CN102831679A - Two-way transmission expansion method and system compatible with wiegand protocol - Google Patents

Two-way transmission expansion method and system compatible with wiegand protocol Download PDF

Info

Publication number
CN102831679A
CN102831679A CN2012102954212A CN201210295421A CN102831679A CN 102831679 A CN102831679 A CN 102831679A CN 2012102954212 A CN2012102954212 A CN 2012102954212A CN 201210295421 A CN201210295421 A CN 201210295421A CN 102831679 A CN102831679 A CN 102831679A
Authority
CN
China
Prior art keywords
access controller
high level
read head
gate inhibition
data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2012102954212A
Other languages
Chinese (zh)
Other versions
CN102831679B (en
Inventor
刘俊
顾啸
陈磊
仇佳亮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shanghai Huashen Smart IC Card Application System Co Ltd
Original Assignee
Shanghai Huashen Smart IC Card Application System Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shanghai Huashen Smart IC Card Application System Co Ltd filed Critical Shanghai Huashen Smart IC Card Application System Co Ltd
Priority to CN201210295421.2A priority Critical patent/CN102831679B/en
Publication of CN102831679A publication Critical patent/CN102831679A/en
Application granted granted Critical
Publication of CN102831679B publication Critical patent/CN102831679B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention relates to a two-way transmission expansion method and a system compatible with wiegand protocol; the method comprises that when an entrance guard reading head does not detect card swiping action, the entrance guard reading head is in a sending state, and an entrance guard controller is in a receiving state; when the entrance guard reading head detects card swiping action, the entrance guard reading head sends connection signals for establishing two-way data communication to the entrance guard controller and turns into the receiving state, and the entrance guard controller turns into the sending state; the entrance guard controller sends a random challenge code to the entrance guard reading head and turns into the receiving state, and the entrance guard reading head turns into the sending state; the entrance guard reading head generates enciphered data from the read card swiping information and the random challenge code and sends to the entrance guard controller; the entrance guard controller deciphers the received enciphered data, and determines the validity of the deciphered data. According to the invention, two-way data transmission between the entrance guard controller and the entrance guard reading head is realized; the potential safety hazard problem is avoided that an entrance guard control system using wiegand protocol is easy to be subject to data replay attack; and the system of the invention is compatible with wiegand protocol.

Description

The transmitted in both directions extended method and the system of compatible Wei root agreement
Technical field
The present invention relates to a kind of transmitted in both directions extended method and system of compatible Wei root agreement.
Background technology
Wei root (Wiegand) agreement is a kind of widely used industrial standard, and it is the most popular agreement of data transmission between gate inhibition's read head 1 and the access controller 2 in access control system at present.As shown in Figure 1, when gate inhibition's read head 1 detects the behavior of swiping the card, card image is sent to access controller 2 through Wei root (Wiegand) agreement.Access controller has judged whether the authority of opening the door according to the card image that receives, if authority is arranged then control door lock 3 and open the door.
The data transmission of Wei root (Wiegand) agreement is unidirectional, can only send data to access controller by gate inhibition's read head.Wei root (Wiegand) interface is made up of 3 lines, and they are: data 0 (D0), data 1 (D1) and GND.D0, D1 does not keep+the 5V high level when having data to send.If send data " 0 ", then D0 drags down maintenance+5V high level after a period of time, and D1 keeps+the 5V high level always; If send data " 1 ", then D1 drags down maintenance+5V high level after a period of time, and D0 keeps+the 5V high level always, and as shown in Figure 2 is an example of Wei root (Wiegand) agreement sequential chart.
Because the data transmission of Wei root (Wiegand) agreement is unidirectional, can only send data to access controller by gate inhibition's read head, use the access control system ubiquity of Wei root (Wiegand) agreement to receive the potential safety hazard that data playback is attacked easily.Attack step is: step 1, and as shown in Figure 3, person 4 is connected on the data line between gate inhibition's read head 1 and the access controller 2 without permission, intercepts and captures the legal data of opening the door that gate inhibition's read head 1 sends to access controller 2; Step 2; As shown in Figure 4; Person 4 can be through resending the legal data of this time intercepting and capturing of opening the door on the data line between gate inhibition's read head 1 and the access controller 2 without permission from now on; Make access controller 2 think that gate inhibition's read head 1 has sent the legal data and control door lock 3 and open the door of opening the door by mistake, thereby reach the purpose of illegally opening the door.
Summary of the invention
The object of the present invention is to provide a kind of transmitted in both directions extended method and system of compatible Wei root agreement; Can realize bidirectional data transfers between access controller and the gate inhibition's read head, the access control system that avoids the use of Wei root (Wiegand) agreement is subject to the security hidden trouble that data playback is attacked.
For addressing the above problem, the present invention provides a kind of transmitted in both directions extended method of compatible Wei root agreement, comprising:
Gate inhibition's read head is connected through data-interface with access controller; Said data-interface is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time;
When gate inhibition's read head does not detect when swiping the card behavior, said gate inhibition's read head is a transmit status, and said access controller is an accepting state;
When gate inhibition's read head detects when swiping the card behavior, said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication to said access controller, and said access controller transfers transmit status to;
Said access controller transfers accepting state to after said gate inhibition's read head sends the random challenge sign indicating number, said gate inhibition's read head transfers transmit status to;
Said gate inhibition's read head is sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode; The said enciphered data that said access controller will receive is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
Further, in said method, the said connection signal of setting up two-way data communication comprises:
Earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 "; Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 " is sent in expression.
Further, in said method, said gate inhibition's read head to said access controller send set up the connection signal of two-way data communication after, maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
Further, in said method, said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
According to another side of the present invention; A kind of transmitted in both directions expanding system of compatible Wei root agreement is provided, comprises that gate inhibition's read head is connected through data-interface with access controller, said data-interface is made up of D0, D1 and GND three data lines; D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenances+5V high level again, D1 maintenances+5V high level, and the mode of transmitting " 1 " is D1 to be dragged down a period of time keep again+the 5V high level; D0 maintenance+5V high level
Said gate inhibition's read head; Be used for not being in transmit status when swiping the card behavior when detecting; When detecting when swiping the card behavior; Transfer accepting state to after sending the connection signal of setting up two-way data communication to said access controller, transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode;
Said access controller; Be used for not being in accepting state when swiping the card behavior when detecting; When transferring accepting state to, the behavior of swiping the card and said gate inhibition's read head transfer transmit status to when detecting; After said gate inhibition's read head sends the random challenge sign indicating number, transfer accepting state to, the said enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
Further, in said system, the said connection signal of setting up two-way data communication comprises:
Earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 "; Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 " is sent in expression.
Further, in said system, said gate inhibition's read head to said access controller send set up the connection signal of two-way data communication after, maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
Further, in said system, said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
The present invention also provides a kind of gate inhibition's read head of compatible Wei root agreement; The data-interface of said gate inhibition's read head is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level for D1 being dragged down a period of time again; D0 maintenance+5V high level, said gate inhibition's read head is used for not being in transmit status when swiping the card behavior when detecting; When detecting when swiping the card behavior; Transfer accepting state to after sending the connection signal of setting up two-way data communication to said access controller, transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode.
Further, in above-mentioned gate inhibition's read head, said gate inhibition's read head also is used for the access controller communication of same employing Wei root agreement.
The present invention also provides a kind of access controller of compatible Wei root agreement; The data-interface of said access controller is made up of D0, D1 and GND three data lines,, D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time; Said access controller; Be used for not being in accepting state when swiping the card behavior, transfer transmit status when the behavior of swiping the card and said gate inhibition's read head transfer accepting state to, after said gate inhibition's read head sends the random challenge sign indicating number, transfer accepting state to when detecting when detecting; The said enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
Further, in above-mentioned access controller, said access controller also is used for gate inhibition's read head communication of same employing Wei root agreement.
Compared with prior art; The present invention is connected through data-interface with access controller through gate inhibition's read head, and said data-interface is made up of D0, D1 and GND three data lines, and D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time; When gate inhibition's read head does not detect when swiping the card behavior, said gate inhibition's read head is a transmit status, and said access controller is an accepting state; When gate inhibition's read head detects when swiping the card behavior, said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication to said access controller, and said access controller transfers transmit status to; Said access controller transfers accepting state to after said gate inhibition's read head sends the random challenge sign indicating number, said gate inhibition's read head transfers transmit status to; Said gate inhibition's read head is sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode; The said enciphered data that said access controller will receive is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data; If legal then said access controller sends enabling signal to door lock; Can realize bidirectional data transfers between access controller and the gate inhibition's read head, the access control system that avoids the use of Wei root (Wiegand) agreement is subject to the security hidden trouble that data playback is attacked.
In addition; Said gate inhibition's read head also is used for the access controller communication of same employing Wei root agreement; Can make said gate inhibition's read head backward compatibility meet the access controller of Wiegand protocol data interface; Said access controller also is used for gate inhibition's read head communication of same employing Wei root agreement; Can make said access controller backward compatibility meet gate inhibition's read head of Wiegand protocol data interface, realize the one-way data transmission, the access control system of convenient employing Wei root (Wiegand) agreement of having built is progressively reconstructed to using gate inhibition's equipment of support transmitted in both directions of the present invention.
Description of drawings
Fig. 1 is existing employing Wei root access control system structural drawing;
Fig. 2 is existing Wei root protocol signal sequential chart;
Fig. 3 is to Wei root actualizing Replay Attack step 1 schematic diagram;
Fig. 4 is to Wei root actualizing Replay Attack step 2 schematic diagram;
Fig. 5 is the process flow diagram of transmitted in both directions extended method of the compatible Wei root agreement of the embodiment of the invention one;
Fig. 6 is the schematic diagram of the transmitted in both directions extended method of the embodiment of the invention one compatible Wei root agreement;
Fig. 7 is the signal timing diagram that transfers accepting state behind the connection signal of setting up two-way data communication of the embodiment of the invention one to;
Fig. 8 is the signal flow graph of the embodiment of the invention three.
Embodiment
For make above-mentioned purpose of the present invention, feature and advantage can be more obviously understandable, below in conjunction with accompanying drawing and embodiment the present invention done further detailed explanation.
Embodiment one
As illustrated in Figures 5 and 6, the present invention provides a kind of transmitted in both directions extended method of compatible Wei root agreement, comprising:
Step S 1; Gate inhibition's read head is connected through data-interface with access controller, and said data-interface is made up of D0, D1 and GND three data lines, and D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time.Concrete, said data-interface is the same with Wei root (Wiegand) agreement to be made up of D0, D1, three lines of GND.
Step S2, when gate inhibition's read head does not detect when swiping the card behavior, said gate inhibition's read head is a transmit status, said access controller is an accepting state.Concrete, gate inhibition's read head does not detect when swiping the card behavior, does not have data transmission between gate inhibition's read head and the access controller, and gate inhibition's read head was in transmit status when transmission session began, and access controller is in receive status.
Step S3, when gate inhibition's read head detects when swiping the card behavior, said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication to said access controller, and said access controller transfers transmit status to.
Preferably, among the step S3, the said connection signal of setting up two-way data communication comprises:
As shown in Figure 7, earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 "; Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 ", the expression mode of this " 0 " and " 1 " and Wei root (Wiegand) protocol-compliant are sent in expression.
Preferable, among the step S3, as shown in Figure 7; Said gate inhibition's read head is after the connection signal of two-way data communication is set up in said access controller transmission; Maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again, and promptly the sending direction take over party illustrates to send and finishes, and transfers receive status to; Accordingly, the take over party receives and transfers transmit status to after D0 and D1 drag down the signal of a period of time simultaneously.
Step S4, said access controller transfers accepting state to after said gate inhibition's read head sends the random challenge sign indicating number, and said gate inhibition's read head transfers transmit status to.Concrete, access controller receives that switching to transmit status behind the connection signal of setting up two-way data communication begins to send the random challenge sign indicating number that both sides decide through consultation length in advance, and gate inhibition's read head is received random challenge, prove that the both-way communication connection sets up successfully.
Preferably; Among the step S4, said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again; Be that the sending direction take over party illustrates transmission to finish; And transfer receive status to, corresponding, the take over party receives and transfers transmit status to after D0 and D1 drag down the signal of a period of time simultaneously.
Step S5; Said gate inhibition's read head is sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode; The said enciphered data that said access controller will receive is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.Concrete; Gate inhibition's read head transfers transmit status to; Encryption and decryption mode and secret key encryption that the challenge code that receives and card image are decided through consultation by both sides together in advance; Send to access controller, encryption and decryption mode and secret key decryption that access controller is decided through consultation the data that receive by both sides in advance are according to the data judgment data legitimacy that decrypts and obtain card image.If authority that data are legal and this card image is opened the door is then sent enabling signal to door lock.If the last item information of a session sends to access controller by gate inhibition's read head, then send and do not send the signal that D0 and D1 drag down a period of time simultaneously when finishing.
To sum up, can realize bidirectional data transfers between access controller and the gate inhibition's read head in the present embodiment, the access control system that avoids the use of Wei root (Wiegand) agreement is subject to the security hidden trouble that data playback is attacked.
Embodiment two
The present invention also provides a kind of transmitted in both directions expanding system of compatible Wei root agreement; Comprise that gate inhibition's read head is connected through data-interface with access controller, said data-interface is made up of D0, D1 and GND three data lines, and D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time.
Said gate inhibition's read head is used for not being in transmit status when swiping the card behavior when detecting; When detecting when swiping the card behavior; Transfer accepting state to after sending the connection signal of setting up two-way data communication to said access controller; Transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode.
Concrete, gate inhibition's read head does not detect when swiping the card behavior, does not have data transmission between gate inhibition's read head and the access controller, and gate inhibition's read head was in transmit status when transmission session began, and access controller is in receive status.
Preferably, the said connection signal of setting up two-way data communication comprises:
Earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 "; Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 " is sent in expression.
Preferable, said gate inhibition's read head to said access controller send set up the connection signal of two-way data communication after, maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
Said access controller is used for not being in accepting state when swiping the card behavior when detecting; When transferring accepting state to, the behavior of swiping the card and said gate inhibition's read head transfer transmit status to when detecting;, said gate inhibition's read head transfers accepting state to after sending the random challenge sign indicating number; The said enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
Concrete, access controller receives that switching to transmit status behind the connection signal of setting up two-way data communication begins to send the random challenge sign indicating number that both sides decide through consultation length in advance, and gate inhibition's read head is received random challenge, prove that the both-way communication connection sets up successfully.Gate inhibition's read head transfers transmit status to; Encryption and decryption mode and secret key encryption that the challenge code that receives and card image are decided through consultation by both sides together in advance; Send to access controller; Encryption and decryption mode and secret key decryption that access controller is decided through consultation the data that receive by both sides in advance are according to the data judgment data legitimacy that decrypts and obtain card image.If authority that data are legal and this card image is opened the door is then sent enabling signal to door lock.If the last item information of a session sends to access controller by gate inhibition's read head, then send and do not send the signal that D0 and D1 drag down a period of time simultaneously when finishing.
Preferably, said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
To sum up, can realize bidirectional data transfers between access controller and the gate inhibition's read head in the present embodiment, the access control system that avoids the use of Wei root (Wiegand) agreement is subject to the security hidden trouble that data playback is attacked.
Embodiment three
The present invention also provides a kind of gate inhibition's read head of compatible Wei root agreement; The data-interface of said gate inhibition's read head is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level for D1 being dragged down a period of time again; D0 maintenance+5V high level, said gate inhibition's read head is used for not being in transmit status when swiping the card behavior when detecting; When detecting when swiping the card behavior; Transfer accepting state to after sending the connection signal of setting up two-way data communication to said access controller, transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode.
Preferably; Said gate inhibition's read head also is used for the access controller communication of same employing Wei root agreement; Said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication; If Preset Time is not received data from the access controller that adopts Wei root agreement, then said gate inhibition's read head uses Wei root agreement to send card using information to the access controller that adopts Wei root agreement.As shown in Figure 8; When gate inhibition's read head of the compatible Wei root agreement that adopts present embodiment is connected to employing Wei root (Wiegand) agreement access controller; Because D0 and D1 that the both-way communication that gate inhibition's read head sends connects in the signal drag down the sequential that this signal of a period of time does not meet the Wiegand agreement simultaneously, adopt the access controller of Wei root agreement can not handle.Gate inhibition's read head of compatible Wei root agreement can't receive the signal of access controller in a period of time after transferring receive status to, then transfer the transmit status that resends data according to Wei root (Wiegand) agreement to.Specifically; When gate inhibition's read head of present embodiment detects when swiping the card behavior; Setting up two-way data communication to the access controller transmission of adopting Wei root agreement connects signal and transfers accepting state to; Adopt the access controller of Wei root agreement to think that this signal is an illegal signals, abandon and get into again the waiting signal state.Gate inhibition's read head of present embodiment wait for a period of time do not receive data after, send card image according to Wei root (Wiegand) agreement.Judge that this card image receives not open the door authority after adopting the access controller of Wei root agreement to receive card image, if the authority of opening the door then send enabling signal to door lock.
To sum up; Present embodiment can make said gate inhibition's read head backward compatibility meet the access controller of Wiegand protocol data interface; The transmission of realization one-way data, the access control system of convenient employing Wei root (Wiegand) agreement of having built is progressively reconstructed to using gate inhibition's equipment of support transmitted in both directions of the present invention
Embodiment four
The present invention also provides a kind of access controller of compatible Wei root agreement; The data-interface of said access controller is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level for D1 being dragged down a period of time again; D0 maintenance+5V high level, said access controller is used for not being in accepting state when swiping the card behavior when detecting; When transferring accepting state to, the behavior of swiping the card and said gate inhibition's read head transfer transmit status to when detecting; After said gate inhibition's read head sends the random challenge sign indicating number, transfer accepting state to, the said enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
Preferably; Said access controller also is used for gate inhibition's read head communication of same employing Wei root agreement; The data that receive from the gate inhibition's read head that adopts Wei root agreement when said access controller do not meet the data of the connection signal of setting up two-way data communication, then according to said access controller Wei root protocal analysis from the gate inhibition's read head data that adopt Wei root agreement.When the gate inhibition's read head that adopts Wei root (Wiegand) agreement connects the access controller of the compatible Wei root agreement that adopts present embodiment; Adopt gate inhibition's read head of Wei root agreement can not send the above-mentioned signal that two-way data communication connects of setting up to access controller; The access controller of compatible Wei root agreement receives data according to Wei root (Wiegand) agreement, and can whether handle the data of Wei root (Wiegand) agreement according to decision is set.Concrete, when the gate inhibition's read head that adopts Wei root agreement detects when swiping the card behavior, use Wei root (Wiegand) agreement to send card image to access controller.Whether basis approved that the security set decision of Wei root (Wiegand) agreement abandons information and also is to use information after the access controller of compatible Wei root agreement received card image.If the information of abandoning then wait for reception information again.If use information then judge that this card image receives not open the door authority, if the authority of opening the door then send out enabling signal to door lock.
To sum up; Present embodiment can make said access controller backward compatibility meet gate inhibition's read head of Wiegand protocol data interface; The transmission of realization one-way data, the access control system of convenient employing Wei root (Wiegand) agreement of having built is progressively reconstructed to using gate inhibition's equipment of support transmitted in both directions of the present invention.
The present invention is connected through data-interface with access controller through gate inhibition's read head; Said data-interface is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time; When gate inhibition's read head does not detect when swiping the card behavior, said gate inhibition's read head is a transmit status, and said access controller is an accepting state; When gate inhibition's read head detects when swiping the card behavior, said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication to said access controller, and said access controller transfers transmit status to; Said access controller transfers accepting state to after said gate inhibition's read head sends the random challenge sign indicating number, said gate inhibition's read head transfers transmit status to; Said gate inhibition's read head is sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode; The said enciphered data that said access controller will receive is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data; If legal then said access controller sends enabling signal to door lock; Can realize bidirectional data transfers between access controller and the gate inhibition's read head, the access control system that avoids the use of Wei root (Wiegand) agreement is subject to the security hidden trouble that data playback is attacked.
In addition; Said gate inhibition's read head also is used for the access controller communication of same employing Wei root agreement; Can make said gate inhibition's read head backward compatibility meet the access controller of Wiegand protocol data interface; Said access controller also is used for gate inhibition's read head communication of same employing Wei root agreement; Can make said access controller backward compatibility meet gate inhibition's read head of Wiegand protocol data interface, realize the one-way data transmission, the access control system of convenient employing Wei root (Wiegand) agreement of having built is progressively reconstructed to using gate inhibition's equipment of support transmitted in both directions of the present invention.
Each embodiment adopts the mode of going forward one by one to describe in this instructions, and what each embodiment stressed all is and the difference of other embodiment that identical similar part is mutually referring to getting final product between each embodiment.For the disclosed system of embodiment, because corresponding with the embodiment disclosed method, so description is fairly simple, relevant part is partly explained referring to method and is got final product.
The professional can also further recognize; The unit and the algorithm steps of each example of describing in conjunction with embodiment disclosed herein; Can realize with electronic hardware, computer software or the combination of the two; For the interchangeability of hardware and software clearly is described, the composition and the step of each example described prevailingly according to function in above-mentioned explanation.These functions still are that software mode is carried out with hardware actually, depend on the application-specific and the design constraint of technical scheme.The professional and technical personnel can use distinct methods to realize described function to each certain applications, but this realization should not thought and exceeds scope of the present invention.
Obviously, those skilled in the art can carry out various changes and modification to invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these revise and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these change and modification.

Claims (12)

1. the transmitted in both directions extended method of a compatible Wei root agreement is characterized in that, comprising:
Gate inhibition's read head is connected through data-interface with access controller; Said data-interface is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time;
When gate inhibition's read head does not detect when swiping the card behavior, said gate inhibition's read head is a transmit status, and said access controller is an accepting state;
When gate inhibition's read head detects when swiping the card behavior, said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication to said access controller, and said access controller transfers transmit status to;
Said access controller transfers accepting state to after said gate inhibition's read head sends the random challenge sign indicating number, said gate inhibition's read head transfers transmit status to;
Said gate inhibition's read head is sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode; The said enciphered data that said access controller will receive by preset manner of decryption generating solution ciphertext data after; Judge the legitimacy of said data decryption; If legal, then said access controller sends enabling signal to door lock.
2. the transmitted in both directions extended method of compatible Wei root agreement as claimed in claim 1 is characterized in that, in the said connection signal process of setting up two-way data communication, the operation of said data-interface is comprised:
Earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 ";
Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 " is sent in expression.
3. the transmitted in both directions extended method of compatible Wei root agreement as claimed in claim 1; It is characterized in that; Said gate inhibition's read head to said access controller send set up the connection signal of two-way data communication after, maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
4. the transmitted in both directions extended method of compatible Wei root agreement as claimed in claim 1; It is characterized in that; Said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
5. the transmitted in both directions expanding system of a compatible Wei root agreement is characterized in that, comprises the data-interface that connects gate inhibition's read head and access controller; Said data-interface is made up of D0, D1 and GND three data lines; No datat when transmission D0, D1 all preserve+the 5V high level, and the mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again, D1 maintenance+5V high level; The mode of transmission " 1 " keeps+the 5V high level for D1 being dragged down a period of time again; D0 maintenance+5V high level, wherein
Said gate inhibition's read head; Be used for not being in transmit status when swiping the card behavior when detecting; When detecting when swiping the card behavior; Transfer accepting state to after sending the connection signal of setting up two-way data communication to said access controller, transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode;
Said access controller; Be used for not being in accepting state when swiping the card behavior when detecting; When transferring accepting state to, the behavior of swiping the card and said gate inhibition's read head transfer transmit status to when detecting; After said gate inhibition's read head sends the random challenge sign indicating number, transfer accepting state to, the said enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
6. the transmitted in both directions expanding system of compatible Wei root agreement as claimed in claim 5 is characterized in that, the said connection signal of setting up two-way data communication comprises:
Earlier D0 is dragged down after a period of time maintenances+5V high level again, D1 maintenances+5V high level is represented transmission " 0 "; Again D1 is dragged down a period of time and keep again+the 5V high level, D0 maintenance+5V high level, " 1 " is sent in expression.
7. the transmitted in both directions expanding system of compatible Wei root agreement as claimed in claim 5; It is characterized in that; Said gate inhibition's read head to said access controller send set up the connection signal of two-way data communication after, maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
8. the transmitted in both directions expanding system of compatible Wei root agreement as claimed in claim 5; It is characterized in that; Said access controller is after said gate inhibition's read head sends the random challenge sign indicating number, and maintenance+5V high level transfers accepting state to through D0 and D1 being dragged down simultaneously after a period of time again.
9. gate inhibition's read head of a compatible Wei root agreement; It is characterized in that the data-interface of said gate inhibition's read head is made up of D0, D1 and GND three data lines, D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time; Said gate inhibition's read head; Be used for not being in transmit status when swiping the card behavior, after detect when swiping the card behavior, sending the connection signal of setting up two-way data communication, transfer accepting state to said access controller when detecting; Transfer transmit status when after said access controller sends the random challenge sign indicating number, transferring accepting state to, be sent to said access controller after the card using information of reading and said random challenge sign indicating number are generated enciphered data by preset cipher mode.
10. like gate inhibition's read head of the said compatible Wei root agreement of claim 9; It is characterized in that; Said gate inhibition's read head also is used for the access controller communication of same employing Wei root agreement; Said gate inhibition's read head transfers accepting state to after sending the connection signal of setting up two-way data communication, if Preset Time is not received data from the access controller that adopts Wei root agreement, then said gate inhibition's read head uses Wei root agreement to send card using information to the access controller that adopts Wei root agreement.
11. the access controller of a compatible Wei root agreement; It is characterized in that the data-interface of said access controller is made up of D0, D1 and GND three data lines, D0, D1 all preserve+the 5V high level during no datat transmission; The mode of transmission " 0 " is for dragging down D0 after a period of time maintenance+5V high level again; D1 maintenance+5V high level, the mode of transmission " 1 " keeps+the 5V high level D0 maintenance+5V high level again for D1 being dragged down a period of time; Said access controller; Be used for not being in accepting state when swiping the card behavior, transfer transmit status when the behavior of swiping the card and said gate inhibition's read head transfer accepting state to, after said gate inhibition's read head sends the random challenge sign indicating number, transfer accepting state to when detecting when detecting; The enciphered data that receives is judged the legitimacy of said data decryption after by preset manner of decryption generating solution ciphertext data, if legal then said access controller sends enabling signal to door lock.
12. access controller as claimed in claim 11; It is characterized in that; Said access controller also is used for gate inhibition's read head communication of same employing Wei root agreement; The data that receive from the gate inhibition's read head that adopts Wei root agreement when said access controller do not meet the data of the connection signal of setting up two-way data communication, then according to said access controller Wei root protocal analysis from the gate inhibition's read head data that adopt Wei root agreement.
CN201210295421.2A 2012-08-17 2012-08-17 Two-way transmission expansion method and system compatible with wiegand protocol Active CN102831679B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201210295421.2A CN102831679B (en) 2012-08-17 2012-08-17 Two-way transmission expansion method and system compatible with wiegand protocol

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210295421.2A CN102831679B (en) 2012-08-17 2012-08-17 Two-way transmission expansion method and system compatible with wiegand protocol

Publications (2)

Publication Number Publication Date
CN102831679A true CN102831679A (en) 2012-12-19
CN102831679B CN102831679B (en) 2015-05-06

Family

ID=47334791

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210295421.2A Active CN102831679B (en) 2012-08-17 2012-08-17 Two-way transmission expansion method and system compatible with wiegand protocol

Country Status (1)

Country Link
CN (1) CN102831679B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104732614A (en) * 2013-12-18 2015-06-24 同方锐安科技有限公司 Access device for encrypting wiegand protocol signal and encryption and decryption method thereof
CN110287136A (en) * 2019-05-29 2019-09-27 广东天波信息技术股份有限公司 Equipment, method and the storage medium of a variety of Wiegand signal mechanism can be compatible with
CN111243136A (en) * 2020-01-13 2020-06-05 东莞市同欣智能科技有限公司 Intelligent lock control system
CN114299637A (en) * 2020-09-22 2022-04-08 云丁网络技术(北京)有限公司 Method and device for controlling electronic lock
CN114338354A (en) * 2021-12-03 2022-04-12 江苏航天大为科技股份有限公司 Wiegand communication line self-recovery device for entrance guard reading head

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005038729A1 (en) * 2003-10-16 2005-04-28 Scm Microsystems, Inc. Access control system
US20090153290A1 (en) * 2007-12-14 2009-06-18 Farpointe Data, Inc., A California Corporation Secure interface for access control systems
CN102034290A (en) * 2010-12-21 2011-04-27 汉王科技股份有限公司 Access control method and device
CN201845341U (en) * 2010-10-22 2011-05-25 重庆英黎科技有限公司 General card reader

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005038729A1 (en) * 2003-10-16 2005-04-28 Scm Microsystems, Inc. Access control system
US20090153290A1 (en) * 2007-12-14 2009-06-18 Farpointe Data, Inc., A California Corporation Secure interface for access control systems
CN201845341U (en) * 2010-10-22 2011-05-25 重庆英黎科技有限公司 General card reader
CN102034290A (en) * 2010-12-21 2011-04-27 汉王科技股份有限公司 Access control method and device

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104732614A (en) * 2013-12-18 2015-06-24 同方锐安科技有限公司 Access device for encrypting wiegand protocol signal and encryption and decryption method thereof
CN110287136A (en) * 2019-05-29 2019-09-27 广东天波信息技术股份有限公司 Equipment, method and the storage medium of a variety of Wiegand signal mechanism can be compatible with
CN111243136A (en) * 2020-01-13 2020-06-05 东莞市同欣智能科技有限公司 Intelligent lock control system
CN114299637A (en) * 2020-09-22 2022-04-08 云丁网络技术(北京)有限公司 Method and device for controlling electronic lock
CN114299637B (en) * 2020-09-22 2023-08-18 云丁网络技术(北京)有限公司 Method and device for controlling electronic lock
CN114338354A (en) * 2021-12-03 2022-04-12 江苏航天大为科技股份有限公司 Wiegand communication line self-recovery device for entrance guard reading head
CN114338354B (en) * 2021-12-03 2024-01-09 江苏航天大为科技股份有限公司 Wiegand communication line self-recovery device for access control read head

Also Published As

Publication number Publication date
CN102831679B (en) 2015-05-06

Similar Documents

Publication Publication Date Title
CN100581102C (en) Data safety transmission method for wireless sensor network
US10432261B2 (en) Wireless communication
US8943562B2 (en) Secure Wiegand communications
TWI642288B (en) Instant communication method and system
CN102831679A (en) Two-way transmission expansion method and system compatible with wiegand protocol
CN103780620B (en) Network security method and network security system
WO2014029169A1 (en) Communication method utilizing fingerprint information for authentication
CN103685323A (en) Method for realizing intelligent home security networking based on intelligent cloud television gateway
CN104052817A (en) Intelligent door and intelligent door control method and system
CN109309910A (en) Communication data transmission method, system, equipment and computer readable storage medium
CN104702408A (en) Method and system for authenticating connection on basis of iBeacon
CN105184930B (en) A kind of intelligence primary and secondary lock control method and device
WO2010145281A1 (en) Method and apparatus for data transmitting
CN110932951B (en) Intelligent household control method and device
CN109166216A (en) A kind of control method and device of smart bluetooth door lock
CN106027249A (en) Identity card reading method and system
CN102360407A (en) Communication method for mobile phone and computer
CN110089073B (en) Apparatus, system and method for controlling an actuator through a wireless communication system
CN105298250A (en) Door lock remote control system
CN105282239A (en) Encryption method and system based on Web Service
CN202004770U (en) Safety dial system supporting client environment credibility analysis and decision technology
CN104346556A (en) Hard disk security protection system based on wireless security certification
EP2806370A1 (en) Portable authentication tool and method
CN101299664A (en) Cryptosystem transmitting key through collision
CN104159320B (en) A kind of method for interchanging data of local heterogeneous network

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant