CN105554032B - A kind of identity real name verification method and verification system for posting part based on express delivery - Google Patents
A kind of identity real name verification method and verification system for posting part based on express delivery Download PDFInfo
- Publication number
- CN105554032B CN105554032B CN201610075678.5A CN201610075678A CN105554032B CN 105554032 B CN105554032 B CN 105554032B CN 201610075678 A CN201610075678 A CN 201610075678A CN 105554032 B CN105554032 B CN 105554032B
- Authority
- CN
- China
- Prior art keywords
- identity information
- user
- intelligent terminal
- abstract
- identity
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0869—Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/08—Logistics, e.g. warehousing, loading or distribution; Inventory or stock management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Business, Economics & Management (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Signal Processing (AREA)
- Economics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Physics & Mathematics (AREA)
- Marketing (AREA)
- General Business, Economics & Management (AREA)
- Tourism & Hospitality (AREA)
- Strategic Management (AREA)
- Quality & Reliability (AREA)
- Software Systems (AREA)
- Operations Research (AREA)
- Power Engineering (AREA)
- Human Resources & Organizations (AREA)
- Entrepreneurship & Innovation (AREA)
- Development Economics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of identity real name verification methods and verification system for posting part based on express delivery, and method includes:When the intelligent terminal of courier receive user post part request when, obtain the identity information and shipment data of user;The intelligent terminal of courier will be uploaded to corresponding express company's system after the identity information of user and shipment data encryption;Express company's system is decrypted after carrying out completeness check to the identity information of encrypted user and shipment data that receive, and identity information abstract, the shipment data after storing and resolving are generated to the identity information of the user after decryption;Express company's system carries out real name verification to the identity information abstract of user, and storage identity information abstract, courier's intelligent terminal is back to by verification result after real name verification success.The safety for being improved subscriber identity information transmission in the present invention using multiple encryption method is prompted whether courier to user posts part according to identification check result, prevents the leakage of data, provide users with the convenient.
Description
Technical field
The present invention relates to identity real name verification technique field more particularly to a kind of identity real name verifications for posting part based on express delivery
Method and verification system.
Background technology
Before this, express delivery is lost, " poison package " event repeated, and has caused worry of the people to express delivery safety.Center is comprehensive
It is clear in the teleconference held on October 22 in 2015 to control committee, 15 department such as Office of the Central Committee for Comprehensive Management of Public Security, the Ministry of Public Security, Ministry of Industry and Information
It plays in by the end of March, 2016 from October 23rd, 2015, concentrates carry out dangerous and explosive articles, consignment logistics clean-up and rectification in China
Neutralizing special campaigns are investigated with contradiction and disputes, consignment article priori is implemented regarding rear joint sealing, consignment logistics including allround promotion
The registration of activity real name, mail express mail X-ray machine safety check system etc..
Existing express delivery real name registration system:It needs to show identity card when i.e. client posts express mail, express company business personnel is not only
It opens packet to check, verify consignment article, these information is also registered into input computer, information system is installed by public security department
Special software.And addressee must also show identity card and receive express delivery.State Post Bureau's regulation was from November 1, mail, express mail
It is required that being posted by that can be received after verifying sender telephone number and related identification information comparison.Mail and existing safety guarantee machine
The express mail of the Protocol Client of system passes through self-service post office(Intelligent express mail case)Except sending and mailing.
The problem of being encountered when system of real name executes in the prior art mainly has:
1, system of real name by increase single vote express mail pull receipts and send the time with charge free, reduce the working efficiency of courier.
2, client needs that the time is spent to handle registration, and process is cumbersome, and posting part for receipts brings trouble.
3, express company is mostly individual enterprise, and the personal information of user is easy leakage in transmission information, is the information of user
Safety is made troubles.
Therefore, the existing technology needs to be improved and developed.
Invention content
In view of the deficiencies in the prior art, present invention aims at provide a kind of identity real name authentication for posting part based on express delivery
Method and verification system, it is intended to which real name verification process is cumbersome in the prior art for solution, and userspersonal information is easy leakage in transmission
Defect.
Technical scheme is as follows:
A kind of identity real name verification method for posting part based on express delivery, wherein method includes:
A, when courier's intelligent terminal receive user post part request when, obtain user identity information and delivery number
According to;
B, courier's intelligent terminal will be uploaded to corresponding express company after the identity information of user and shipment data encryption
System;
C, identity information and shipment data progress completeness check of express company's system to the encrypted user received
After decrypt, identity information abstract, the shipment data after storing and resolving are generated to the identity information of the user after decryption;
D, express company's system carries out real name verification to the identity information abstract of user, and identity is stored after real name verification success
Informative abstract, and verification result is back to courier's intelligent terminal.
The identity real name verification method that part is posted based on express delivery, wherein the step B is specifically included:
The intelligent terminal login express company system of B1, courier, express company's system give courier's intelligent terminal automatically
Distribute the first dynamic session and the second dynamic session;
B2, intelligent terminal form identity after carrying out one-time pad encryption to the identity information of user using the first dynamic session
Information ciphertext, and identity information ciphertext and shipment data are spliced into character string by specific format, to character string by dissipating
Array function, which calculates abstract and carries out secondary encryption to abstract by the second dynamic session, generates digital signature;
B3, digital signature is added in character string, and is assembled into the generated data of specific format;
Generated data is uploaded to corresponding express company's system by B4, intelligent terminal.
The identity real name verification method that part is posted based on express delivery, wherein the step C is specifically included:
The generated data decryption that C1, express company's system docking receive, parses abstract, and right by the first decruption key
Abstract is verified, and judges whether the generated data received is complete;
If C2, the generated data received are complete, identity information ciphertext is obtained, identity is believed with the second decruption key
Breath ciphertext is decrypted, and identity information abstract, and the shipment data after storing and resolving are generated to the identity information after decryption;
If C3, the generated data received are not complete, error message is returned to the intelligent terminal of courier, prompts weight
New input then obtains identity information ciphertext, with the second decruption key to identity after the generated data of detection reception is complete
Information ciphertext is decrypted, and identity information abstract, and the shipment data after storing and resolving are generated to the identity information after decryption.
The identity real name verification method that part is posted based on express delivery, wherein the step D is specifically included:
It makes a summary with the presence or absence of corresponding subscriber identity information in D1, express company's system queries local record;
If in D2, local record, there are corresponding subscriber identity information abstracts, are directly verified locally, and will test
Card result is shown in courier's intelligent terminal;
If in D3, local record, there is no corresponding subscriber identity informations to make a summary, and subscriber identity information is uploaded to body
Part checking system carries out authentication, includes in courier's intelligent terminal, by the identity information after being proved to be successful by verification result
Abstract is stored in the local record of express company's system.
The identity real name verification method that part is posted based on express delivery, wherein further include after the step D:
If E, identity information authentication failed prompts user to provide identity information again.
A kind of identity real name that posting part based on express delivery verifies system, wherein system includes:
Data acquisition module, for when the intelligent terminal of courier receive user post part request when, obtain user's
Identity information and shipment data;
Uploading module is encrypted, the intelligent terminal for courier will upload after the identity information of user and shipment data encryption
To corresponding express company's system;
Deciphering module carries out the identity information of encrypted user and shipment data that receive for express company's system
It is decrypted after completeness check, identity information abstract, the delivery number after storing and resolving is generated to the identity information of the user after decryption
According to;
Authentication module carries out real name verification for express company's system to the identity information of user abstract, real name verification at
Identity information abstract is stored after work(, and verification result is back to courier's intelligent terminal.
The identity real name that part is posted based on express delivery verifies system, wherein the encryption uploading module specifically includes:
It logs in and allocation unit, the intelligent terminal for courier logs in express company's system, express company's system is automatic
The first dynamic session and the second dynamic session are distributed to courier's intelligent terminal;
Encryption unit carries out one-time pad encryption using the first dynamic session for intelligent terminal to the identity information of user
Identity information ciphertext is formed afterwards, and identity information ciphertext and shipment data are spliced into character string by specific format, to word
Symbol string calculates abstract and carry out secondary encryption to abstract by the second dynamic session by hash function generates digital signature;
Data Synthesis unit for digital signature to be added in character string, and is assembled into the generated data of specific format;
Generated data is uploaded to corresponding express company's system by data uploading unit for intelligent terminal.
The identity real name that part is posted based on express delivery verifies system, wherein the deciphering module specifically includes:
Decryption and verification unit, it is close by the first decryption for the generated data decryption that express company's system docking receives
Key parses abstract, and is verified to abstract, judges whether the generated data received is complete;
Parsing and storage unit obtain identity information ciphertext, with second if the generated data for reception is complete
Identity information ciphertext is decrypted in decruption key, and identity information abstract, and storing and resolving are generated to the identity information after decryption
Shipment data afterwards;
Transmission unit returns to mistake if the generated data for reception is not complete to the intelligent terminal of courier
Information, prompt are re-entered, and after the generated data of detection reception is complete, then obtain identity information ciphertext, with the second solution
Close key pair identity information ciphertext is decrypted, and generates identity information abstract to the identity information after decryption, and after storing and resolving
Shipment data.
The identity real name that part is posted based on express delivery verifies system, wherein the authentication module specifically includes:
Query unit, for being plucked with the presence or absence of corresponding subscriber identity information in express company's system queries local record
It wants;
First authentication unit, if for there are corresponding subscriber identity information abstracts in locally recording, directly in local
It is verified, and includes in courier's intelligent terminal by verification result;
Second authentication unit, if for there is no corresponding subscriber identity informations to make a summary in locally recording, by user's body
Part information uploads to identity verification system and carries out authentication, by verification result include in courier's intelligent terminal, will verification at
Identity information abstract after work(is stored in the local record of express company's system.
The identity real name that part is posted based on express delivery verifies system, wherein the system also includes:
Reminding module prompts user to provide identity information again if being used for identity information authentication failed.The present invention provides
A kind of identity real name verification method and verification system for being posted part based on express delivery is improved using multiple encryption method in the present invention
The safety of subscriber identity information transmission prompts whether courier to user posts part according to identification check result, prevents user
The leakage of identity information and fast delivery data, provides users with the convenient.
Description of the drawings
Fig. 1 is a kind of flow chart of identity real name verification method preferred embodiment that posting part based on express delivery in the present invention.
Fig. 2 is the principle of work and power that a kind of identity real name for posting part based on express delivery of the present invention verifies the preferred embodiment of system
Block diagram.
Specific implementation mode
To make the purpose of the present invention, technical solution and effect clearer, clear and definite, below to the present invention further specifically
It is bright.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
The present invention also provides it is a kind of based on express delivery post part identity real name verify system preferred embodiment flow chart,
As shown in Figure 1, wherein method includes:
Step S100, when the intelligent terminal of courier receive user post part request when, obtain the identity information of user
And shipment data.
When it is implemented, when user wants to post part, by online booking or scheduled mode is made a phone call, part is posted in transmission asks
It asks, the intelligent terminal of user posted part request and be sent to courier, courier are gone to sender position to receive outbox by allotment center
Express delivery is checked and accepted in the express delivery that human hair is sent on the spot, and the identity information and shipment data of user are obtained using intelligent terminal.Wherein, intelligence
Energy terminal can be smart mobile phone or other intelligent handheld devices with network savvy.Courier can pass through machine-readable or record by hand
The identity information and shipment data of access customer.The identity information of wherein user refers to the information of the identity of unique provable user,
The including but not limited to identification card number of user, passport number, which can also be other, proves the number of user identity.
Step S200, the intelligent terminal of courier will be uploaded to corresponding after the identity information of user and shipment data encryption
Express company's system.
When it is implemented, the identity information of the user taken is carried out specific combination by the intelligent terminal of courier, use
Symmetrically, the cryptographic means such as asymmetric, are sent to express company's system.In order to ensure the safety of data information, in data transmission
Using encrypted transmission.Data transmission is in addition to using encrypted transmission method of the present invention, or the encrypted transmission method base in the present invention
It is further optional on plinth to use standard Https agreements or ssl protocol.Wherein shipment data includes the surname of sender, addressee
The information such as name, phone, address, goods information.Ssl protocol can be divided into two layers:SSL record protocols(SSL Record
Protocol):It is established in reliable transport protocol(Such as TCP)On, provide data encapsulation, compression, encryption for upper-layer protocol
Etc. basic functions support.Ssl handshake protocol(SSL Handshake Protocol):It establish SSL record protocols it
On, for before actual data transmission starts, communication two party to carry out authentication, consulted encryption algorithm, exchanges encryption key
Deng.
Step S300, express company's system carries out the identity information of encrypted user and shipment data that receive complete
Property verification after decrypt, identity information abstract, the shipment data after storing and resolving are generated to the identity information of the user after decryption.
When it is implemented, express company's system is to the identity information of encrypted user that receives and delivery generated data
Digital signature decryption verification parses subscriber identity information ciphertext and shipment data, and wherein shipment data includes waybill, electricity
Talk about number.Individually extraction identity information ciphertext calculates summarization generation identity information abstract after being decrypted, specifically, can be by waybill
Information, telephone number stored in clear may also be stored in express company's system in specific background server.
Step S400, express company's system carries out real name verification to the identity information abstract of user, after real name verification success
Identity information abstract is stored, and verification result is back to courier's intelligent terminal.
When it is implemented, express company's system verifies the identity information abstract of the user got, pass through identity
Checking system is verified.Verify whether current sender uses alternatively by biological informations such as face or fingerprints
My identity card verify.The real name verification success if verification information corresponds to;If verification information does not correspond to, real name is tested
Card failure, and include the intelligent terminal in courier by verification result, storage identity information is made a summary to fast after real name verification success
In the local record for passing Corporation system.
When further implementing, the step S200 is specifically included:
Step S201, the intelligent terminal of courier logs in express company's system, and express company's system gives courier's intelligence automatically
It can the first dynamic session of terminal distribution and the second dynamic session;
Step S202, intelligent terminal carries out shape after one-time pad encryption using the first dynamic session to the identity information of user
Character string is spliced by specific format at identity information ciphertext, and by identity information ciphertext and shipment data, to character string
It calculates abstract by hash function and secondary encryption is carried out to abstract by the second dynamic session and generate digital signature;
Step S203, digital signature is added in character string, and is assembled into the generated data of specific format;
Step S204, generated data is uploaded to corresponding express company's system by intelligent terminal.
When it is implemented, in order to ensure the confidentiality of identity information, integrality, resisting denying and really can be used, it is each fast
System distributes two dynamic sessions KSEnc and KSMac automatically when the person's of passing client logs in:KSEnc adds for identity information
Close, KSMac is only had for generating data summarization signature, two dynamic key using root transmission master key TMK encryptions, TMK keys
Courier's client and backstage are held, and master key is only write non-readable, and it is hard that courier's client TMK keys can be stored in terminal
In part secure storage unit module SE, safe write-in is carried out by key IC card by safety officer, is regularly updated.Session key
KSEnc and KSMac ensures that each encrypted result is all different, avoids Replay Attack.
Courier's client uses KSMac 3DES encryptions to generate number again after character string MD5 Hash functions are calculated abstract
Word sign, generate signature after signature is assembled into specific format data, specific format be the formula of fixing be JSON formats or
The Base64 coded formats of XML format or JSON, and it is assembled into the datagram of formatting, datagram is passed to as parameter
Server-side.JSON (JavaScript Object Notation) is a kind of data interchange format of lightweight.It is based on
The a subset of ECMAScript.JSON is easy to people and reads and write, simultaneously using the text formatting for being totally independent of language
It is also easy to machine parsing and generates.
Ciphering signature process is as follows:
In parameter list, parameter refers to encrypted content, such as:SendName parameters indicate sender's name;sprovince
Province where referring to sender, revName refer to addressee's name;And so on.It removes outside two parameters of sign, sign_type,
It is the parameter to be signed that he, which needs the parameter used all,.Wherein ID card information transmits for ciphertext.Such as data encryption key
KSEnc is:0123456789ABCDEFFEDCBA9876543210, identification card number information is such as:440190198601238732.It will
Identification card number supplies 32, inadequate benefit F.Identification card number data become:440190198601238732FFFFFFFFFFFFFF.
It is as follows that 3DES encryption E (IDCode) result is carried out with KSEnc key pair identity card data:6D2D2175597A10108E374060
BE2341CF.Optional sender telephone number ciphering process and so on, it repeats no more.
To sequence sequence of each value in data from a to z, if encountering identical initial, second letter is seen, with
This analogizes.Array all elements, it is spliced into character string with " & " character according to the pattern of " parameter is good for=parameter value ", then by word
It is encrypted again with KSMac after symbol string MD5 Hash functions calculating abstract and generates digital signature, generated and assemble signature after signing
Into data, and it is assembled into json formats.Server-side is passed to using json data as parameter.Data are as shown in table 1
Table 1
| Parameter is strong | Parameter value |
| Keys | Value |
| sendPhone | 1XXXXXXXXXX |
| sendName | Zhang San |
| sprovince | XX is saved |
| scity | The cities XX |
| sarea | The areas XX |
| sendAddr | The main roads XX university cities XX XX XX center XX layer |
| revPhone | 1XXXXXXXXXX |
| revName | Li Si |
| rprovince | XX is saved |
| rcity | The cities XX |
| rarea | The areas XX |
| revAddr | The street XX XX |
| itemStatus | File |
| freight | 14.00 // freight charges |
| orderNote | Remarks |
| takeAddr | Appointed place |
| idCode | 6D2D2175597A10108E374060BE2341CF |
The character string clear data M for participating in calculate the signature is as follows:
Freight=14.00&idCode=6D2D2175597A10108E374060BE2341CF&itemStatus=text
Jian &orderNote=Bei Zhu &rarea=XX Lin Qu &rcity=XX Shi &revAddr=XX street XX &revName=Li Si &
RevPhone=1XXXXXXXXXX&rprovince=&sendAddr=XX university cities of the cities XX=&sarea=XX Qu &scity=XX XX
XX layers of the main road centers XX XX &sendName=Zhang San &sendPhone=1XXXXXXXXXX&sprovince=XX saves &
TakeAddr=appointed place
Character string clear data M, which is carried out the hashed value H (M) that Hash functions calculate after making a summary, is:
F7edb2f5406fa79a970c517b042a8809,
Assuming that digital signature encryption key KSMac is also:0123456789ABCDEFFEDCBA9876543210,
KSMac 3DES encryption summarization generation digital signature E (H (M)) is used again:C485F8C0ED67E90A94C3F6D88D
C65897,
Certain KSMac can also be the RSA cryptographic algorithms public key of backstage express system, and process is omited.
Signature is assembled into as required and formulates json data M | | E (H (M)) is as follows:
{"freight":"14.00","idCode":"6D2D2175597A10108E374060BE2341CF","
itemStatus":" file ", " orderNote ":" remarks ", " rarea ":" areas XX ", " rcity ":" cities XX ", "
revAddr":" street XX XX ", " revName ":" Li Si ", " revPhone ": "1XXXXXXXXXX","
rprovince":" XX provinces ", " sarea ":" areas XX ", " scity ":" cities XX ", " sendAddr ":" XX university cities XX main road XX
Number centers XX XX floor ", " sendName ":" Zhang San ", " sendPhone ":"1XXXXXXXXXX","sprovince":"XX
Save ", " takeAddr ":" appointed place ", " sign ": " C485F8C0ED67E90A94C3F6D88DC65897","sign_
type": "MD5"}。
In further embodiment, the step S300 is specifically included:
Step S301, the generated data decryption that express company's system docking receives, is parsed by the first decruption key and is plucked
It wants, and abstract is verified, judge whether the generated data received is complete;
If step S302, the generated data received is complete, identity information ciphertext is obtained, with the second decruption key pair
Identity information ciphertext is decrypted, and identity information abstract, and the delivery number after storing and resolving are generated to the identity information after decryption
According to;
If step S303, the generated data received is not complete, error message is returned to the intelligent terminal of courier,
Prompt is re-entered, and after the generated data of detection reception is complete, then identity information ciphertext is obtained, with the second decruption key
Identity information ciphertext is decrypted, identity information abstract, and the delivery after storing and resolving are generated to the identity information after decryption
Data.
When it is implemented, data verify digital signature after passing to background server:Backstage digital signature decruption key KSM
It is f7edb2f5406fa79a970c517b042a880 that ac decryption sign parameters D (E (H (M))), which obtain abstract H (M) hashed value,
9, it is then calculated with the original text M ' that HASH function pairs receive and generates a digest calculations value H (M '), the summary info pair with decryption
Than.If identical, illustrate that the information received is complete, do not changed in transmission process, otherwise illustrates that information is repaiied
It corrects one's mistakes, therefore digital signature is able to verify that the integrality of information.Whether backstage is complete according to parameter calculate the signature, if endless
It is whole, return to courier's Client-Prompt " receiving data check error ";
If data are complete, identity document information is extracted and decrypts D (E (IDCode)) with KSEnc, then to identity card
Number individually carries out Hash functions and calculates abstract H (IDCode) or H (IDCode+Salt).Wherein this " Salt values "
It is generated at random by background system, and only system is known and preserved.In this way, even if two users have used the same body
Part card number, since system is that the salt values that they are generated are different, their hashed value is also different.Even if hacker can lead to
The ID card No. of oneself and the hashed value oneself generated are crossed to look for the user for demonstrate,proving number with specific identity, can not also be succeeded,
To further reduced the probability that identification card number in real name verification is cracked.The delivery number after storing and resolving is wanted after successful decryption
According to.
In further embodiment, the step S400 is specifically included:
Step S401, it makes a summary with the presence or absence of corresponding subscriber identity information in express company's system queries local record;
If in step S402, locally recording, there are corresponding subscriber identity information abstracts, are directly verified locally,
And by verification result include in courier's intelligent terminal;
It, will be on subscriber identity information if there is no corresponding subscriber identity informations to make a summary in step S403, locally recording
It passes to identity verification system and carries out authentication, include in courier's intelligent terminal, by the body after being proved to be successful by verification result
Part informative abstract is stored in the local record of express company's system.
It makes a summary when it is implemented, identity summary info is preferably denoted as ID card No. Hash, then ID card No. Hash
The identity information historical summaries record that abstract is first crossed with local cache, which search, to be compared, the identity information abstract of local cache
Permitted to be other courier's historical verifications into merits and demerits and be created, if local compare successfully directly returns comparison result(Such as:Name
It is consistent with passport NO.)It is shown in courier's client;
If local search failure, continue to call public security encryption interface that identity information is passed to Ministry of Public Security population information system
(Or other third party's identity verification systems)It carries out ID card No. and verifies comparison, will compare after Ministry of Public Security's system returned data
To result(Such as:Name is consistent with passport NO.)It is shown in courier's client, hair is manually then verified by courier
Whether the information of part people is accurate, such as compares successfully, which can be collected, and last local backstage express system caches identity
Summary info H (IDCode) or H (IDCode+Salt) is demonstrate,proved, other couriers is shared to and facilitates sender's authentication next time,
It saves and improves with public security system online checking link, shortening identification check stand-by period and verify efficiency.
The ID card No. abstract hashed value that express system is calculated for the first time by caching shares to other couriers and is used as
Authentication foundation when posting part next time, greatly improves authentication efficiency, caches the hashed value of ID card No., even if by hacker
It is illegal obtain also can not backstepping go out the information such as ID card No., prevent the individual privacy informations such as identification card number not to be leaked.
Further, further include after the step S400:
If step S500, identity information authentication failed prompts user to provide identity information again.
If when it is implemented, detect the identity information of user with after public security system online checking failure, as name with
Passport NO. is inconsistent, and sender is prompted to provide relevant information again.Piped off by the Ministry of Public Security if it is sender or
It is chasing personnel, then prompts courier to forbid addressee.Specifically, if user is suspect, prompt implicit can be expressed, than
User is such as prompted to post prohibited items.System, which is verified, finds that the user is included in chasing personnel's blacklist, the intelligence of that courier is eventually
End can also automatic alarm, notify 110 systems.Either user falsely uses others' identity card reported the loss and posts part, usurps certificate
It is not allow to post part.It is piped off by public security system when user once posted prohibited items, it also can popup menu prompt.
It should be noted that the above method can also be used in the real name verification in addressee, but the step of saving user's reservation.
The present invention provides a kind of identity real name verification method for posting part based on express delivery, method includes:Courier is connected to use
After the request of family addressee, sender position is gone to receive the express delivery of sender's transmission, checks and accepts express delivery on the spot, and using professional equipment or
Then person's smart mobile phone, the ID card information of machine-readable or manual typing sender upload shipment data and sender's identity
Information is demonstrate,proved, data are encrypted using Encryption Algorithm, and system receives data and verified, from the background according to corresponding decipherment algorithm
After ciphertext data, fast delivery data is stored, then ID card information is sent out and is verified by authentication system, then will be tested
The result of card returns to equipment.
The present invention also provides a kind of function for the preferred embodiment that identity real name that posting part based on express delivery verifies system is former
Block diagram is managed, as shown in Fig. 2, system includes:
Data acquisition module 100, for when the intelligent terminal of courier receive user post part request when, obtain user
Identity information and shipment data;Described in specific as above embodiment of the method.
Uploading module 200 is encrypted, the intelligent terminal for courier will be after the identity information of user and shipment data encryption
It is uploaded to corresponding express company's system;Described in specific as above embodiment of the method.
Deciphering module 300, identity information and shipment data for express company's system to the encrypted user received
It is decrypted after carrying out completeness check, identity information abstract, the hair after storing and resolving is generated to the identity information of the user after decryption
Goods data;Described in specific as above embodiment of the method.
Authentication module 400 carries out real name verification, real name verification for express company's system to the identity information abstract of user
Storage identity information abstract after success, and verification result is back to courier's intelligent terminal;Specific as above embodiment of the method institute
It states.
In further embodiment, the encryption uploading module specifically includes:
It logs in and allocation unit, the intelligent terminal for courier logs in express company's system, express company's system is automatic
The first dynamic session and the second dynamic session are distributed to courier's intelligent terminal;Specific as above embodiment of the method institute
It states.
Encryption unit carries out one-time pad encryption using the first dynamic session for intelligent terminal to the identity information of user
Identity information ciphertext is formed afterwards, and identity information ciphertext and shipment data are spliced into character string by specific format, to word
Symbol string calculates abstract and carry out secondary encryption to abstract by the second dynamic session by hash function generates digital signature;
Described in specific as above embodiment of the method.
Data Synthesis unit for digital signature to be added in character string, and is assembled into the generated data of specific format;
Described in specific as above embodiment of the method.
Generated data is uploaded to corresponding express company's system by data uploading unit for intelligent terminal;It is specific as above
Described in embodiment of the method.
Further, the deciphering module specifically includes:
Decryption and verification unit, it is close by the first decryption for the generated data decryption that express company's system docking receives
Key parses abstract, and is verified to abstract, judges whether the generated data received is complete;Specific embodiment of the method as above
It is described.
Parsing and storage unit obtain identity information ciphertext, with second if the generated data for reception is complete
Identity information ciphertext is decrypted in decruption key, and identity information abstract, and storing and resolving are generated to the identity information after decryption
Shipment data afterwards;Described in specific as above embodiment of the method.
Transmission unit returns to mistake if the generated data for reception is not complete to the intelligent terminal of courier
Information, prompt are re-entered, and after the generated data of detection reception is complete, then obtain identity information ciphertext, with the second solution
Close key pair identity information ciphertext is decrypted, and generates identity information abstract to the identity information after decryption, and after storing and resolving
Shipment data;Described in specific as above embodiment of the method.
When it is implemented, the authentication module specifically includes:
Query unit, for being plucked with the presence or absence of corresponding subscriber identity information in express company's system queries local record
It wants;Described in specific as above embodiment of the method.
First authentication unit, if for there are corresponding subscriber identity information abstracts in locally recording, directly in local
It is verified, and includes in courier's intelligent terminal by verification result;Described in specific as above embodiment of the method.
Second authentication unit, if for there is no corresponding subscriber identity informations to make a summary in locally recording, by user's body
Part information uploads to identity verification system and carries out authentication, by verification result include in courier's intelligent terminal, will verification at
Identity information abstract after work(is stored in the local record of express company's system;Described in specific as above embodiment of the method.
Further, the system also includes:
Reminding module prompts user to provide identity information again if being used for identity information authentication failed;Specific such as top
Described in method embodiment.
In conclusion the present invention provides a kind of identity real name verification method and verification system for posting part based on express delivery, side
Method includes:When the intelligent terminal of courier receive user post part request when, obtain the identity information and shipment data of user;
The intelligent terminal of courier will be uploaded to corresponding express company's system after the identity information of user and shipment data encryption;Express delivery
Corporation system is decrypted after carrying out completeness check to the identity information of encrypted user and shipment data that receive, after decryption
The identity information of user generate identity information abstract, the shipment data after storing and resolving;Body of express company's system to user
Part informative abstract carries out real name verification, storage identity information abstract after real name verification success, and verification result is back to express delivery
Member's intelligent terminal.The safety for improving subscriber identity information transmission in the present invention using multiple encryption method, according to identity
It verifies whether result prompt courier to user posts part, prevents the leakage of subscriber identity information and fast delivery data, provide to the user
Convenience.
It should be understood that the application of the present invention is not limited to the above for those of ordinary skills can
With improvement or transformation based on the above description, all these modifications and variations should all belong to the guarantor of appended claims of the present invention
Protect range.
Claims (8)
1. a kind of identity real name verification method for posting part based on express delivery, which is characterized in that method includes:
A, when courier's intelligent terminal receive user post part request when, obtain the identity information and shipment data of user;
B, courier's intelligent terminal will be uploaded to corresponding express company's system after the identity information of user and shipment data encryption;
C, express company's system solves after carrying out completeness check to the identity information of encrypted user and shipment data that receive
It is close, identity information abstract, the shipment data after storing and resolving are generated to the identity information of the user after decryption;
D, express company's system carries out real name verification to the identity information abstract of user, and identity information is stored after real name verification success
Abstract, and verification result is back to courier's intelligent terminal;
The step B is specifically included:
The intelligent terminal login express company system of B1, courier, express company's system give courier's intelligent terminal to distribute automatically
First dynamic session and the second dynamic session;
B2, intelligent terminal form identity information after carrying out one-time pad encryption to the identity information of user using the first dynamic session
Ciphertext, and identity information ciphertext and shipment data are spliced into character string by specific format, to character string by hashing letter
Number, which calculates abstract and carries out secondary encryption to abstract by the second dynamic session, generates digital signature;
B3, digital signature is added in character string, and is assembled into the generated data of specific format;
Generated data is uploaded to corresponding express company's system by B4, intelligent terminal.
2. the identity real name verification method according to claim 1 for posting part based on express delivery, which is characterized in that the step C
It specifically includes:
The generated data decryption that C1, express company's system docking receive parses abstract by the first decruption key, and to abstract
It is verified, judges whether the generated data received is complete;
If C2, the generated data received are complete, identity information ciphertext is obtained, it is close to identity information with the second decruption key
Text is decrypted, and identity information abstract, and the shipment data after storing and resolving are generated to the identity information after decryption;
If C3, the generated data received are not complete, error message is returned to the intelligent terminal of courier, is prompted again defeated
Enter, after the generated data of detection reception is complete, then identity information ciphertext is obtained, with the second decruption key to identity information
Ciphertext is decrypted, and identity information abstract, and the shipment data after storing and resolving are generated to the identity information after decryption.
3. the identity real name verification method according to claim 2 for posting part based on express delivery, which is characterized in that the step D
It specifically includes:
It makes a summary with the presence or absence of corresponding subscriber identity information in D1, express company's system queries local record;
If in D2, local record, there are corresponding subscriber identity information abstracts, are directly verified locally, and verification is tied
Fruit is shown in courier's intelligent terminal;
If in D3, local record, there is no corresponding subscriber identity informations to make a summary, and subscriber identity information is uploaded to identity core
It looks into system and carries out authentication, include the identity information abstract after being proved to be successful in courier's intelligent terminal by verification result
It is stored in the local record of express company's system.
4. the identity real name verification method according to claim 3 for posting part based on express delivery, which is characterized in that the step D
Further include later:
If E, identity information authentication failed prompts user to provide identity information again.
5. a kind of identity real name for posting part based on express delivery verifies system, which is characterized in that system includes:
Data acquisition module, for when the intelligent terminal of courier receive user post part request when, obtain the identity of user
Information and shipment data;
Uploading module is encrypted, the intelligent terminal for courier will be uploaded to pair after the identity information of user and shipment data encryption
The express company's system answered;
Deciphering module carries out the identity information of encrypted user and shipment data that receive for express company's system complete
Property verification after decrypt, identity information abstract, the shipment data after storing and resolving are generated to the identity information of the user after decryption;
Authentication module carries out real name verification, after real name verification success for express company's system to the identity information abstract of user
Identity information abstract is stored, and verification result is back to courier's intelligent terminal;
The encryption uploading module specifically includes:
It logs in and allocation unit, the intelligent terminal for courier logs in express company's system, express company's system is automatically to fast
The person's of passing intelligent terminal distributes the first dynamic session and the second dynamic session;
Encryption unit, for intelligent terminal using the first dynamic session to shape after the identity information progress one-time pad encryption of user
Character string is spliced by specific format at identity information ciphertext, and by identity information ciphertext and shipment data, to character string
It calculates abstract by hash function and secondary encryption is carried out to abstract by the second dynamic session and generate digital signature;
Data Synthesis unit for digital signature to be added in character string, and is assembled into the generated data of specific format;
Generated data is uploaded to corresponding express company's system by data uploading unit for intelligent terminal.
6. the identity real name according to claim 5 for posting part based on express delivery verifies system, which is characterized in that the decryption mould
Block specifically includes:
Decryption and verification unit pass through the first decruption key solution for the generated data decryption that express company's system docking receives
Abstract is precipitated, and abstract is verified, judges whether the generated data received is complete;
Parsing and storage unit obtain identity information ciphertext if the generated data for reception is complete, with the second decryption
Key pair identity information ciphertext is decrypted, and generates identity information abstract to the identity information after decryption, and after storing and resolving
Shipment data;
Transmission unit returns to error message if the generated data for reception is not complete to the intelligent terminal of courier,
Prompt is re-entered, and after the generated data of detection reception is complete, then identity information ciphertext is obtained, with the second decruption key
Identity information ciphertext is decrypted, identity information abstract, and the delivery after storing and resolving are generated to the identity information after decryption
Data.
7. the identity real name according to claim 6 for posting part based on express delivery verifies system, which is characterized in that the verification mould
Block specifically includes:
Query unit, for making a summary with the presence or absence of corresponding subscriber identity information in express company's system queries local record;
First authentication unit, if for there are corresponding subscriber identity information abstracts in locally recording, directly in local progress
Verification, and include in courier's intelligent terminal by verification result;
Second authentication unit believes user identity for if there is no corresponding subscriber identity informations to make a summary in locally recording
Breath uploads to identity verification system and carries out authentication, includes in courier's intelligent terminal, after being proved to be successful by verification result
Identity information abstract be stored in the local record of express company's system.
8. the identity real name according to claim 7 for posting part based on express delivery verifies system, which is characterized in that the system is also
Including:
Reminding module prompts user to provide identity information again if being used for identity information authentication failed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610075678.5A CN105554032B (en) | 2016-02-03 | 2016-02-03 | A kind of identity real name verification method and verification system for posting part based on express delivery |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610075678.5A CN105554032B (en) | 2016-02-03 | 2016-02-03 | A kind of identity real name verification method and verification system for posting part based on express delivery |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105554032A CN105554032A (en) | 2016-05-04 |
| CN105554032B true CN105554032B (en) | 2018-07-24 |
Family
ID=55832966
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610075678.5A Expired - Fee Related CN105554032B (en) | 2016-02-03 | 2016-02-03 | A kind of identity real name verification method and verification system for posting part based on express delivery |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105554032B (en) |
Families Citing this family (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106897850A (en) * | 2016-09-21 | 2017-06-27 | 摩瑞尔电器(昆山)有限公司 | System of real name commodities-circulation information management and system |
| CN106709842A (en) * | 2016-12-08 | 2017-05-24 | 杭州晟元数据安全技术股份有限公司 | High-efficiency safe express delivery real-name-system method |
| CN106845886A (en) * | 2016-12-08 | 2017-06-13 | 杭州晟元数据安全技术股份有限公司 | One kind realizes express delivery system of real name method |
| CN106788972B (en) * | 2016-12-16 | 2020-03-10 | 成都理工大学 | Train ticket self-service ticket buying and taking system based on block chain identity authentication |
| CN106875143A (en) * | 2017-02-09 | 2017-06-20 | 江苏军物联网股份有限公司 | A kind of express delivery system of real name supervisory systems and monitoring and managing method |
| CN107123204A (en) * | 2017-04-27 | 2017-09-01 | 嘉兴市单身狗贸易有限公司 | Automatic rental method and system |
| CN107463598A (en) * | 2017-06-09 | 2017-12-12 | 中国邮政储蓄银行股份有限公司 | Distributed cache system |
| CN107705064A (en) * | 2017-09-07 | 2018-02-16 | 顺丰科技有限公司 | Method, equipment and storage medium are signed in a kind of express delivery |
| CN108053219B (en) * | 2017-12-29 | 2023-06-02 | 浙江万里学院 | Safe intelligent logistics fee payment method |
| CN110166244A (en) * | 2018-02-13 | 2019-08-23 | 北京京东尚科信息技术有限公司 | Contactless auth method, device and system |
| CN108833351A (en) * | 2018-05-17 | 2018-11-16 | 贵州大学 | Express real-name authentication method with privacy protection function |
| CN108833386B (en) * | 2018-06-01 | 2021-04-30 | 福建壹中正和信息科技有限公司 | Method and terminal for applying for mailing package on line for logistics system |
| CN109063948B (en) * | 2018-06-12 | 2022-02-01 | 上海中通吉网络技术有限公司 | Statistical algorithm for traffic volume and real-name rate of parts and protocol pieces |
| CN109086586A (en) * | 2018-07-19 | 2018-12-25 | 上海中通吉网络技术有限公司 | Sensitive data authentication protection method and device |
| CN111506894A (en) * | 2019-01-31 | 2020-08-07 | 金联汇通信息技术有限公司 | Data processing method, system, electronic device and computer readable storage medium |
| CN110048829B (en) * | 2019-06-17 | 2019-09-13 | 钛能科技股份有限公司 | A kind of encryption method and system, self checking method of device identification |
| CN114677086A (en) * | 2022-03-30 | 2022-06-28 | 中国建设银行股份有限公司 | Method, device, equipment and medium for processing mail sending request |
| CN115471860B (en) * | 2022-09-14 | 2024-02-13 | 联通数字科技有限公司 | Express real name checking method, system and computer readable storage medium |
| CN119963306A (en) * | 2025-01-07 | 2025-05-09 | 交通银行股份有限公司北京市分行 | Method and device for processing return data |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8135597B1 (en) * | 2001-02-15 | 2012-03-13 | Tahan A Christian | Method using a global server for providing patient medical histories to assist in the delivery of emergency medical services |
| CN103150637A (en) * | 2012-11-12 | 2013-06-12 | 成都锦瑞投资有限公司 | Express receiving terminal real-name management system and implementation method based on bar code technology |
| CN103366201A (en) * | 2013-07-05 | 2013-10-23 | 广东够快物流信息科技有限公司 | Logistics information acquisition system having identity reading and verifying functions |
| CN104504594A (en) * | 2014-12-17 | 2015-04-08 | 马俊 | A method and system for online shopping privacy protection |
| CN104636901A (en) * | 2015-02-13 | 2015-05-20 | 深圳支付界科技有限公司 | Method and system for processing express delivery data |
| CN104778391A (en) * | 2015-03-20 | 2015-07-15 | 四川长虹电器股份有限公司 | System for authorizing express cabinet to take cargos by cloud fingerprint identification platform and method thereof |
| CN104933371A (en) * | 2015-06-04 | 2015-09-23 | 南京邮电大学 | Logistics personal information privacy protection system based on multilayer-encrypted two-dimensional code |
-
2016
- 2016-02-03 CN CN201610075678.5A patent/CN105554032B/en not_active Expired - Fee Related
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8135597B1 (en) * | 2001-02-15 | 2012-03-13 | Tahan A Christian | Method using a global server for providing patient medical histories to assist in the delivery of emergency medical services |
| CN103150637A (en) * | 2012-11-12 | 2013-06-12 | 成都锦瑞投资有限公司 | Express receiving terminal real-name management system and implementation method based on bar code technology |
| CN103366201A (en) * | 2013-07-05 | 2013-10-23 | 广东够快物流信息科技有限公司 | Logistics information acquisition system having identity reading and verifying functions |
| CN104504594A (en) * | 2014-12-17 | 2015-04-08 | 马俊 | A method and system for online shopping privacy protection |
| CN104636901A (en) * | 2015-02-13 | 2015-05-20 | 深圳支付界科技有限公司 | Method and system for processing express delivery data |
| CN104778391A (en) * | 2015-03-20 | 2015-07-15 | 四川长虹电器股份有限公司 | System for authorizing express cabinet to take cargos by cloud fingerprint identification platform and method thereof |
| CN104933371A (en) * | 2015-06-04 | 2015-09-23 | 南京邮电大学 | Logistics personal information privacy protection system based on multilayer-encrypted two-dimensional code |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105554032A (en) | 2016-05-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105554032B (en) | A kind of identity real name verification method and verification system for posting part based on express delivery | |
| CN105656920B (en) | A kind of encryption and decryption method and system for posting number of packages evidence based on express delivery | |
| CN103716167B (en) | Method and device for safely collecting and distributing transmission keys | |
| CN101051908B (en) | Dynamic cipher certifying system and method | |
| CN104464117B (en) | Based on dynamic two-dimension code ATM (automatic teller machine) withdrawal method and system | |
| CN102722931B (en) | Voting system and voting method based on intelligent mobile communication devices | |
| CN101170407B (en) | A method for securely generating secret key pair and transmitting public key or certificate application file | |
| CN109067801A (en) | A kind of identity identifying method, identification authentication system and computer-readable medium | |
| CN101815091A (en) | Cipher providing equipment, cipher authentication system and cipher authentication method | |
| JP2004072777A (en) | Security framework and protocol for universal general transactions | |
| CN110519046A (en) | Quantum communications service station cryptographic key negotiation method and system based on disposable asymmetric key pair and QKD | |
| CN101577917A (en) | Safe dynamic password authentication method based on mobile phone | |
| CN103812651B (en) | Method of password authentication, apparatus and system | |
| WO2018133674A1 (en) | Method of verifying and feeding back bank payment permission authentication information | |
| CN206212040U (en) | A kind of real-name authentication system for express delivery industry | |
| CN104125230B (en) | A kind of short message certification service system and authentication method | |
| CN101217374A (en) | Method for protecting user privacy in three-way conversation | |
| CN110060403A (en) | The more ticket electronic voting methods of a people and system based on block chain | |
| CN110098925A (en) | Based on unsymmetrical key pond to and random number quantum communications service station cryptographic key negotiation method and system | |
| CN108900309A (en) | A kind of method for authenticating and right discriminating system | |
| CN108710931A (en) | A kind of address information privacy protection method based on Quick Response Code | |
| CN106056419A (en) | Method, system and device for realizing independent transaction by using electronic signature equipment | |
| CN110008753A (en) | A kind of data processing method and system in business datum Sensitive Domain | |
| CN106027254A (en) | Secret key use method for identity card reading terminal in identity card authentication system | |
| CN110176989A (en) | Quantum communications service station identity identifying method and system based on unsymmetrical key pond |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20180724 Termination date: 20220203 |