Synchronous code encryption device and method for access control system

Abstract

The invention relates to the technical field of electronic information encryption and discloses a synchronous code encryption device for an access control system. The synchronous code encryption device comprises access control equipment and terminal equipment. The invention further discloses a synchronous code encryption method for the access control system, which comprises the following steps: step 1, judging whether to punch a card for the first time or not; step 2, performing initial debugging; step 3, reading card number data and performing data combination, encryption and conversion; step 4, transmitting Wiegand data and performing incremental update on synchronous codes inside the access control equipment; step 5, decrypting the Wiegand data; step 6, storing the synchronous codes inside the terminal equipment in the access control equipment and setting a synchronous code contrast interval; step 7, judging whether the synchronous codes inside the access control equipment fall into the synchronous code contrast interval or not; step 8, judging as effective data; step 9, judging as ineffective data. The synchronous code encryption device and method provided by the invention favorably prevent security attack in a manner of counterfeiting the effective data, so that the safety and the reliability of a door lock system are improved.

Description

technical field [0001] The invention relates to the technical field of electronic information encryption, in particular to a synchronization code encryption device and method for an access control system. Background technique [0002] With the development of the times, people's lives are becoming more and more automated and intelligent, and modern security access control systems are gradually replacing traditional door lock devices. The access control system involves personal and property safety, so safety performance is particularly important. IC card technology is developing rapidly. From ID card to IC card to CPU card, the security performance has reached the financial level. The controller has changed from traditional single-chip microcomputer to ARM with more advanced process architecture and even industrial computer. The data processing capability and security performance have also increased. However, the data transmission from the terminal device to the access contro...

AI Technical Summary

Problems solved by technology

IC card technology is developing rapidly. From ID card to IC card to CPU card, the security performance has reached the financial level. The controller has changed from traditional single-chip microcomputer to ARM with more advanced process architecture and even industrial computer. The data processing capability and security performance have also increased. Greatly improved, but the data transmission from the terminal device to the access control has been using the traditional method, and the security performance is worrying

[0003] The existing data transmission and communication methods between terminal equipment such as access control card readers and fingerprint readers in the field of security access control and controllers mainly include: Wiegand communication, RS-485 communication, Ethernet communication, wireless communication, existing data transmission methods Most of the data transmission of the same effective data in the network is transmitted in plain text and fixed. The data is easy to be intercepted, cracked and counterfeited. If a series of complete data is illegally intercepted during data transmission, it is only necessary to simulate this series of data and resend it. It can cause damage to the security of the entire access control system, thus affecting the security of the access control system

[0004] In the field of security, the data transmission from the access control card reader to the access control controller mostly adopts Wiegand communication. Wiegand communication has the characteristics of simple protocol, convenient implementation, and compatibility of Wiegand data from various manufacturers, so it is widely used, but At the same time, Wiegand communication on most occasions adopts a one-way, plain text, and fixed format method, which also makes Wiegand communication have various security risks

For example: an access control card reader reads the data of a card is 0x11223344, and transmits this data to the access control controller through the Wiegand interface, and then the access control controller identifies the data of 0x11223344 as valid data, and controls to open the electric lock , this card with the card number 0x11223344 has the same Wiegand data output waveform every time the card is swiped on the card reader. If you use an oscilloscope or other equipment to detect the Wiegand data line and obtain the waveform corresponding to the data 0x11223344, then use The third-party device simulates the same signal waveform and sends the waveform to the Wiegand data line, then the access controller will also receive the data 0x11223344, and then execute the correct unlocking method in the same way, but at this time the unlocking data It does not come from a real and effective card swiping operation, but from a counterfeit data generated by illegal simulation, but realizes an illegal unlocking operation. This situation has very serious security risks

[0005] Wiegand data transmission in the access control field is mostly one-way transmission, so it is impossible to use two-way random number dynamic encryption to prevent data from being counterfeited and cracked

Images