Renmin University of China first built a card system in September 2004. The system is positioned as two major functions: campus identity information authentication function and campus financial consumption function.
The system adopts the integrated system design of “one network/one library/one cardâ€, and establishes campus card private network, campus card management platform and campus card application platform as support platforms. Adopting an open and compatible technical route, based on the support platform, open application interface, compatible with many products.
The card uses a TYPE B-type CPU card, combined with some of the second-generation ID card's anti-counterfeiting printing technology and fingerprint loading technology. The design of the card uses directory management and multi-wallet management.
The main applications include: catering, water control, payment, small-scale consumption, access control, electronic registration, conference sign-in, book lending, and medical registration.
At the same time, the school provides institutional and functional support for the management of the card. Information Technology Center, Finance Department and Card Authorization Point. The Information Technology Center is responsible for the planning and construction of the card system and management services. The Finance Department has established a card financial settlement center responsible for settlement, reconciliation and financial specifications. The card authorization points are set at the Student Office, Personnel Department, Finance Department, Library, Logistics Group, School Hospital, Security Department, responsible for management and operation of related applications, identity rights management and information management.
Card system status
In the past three years, the total number of cards issued by our school has reached 23,000, including about 12,000 new cards and more than 10 thousand replacement cards.
Our school card system has an independent encryption system to initialize the card, one card and one secret.
Structure
The card adopts the CPU TYPE B card conforming to the "ISO/IEC14443-TYPE B International Standard" and the "China Financial Integrated Circuit (IC) Card Specification" promulgated by the People's Bank of China. The card operating system (COS) has multiple authentication methods. It allows multiple key management mode, with strict key algorithm protection, and is transmitted to the reader through non-contact sensing during reading.
The card system adopts a structural design with strict division of financial data and non-financial data. Non-financial data including identity authentication information, personnel and departmental organization information are unified from the data sharing exchange center, and financial data comes from the card application platform.
The one-card network structure adopts a two-layer structure of a private network and a campus network.
On the campus card system network structure design, establish a financial consumer campus card private network. The campus card system information query uses the campus network. In the structural design of the campus card system terminal equipment access network equipment, it is divided into two levels: payment transaction dedicated network equipment and identity authentication dedicated network equipment, so that the campus card payment transaction function subsystem strictly follows the banking business system specification and has high security. Sex, reliability and real-time.
In the structural design of the campus card system business operation, the business operation structure of the three-level platform is adopted, that is, the bank level platform, the campus card management settlement center level two platform and the sub-management center level three platforms fully guarantee the real-time performance of the system. Support for business expansion.
In the design of the operation mode of the campus card system, real-time communication and non-real-time communication are designed. When networking, the system is conducted in online communication mode, and various data are automatically exchanged. Once the network fails, the card and the terminal device with network/off-network self-adaptive capability can still be used off-net to ensure the dual use of the network/off-network mode. Sex and compatibility.
2. Application
Catering consumption: use a big wallet, the terminal equipment supports both CPU card and photoelectric card.
Water control consumption: use a card water control small wallet, the lost amount does not make up, and support CPU card and M1 card.
Access control: In addition to the access control system of the student dormitory, different office buildings and different units in the school are installed with their own access control. All these access control systems are connected by the third-party standard interface of the card information management system.
Book lending: The self-service lending system uses 3MTM RFID tag (SelfCheckTM) technology, and the card is borrowed and returned.
Station management: swipe the card on the “location management system†machine. After logging in to the computer for authentication, you can use the computer for free.
Seat management: Use the card to select and pick up the number on the touch screen integrated machine of the library, and then use the seat corresponding to the number. Self-service printing, copying, scanning: printing, copying or scanning with a one-card card, and deducting the required amount after the end.
Medical registration and payment: On the self-service registration machine of the school hospital, the card is paid and registered, and the medical fee is paid by credit card.
Electronic registration: Students complete the registration operation through self-service terminal reading.
Registration fee: 4-6 registration fee, network fee, bus card for payment.
Meeting sign-in: Through the card reading, the attendance of the participants, sign-off, leave, etc.
Shuttle: On-board bus POS consumer machine to swipe the card to pay for the shuttle bus.
Merchant's fees: Merchants such as on-campus supermarkets charge cards.
Key problems solved by upgrading and transformation
At the beginning of the establishment of our school card system in 2004, the design idea was to provide a unified interface, open and compatible with different devices and applications of different vendors, and not bound by one vendor. This is a very good design idea for scalability and sustainability. With the development of technology and peripheral devices, the interface mechanism and device compatibility mechanism need to be upgraded and upgraded in time, otherwise there will be problems that are not compatible. The following questions are typical representatives:
Card reading problem for new and old batch cards
Typical phenomenon:
1. A card is readable at A and not readable at B;
2. The same device can read card 1, but can't read card 2.
For example: Mingde Building office access control can only read the old card (single interface CPU card issued in 2004-2007), the school hospital self-service registration machine can only read the new card (single interface CPU card issued after 2007).
Offline operation and black and white list synchronization issues
The offline operation management of the device is too loose (48 hours or longer), and the blacklist and whitelist synchronization delay time is long and the operation is unstable.
Typical phenomenon:
1. The card that has been reported to be lost in the main system is sometimes valid in the subsystem and can be consumed;
For example: the canteen catering system sometimes has a long offline time and cannot receive the list information in time; the list transmission operation is unstable, and the list cannot be guaranteed to arrive or take effect;
2. Newly opened or reissued cards in the main system cannot be identified in the subsystem for a long time;
For example, the gates of the Mingde Building channel sometimes do not recognize the replacement card, and the list information interaction cannot be synchronized; the library can identify the card information when it is 24 hours old.
Self-service device problem
Typical phenomenon:
1. Only a self-service device with self-service storage and support for binding to Bank of China or ICBC bank card;
2. Using the old XP system, there are many loopholes;
3. The power supply and network cable are exposed, and the user can plug and unplug it;
4. The damage rate of the accessories is high and the maintenance period is long;
5. Accessories (touch screen, card reading device) have poor experience;
6. Self-service registration equipment is not compatible with the reading of new and old cards.
The card issuance process is complicated and restrictive
Typical phenomenon:
1. Only cards can be produced by on-site printing;
2. Only when the bank card is bound can the card be issued;
3. Can only use several specific card printers for card issuance;
4. You cannot use the card replacement method to change cards;
5. Some permission changes must be written on site;
6. Lost the card for 48 hours before it can be reissued.
Key points of the upgrade
1. Support instant replenishment card (stand-by), the balance of the card can be collected on the deposit machine or POS machine;
2. Support self-repair card and pay the replacement card fee in a flexible way;
3. Support campus card storage on the third-party payment platform, the amount of the deposit can be directly received on the deposit machine or POS machine;
4. Support payment of various fees (Internet access fees, registration fees, student dormitory electricity charges, etc.) from campus cards and third-party payment platforms;
5. Improve the original electronic registration function in combination with the mobile APP application;
6. Improve support for self-service printing, registration, access to packages, etc.
7. The storage machine supports information inquiry of related card services and synchronously implements related APP applications;
8. Renovate the conference sign-in system, support multiple forms of identification, and implement mobile sign-in;
9. Increase venue management and sports test management;
10. Establish a unified access control management platform;
11. Support NFC mobile phone card;
12. Compatible systems must maintain real-time and consistent data transmission;
13. Establish a statistical analysis center for data;
14. Focus on developing mobile applications to enhance the user experience.
The application of traditional functions such as restaurant charges, access control, and book management of the current campus card has become very popular, and related technologies are very mature. With the development of mobile terminal applications and the Internet economy, the model of campus card application is also facing challenges. Identity authentication, cardless payment, and mobile phone NFC capabilities will impact the traditional application model of campus cards.
(The author unit is Information Technology Center of Renmin University of China)
AUTRENDS INTERNATIONAL LIMITED , https://www.petspetscleaning.com