TW201934861A - Remote control electronic lock system and encrypting/decrypting method - Google Patents

Abstract

This invention provides an electronic lock system which includes an electronic lock having a wireless receiving unit for wirelessly receiving an unlocking signal; a storage unit for storing an unlocking identification code; a processing unit including an identification module, a timing module, and an actuating signal generation module; a latch actuator; and a setting input port. This invention also provides a user-configurable encryption and decryption method. By using the electronic lock system and the password encryption and decryption method of this invention, a hidden multi-function remote electronic lock that can be constructed by the user itself can be obtained, which can provide an electronic lock that is safe and suitable for various purposes and applications. Moreover, a setting for different levels of security beyond limitations by manufacturers can be obtained, without a problem of data leakage and hack.

Description

Remote control electronic lock system and encryption and decryption method thereof

The invention relates to an electronic lock system, in particular to a remote-control electronic lock system with high security and a user-built system and a method for encrypting and decrypting the same.

With the advancement of technology, electronic locks have become more and more popular. For security reasons, the password unlocking methods of electronic locks are also more diverse and complicated.

Common electronic locks on the market include electronic locks similar to key telephones. By entering a set of passwords in sequence on the keys, if the password is the same as the internal preset password, the mechanical switch is controlled to complete the unlocking. There are also electronic locks that use induction methods, but when you go out, you need to carry an additional magnetic card, and the magnetic card is easy to be copied. Furthermore, taking the safe as an example, although the password can be set by the user, but the input device is exposed, the thief is easily destroyed by the outside, and the setting of the password is artificial and easy to be cracked. Taking the proximity proximity electronic door lock as an example, the sensor must also be exposed outside the door, which is also easy for theft to be destroyed by the outside, and the proximity card can be easily copied.

In addition, the current electronic door locks can basically be set with a password. The password is stored in a non-volatile storage device in the lock body, hereinafter referred to as a fixed password; the password is entered each time the lock is unlocked, and the entered password is stored in non-volatile memory. The passwords in the storage device are compared and unlocked when they are consistent. This method is easy to see the password from the input interface and is inconvenient for temporary users. If the user is not next to the lock and the temporary user needs to open the door lock, the user needs to inform the temporary user of the fixed password; after the temporary user has finished using it, the user generally needs to change the password in time, otherwise it is easy to cause the password to leak and the scope of application is not large.

To solve this problem, in the prior art, there is a method for authorizing temporary users through a mobile phone APP. The disadvantage of this method is that it requires a complete authorization solution for the door lock. At present, the practice of most products is to network the door lock and control the lock through the network, which increases costs on the one hand and brings security on the other. Hidden dangers; on the other hand, temporary users must also use a mobile phone with an APP installed. The mobile phone also needs to connect to the network to receive authorization information. For users who cannot install the APP or have not installed the corresponding APP, and users who have a poor network environment, this kind of The method is powerless.

Another method is a dynamic password lock system proposed by patent number CN102168509 B. The password changes with the date or time, but when the password changes with the date or time, the password lock manager enters the fixed password F and the date D. To calculate the password, this means that the password is related to the date. The password can be used at any time within one day of the same date. The password for different dates is dynamically changed. The user cannot set the time period and the number of uses. The date is different. Different passwords are required to unlock, which is very inconvenient to use.

In view of the above-mentioned conventional technologies and problems, an object of the present invention is to provide a hidden multi-function remote-control electronic lock with an unlocking password independently constructed by a user. In particular, the first object is to provide a self-built remote control electronic lock system in which a user can set a password for an electronic lock by generating a password in a random manner without having to remember the password, and the user can change the original set password when needed. .

A further object of the present invention is to provide a high-security electronic lock. The unlock code can have multiple groups, and it needs to be identified within a specific time. The number of unlock code groups and the identification time settings can be changed to provide multiple levels of security. Setting for multiple functions.

Still another object of the present invention is to provide an electronic lock system that can be authorized to unlock separately, which can allow multiple second-ranking personnel to arrive at the scene to unlock at the same time, and provide an electronic lock system that can record the unlocker.

Still another object of the present invention is to provide a novel power shortage warning device, so that the electronic lock can retain the minimum power to provide an unlocking function, and remind the user to change the battery power.

Still another object of the present invention is to provide an electronic lock system which can prevent thieves from recording sideways, and can be used for unlocking by multiple unlocking controllers at the same time, and provide a method for encrypting and decrypting unlock codes.

To achieve the above object, the present invention provides an electronic lock system including an electronic lock, and the electronic lock has: a wireless receiving unit for wirelessly receiving an unlocking signal; a storage unit for storing at least two sets of unlocking identification codes A processing unit including: an identification module for receiving the unlocking signal and comparing the at least two sets of unlocking identification codes; and an operation signal generating module for comparing the at least two When two sets of corresponding identification codes are sent, an actuation signal is sent to the unlocking actuator; an unlocking actuator is used to unlock when the actuating signal is received; and, a setting input port is provided for the user The at least two sets of unlocking identification codes are variably set, and at least one of the at least two sets of unlocking identification codes is a random number generated by a user operation.

With the above technology, the user can construct the password by himself, and when the unlocking controller is lost, the user can re-program the unlocking identification code of the electronic lock, and complete the new electronic lock and unlocking controller through the setting input port. To unlock the identification code setting, instead of replacing the entire group of electronic locks, you only need to add an unlocking controller, and you do not need to worry about someone losing the unlocking controller to be picked up and unlocked.

In addition, in order to achieve the above purpose, the electronic lock further includes a timing module for starting timing after receiving the unlock signal, and the actuation signal generating module compares the at least two sets of phases within a specific time. This signal will be sent only when the identification code is matched. In this way, thieves can be prevented from unlocking the password by scanning the frequency.

In addition, in order to achieve the above object, the processing unit of the electronic lock system disclosed in the present invention also has a security level setting module for changing the length of the specific time or the number of unlocking identification code groups to be recognized by the identification module. . In this way, each user can individually change the security level by changing the number of identification groups or the receiving time limit according to the needs of the installation situation. In addition, the identification code can be grouped in a random manner, which can provide a suitable application. Multifunctional electronic locks for various practical installation or security needs.

In addition, in order to achieve the above object, the present invention provides an electronic lock system, in which a set of unlocking identification codes are specific unlocking controller identification codes for identifying at least one unlocking controller. In this way, in addition to increasing security, specific unlockable users can be recorded.

In addition, in order to achieve the above object, the present invention provides an electronic lock system, wherein one of the at least two unlocking identification codes is a power replacement confirmation code, and wherein the electronic lock further includes a power warning module for When a certain value of power is left, the device enters the sleep mode and stops receiving the unlock signal. After entering the sleep mode, it will only stop sleeping after receiving the power replacement confirmation code.

In addition, in order to achieve the above-mentioned object, the present invention provides an electronic lock system, wherein the storage unit stores a key store, the key store contains at least one key; the unlock signal received by the wireless receiving unit includes a use of a base and An encrypted unlock code obtained by encrypting a set of unlock codes with at least one of the two keys; and the processing unit further includes a decryption module for decrypting the encrypted unlock code received from the received encrypted unlock code using the key. At least one of the base number and the set of unlocking codes is provided for comparison with one of the set of unlocking identification codes.

In addition, in order to achieve the above object, the present invention provides an electronic lock system, wherein the processing unit further includes a cardinality comparison module, and the cardinality is a count, and each time the cardinality is decrypted, the cardinality is stored, and the cardinality and The previous stored base number is compared. When the difference is within a specific range, decryption can be achieved. The electronic lock is also capable of storing a counting library which records the majority counts corresponding to the majority of the unlocking controllers, and the unlocking signal received by the wireless receiving unit includes a controller identification code corresponding to each unlocking controller, And the cardinality comparison module compares the cardinality decrypted with the existing count corresponding to the received controller identification code. Thereby, the encrypted unlock code can be prevented from being skimmed, and different unlock controllers can be identified.

In addition, in order to achieve the above object, the electronic lock system disclosed in the present invention further includes an unlocking controller having a storage unit for storing at least one of the at least two sets of unlocking identification codes; and a shooting control unit, The electronic lock is used to transmit an unlocking signal containing at least one of the at least two sets of unlocking identification codes to the electronic lock within the specific time. Thereby, one person can unlock the locks with multiple unlock codes individually, or the two unlock codes can be authorized to be transmitted to the two unlock controllers respectively, and the unlock can only be performed when the two unlock controllers act simultaneously.

In addition, the unlocking controller has a power replacement confirmation module for issuing a power replacement confirmation code when being operated. Therefore, if the user still insists on not replacing the battery when the power is insufficient, this complicated operation is required each time until the battery is completely discharged.

In addition, in order to achieve the above object, the present invention further provides a password encryption and decryption method. The password is stored in a storage unit, and the storage unit further stores a key store, the key store contains at least one key; the method includes : Obtain a dynamic base in response to each encryption request; take out the at least one key to encrypt the base, and generate an encrypted base digital for transmission; and, based on the at least one key and the at least one of the base A dynamic key is generated, and the password is encrypted with the dynamic key, and an encrypted password is generated for transmission. The password decryption method is applied in a device, the device has a storage unit for storing a key store, and the key store contains at least one key; the method includes: receiving an encrypted dynamic base code obtained by encrypting a dynamic base And an encrypted password obtained by encrypting a password; taking out the at least one key and decrypting the encrypted dynamic base figure to obtain the base; using at least one of the base and the at least one key to decrypt A dynamic key is issued; and the encrypted password is decrypted using the dynamic key to obtain the password.

To sum up, according to the above-mentioned various aspects of the present invention, since the lock and the antenna can be installed inside the door, even in the door panel, and the effective unlocking distance is more than 10m and the effective unlocking distance is more than 50m, it can provide an invisible door An electronic lock system that can achieve the above-mentioned various purposes by avoiding damage to any lock position accessories and the like. In particular, users can set unlock codes with high security by themselves, and can set different levels of security by themselves. They are not specified by the manufacturers when they leave the factory. There will be no problem of leaking password data and no Must remember the unlock code and have the problem of forgetting or revealing the password. Moreover, the electronic lock disclosed in the present invention can be unlocked remotely without using a wireless network structure, and there is no security problem of a hacker. In addition, one set of identification codes can be set as the controller code, which can store different people's opening records, and can be used for substitution authorization unlock management. Therefore, the electronic lock disclosed in the present invention can provide a hidden multifunctional electronic lock with an unlocking password independently constructed by a user, and can provide a safe and suitable electronic lock with a simple structure for a variety of uses and applications.

In the following, the corresponding preferred embodiments are enumerated with the drawings to make a clear and complete description of the components and effects of the electronic lock system disclosed in the present invention. However, the described embodiments are a part of the embodiments of the present invention, but not all the embodiments. Each element in the drawings is only used to explain the technical features of the present invention, but not to limit the present invention.

The electronic lock system according to the first embodiment of the present invention includes an electronic lock 100 and an unlocking controller 200. Since the electronic lock itself can also be a system, the electronic lock system referred to herein may also include only an electronic lock 100 itself.

As shown in FIG. 1, the electronic lock 100 disclosed in this embodiment mainly includes a wireless receiving unit 110, a storage unit 120, a processing unit 130, an unlocking actuator 140, and a setting input port 150. In a preferred embodiment, the electronic lock 00 further includes a position sensor 160 and a power warning unit 170. The wireless receiving unit 110 is used for wirelessly receiving the unlocking signal; the storage unit 120 is used for storing at least two sets of unlocking identification codes; the power of these components may be from a battery not shown, or a household power line. The so-called unlock signal may be a wireless signal including various unlock codes UC, for example, it may include a signal type code, a control code, or an identification code IP, and the form may be a fixed code, a rolling code, or a password; etc. The code IP can be an electronic lock identification code RXID, or an unlocking controller identification code TXID, or a group code GID.

The processing unit 130 mainly includes: an identification module 132 for identifying whether the received unlocking signal conforms to the at least two sets of unlocking identification codes IP; and a timing module 134 for timing the time of identifying the received unlocking signal; And, an activation signal generating module 136 is configured to identify an unlocking signal matching the at least two sets of unlocking identification codes IP within a specific time, and send an activation signal to the unlocking actuator 140 for unlocking. In a preferred embodiment, the processing unit 130 further includes a security level setting module 135 for changing the length of the specific time or the number of unlocking identification code groups to be recognized by the identification module, so that the user can respond accordingly. Do the password organization at the security level you want.

When the unlocking actuator 140 receives the actuation signal, the unlocking actuator 140 retracts the lock tongue or releases the lock to unlock the lock. Among them, of course, it can also be designed to be controlled to be locked when the actuation signal is received, which may depend on whether the control code carried in the received unlock signal is a lock or unlock command. Therefore, the term “unlocking or unlocking” is only a representative term, and may actually include locking / unlocking, or various opening actions. The input port 150 is set for the use manager to input the at least two sets of unlocking identification codes IP, and the at least two sets of unlocking identification codes IP are randomly generated by the user and can be changed by the user. It can be wired input or wireless input. The position sensor 160 is used to detect that the electronic lock has returned to the closed position or the lock tongue has returned to the tongue hole position, so that the lock tongue automatically extends to lock.

The power warning unit 170 is configured to stop receiving the unlock signal when the power enters a sleep mode when a specific value remains, and only enters the power replacement confirmation code PC from the unlock controller 200 when the sleep mode is entered. Then it will stop sleeping and receive the unlock signal.

As shown in FIG. 2, the unlocking controller 200 disclosed in this embodiment mainly includes: a wireless transmitting unit 210, a storage unit 220, a control unit 230, an operation interface 240, and a setting output / input port 250; and The control unit 230 includes a power replacement confirmation module 232. The power for these components comes from an unshown battery.

The storage unit 220 is configured to store at least one of at least two sets of unlocking identification codes IP corresponding to the electronic lock 100. The control unit 230 and the wireless transmitting unit 210 are collectively referred to as a shooting control unit, and are configured to transmit a set of unlocking codes UC containing at least one of the at least two sets of unlocking identification codes IP to the electronic lock 100 within the specific time. The operation interface 240 is used for a user to input an unlocking action. The setting output / entry port 250 is used for a user to input or output various unlock codes UC, and store various unlock codes UC in a storage unit. The power replacement confirmation module 232 is used to add a layer of control mechanism when the power of the electronic lock 100 is insufficient, allowing the user to set up another program and reminder, and sends a power replacement confirmation code PC to temporarily release the sleep of the electronic lock 100. The details are described later.

The details of the electronic lock 100 disclosed in this embodiment are further described below. The unlocking operation will be described first. The identification module 132 is capable of processing at least 5 sets of unlocking codes UC. The identification module 132 can determine a group of unlocking codes UC continuously or at the same time, and control the number of unlocking groups according to the setting of the security level setting module 138. code. Each group of unlocking codes UC may include an electronic lock identification code RXID or an unlocking controller identification code TXID, and various action control codes. When the electronic lock 100 receives a wireless RF unlocking signal from the unlocking controller 200 via the wireless receiving unit 110, it is recognized by the identification module 132. At this time, the identification module 132 may send a timing signal to the timing module 134 upon receiving the unlock signal, or may issue a timing signal to the timing module 134 after identifying the first set of unlocking identification codes. When timing, the timing module 134 sends a timeout signal after a set time after the timing starts. When the identification module 132 recognizes the correct unlocking identification code of the set number of sets, it transmits an identification pass signal to the operating signal generation module 136. At this time, the operation signal generating module 136 also refers to the signal from the timing module 134. If the time-out signal is received when the identification pass signal is received, the operation signal will not be issued; if the time-out signal has not been received, The signal can send an actuation signal to the unlocking actuator 140 to unlock it.

Next, the security level setting will be explained. In the above situation, the user can set according to the number of unlocking identification code groups and the identification time limit of these groups to set different levels of security. Of course, the settings must also match the setting of the unlocking identification code IP. That is, when the user initially sets the unlocking identification code IP, it is necessary to decide how many unlocking codes UC are to be used for unlocking, and understand that such unlocking codes UC are recognized. The module 132 recognizes the time required to perform the setting of the security level setting module 135. By designing the identification within a certain period of time, it will prevent a thief from cracking the unlock code UC by scanning the code, because scanning the code takes a longer time. By changing the setting of the security level, the coding rules of the electronic lock 100 will be changed more, the applicable functions will be changed more, and it will be more difficult for a thief to guess the password.

For example, according to security, it can be divided into the following levels. Users can set medium / high security locks according to application requirements. For example, those with low security: use one set of unlocking codes; those with medium security: use two sets of unlocking codes; those with high security: need to receive (within 1 second) two sets of unlocking codes at the same time or identify two sets of unlocking identification codes Unlocking; ultra-high security (treasury level): need to receive (within 1 second) three sets of unlocking codes or identify two sets of unlocking identification codes at the same time to unlock.

As for the setting of the unlocking identification code, especially when the electronic lock identification code RXID or the group code GID is set, in a preferred embodiment, the user uses a computer and installs a code setting application program therein to allow the computer to randomly encode Set the unlocking identification code IP. After that, the unlocking identification code IP is stored in the storage unit 120 of the electronic lock 100 through the setting input port 150. At the same time, the unlocking identification code IP is also stored in the storage unit 220 of the unlocking controller 200 through the setting output / entry port 250 of the unlocking controller 200. Among them, in a modification, the setting of the unlocking identification code IP may also be performed by the user through an unlocking controller loaded with an unlocking identification code setting module (not shown), and then the user from the unlocking controller, The unlocking identification code IP is output to the electronic lock 100 through the setting input port 250 and the setting input port 150. In this way, setting the random number of random encoding to, for example, 16 bits can generate more than 65,000 unlocking identification codes. When higher security is required, the unlocking identification code can be set to 64. Bits. The electronic lock 100 and the unlocking controller 200 are input with the same pairing unlocking identification code IP, and the user does not need to remember the unlocking code, so there is no problem of forgetting the password or being stolen because of where it is recorded. One set of unlocking codes is quite complicated. When two or more sets of unlocking codes are used, and they need to be decrypted within a certain time, it is even more difficult to steal.

Moreover, since the unlocking identification code IP is set by the user, the electronic lock 100 and the unlocking controller 200 will not be limited by the code pairing of the electronic lock manufacturer. When the unlocking controller 200 is lost accidentally, the user only needs to purchase another unlocking controller 200 for resetting, and rewrite the new unlocking identification code IP into the electronic lock and unlocking controller without replacing the entire group of electronics. Lock system. Furthermore, since there are no buttons on the electronic lock at all, it is not familiar to those who set the password and unlock the lock through the keys on the electronic lock, there will be no traces of the remaining unlock buttons, and the position of the electronic lock will be completely invisible outside the door. There won't be situations that can be easily destroyed.

Moreover, in this embodiment, unlocking is performed by using two sets of unlock codes. In a variant, one of the unlocking codes may include an identification code of the unlocking controller 200 itself as an identification. That is, when one unlocking controller 200 is used to unlock two or more electronic locks 100, or two or more unlocking controllers 200 are used to unlock one electronic lock 100, a predetermined one of the two electronic locks 100 may be received. One of the two sets of unlocking codes is set to include the identification code TXID of the unlocking controller 200. At this time, the unlocking controller identification code TXID can be a serial number and / or name specified by the user, or it can be accessed by a computer. Generated randomly, and recorded and applied to the pairing of multiple electronic locks 100. In this way, according to the choice, the corresponding identification code of another group of electronic locks or shared electronic locks can be transmitted together to open the authorized electronic lock. Therefore, by setting one of the unlocking identification codes IP to be recognized by the electronic lock 100 as the unlocking controller identification code TXID, in addition to using one unlocking controller 200 to unlock multiple electronic locks or using multiple unlocking controllers 200 to open an electronic lock, or many-to-many, the electronic lock 100 can also be used to record each unlocked controller 200 that has been unlocked, for example, ten times, or more than a thousand times, will be further used as management and For monitoring purposes.

Furthermore, in another modification, three or more sets of unlocking identification codes IP may be set, and two sets of unlocking identification codes IP may be related to the two unlocking controller identification codes TXID. In this way, a requirement can be set that requires two users who keep different unlocking controllers 200 to be present at the same time to open. That is, each unlocking controller 200 includes a respective unlocking controller identification code TXID and another set of electronic lock identification codes RXID in common. Similarly, in another modification, only two sets of identification codes IP may be stored in the electronic lock 100, and the two sets of identification codes IP may be set as the unlocking controller identification codes TXID of the two unlocking controllers 200, That is, each unlocking controller 200 is used to transmit a set of unlocking identification codes IP, so that the electronic lock 100 can be unlocked only when the two unlocking controllers 200 are unlocked simultaneously.

Therefore, in yet another modification, the electronic lock 100 may also be set to require four sets of unlocking identification codes IP, of which two sets are related to two unlocking controller identification codes TXID, and two sets are related to electronic lock unlocking identification codes RXID, respectively. Send by two unlock controllers 200. In this way, when different people keep different unlocking controllers 200, a more stringent unlocking mechanism can be provided. In addition, in contrast to the unlockable situation described above, when one set of unlocking identification code IP is set as the unlocking controller identification code TXID, a certain unlocking controller identifying code TXID can be used to prohibit a certain lost or stolen one, for example. The unlock controller 200 performs an unlock operation, that is, sets an unlock controller that cannot be unlocked.

Therefore, to synthesize various application examples, the present invention sets the electronic lock 100 in the disclosed electronic lock system to recognize at least two sets of unlocking identification codes, and sets the unlocking controller 200 to be able to transmit the at least two sets of unlocking identifications. At least one of these codes can achieve a variety of different applications and functions.

The operation details of the power warning unit 170 are further described below. In this embodiment, when a battery is used as the power source of the electronic lock 100, the power warning unit 170 monitors the battery power and turns on an LED (not shown) first when the power is 15%. And / or beep every 1 hour (not shown). When the power is 5%, the electronic lock 100 stops receiving the unlocking signal, and the unlocking operation enters sleep. At this time, even if the unlock controller 200 issues a correct unlock signal, the electronic lock 100 will not unlock. The user must first replace the confirmation module 232 with the power of the unlocking controller 200, for example, click "replaced battery" in the "insufficient power" item in the setting item of the unlocking controller 200, and let the unlocking controller 200 issue a power After replacing the confirmation code PC, the electronic lock 100 can temporarily release the sleep state after receiving, so as to receive the unlock code UC, and perform the normal identification procedure for the unlock signal. After that, if the user does not replace the battery after unlocking, the electronic lock 100 will continue to enter the sleep state, so that when the unlocking controller 200 is to be unlocked again, a complicated clicking operation is still performed to remind the user to replace the battery until The battery is really dead.

To sum up, the electronic lock disclosed by the present invention can provide a hidden multifunctional electronic lock with an unlocking password independently constructed by a user, and can provide a safe and suitable electronic lock with a simple structure for a variety of uses and applications.

In addition, in this embodiment, the unlocking controller 200 transmits the unlocking code UC in an RF manner, and does not need to be performed through the Internet. Therefore, the maintenance cost can be reduced and a hacker attack can be avoided. As for the transmission method, it can be a well-known method in the industry that directly transmits the unlocking code bits, rolling the unlocking code, or an encrypted transmission method, which is then decoded by the identification module of the electronic lock 100, Decryption and identification. Regarding the encrypted transmission method, a combination of the second embodiment and the first embodiment will be further described below to describe a secure encrypted code transmission and decoding method. According to the electronic lock system disclosed in the second embodiment of the present invention, most components of the electronic lock and the unlocking controller are the same as those of the first embodiment, so the same components and reference numerals are used for description, and the description of the same components is briefly described.

As shown in FIG. 3, in this embodiment, the control unit 230 of the unlocking controller 200 further includes a base generating module 234, an encryption module 236, and a control time limiting module 238. Store the set electronic lock identification code RXID as the unlocking identification code IP, and also store a key library, which contains at least one cryptographic key. A key can be a 64-bit key, which can be generated by random numbers. The device (not shown) is randomly generated, and the number of keys can be determined according to the application requirements of the entire system, and can be up to 100, for example. In this embodiment, each key is set in the unlocking controller 200 when it leaves the factory, but in a modified embodiment, it can also be generated by the user in a random manner through a computer program, and then set by the user. The good keys are input into the unlock controller 200. In a further modified embodiment, the storage unit 220 also stores an unlocking controller identification code TXID representing the unlocking controller itself, for use as an unlocking controller 200 for identifying unlocking.

The cardinality generating module 234 is used to generate a dynamic cardinality or a secret cardinality, which may be a random number or a counting number. When the cardinality generating module 234 is implemented by a counter, that is, each time the unlocking controller 200 issues an unlocking code UC containing the cardinality and the unlocking identification code IP, the count is accumulated by a specific value such as 1, and the value is stored. Value for subsequent sending. The encryption module 236 includes a first encryption submodule, a second encryption submodule, and a decision submodule (not shown). It is used to encrypt at least the unlocking identification code IP. The control time limiting module 238 is used to limit the time during which the unlocking controller 200 can perform the unlocking control.

Hereinafter, an encryption method in which the unlocking controller 200 transmits the unlocking code UC will be described with reference to FIG. 4. First, the cardinality generating module 234 generates a cardinality X; then the control unit 230 determines to obtain a first key in the key library of the storage unit as the initial key K0, for example, the first key among 100 keys , And then use the key K0 and the base number X to generate a set of encrypted base digital ENSD through a first encryption sub-module (not shown) in the encryption module 236. Then, according to the encryption-based digital ENSD, a second sub-key to be selected in the key library of the storage unit 220 is determined through a decision sub-module (not shown) in the encryption module 236, for example, the 33rd key. Keys as dynamic encryption key KE. The first encryption sub-module and the determination sub-module may be a hardware structure or a software program expression.

In a variant embodiment, at this time, the second key or the dynamic encryption key to be determined by the decision sub-module may also be generated through a program based on the base X and the initial key K0, or based on the base X alone. Not based on cryptographic digital ENSD. In short, it can be generated directly or indirectly from the base X.

In another modified embodiment, 100 keys are not stored in the key library, and the determination module is not used to determine which key to choose from the key library as the second key or dynamic encryption. The key KE directly generates the second key or the dynamic encryption key KE directly from the base X and the initial key K0, or only from the base X. In this way, there is no need to store a large number of keys in the unlocking controller 200.

In yet another modification, the dynamic encryption key KE may be randomly generated randomly, and does not necessarily need to be generated through a program according to the base X. During encryption, the base number X and the dynamic encryption key KE can be used to distinguish the bit positions, and together with the initial key K0 and the encryption program, the encryption base digital ENSD is encrypted. When decrypting, it is distinguished according to the bit position, the base X is taken out, and the dynamic encryption key KE is taken out from the remaining part.

In yet another modified embodiment, before the dynamic encryption key KE is determined, at least one intermediate key may be generated from the initial key K0 and the base X, and then the at least one intermediate key may be used to generate the dynamic encryption key KE. The dynamic encryption key KE is generated, that is, a multi-level intermediate key is generated to increase the complexity of encryption. In detail, for example, after generating a second key based on the initial key K0 and the base X, a third key is generated based on the second key and the base X; and then, based on the third key and the base X, through the decision module, generates a fourth key as the dynamic encryption key KE; and so on, the second and third keys are intermediate keys.

It can be known from the above various modified embodiments that the generation method of the dynamic encryption key KE can be modified in many ways, and the encryption-based digital ENSD can only contain the base X component, or cover the base X together with the dynamic encryption key KE, as long as A corresponding design cooperation between the electronic lock 100 and the unlocking controller 200 is sufficient.

Then, after the dynamic encryption key KE is generated, the dynamic encryption key KE and the set unlocking identification IP stored in the storage unit 220 are used to pass one of the second encryption sub-modules in the encryption module 236. Group (not shown) to generate a set of encrypted unlock codes ENFD. After that, the control unit 230 can send the aforementioned encrypted digital ENSD and the encrypted unlock code ENFD to the wireless transmitting unit 210, and transmit an unlock signal to the electronic lock for receiving. The second encryption sub-module can be a hardware structure or a software program expression.

In a further modified embodiment, as described above, the storage unit 220 also stores an unlocking controller identification code TXID representing the unlocking controller itself. This code may be an identification code similar to the key level, or may be only A serial number; it can be a user-defined key or a key that is encoded at the factory and given a serial number for optional use. When the encrypted base digital ENSD and the encrypted unlocking code ENFD are sent, the controller identification code can also be sent after being encrypted or unencrypted for unlocking identification of various applications. In this modified embodiment, an encrypted controller identification code ENTX is generated through the encryption module 236 according to the controller identification code TXID and an initial key K0 in the key library. In another modification, when the controller identification code TXID is also a key, the encrypted controller identification code ENTX may also be generated through the encryption module 236 according to the controller identification code TXID and the base number X. Also, in another modification, the controller identification code may be sent directly with the encryption base digital ENSD and the encryption unlocking code ENFD without encryption.

Furthermore, in a modified embodiment, the unlocking controller 200 may be divided into a parent unlocking controller by using a plurality of unlocking controller identification codes stored in the unlocking controller. When the electronic lock 100 is to be remotely controlled by the newly-added sub-unlocking controller 200, or when the unlocking controller 200 is missing and a sub-unlocking controller 200 is to be added, the newly-added sub-unlocking controller 200 can only be accessed from The master unlocking controller obtains at least one of the majority of the unlocking controller identification codes, and only uses one unlocking controller identification code obtained from the master unlocking controller, and cannot be assigned to other slave unlocking controllers. After each identification code in the female unlock controller is divided, it cannot be reused again. The advantage is that the number of unlock controllers relative to the electronic lock can be controlled. The quantity and identification code are stored in the parent unlock controller. The parent unlock controller can assign one of the set majority identification codes to the child unlock controller, but the child unlock controller cannot be copied to other child unlock controllers. This is used to facilitate the setting of the control password, the identification setting of the electronic lock, and the control of the unlocking controller.

Moreover, in a modification, the child unlock controller is set to have as many unlock controller identification codes TXID as the mother unlock controller, but it is restricted from being copied to other child unlock controllers. In this example, the unlocking controller identification code TXID can be just a serial number, or a different key, which can be edited by the user or set when the product leaves the factory.

In addition, when the mother unlocking controller authorizes the control right to the child unlocking controllers, the child unlocking controllers can be set at the same time through the control time limit module 238 to set the period during which they are authorized to unlock. In an example with a limited authorization time, the controller identification code that can be set to a preset group number in the parent unlock controller can be reused for the child unlock controller, as long as the times are staggered. In this way, the application can be expanded, for example, it is only open to a person who holds the child unlock controller to unlock at a certain period of time.

In addition, when there is more than one key library stored in the unlocking controller, and each unlocking controller is given a plurality of serial numbers, as an unlocking controller identification code TXID that can be selected or restricted for distribution, its encryption method It can also be advanced as follows. In this modified embodiment, each key in the key library can be set before the product leaves the factory, it can also be set by the user, or it can be randomly generated. Take 20 keys as an example, the unlocking controller identification code TXID is coded as the serial numbers TX1 ~ TX20, and there will be a shared initial key K0 and a dynamic encryption key K1-K20 for distribution to different sub-unlock controllers, or For different electronic locks. And each unlocking controller identification code TXID is set to correspond to one of the keys in the key library. It is conceivable that in a modification, the key library corresponding to each unlocking controller identification code may also be a separate key library, which is different from the key library used for encryption.

As shown in Figure 4, in this example, before the encryption is started, when the user initially sets an unlocking controller, he must first specify which serial number to use as the unlocking controller identification code TXID, such as TX2, the second . To send a signal and start encryption, first use an initial key K0 to encrypt the selected serial number TX2 to generate an ENTX. Then, the key corresponding to the selected serial number, such as K2, is used as the new initial key NK0 to encrypt the base X to generate an encrypted base digital ENSD as described above. The subsequent encryption actions can be encrypted with a new initial key, as described above, or encrypted with a dynamic encryption key KE. Compared to the previous embodiment, when the initial key K0 is uniformly set when the product is shipped from the factory, the key for encrypting the base X in this modification is not the fixed K0 described above, but will be The new initial key NK0, which changes according to the user's settings, has the advantage that the variability of the encryption key can be increased, and it is more difficult to decode, and it can be applied to the number of unlocking controllers.

Hereinafter, another aspect of the electronic lock 100 will be described. As shown in FIG. 5, the processing unit 130 of the electronic lock 100 of this embodiment further has a decryption module 138, and the decryption module 138 includes first and second decryption sub-modules that are set to operate corresponding to the unlock controller 200. (Not shown), and a decision sub-module (not shown). In addition to storing the unlocked identification code set for comparison in the storage unit 120, the storage unit 120 is also used to store a key library that is the same as the key library stored in the unlock controller 200, that is, it contains multiple password keys Each key can be a 64-bit key, and the number of this key can be arbitrarily set up to 100. However, in a modified embodiment, the key store in the storage unit 120 does not store a key identical to the key store in the unlocking controller 200, but only stores a protocol initial same as that of the unlocking controller 200. The key K0 is sufficient.

Hereinafter, the decoding process of the electronic lock 100 will be described with reference to FIG. 6. When the electronic lock 100 receives the transmission codes ENSD and ENFD, the identification module 132 first determines which type of code to determine how many codes to solve. Then, because the electronic lock 100 also stores a key library of, for example, 100 sets of keys, and the first key is set as the initial key K0 with the setting of the unlocking controller, the electronic lock 100 receives the transmission When the incoming RF signal is received, the received encryption base digital ENSD is first decrypted with the initial key K0 and the first decryption sub-module in the decryption module 138, and the cardinality generation module of the unlocking controller 200 is calculated. The radix X produced by 234. Then, based on the decrypted base number X, through the decryption module 138, a decision sub-module (not shown) having the same logical design as the unlock controller 200 is used to determine a second key in the key library. At this time, the second key is the same as the dynamic encryption key KE in the unlocking controller 200. Therefore, the obtained second key is hereinafter also referred to as a dynamic encryption key KE.

In addition, as described above, when the storage unit 120 stores a key library similar to the unlocking controller 200, the selected dynamic encryption key KE is found from the key library. However, in a variant embodiment, when the key library in the unlocking controller 200 does not store many keys, but is generated randomly based on the base X, relatively, the storage unit 120 of the electronic lock 100 does not need to store as many or The same key, as long as the base number X solved by the decryption module 138 is combined with the logical setting in the unlock controller 200 to directly solve the dynamic encryption key KE. The decryption sub-module and the decision sub-module can also be a hardware structure or a software program expression.

Also, in another modified embodiment, when the unlocking controller 200 is designed to have at least one intermediate key for encryption, the electronic lock 100 is also designed in the decryption module 138 to unlock the at least one intermediate key. That is, when at least one intermediate key is provided between the initial key K0 and the encryption key KE, the second key resolved by the initial key K0 is an intermediate key. At this time, the intermediate key is used again. Key and the previous radix X, a third key is solved as a dynamic encryption key KE. When there are two intermediate keys, the rest can be deduced by analogy.

Then, the received encryption and unlocking code ENFD is decrypted through the second decryption sub-module (not shown) and the dynamic encryption key KE that was previously solved to obtain the transmitted unlocking code UC and complete the decryption action. . After that, the identification module 132 can compare the decrypted unlocking code UC with the unlocking identification code stored in the storage unit 120 to determine whether to perform the unlocking operation.

Furthermore, in a modified embodiment, the processing unit 130 further includes a cardinality comparison module 139. Each time the cardinality X is decrypted, the cardinality X is stored, and the cardinality X is compared with the cardinality previously stored. , When the difference is within a specific value range, or different, decryption can be achieved. In particular, when the unlocking controller 200 uses the count as the base X, the electronic lock 100 also stores the decrypted new base. The unlock can only be unlocked if the new base and the old base match or differ in a specific range. In this way, even if the wireless signal is profiled, it cannot be reused, and the electronic lock 100 will not be unlocked because it is profiled. Especially when the count is as high as several hundred thousand, it must be repeated after many years, which shows the advantages of using count as the base.

In addition, in this embodiment, even if the decryption module 138 of the electronic lock 100 solves the count as the base, the dynamic encryption key KE must be solved with the base X again, and the dynamic encryption key KE is used again. Only after decrypting the encryption and unlocking code ENFD can the unlocking code UC be unlocked, which will be more difficult for a thief to decode.

In yet another modified embodiment, when the electronic lock 100 is controlled by the majority unlock controller 200 and the unlock count is used as the base X, the storage unit 120 stores a record with a majority count corresponding to each majority unlock controller. Counting library. In this embodiment, when the electronic lock 100 receives the encrypted base digital ENSD and the encrypted unlock code ENFD, it will receive the encrypted or unencrypted controller identification code ENTX or TXID at the same time. When the electronic lock 100 recognizes which signal from the unlocking controller 200, it obtains the corresponding unlocked count of the controller identification code TXID, as a basis for judging whether the count meets the unlocking conditions, and The newly received count is stored in a counter in a position corresponding to the unlocking controller number. In this embodiment, depending on the memory size, up to 100 sets of counts can be stored.

In addition, in an advanced embodiment of this modification, when the electronic lock 100 obtains the TXID, in addition to finding the corresponding count, it will also find a modification of the unlocking controller 200 as described above. The new initial key NK0 in the. Is used to decrypt the received encrypted base digital ENSD with this new initial key NK0 to obtain the base value X. In this example, the electronic lock 100 stores a key library that is the same as the key library in the unlocking controller 200, and each key in the key library has a corresponding unlocking controller identification code TXID. When the electronic lock 100 receives the encryption controller identification code ENTX, it first uses the shared initial key K0 to unlock the selected serial number of the unlocking controller 200, such as TX2, and then uses the key corresponding to TX2, such as K2. As a new initial key NK0, it is used to decrypt the base X. The other subsequent decryption mechanisms after the base X is decrypted are the same as those described in the previous embodiment and will not be described again.

Moreover, in this second embodiment, the timing for the timing module to start timing may be started as soon as the decryption module 138 receives the unlock signal.

Moreover, in a preferred embodiment, the processing unit 130 of the electronic lock 100 also has a defense mechanism (not shown). That is, when signals with the same base X are received consecutively more than a certain number of times within a specific time, or the base X representing a certain serial number is continuously wrong more than a certain number of times, for example, more than 30 times, the electronic lock 100 will sleep for 1 hour. In order to prevent thieves from scanning frequently. Furthermore, it can be further set that once the legal unlock controller 200 is to be unlocked, the unlock controller 200 must first send an identity confirmation signal to perform a wake-up action to release the hibernation, so that it cannot be unlocked without being limited to 1 hour of sleep. It is also preferable that the identity confirmation signal is encrypted with a specific key agreed upon by both parties, for example.

In addition, before the unlocking controller 200 sends the encryption-based digital ENSD and the encryption unlocking code ENFD, it may also check as the decoding method of the electronic lock 100 to confirm that the two codes ENSD and ENFD are indeed unlocked with the setting Code.

In the above embodiment, the encryption method is described in the case where a two-layer key is set. In a variant embodiment, the encryption method may not use a two-layer key as described above, but a one-layer key. That is, only one key is stored in the key library, and the cardinality and the unlocking identification code IP can be encrypted with the one key. In particular, when the unlocking controller identification code TXID itself is in the form of a key, and is set by the user or randomly, and the pairing status with the electronic lock is simple, the identification code TXID can be directly used to base the number X and the unlocking identification code IP perform encryption and decryption operations separately or together to form a simple encryption method.

According to the above encryption method, when sending a set of unlocking codes UC, there can be multiple combinations. For example, as described in the first embodiment, only the fixed code or rolling code of the unlocking code UC can be sent; a fixed code of the partial unlocking code UC can be sent, plus the encryption base digital ENSD and the encrypted unlocking code ENFD; or, only The encryption base digital ENSD and the encryption unlock code ENFD; or, the encryption base unlock code which is encrypted together with the unlock code. Therefore, preferably, there is a code type identification element before each code, so that the electronic lock receiving unit can identify how many codes the received signal contains, and then perform different decoding steps accordingly. When sending the fixed code of the partial unlocking code UC together with the encryption base digital ENSD and the encrypted unlocking code ENFD, one advantage is that after decrypting the encrypted unlocking code ENFD to unlock the unlocking code UC, it can be compared with the fixed code transmitted at the same time. In order to further prevent the pirates from infiltrating the encrypted signal due to noise, leading to the error situation of successful decoding.

In the above embodiment, the advantage of using the dynamic base X in the encryption and unlocking code is that whether the base X is a count or a random number, the encryption and unlocking codes sent each time can be different, and the unlocking code is prevented from being Recorded for repeated unlocking. That is, the count will change with the number of times the signal is sent. In addition to increasing the difficulty of being decoded, it can be sent to the decryption side for comparison. In a standardized way that limits the gap forward, it prevents the unlocking signal from being used repeatedly after it is recorded. To unlock. If the cardinality is a random number, it can also increase the difficulty of being decoded, and a negative cardinality can be added to the decryption end to repeatedly prohibit the unlocking of the regular list to prevent unlocking signals from being repeatedly recorded for unlocking. In an example in which a dynamic encryption key KE is generated using the base number, and the unlocking code UC is encrypted with the dynamic encryption key KE, and then the encrypted unlocking code ENFD is sent, it will be more difficult for a thief to decode.

To sum up, the present invention uses two sets of user-built identification codes to make the function expand very much, and can provide a hidden multi-function remote control electronic lock that the user can independently construct the unlock password, and provide a user A remote-control electronic lock system with a security level can be independently constructed, and then the method of transmitting the unlock code through secure encryption can make the entire electronic lock more secure and prevent the unlock code from being stolen. Electronic lock system.

The above description is only an embodiment of the present invention, and thus does not limit the patent scope of the present invention. Any equivalent structure or equivalent process transformation made by using the description and drawings of the present invention, or directly or indirectly applied to other related technologies The same applies to the fields of patent protection of the present invention.

100‧‧‧Electronic lock

110‧‧‧Wireless receiving unit

120‧‧‧Storage unit

130‧‧‧processing unit

132‧‧‧Identification Module

134‧‧‧ timing module

135‧‧‧Security Level Setting Module

136‧‧‧Activation signal generation module

138‧‧‧Decryption Module

139‧‧‧radix comparison module

140‧‧‧ unlock actuator

150‧‧‧ set input port

160‧‧‧Position sensor

170‧‧‧ Electricity warning unit

200‧‧‧ unlocking controller

210‧‧‧Wireless transmitting unit

220‧‧‧Storage unit

230‧‧‧control unit

232‧‧‧Power Replacement Confirmation Module

234‧‧‧ Cardinality generation module

236‧‧‧Encryption Module

238‧‧‧Control time limited module

240‧‧‧ operation interface

FIG. 1 is a schematic diagram of components of an electronic lock according to a first embodiment of the present invention. FIG. 2 is a schematic diagram of components of an unlocking controller according to the first embodiment of the present invention. 3 is a schematic diagram of components of an electronic lock according to a second embodiment of the present invention. FIG. 4 is a flowchart of an encryption method according to a second embodiment of the present invention. 5 is a schematic diagram of components of an unlocking controller according to a second embodiment of the present invention. FIG. 6 is a flowchart of a decryption method according to a second embodiment of the present invention.

Claims (22)

An electronic lock system includes an electronic lock having: a wireless receiving unit for wirelessly receiving an unlocking signal; a storage unit for storing at least two sets of unlocking identification codes; a processing unit including: an identification module For receiving the unlocking signal and comparing the at least two sets of unlocking identification codes; and, an actuating signal generating module for sending an actuating signal when comparing the at least two sets of corresponding identification codes. An unlocking actuator; an unlocking actuator for unlocking when the actuation signal is received; and a setting input port for a user to variably set the at least two sets of unlocking identification codes And at least one of the at least two sets of unlocking identification codes is a random number generated by a user operation. For example, the electronic lock system of claim 1 further includes a timing module to start timing after receiving the unlock signal, and the actuation signal generating module compares the at least two corresponding identifications within a specific time. When the code is sent, the action signal will be sent out. For example, the electronic lock system of claim 2, wherein the processing unit further includes a security level setting module for changing the length of the specific time or the number of unlocking identification code groups to be recognized by the identification module. The electronic lock system of claim 1, wherein at least one unlocking identification code is an unlocking controller identification code. For example, the electronic lock system of claim 1, wherein one of the at least two unlocking identification codes is a power replacement confirmation code, and wherein the electronic lock further includes a power warning unit for when a specific value of power remains , Enter the sleep mode and stop receiving the unlock code signal, and under the sleep mode, the sleep will only stop when the power replacement confirmation code is received. For example, the electronic lock system of claim 1, wherein the storage unit stores a key store, the key store contains at least one key; the unlock signal received by the wireless receiving unit includes a use of both a base and the key At least one of them is an encrypted unlock code obtained by encrypting a group of unlock codes; and the processing unit further includes a decryption module, which is used to extract the base number and the decryption code from the received encrypted unlock code using the key. At least one of a group unlocking code for comparison with one group of unlocking identification codes. For example, the electronic lock system of claim 6, wherein the decryption module further uses at least one of the at least one key and the cardinality to generate a dynamic encryption key through an encryption logic, and then uses the dynamic encryption Key to unlock the set of unlock codes. For example, the electronic lock system of claim 6, wherein the cardinality is a count, and the processing unit further includes a cardinality comparison module for comparing the cardinality with the cardinality previously unlocked after decrypting the cardinality. , When the difference is within a specific range, unlocking can be achieved. For example, the electronic lock system of claim 8, wherein the unlocking signal received by the wireless receiving unit includes an unlocking controller identification code corresponding to each unlocking controller, and the electronic lock can be used to store a counting library, which is recorded with Each one corresponds to the majority count of the majority of unlocking controllers. The base number is compared with the base number decrypted by the module and compared with the existing count corresponding to the received controller identification code. For example, the electronic lock system of claim 6 or 9, wherein the key library stores keys corresponding to different unlocking controller identification codes, and first uses an initial key in a key library to control the unlocking of the encryption. The device identification code is decrypted, and after obtaining the unlocking controller identification code, the key corresponding to the unlocking controller identification code is used as a new initial key to perform subsequent decryption of the encrypted unlocking code. For example, the electronic lock system of claim 6, wherein the processing unit further includes a defense mechanism for putting the electronic lock to sleep when an unlocking signal having the same base number is continuously received more than a certain number of times or the base number is continuously wrong for a certain number of times. status. For example, the electronic lock system of claim 1 further includes at least one unlocking controller having: a storage unit storing at least one of the at least two sets of unlocking identification codes; and a shooting control unit for storing the An unlocking signal containing at least one of the at least two sets of unlocking identification codes is transmitted to the electronic lock within a certain time. For example, the electronic lock system of claim 12, wherein the unlocking controller also has a power replacement confirmation module for causing the unlocking controller to issue a power replacement confirmation code when it is actuated. For example, the electronic lock system of claim 12, wherein the storage unit of the unlocking controller stores a key library containing at least one key; the control unit further includes a base generation module and an encryption module ; The cardinality generation module is used to generate a cardinality; the encryption module is used to generate a set of unlock codes based on at least one of the cardinality and a key in the key library A set of encrypted unlock codes for the wireless transmitting unit to transmit an unlock signal containing the set of encrypted unlock codes. For example, the electronic lock system of claim 14, wherein the encryption module further comprises a method for generating at least one dynamic encryption key according to at least one of a key in the key library and the cardinality, and then The dynamic encryption key encrypts the group of unlocking codes, and generates the encrypted unlocking code. For example, the electronic lock system of claim 14, wherein the unlocking controller is set with an unlocking controller identification code and is matched with a key in one of the key stores; and wherein the encryption module is different from The initial key of the matched key encrypts the unlocking controller identification code, generates an encrypted controller identification code for transmission, and uses the key matched by the unlocking controller identification code as the unlocking controller identification code. Key for encryption. For example, the electronic lock system of any one of claims 12 to 16 includes a female unlocking controller and at least one child unlocking controller, and the storage unit of the female unlocking controller stores a plurality of unlocking controller identification codes; the child unlocking control The device stores at least one of the plurality of unlocking controller identification codes, and can no longer distribute the at least one unlocking controller identification code to other child unlocking controllers. For example, the electronic lock system according to item 12, wherein the unlocking controller further includes a control time limiting module for limiting the unlocking controller to be used only within a specified time. A password encryption method, wherein the password is stored in a storage unit, and the storage unit further stores a key store, the key store contains at least one key; the method includes: obtaining a dynamic base in response to each encryption request; Take out the at least one key to encrypt the base number, and generate an encrypted base number for transmission; and generate a dynamic key based on at least one of the at least one key and the base number, and then use the dynamic key The password is encrypted, and an encrypted password is generated for transmission. The method of claim 19, wherein one of the keystores is set as an initial key, and the method further comprises: using the initial key, to select a corresponding one of the other keys in the keystore selected by the user. The serial number of the key is encrypted, and an encrypted serial number is generated for transmission; and wherein the step of encrypting the base is encrypted by using the key corresponding to the serial number; and the dynamic key is using the corresponding key And at least one of the cardinality. A password decryption method is applied in a device. The device has a storage unit for storing a key store, and the key store contains at least one key. The method includes: receiving an encrypted dynamic encrypted by a dynamic base. A base number and an encrypted password obtained by encrypting a password; taking out the at least one key and decrypting the encrypted dynamic base number to obtain the base number; using at least one of the base number and the at least one key , Decrypting a dynamic key; and using the dynamic key to decrypt the encrypted password to obtain the password. The method of claim 21, wherein one of the key libraries is set as an initial key; and the method further comprises: receiving an encrypted serial number encrypted by a one-to-one serial number; and taking out the initial key, The serial number is decrypted; and the step of decrypting the encrypted base number is to use the key corresponding to the serial number in the key library to decrypt; and the dynamic key system uses the corresponding key and the base number At least one of the two.