Embodiment
The mobile fingerprint access control system and its embodiment of method provided below in conjunction with the accompanying drawings the present inventionElaborate.
Referring to shown in Fig. 1 and Fig. 2, the present invention provides a kind of mobile fingerprint access control system, including:One fingerprint recognition mouldBlock 11, a mobile fingerprint enabling control module 12, the access controller 21 of cloud platform server 20 and one.
Wherein, the fingerprint identification module 11 be used for obtain a user fingerprint feature information (such as fingerprint image figure,But not limited to this).The fingerprint identification module 11 further comprises a finger print safety submodule 130, the finger print safety submoduleBlock 130 (is signed using RSA2048 AESs in the present embodiment for the fingerprint feature information being encrypted certificationName protection, so ensure that fingerprint feature information can not be by counterfeit and distort), and the fingerprint feature information that certification will have been encryptedContrasted with the fingerprint feature information that prestores, to export a fingerprint signature authentication result, (for example signature authentication result is 1With 0, wherein, 1 represents that user is validated user, and 0 represents that user is disabled user;The value not limited to this of signature authentication result).SeparatelyOutside, it is preferable that tightened up examination & verification approval procedure can be set, such as setting only specific finger of user could be by recognizingCard, other fingers can not then pass through certification.That is, the fingerprint feature information prestored is the fingerprint of specific finger hereinCharacteristic information, if the fingerprint feature information prestored is thumbprint characteristic information, and the fingerprint identification module 11What is be collected into is the fingerprint feature information of forefinger, then can not pass through certification.The above-mentioned fingerprint feature information prestored is more thanIt is limited to thumbprint characteristic information.
One mobile fingerprint enabling control module 12 (it can be realized by an APP programs), the mobile fingerprint opens the doorControl module 12 is arranged on a mobile phone 10 and (can be set in the handset 10, can set in other embodiments in the present embodimentIn other mobile terminals) in, the mobile phone unique identifier (i.e. IMEI number) for reading the mobile phone 10, and receive described refer toThe fingerprint signature authentication result that line identification module 11 is exported, and institute is judged according to the fingerprint signature authentication resultWhether state user is validated user.That is, by by the finger print safety submodule 130 in the fingerprint identification module 11The fingerprint signature authentication result exported judges whether user identity is legal.
When it is disabled user that the mobile fingerprint enabling control module 12, which judges the user, then a record letter is sent(for example, the time of controlled door, controlled door door number, personal code work etc., but not limited to this are opened in application) is ceased to a cloud platform serviceDevice 20, when it is validated user that the mobile fingerprint enabling control module 12, which judges the user, the mobile phone is uniquely knownThe dynamic subscriber's condition code and an enabling request message that alias and the fingerprint signature authentication result are generated are sent togetherTo the cloud platform server 20.
The cloud platform server 20 (including multiple servers) can be deployed in computer room, and it passes through cordless communication network and instituteMobile phone 10 is stated to communicate, for when receiving dynamic subscriber's condition code, dynamic subscriber's condition code to be decrypted first,Then by dynamic subscriber's condition code, in the database of the cloud platform server 20, (user's characteristic code put on record has been deposited in advanceStorage wherein) in scan for matching.When the match is successful, the cloud platform server 20 sends a door open command a to gate inhibitionController 21.In addition, the cloud platform server 20 can carry out user's registration and audit, enabling is authorized, reception enabling is asked,Open the door authentication, issue door open command, storage open the door record etc. operation.Related personnel can be accessed by modes such as web browsersThe cloud platform server 20, to be accomplished manually subscriber identity information (i.e. authentication information) examination & verification etc..
The electric lock 22 that the access controller 21 is arranged on controlled door (or gateway) with one is connected, wherein the electric lock22 be the lockset for being controlled and being operated using automatically controlled mode.Wherein, the access controller 21 is mountable to controlled door periphery.The access controller 21 is used for when receiving the door open command, controls the electric lock 22 of the controlled door to open.In the present embodiment, the access controller 21 can receive the instruction of cloud platform server 20, receive and forwarding infrared detector24 testing result, the electric lock 22 is controlled to be turned on and off.Wherein, the access controller 21 can using TCP/IP orRS485 modes are attached and communicated with the cloud platform server 20.
In the present embodiment, the system also includes a high-definition web camera 23, and the high-definition web camera 23 is installed onControlled door or gateway periphery, camera lens are directed at controlled door (or gateway).The high-definition web camera 23 is put down with the cloudPlatform server 20 is connected, for when the controlled door is opened, monitoring in real time, and shoot the photo site of the controlled door or regardFrequently, using for future reference as recording.
In addition, the system also include an infrared detector 24, the infrared detector 24 be installed on controlled door (or come in and go outMouth periphery).The infrared detector 24 is connected with the access controller 21, and whether the periphery for detecting the controlled door hasPeople.The infrared detector 24 include infrared detection module, fingerprint identification module, IC/ID card read modules, and with the phase of access controller 21Even.
In this embodiment, it is preferred that, further comprise capacitance type fingerprint identification in the fingerprint identification module 11Module 110 and RF-type fingerprint recognition submodule 120.In other parts embodiment, the fingerprint identification module 11 is furtherAt least one submodule in submodule 110 and RF-type fingerprint recognition submodule 120 is recognized including capacitance type fingerprint.The electric capacityFormula fingerprint recognition submodule 110 and RF-type fingerprint recognition submodule 120 are used for the dual identification by condenser type and RF-typeTechnology, launches micro- electric signal and radiofrequency signal to the finger skin corium to be scanned of the user, to determine the true of finger respectivelyIt is pseudo-.If raw body feedback signal can be received, true finger is proved, if raw body feedback signal can not be received, is proved to beThe finger mould or prosthetic finger of forgery.
Specifically, the dual identification technology is to carry electric microfield using human body raw body, can be electrically conductive forming micro- telecommunicationsThe principle in number loop recognizes true and false finger.Wherein, capacitance type fingerprint identification submodule 110 uses condenser type identification technology, i.e.,By the way that finger to be constituted to a pole of electric capacity, the silicon sensor array structure in the capacitance type fingerprint identification submodule 110 is arranged onInto another pole of electric capacity, so, micro-current, the crest of fingerprint are formed between the electric microfield and silicon sensor array entrained by human bodyThe distance between trough and silicon sensor array form electric capacity difference of height, so as to depict fingerprint image, and feed back oneHuman body raw body verifies signal.If false fingerprint, due to the electric microfield without human body, therefore can not form signal circuit, just notFingerprint image can be produced and human body raw body checking signal is fed back.RF-type fingerprint recognition submodule 120 uses radio frequency identificationTechnology, i.e., by by the emission of radio frequency signals of a low frequency to skin corium.Because human body cell liquid is conductive, therefore it can pass throughRead the Electric Field Distribution of skin corium and obtain the most exact image of whole skin corium, and feed back human body raw body checking signal.If false fingerprint, it can not also form electric field to obtain fingerprint image and feed back human body raw body checking signal.
In the present embodiment, (figure is not also including an identity registration submodule for the mobile fingerprint enabling control module 12Show), the authentication information that the identity registration submodule is used to receive user (such as phone number, identification card number, is not limitedIn this), and by the authentication information and by obtaining the fingerprint signature authentication result of user (in user identity firstIn registration process, it is 1 to preset output fingerprint signature authentication result, that is, it is validated user to represent user) and mobile phone uniquely knowThe user's characteristic code that alias is generated is sent to the cloud platform server 20 for manual examination and verification together.The cloud platform serviceDevice 20 is further used for after authentication information described in manual examination and verification, automatically by the authentication information and the userCondition code is bound, and is stored in the database and is put on record.
Therefore, mobile fingerprint access control system system of the present invention is by the way that personal mobile phone is tied up with fingerprintIt is fixed, using the method for the higher identity double authentication authentication of level of security come access control, it not only compensate for existing mobile phone gate inhibitionAuthentication mode is single, can usurp mobile phone opens the door and the relatively low defect of security, and overcomes traditional swipe the card and fingerprint access controlThe disadvantage of extremely easy adulterated accounting documents, also solves first generation mobile fingerprint gate control system and uses what is occurred in optical reflection technologyRequire humiture height, low discrimination, poor practicability, have severe compromise problem, it is achieved thereby that non-user can notOpen the door, non-user mobile phone can not be opened the door, and the safe magnitude of enabling is promoted into brand-new height, not only meet user individual to ensureingThe active demand of people's safety and privacy, but also filled up blank of the mobile phone gate inhibition market without any high safety series of products.
In addition, the mobile fingerprint access control system has used true and false finger identification technology (to use condenser type and penetrateFrequency formula fingerprint distinguishes mode), it can only scan finger skin surface to solve first generation mobile phone optical fingerprint identification gate control systemOr dead property skin layer and the problem of skin corium (i.e. the true and false finger of None- identified) can not be goed deep into.By the present invention in that with condenser type andRF-type fingerprint identification technology is (by sending micro- electric signal deeply to finger skin skin corium and utilization human body raw body feature shapeInto the backfeed loop of signal) accurately recognize true and false finger.
In addition, the mobile fingerprint access control system possesses visitor's detection and remote monitoring door opening function, it is interim when havingVisitor is located in place of controlled door position, and the infrared detector 24 has been able to detect that visitor, and is believed by SMS or APPBreath prompting user.When temporary visitor requires to enter controlled door (or gateway), user can observe controlled door scene in mobile phoneSituation, and confirm the identity of temporary visitor, realize remote monitoring and long-range enabling.When user carries out remote monitoring enabling,The mobile fingerprint access control system will control high-definition web camera 23 to automatically snap video or picture that visitor enters, in caseCase is to be checked, so as to ensure the security of long-range enabling.
In addition, the mobile fingerprint access control system not only eliminates the hardware device of conventional fingerprint gate inhibition, but alsoIn-site installation wiring is reduced, to be effectively reduced system cost.
In addition, the present invention also provides a kind of mobile fingerprint access control method, using above-mentioned mobile fingerprint access control systemStructure, annexation and the function of each component as described above, will not be repeated here in system, the system.
Shown in Figure 3, methods described includes:
Step S310:The fingerprint identification module of one mobile phone obtains the fingerprint feature information of a user.
The fingerprint identification module is used for fingerprint feature information (such as fingerprint image figure, but do not limit for obtaining a userIn this).Before the execution of this step, further comprise:User will enter controlled door;Opened the door and controlled by the mobile fingerprint in mobile phoneTo open controlled door, (i.e. user by mobile fingerprint enabling APP and inputs controlled door to molding block (i.e. mobile fingerprint enabling APP)Area information and door information open controlled door).
Step S320:The fingerprint feature information is encrypted the finger print safety submodule of the fingerprint identification module recognizesCard, and the fingerprint feature information for having encrypted certification and the fingerprint feature information that prestores are contrasted, to export a fingerprintSignature authentication result.
The finger print safety submodule (is used in the present embodiment for certification to be encrypted to the fingerprint feature informationRSA2048 AESs carry out signature protection, so ensure that fingerprint feature information can not be by counterfeit and distort), and byThe fingerprint feature information for encrypting certification is contrasted with the fingerprint feature information prestored, to export a fingerprint signature certification knotReally (such as signature authentication result is 1 and 0, wherein, 1 represents that user is validated user, and 0 represents that user is disabled user;Signature is recognizedDemonstrate,prove the value not limited to this of result).
Step S330:The mobile fingerprint enabling control module of the mobile phone reads the mobile phone unique identifier of the mobile phone,And the fingerprint signature authentication result that the fingerprint identification module is exported is received, and according to the fingerprint signature certificationWhether as a result judge the user is validated user.
The mobile fingerprint enabling control module is arranged on a mobile phone and (may be provided in the present embodiment in mobile phone, at itOther mobile terminals can be arranged in his embodiment) in, mobile phone unique identifier (the i.e. IMEI for reading the mobile phoneNumber), and the fingerprint signature authentication result that the fingerprint identification module is exported is received, and according to the fingerprint signatureAuthentication result and judge whether the user is validated user.That is, by by the finger in the fingerprint identification moduleThe fingerprint signature authentication result that the safe submodule of line is exported judges whether user identity is legal.
Step S340:When it is disabled user that the mobile fingerprint enabling control module, which judges the user, then performStep S350;Otherwise, step S360 is performed.
Step S350:The mobile fingerprint enabling control module sends a record information to a cloud platform server, and tiesBeam step.
Wherein, send a record information (for example, the time of controlled door, controlled door door number, personal code work etc. are opened in application,But not limited to this) to a cloud platform server.
Step S360:The mobile fingerprint enabling control module recognizes the mobile phone unique identifier and the fingerprint signatureThe dynamic subscriber's condition code and an enabling request message that card result is generated are sent to the cloud platform server together.
Step S370:The cloud platform server uses the dynamic after dynamic subscriber's condition code is receivedFamily condition code scans for matching, when the match is successful, the cloud platform service in the database of the cloud platform serverDevice sends a door open command a to access controller.
Step S380:The access controller controls the described of the controlled door after the door open command is receivedElectric lock is opened.
Then, after step S380, further comprise:One high-definition web camera is clapped after the controlled door is openedThe photo site or video of the controlled door are taken the photograph, using for future reference as recording.Wherein, the high-definition web camera is installed on controlled doorOr personnel gateway.
In addition, in the present embodiment, before step S310, further comprising:One infrared detector detects the controlled doorPeriphery whether someone.Wherein, the infrared detector is connected with the access controller, the week for detecting the controlled doorSide whether someone.The infrared detector include infrared detection module, fingerprint identification module, IC/ID card read modules, and with the access controlDevice is connected.
In the present embodiment, further comprise:Submodule is recognized by the capacitance type fingerprint in the fingerprint identification moduleAt least one submodule in block and RF-type fingerprint recognition submodule, and pass through the dual identification skill of condenser type and RF-typeArt, launches micro- electric signal and radiofrequency signal to the finger skin corium to be scanned of the user, to determine the true and false of finger respectively.If raw body feedback signal can be received, true finger is proved, if raw body feedback signal can not be received, is proved to be forgeryFinger mould or prosthetic finger.The operation principle of the dual identification technology will not be repeated here described in seeing above.
In addition, before step S310, further comprising:
(1) the identity registration submodule of the mobile fingerprint enabling control module receives the authentication information of user, andAnd generated by the authentication information and by the fingerprint signature authentication result and mobile phone unique identifier for obtaining userUser's characteristic code be sent to the cloud platform server together for manual examination and verification.
Wherein, when user logins mobile fingerprint enabling APP first, it is necessary to enrollment status checking information (such as phone number,Identification card number etc., not limited to this).
(2) the cloud platform server is after authentication information described in manual examination and verification, automatically by the authenticationInformation is bound with the user's characteristic code, and is stored in the database and is put on record.
Mobile fingerprint access control system of the present invention and control method, it is intended in leading and promotion possesses high securityMobile fingerprint identification gate control system it is commonly used, meet what gate inhibition market and user ensured to personal security and personal secretsPressing needs.Also, the present invention effectively merges Internet technology, development of Mobile Internet technology, technology of Internet of things, by gate inhibition'sApplication model expands lifting to " mobile Internet+" from existing " internet+".And there is provided a kind of the " mobile mutual of innovationNetworking+gate inhibition " application model and service mode.
The above is only the preferred embodiment of the present invention, it is noted that for the ordinary skill people of the artMember, under the premise without departing from the principles of the invention, can also make some improvements and modifications, these improvements and modifications also should be regarded asProtection scope of the present invention.