WO2017071158A1 - Method, device, and vehicle-mounted system and terminal for authenticating permission to operate - Google Patents

Method, device, and vehicle-mounted system and terminal for authenticating permission to operate Download PDF

Info

Publication number
WO2017071158A1
WO2017071158A1 PCT/CN2016/078099 CN2016078099W WO2017071158A1 WO 2017071158 A1 WO2017071158 A1 WO 2017071158A1 CN 2016078099 W CN2016078099 W CN 2016078099W WO 2017071158 A1 WO2017071158 A1 WO 2017071158A1
Authority
WO
WIPO (PCT)
Prior art keywords
verification
segment
camouflage
template
verification template
Prior art date
Application number
PCT/CN2016/078099
Other languages
French (fr)
Chinese (zh)
Inventor
周福家
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 宇龙计算机通信科技(深圳)有限公司 filed Critical 宇龙计算机通信科技(深圳)有限公司
Publication of WO2017071158A1 publication Critical patent/WO2017071158A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0861Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan

Definitions

  • the invention relates to the technical field of vehicle network control, in particular to a method, device, vehicle system and terminal for verifying operation authority.
  • the vehicle networking system refers to the acquisition, storage and transmission of all working conditions and static and dynamic information of the vehicle by installing the vehicle terminal equipment on the vehicle instrument panel.
  • the system is divided into three parts: vehicle terminal, cloud computing processing platform, data analysis platform, and effective monitoring and management of vehicles according to different functional requirements of different industries.
  • the operation of the vehicle often involves multiple switching quantities, sensor analog quantities, CAN signal data, etc.
  • the generated vehicle data is continuously sent back to the back-end database to form massive data, which is realized by the cloud computing platform.
  • the “filter cleaning” of massive data the data analysis platform reports the data in a report for management personnel to view.
  • An object of the present invention is to provide a method, an apparatus, an in-vehicle system and a terminal for verifying operation authority, and aim to solve the problem of insufficient security in the authentication process for remote operation in the prior art.
  • the present invention provides a method for verifying operation authority, which is used in a vehicle networking system to divide a biometric verification template into a plurality of verification template segments in advance, generate a disguised segment, and respectively respectively perform the verification template segment.
  • the combination with the camouflage segment is stored in a different storage location, including:
  • the biometric verification template is divided into a plurality of verification template segments in advance, and the camouflage segments are generated, and respectively storing the combination of the verification template segments and the camouflage segments in different storage locations includes:
  • the camouflage template is stored in the in-vehicle system, and the second verification template segment and the camouflage segment are stored in the cloud server.
  • the acquiring the multiple verification template segments and the camouflage segments includes:
  • the method before the receiving the first biometric information input by the current user, the method further includes:
  • the current user accesses the cloud server by inputting the account password to obtain the status information of the vehicle.
  • the method further includes:
  • the verification further includes:
  • the in-vehicle system is responsive to the control command entered by the current user.
  • control instruction that the onboard system responds to the current user input includes:
  • the in-vehicle system responds to a control instruction input by a current user within a preset authorization period, When the preset authorization period is exceeded, it needs to be verified again.
  • the method further includes:
  • the generated biometric verification template is cleared.
  • the invention also provides a verification device for operating authority, which is used in a vehicle networking system to divide a biometric verification template into a plurality of verification template segments in advance, generate a camouflage segment, and respectively respectively respectively respectively respectively the verification template segment and the camouflage segment
  • the combination is stored in different storage locations, and the verification device includes:
  • a receiving module configured to receive first biometric information input by a current user
  • An obtaining module configured to acquire the multiple verification template segments and the camouflage segment
  • a synthesis module configured to filter out the camouflage segment, and combine the plurality of verification template segments to generate the biometric verification template
  • a comparison module configured to compare the first biometric information with the biometric verification template, and the verification succeeds when the matching is consistent.
  • the present invention also provides an in-vehicle system comprising any of the above-described verification devices for operating authority.
  • the present invention also provides a terminal comprising the in-vehicle system as described in any of the above aspects.
  • the method and device for verifying the operation authority provided by the present invention generates a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately stores the combination of the verification template segment and the camouflage segment in different storage locations.
  • the remote operation is authenticated, the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the method and device for verifying the operation authority provided by the present invention adopts the method of authentication and separation masquerading storage, which can improve the security of the authentication process in remote operation. Further, the present invention also provides an in-vehicle system and a terminal using the same.
  • FIG. 1 is a specific implementation manner of a method for verifying operation authority provided by the present invention Flow chart
  • FIG. 3 is a flowchart of another specific implementation manner of a method for verifying operation authority provided by the present invention.
  • FIG. 5 is a flowchart of still another specific implementation manner of a method for verifying operation authority according to the present invention.
  • FIG. 6 is a structural block diagram of a specific implementation manner of an apparatus for verifying operation authority provided by the present invention.
  • FIG. 7 is a structural block diagram of a terminal according to the present invention.
  • FIG. 1 A flowchart of a specific implementation manner of the method for verifying the operation authority provided by the present invention is shown in FIG. 1 , and the method includes:
  • Step S100 The biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated, and the combination of each verification template segment and the camouflage segment is stored in different storage locations respectively;
  • the masquerading fragment is false verification information generated for masquerading the verification template
  • the masquerading template may be generated with the partial verification template fragment in the verification template.
  • the fingerprint texture information for verification is used as a verification template, and is divided into two parts (A and B), and the A picture is randomly complemented to generate a camouflage piece C.
  • the combination of each verification template segment and the masquerading segment that is, the combination of A and C, and the combination of B and C, are respectively stored in different storage locations.
  • the segment B and the segment C are stored in the cloud server by storing the half-truth fingerprint information composed of the segment A and the segment C in the in-vehicle system.
  • Step S101 Receive first biometric information input by the current user
  • the first biometric information may be input by the mobile terminal, and may of course be input by other devices, which does not affect the implementation of the present invention.
  • Step S102 Acquire a plurality of verification template segments and a camouflage segment
  • Step S103 Filter out the camouflage segments, and combine the multiple verification template segments to generate a biometric verification template.
  • Step S104 comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
  • the method for verifying the operation authority provided by the present invention generates a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately stores the combination of the verification template segment and the camouflage segment in different storage locations.
  • the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the verification method for the operation authority provided by the present invention adopts the method of authentication separation and masquerading storage, which can improve the security of the authentication process in remote operation.
  • the verification method of the operation authority can divide the biometric verification template into a plurality of segments and store them to enhance the security of the vehicle control operation. This embodiment is further described by taking the biometric verification template into two segments as an example.
  • step S100 may be specifically:
  • Step S1001 The biometric verification template is divided into two parts of the first verification template segment and the second verification template segment along the feature line in advance;
  • Step S1002 generating a camouflage segment, and the camouflage segment and the first verification template segment are synthesized into a camouflage template;
  • Step S1003 storing the camouflage template in the vehicle system, and storing the second verification template segment and the camouflage segment in the cloud server.
  • biometric verification template is not limited to being divided into two parts, nor is it limited to segmentation along a feature line.
  • the picture may be directly divided into two parts.
  • the first verification template fragment and the second verification template fragment may be combined into a complete verification template, or may be synthesized into a valid verification information capable of identifying the user. This does not affect the implementation of the present invention.
  • the specific process of the verification may be:
  • Step S201 Receive first biometric information input by the current user by the mobile terminal
  • Step S202 Acquire a second verification template segment and a camouflage segment stored in the cloud server, and acquire a camouflage template stored in the in-vehicle system;
  • Step S203 Filter out the camouflage segment, and combine the first verification template segment and the second verification template segment to generate a biometric verification template.
  • Step S204 comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
  • the biometric information referred to in the present invention may specifically use information such as a fingerprint or an iris, and of course other information may be used, which does not affect the implementation of the present invention.
  • the present invention provides another specific implementation manner of the operation authority verification method. As shown in the flowchart of the method for establishing authentication information in advance, the process includes:
  • Step S3001 The in-vehicle console inputs the verified fingerprint, and divides the fingerprint texture information into two parts along the feature line, that is, the valid verification information is divided into two texture maps, that is, the first verification template fragment A and the first Second verification template fragment B;
  • Step S3002 Randomly complete the A picture, that is, generate the camouflage segment C, and at this time, the in-vehicle system stores a half-true and half-false fingerprint information, that is, a first verification template segment A and a camouflage template composed of the camouflage segment C;
  • Step S3003 Send the camouflage segment C and the second verification template segment B to the cloud service Server for storage.
  • the input fingerprint exists in the vehicle end and the cloud server.
  • the user needs to input the fingerprint and perform authentication.
  • the process of authentication is shown in FIG. 5, and the process includes:
  • Step S301 The cloud server sends specific instructions for the vehicle state to control the vehicle, such as starting warm-up in winter and turning on air-conditioning in summer;
  • Step S302 the mobile terminal enters a fingerprint and sends it to the cloud;
  • Step S303 The cloud sends the to-be-verified fingerprint and the second verification template segment B and the camouflage segment C stored in the cloud to the vehicle end;
  • Step S304 the vehicle end compares the second verification template segment B, the camouflage segment C with the locally stored camouflage template, and removes the same portion, that is, the camouflage segment C;
  • Step S305 Recombining the first verification template segment A and the second verification template segment B into a true fingerprint image
  • Step S306 The fingerprint to be verified is compared with the real fingerprint.
  • embodiment may further include:
  • Step S307 The in-vehicle system responds to the control instruction input by the current user
  • the in-vehicle system completes the self-control according to the instructions. Further, the in-vehicle system can respond to the control command input by the current user within the preset authorization period, and when the preset authorization period is exceeded, the verification is performed again.
  • Step S308 Clear the generated biometric verification template and wait for the execution of the next authentication.
  • the method for verifying the operation authority uses the fingerprint authentication method to separate and store the authentication information and camouflage the authentication information, thereby improving the security of the authentication process in the remote operation.
  • the method for verifying the operation authority provided by the present invention may further include: before receiving the first biometric information input by the mobile terminal by the current user:
  • the current user accesses the cloud server by inputting an account password, and obtains status information of the vehicle;
  • the in-vehicle system corresponds to a unique account of the cloud server, and the status information of the vehicle (including information such as interior temperature, fuel tank reading and parking position) is uploaded to the cloud server account through the flow card.
  • the mobile phone application accesses the vehicle state information of the cloud server through the account password, and the cloud server obtains the display permission.
  • the method for verifying the operation authority provided by the present invention may further include, after receiving the first biometric information input by the mobile terminal by the current user, after the current user accesses the cloud server by inputting the account password. :
  • the cloud server account wants to send certain requests to the vehicle, the user needs to authorize the cloud account first, and then the cloud account can have the right to send a request to the vehicle system. After 5 minutes of authorization, the permissions are automatically reclaimed. If you need to send again, you will need to authorize again.
  • an authorization process is added before the authentication, and only when the authorization is passed, the cloud account can have the send permission, and the following authentication process can be further performed. It can be seen that the security of the remote operation can be further improved by the setting of the process.
  • the user authorization method can adopt the biological information method, that is, the fingerprint or the iris.
  • the information is directly stored in the cloud account when it is entered, and the information is transmitted to the cloud through the mobile application end, and is verified by the cloud.
  • the authorization template information used in this process should be different from the biometric verification template used in the authentication process.
  • the cloud server remotely authenticates the vehicle system, and uses two verifications to obtain part of the operation authority of the vehicle, and finally realizes remote viewing and remote operation, thereby further enhancing the security of vehicle control.
  • FIG. 6 A structural block diagram of a specific implementation manner of the verification device for operating authority provided by the present invention is shown in FIG. 6.
  • the biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated.
  • Each of the verification template fragments and the combination of the masquerading segments are stored in different storage locations, and the verification device includes:
  • the receiving module 100 is configured to receive first biometric information input by a current user
  • An obtaining module 200 configured to acquire the multiple verification template segments and the camouflage film segment
  • a synthesis module 300 configured to filter out the camouflage segment, and combine the multiple verification template segments to generate the biometric verification template
  • the comparison module 400 is configured to compare the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
  • the verification device for the operation authority provided by the present invention corresponds to the above method, and details are not described herein again.
  • the present invention also provides an in-vehicle system comprising the verification device for the operational authority provided above.
  • FIG. 3 is a structural block diagram of a terminal provided by the present invention.
  • the present invention also provides a terminal 500 comprising the in-vehicle system according to any of the above aspects.
  • the method, the device, the in-vehicle system and the terminal for verifying the operation authority provided by the present invention generate a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately verify the template segment and the camouflage segment.
  • the combination is stored in a different storage location.
  • the remote operation is authenticated, the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the method, the device, the in-vehicle system and the terminal for verifying the operation authority provided by the invention adopt the method of authenticating and separating the masquerading storage, thereby improving the security of the authentication process in the remote operation.

Abstract

Disclosed are a method, device, and vehicle-mounted system and terminal for authenticating permission to operate, used, in an Internet-of-Vehicles system, for dividing in advance a biometric feature authentication template into a plurality of authentication template segments to generate disguised segments, and separately storing combinations of said authentication template segments and disguised segments in different storage locations; comprised are: receiving first biometric feature information inputted by a current user; obtaining said plurality of authentication template segments and said disguised segments; filtering said disguised segments and combining said plurality of authentication template segments to produce said biometric feature authentication template; comparing the first biometric feature information and the biometric feature authentication template, and if they match, then the authentication is successful. In the method, device, and vehicle-mounted system and terminal for authenticating permission to operate provided by the present invention, a method involving authentication, separation, disguise, and storage is employed, and the security of the process of authentication during remote operation is improved. The present invention also provides a vehicle-mounted system.

Description

一种操作权限的验证方法、装置、车载系统及终端Method, device, vehicle system and terminal for verifying operation authority 技术领域Technical field
本发明涉及车联网控制技术领域,特别是涉及一种操作权限的验证方法、装置、车载系统及终端。The invention relates to the technical field of vehicle network control, in particular to a method, device, vehicle system and terminal for verifying operation authority.
背景技术Background technique
车联网系统,是指通过在车辆仪表台安装车载终端设备,实现对车辆所有工作情况和静、动态信息的采集、存储并发送。系统分为三大部分:车载终端、云计算处理平台、数据分析平台,根据不同行业对车辆的不同的功能需求实现对车辆有效监控管理。车辆的运行往往涉及多项开关量、传感器模拟量、CAN信号数据等等,驾驶员在操作车辆运行过程中,产生的车辆数据不断回发到后台数据库,形成海量数据,由云计算平台实现对海量数据的“过滤清洗”,数据分析平台对数据进行报表式处理,供管理人员查看。The vehicle networking system refers to the acquisition, storage and transmission of all working conditions and static and dynamic information of the vehicle by installing the vehicle terminal equipment on the vehicle instrument panel. The system is divided into three parts: vehicle terminal, cloud computing processing platform, data analysis platform, and effective monitoring and management of vehicles according to different functional requirements of different industries. The operation of the vehicle often involves multiple switching quantities, sensor analog quantities, CAN signal data, etc. During the operation of the vehicle, the generated vehicle data is continuously sent back to the back-end database to form massive data, which is realized by the cloud computing platform. The “filter cleaning” of massive data, the data analysis platform reports the data in a report for management personnel to view.
通常,对车辆系统发送控制请求前需要身份验证。因此,如何提高远程操作中鉴权过程的安全性是本领域技术人员亟待解决的技术问题。Typically, authentication is required before a control request is sent to the vehicle system. Therefore, how to improve the security of the authentication process in remote operation is a technical problem to be solved by those skilled in the art.
发明内容Summary of the invention
本发明的目的是提供一种操作权限的验证方法、装置、车载系统及终端,目的在于解决现有技术中对于远程操作的鉴权过程安全性不足的问题。An object of the present invention is to provide a method, an apparatus, an in-vehicle system and a terminal for verifying operation authority, and aim to solve the problem of insufficient security in the authentication process for remote operation in the prior art.
为解决上述技术问题,本发明提供一种操作权限的验证方法,用于车联网系统中,预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段与所述伪装片段的组合存储在不同的存储位置,包括:In order to solve the above technical problem, the present invention provides a method for verifying operation authority, which is used in a vehicle networking system to divide a biometric verification template into a plurality of verification template segments in advance, generate a disguised segment, and respectively respectively perform the verification template segment. The combination with the camouflage segment is stored in a different storage location, including:
接收当前用户输入的第一生物特征信息;Receiving first biometric information input by the current user;
获取所述多个验证模板片段以及所述伪装片段;Obtaining the plurality of verification template fragments and the camouflage fragments;
筛选出所述伪装片段,将所述多个验证模板片段组合生成所述生物特征验证模板; Filtering the camouflage segment, and combining the plurality of verification template segments to generate the biometric verification template;
将所述第一生物特征信息与所述生物特征验证模板进行对比,当匹配一致时验证成功。Comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
可选地,所述预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段以及伪装片段的组合存储在不同的存储位置包括:Optionally, the biometric verification template is divided into a plurality of verification template segments in advance, and the camouflage segments are generated, and respectively storing the combination of the verification template segments and the camouflage segments in different storage locations includes:
将生物特征验证模板沿特征线分为第一验证模板片段以及第二验证模板片段两个部分;Dividing the biometric verification template into two parts of the first verification template segment and the second verification template segment along the feature line;
生成伪装片段,所述伪装片段与所述第一验证模板片段合成为伪装模板;Generating a camouflage segment, the camouflage segment and the first verification template segment being synthesized into a camouflage template;
将所述伪装模板存储于车载系统,将所述第二验证模板片段以及所述伪装片段存储于云端服务器。The camouflage template is stored in the in-vehicle system, and the second verification template segment and the camouflage segment are stored in the cloud server.
可选地,所述获取所述多个验证模板片段以及所述伪装片段包括:Optionally, the acquiring the multiple verification template segments and the camouflage segments includes:
获取存储在云端服务器的第二验证模板片段及伪装片段,以及获取存储在车载系统的伪装模板。Obtaining a second verification template segment and a camouflage segment stored in the cloud server, and acquiring a camouflage template stored in the in-vehicle system.
可选地,在所述接收当前用户输入的第一生物特征信息之前还包括:Optionally, before the receiving the first biometric information input by the current user, the method further includes:
当前用户通过输入账号密码的方式访问云端服务器,获取车辆的状态信息。The current user accesses the cloud server by inputting the account password to obtain the status information of the vehicle.
可选地,在所述当前用户通过输入账号密码的方式访问云端服务器之后,在所述接收当前用户输入的第一生物特征信息之前还包括:Optionally, after the current user accesses the cloud server by inputting the account password, before the receiving the first biometric information input by the current user, the method further includes:
接收用户输入的第二生物特征信息;Receiving second biometric information input by the user;
将所述第二生物特征信息与预设的授权模板信息进行比较;Comparing the second biometric information with preset authorization template information;
当匹配成功时,执行后续验证的操作。When the match is successful, the subsequent verification is performed.
可选地,在将所述第一生物特征信息与所述生物验证验证模板进行对比,当匹配一致时验证成功之后还包括:Optionally, after comparing the first biometric information with the biometric verification template, when the verification is successful, the verification further includes:
车载系统响应所述当前用户输入的控制指令。The in-vehicle system is responsive to the control command entered by the current user.
可选地,所述车载系统响应所述当前用户输入的控制指令包括:Optionally, the control instruction that the onboard system responds to the current user input includes:
所述车载系统响应预设授权时间段内当前用户输入的控制指令, 当超过预设授权时间段时,需重新进行验证。The in-vehicle system responds to a control instruction input by a current user within a preset authorization period, When the preset authorization period is exceeded, it needs to be verified again.
可选地,在所述车载系统响应所述当前用户输入的控制指令之后还包括:Optionally, after the in-vehicle system responds to the control instruction input by the current user, the method further includes:
将生成的所述生物特征验证模板进行清除。The generated biometric verification template is cleared.
本发明还提供一种操作权限的验证装置,用于车联网系统中,预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段与所述伪装片段的组合存储在不同的存储位置,所述验证装置包括:The invention also provides a verification device for operating authority, which is used in a vehicle networking system to divide a biometric verification template into a plurality of verification template segments in advance, generate a camouflage segment, and respectively respectively respectively respectively the verification template segment and the camouflage segment The combination is stored in different storage locations, and the verification device includes:
接收模块,用于接收当前用户输入的第一生物特征信息;a receiving module, configured to receive first biometric information input by a current user;
获取模块,用于获取所述多个验证模板片段以及所述伪装片段;An obtaining module, configured to acquire the multiple verification template segments and the camouflage segment;
合成模块,用于筛选出所述伪装片段,将所述多个验证模板片段组合生成所述生物特征验证模板;a synthesis module, configured to filter out the camouflage segment, and combine the plurality of verification template segments to generate the biometric verification template;
对比模块,用于将所述第一生物特征信息与所述生物特征验证模板进行对比,当匹配一致时验证成功。And a comparison module, configured to compare the first biometric information with the biometric verification template, and the verification succeeds when the matching is consistent.
本发明还提供了一种车载系统,包括上述任一种操作权限的验证装置。The present invention also provides an in-vehicle system comprising any of the above-described verification devices for operating authority.
本发明还提供了一种终端,包括如上述任一技术方案所述的车载系统。The present invention also provides a terminal comprising the in-vehicle system as described in any of the above aspects.
本发明所提供的操作权限的验证方法及装置,通过预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,并且分别将验证模板片段与伪装片段的组合存储在不同的存储位置。这样对远程操作进行鉴权时,获取验证模板片段以及伪装片段,筛选出伪装片段,将各个验证模板片段组合生成生物特征验证模板;通过将接收到的当前用户的第一生物特征信息与生物特征验证模板进行比较,来进行验证。可见,本发明所提供的操作权限的验证方法及装置,采用鉴权分离伪装存储的方法,能够提高远程操作中鉴权过程的安全性。此外,本发明还提供了一种车载系统以及采用该系统的终端。The method and device for verifying the operation authority provided by the present invention generates a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately stores the combination of the verification template segment and the camouflage segment in different storage locations. When the remote operation is authenticated, the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the method and device for verifying the operation authority provided by the present invention adopts the method of authentication and separation masquerading storage, which can improve the security of the authentication process in remote operation. Further, the present invention also provides an in-vehicle system and a terminal using the same.
附图说明DRAWINGS
图1为本发明所提供的操作权限的验证方法的一种具体实施方式 的流程图;FIG. 1 is a specific implementation manner of a method for verifying operation authority provided by the present invention Flow chart
图2为本发明所提供的操作权限的验证方法的另一种具体实施方式中预先建立鉴权信息的流程图;2 is a flowchart of pre-establishing authentication information in another specific implementation manner of the method for verifying operation authority provided by the present invention;
图3为本发明所提供的操作权限的验证方法的另一种具体实施方式的流程图;3 is a flowchart of another specific implementation manner of a method for verifying operation authority provided by the present invention;
图4为本发明所提供的操作权限的验证方法的又一种具体实施方式中预先建立鉴权信息的流程图;4 is a flowchart of pre-establishing authentication information in another specific implementation manner of a method for verifying operation authority provided by the present invention;
图5为本发明所提供的操作权限的验证方法的又一种具体实施方式的流程图;FIG. 5 is a flowchart of still another specific implementation manner of a method for verifying operation authority according to the present invention; FIG.
图6为本发明所提供的操作权限的验证装置的一种具体实施方式的结构框图;6 is a structural block diagram of a specific implementation manner of an apparatus for verifying operation authority provided by the present invention;
图7为本发明所提供的一种终端的结构框图。FIG. 7 is a structural block diagram of a terminal according to the present invention.
具体实施方式detailed description
为了使本技术领域的人员更好地理解本发明方案,下面结合附图和具体实施方式对本发明作进一步的详细说明。显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The present invention will be further described in detail below in conjunction with the drawings and embodiments. It is apparent that the described embodiments are only a part of the embodiments of the invention, and not all of the embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
本发明所提供的操作权限的验证方法的一种具体实施方式的流程图如图1所示,该方法包括:A flowchart of a specific implementation manner of the method for verifying the operation authority provided by the present invention is shown in FIG. 1 , and the method includes:
步骤S100:预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各验证模板片段与伪装片段的组合存储在不同的存储位置;Step S100: The biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated, and the combination of each verification template segment and the camouflage segment is stored in different storage locations respectively;
本申请中,伪装片段为用于对验证模板进行伪装而生成的虚假验证信息,可与验证模板中的部分验证模板片段生成伪装模板。例如在通过指纹信息进行认证的具体实施方式中,将用于验证的指纹纹理信息作为验证模板,分成两个部分(A和B),将A图随机补全,生成一个伪装片段C。然后分别将各验证模板片段与伪装片段的组合,即A与C的组合、B与C的组合存储在不同的存储位置。具体地,可以 通过将片段A与片段C组成的半真半假的指纹信息存储在车内系统,而将片段B与片段C存储在云端服务器。In the present application, the masquerading fragment is false verification information generated for masquerading the verification template, and the masquerading template may be generated with the partial verification template fragment in the verification template. For example, in a specific implementation method of authenticating by fingerprint information, the fingerprint texture information for verification is used as a verification template, and is divided into two parts (A and B), and the A picture is randomly complemented to generate a camouflage piece C. Then, the combination of each verification template segment and the masquerading segment, that is, the combination of A and C, and the combination of B and C, are respectively stored in different storage locations. Specifically, can The segment B and the segment C are stored in the cloud server by storing the half-truth fingerprint information composed of the segment A and the segment C in the in-vehicle system.
步骤S101:接收当前用户输入的第一生物特征信息;Step S101: Receive first biometric information input by the current user;
具体地,第一生物特征信息可以通过由移动终端输入,当然也可以通过其他设备进行输入,这均不影响本发明的实现。Specifically, the first biometric information may be input by the mobile terminal, and may of course be input by other devices, which does not affect the implementation of the present invention.
步骤S102:获取多个验证模板片段以及伪装片段;Step S102: Acquire a plurality of verification template segments and a camouflage segment;
步骤S103:筛选出伪装片段,将多个验证模板片段组合生成生物特征验证模板;Step S103: Filter out the camouflage segments, and combine the multiple verification template segments to generate a biometric verification template.
步骤S104:将第一生物特征信息与生物特征验证模板进行对比,当匹配一致时验证成功。Step S104: comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
本发明所提供的操作权限的验证方法,通过预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,并且分别将验证模板片段与伪装片段的组合存储在不同的存储位置。这样对远程操作进行鉴权时,获取验证模板片段以及伪装片段,筛选出伪装片段,将各个验证模板片段组合生成生物特征验证模板;通过将接收到的当前用户的第一生物特征信息与生物特征验证模板进行比较,来进行验证。可见,本发明所提供的操作权限的验证方法,采用鉴权分离伪装存储的方法,能够提高远程操作中鉴权过程的安全性。The method for verifying the operation authority provided by the present invention generates a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately stores the combination of the verification template segment and the camouflage segment in different storage locations. When the remote operation is authenticated, the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the verification method for the operation authority provided by the present invention adopts the method of authentication separation and masquerading storage, which can improve the security of the authentication process in remote operation.
需要指出的是,本发明所提供的操作权限的验证方法可以将生物特征验证模板分为多个片段分离进行存储,以增强对车辆控制操作的安全性。本实施例以将生物特征验证模板分为两个片段为例来进行进一步地说明。It should be noted that the verification method of the operation authority provided by the present invention can divide the biometric verification template into a plurality of segments and store them to enhance the security of the vehicle control operation. This embodiment is further described by taking the biometric verification template into two segments as an example.
在本发明所提供的操作权限的验证方法的另一种具体实施例中,如图2所示,上述步骤S100可以具体为:In another specific embodiment of the method for verifying the operation authority provided by the present invention, as shown in FIG. 2, the foregoing step S100 may be specifically:
步骤S1001:预先将生物特征验证模板沿特征线分为第一验证模板片段以及第二验证模板片段两个部分;Step S1001: The biometric verification template is divided into two parts of the first verification template segment and the second verification template segment along the feature line in advance;
步骤S1002:生成伪装片段,伪装片段与第一验证模板片段合成为伪装模板; Step S1002: generating a camouflage segment, and the camouflage segment and the first verification template segment are synthesized into a camouflage template;
步骤S1003:将伪装模板存储于车载系统,将第二验证模板片段以及伪装片段存储于云端服务器。Step S1003: storing the camouflage template in the vehicle system, and storing the second verification template segment and the camouflage segment in the cloud server.
需要指出的是,上述生物特征验证模板并不限于只分为两部分,也不限于沿特征线的方式进行分块,例如还可以直接将图片分为两个部分。第一验证模板片段以及第二验证模板片段可以合成为一个完整的验证模板,也可以合成为一个能够识别出用户的有效验证信息。这都不影响本发明的实现。It should be noted that the above biometric verification template is not limited to being divided into two parts, nor is it limited to segmentation along a feature line. For example, the picture may be directly divided into two parts. The first verification template fragment and the second verification template fragment may be combined into a complete verification template, or may be synthesized into a valid verification information capable of identifying the user. This does not affect the implementation of the present invention.
如图3本发明所提供的操作权限的验证方法的另一种具体实施例的流程图所示,验证的具体过程可以为:As shown in the flowchart of another specific embodiment of the method for verifying the operation authority provided by the present invention, the specific process of the verification may be:
步骤S201:接收当前用户由移动终端输入的第一生物特征信息;Step S201: Receive first biometric information input by the current user by the mobile terminal;
步骤S202:获取存储在云端服务器的第二验证模板片段及伪装片段,以及获取存储在车载系统的伪装模板;Step S202: Acquire a second verification template segment and a camouflage segment stored in the cloud server, and acquire a camouflage template stored in the in-vehicle system;
步骤S203:筛选出伪装片段,将第一验证模板片段以及第二验证模板片段组合生成生物特征验证模板;Step S203: Filter out the camouflage segment, and combine the first verification template segment and the second verification template segment to generate a biometric verification template.
步骤S204:将第一生物特征信息与生物特征验证模板进行对比,当匹配一致时验证成功。Step S204: comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
本发明中所指的生物特征信息可以具体采用指纹或者虹膜等信息,当然也可以采用其他信息,这均不影响本发明的实现。The biometric information referred to in the present invention may specifically use information such as a fingerprint or an iris, and of course other information may be used, which does not affect the implementation of the present invention.
本实施例以指纹为例进一步进行说明。本发明提供了操作权限验证方法的又一种具体实施方式,如图4该方法预先建立鉴权信息的流程图所示,该过程包括:This embodiment is further described by taking a fingerprint as an example. The present invention provides another specific implementation manner of the operation authority verification method. As shown in the flowchart of the method for establishing authentication information in advance, the process includes:
步骤S3001:车内控制台将验证的指纹录入,将此指纹纹理信息沿特征线分为两个部分,即有效的验证信息分在两张纹理图上,即生成第一验证模板片段A以及第二验证模板片段B;Step S3001: The in-vehicle console inputs the verified fingerprint, and divides the fingerprint texture information into two parts along the feature line, that is, the valid verification information is divided into two texture maps, that is, the first verification template fragment A and the first Second verification template fragment B;
步骤S3002:将A图随机补全,即生成伪装片段C,此时车内系统存储一张半真半假的指纹信息,即第一验证模板片段A以及伪装片段C组成的伪装模板;Step S3002: Randomly complete the A picture, that is, generate the camouflage segment C, and at this time, the in-vehicle system stores a half-true and half-false fingerprint information, that is, a first verification template segment A and a camouflage template composed of the camouflage segment C;
步骤S3003:将伪装片段C和第二验证模板片段B发送到云端服 务器进行存储。Step S3003: Send the camouflage segment C and the second verification template segment B to the cloud service Server for storage.
录入的指纹存在车端与云端服务器,在发送请求时需要用户端录入指纹,进行鉴权,此时进行鉴权的过程如图5所示,该过程包括:The input fingerprint exists in the vehicle end and the cloud server. When the request is sent, the user needs to input the fingerprint and perform authentication. The process of authentication is shown in FIG. 5, and the process includes:
步骤S301:云端服务器针对车状态发送具体指令来控制车辆,如冬天启动预热,夏天打开空调等操作;Step S301: The cloud server sends specific instructions for the vehicle state to control the vehicle, such as starting warm-up in winter and turning on air-conditioning in summer;
步骤S302:手机端录入指纹发送到云端;Step S302: the mobile terminal enters a fingerprint and sends it to the cloud;
步骤S303:云端将待验证指纹和云端存储的第二验证模板片段B以及伪装片段C发送至车端;Step S303: The cloud sends the to-be-verified fingerprint and the second verification template segment B and the camouflage segment C stored in the cloud to the vehicle end;
步骤S304:车端将第二验证模板片段B、伪装片段C与本地存储的伪装模板进行对比,去掉相同的部分,即伪装片段C;Step S304: the vehicle end compares the second verification template segment B, the camouflage segment C with the locally stored camouflage template, and removes the same portion, that is, the camouflage segment C;
步骤S305:将第一验证模板片段A以及第二验证模板片段B重新组合为真正的指纹图;Step S305: Recombining the first verification template segment A and the second verification template segment B into a true fingerprint image;
步骤S306:将待验证指纹与真正的指纹图进行对比鉴权。Step S306: The fingerprint to be verified is compared with the real fingerprint.
进一步地,本实施例还可以进一步包括:Further, the embodiment may further include:
步骤S307:车载系统响应当前用户输入的控制指令;Step S307: The in-vehicle system responds to the control instruction input by the current user;
即鉴权通过后,车内系统按照指令完成自控制。进一步地,车载系统能够响应预设授权时间段内当前用户输入的控制指令,当超过预设授权时间段时,需重新进行验证。That is, after the authentication is passed, the in-vehicle system completes the self-control according to the instructions. Further, the in-vehicle system can respond to the control command input by the current user within the preset authorization period, and when the preset authorization period is exceeded, the verification is performed again.
步骤S308:将生成的生物特征验证模板进行清除,等待下次鉴权的执行。Step S308: Clear the generated biometric verification template and wait for the execution of the next authentication.
本发明实施例所提供的操作权限的验证方法,采用指纹鉴权的方式,对鉴权信息进行分离存储,并对其进行伪装,提高了远程操作中鉴权过程的安全性。The method for verifying the operation authority provided by the embodiment of the present invention uses the fingerprint authentication method to separate and store the authentication information and camouflage the authentication information, thereby improving the security of the authentication process in the remote operation.
作为一种优选实施方式,本发明所提供的操作权限的验证方法在接收当前用户由移动终端输入的第一生物特征信息之前,还可以进一步包括:As a preferred embodiment, the method for verifying the operation authority provided by the present invention may further include: before receiving the first biometric information input by the mobile terminal by the current user:
当前用户通过输入账号密码的方式访问云端服务器,获取车辆的状态信息; The current user accesses the cloud server by inputting an account password, and obtains status information of the vehicle;
车内系统对应着云端服务器一个唯一的账号,并将车辆的状态信息(包括车内温度、油箱读数以及停放位置等信息)通过流量卡上传到云端服务器账号。此时,手机应用通过账号密码访问云端服务器的车辆状态信息,云端服务器获得显示权限。The in-vehicle system corresponds to a unique account of the cloud server, and the status information of the vehicle (including information such as interior temperature, fuel tank reading and parking position) is uploaded to the cloud server account through the flow card. At this time, the mobile phone application accesses the vehicle state information of the cloud server through the account password, and the cloud server obtains the display permission.
作为一种优选实施方式,本发明所提供的操作权限的验证方法在当前用户通过输入账号密码的方式访问云端服务器之后,接收当前用户由移动终端输入的第一生物特征信息之前,还可以进一步包括:As a preferred embodiment, the method for verifying the operation authority provided by the present invention may further include, after receiving the first biometric information input by the mobile terminal by the current user, after the current user accesses the cloud server by inputting the account password. :
接收用户输入的第二生物特征信息;将第二生物特征信息与预设的授权模板信息进行比较;当匹配成功时,则执行后续验证的操作。Receiving the second biometric information input by the user; comparing the second biometric information with the preset authorization template information; and when the matching is successful, performing the subsequent verification operation.
如果云端服务器账号想向车辆发送某些请求时,需要用户先授权云账号,然后云账号才能有权对车辆系统发送请求。授权5分钟后,自动收回权限。如需再次发送则需要再次授权。本实施例在鉴权之前又增加了一个授权的过程,只有在授权通过的情况下,云账号才能够拥有可发送权限,才可以进一步执行下面鉴权的过程。可见,通过该过程的设置能够进一步提高远程操作中的安全性。If the cloud server account wants to send certain requests to the vehicle, the user needs to authorize the cloud account first, and then the cloud account can have the right to send a request to the vehicle system. After 5 minutes of authorization, the permissions are automatically reclaimed. If you need to send again, you will need to authorize again. In this embodiment, an authorization process is added before the authentication, and only when the authorization is passed, the cloud account can have the send permission, and the following authentication process can be further performed. It can be seen that the security of the remote operation can be further improved by the setting of the process.
需要指出的是,用户授权方式可以采用生物信息方式,即指纹或者虹膜。该信息录入时直接存储于云账号,每次通过手机应用端将信息传到云端,由云端对比验证。应该明确的是,本过程中使用的授权模板信息应与鉴权过程中使用的生物特征验证模板为不同的信息。It should be pointed out that the user authorization method can adopt the biological information method, that is, the fingerprint or the iris. The information is directly stored in the cloud account when it is entered, and the information is transmitted to the cloud through the mobile application end, and is verified by the cloud. It should be clear that the authorization template information used in this process should be different from the biometric verification template used in the authentication process.
本实施例通过云端服务器远程鉴权车载系统,采用两次验证来获取对车辆的部分操作权限,最终实现远程查看、远程操作,进一步增强了对车辆控制的安全性。In this embodiment, the cloud server remotely authenticates the vehicle system, and uses two verifications to obtain part of the operation authority of the vehicle, and finally realizes remote viewing and remote operation, thereby further enhancing the security of vehicle control.
本发明所提供的操作权限的验证装置的一种具体实施方式的结构框图如图6所示,用于车联网系统中,预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段以及伪装片段的组合存储在不同的存储位置,该验证装置包括:A structural block diagram of a specific implementation manner of the verification device for operating authority provided by the present invention is shown in FIG. 6. In the vehicle networking system, the biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated. Each of the verification template fragments and the combination of the masquerading segments are stored in different storage locations, and the verification device includes:
接收模块100,用于接收当前用户输入的第一生物特征信息;The receiving module 100 is configured to receive first biometric information input by a current user;
获取模块200,用于获取所述多个验证模板片段以及所述伪装片 段;An obtaining module 200, configured to acquire the multiple verification template segments and the camouflage film segment;
合成模块300,用于筛选出所述伪装片段,将所述多个验证模板片段组合生成所述生物特征验证模板;a synthesis module 300, configured to filter out the camouflage segment, and combine the multiple verification template segments to generate the biometric verification template;
对比模块400,用于将所述第一生物特征信息与所述生物特征验证模板进行对比,当匹配一致时验证成功。The comparison module 400 is configured to compare the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
本发明所提供的操作权限的验证装置与上述方法相对应,在此不再赘述。The verification device for the operation authority provided by the present invention corresponds to the above method, and details are not described herein again.
本发明还提供了一种车载系统,包括上述所提供的操作权限的验证装置。The present invention also provides an in-vehicle system comprising the verification device for the operational authority provided above.
如图3本发明所提供的一种终端的结构框图所示。本发明还提供了一种终端500,包括如上述任一技术方案所述的车载系统。FIG. 3 is a structural block diagram of a terminal provided by the present invention. The present invention also provides a terminal 500 comprising the in-vehicle system according to any of the above aspects.
综上,本发明所提供的操作权限的验证方法、装置、车载系统及终端,通过预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,并且分别将验证模板片段与伪装片段的组合存储在不同的存储位置。这样对远程操作进行鉴权时,获取验证模板片段以及伪装片段,筛选出伪装片段,将各个验证模板片段组合生成生物特征验证模板;通过将接收到的当前用户的第一生物特征信息与生物特征验证模板进行比较,来进行验证。可见,本发明所提供的操作权限的验证方法、装置、车载系统及终端,采用鉴权分离伪装存储的方法,能够提高远程操作中鉴权过程的安全性。In summary, the method, the device, the in-vehicle system and the terminal for verifying the operation authority provided by the present invention generate a camouflage segment by dividing the biometric verification template into a plurality of verification template segments in advance, and separately verify the template segment and the camouflage segment. The combination is stored in a different storage location. When the remote operation is authenticated, the verification template segment and the masquerading segment are obtained, the masquerading segment is filtered, and the verification template segments are combined to generate a biometric verification template; and the first biometric information and biometric verification of the current user are received. Templates are compared for verification. It can be seen that the method, the device, the in-vehicle system and the terminal for verifying the operation authority provided by the invention adopt the method of authenticating and separating the masquerading storage, thereby improving the security of the authentication process in the remote operation.
本说明书中各个实施例采用递进的方式描述,每个实施例重点说明的都是与其它实施例的不同之处,各个实施例之间相同或相似部分互相参见即可。The various embodiments in the specification are described in a progressive manner, and each embodiment focuses on differences from other embodiments, and the same or similar parts of the respective embodiments may be referred to each other.
对所公开的实施例的上述说明,使本领域专业技术人员能够实现或使用本发明。对这些实施例的多种修改对本领域的专业技术人员来说将是显而易见的,本文中所定义的一般原理可以在不脱离本发明的精神或范围的情况下,在其它实施例中实现。因此,本发明将不会被限制于本文所示的这些实施例,而是要符合与本文所公开的原理和新颖特点相一致的最宽的范围。 The above description of the disclosed embodiments enables those skilled in the art to make or use the invention. Various modifications to these embodiments are obvious to those skilled in the art, and the general principles defined herein may be implemented in other embodiments without departing from the spirit or scope of the invention. Therefore, the present invention is not to be limited to the embodiments shown herein, but the scope of the invention is to be accorded

Claims (11)

  1. 一种操作权限的验证方法,用于车联网系统中,其特征在于,预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段与所述伪装片段的组合存储在不同的存储位置,包括:A method for verifying operation authority, which is used in a vehicle networking system, characterized in that a biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated, and each of the verification template segments and the camouflage segment are respectively respectively The combination is stored in different storage locations, including:
    接收当前用户输入的第一生物特征信息;Receiving first biometric information input by the current user;
    获取所述多个验证模板片段以及所述伪装片段;Obtaining the plurality of verification template fragments and the camouflage fragments;
    筛选出所述伪装片段,将所述多个验证模板片段组合生成所述生物特征验证模板;Filtering the camouflage segment, and combining the plurality of verification template segments to generate the biometric verification template;
    将所述第一生物特征信息与所述生物特征验证模板进行对比,当匹配一致时验证成功。Comparing the first biometric information with the biometric verification template, and the verification is successful when the matching is consistent.
  2. 如权利要求1所述的操作权限的验证方法,其特征在于,所述预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段以及伪装片段的组合存储在不同的存储位置包括:The method for verifying the operation authority according to claim 1, wherein the biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated, and the combination of each of the verification template segments and the camouflage segment is respectively generated. Storage in different storage locations includes:
    将生物特征验证模板沿特征线分为第一验证模板片段以及第二验证模板片段两个部分;Dividing the biometric verification template into two parts of the first verification template segment and the second verification template segment along the feature line;
    生成伪装片段,所述伪装片段与所述第一验证模板片段合成为伪装模板;Generating a camouflage segment, the camouflage segment and the first verification template segment being synthesized into a camouflage template;
    将所述伪装模板存储于车载系统,将所述第二验证模板片段以及所述伪装片段存储于云端服务器。The camouflage template is stored in the in-vehicle system, and the second verification template segment and the camouflage segment are stored in the cloud server.
  3. 如权利要求2所述的操作权限的验证方法,其特征在于,所述获取所述多个验证模板片段以及所述伪装片段包括:The method for verifying the operation authority according to claim 2, wherein the obtaining the plurality of verification template fragments and the disguised fragments comprises:
    获取存储在云端服务器的第二验证模板片段及伪装片段,以及获取存储在车载系统的伪装模板。Obtaining a second verification template segment and a camouflage segment stored in the cloud server, and acquiring a camouflage template stored in the in-vehicle system.
  4. 如权利要求1至3任一项所述的操作权限的验证方法,其特征在于,在所述接收当前用户输入的第一生物特征信息之前还包括:The method for verifying the operation authority according to any one of claims 1 to 3, further comprising: before the receiving the first biometric information input by the current user:
    当前用户通过输入账号密码的方式访问云端服务器,获取车辆的状态信息。The current user accesses the cloud server by inputting the account password to obtain the status information of the vehicle.
  5. 如权利要求4所述的操作权限的验证方法,其特征在于,在 所述当前用户通过输入账号密码的方式访问云端服务器之后,在所述接收当前用户输入的第一生物特征信息之前还包括:A method of verifying an operation authority according to claim 4, wherein After the current user accesses the cloud server by inputting the account password, the method further includes: before the receiving the first biometric information input by the current user:
    接收用户输入的第二生物特征信息;Receiving second biometric information input by the user;
    将所述第二生物特征信息与预设的授权模板信息进行比较;Comparing the second biometric information with preset authorization template information;
    当匹配成功时,执行后续验证的操作。When the match is successful, the subsequent verification is performed.
  6. 如权利要求5所述的操作权限的验证方法,其特征在于,在将所述第一生物特征信息与所述生物验证验证模板进行对比,当匹配一致时验证成功之后还包括:The method for verifying the operation authority according to claim 5, wherein comparing the first biometric information with the biometric verification template, and after the matching is consistent, the verification further comprises:
    车载系统响应所述当前用户输入的控制指令。The in-vehicle system is responsive to the control command entered by the current user.
  7. 如权利要求6所述的操作权限的验证方法,其特征在于,所述车载系统响应所述当前用户输入的控制指令包括:The method for verifying the operation authority according to claim 6, wherein the control command input by the in-vehicle system in response to the current user comprises:
    所述车载系统响应预设授权时间段内当前用户输入的控制指令,当超过预设授权时间段时,需重新进行验证。The in-vehicle system responds to the control command input by the current user within the preset authorization period, and when the preset authorization period is exceeded, the verification is performed again.
  8. 如权利要求6所述的操作权限的验证方法,其特征在于,在所述车载系统响应所述当前用户输入的控制指令之后还包括:The method for verifying the operation authority according to claim 6, further comprising: after the in-vehicle system responds to the control instruction input by the current user:
    将生成的所述生物特征验证模板进行清除。The generated biometric verification template is cleared.
  9. 一种操作权限的验证装置,用于车联网系统中,其特征在于,预先将生物特征验证模板分为多个验证模板片段,生成伪装片段,分别将各所述验证模板片段与所述伪装片段的组合存储在不同的存储位置,所述验证装置包括:A verification device for operating authority, which is used in a vehicle networking system, characterized in that a biometric verification template is divided into a plurality of verification template segments in advance, and a camouflage segment is generated, and each of the verification template segments and the camouflage segment are respectively respectively The combination is stored in different storage locations, and the verification device includes:
    接收模块,用于接收当前用户输入的第一生物特征信息;a receiving module, configured to receive first biometric information input by a current user;
    获取模块,用于获取所述多个验证模板片段以及所述伪装片段;An obtaining module, configured to acquire the multiple verification template segments and the camouflage segment;
    合成模块,用于筛选出所述伪装片段,将所述多个验证模板片段组合生成所述生物特征验证模板;a synthesis module, configured to filter out the camouflage segment, and combine the plurality of verification template segments to generate the biometric verification template;
    对比模块,用于将所述第一生物特征信息与所述生物特征验证模板进行对比,当匹配一致时验证成功。And a comparison module, configured to compare the first biometric information with the biometric verification template, and the verification succeeds when the matching is consistent.
  10. 一种车载系统,其特征在于,包括如权利要求9所述的操作权限的验证装置。An in-vehicle system characterized by comprising the verification device of the operation authority according to claim 9.
  11. 一种终端,其特征在于,包括如权利要求10所述的车载系统。 A terminal characterized by comprising the in-vehicle system according to claim 10.
PCT/CN2016/078099 2015-10-30 2016-03-31 Method, device, and vehicle-mounted system and terminal for authenticating permission to operate WO2017071158A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510733960.3 2015-10-30
CN201510733960.3A CN105282164B (en) 2015-10-30 2015-10-30 A kind of verification method of operating right, device and onboard system

Publications (1)

Publication Number Publication Date
WO2017071158A1 true WO2017071158A1 (en) 2017-05-04

Family

ID=55150490

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/078099 WO2017071158A1 (en) 2015-10-30 2016-03-31 Method, device, and vehicle-mounted system and terminal for authenticating permission to operate

Country Status (2)

Country Link
CN (1) CN105282164B (en)
WO (1) WO2017071158A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105282164B (en) * 2015-10-30 2019-01-25 东莞酷派软件技术有限公司 A kind of verification method of operating right, device and onboard system
CN106897595B (en) * 2017-01-20 2020-04-03 北京安云世纪科技有限公司 Mobile terminal

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040042641A1 (en) * 2002-08-30 2004-03-04 Jakubowski Peter Joel Personnel identity verification system
CN102413148A (en) * 2012-01-03 2012-04-11 西安电子科技大学 Biological characteristic remote authentication method based on visual codes
CN102752359A (en) * 2012-02-17 2012-10-24 浙江吉利汽车研究院有限公司 Long-distance service assisted type method and system for automobile fingerprint identification authentication
CN104823203A (en) * 2013-09-16 2015-08-05 眼验有限责任公司 Biometric template security and key generation
CN105282164A (en) * 2015-10-30 2016-01-27 东莞酷派软件技术有限公司 Operation right authentication method and device, and vehicle-mounted system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101013943B (en) * 2007-02-14 2011-03-16 北京邮电大学 Method for binding/recovering key using fingerprint details
CN101478541A (en) * 2008-10-21 2009-07-08 刘洪利 Living creature characteristic authentication method, living creature characteristic authentication system
CN102646190B (en) * 2012-03-19 2018-05-08 深圳市腾讯计算机系统有限公司 A kind of authentication method based on biological characteristic, apparatus and system
CN103699996A (en) * 2012-09-27 2014-04-02 中国银联股份有限公司 Payment authentication method based on human biological characteristics

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040042641A1 (en) * 2002-08-30 2004-03-04 Jakubowski Peter Joel Personnel identity verification system
CN102413148A (en) * 2012-01-03 2012-04-11 西安电子科技大学 Biological characteristic remote authentication method based on visual codes
CN102752359A (en) * 2012-02-17 2012-10-24 浙江吉利汽车研究院有限公司 Long-distance service assisted type method and system for automobile fingerprint identification authentication
CN104823203A (en) * 2013-09-16 2015-08-05 眼验有限责任公司 Biometric template security and key generation
CN105282164A (en) * 2015-10-30 2016-01-27 东莞酷派软件技术有限公司 Operation right authentication method and device, and vehicle-mounted system

Also Published As

Publication number Publication date
CN105282164B (en) 2019-01-25
CN105282164A (en) 2016-01-27

Similar Documents

Publication Publication Date Title
US11456876B2 (en) Virtual credentials and licenses
DE102015215120B4 (en) METHOD OF USING ONE DEVICE TO UNLOCK ANOTHER DEVICE
US9286455B2 (en) Real identity authentication
US11068893B2 (en) Decentralized cloud-based authentication for vehicles and associated transactions
US10793111B2 (en) Method for verifying a biometric authentication
CN110011957B (en) Security authentication method and device for enterprise account, electronic equipment and storage medium
CN108540457B (en) Safety equipment and biological authentication control method and device thereof
WO2017031896A1 (en) Fingerprint authentication display apparatus and authentication display method
US10339334B2 (en) Augmented reality captcha
US10629012B1 (en) Multi-factor authentication for vehicles
CN108733992B (en) Processing method and system of electronic equipment
CN106600083B (en) Management method and equipment for driver order taking
US20140137221A1 (en) Image meta data driven device authentication
CN113240833A (en) Vehicle-mounted function control method, system, electronic device and storage medium
WO2023185492A1 (en) Diagnostic method and apparatus for a vehicle controller, device, and medium
CN110758321A (en) Control method and device of Bluetooth key
WO2017071158A1 (en) Method, device, and vehicle-mounted system and terminal for authenticating permission to operate
CN111224774A (en) Authentication method and system for using rented vehicle and third-party platform
CN115688174A (en) Privacy protection method and device for vehicle data, vehicle and storage medium
CN112632481A (en) Method for authorizing software, terminal device and storage medium
KR101971628B1 (en) Method, apparatus and system for verifying authenticity of an imaged identification card online
CN104869122A (en) Gesture password identity authentication method based on electronic signature and system thereof
CN112351043A (en) Vehicle navigation factory setting password management method and system
CN115460017B (en) Block chain-based digital identity authority verification system
CN109067745B (en) Method for authenticating vehicle occupant, apparatus, device and storage medium therefor

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16858607

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16858607

Country of ref document: EP

Kind code of ref document: A1