gateway can communicate with the "Verification Assistant" client and the central business server, and provide ID card information query services to the "Verification Assistant" client by accessing the central business server.

中心业务服务器,具备身份证核验服务的能力,可通过居民身份证卡体信息查询核查数据库,并返回身份证全项加密数据。The central business server has the ability to provide ID verification services. It can query the verification database through the resident ID card body information, and return the encrypted data of the ID card.

监测中心,可与身份证核验网关交互,记录业务信息。The monitoring center can interact with the ID verification gateway to record business information.

车辆信息管理服务器,用于与“核查助手”客户端交互,完成车辆信息的登记、查询等业务功能。The vehicle information management server is used to interact with the "check assistant" client to complete business functions such as vehicle information registration and query.

下面对本实施例所提供的通过“核查助手”客户端实现身份证核验并查询车辆信息的过程进行介绍。具体来说,如图7所示,本实施例的详细实现步骤如下:The following describes the process of verifying an ID card and querying vehicle information through the "verification assistant" client provided in this embodiment. Specifically, as shown in FIG. 7 , the detailed implementation steps of this embodiment are as follows:

(20)用户打开“核查助手APP”客户端,打开“人员车辆信息核查”功能,并根据提示在NFC识别区域刷身份证;(20) The user opens the "Verification Assistant APP" client, opens the "Personnel Vehicle Information Verification" function, and swipes the ID card in the NFC identification area according to the prompts;

(21)“核查助手APP”通过调用身份证核验中间件,获取居民身份证卡体信息,并读取终端的IMEI号、Keyid、包名、协议类型、APP版本、设备型号等,将采集的信息采用国密算法加密签名,封装成TCP请求,发送到身份证核验网关,发起身份证核验的服务请求;(21) "Verification Assistant APP" obtains the information of the resident ID card by calling the ID card verification middleware, and reads the terminal's IMEI number, Keyid, package name, protocol type, APP version, device model, etc. The information is encrypted and signed by the national secret algorithm, encapsulated into a TCP request, and sent to the ID verification gateway to initiate a service request for ID verification;

(22)身份证核验网关接收客户端的请求消息,进行验签,验证数据是否完整,是否被篡改,验证通过后,解析请求数据,获得居民身份证卡体信息,并将终端信息、网关信息及居民身份证卡体信息等业务信息采用国密算法加密签名,封装成HTTP请求,发送给中心业务服务器;(22) The ID verification gateway receives the request message from the client, performs signature verification, and verifies whether the data is complete and whether it has been tampered with. After the verification is passed, it parses the request data, obtains the information of the resident ID card body, and combines the terminal information, gateway information and Business information such as resident ID card body information is encrypted and signed by the national secret algorithm, encapsulated into an HTTP request, and sent to the central business server;

(23)中心业务服务器接收核验网关的请求消息,对网关数据进行验签,校验网关数据格式是否正确、数据是否完整、是否被篡改,验证通过后,解析获得居民身份证卡体信息,根据该卡体信息查询核查数据库,获取结果后对其进行签名保护,返回到身份证核验网关;(23) The central business server receives the request message from the verification gateway, verifies the gateway data, and verifies whether the gateway data format is correct, whether the data is complete, and whether it has been tampered with. The card body information is inquired into the verification database, and after the result is obtained, it is protected by a signature, and returned to the ID verification gateway;

(24)身份证核验网关收到中心业务服务器的响应后,验证数据是否完整,是否被篡改,若数据完整可靠则用国密算法解密,再将解密后的身份证全项数据加密、签名返回到客户端;(24) After the ID verification gateway receives the response from the central business server, it verifies whether the data is complete and whether it has been tampered with. If the data is complete and reliable, it will be decrypted by the national secret algorithm, and then the decrypted ID card full data will be encrypted and returned with a signature. to the client;

(25)“核查助手”客户端收到该用户的身份证全项加密数据,验签通过后,解密得到全项数据;(25) "Verification Assistant" client receives the full encrypted data of the user's ID card, and after the signature is passed, decrypts to obtain the full data;

(26)“核查助手”客户端调用后台车辆查询服务,查询该用户对应的车辆信息;(26) The "check assistant" client invokes the background vehicle query service to query the vehicle information corresponding to the user;

(27)“核查助手”客户端收到该用户车辆信息,将身份证信息及车辆信息展现到客户端界面,人员车辆信息核查业务正常结束;(27) The "Verification Assistant" client receives the user's vehicle information, displays the ID card information and vehicle information on the client interface, and the personnel and vehicle information verification business ends normally;

(28)监测中心全程记录业务日志信息,管理员可通过监测中心查看身份证核验网关运行情况。(28) The monitoring center records the business log information throughout the process, and the administrator can check the operation of the ID verification gateway through the monitoring center.

实施例3Example 3

本实施例提供了通过安装在NFC身份证读取终端上的“移动证书助手”客户端实现身份证核验并申请移动证书的示例。This embodiment provides an example of verifying an ID card and applying for a mobile certificate by using a "mobile certificate assistant" client installed on the NFC ID card reading terminal.

具体来说,用于实现上述过程的系统包括:一个或多个NFC身份证读取终端、身份证核验网关、中心业务服务器、监测中心和证书管理服务器。Specifically, the system for implementing the above process includes: one or more NFC ID card reading terminals, an ID card verification gateway, a central service server, a monitoring center, and a certificate management server.

NFC身份证读取终端具有NFC通信功能,支持读取TYPE-B类卡,已安装“移动证书助手”客户端和身份证核验中间件,身份证核验中间件内部集成“身份证信息安全读取组件”,应用“移动证书助手”可通过调用中间件接口与身份证核验网关交互,获取身份证信息。The NFC ID card reading terminal has NFC communication function and supports reading TYPE-B cards. The "mobile certificate assistant" client and ID card verification middleware have been installed. The ID card verification middleware integrates "ID card information security reading". Components", the application "Mobile Certificate Assistant" can interact with the ID card verification gateway by calling the middleware interface to obtain ID card information.

身份证核验网关,可与“移动证书助手”客户端和中心业务服务器通信,通过访问中心业务服务器,向“移动证书助手”客户端提供身份证信息查询服务。The ID verification gateway can communicate with the "Mobile Certificate Assistant" client and the central business server, and provide ID card information query services to the "Mobile Certificate Assistant" client by accessing the central business server.

中心业务服务器,具备身份证核验服务的能力,可通过居民身份证卡体信息查询核查数据库,并返回身份证全项加密数据。The central business server has the ability to provide ID verification services. It can query the verification database through the resident ID card body information, and return the encrypted data of the ID card.

监测中心,可与身份证核验网关交互,记录业务信息。The monitoring center can interact with the ID verification gateway to record business information.

证书管理服务器,用于与“移动证书助手”客户端交互,完成证书申请时的审核、申请、下发等业务功能。The certificate management server is used to interact with the "Mobile Certificate Assistant" client to complete business functions such as review, application, and issuance of certificate applications.

下面对本实施例所提供的通过“移动证书助手”APP实现身份证核验并申请移动证书的过程进行介绍。具体来说,如图8所示,本实施例的详细实现步骤如下:The following describes the process of verifying an ID card and applying for a mobile certificate through the "mobile certificate assistant" APP provided in this embodiment. Specifically, as shown in FIG. 8 , the detailed implementation steps of this embodiment are as follows:

(30)用户打开“移动证书助手APP”,点击“申请证书”,在“申请证书页面”,输入手机号,并根据提示,在NFC识别区域刷身份证;(30) The user opens the "Mobile Certificate Assistant APP", clicks "Apply for Certificate", enters the mobile phone number on the "Apply for Certificate Page", and swipes the ID card in the NFC identification area according to the prompt;

(31)“移动证书助手APP”通过调用身份证核验中间件,获取居民身份证的卡体信息,并读取终端的IMEI号、Keyid、包名、协议类型、APP版本、设备型号等,将采集的信息采用国密算法加密签名,封装成TCP请求,发送到身份证核验网关,发起身份证核验的服务请求;(31) "Mobile Certificate Assistant APP" obtains the card body information of the resident ID card by calling the ID card verification middleware, and reads the terminal's IMEI number, Keyid, package name, protocol type, APP version, device model, etc. The collected information is encrypted and signed by the national secret algorithm, encapsulated into a TCP request, and sent to the ID verification gateway to initiate a service request for ID verification;

(32)身份证核验网关接收客户端的请求消息,进行验签,验证数据是否完整,是否被篡改;(32) The ID verification gateway receives the request message from the client, performs signature verification, and verifies whether the data is complete and whether it has been tampered with;

若验证通过,则身份证核验网关解析请求数据,获得居民身份证卡体信息,并将终端信息、居民身份证卡体信息及网关信息等业务信息采用国密算法签名,封装成HTTP请求,发送给中心业务服务器;若验证未通过,则身份证核验网关拒绝请求,返回错误信息,显示在“移动证书助手APP”界面,证书申请业务异常结束;If the verification is passed, the ID card verification gateway parses the request data, obtains the resident ID card body information, signs the terminal information, resident ID card body information and gateway information and other business information with the national secret algorithm, encapsulates it into an HTTP request, and sends it To the central service server; if the verification fails, the ID card verification gateway rejects the request and returns an error message, which is displayed on the "Mobile Certificate Assistant APP" interface, and the certificate application service ends abnormally;

(33)中心业务服务器接收核验网关的请求消息,对网关数据进行验签,校验网关数据格式是否正确、数据是否完整、是否被篡改;(33) The central service server receives the request message for verifying the gateway, verifies the gateway data, and verifies whether the gateway data format is correct, whether the data is complete, and whether it has been tampered with;

若验证通过,则中心业务服务器解析核验网关的请求数据,获得居民身份证卡体信息,根据卡体信息查询核查数据库,获取结果后对其进行签名保护,返回到身份证核验网关;若验证未通过,则中心业务服务器拒绝请求,返回错误信息,显示在“移动证书助手APP”界面,证书申请业务异常结束;If the verification is passed, the central business server parses the request data of the verification gateway, obtains the card body information of the resident ID card, queries the verification database according to the card body information, and secures the signature after obtaining the result, and returns to the ID card verification gateway; If passed, the central service server rejects the request and returns an error message, which is displayed on the "Mobile Certificate Assistant APP" interface, and the certificate application service ends abnormally;

(34)身份证核验网关收到中心业务服务器的响应后,验证数据是否完整,是否被篡改,若数据完整可靠则用国密算法解密,再将解密后的身份证全项数据加密、签名返回到客户端;(34) After the ID verification gateway receives the response from the central business server, it verifies whether the data is complete and whether it has been tampered with. If the data is complete and reliable, it will be decrypted by the national secret algorithm, and then the decrypted ID card full data will be encrypted and returned with a signature. to the client;

(35)“移动证书助手”APP收到该用户的身份证全项加密数据,验签通过后,解密得到全项数据,将身份证号显示在“申请证书”页面;(35) The "Mobile Certificate Assistant" APP receives the encrypted data of the user's ID card. After the verification is passed, it decrypts and obtains the entire data, and displays the ID number on the "Apply for Certificate" page;

(36)点击“下一步”,进入“人像检测”页面,点击“开始检测”,调用活体检测组件;(36) Click "Next" to enter the "Portrait Detection" page, click "Start Detection", and call the living body detection component;

活体检测中间件通过手机前置摄像头,采集活体人像,并结合收到的身份证核验信息,验证该人像与身份证信息是否一致;The living body detection middleware collects the living body portrait through the front camera of the mobile phone, and combines the received ID verification information to verify whether the portrait is consistent with the ID card information;

若一致,则人像认证通过,点击“立即申请”,再点击“安装证书”即可完成证书申请过程,证书申请业务正常结束;若不一致,则“移动证书助手APP”界面显示错误信息,证书申请业务异常结束;If they are consistent, the portrait authentication is passed, click "Apply Now", and then click "Install Certificate" to complete the certificate application process, and the certificate application business ends normally; Abnormal end of business;

(37)监测中心全程记录业务日志信息,管理员可通过监测中心查看身份证核验网关运行情况。(37) The monitoring center records the business log information throughout the process, and the administrator can check the operation of the ID verification gateway through the monitoring center.

综上所述,本发明所提供的基于卡体信息的身份证识读系统,采用普遍集成的NFC近场通信技术,只需一次交互即可识读身份证全项数据。其中,身份证全项数据可集成人脸识别等AI技术拓展更丰富、更智能的业务,也可与重点人、车驾档等数据库关联,实现深度的业务查询和联动。整个系统安全可靠,终端采用智能安全加固终端、集成“身份证信息安全读取组件”,软件采用国密算法进行加解密、签名验签保护机制,硬件采用专用APN通道、安全边界等技术,具备高安全性、高扩展性、使用便捷等优点。To sum up, the ID card reading system based on the card body information provided by the present invention adopts the generally integrated NFC near field communication technology, and only needs one interaction to read the entire data of the ID card. Among them, the entire ID card data can be integrated with AI technologies such as face recognition to expand richer and smarter businesses, and it can also be associated with databases such as key persons and car driver files to achieve in-depth business query and linkage. The whole system is safe and reliable. The terminal adopts intelligent security reinforcement terminal and integrates the "ID card information security reading component". The software adopts the national secret algorithm for encryption and decryption, and the signature verification protection mechanism. The hardware adopts technologies such as dedicated APN channel and security boundary. High security, high scalability, easy to use and other advantages.

以上对本发明所提供的基于卡体信息的身份证识读系统和方法进行了详细的说明。对本领域的一般技术人员而言,在不背离本发明实质精神的前提下对它所做的任何显而易见的改动,都将构成对本发明专利权的侵犯,将承担相应的法律责任。The card body information-based ID card reading system and method provided by the present invention have been described in detail above. For those of ordinary skill in the art, any obvious changes made to the invention without departing from the essential spirit of the invention will constitute an infringement of the patent right of the invention and will bear corresponding legal responsibilities.

Claims (10)

1. An identity card recognizing and reading system based on card body information is characterized by comprising:
the NFC identity card reading terminal is used for reading card body information of the identity card through NFC near field communication technology, encrypting and signing the card body information and the terminal information and sending the card body information and the terminal information to the identity card verification gateway;
the identity card verification gateway is used for receiving the request information of the NFC identity card reading terminal, analyzing the information passing the verification, acquiring identity card body information and terminal information, encrypting and signing the identity card body information, the terminal information and the gateway information, and sending the information processed by the identity card verification gateway to the central service server;
the system comprises a central service server and a checking database, wherein the central service server is used for receiving request information of the identity card checking gateway, analyzing information passing the checking and signing to obtain identity card body information, inquiring all data of the identity card from the checking database according to the identity card body information, carrying out encryption signature protection on all data of the identity card, and returning the data to the NFC identity card reading terminal through the identity card checking gateway.
2. The card body information-based identification card reading system of claim 1, wherein:
the NFC identity card reading terminal comprises identity card verification middleware;
the identity card verification middleware comprises an identity card information security reading component, an encryption module and a signature module; the identity card information security reading component is used for reading and identifying the identity card body information and encrypting the read identity card body information for one time; the encryption module is used for encrypting the identity card body information and the terminal information which are encrypted once again; the signature module is used for signing the information processed by the encryption module; the encryption module is also used for decrypting the information returned from the identity card verification gateway.
3. The card body information-based identification card reading system of claim 1, wherein:
the identity card verification middleware is used for providing a unified identity card verification base library interface for a plurality of client side APPs.
4. The card body information-based identification card reading system of claim 1, wherein:
the NFC identity card reading terminal reads card body information of the identity card through the NFC communication module; the NFC communication module is a terminal NFC module integrated in the NFC identity card reading terminal, or the NFC communication module is an external NFC card reader connected with the NFC identity card reading terminal.
5. The card body information-based identification card reading system of claim 1, wherein:
the identity card verification gateway and/or the central service server adopt a dual-computer hot standby technology.
6. The card body information-based identification card reading system of claim 1, wherein:
the checking database stores the whole information of the identity card and can be associated with other information related to the whole information of the identity card.
7. The card body information-based identification card reading system of claim 1, wherein:
the identity card reading system based on the card body information further comprises a monitoring center connected with the central service server, and the monitoring center is used for interacting with the identity card verification gateway and recording service log information.
8. The card body information-based identification card reading system of claim 1, wherein:
an APN special line is adopted between the NFC identity card reading terminal and the identity card verification gateway, and physical isolation is carried out between the NFC identity card reading terminal and the identity card verification gateway and the Internet;
and the identity card verification gateway and the central service server are physically isolated by adopting a safety boundary.
9. An identity card reading method based on card body information is characterized by comprising the following steps:
(1) the NFC identity card reading terminal reads card body information of the resident identity card through NFC near field communication technology, collects terminal information, encrypts and signs the card body information and the terminal information of the identity card, packages the card body information and the terminal information into a request and sends the request to the identity card verification gateway;
(2) the identity card verifying gateway receives request information of the NFC identity card reading terminal, verifies the integrity and reliability of the information, analyzes the request data if the verification passes, obtains identity card body information and terminal information, encrypts and signs the identity card body information, the terminal information and the gateway information, packages the encrypted and signed identity card body information, the terminal information and the gateway information into a request, and sends the request to the central service server;
(3) the central service server receives the request information of the identity card verification gateway, verifies the integrity and reliability of the information, analyzes the request data if the verification passes, obtains the identity card body information, queries the verification database according to the identity card body information, and can obtain the whole data of the identity card if the card body information is valid, encrypts and signs the data, and returns the encrypted and signed data to the identity card verification gateway;
(4) after receiving the data returned by the central service server, the identity card verification gateway verifies the integrity and reliability of the data, decrypts the data if the verification passes, encrypts and signs the decrypted full data of the identity card, and returns the encrypted data to the NFC identity card reading terminal;
(5) and after receiving the data returned by the identity card verification gateway, the NFC identity card reading terminal verifies the integrity and reliability of the data, and if the verification passes, the NFC identity card reading terminal decrypts to obtain the whole data of the identity card.
10. The card body information-based identification card reading method according to claim 9, further comprising the step (6): the monitoring center records service log information in the whole process, and an administrator can check the operation conditions of the identity card verification gateways distributed in various places through the monitoring center.
CN202010580085.0A 2020-06-23 2020-06-23 ID card reading system and method based on card body information Pending CN111711634A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010580085.0A CN111711634A (en) 2020-06-23 2020-06-23 ID card reading system and method based on card body information

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010580085.0A CN111711634A (en) 2020-06-23 2020-06-23 ID card reading system and method based on card body information

Publications (1)

Publication Number Publication Date
CN111711634A true CN111711634A (en) 2020-09-25

Family

ID=72542673

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010580085.0A Pending CN111711634A (en) 2020-06-23 2020-06-23 ID card reading system and method based on card body information

Country Status (1)

Country Link
CN (1) CN111711634A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113489765A (en) * 2021-06-24 2021-10-08 北京明朝万达科技股份有限公司 Method and system for video exchange identity authentication
CN113918965A (en) * 2021-09-14 2022-01-11 新大陆(福建)公共服务有限公司 Application method and system of digital certificate

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101563870A (en) * 2006-10-17 2009-10-21 塞姆泰克创新解决方案公司 Encrypted token transactions
CN101656748A (en) * 2009-09-07 2010-02-24 上海亚卡商贸有限公司 Second-generation ID card online inquiry system and method based on secure network
CN106022081A (en) * 2016-01-21 2016-10-12 李明 Card reading method for identity-card card-reading terminal, and terminal and system for identity-card card-reading
CN208046654U (en) * 2018-01-27 2018-11-02 江苏智友汇金物联科技有限公司 A kind of resident's China second-generation identity card high in the clouds decoding identification server
CN108875437A (en) * 2018-05-29 2018-11-23 大唐终端技术有限公司 A kind of ID card information querying method and system
CN212649500U (en) * 2020-06-23 2021-03-02 公安部第一研究所 ID card reading system based on card body information

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101563870A (en) * 2006-10-17 2009-10-21 塞姆泰克创新解决方案公司 Encrypted token transactions
CN101656748A (en) * 2009-09-07 2010-02-24 上海亚卡商贸有限公司 Second-generation ID card online inquiry system and method based on secure network
CN106022081A (en) * 2016-01-21 2016-10-12 李明 Card reading method for identity-card card-reading terminal, and terminal and system for identity-card card-reading
CN208046654U (en) * 2018-01-27 2018-11-02 江苏智友汇金物联科技有限公司 A kind of resident's China second-generation identity card high in the clouds decoding identification server
CN108875437A (en) * 2018-05-29 2018-11-23 大唐终端技术有限公司 A kind of ID card information querying method and system
CN212649500U (en) * 2020-06-23 2021-03-02 公安部第一研究所 ID card reading system based on card body information

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113489765A (en) * 2021-06-24 2021-10-08 北京明朝万达科技股份有限公司 Method and system for video exchange identity authentication
CN113918965A (en) * 2021-09-14 2022-01-11 新大陆(福建)公共服务有限公司 Application method and system of digital certificate

Similar Documents

Publication Publication Date Title
US20210201320A1 (en) System and method for secure transactions using images
CN112217835B (en) Message data processing method and device, server and terminal equipment
CN110826043B (en) Digital identity application system and method, identity authentication system and method
CN103259667B (en) The method and system of eID authentication on mobile terminal
CN109472166A (en) A kind of electronic signature method, device, equipment and medium
CN112232814B (en) Encryption and decryption methods of payment key, payment authentication method and terminal equipment
KR102119449B1 (en) Aggregation open api platform system, method for prividing financial services using the same and computer program for the same
CN112202794A (en) Transaction data protection method and device, electronic equipment and medium
CN110400145A (en) A kind of digital identity application system and method, identity authorization system and method
US9065806B2 (en) Internet based security information interaction apparatus and method
CN212649500U (en) ID card reading system based on card body information
CN106529938A (en) Virtual card issuing method, device and terminal
CN110599290A (en) Data processing method and system for cross-border transaction
CN106097027A (en) A tax control panel remote billing system and its implementation method
GB2515057A (en) System and Method for Obtaining a Digital Signature
CN110474921B (en) Perception layer data fidelity method for local area Internet of things
CN104915829A (en) Application interaction method and application interaction device based on NFC technology
CN111131416A (en) Business service providing method and device, storage medium and electronic device
CN111245783A (en) Isolated environment data transmission device and method based on digital encryption technology
HK1206467A1 (en) Internet-based secure payment system and secure payment method
CN111711634A (en) ID card reading system and method based on card body information
CN108566389B (en) Cross-application fingerprint identity authentication method and device
CN115695023A (en) A Remote Terminal Service Container Access System
CN118101298B (en) Data encryption transmission method, device, computer equipment, medium and program product
KR100742778B1 (en) User authentication method using wireless identification digital signature, user equipment using recording medium and wireless identification digital signature

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20200925