chrispeng [ad_1]
1. Project requirements
If the transformation project of “one household, one meter, reading the meter out of the house” is implemented in a city, the current feasible plan is to promote the use of IC card water meters among tap water users, and the users pay for water with the card, and then insert the IC card. The water meter starts to use water. When the purchased water is used up, the IC card water meter will automatically close the valve to prohibit the user from continuing to use water. You must hold the card again to purchase water at the bank to resume use. As a city’s renovation project involves not only a large number of users, but also a wide range of users, so the project must focus on safety and operability in the implementation process.
1. Security:
Security considerations can be divided into three aspects: the security of the card medium, the security of the meter production process, and the security of operation management.
The security of the card medium: Due to the huge user group and the system cannot monitor the transfer of IC card data to the meter after the meter is installed, the user card must be required to have high security.
Safety of meter production process: strictly distinguish the meter production process and operation management process to ensure that once the IC card water meter is installed and operated, any data modification in the water meter should be carried out under the control of the operation management system, and manufacturers must be resolutely eliminated Or the management department staff holds a special tool card to rewrite the water meter data without going through the management system.
Security of operation management: In the IC card water meter system, the security of the system mainly depends on the issuance and management of the key, so there must be a set of suitable IC card and ESAM module key issuance and transmission methods.
2. The operability of resident user payment:
Due to the large number of residential users, the household meter renovation project takes a long time. In order to facilitate the user’s payment and purchase of water, the establishment of business outlets by the water company alone has higher operating and management costs and lower service efficiency. The better way is to use The existing bank outlets complete the payment and purchase of water. After the user installs the IC card water meter and receives the IC card from the water company, he can directly go to the bank to pay for water. At the same time, the water company can also easily establish water bill settlement and transfer services with the bank. This way the water company It is very easy to use the bank to complete the collection of water charges.
The structure of the network charging management system is as follows:
3. The operability of the user card:
The operability of the user card is considered in four aspects: the user card account opening process, the user card operation process, the card replenishment process, and the fault table maintenance process.
User card account opening process: The user card account opening process needs to complete the correspondence between user information, water meter information, water price information, and user card. This process should be as simple as possible to avoid multiple trips between the bank and the water company.
User card operation process: Considering the arbitrariness of inserting and unplugging the user card during the use of the user, the time for data exchange between the user card and the IC card water meter should be minimized to avoid the user pulling out the card during the data processing process. The data errors caused by the outflow cause inconvenience to the user’s water purchase process.
In the process of use, if the user cannot continue to use water due to the exhaustion of the purchased water, and the user cannot easily purchase water at the time, he should consider allowing the user to use the emergency credit method to temporarily continue to use water. The credit threshold can be set according to the needs. The credit value will be deducted the next time you purchase water.
Taking into account the possibility of parameter modification of the IC card water meter in the application process, some parameters can be transferred through the user card, and the IC card water meter can be modified during the user’s water purchase.
Card replacement process: When the user card is lost, it should be able to reissue the user card to the user. The easiest way is to directly replenish a card to the user, and no longer reissue the water purchase data in the lost card. The user is responsible for the lost part, so that the user can purchase water next time when the card is refilled.
Failure meter maintenance process: during the installation process of the IC card water meter or during operation, it may be necessary to modify the data in the on-site IC card water meter for some reason. At this time, a tool card is required to operate the IC card water meter. The operation should be different from the operation of the IC card water meter manufacturer to modify the IC card water meter data during the production process. It is necessary to prevent unauthorized use of the production card at the operation site. Should design a kind of on-site data setting card, this kind of card uses the operating key, the setting parameters inside can be flexibly set, and the IC card water meter data should be modified once the card is inserted.
4. The operability of water company management
Different manufacturers have different design specifications due to their different requirements. This leads to different functions and data exchange protocols of the IC card water meters installed by different manufacturers in the water company.
At the same time, due to the continuous changes in market demand and the continuous application of new design technologies, even the design specifications formulated by the same manufacturer in different periods may be different, resulting in the installation of the same IC card by the water company in different periods. The water meter functions and data exchange protocols of water meter manufacturers may also be different from each other. When the on-site meter fails, different meters need to be repaired and replaced by different methods, which also increases the difficulty of the water company’s maintenance service.
2. Several technical requirements for the implementation of IC card water meter transformation in the city
1. Use CPU smart card as the card medium for IC card water meter design
As in the IC card water meter and system, the IC card is the carrier of data storage and transmission, so the data storage security of the IC card needs to be emphatically considered.
IC cards can be divided into three categories: memory cards, logical encryption cards, and smart cards (CPU cards) according to the different ways of processing EEPROM. They have different data protection security levels.
Since the smart card has a CPU chip inside, it not only has the ability to judge data, but also has the ability to analyze and process data. Therefore, the smart card can distinguish legal and illegal reading and writing devices at any time, and because of the CPU chip, it has the ability to calculate data, and it can also The data is encrypted and decrypted, so it has a very high level of security and a high level of security.
From the analysis of the attack method, it can be seen that ensuring the security of the data in the IC card is the most basic requirement. If the illegal device can easily exchange data with the IC card for analysis and processing, the IC card water meter and system will not Then have any security. Therefore, improving the security of the IC card is the key to a well-designed IC card water meter and system.
According to the above analysis, if IC card water meters and systems attach great importance to data security, IC cards with high security levels should be selected. From the development trend, CPU cards should be used as the medium of IC card water meter information transmission as much as possible.
2. Install the embedded ESAM security module in the IC card water meter
Because the program in the CPU needs to be designed by the designer of the manufacturer (or a third party), the function and processing flow of this part of the program can be commissioned by the IC card water meter user to request the design, and the demand itself is also public. But if you want to store the key and perform encryption operations under the control of the CPU, for security considerations, the key value should not be disclosed, so this part of the programming cannot be commissioned to develop and design, and must be mastered in the IC card water meter In the hands of the user. In other words, the function of the IC card water meter, the data operation process and the security of the data are two different concepts, which should be completed by different functional modules. The best solution to this problem is to add an embedded security module (ESAM module) to the IC card water meter.
The use of ESAM module technology in IC card water meters can realize the separation of IC card water meter data flow and data security, facilitate product compatibility and upgrade, and can continuously promote technological progress. It is an effective technical means to standardize the development of IC card water meter technology. For this reason, the water company should use the embedded ESAM security module in the newly installed IC card water meters, so that the safety of the IC card water meters put into operation is completely controlled by the water company.
3. Formulate a unified IC card water meter design specification
In the design process of IC card water meter, a design specification is required to describe the function of IC card water meter, the definition of data items in IC card water meter, the process of data exchange between IC card water meter and CPU card, and CPU card and charge management The process of data exchange by the system.
In the newly installed IC card water meter project of the city water company, the water company must come forward to gather IC card meter manufacturers, IC card manufacturers, banks, and system integrators to uniformly formulate the design specifications for IC card water meters and charging management systems, and require The products and systems provided by all parties involved in the project must meet the requirements of the specification, and the products and systems can be provided only after passing the technical test and acceptance.
4. Entrust the bank and system integrator to design a unified charging management system
In the past, the charging management system for stand-alone operation was independently programmed, designed and maintained by the IC card water meter manufacturer according to its own design specifications. However, the city-level network charging management system also runs in this way, which is problematic:
The focus of the designers of IC card manufacturers is mainly on the design of related meter products, and their ability to master large-scale database systems, network programming and other technologies is relatively insufficient. The charge management system designed in this way may be technically flawed. Brings obstacles to the stable operation of the system. On the one hand, banks and professional system integrators have all the technologies and experience required for the design of professional charge management systems, and at the same time they will not participate in the commercial interests of IC card water meter manufacturers, so they can independently maintain technological neutrality. , To provide the water company with high-quality services to the greatest extent, so that the charging management system operated by the water company can ensure safety and stability for a long time.
3. Implementation Measures for IC Card Water Meter Project of Urban Water Supply Company
The implementation process is as follows:
1. In order to maintain the fairness of the unified design specification, the water company decided to entrust a system integrator as the author of the design specification for the IC card water meter and charging management system.
2. In order to make the functions of the newly designed CPU card water meter closer to the products of the existing IC card manufacturers, the IC card manufacturers that are shortlisted first will provide the water company with their own IC card water meter design specifications, based on this On the one hand, the water company will plan the management of the existing IC card water meters, and on the other hand, it will summarize the water meter functions in a unified design specification on this basis.
3. After the unified draft of the CPU card water meter specification is completed, the water company will convene IC card manufacturers, banks, and system integrators to discuss and modify the plan, and finally confirm the formation of a formal design specification for the CPU card water meter and charging management system.
4. On the basis of unified specifications, each IC card manufacturer revises the design of their own CPU card water meter.
5. On the basis of unified specifications, the water company entrusts the system integrator to formulate the test and acceptance outline and compile the test software.
6. On the basis of unified standards, the water company commissioned banks and system integrators to jointly design the water company’s CPU card charging management system.
7. Hosted by the water supply company, the test software is used to test the CPU card water meter designed by the IC card manufacturer. Only the IC card manufacturer that has passed the function test can carry out mass production.
8. Hosted by the water company, test the CPU card charge management system software with test software.
9. Hosted by the water supply company, IC card manufacturers, banks and system integrators are convened to jointly debug and test the entire CPU card water meter and charging management system and finally accept it.
10. The water company establishes a card issuing key management system. The IC card manufacturer receives the embedded ESAM security module from the water company to organize the mass production and supply of CPU card water meters.
11. The water company provided the bank with a PSAM authentication card, issued a user card with an operating key for residents, and the system was put into formal operation.
4. Development progress of IC card water meters
The development of card IC card water meter should go through the following processes:
Regarding the technical training of CPU card and TIMECOS operating system, it is necessary to organize watch factories and system integrators to conduct training on CPU cards, TIMECOS instructions, IC card reading and writing equipment, etc.
Discuss and determine the overall plan of card IC card water meter, including card structure and operation process, meter function and operation process, bank transaction operation process, and card and ESAM module issuance management process.
The watch factory began to design the circuit of the watch, microcontroller programming, debugging, and the card supplier to provide the necessary technical support.
The system integrator began to design and compile the entire management system software and card issuance key management program, and the card supplier provided necessary technical support.
The watch factory made a functional sample table and the management system for joint debugging, and made amendments to the problems that occurred.
The watch factory and system integrator perfected the product and entered a small batch of trial operation inspections.
Finalize acceptance, organize formal production and operation.
Preliminary calculations show that it will take about two months for the watch factory to complete the prototype trial production, and it will take about three months for the system to be debugged. Joint debugging and trial operation should take at least two months. It is estimated that it will take about four to five months to complete the entire development process.
[ad_2]
