CN113496561A

Movatterモバイル変換

Info

Publication number: CN113496561A
Application number: CN202010255435.6A
Authority: CN
Inventors: 杨佩君; 黄国兴; 龙正军
Original assignee: Guangzhou Automobile Group Co Ltd
Current assignee: Guangzhou Automobile Group Co Ltd
Priority date: 2020-04-02
Filing date: 2020-04-02
Publication date: 2021-10-12

Abstract

Translated fromChinese

为了解决现有车载指纹识别系统数据传输安全性低的问题，本发明提供了一种车载指纹识别系统及其通信方法。车外指纹识别模块根据预设的第一密钥加密原始识别数据，基于加密后的原始识别数据形成第一识别数据；发送第一随机数到车内指纹识别模块；基于第一随机数和第二随机数生成动态传输密钥，根据动态传输密钥加密第一识别数据得到第二识别数据，并发送到车内指纹识别模块；车内指纹识别模块发送第二随机数到车外指纹识别模块；基于第一随机数和第二随机数生成动态传输密钥，根据动态传输密钥解密第二识别数据获得第一识别数据，根据预设的第一密钥解密第一识别数据获得原始识别数据。本发明的技术方案提高了指纹识别数据传输的安全性。

In order to solve the problem of low data transmission security of the existing vehicle-mounted fingerprint identification system, the present invention provides a vehicle-mounted fingerprint identification system and a communication method thereof. The fingerprint identification module outside the vehicle encrypts the original identification data according to the preset first key, and forms the first identification data based on the encrypted original identification data; sends the first random number to the fingerprint identification module inside the vehicle; Two random numbers generate a dynamic transmission key, encrypt the first identification data according to the dynamic transmission key to obtain the second identification data, and send it to the in-vehicle fingerprint identification module; the in-vehicle fingerprint identification module sends the second random number to the out-of-vehicle fingerprint identification module ; Generate a dynamic transmission key based on the first random number and the second random number, decrypt the second identification data according to the dynamic transmission key to obtain the first identification data, and decrypt the first identification data according to the preset first key to obtain the original identification data . The technical scheme of the present invention improves the security of fingerprint identification data transmission.

Description

Vehicle-mounted fingerprint identification system and communication method thereof

Technical Field

The invention relates to the field of automobile electronic equipment, in particular to a vehicle-mounted fingerprint identification system and a communication method thereof.

Background

Fingerprint identification is one kind of biological identification, is the security key system of highest level in present digital life, and the application in daily life is also more and more, carries on fingerprint identification system on the car, can realize the function of key, lets the user no longer rely on traditional entity key and through the bluetooth key that realization such as smart mobile phone, intelligent dress set up. At present, the fingerprint identification technology is applied to automobiles less frequently. The main reasons include: 1. the fingerprint is used as user identity information, the requirements on the stored safety and the transmitted safety are very high, when the existing automobile is carried with a fingerprint identification system and an external fingerprint identification module of the existing automobile transmits data to an internal fingerprint identification module, the data is encrypted by adopting a conventional mode, the safety is low, the data is easy to steal, and great harm is brought to the user and the automobile; 2. fingerprint identification is used as a biological key, the requirement on identification time is high, and if the system response is too slow, the user experience is poor.

Disclosure of Invention

The invention provides a vehicle-mounted fingerprint identification system and a communication method thereof, aiming at solving the problem that the data transmission security of the existing vehicle-mounted fingerprint identification system is low, and the security of data transmission is improved.

In one aspect of the present invention, a communication method of a vehicle-mounted fingerprint identification system, the vehicle-mounted fingerprint identification system including an outside-vehicle fingerprint identification module and an inside-vehicle fingerprint identification module, the method includes:

the vehicle exterior fingerprint identification module encrypts original identification data according to a preset first secret key and forms first identification data based on the encrypted original identification data;

the fingerprint identification module outside the vehicle sends a first random number to the fingerprint identification module inside the vehicle;

the fingerprint identification module in the automobile sends a second random number to the fingerprint identification module outside the automobile;

the fingerprint identification module outside the vehicle generates a dynamic transmission key based on the first random number and the second random number, encrypts the first identification data according to the dynamic transmission key to obtain second identification data, and sends the second identification data to the fingerprint identification module inside the vehicle;

the in-vehicle fingerprint identification module generates a dynamic transmission key based on the first random number and the second random number, decrypts the second identification data according to the dynamic transmission key to obtain first identification data, and decrypts the first identification data according to a preset first key to obtain original identification data.

Optionally, the in-vehicle fingerprint identification module responds to the first random number, and executes the step of sending the second random number to the out-vehicle fingerprint identification module. The fingerprint module outside the vehicle is used as an active party for identifying data transmission and sends a first random number after identifying a fingerprint, and the fingerprint module inside the vehicle receives the first random number and then responds to a second random number; the fingerprint module in the car can enter a standby state before receiving the first random number so as to reduce the energy consumption of the fingerprint module in the car.

Optionally, the first identification data includes a message authentication code, a random number, a rolling count value, and encrypted original identification data; the message authentication code is a hash value calculated by a hash function according to a random number, a rolling count value, original identification data and a preset second key; and the in-vehicle fingerprint identification module verifies the original identification data according to the message authentication code and a preset second secret key. And the original identification data is verified according to the message authentication code and the preset second secret key, so that the safety of data transmission is greatly improved.

Optionally, the first identification data includes a rolling count value, and the in-vehicle fingerprint identification module determines whether the first identification data is illegal data according to a relationship between the rolling count value of the first identification data received this time and the rolling count value of the first identification data received last time. Further guarantee the accuracy of data transmission, improve the security.

Optionally, the method further includes:

the fingerprint identification module in the automobile sends a third random number to the fingerprint identification module outside the automobile;

generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission key according to the first random number, the second random number and the third random number. The dynamic transmission key is generated by the first random number, the second random number and the third random number, so that the safety of the dynamic transmission key can be further improved, the first random number, the second random number and the third random number can be transmitted in the three-way handshake process, and the transmission of the first random number, the second random number and the third random number is facilitated.

Optionally, the generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission key according to the first random number, the second random number, the third random number and a preset third key. The third secret key can be respectively stored in the fingerprint identification module inside the vehicle and the fingerprint identification module outside the vehicle, and the safety of data transmission can be further improved through the preset third secret key.

In another aspect of the invention, the vehicle-mounted fingerprint identification system comprises an outside-vehicle fingerprint identification module and an inside-vehicle fingerprint identification module; the fingerprint identification module outside the vehicle comprises a first microprocessor and a first encryption chip, and the fingerprint identification module inside the vehicle comprises a second microprocessor and a second encryption chip;

the first encryption chip is used for encrypting the original identification data according to a preset first secret key and forming first identification data based on the encrypted original identification data; generating a dynamic transmission key based on the first random number and the second random number, encrypting the first identification data according to the dynamic transmission key to obtain second identification data, and sending the second identification data to the in-vehicle fingerprint identification module;

the first microprocessor is used for generating a first random number and sending the first random number to the in-vehicle fingerprint identification module;

the second microprocessor is used for generating a second random number and sending the second random number to the fingerprint identification module outside the vehicle;

and the second encryption chip is used for generating a dynamic transmission key based on the first random number and the second random number, decrypting the second identification data according to the dynamic transmission key to obtain first identification data, and decrypting the first identification data according to a preset first key to obtain original identification data.

Optionally, the second microprocessor is configured to send a second random number to the vehicle exterior fingerprint identification module in response to the first random number. Receiving the first random number and then responding to a second random number; the fingerprint module in the car can enter a standby state before receiving the first random number so as to reduce the energy consumption of the fingerprint module in the car.

Optionally, the first identification data includes a message authentication code, a random number, a rolling count, and encrypted original identification data; the message authentication code is a hash value calculated by a hash function according to a random number, a rolling count value, original identification data and a preset second key; and the in-vehicle fingerprint identification module verifies the original identification data according to the message authentication code and a preset second secret key. And the original identification data is verified according to the message authentication code and the preset second secret key, so that the safety of data transmission is greatly improved.

Optionally, the first identification data includes a rolling count value, and the in-vehicle fingerprint identification module determines whether the first identification data is illegal data according to a relationship between the rolling count value of the first identification data received this time and the rolling count value of the first identification data received last time.

Optionally, the first microprocessor is further configured to: sending a third random number to the vehicle exterior fingerprint identification module;

generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission key according to the first random number, the second random number, the third random number and a preset third key. The dynamic transmission key is generated by the first random number, the second random number, the third random number and the preset third key, so that the dynamic transmission key can be prevented from being stolen, and the safety of data transmission is improved.

Another embodiment of the present invention provides a computer-readable storage medium including a stored computer program; wherein the computer program, when running, controls the device on which the computer-readable storage medium is located to perform the communication method of the vehicle-mounted fingerprint identification system as described above.

According to the technical scheme, the external fingerprint identification module encrypts the original identification data into one-layer encryption according to the preset first secret key, encrypts the first identification data into two-layer encryption according to the dynamic transmission secret key, and improves the security of fingerprint identification data transmission through a two-layer encryption mode combining a common encryption mode and a dynamic encryption mode.

Drawings

The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate exemplary embodiments of the invention and together with the description serve to explain the principles of the invention.

FIG. 1 is a flow chart of a method in an exemplary embodiment of the invention;

FIG. 2 is a system connection diagram in an exemplary embodiment of the invention;

FIG. 3 is a diagram of an encrypted data generation process in an exemplary embodiment of the invention;

FIG. 4 is a diagram of a dynamic transport key generation process in an exemplary embodiment of the invention;

FIG. 5 is another system connection diagram in an exemplary embodiment of the invention;

fig. 6 is a connection diagram of a fingerprint recognition system and a vehicle in an exemplary embodiment of the present invention.

Detailed Description

The present invention will be described in further detail with reference to the accompanying drawings and embodiments. It is to be understood that the specific embodiments described herein are for purposes of illustration only and are not to be construed as limitations of the invention. It should be noted that, for convenience of description, only the portions related to the present invention are shown in the drawings.

In addition, the embodiments of the present invention and the features of the embodiments may be combined with each other without conflict. The present invention will be described in detail below with reference to the accompanying drawings in conjunction with embodiments.

Example 1:

as shown in fig. 1, 2 and3, the communication method of the vehicle-mounted fingerprint identification system, the vehicle-mounted fingerprint identification system comprises an outsidefingerprint identification module 1 and an insidefingerprint identification module 2, and the method comprises the following steps:

step S1: the vehicle exteriorfingerprint identification module 1 encrypts original identification data according to a preset first Key Key1, and forms first identification data based on the encrypted original identification data;

step S2: the external vehiclefingerprint identification module 1 sends a first random number to the internal vehiclefingerprint identification module 2;

step S3: thefingerprint identification module 2 in the vehicle sends a second random number to thefingerprint identification module 1 outside the vehicle;

step S4: the external vehiclefingerprint identification module 1 generates a dynamic transmission Key based on the first random number and the second random number, encrypts the first identification data according to the dynamic transmission Key to obtain second identification data, and sends the second identification data to the internal vehiclefingerprint identification module 2;

step S5: the in-vehiclefingerprint identification module 2 generates a dynamic transmission Key based on the first random number and the second random number, decrypts the second identification data according to the dynamic transmission Key to obtain first identification data, and decrypts the first identification data according to a preset first Key1 to obtain original identification data.

And the transmission of the identification data mainly refers to the transmission of a fingerprint identification result, and refers to thefingerprint identification module 1 outside the automobile for identifying the user fingerprint, if the identification is passed, the identification result is sent to thefingerprint identification module 2 inside the automobile, and thefingerprint identification module 2 inside the automobile awakens the whole automobile network according to the identification result to control the unlocking of the automobile door. If the externalfingerprint identification module 1 does not identify the vehicle, the internalfingerprint identification module 2 does not awaken the whole vehicle network, so that the dark current consumption of the whole vehicle can be reduced.

In the embodiment of the invention, the externalfingerprint identification module 1 encrypts the original identification data into one-layer encryption according to the preset first secret key, encrypts the first identification data into two-layer encryption according to the dynamic transmission secret key, and improves the security of fingerprint identification data transmission in a double-layer encryption mode. The automobile externalfingerprint identification module 1 and the automobile externalfingerprint identification module 1 can generate dynamic transmission keys based on a first random number and a second random number, and the automobile externalfingerprint identification module 1 generate the same dynamic transmission keys according to the same first random number and the same second random number; the first random number and the second random number are random numbers, and the dynamic transmission key is generated according to the first random number and the second random number, so that the dynamic transmission key is dynamic, and data security accidents caused by stealing of the dynamic transmission key are effectively prevented. The preset first secret key can be respectively stored in the vehicle exteriorfingerprint identification module 1 and the vehicle interiorfingerprint identification module 2, such as in an encryption chip of the vehicle exteriorfingerprint identification module 1 and an encryption chip of the vehicle interiorfingerprint identification module 2. It can be known that, thefingerprint identification module 1 outside the car is used when the car owner gets in and out the vehicle, and relative frequency is not high, and when the identification data is transmitted each time, through new first random number and the random generation dynamic transmission key of second, can not influence user's experience effect.

As an alternative embodiment, the in-vehiclefingerprint identification module 2 performs the step of transmitting the second random number to the out-vehiclefingerprint identification module 1 in response to the first random number. After thefingerprint identification module 1 outside the vehicle sends the first random number, the second random number is sent to thefingerprint identification module 1 outside the vehicle, which has the advantages that thefingerprint identification module 1 outside the vehicle is used as the initiative side for identifying data transmission to send the first random number after identifying the fingerprint, and thefingerprint identification module 2 inside the vehicle receives the first random number and then answers the second random number; thefingerprint identification module 2 in the vehicle can enter a standby state before receiving the first random number so as to reduce the energy consumption of the fingerprint module in the vehicle.

As an alternative embodiment, as shown in fig. 3, the first identification data includes a message authentication code MAC, a RANDOM number RANDOM, a Rolling count value Rolling Counter, and encrypted raw identification data Crypto DFPM DATE; the message authentication code MAC is a hash value calculated by a hash function according to a RANDOM number RANDOM, a Rolling count value Rolling Counter, original identification Data DFPM Data and a presetsecond Key Key 2; the in-vehiclefingerprint identification module 2 verifies the original identification data according to the message authentication code MAC and the presetsecond Key 2.

The message authentication code MAC may be calculated according to the formula MAC ═ Hash (Key2, RANDOM, Rolling Counter, DFPM Date); according to the Key2 and the obtained first identification data, the in-vehiclefingerprint identification module 2 verifies that the MAC calculated by Hash (Key2, RANDOM, Rolling Counter, DFPM Date) is consistent with the received MAC, or else, the MAC does not pass the verification.

As an alternative embodiment, the first identification data includes a Rolling count value, and the in-vehiclefingerprint identification module 2 determines whether the first identification data is illegal data according to a relationship between the Rolling count value of the first identification data received this time and the Rolling count value of the first identification data received last time. The rolling count value refers to that the rolling count value is increased or decreased in an equal difference or equal ratio mode after being successfully transmitted every time, that is, the in-vehiclefingerprint identification module 2 may determine whether the first identification data is illegal data according to the rolling count value of the first identification data received last time and the rolling count value of the first identification data received this time. For example, each time the Rolling Counter is increased by 1, it is only necessary to calculate whether a difference between a Rolling count value of the first identification data received this time and a Rolling count value of the first identification data received last time is 1, and determine whether the first identification data is illegal data, and if the difference is not 1, the first identification data is illegal data. This optional embodiment, in combination with the previous optional embodiment, can further ensure the accuracy of data transmission and improve the security.

As an optional implementation, the method further comprises:

thefingerprint identification module 2 in the vehicle sends a third random number to thefingerprint identification module 1 outside the vehicle;

as shown in fig. 4, generating the dynamic transmission key based on the first random number and the second random number includes: the dynamic transmission Key is generated from the first random number Rand1, the second random number Rand2, and the third random number Rand 3. The dynamic transmission key can be generated by an Encryption algorithm such as aes (advanced Encryption standard), the security of the dynamic transmission key can be further improved by generating the dynamic transmission key by using the first random number, the second random number and the third random number, and the dynamic transmission key can be transmitted in a three-way handshake (handshake Start, handshake confirmation handshake Ack, handshake confirmation handshake shake config).

Optionally, as shown in fig. 3 and 4, the generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission Key according to the first random number Rand1, the second random number Rand2, the third random number Rand3 and a preset third Key 3. Security can be improved by means of a preset third Key 3.

Of course, as another alternative embodiment, the generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission key according to the first random number, the second random number and a preset third key.

Example 2:

as another aspect of the embodiment of the present invention, as shown in fig. 2 and 5, the vehicle fingerprint identification system includes an outside vehiclefingerprint identification module 1 and an inside vehiclefingerprint identification module 2; the external vehiclefingerprint identification module 1 comprises afirst fingerprint sensor 11, afirst microprocessor 12 and afirst encryption chip 13, and the internal vehiclefingerprint identification module 2 comprises a second fingerprint sensor 21, a second microprocessor 22 and asecond encryption chip 23;

thefirst encryption chip 13 is configured to encrypt the original identification data according to a preset first key, and form first identification data based on the encrypted original identification data; generating a dynamic transmission key based on the first random number and the second random number, encrypting the first identification data according to the dynamic transmission key to obtain second identification data, and sending the second identification data to the in-vehiclefingerprint identification module 2;

thefirst microprocessor 12 is used for sending a first random number to the in-vehiclefingerprint identification module 2;

the second microprocessor 22 is used for sending a second random number to the vehicle exteriorfingerprint identification module 1;

thesecond encryption chip 23 is configured to generate a dynamic transmission key based on the first random number and the second random number, and decrypt the second identification data according to the dynamic transmission key and a preset first key to obtain the first identification data.

As an alternative embodiment, the second microprocessor 22 is configured to send the second random number to the off-boardfingerprint identification module 1 in response to the first random number.

As an alternative embodiment, as shown in fig. 2, the first identification data includes a message authentication code MAC, a RANDOM number RANDOM, a Rolling count value Rolling Counter, and encrypted raw identification data Crypto DFPM DATE; the message authentication code MAC is a hash value calculated by a hash function according to a RANDOM number RANDOM, a Rolling count value Rolling Counter, original identification Data DFPM Data and a presetsecond Key Key 2; thesecond encryption chip 23 is further configured to verify the original identification data according to the message authentication code and a preset second key.

As an alternative embodiment, the first identification data includes a Rolling count value Rolling Counter, and thesecond cryptographic chip 23 is further configured to determine whether the first identification data is illegal data according to a relationship between the Rolling count value of the first identification data received this time and the Rolling count value of the first identification data received last time.

As an alternative embodiment, thefirst microprocessor 12 is further configured to: sending a third random number to the vehicle exteriorfingerprint identification module 1;

generating the dynamic transmission key based on the first random number and the second random number includes: and generating a dynamic transmission key according to the first random number, the second random number, the third random number and a preset third key.

This embodiment is a system using the method ofembodiment 1, the effects and principle of which are the same as those ofembodiment 1, and the description of this embodiment is not repeated.

Example 3:

in this embodiment, the calculation of the present invention is described with a specific embodiment:

as shown in fig. 5 and 6, the vehicle-mounted fingerprint identification system is composed of an external fingerprint identification module 1 (DFPM for short) and an internal fingerprint identification module 2 (CFPM for short)

The preferred location for the DFPM is the left front door handle, which can also be placed in a left side B-pillar or the like;

the DFPM is connected with the CFPM through a private communication line;

the CFPM is connected to a whole vehicle network through a Controller Area Network (CAN) besides a private communication line of the external fingerprint module, and CAN realize interaction with other nodes of the whole vehicle.

Other nodes that interact with the CFPM may include: the vehicle machine with the fingerprint input UI interface is provided, a vehicle door is unlocked, a vehicle entering and starting system is started, and an instrument for reflecting an identification result is provided;

the CFPM mainly realizes the input of a fingerprint template through a vehicle machine and the management of a fingerprint module through a vehicle machine interface, including the input of a fingerprint, the deletion of the fingerprint and the like;

the fingerprint templates are respectively stored in the CFPM and the DFPM, and part of information of the fingerprint templates is called during identification when stored in the first encryption chip and the second encryption chip which are independent;

and the transmission of the identification result means that the DFPM identifies the user fingerprint, if the user fingerprint passes the identification, the identification result is encrypted and sent to the CFPM block, and the CFPM wakes up the whole vehicle network according to the identification result to control the unlocking of the vehicle door.

If the DFPM identification is not passed, the CFPM does not awaken the whole vehicle network, and the dark current consumption of the whole vehicle can be reduced.

In the process of transmitting the identification result, three keys, namely a first key1, a second key2, a third key3 and a key1, are required to be used, the keys are required to be written into CFPM and DFPM in advance when the vehicle is off-line, the key1 can be written into the key once and cannot be changed, and the key1 is stored in an independent encryption chip; key2 is the key used to generate the MAC and key3 is the key used to generate the dynamic transport key. The whole encryption process is divided into two layers of encryption;

encryption 1: firstly, encrypting the effective identification Data of the DFPM by using a Key1 to obtain encrypted identification Data CryptoDFPM Data; the algorithm can adopt AES and the like;

encryption 2: and then, encrypting the whole FPA transmission data (namely the first identification data in the above) by using a specific encryption algorithm such as AES and the like to obtain the encrypted FPA data (namely the second identification data in the above) actually transmitted in the CAN bus, and adopting the dynamic transmission key.

All storage and operation related to the encryption key are carried out in independent encryption chips (a first encryption chip and a second encryption chip).

And (3) data transmission process:

1) after the DFPM identifies the fingerprint, sending a random number first random number Rand1 to the CFPM;

2) the CFPM generates a response random number, namely a second random number Rand2 and sends the response random number Rand2 to the DFPM;

3) the DFPM sends a third random number Rand3 to the CFPM;

4) the DFPM and the CFPM respectively generate a dynamic transmission key by using random numbers Rand1, Rand2, Rand3 and a third key 3;

5) encrypting and transmitting the complete fingerprint identification result of the dynamic transmission key and the DFPM;

6) and the CFPM decrypts the identification result by adopting the dynamic transmission key.

The present invention also provides a computer readable storage medium comprising a stored computer program; wherein the computer program, when running, controls the device on which the computer-readable storage medium is located to perform the communication method of the vehicle-mounted fingerprint identification system as described above. Preferably, the computer program may be divided into one or more modules/units (e.g.,computer program 1,computer program 2, … …) that are stored in the memory and executed by the processor to implement the invention. The one or more modules/units may be a series of computer program instruction segments capable of performing specific functions, which are used to describe the execution of the computer program in the apparatus.

The Processor may be a Central Processing Unit (CPU), other general purpose Processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), an off-the-shelf Programmable Gate Array (FPGA) or other Programmable logic device, a discrete Gate or transistor logic device, a discrete hardware component, etc., a general purpose Processor may be a microprocessor, or the Processor may be any conventional Processor, the Processor is a control center of the apparatus, and various interfaces and lines are used to connect various parts of the apparatus.

The memory mainly includes a program storage area and a data storage area, wherein the program storage area may store an operating system, an application program required for at least one function, and the like, and the data storage area may store related data and the like. In addition, the memory may be a high speed random access memory, may also be a non-volatile memory, such as a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash Card (Flash Card), and the like, or may also be other volatile solid state memory devices.

In the description herein, reference to the description of the terms "one embodiment/mode," "some embodiments/modes," "example," "specific example," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment/mode or example is included in at least one embodiment/mode or example of the application. In this specification, the schematic representations of the terms used above are not necessarily intended to be the same embodiment/mode or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments/modes or examples. Furthermore, the various embodiments/aspects or examples and features of the various embodiments/aspects or examples described in this specification can be combined and combined by one skilled in the art without conflicting therewith.

Furthermore, the terms "first", "second" and "first" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance or implicitly indicating the number of technical features indicated. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one such feature. In the description of the present application, "plurality" means at least two, e.g., two, three, etc., unless specifically limited otherwise.

It will be understood by those skilled in the art that the foregoing embodiments are merely for clarity of description and are not intended to limit the scope of the invention. Other variations or modifications will occur to those skilled in the art based on the foregoing disclosure and are within the scope of the invention.