Non-contact CPU card bus application upgrade projects in Shanghai, Jiangyin and other places
[ad_1]
In recent years, non-contact IC cards have been widely used in the field of public transportation due to their fast and convenient characteristics. At the same time, the continuous development of bus services has put forward many new requirements for contactless IC cards: the reliability and security of transactions must be improved, the types and modes of services must be increased, and cities must be interoperable. All the new demands put pressure on IC card chip suppliers, chip software developers and system integrators, and also brought new opportunities. The current urban bus card market has a considerable scale: more than 140 cities across the country have issued urban bus cards, and the total number of cards issued has exceeded 140 million. More than 90% of the cities use contactless logic encryption cards with Mifare1 algorithm.
The application of city bus cards has been extended to all areas of urban life, including buses, subways, taxis, ferries, highways, and will be extended to stores, supermarkets, and convenience stores. In the future, according to the needs of each city, it can also be applied to related fields such as access control, parking lot, community management, water, gas, heat, and electric utility payment. However, the existing Mifare1 algorithm’s non-contact logic encryption bus card also has many problems: the capacity is not more than 4k Bytes, and the storage structure is fixed. It uses a simple stream encryption algorithm. During the transaction, the data is also processed by the machine. Maintenance, transaction reliability is low.
In March 2008, a research team led by FDGarcia of Raboud University (NRU) in Nijmegen, the Netherlands, restored the CRYPTO1 algorithm and authentication method, and discovered a security vulnerability in the Mifare1 system: an attacker can restore the internal state and previous state of the linear shift register , And transform the filter function, and finally gain access to the private key. This research result proves that the Mifare1 card does have great security risks. Attackers can easily collect data in the normal transaction process, and can crack the key in less than 1 second. The safety of funds in the card is at stake.
How to solve the security problem of Mifare1 card? The contactless CPU card becomes the best choice. Compared with Mifare1 card, the non-contact CPU card has obvious security advantages, and has the ability of anti-eavesdropping, anti-tampering, anti-counterfeiting, and anti-repudiation:
Anti-eavesdropping refers to-the packet symmetric cryptographic algorithm can be used to encrypt and transmit messages to prevent attackers from obtaining transaction data; anti-tampering refers to-the data communication is verified by MAC encryption to ensure the integrity of the communication data;
Anti-counterfeiting refers to the use of an unalterable unique serial number and security authentication code to prevent card forgery, and at the same time prevent the transaction data stream from being replayed by means of one password at a time and one card with multiple passwords.
Non-repudiation refers to the fact that the CPU card automatically generates a TAC transaction verification code to prevent transaction denial.
In terms of transaction reliability, the contactless CPU card is also significantly better than the Mifare1 card. Taking the typical consumption transaction process defined in the “Construction Business Integrated Circuit IC Card Application Technology” specification as an example, the consumption process of the Mifare 1 card includes 9 card reading and 7 card writing operations, and a total of 16 card-machine interactions have been performed. ; And for the same electronic wallet consumption process defined in the “Technical Requirements for COS of the Construction Business CPU Card”, the card machine only needs to perform 4 interactions, which is only 25% of the logic card. The number of interactions is reduced, and thanks to the anti-plugging capability of COS, the transaction data reliability of the contactless CPU card has been significantly improved.
Not only can it provide reliable transaction security, the non-contact CPU card also has the incomparable advantages of many non-contact logic encryption cards such as large capacity, flexible card structure, and independent multi-application. Based on excellent electronic wallet protection and transaction capabilities, the contactless CPU card can effectively reduce the losses of users and card companies, greatly shorten the development cycle of new applications in the industry, and reduce the risk of new business exploration. While bringing more convenience and enjoyment to users, the non-contact CPU card also provides a wider business platform for all city card companies.
According to the actual situation of each city, the one-card company can choose between two non-contact CPU card application solutions: for cities that have not yet launched bus IC card business, or although bus IC card business has been launched, it can be used in a short time. Prefectures and cities that have completed the upgrading and transformation of all machines can directly choose the standard non-contact CPU card application program. This solution can reduce costs for owners, shorten the development cycle, and more conveniently enjoy the advantages brought by contactless CPU cards.
For cities that already use logical encryption cards and need a longer upgrade transition period, non-contact CPU cards with logical interfaces can be used to complete the smooth transition of the bus IC card system. This non-contact CPU card has two transaction interfaces, logic and CPU, and COS automatically maintains the synchronization of the CPU wallet and logic wallet. During the transition period, the modified machines can be used for recharge and consumption transactions through the CPU interface, while the unmodified machines can still be consumed through the logical interface. After the upgrade is completed, the logical transaction interface can be easily closed through each business terminal , Making these cards a standard contactless CPU card. This transformation plan fully takes into account the long-term nature and complexity of the system upgrade, and can greatly reduce the cost and difficulty of the system transformation for the all-in-one card company.
The non-contact CPU card chip SHC1108 series of Shanghai Huahong Integrated Circuit Co., Ltd. includes two categories: standard non-contact CPU card and non-contact CPU card chip with logical interface. The chip uses a variety of high-security protection technologies, including 32-bit true random number generator, large field strength detection protection, storage area encryption protection and other circuits, while supporting domestic independent encryption algorithms and block symmetric encryption algorithms. Shanghai Huahong Integrated Circuit Co., Ltd. can provide customers with soft mask cards, emulators, software development kits and comprehensive technical support, and can provide complete solutions based on contactless CPU card chips. At present, the SHC1108 non-contact CPU card chip has been widely used in the public transportation systems of major cities in China, and its reliability, safety, and speed have been unanimously recognized by users.
Highlights of this application case:
Complete and flexible solution
According to the actual conditions of each city, Shanghai Huahong Integrated Circuit Co., Ltd. provides two non-contact CPU card application solutions: 1) For cities that have not yet launched bus IC card business, or although bus IC card business has been launched, but Prefectures and cities that can complete the upgrade and transformation of all machines in a short time can directly choose the standard non-contact CPU card application program. This solution can reduce costs for owners, shorten the development cycle, and more conveniently enjoy the advantages brought by contactless CPU cards.
2) For cities that already use logical encryption cards and need a longer upgrade transition period, contactless CPU cards with logical interfaces can be used to complete the smooth transition of the bus IC card system.
Diversity of product selection
The non-contact CPU card chip SHC1108 series of Shanghai Huahong Integrated Circuit Co., Ltd. includes two major categories: standard non-contact CPU card and non-contact CPU card chip with logical interface. It can be matched with Huahong’s solutions for flexible selection to satisfy customers Different needs.
Mature bus project experience
As early as 1999, the Shanghai Public Transport Card project adopted China’s first contactless IC card chip with independent intellectual property rights developed by Shanghai Huahong Integrated Circuit Co., Ltd. This project is the world’s most comprehensive “all-in-one card”. The world’s largest AFC project. In 2002, Wuxi officially opened the non-contact IC card toll operation system for public transportation. Hua Hong’s non-contact IC card chip was used to realize the intercity inter-city communication between Wuxi and Shanghai public transportation cards. This is the first time that the two places have achieved transportation in China. Card intercommunication. As of the end of 2009, Hua Hong had shipped over 25 million.
The mature operation experience of these public transportation projects enables Hua Hong to have more advantages in the upgrade of non-contact CPU card public transportation applications, thereby gaining the trust of customers.
[ad_2]