技术领域Technical Field
本发明涉及酒店离线电子门锁技术领域,更具体地,涉及一种用于酒店的、纯离线环境下的门禁权限管理方法、酒店离线电子门锁及酒店离线门禁系统。The present invention relates to the technical field of hotel offline electronic door locks, and more particularly to an access control authority management method for hotels in a purely offline environment, a hotel offline electronic door lock, and a hotel offline access control system.
背景技术Background Art
在现代酒店管理中,为了方便家庭或团队住客,经常需要为主客房(主房)和关联的亲友房配置门禁权限,使得主房的客人房卡(主房卡)既能开启自己的房门,也能开启亲友房的房门。在需要保证安全且无法依赖网络的离线门锁系统中,通常采用顶替号机制(如序列号或时间戳)来管理钥匙卡的有效性,即新发行的卡片拥有更高的顶替号,可以使持有旧顶替号的卡片失效。In modern hotel management, to facilitate family or group travel, it's often necessary to configure access permissions for the main guest room (master room) and its associated friend and family rooms. This allows the master room guest's key card to unlock both their own door and the doors of the friend and family rooms. In offline door lock systems, which require security and cannot rely on a network, a replacement number mechanism (such as a serial number or timestamp) is often used to manage key card validity. Newly issued cards have a higher replacement number, invalidating existing cards with older replacement numbers.
然而,当这种常规的顶替机制应用于上述主房-亲友房的关联场景时,会产生严重的技术冲突。现有的方式通常是为主房卡和亲友房卡设置一个相同的顶替号,门锁只认最新的顶替号。这导致当亲友房卡丢失并补办后,新卡会用一个更高的顶替号去更新亲友房门锁的记录。此后,原本有效的主房卡因为仍持有旧的顶替号,在尝试开启亲友房门时,就会被门锁因“版本过低”而拒绝,其关键的关联权限被意外中断,给住客带来极大的不便和困扰。However, when this conventional replacement mechanism is applied to the aforementioned master room-friends and family room association scenario, serious technical conflicts arise. The existing method usually sets the same replacement number for the master room card and the friends and family room card, and the door lock only recognizes the latest replacement number. As a result, when the friends and family room card is lost and replaced, the new card will use a higher replacement number to update the friends and family room door lock record. After that, the original valid master room card will still have the old replacement number. When trying to open the friends and family room door, the door lock will reject it due to "too low version". Its critical association permissions are accidentally interrupted, causing great inconvenience and trouble to the guests.
因此,如何提供一种既能保证关联权限在补卡后的连续性,又能在在离线环境中可靠作废真正丢失的卡片且不影响其他有效卡片权限的方法和酒店离线电子门锁,已成为本领域亟需解决的技术难题。Therefore, how to provide a method and hotel offline electronic door lock that can not only ensure the continuity of associated permissions after the card is replaced, but also reliably invalidate the truly lost card in an offline environment without affecting the permissions of other valid cards has become a technical problem that urgently needs to be solved in this field.
发明内容Summary of the Invention
本发明的目的是提供一种酒店离线门禁的权限管理方法、酒店离线电子门锁及酒店离线门禁系统,旨在解决背景技术中存在的因补办关联子卡而导致主卡权限被意外中断的技术问题。The purpose of the present invention is to provide a hotel offline access control authority management method, a hotel offline electronic door lock and a hotel offline access control system, aiming to solve the technical problem existing in the background technology that the main card authority is accidentally interrupted due to the re-issuance of the associated sub-card.
本发明第一方面提供了一种酒店离线门禁的权限管理方法,包括以下步骤:A first aspect of the present invention provides a method for managing hotel offline access control rights, comprising the following steps:
在作为权限验证端的酒店离线电子门锁的存储器中,为同一个权限群组存储至少三种标识符,标识符包括:用于识别权限群组的主替代号、用于验证权限群组内第一类钥匙卡版本的第一类次替代号、以及用于验证权限群组内第二类钥匙卡版本的第二类次替代号;In a memory of a hotel offline electronic door lock serving as an authorization verification terminal, at least three identifiers are stored for the same authorization group, the identifiers comprising: a primary replacement number for identifying the authorization group, a first secondary replacement number for verifying a first type of key card version within the authorization group, and a second secondary replacement number for verifying a second type of key card version within the authorization group;
当酒店离线电子门锁接收到来自一个待验证钥匙卡的开锁请求时,读取该待验证钥匙卡内包含的主替代号和次替代号;When the hotel offline electronic door lock receives an unlocking request from a key card to be verified, it reads the primary replacement number and the secondary replacement number contained in the key card to be verified;
判断该待验证钥匙卡的主替代号是否与酒店离线电子门锁存储的主替代号匹配;Determine whether the master/replacement number of the key card to be verified matches the master/replacement number stored in the hotel's offline electronic door lock;
当匹配时,根据该待验证钥匙卡预设的角色类型,选择对应的次替代号进行版本验证:When matching, select the corresponding secondary replacement number for version verification based on the preset role type of the key card to be verified:
若该待验证钥匙卡为第一类钥匙卡,则将其次替代号与酒店离线电子门锁存储的第一类次替代号进行比较,当该待验证钥匙卡的次替代号大于或等于第一类次替代号时,授权开锁,并用该待验证钥匙卡的次替代号仅更新酒店离线电子门锁的第一类次替代号;If the key card to be verified is a first-class key card, then compare its secondary replacement number with the first-class secondary replacement number stored in the hotel's offline electronic door lock. If the secondary replacement number of the key card to be verified is greater than or equal to the first-class secondary replacement number, unlocking is authorized, and only the first-class secondary replacement number of the hotel's offline electronic door lock is updated with the secondary replacement number of the key card to be verified;
若该待验证钥匙卡为第二类钥匙卡,则将其次替代号与酒店离线电子门锁存储的第二类次替代号进行比较,当该待验证钥匙卡的次替代号大于或等于第二类次替代号时,授权开锁,并用该待验证钥匙卡的次替代号仅更新酒店离线电子门锁的第二类次替代号。If the key card to be verified is a second-class key card, its secondary replacement number is compared with the second-class secondary replacement number stored in the hotel's offline electronic door lock. When the secondary replacement number of the key card to be verified is greater than or equal to the second-class secondary replacement number, unlocking is authorized, and the secondary replacement number of the key card to be verified is used to update only the second-class secondary replacement number of the hotel's offline electronic door lock.
可选地,根据该待验证钥匙卡预设的角色类型,选择对应的次替代号进行版本验证的步骤,包括:读取待验证钥匙卡内存储的一个角色代码,并根据该角色代码确定其为第一类钥匙卡或第二类钥匙卡。Optionally, the step of selecting a corresponding secondary replacement number for version verification according to the preset role type of the key card to be verified includes: reading a role code stored in the key card to be verified, and determining whether it is a first-class key card or a second-class key card according to the role code.
可选地,主替代号、第一类次替代号和第二类次替代号均为基于时间生成的时间戳。Optionally, the primary replacement number, the first-category secondary replacement number, and the second-category secondary replacement number are all timestamps generated based on time.
可选地,第一类次替代号和第二类次替代号均为递增的顺序号。Optionally, the first-category sub-replacement number and the second-category sub-replacement number are both increasing sequence numbers.
可选地,当酒店离线电子门锁检测到待验证钥匙卡的主替代号大于其自身存储的主替代号时,在比较次替代号以进行开锁授权之前,先将酒店离线电子门锁存储的第一类次替代号和第二类次替代号重置为一预设的初始值。Optionally, when the hotel offline electronic door lock detects that the primary replacement number of the key card to be verified is greater than the primary replacement number stored in itself, before comparing the secondary replacement numbers to authorize unlocking, the first-category secondary replacement number and the second-category secondary replacement number stored in the hotel offline electronic door lock are reset to a preset initial value.
可选地,方法还包括退房步骤:当接收到一退房指令时,将酒店离线电子门锁存储的第一类次替代号和第二类次替代号更新为一个预设的、大于次替代号在正常使用中可能达到的最大值的封顶值。Optionally, the method further includes a check-out step: when a check-out instruction is received, the first-category secondary replacement number and the second-category secondary replacement number stored in the hotel's offline electronic door lock are updated to a preset capping value that is greater than the maximum value that the secondary replacement number may reach in normal use.
可选地,第一类钥匙卡为对权限群组内的多个门锁具有开锁权限的主房房卡,第二类钥匙卡为仅对单个门锁具有开锁权限的亲友房房卡。Optionally, the first type of key card is a master room card that has unlocking authority for multiple door locks within the authority group, and the second type of key card is a friend's room card that has unlocking authority for only a single door lock.
可选地,方法还包括门锁初始化安全验证步骤:当待验证钥匙卡的主替代号新于电子门锁存储的主替代号时,在执行后续步骤之前,先读取该钥匙卡内存储的、由发卡系统通过私钥生成的签名数据;并使用预存于电子门锁内的公钥对该签名数据进行验证,仅在验证通过后,才认定该钥匙卡为合法卡并执行后续的替代号更新和版本验证。Optionally, the method also includes a door lock initialization security verification step: when the master replacement number of the key card to be verified is newer than the master replacement number stored in the electronic door lock, before executing subsequent steps, first read the signature data stored in the key card, which is generated by the card issuing system using a private key; and use the public key pre-stored in the electronic door lock to verify the signature data. Only after the verification is passed, the key card is recognized as a legal card and subsequent replacement number updates and version verifications are performed.
本发明第二方面提供了一种酒店离线电子门锁,包括处理器和存储器,存储器中存储有:A second aspect of the present invention provides a hotel offline electronic door lock, comprising a processor and a memory, wherein the memory stores:
用于标识一个权限群组的主替代号;The primary replacement number used to identify a permission group;
用于验证权限群组内第一类钥匙卡版本的第一类次替代号;The first-class minor replacement number used to verify the first-class key card version within the authorization group;
以及用于验证权限群组内第二类钥匙卡版本的第二类次替代号;and a second-class minor replacement number for verifying a second-class key card version within the authorization group;
处理器被配置为执行如本发明第一方面中任一项的方法。The processor is configured to execute any method according to the first aspect of the present invention.
可选地,存储器包括用于存储主替代号、第一类次替代号和第二类次替代号的非易失性存储单元。Optionally, the memory comprises a non-volatile storage unit for storing the major replacement number, the first category minor replacement number and the second category minor replacement number.
可选地,存储器中还预存有用于验证钥匙卡合法性的发卡公钥;处理器被进一步配置为,在执行门锁初始化时,先执行签名验证步骤,该步骤使用发卡公钥验证待验证钥匙卡内附带的签名数据,并且仅在签名验证通过后才执行后续的替代号更新和版本验证。Optionally, the memory also pre-stores a card-issuing public key for verifying the legitimacy of the key card; the processor is further configured to first perform a signature verification step when executing door lock initialization, which uses the card-issuing public key to verify the signature data attached to the key card to be verified, and only performs subsequent replacement number updates and version verifications after the signature verification is passed.
本发明第三方面提供了一种酒店离线门禁系统,包括本发明第二方面中的酒店离线电子门锁,以及与该酒店离线电子门锁的权限群组关联的第一类钥匙卡和第二类钥匙卡;A third aspect of the present invention provides a hotel offline access control system, comprising the hotel offline electronic door lock of the second aspect of the present invention, and a first type of key card and a second type of key card associated with an authority group of the hotel offline electronic door lock;
其中,第一类钥匙卡和第二类钥匙卡内均存储有:Among them, the first type of key card and the second type of key card both store:
与酒店离线电子门锁内存储的主替代号相同的主替代号;The same master replacement number as that stored in the hotel's offline electronic door lock;
用于版本验证的次替代号;以及A minor replacement number for version verification; and
用于区分卡片类型的角色代码。Character code used to distinguish card types.
根据本发明公开的技术内容,具有如下有益效果:The technical content disclosed in the present invention has the following beneficial effects:
本发明通过在门锁端为不同角色的卡片设立相互独立的版本控制轨道,带来了显著的有益效果。该方案从根本上实现了“非对称作废”机制,即补办一张子卡(亲友房卡)的动作,仅会作废旧的子卡,而绝不会影响主卡(主房卡)对该门锁的任何访问权限,完美地保证了关联权限的连续性和稳定性,极大地提升了住客的使用体验。同时,该机制依然能可靠地作废任何一张丢失的卡片,确保了系统的安全性,且整个过程在纯离线环境下完成,门锁结构简单,系统运行可靠性高。This invention achieves significant benefits by establishing independent version control tracks for cards associated with different roles on the door lock. This solution fundamentally implements an "asymmetric invalidation" mechanism. Renewing a sub-card (a friend or family room card) only invalidates the old sub-card, without affecting any access rights granted to the main card (the main room card) for the door lock. This perfectly ensures the continuity and stability of associated permissions, significantly improving the guest experience. Furthermore, this mechanism can reliably invalidate any lost card, ensuring system security. The entire process is completed in a purely offline environment, resulting in a simple door lock structure and highly reliable system operation.
通过以下参照附图对本发明的示例性实施例的详细描述,本发明的其它特征及其优点将会变得清楚。Further features and advantages of the present invention will become apparent from the following detailed description of exemplary embodiments of the present invention with reference to the accompanying drawings.
附图说明BRIEF DESCRIPTION OF THE DRAWINGS
被结合在说明书中并构成说明书的一部分的附图示出了本发明的实施例,并且连同其说明一起用于解释本发明的原理。The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments of the invention and, together with the description, serve to explain the principles of the invention.
图1为本发明的门禁系统的结构框图。FIG1 is a structural block diagram of the access control system of the present invention.
具体实施方式DETAILED DESCRIPTION
现在将参照附图来详细描述本发明的各种示例性实施例。应注意到:除非另外具体说明,否则在这些实施例中阐述的部件和步骤的相对布置、数字表达式和数值不限制本发明的范围。Various exemplary embodiments of the present invention will now be described in detail with reference to the accompanying drawings. It should be noted that unless otherwise specifically stated, the relative arrangement of components and steps, numerical expressions and numerical values set forth in these embodiments do not limit the scope of the present invention.
以下对至少一个示例性实施例的描述实际上仅仅是说明性的,决不作为对本发明及其应用或使用的任何限制。The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the invention, its application, or uses.
对于相关领域普通技术人员已知的技术、方法和设备可能不作详细讨论,但在适当情况下,技术、方法和设备应当被视为说明书的一部分。Technologies, methods, and equipment known to ordinary technicians in the relevant art may not be discussed in detail, but where appropriate, the technologies, methods, and equipment should be considered part of the specification.
在这里示出和讨论的所有例子中,任何具体值应被解释为仅仅是示例性的,而不是作为限制。因此,示例性实施例的其它例子可以具有不同的值。In all examples shown and discussed herein, any specific values should be interpreted as merely exemplary and not limiting. Therefore, other examples of the exemplary embodiments may have different values.
应注意到:相似的标号和字母在下面的附图中表示类似项,因此,一旦某一项在一个附图中被定义,则在随后的附图中不需要对其进行进一步讨论。It should be noted that like reference numerals and letters refer to like items in the following figures, and therefore, once an item is defined in one figure, it need not be further discussed in subsequent figures.
本发明的总体构思在于,提供一种酒店离线门禁系统,管理具有绑定关系的、不同权限等级的钥匙卡。核心创新在于酒店离线电子门锁的内部数据结构和验证逻辑。一个酒店离线电子门锁不再只记录一个单一、全局的版本号,而是为同一个“权限群组”,维护多个独立的、与卡片角色相关联的版本号记录轨道。这样,当权限群组中某一个角色的卡片需要更新换代时,不会影响其他角色的有效卡片。The overall concept of this invention is to provide a hotel offline access control system that manages bound key cards of varying authorization levels. The core innovation lies in the internal data structure and verification logic of the hotel offline electronic door lock. Instead of recording a single, global version number, the hotel offline electronic door lock maintains multiple independent version number tracks associated with card roles for the same "authority group." This allows the card for one role within the authorization group to be updated without affecting the valid cards for other roles.
第一实施例:基于时间戳的替代号方案First embodiment: timestamp-based replacement number solution
请参阅图1,在本实施例中,酒店离线门禁系统10包括一个酒店离线电子门锁100,以及可与该门锁交互的第一类钥匙卡200和第二类钥匙卡300。在本实施例中,第一类钥匙卡200是“主房卡”,它拥有开启多个关联房门(如主房和亲友房)的权限。第二类钥匙卡300是“亲友房卡”,它仅拥有开启自身房门的权限。Referring to Figure 1 , in this embodiment, a hotel offline access control system 10 includes a hotel offline electronic door lock 100, as well as a first-type key card 200 and a second-type key card 300 that interact with the door lock. In this embodiment, the first-type key card 200 is a "master room card," which grants access to multiple associated room doors (e.g., the main room and a friend's room). The second-type key card 300 is a "friend's room card," which grants access only to the door of the room in which the card is located.
该酒店离线电子门锁100,内部包括一个处理器101和一个存储器102。该存储器包括用于存储替代号的非易失性存储单元,例如闪存(FlashMemory),以确保数据在断电后不丢失。该存储器中,为一个权限群组存储了三个关键的替代号,在本实施例中三个关键的替代号均为时间戳,其中:The hotel's offline electronic door lock 100 includes a processor 101 and a memory 102. The memory includes a non-volatile storage unit, such as flash memory, for storing replacement codes to ensure data is not lost after a power outage. The memory stores three key replacement codes for each permission group. In this embodiment, the three key replacement codes are timestamps, where:
主替代号A:用于标识这个权限群组的唯一ID。Primary Alternative Number A: A unique ID used to identify this permission group.
第一类次替代号B_master:专门用于记录和验证关联的第一类钥匙卡200的最新版本。The first-class minor replacement number B_master is specifically used to record and verify the latest version of the associated first-class key card 200 .
第二类次替代号B_sub:专门用于记录和验证本门锁对应的第二类钥匙卡300的最新版本。The second-class sub-substitution number B_sub is specifically used to record and verify the latest version of the second-class key card 300 corresponding to the door lock.
第一类钥匙卡200和第二类钥匙卡300的内部均存储有关键信息,包括:Both the first type key card 200 and the second type key card 300 store key information, including:
一个与门锁中的主替代号A相同的主替代号。A master replacement number that is the same as the master replacement number A in the door lock.
一个代表其自身版本的次替代号。A minor alternative number representing its own version.
一个用于识别卡片类型的角色代码。在实施例中,该角色代码可以是一个特定的数据位或字节,例如,用代码“01”代表第一类钥匙卡,用代码“02”代表第二类钥匙卡。门锁的处理器通过读取该角色代码来区分并执行不同的验证逻辑。A role code used to identify the card type. In one embodiment, the role code can be a specific data bit or byte, for example, the code "01" represents a first-type key card and the code "02" represents a second-type key card. The door lock processor reads the role code to distinguish and execute different authentication logic.
下面,通过一系列典型场景,以叙事和数据演变结合的方式,详细阐述本发明的工作流程。The following describes the workflow of the present invention in detail through a series of typical scenarios, combining narrative and data evolution.
场景一:客人的首次入住与门锁初始化Scenario 1: Guest's first check-in and door lock initialization
此场景描述了系统如何为一个全新的关联入住请求,高效、可靠地配置权限并完成门锁的渐进式、基于角色的首次初始化。This scenario describes how the system can efficiently and reliably configure permissions and complete the progressive, role-based initialization of the door lock for a new associated check-in request.
门锁初始状态:一个新安装或已完成退房的酒店离线电子门锁100,其存储器记录为默认初始值:(主:0,B_master:0,B_sub:0)。Door lock initial state: A newly installed or checked-out hotel offline electronic door lock 100 has its memory recorded as the default initial value: (master: 0, B_master: 0, B_sub: 0).
前台发卡:为确保逻辑的简洁与鲁棒性,发卡机遵循一项关键规则:为同一个权限群组首次发行的所有关联卡片,强制赋予相同的初始次替代号。Front desk card issuance: To ensure the simplicity and robustness of the logic, the card issuing machine follows a key rule: all associated cards issued for the first time to the same permission group are mandatory to be assigned the same initial secondary replacement number.
生成一个当前的时间戳作为本次入住的权限群组ID,例如A_new=10000。Generate a current timestamp as the permission group ID for this check-in, for example, A_new=10000.
生成一个初始版本号,例如B_initial=50。Generate an initial version number, for example, B_initial=50.
生成一张主房卡(第一类钥匙卡200实例):写入信息{主:10000,次:50,角色:“01”}。Generate a master room card (first type key card 200 instance): write information {master: 10000, secondary: 50, role: "01"}.
生成一张亲友房卡(第二类钥匙卡300实例):写入信息{主:10000,次:50,角色:“02”}。Generate a friend's room card (second-type key card 300 instance): write information {primary: 10000, secondary: 50, role: "02"}.
门锁初始化过程:Door lock initialization process:
情况一:主房卡先刷亲友房门锁Situation 1: The main room card is used to swipe the door lock of the relatives and friends' room first
操作:客人持主房卡(10000,50,“01”)首次刷亲友房门锁100。Operation: The guest uses the main room card (10000, 50, "01") to swipe the door lock of the friend's room for the first time 100.
处理流程:门锁检测到卡片主替代号(10000)>锁内主替代号(0),触发初始化。门锁用10000更新自身主替代号。根据卡片角色“01”,处理器仅用卡片次替代号50更新第一类次替代号B_master。第二类次替代号B_sub保持为0。Processing flow: The door lock detects that the card's master replacement number (10000) is greater than the lock's internal master replacement number (0), triggering initialization. The door lock updates its own master replacement number with 10000. Based on the card role "01", the processor only updates the primary replacement number B_master with the card's secondary replacement number 50. The secondary replacement number B_sub remains at 0.
数据状态变更:锁内记录由(0,0,0)变为(主:10000,B_master:50,B_sub:0)。Data status change: The record in the lock changes from (0, 0, 0) to (master: 10000, B_master: 50, B_sub: 0).
后续:随后客人持亲友房卡(10000,50,“02”)刷该锁,会因50>0而验证通过,并将第二类次替代号B_sub更新为50。最终记录变为(主:10000,B_master:50,B_sub:50)。Follow-up: The guest then uses the friend's room card (10000, 50, "02") to swipe the lock. Because 50>0, the verification is passed, and the second-class sub-alternative number B_sub is updated to 50. The final record becomes (master: 10000, B_master: 50, B_sub: 50).
情况二:亲友房卡先刷亲友房门锁Situation 2: The friend's room card is swiped first to lock the friend's room door
操作:客人持亲友房卡(10000,50,“02”)首次刷亲友房门锁100。Operation: The guest uses the friend and family room card (10000, 50, "02") to swipe the friend and family room door lock 100 for the first time.
处理流程:门锁同样触发初始化。根据角色“02”,处理器仅用卡片次替代号50更新第二类次替代号B_sub。第一类次替代号B_master保持为0。Processing flow: The door lock also triggers initialization. Based on the role "02", the processor only updates the second-class sub-substitution number B_sub with the card sub-substitution number 50. The first-class sub-substitution number B_master remains 0.
数据状态变更:锁内记录由(0,0,0)变为(主:10000,B_master:0,B_sub:50)。Data status change: The record in the lock changes from (0, 0, 0) to (master: 10000, B_master: 0, B_sub: 50).
后续:随后客人持主房卡(10000,50,“01”)刷该锁,会因50>0而验证通过,并将第一类次替代号B_master更新为50。最终记录同样变为(主:10000,B_master:50,B_sub:50)。Subsequent: The guest then swipes the lock with the master room card (10000, 50, "01"), which is authenticated because 50>0, and the first-class sub-alternative number B_master is updated to 50. The final record also becomes (master: 10000, B_master: 50, B_sub: 50).
结果:这种严格按角色初始化的渐进式逻辑,保证了无论刷卡顺序如何,系统都能达到唯一、正确的稳定工作状态,体现了方案的鲁棒性。Results: This progressive logic, which is strictly initialized according to roles, ensures that the system can reach a unique, correct and stable working state regardless of the card swiping order, demonstrating the robustness of the solution.
场景二:日常使用中的权限验证Scenario 2: Permission Verification in Daily Use
在初始化完成后,锁内记录稳定为(主:10000,B_master:50,B_sub:50)。After initialization is completed, the records in the lock are stable as (master: 10000, B_master: 50, B_sub: 50).
主房卡开启主房门:主房卡刷主房门锁,门锁将其作为“本房卡”验证,识别角色“01”,对比自身的“第一类次替代号”,50≥50,验证通过。The main room card opens the main room door: the main room card is swiped against the main room door lock, and the door lock verifies it as the "this room card", identifies the role "01", and compares it with its own "first-class secondary replacement number". If 50≥50, the verification is passed.
主房卡开启亲友房门:主房卡刷亲友房门锁,门锁识别角色“01”,将其次替代号50与锁内存储的“第一类次替代号”(B_master,值为50)进行比较。50≥50,验证通过。Master room card unlocks the Friends and Family room door: The master room card is swiped against the Friends and Family room door lock. The lock recognizes the role "01" and compares the secondary replacement number 50 with the "first-class secondary replacement number" (B_master, value 50) stored in the lock. If 50 ≥ 50, the verification is successful.
亲友房卡开启亲友房门:亲友房卡刷亲友房门锁,门锁识别角色“02”,将其次替代号50与锁内存储的“第二类次替代号”(B_sub,值为50)进行比较。50≥50,验证通过。Friend's room card unlocks the door: The friend's room card is swiped against the friend's room door lock. The lock recognizes the role "02" and compares the secondary substitution number 50 with the "secondary substitution number" (B_sub, value 50) stored in the lock. If 50 ≥ 50, the verification is successful.
亲友房卡尝试开启主房门:主房门锁的处理器在验证时,会检查该卡片(或其角色代码“02”)是否被授予了开启本门锁的权限。由于发卡时未授予,拒绝开锁。A friend or relative attempts to open the main door using their room card: During verification, the main door lock's processor checks whether the card (or its role code "02") has been granted permission to open the door. Since this permission was not granted when the card was issued, the lock is denied.
场景三:钥匙卡丢失与补办Scenario 3: Key Card Loss and Replacement
此场景充分展示本发明的“非对称作废”机制。This scenario fully demonstrates the "asymmetric invalidation" mechanism of the present invention.
亲友房卡(第二类钥匙卡)丢失补办:Re-issuance of lost room cards for relatives and friends (second type key cards):
当前状态:亲友房门锁100记录为(主:10000,B_master:50,B_sub:50)。Current status: The friend and family door lock 100 is recorded as (master: 10000, B_master: 50, B_sub: 50).
补办操作:前台制作新亲友房卡,信息为{主:10000,次:90,角色:“02”}。Reissue operation: The front desk will make a new room card for relatives and friends, with the information of {primary: 10000, secondary: 90, role: "02"}.
刷卡与状态变更:当持新卡(10000,90,“02”)刷亲友房门锁时,门锁识别其角色为“02”,发现其版本号90高于锁内记录的B_sub(50)。门锁授权开门,并仅更新第二类次替代号。Card swiping and status change: When a new card (10000, 90, "02") is swiped to the friend's room door lock, the door lock recognizes the card's role as "02" and finds that its version number 90 is higher than the B_sub (50) recorded in the lock. The door lock authorizes the door to be opened and only updates the second-class replacement number.
数据变化:锁内记录从(10000,50,50)变为(10000,50,90)。Data change: The record in the lock changes from (10000, 50, 50) to (10000, 50, 90).
结果:丢失的旧亲友房卡(次:50)被作废。主房卡(次:50)的验证轨道B_master未受影响,其开启亲友房门的权限完美保留。Result: The lost old Friends and Family room card (times: 50) was invalidated. The verification track B_master of the master room card (times: 50) was not affected, and its permission to open the Friends and Family room door was perfectly retained.
主房卡(第一类钥匙卡)丢失补办:Re-issuance of lost main room card (first type key card):
当前状态:亲友房门锁记录为(主:10000,B_master:50,B_sub:90)。Current status: The door lock record of the friends and relatives room is (master: 10000, B_master: 50, B_sub: 90).
补办操作:前台制作新主房卡,信息为{主:10000,次:80,角色:“01”}。Reissue operation: The front desk will make a new master room card with the information of {master: 10000, secondary: 80, role: "01"}.
刷卡与状态变更:当新主房卡刷亲友房门锁时,该锁识别其角色为“01”,发现其版本号80高于锁内记录的B_master(50)。验证通过后,将第一类次替代号更新为80。Card swiping and status change: When the new master room card is swiped to the friend's room door lock, the lock recognizes its role as "01" and finds that its version number 80 is higher than the B_master (50) recorded in the lock. After verification, the first-class replacement number is updated to 80.
数据变化:亲友房门锁记录变为(10000,80,90)。Data changes: The door lock record of relatives and friends becomes (10000, 80, 90).
结果:丢失的旧主房卡(次:50)被作废。有效亲友房卡(次:90)的验证轨道B_sub未受影响,权限不受干扰。Result: The lost old master room card (50 times) was invalidated. The verification track B_sub for the valid friend and family room card (90 times) was not affected, and the permissions were not disturbed.
场景四:其他管理操作Scenario 4: Other Management Operations
新增同行卡:若需为亲友房增加一张同行卡,发卡机只需复制当前有效的亲友房卡的所有信息,即将该卡的{主:10000,次:90,角色:“02”}信息写入一张新卡。因次替代号相同,可与原卡同时使用。新增同行卡可以发生在办理入住时,也可以发生在办理入住后的任意时间。Adding a companion card: To add a companion card for a friend's room, the card issuing machine simply copies all the information from the currently valid friend's room card, writing the original card's {Primary: 10000, Secondary: 90, Role: "02"} information onto a new card. Since the replacement number is the same, it can be used simultaneously with the original card. Adding a companion card can be done at check-in or anytime after check-in.
客人退房与门锁的再初始化:客人退房后,为确保安全,需由工作人员(如保洁人员)持具有“初始化”或“退房”权限的特殊工作卡(退房卡)在物理门锁上执行退房操作。该卡会向门锁下达指令,使其将内部主替代号更新为一个全新的、当前时间戳(例如Z=20000),该当前时间戳的时间节点为物理门锁上记录的时间节点而非工作人员的退房卡,并将两个次替代号轨道清零。Guest Checkout and Door Lock Reinitialization: After a guest checks out, to ensure safety, a staff member (such as a cleaning staff member) must perform the checkout operation on the physical door lock using a special work card (checkout card) with "initialization" or "checkout" privileges. This card instructs the door lock to update its internal primary replacement number to a new, current timestamp (e.g., Z=20000). This current timestamp is the time recorded on the physical door lock, not the staff member's checkout card, and clears both secondary replacement number tracks to zero.
数据变化:锁内记录从(10000,80,90)变为(主:20000,B_master:0,B_sub:0)。Data changes: The record in the lock changes from (10000, 80, 90) to (master: 20000, B_master: 0, B_sub: 0).
结果:所有基于旧主替代号10000的卡片全部失效,门锁恢复至安全、干净的初始状态,为下一位新客人服务。Result: All cards based on the old owner's replacement number 10000 are invalidated, and the door lock is restored to its original safe and clean state, ready to serve the next new guest.
第二实施例:基于顺序号的替代号方案Second embodiment: Alternative number scheme based on sequence number
为了适应存储空间有限、功耗敏感的电子门锁硬件,本发明还提供了一种优选的实施方式。在该实施例中,次替代号不采用时间戳,而是采用占用内存更小的顺序号(例如从1开始的整数),并且对客人退房后的门锁状态管理和再初始化逻辑进行了优化。To accommodate electronic door lock hardware with limited storage space and high power consumption, the present invention also provides a preferred implementation. In this embodiment, the secondary replacement number uses a smaller memory-efficient sequence number (e.g., an integer starting at 1) rather than a timestamp. Furthermore, the lock status management and reinitialization logic after a guest's check-out are optimized.
该实施例与第一实施例的主要区别在于:The main differences between this embodiment and the first embodiment are:
次替代号的性质:第一类次替代号B_master和第二类次替代号B_sub均为简单的顺序号。Properties of the secondary replacement numbers: The first-class secondary replacement number B_master and the second-class secondary replacement number B_sub are both simple serial numbers.
次替代号的清零逻辑:每次为新客人办理入住时,门锁会自动将两个次替代号轨道清零。清零的触发条件是:门锁检测到待验证钥匙卡的主替代号A_new大于锁内存储的旧主替代号A_old。这标志着一个新的入住周期的开始。Secondary Alternative Number Reset Logic: Each time a new guest checks in, the door lock automatically resets both secondary alternative number tracks. This reset occurs when the door lock detects that the primary alternative number A_new of the key card being verified is greater than the old primary alternative number A_old stored in the lock. This marks the beginning of a new check-in cycle.
下面,结合具体场景描述其工作流程。The following describes the workflow in conjunction with specific scenarios.
场景一:新客人入住(基于顺序号)Scenario 1: New guest checks in (based on sequence number)
门锁前一状态:上一位客人已退房,锁内记录可能为(主:10000,B_master:999,B_sub:999)(该状态的成因见下文“退房”场景)。The previous state of the door lock: The previous guest has checked out, and the record in the lock may be (master: 10000, B_master: 999, B_sub: 999) (see the "Check-out" scenario below for the cause of this state).
前台发卡:为新客人办理入住。Card issuance at the front desk: Check-in for new guests.
发卡系统生成一个新的、大于10000的主替代号,例如A_new=10001(主替代号仍可基于时间戳或其他递增算法生成)。The card issuing system generates a new primary replacement number greater than 10000, for example, A_new=10001 (the primary replacement number can still be generated based on a timestamp or other incremental algorithm).
为新发行的主房卡和亲友房卡分配一个初始的顺序号,例如从1开始。Assign an initial sequence number to the newly issued master room card and friends and family room card, for example, starting from 1.
新主房卡(第一类):写入信息{主:10001,次:1,角色:“01”}。New master room card (first type): write information {master: 10001, secondary: 1, role: "01"}.
新亲友房卡(第二类):写入信息{主:10001,次:1,角色:“02”}。New friends and family room card (second category): write information {primary: 10001, secondary: 1, role: "02"}.
刷卡与初始化:Card swiping and initialization:
客人持新主房卡(10001,1,“01”)首次刷锁。The guest uses the new main room card (10001, 1, "01") to swipe the lock for the first time.
门锁处理器检测到卡片主替代号(10001)>锁内主替代号(10000),识别出这是一个全新的入住请求。The door lock processor detects that the card master replacement number (10001) is greater than the lock master replacement number (10000) and recognizes that this is a new check-in request.
处理器执行“换客初始化”:将锁内主替代号更新为10001。The processor performs "customer exchange initialization": the master replacement number in the lock is updated to 10001.
自动将第一类次替代号B_master和第二类次替代号B_sub均清零或重置为初始值(例如0)。The first-class sub-substitution number B_master and the second-class sub-substitution number B_sub are automatically cleared or reset to initial values (eg, 0).
随后,执行正常的验证逻辑:因卡片次替代号(1)>锁内B_master(0),验证通过,授权开锁,并用1更新B_master。Then, the normal verification logic is executed: because the card replacement number (1) is greater than the B_master (0) in the lock, the verification is passed, the lock is authorized, and B_master is updated with 1.
数据状态变更:锁内记录由(10000,999,999)变为(主:10001,B_master:1,B_sub:0)。随后亲友房卡刷卡,记录会最终变为(主:10001,B_master:1,B_sub:1)。Data status change: The record in the lock changes from (10000, 999, 999) to (Master: 10001, B_master: 1, B_sub: 0). If a friend or relative swipes their room card, the record will eventually change to (Master: 10001, B_master: 1, B_sub: 1).
场景二:亲友房卡丢失与补办(基于顺序号)Scenario 2: Lost room card of relatives or friends and reissue (based on sequence number)
当前状态:锁内记录为(主:10001,B_master:1,B_sub:1)。Current status: The record in the lock is (master: 10001, B_master: 1, B_sub: 1).
补办操作:前台制作新亲友房卡,顺序号递增。信息为{主:10001,次:2,角色:“02”}。Reissue operation: The front desk will make a new room card for relatives and friends, with the serial number increasing. The information is {primary: 10001, secondary: 2, role: "02"}.
刷卡与状态变更:当持新卡(10001,2,“02”)刷锁时,门锁识别角色“02”,因卡片的第一类次替代号B_sub(2)>锁内B_sub(1),授权开门,并仅更新锁端的第二类次替代号。Card swiping and status change: When a new card (10001, 2, "02") is swiped, the door lock recognizes the role "02". Since the card's first-class substituent number B_sub(2) is greater than the lock's B_sub(1), the door is authorized to open and only the second-class substituent number on the lock side is updated.
数据变化:锁内记录从(10001,1,1)变为(10001,1,2)。Data change: The record in the lock changes from (10001, 1, 1) to (10001, 1, 2).
结果:丢失的旧亲友房卡值为“1”的第二类次替代号被作废。主房卡值为“1”第一类次替代号的验证轨道B_master未受影响,权限保留。由于补卡和丢卡的次数在一个入住周期内是有限的,顺序号不会累计得过大。Result: The second-class replacement number for the lost friend's room card with a value of "1" is invalidated. The verification track B_master for the first-class replacement number for the master room card with a value of "1" is unaffected, and permissions are retained. Because the number of card replacements and lost cards within a stay is limited, the sequence number will not accumulate too high.
场景三:客人退房与门锁的再初始化Scenario 3: Guest check-out and door lock reinitialization
此方法旨在不更换主替代号的情况下,立刻、可靠地作废所有住客卡。This method is designed to immediately and reliably invalidate all guest cards without changing the primary or secondary number.
当前状态:假设客人在住期间补办过多次卡,锁内记录为(主:10001,B_master:5,B_sub:8)。Current status: Assume that the guest has reissued the card multiple times during his stay, and the record in the lock is (master: 10001, B_master: 5, B_sub: 8).
退房操作:工作人员(如保洁人员)持具有特殊“退房”权限的工作卡刷锁。该卡的作用是向门锁下达一个指令:将两个次替代号轨道的值,用一个预设的、远大于正常使用范围的封顶值(例如999)进行覆盖。Check-out: A staff member (such as a cleaning staff member) swipes the lock with a special "check-out" card. This card instructs the door lock to overwrite the values in the two secondary replacement number tracks with a preset capped value (e.g., 999) that is much larger than the normal usage range.
刷卡与状态变更:Card swiping and status change:
退房卡刷锁后,门锁执行指令。After the check-out card is swiped, the door lock executes the command.
数据变化:锁内记录由(10001,5,8)变为(主:10001,B_master:999,B_sub:999)。Data changes: The record in the lock changes from (10001, 5, 8) to (master: 10001, B_master: 999, B_sub: 999).
结果:此时,任何之前有效的住客卡(如主卡次号为5,亲友卡次号为8)再来刷锁时,都会因为其版本号远小于锁内记录的999而被拒绝。该方法巧妙地利用了版本比较机制,将门锁置于一个“已退房但未换客”的安全中间状态,有效防止了已退房客人的再次进入。这个状态将一直维持到下一位客人持具有更高主替代号的新卡前来初始化为止。Result: At this point, any previously valid guest card (e.g., a primary card with serial number 5 and a friend and family card with serial number 8) will be rejected because its version number is significantly lower than the 999 recorded in the lock. This method cleverly utilizes the version comparison mechanism to place the lock in a secure intermediate state of "checked out but not yet checked in," effectively preventing re-entry by the checked-out guest. This state persists until the next guest initializes the lock with a new card with a higher primary or replacement number.
此实施例通过使用顺序号和优化的退房/初始化逻辑,不仅降低了对门锁硬件资源的要求,还通过“换客自动清零”和“退房写封顶值”两个动作,形成了一个既安全又高效的闭环管理流程。This embodiment uses sequence numbers and optimized check-out/initialization logic to not only reduce the requirements for door lock hardware resources, but also forms a safe and efficient closed-loop management process through the two actions of "automatic clearing of guest changes" and "writing the cap value upon check-out."
进一步地,在另一优选实施例中,主替代号本身也可以是顺序号或特定规则生成的数值串,而不必与时间戳关联,只要能保证其在每次新入住时递增即可。Furthermore, in another preferred embodiment, the primary replacement number itself may be a sequential number or a numerical string generated by a specific rule, and does not need to be associated with a timestamp, as long as it can be guaranteed to increase with each new check-in.
进一步地,在一些实施例中,为了进一步提升系统的安全性,特别是防止在门锁初始化阶段被任何非官方发行的非法卡片进行欺骗性占领,本发明还可以包含一个基于非对称加密的“发卡签名”机制。该机制作为对上述实施方式的一个优选的增强方案,独立存在,不影响前述方案的完整性。Furthermore, in some embodiments, to further enhance system security, particularly to prevent fraudulent access by unauthorized cards during door lock initialization, the present invention may also include a "card issuance signature" mechanism based on asymmetric encryption. This mechanism, as a preferred enhancement to the aforementioned implementation, exists independently and does not affect the integrity of the aforementioned solution.
酒店后台发卡系统持有一个全局唯一的发卡私钥。所有酒店离线电子门锁100:在出厂时,预先写入与该发卡私钥配对的发卡公钥。The hotel's back-end card issuance system holds a globally unique private key. All hotel offline electronic door locks 100 are pre-loaded with a public key that pairs with the private key when they leave the factory.
在场景一的初始发卡步骤中,发卡机在向钥匙卡写入{主替代号,次替代号,角色代码}等信息的同时,会额外执行一步:用发卡私钥对这些核心信息(或其哈希值)进行数字签名,生成一串签名数据,并将该签名数据一并写入卡中。In the initial card issuance step of scenario 1, while the card issuing machine writes information such as {primary replacement number, secondary replacement number, role code} to the key card, it will perform an additional step: digitally sign this core information (or its hash value) with the issuing private key to generate a string of signature data, and write the signature data into the card.
在场景一的门锁初始化过程中,门锁处理器在检测到卡片主替代号大于其内部记录的初始值后,会先执行一个强制的验签步骤:During the door lock initialization process in scenario 1, the door lock processor will first perform a mandatory signature verification step after detecting that the card master replacement number is greater than the initial value recorded in its internal record:
它会用自己内部存储的发卡公钥,去验证卡片上附带的“签名数据”对于卡上的核心信息是否有效。It will use its internally stored card-issuing public key to verify whether the "signature data" attached to the card is valid for the core information on the card.
只有在签名验证成功,确认该卡片是由官方授权渠道发行的情况下,门锁才会继续执行后续的初始化操作。若签名验证失败,门锁将直接拒绝该卡。Only when the signature verification is successful and it is confirmed that the card is issued by an officially authorized channel will the door lock continue to perform subsequent initialization operations. If the signature verification fails, the door lock will directly reject the card.
该“签名-验签”机制为整个离线门禁系统建立了一个牢固的信任根。它能彻底杜绝任何伪造卡片对一个“无主”门锁进行恶意初始化的攻击路径,确保了只有合法的住客才能成为一个房间权限的“第一位开启者”,从而提高了系统的安全性。This "signature-verification" mechanism establishes a solid root of trust for the entire offline access control system. It completely eliminates any attack path for malicious initialization of an "unowned" door lock using a forged card, ensuring that only legitimate guests can be the "first opener" of a room's permissions, thereby improving system security.
综上所述,本发明通过在酒店离线电子门锁内创新性地设置用于标识权限群组的主替代号、以及分别用于记录不同角色钥匙卡版本的第一类和第二类次替代号,并结合钥匙卡内存储的角色代码,建立了一套完整、闭环且可靠的非对称权限管理和作废机制。上述各场景的详细阐述,具体地示出了本发明是如何在保证关联权限连续性的前提下,精确地作废指定丢失卡片,从而一并解决了安全性与便利性的行业难题。In summary, this invention establishes a complete, closed-loop, and reliable asymmetric permission management and invalidation mechanism by innovatively setting a primary replacement number for identifying permission groups, as well as first and second category secondary replacement numbers for recording different role key card versions, within the hotel's offline electronic door lock. Combined with the role codes stored within the key cards, this mechanism combines these roles to create a comprehensive, closed-loop, and reliable asymmetric permission management and invalidation mechanism. The detailed description of each of the above scenarios specifically illustrates how this invention accurately invalidates a specific lost card while ensuring the continuity of associated permissions, thereby simultaneously addressing the industry challenges of both security and convenience.
应当理解,以上所述仅是本发明的优选实施方式,而非用于限制本发明的保护范围。对于本领域的技术人员来说,在不脱离本发明核心构思的前提下,还可以做出若干变形和改进,例如将两类角色扩展为更多角色,或对替代号的具体编码方式进行调整等,这些等同替换和改进,均应包含在本发明的保护范围之内。It should be understood that the above description is merely a preferred embodiment of the present invention and is not intended to limit the scope of protection of the present invention. Those skilled in the art will appreciate that, without departing from the core concept of the present invention, various modifications and improvements may be made, such as expanding the two types of roles to include more roles or adjusting the specific encoding method of the replacement numbers. These equivalent replacements and improvements should all be included within the scope of protection of the present invention.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202510840831.8ACN120356279B (en) | 2025-06-23 | 2025-06-23 | A hotel offline access control authority management method, hotel offline electronic door lock and hotel offline access control system |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202510840831.8ACN120356279B (en) | 2025-06-23 | 2025-06-23 | A hotel offline access control authority management method, hotel offline electronic door lock and hotel offline access control system |
| Publication Number | Publication Date |
|---|---|
| CN120356279A CN120356279A (en) | 2025-07-22 |
| CN120356279Btrue CN120356279B (en) | 2025-08-15 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202510840831.8AActiveCN120356279B (en) | 2025-06-23 | 2025-06-23 | A hotel offline access control authority management method, hotel offline electronic door lock and hotel offline access control system |
| Country | Link |
|---|---|
| CN (1) | CN120356279B (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106600477A (en)* | 2016-12-22 | 2017-04-26 | 广东力维智能锁业有限公司 | Hotel management method for obtaining and returning room card through self-service |
| CN107767512A (en)* | 2017-10-26 | 2018-03-06 | 成都市红亿科技有限公司 | Hotel's door lock management method based on access Network Recognition |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US12266232B2 (en)* | 2022-07-25 | 2025-04-01 | Bank Of America Corporation | User authentication using behavior patterns |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106600477A (en)* | 2016-12-22 | 2017-04-26 | 广东力维智能锁业有限公司 | Hotel management method for obtaining and returning room card through self-service |
| CN107767512A (en)* | 2017-10-26 | 2018-03-06 | 成都市红亿科技有限公司 | Hotel's door lock management method based on access Network Recognition |
| Publication number | Publication date |
|---|---|
| CN120356279A (en) | 2025-07-22 |
| Publication | Publication Date | Title |
|---|---|---|
| CN101018127B (en) | Remote access systems, gateways, clients, programs and storage media | |
| CN100583036C (en) | Computer safety control method based on USB flash memory disc | |
| US20100077474A1 (en) | Physical access control system with smartcard and methods of operating | |
| US20040263315A1 (en) | Information security system interworking with entrance control device and control method thereof | |
| US20080168247A1 (en) | Method and apparatus for controlling access to a data storage device | |
| JPH06501324A (en) | Smart card validation device and method | |
| CN208207950U (en) | A kind of access control system | |
| CN112083879B (en) | Physical partition isolation and hiding method for storage space of solid state disk | |
| CN107945324A (en) | Card writing method, card reading method and the device of access control system | |
| CN110675543B (en) | Method for configuring access card, control method of door lock and door lock | |
| CN106161442A (en) | A kind of system control user login method | |
| JP2003513388A (en) | System and method for ensuring data reliability with a secured counter | |
| US20100180335A1 (en) | Self-protecting storage | |
| CN109285256A (en) | A method of giving access to computer room based on blockchain authentication | |
| US7797553B2 (en) | Memory device | |
| CN120356279B (en) | A hotel offline access control authority management method, hotel offline electronic door lock and hotel offline access control system | |
| CN107454972B (en) | An IC card management method, system and access control controller | |
| CN112288914B (en) | A security management method for peripheral binding and authentication based on smart locks | |
| CN110084941A (en) | Access and exit control method and control system with global anti-back pass function | |
| JP4835464B2 (en) | Entrance / exit management system | |
| JP2008176493A (en) | Device access management system | |
| CN105701412A (en) | Verification method and device for external authentication key | |
| CN116226942A (en) | IC card authority verification method, device, card reading device and storage medium | |
| JP4303768B2 (en) | Security management method for card type storage device, card type storage device, and transaction device for card type storage device | |
| JP4462911B2 (en) | Access control system |
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |