CN102855577A

Movatterモバイル変換

Info

Publication number: CN102855577A
Application number: CN2012103145910A
Authority: CN
Inventors: 周利平
Original assignee: Individual
Current assignee: Individual
Priority date: 2012-08-30
Filing date: 2012-08-30
Publication date: 2013-01-02
Anticipated expiration: 2032-08-30
Also published as: CN102855577B

Abstract

Description

Multiple commodity antifake check method based on cloud computing

Technical field

The present invention relates to the correlation techniques such as mobile communication, network security, database, cloud computing, be specifically related to a kind of based on the multiple commodity antifake check method of cloud computing.

Background technology

Along with the development of society, the aggravation of competition and huge profit are ordered about, and the behavior of various false makings, fraud is increasing, serious infringement production firm and consumer's interests, bring threat for people's safety of life and property.In order to allow the public identify personation, fake product fast, accurately, easily, hit the false making imitation behavior, protection brand names, market and consumers in general's legitimate rights and interests, various anti-fake certificate technology are arisen at the historic moment.

At present, the commodity counterfeit prevention that exists on the market mainly can be divided into two classes: the false proof and digital false-proof technology of commodity packaging.

Wherein the false proof overwhelming majority of commodity packaging remains at paper material and makes an issue of, mainly be to stamp label by special material at commodity, false proof such as the version line, printing ink is false proof, antiforge laser holographic etc., anti-fake effect has been played in these false proof measures to a certain extent, but there are some defectives, these class methods exist that antiforge function is single, the antifalsification label transreplication, and many illegal molecules drop into manpower financial capacities and copy, and have brought huge loss to the public.

Existing digital false-proof technology is to set up the information of goods information data storehouse by the backstage, before product export, give each commodity unique product false proof code, set up a details database on the backstage by manufacturer, the public can check that storage information in commodity counterfeit prevention code and the database is whether consistent judges its true and false.This method not only possesses certain antiforge function, and can realize the quality tracing of product, when product generation quality problems, can control to concrete commercial networks.But some shortcomings that also exist, exactly when the capacity of product database acquires a certain degree, retrieve data amount and huge, the search efficiency of product will be received and have a strong impact on, and cause query rate low, a lot of consumers are unwilling to wait for returning of Query Result.On the other hand, the marker method of digital code anti-false is single, and exposes outside, and solution anti-counterfeiting mark self is not forged, enciphered message is not tampered, inquiring and authenticating is once destroyed is the vital problem of digital false-proof technology.

Will really guarantee the validity of anti-fake product, at first anti-fake product identification must be simple, and the consumer can easily discern the false from the genuine, and query responding time will be quick and precisely; Secondly, the forward-looking and exclusivity of anti-counterfeiting technology, product core technology and crucial disposal route are original creation; The 3rd, " key " GPRS of anti-fake product has the Third Party Authentication mechanism of authoritative qualification, rather than rests in the anti-fake scheme provider hand, and can't decode; At last, the not recyclable or not reproducible use of anti-fake product, in a single day commodity are used, and antifalsification label namely lost efficacy, and prevented that the fake producer from recycling.

Summary of the invention

The invention provides a kind of multiple commodity antifake check method based on cloud computing, be intended to solve the problems such as existing package anti-counterfeiting technical difficulty is low, cost is high, easy forgery, and the digital code anti-false marker is single, auth response is slow, database volume is little; The present invention also provides the Comodity anti-fake system of realizing the method.

Multiple commodity antifake check method based on cloud computing provided by the invention, it comprises the steps:

(a) each lawful merchandise is set up unique security code, set up simultaneously a central certificate server and several subordinate's certificate servers that distributes by the area, be provided with proofing state database and basic information database in central authorities' certificate server, subordinate's certificate server is provided with the details database; Security code was stored in the basic information database together with manufacturing enterprise's information, commodity production date, and each fake certification record of commodity is stored in the proofing state database, and security code is stored in the details database together with detailed product information; Be provided with address database in the described central certificate server, and based on the address mapping table of address database generation with subordinate's certificate server;

(b) when the consumer need to carry out fake certification to the commodity of buying, utilize the anti-fake certificate terminal to read security code in commodity or the commodity packaging, and utilize terminal secret key that unique security code of product commodity is signed to generate the first signature file, be sent to central certificate server together with Termination ID;

(c) after central certificate server receives the information of anti-fake certificate terminal transmission, utilize PKI that the first signature file is verified; If the verification passes, then read the data in the proofing state database and return to the anti-fake certificate terminal, then carry out next step, otherwise the illegal checking of prompting and termination service;

(d) after central certificate server passes through the first signature file checking, the Termination ID that the anti-fake certificate terminal that receives is sent carries out analyzing and processing, according to obtaining corresponding subordinate's certificate server after the ownership place inquire address database of Termination ID and the address mapping table;

(e) adopt central certificate server private key that security code is encrypted and generate the second signature file, and security code, Termination ID and the second signature file are sent to corresponding subordinate's certificate server, change simultaneously the data in the proofing state database;

(f) subordinate's certificate server utilizes PKI that the second signature file is verified; After checking is passed through, carry out next step, otherwise the illegal checking of prompting and termination service;

(g) after subordinate's certificate server is proved to be successful the second signature file, according to the product false proof code retrieval details database that obtains, the access authentication result, and with its private key authentication result is encrypted, return to the anti-fake certificate terminal according to Termination ID again;

(h) after the anti-fake certificate terminal is obtained authentication result, utilize central certificate server PKI it to be verified checking is passed through, then the result is presented at safely on the anti-fake certificate terminal device.

Preferably, in the described step (a), the manufacturer at first sends authentication application to central certificate server, submits the report of enterprise's qualifications and record of service and product quality to, through central certificate server examine by, and be stored in the basic information database;

Central authorities' certificate server sends security code to the manufacturer, and the manufacturer generates antifalsification label according to security code, and this antifalsification label is affixed in product or the packing of product;

Before commodity dispatch from the factory, by merchandise news typing terminal scanning antifalsification label, to login central certificate server and submit commodity production date, production address and term of validity information to, the data in the change proofing state database are " dispatching from the factory "; Central authorities' certificate server is dispatched preservation to those information encryptions and according to resource management module, is assigned at last in the details database of each subordinate's certificate server.

Preferably, the details of identical product adopt the reproduction technology of cloud storage to be distributed in three subordinate's certificate servers.Copy the situation that three copies can satisfy general visit data amount, can reach load balancing, if visit capacity is excessive, cloud computing NameNode node can dynamically be adjusted copy amount according to the visit capacity size.

The anti-fake certificate terminal provides dual mode: the portable set (mobile phone, PDA etc.) of reading code software is installed and is fixed on the anti-pseudo-terminal in market.For the mobile phone operating system of portable set characteristics and current main-stream, such as Android, IOS, Symbian.Can use Java language exploitation Embedded Application module, cooperate to be contained in advance in the mobile phone application system or the free download address is provided with the mobile phone manufacturer.The anti-fake certificate terminal can be for dealer, retailer, consumer under different trading environment.

The anti-fake certificate terminal be responsible for reading commodity anti-counterfeiting mark, the unique coding of product is decoded, obtained to sign is security code; It obtains the anti-fake certificate Termination ID simultaneously, if the authentication terminal is mobile phone, then gathers 11 cell-phone numbers corresponding to SIM cards of mobile phones; Prevent pseudo-terminal if the authentication terminal is the market, then gather the false proof IP address of terminal in market.

Preferably, described anti-fake certificate terminal is the anti-pseudo-terminal in portable set or market.

Preferably, described portable set is smart mobile phone, and Termination ID is cell-phone number corresponding to this smart mobile phone.

Preferably, the Termination ID of the anti-pseudo-terminal in described market is its IP address.

Preferably, described server adopts cloud computing Hadoop framework, and central certificate server is equivalent to the NameNode node, and subordinate's certificate server is equivalent to the DateNode node.

Central certificate server of the present invention comprises two large functions: the authentication request of the application for registration of management commodity information terminal and reception anti-fake certificate terminal.Central authorities' certificate server is set up by third party authoritative institution, examines the report of enterprise qualification and product quality before commodity production enterprise submits product information to, writes central certificate server if detect by the product information that then allows merchandise news typing terminal.The request of processing the anti-fake certificate terminal comprises, the first signature file deciphering to the anti-fake certificate terminal, be responsible for inquiry anti-fake certificate Termination ID ownership place, according to " the nearest principle in address " inquiry best, subordinate's certificate server, central authorities' certificate server has address database, sets up best address mapping table according to Query Result and is stored in the address database; After the checking of the first signature file is passed through, utilize central certificate server private key that the unique coding encrypting of product of accepting is generated the second signature file, send to only subordinate's certificate server together with security code, anti-fake certificate Termination ID.

Subordinate's certificate server is responsible for receiving security code, anti-fake certificate Termination ID and the second signature file that central certificate server sends, and is provided with proofing state database and details database in subordinate's certificate server.By security code retrieval commodity proofing state and information contrast, return to the anti-fake certificate terminal after the inquiring and authenticating result utilized encrypted private key.

Subordinate's certificate server directly is responsible for retrieval and the contrast verification to true and false merchandise news, when portfolio increases, central authorities' certificate server can increase subordinate's certificate server as required in each department, as long as corresponding address on adding in address database.

Multiple commodity antifake check method of the present invention can provide the commodity Antiforge inquiry for the consumer effectively in conjunction with correlation techniques such as mobile communication, network security, database, cloud computings.The present invention can be widely used in the fields such as commodity counterfeit prevention, is applicable to multiple false proof carrier, such as RFID label, bar code, two-dimensional bar code and in-depth application etc.

The present invention has following characteristics:

(1) central certificate server is set up by third party's authoritative department, has greatly alleviated on the one hand the cost that enterprise sets up authentication server and maintenance server voluntarily; On the other hand, guarantee the authenticity and integrity of merchandise news from the source, the product information typing needs after the third party examines can typing, thereby has prevented that illegal adulterator from arranging voluntarily the product false proof code and forging the central certificate server of illegal checking.

(2) message transmitting procedure adopts digital signature technology, and various process adopts dynamic digital signature, effectively the authenticity of guarantee information and can not tamper.

(3) the selective basis anti-fake certificate Termination ID ownership place of certificate server distributes best subordinate's certificate server by central certificate server according to " recently principle ", can realize the quick response of verifying.

(4) the anti-fake certificate terminal provides dual mode, the portable set (mobile phone, PDA etc.) of security code reading software is installed and is fixed on the anti-pseudo-terminal in market, can read various types of security codes, such as RFID, bar code, two-dimensional bar code etc., cost is low, effectively solves the high problem of special-purpose code reader cost.

(5) this system adopts the Hadoop framework, central authorities' certificate server maintenance and management is located at each regional subordinate's certificate server, system is easy to expansion, when portfolio increases, can by increasing subordinate's certificate server node, can effectively alleviate the excessive checking delay that causes of visit capacity and Single Point of Faliure problem.

Description of drawings

Fig. 1 is the process flow diagram of anti-counterfeit authentication method of the present invention.

Fig. 2 is the structural representation of fake certification of the present invention system.

Fig. 3 is the functional block diagram of fake certification of the present invention system.

Embodiment

The present invention is further detailed explanation below in conjunction with drawings and Examples, but protection scope of the present invention is not limited to this.

As shown in Figure 1, a kind of multiple commodity antifake check method based on cloud computing, it comprises the steps:

In the described step (a), the manufacturer at first sends authentication application to central certificate server, submits the report of enterprise's qualifications and record of service and product quality to, through central certificate server examine by, and be stored in the basic information database;

The enforcement of multiple commodity antifake check method of the present invention depends on a multiple commodity counterfeit prevention verification system, as shown in Figure 2, this system is by merchandise news typing terminal, anti-fake certificate terminal, central certificate server and several subordinate's certificate servers, and the below is described in further detail the concrete formation of each several part.

As shown in Figure 3, merchandise news typing terminal is comprised of Card read/write module and terminal communication module.The Card read/write module is responsible for company information and product information are submitted to central certificate server authentication, after central authorities' certificate server receives request information is processed, and by the terminal communication module result being returned to merchandise news typing terminal, checking is written to company information and product information in the best subordinate's certificate server that is distributed by central certificate server by rear permission Card read/write module.

The anti-fake certificate terminal is comprised of anti-fake certificate terminal display module, anti-fake certificate terminal communication module and end message processing module.The terminal display module is used for showing that central certificate server and subordinate's certificate server are to the return results of its request.The result of for the second time product information authentication of the result that the terminal communication module is authenticated by central certificate server to return for the first time and subordinate's certificate server, and the result that will return sends to the terminal display module by the mobile network.The end message processing module is used for authentication result and the digital signature that the verification terminal communication module is submitted to, and with the PKI of central certificate server digital signature is verified, shows to the user in display module by rear.

Central authorities' certificate server is comprised of central certificate server communication module, message processing module, scheduling of resource module, query State database and address database.Central authorities' certificate server communication module is accepted the Data Enter request of merchandise news typing terminal and the product certification request of anti-fake certificate terminal, return result by message processing module, the anti-fake certificate Termination ID that the scheduling of resource module is obtained according to message processing module number number analyzes ownership place according to the authentication Termination ID, the inquire address database returns best subordinate's certificate server request is operated accordingly.Deposit Product Validation number of times, query time etc. in the query State database.

Subordinate's certificate server is comprised of communication module, message processing module and details database.Subordinate's certificate server communication module is accepted security code, anti-fake certificate terminal and the digital certificate that the security code authentication center sends, transfer to message processing module and verify processing, carry out corresponding verification operation, inquire about the details database, and by communication module the result is returned to the anti-fake certificate terminal.The details database is deposited product false proof code, digital certificate and the product resume information etc. of merchandise news typing terminal typing.

As a kind of specific embodiment, the anti-fake certificate terminal is the mobile phone that the security code scanning software is housed, and the security code on the false proof carrier is two-dimensional bar code.

(1) consumer uses the security code (bar code) on anti-fake certificate terminal (mobile phone) the items scanning packing, BCE12345678XY for example, read and utilize behind the unique coding of commodity behind the anti-fake certificate terminal secret key ciphering signature together with Termination ID number, the Termination ID here number is phone number (such as 15988888888), transfers to security code and verifies central certificate server.

(2) after security code central authorities certificate server receives information, identity information to authentication application is examined, decrypted signature file and the legitimacy of inquiring about the unique coding of product are carried out information query by rear then selection, subordinate's certificate server to this checking.

(3) the first digital signature identification is passed through after, central authorities certificate server according to Termination ID resolve well cell-phone number ownership place (as, Hangzhou), the inquiry of central certificate server, address database select, subordinate certificate server nearest from Hangzhou to carry out auth response.And the security code encrypted signature sent to the best, subordinate's certificate server together with Termination ID and security code.

(4), subordinate's certificate server (Hangzhou) receives checking request, the digital certificate that receives is decrypted, after checking is passed through, then with security code BCE12345678XY inquiry details database and verify contrast.

(5) after Product Validation information was returned, subordinate's certificate server was encrypted authentication result according to the Termination ID that obtains and number is sent to anti-fake certificate terminal (mobile phone) by the mobile network.

(6) after the anti-fake certificate terminal is received authentication result, can not directly see the result, need to be by to just seeing the result after the authentication after the decrypt ciphertext, so far, whole fake certification finishes.

Claims

1. the multiple commodity antifake check method based on cloud computing is characterized in that comprising the steps:

(d) after central certificate server passed through the first signature file checking, the Termination ID that the anti-fake certificate terminal that receives is sent carried out analyzing and processing, according to obtaining corresponding subordinate's certificate server after Termination ID inquire address database and the address mapping table;

(g) after subordinate's certificate server is proved to be successful the second signature file, according to the product false proof code retrieval details database after the deciphering, the access authentication result, and with its private key authentication result is encrypted, return to the anti-fake certificate terminal according to Termination ID again;

2. the multiple commodity antifake check method based on cloud computing according to claim 1, it is characterized in that: in the described step (a), the manufacturer at first sends authentication application to central certificate server, submit the report of enterprise's qualifications and record of service and product quality to, through central certificate server examine by, and be stored in the basic information database;

3. the multiple commodity antifake check method based on cloud computing according to claim 2 is characterized in that: the details of identical product adopt the reproduction technology of cloud storage to be distributed in three subordinate's certificate servers.

4. the multiple commodity antifake check method based on cloud computing according to claim 1 is characterized in that: described anti-fake certificate terminal is the anti-pseudo-terminal in portable set or market.

5. the multiple commodity antifake check method based on cloud computing according to claim 4, it is characterized in that: described portable set is smart mobile phone, Termination ID is cell-phone number corresponding to this smart mobile phone.

6. the multiple commodity antifake check method based on cloud computing according to claim 4 is characterized in that: the Termination ID of the anti-pseudo-terminal in described market is its IP address.

7. the multiple commodity antifake check method based on cloud computing according to claim 1, it is characterized in that: described server adopts cloud computing Hadoop framework, central authorities' certificate server is equivalent to the NameNode node, and subordinate's certificate server is equivalent to the DateNode node.