201120759 六、發明說明: 【發明所屬之技術領域】 本發明係關於一種安全存取模組(SAM卡)認證方法,特別 係指於SAM卡產製過程中將可供SAM卡管理人員控管卡片 操作的權限認證資訊,以及可用來計算出此用戶卡的UnM〇ck PIN的SAM APPLET(係指一種小應用程序)寫入sam卡中之 技術。 【先前技術】 目前習用之SAM卡,在關於用戶私人認證碼⑽打piN) 遺忘或被鎖住時,若想要開啟解鎖,必須電話_路連線至 遠端的卡管中心,才能以人工的方式,對用戶的讀卡進行 確認其來源與使用狀態;這種開啟解鎖的方式,不 中心的操作人員與電腦管制不易,對於用戶而言,則必須確 保連線狀態才能進行相關解碼作業。 然而’本方法係利用SAM卡本身寫人之應用201120759 VI. Description of the Invention: [Technical Field] The present invention relates to a security access module (SAM card) authentication method, in particular to a SAM card management personnel to control a card during the production process of the SAM card The authority authentication information for the operation, and the SAM APPLET (which refers to a small application) that can be used to calculate the UnM〇ck PIN of the user card, is written into the sam card. [Prior Art] Currently used SAM card, when the user's private authentication code (10) is forgotten or locked, if you want to unlock it, you must connect the phone to the remote card management center to manually The way to confirm the source and use status of the user's card reader; this way of unlocking, the non-central operator and computer control is not easy, for the user, you must ensure the connection status to perform the relevant decoding operation. However, this method is based on the application of the SAM card itself.
m "(Unblock PIN) -I :變更,以直接更換新的一IN的方式,而達到鎖卡 由此可見’上述習用方式仍有諸多不足 計,而亟待加以改良。 F良〇之权 本案發明人鐘.於上述習用* , 加以改良創新,並#多年j、、^t 的各項缺點,乃逐思 里、·土夕牛古心孤詣潛心 發完成本件-種安全存取模組(“Μ卡)認證方法。…功研 【發明内容】 本發明的主要目的係在於提供 至遠端卡管中心的方法,讓有權限的人卡員;解在 用安本全=rr(sAM卡)取得卡片讀寫權限之目的使 本發月的:人-目的係在於提供一種以SAM卡作為安 201120759 s方法’提升了維運管理之便利性之目的。 之目的係在於提供一種利用sam卡本身寫入 二::變來更 鎖卡之解碼/ ]直接更換新的userpIN的方式,而達到 古、土可達成上述發明目的之一種安全存取模組(SAM卡)認證 。,係於SAM卡產生製造的過程中,將可供sam卡^理 二戶:=片操作的權限認證資訊,以及可用來計算出 解鎖流程,二卡解鎖用戶卡之 解除或其他卡片管理功能。w㈣變更’而達到鎖卡 【實施方式】 請參閱圖—所示,為本發明—種安全存取模組(SAM卡) 認證方法之產製流程圖,包含: 步驟一 __產生一組唯一之卡片4號101,其係透過一系統 連、,、。至卡片=貝料庫,取得最新之卡片流水號並編出唯一之 號; 步驟二:判斷是否卡號產生成功102 ;若成功則將卡號寫 入卡片103 ;若失敗則返回系統錯誤訊息1〇4並結束流程; 步驟三:判斷是否卡號寫入卡片成功1〇5 •,砮成功則接續 步驟四;若失敗則返回卡片錯誤訊息1〇6並結束流程; 步驟四:接著利用此卡片序號根據SAM卡之演算法計算 出此用戶卡的User PIN與Unblock PIN 107 ; 步驟五:判斷是否成功取得資訊1〇8 ;若成功則接續步驟 六;若失敗則若失敗則返回系統錯誤訊息1〇4並結束流程; 步驟六:將卡片序號、User PIN,以及Unlock PIN等資 訊寫入卡片中109 ; 201120759 步驟七:判斷是否成功寫入資訊〗10;若成功寫入,空白 用戶憑證卡已經順利產製完成,此時更可以連接至卡片資料 庫111,若失敗則返回卡片錯誤訊息i 06並結束流程;’ 步驟八:判斷是否成功更新狀態丨12 :若成功則更新卡片 狀態為製卡成功’並結束流程;^失敗則返回卡片錯誤訊争 106並結束流程》 ° 請參閱圖二所示,為本發明一種安全存取模組(8八河卡 遇證方法之卡片產製示意圖: 係由一空白SAM卡(白卡10)在初始化’經過授權後會 寫入可供SAM卡官理人員控管卡片操作的權限認證資訊,並 寫入SAM Applet至卡片中’即完成SAM卡j j的發卡作業。 其中該SAM卡係採用符合G1〇bai piatf〇m ν2 ι卜 CardTM2.2或其他規格之晶片卡。 睛參閱圖二所示,為本發明一種安全存取模組0八1^卡) 認證方法之解鎖流程圖,係當用戶卡的UserpiN遺忘、被鎖 住或其他資訊要更新或查詢時,可藉議卡認證方法取得適 當權限,包含: 步驟一.可藉由讀卡機讀取用戶卡卡號或是提供一卡號輸 入介面,將用戶卡卡號傳送至SAM+ 3〇1 ; 一步驟二:判斷是否成功取得卡號302;若成功則接續步驟 三;若失敗則返回卡片錯誤訊息3〇4並結束流程;m " (Unblock PIN) -I : Change, to directly replace the new one IN, and reach the lock card. It can be seen that there are still many shortcomings in the above-mentioned conventional methods, and it needs to be improved. The right of F Liangzhu is the inventor of the case. In the above-mentioned habits*, it is improved and innovated, and the shortcomings of the years j, and ^t are the completion of this article. Security access module ("Leica" authentication method.] [Technical content] The main purpose of the present invention is to provide a method to the remote card tube center, allowing the authorized person card holder; This full = rr (sAM card) to obtain the card read and write permissions for the purpose of this month: the person-purpose is to provide a SAM card as the security 201120759 s method 'improved the convenience of the maintenance of the purpose of the purpose. It is to provide a security access module (SAM card) that uses the sam card itself to write two:: change to lock the card/] directly replace the new userpIN, and achieve the purpose of the above invention. ) Certification. In the process of manufacturing the SAM card, it will be available for the sam card to control the two households: = permission authentication information for the tablet operation, and can be used to calculate the unlocking process, the second card unlocks the user card or other cards Management function. w (four) change 'and reach the lock card Embodiments Referring to the figure, a production flow chart of a security access module (SAM card) authentication method according to the present invention includes: Step 1__Generating a unique set of cards No. 4, 101, Obtain the latest card serial number and make a unique number through a system connection, , , to card = shell library; Step 2: Determine whether the card number is successful 102; if successful, write the card number to card 103; Then return the system error message 1〇4 and end the process; Step 3: Determine whether the card number is successfully written to the card 1〇5 •, if successful, continue with step 4; if it fails, return the card error message 1〇6 and end the process; Step 4 Then, using the card serial number, calculate the User PIN and Unblock PIN 107 of the user card according to the algorithm of the SAM card; Step 5: Determine whether the information is successfully obtained 1〇8; if successful, continue with step 6; if it fails, if it fails Return system error message 1〇4 and end the process; Step 6: Write the card serial number, User PIN, and Unlock PIN into the card 109; 201120759 Step 7: Determine whether the write is successful If it is successfully written, the blank user credential card has been successfully produced. At this time, it can be connected to the card database 111. If it fails, it will return the card error message i 06 and end the process; 'Step 8: Determine whether it is successful Update status 丨12: If successful, update the card status to successful card-making and end the process; if it fails, return the card error message 106 and end the process. ° Please refer to FIG. 2, which is a secure access module of the present invention. (8) Eight Rivers card method of card production system diagram: is a blank SAM card (white card 10) in the initialization 'authorized will be written to the SAM card officer to control the card operation authority authentication information, And write SAM Applet to the card 'that is to complete the SAM card jj card issuing operation. The SAM card is a chip card that conforms to G1〇bai piatf〇m ν2 ι CardTM 2.2 or other specifications. Referring to FIG. 2, the unlocking flowchart of the authentication method of the security access module of the present invention is when the userpiN of the user card is forgotten, locked, or other information is updated or inquired. The card authentication method obtains the appropriate authority, including: Step 1. The card card number can be read by the card reader or a card number input interface can be sent to the SAM+ 3〇1; Step 2: Determine whether Successfully obtain the card number 302; if successful, continue with step 3; if it fails, return the card error message 3〇4 and end the process;
步驟^ : SAM卡即可利用此用戶卡卡號與内建的SAMStep ^: SAM card can use this user card number and built-in SAM
Applet计算出此用戶卡的Unbi〇ck pjN ,再通過認證取得 權限,對用戶卡卡片作User PIN的變更,而達到解鎖卡功能; 其中,該步驟三更包含··通過User piN認證,更可以對 用戶卡卡片做金鑰產製、憑證寫入等作業,以及可顯示卡内 金鑰對 '憑證内容、數量及其他可辨識資料,以確認卡片來 源與狀態; 201120759 步驟四:判斷是否成功取得資訊305,是則更新卡月狀態 3〇6 ;否則返回系統錯誤訊息3〇7並結束流程; 步驟五:判斷是否成功更新狀態308,是則結束流程;否 則返回卡片錯誤訊息3 〇4並結束流程。 本發明所提供之一種安全存取模組(SAM卡)認證方法,與 其他習用技術相互比較時,更具備下列優點: 1. 本發明可提供用戶鎖卡時,洽任一經授權的卡務管理中 心以SAM卡解鎖用戶卡。 2. 本發明為確保用戶之權益,卡務管理中心以sam卡作 為解鎖工具比利用軟體方式解鎖更為安全。 3. 舉凡有關於密碼驗證、身分證驗證、需驗卡或解鎖功能 者,皆可使用本發明。 上列詳細說明係針對本發明之一可行實施例之具體說 明,惟該實施例並非用以限制本發明之專利範圍,凡未脫離 本心月技藝精神所為之等效實施或變更,均應包含於本案之 專利範圍中。 綜上所述,本案不但在技術思想上確屬創新,並能較習用 物品增進上述多項功效,應已充分符合新穎性及進步性之法 定發明專利要件,爰依法提出申請,懇請貴局核准本件發 明專利申請案,以勵發明,至感德便。 【圖式簡單說明】 圖一為本發明一種安全存取模組(SAM卡)認證方法之產 製流程圖; 圖二為本發明一種安全存取模組(s AM卡)認證方法之卡 片產製示意圖; 圖三為本發明一種安全存取模組(SAM卡)認證方法之解 鎖流程圖。 201120759 【主要元件符號說明】 10 白卡 11 SAM 卡The Applet calculates the Unbi〇ck pjN of the user card, and then obtains the authority by the authentication, and changes the User PIN of the user card to achieve the unlocking card function; wherein, the third step further includes: User piN authentication, The user card card is used for key production, voucher writing, etc., and the card key pair 'voucher content, quantity and other identifiable data can be displayed to confirm the card source and status; 201120759 Step 4: Determine whether the card is successfully obtained Information 305, is to update the card month status 3〇6; otherwise, return system error message 3〇7 and end the process; Step 5: judge whether the status 308 is successfully updated, then the process ends; otherwise, the card error message 3 〇4 is ended and ends Process. The security access module (SAM card) authentication method provided by the invention has the following advantages when compared with other conventional technologies: 1. The invention can provide any authorized card management when the user locks the card. The center uses the SAM card to unlock the user card. 2. In order to ensure the user's rights and interests, the card management center uses the sam card as an unlocking tool to be safer than using the software to unlock. 3. The invention may be used in connection with password verification, identity verification, card verification or unlocking functions. The detailed description above is a detailed description of one of the possible embodiments of the present invention, and is not intended to limit the scope of the present invention. In the scope of the patent in this case. To sum up, this case is not only innovative in terms of technical thinking, but also able to enhance the above-mentioned multiple functions compared with conventional articles. It should fully comply with the statutory invention patent requirements of novelty and progressiveness, and apply in accordance with the law. I urge you to approve this article. Invention patent application, in order to invent invention, to the sense of virtue. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1 is a flow chart of a security access module (SAM card) authentication method according to the present invention; FIG. 2 is a card production method for a secure access module (s AM card) authentication method according to the present invention; FIG. 3 is a flowchart of unlocking a security access module (SAM card) authentication method according to the present invention. 201120759 [Explanation of main component symbols] 10 White card 11 SAM card