本文提出具有意義視覺密碼的QR Code防偽認證機制,針對傳統視覺密碼中分享影像不具識別性的雜訊影像及行動裝置以公眾網路進行服務存取時易受有心人以中間人攻擊取得分享影像的問題,本文提出的方法是將做為防偽驗證機密影像,以QR Code 做為分享影像的掩蓋影像使分享影像具有視覺辨識意義且不影響機密影像的安全,而驗證時將分享影像疊合即可得到機密影像資訊。當以QR Code進行驗證時,需使用行動裝置存取儲存於資料庫中的分享影像進行驗證,本文也提出以第二因素認證的方法,在行動裝置存取分享影像時,使用第二因素認證中的DES區塊加密模組,對使用者和資料庫間傳輸的分享影像加密使分享影像在公眾網路通訊更為安全及增加使用者的身分驗證保護。本文方法增加視覺密碼分享影像的友善分享特性,具有安全與不易攻擊的特點。
In this thesis, an innovative QR code authentication mechanism with meaningful visual secret sharing is proposed. In traditional verification processes, the images would be easily copied and stole during the public network transmission via mobile devices. This proposed scheme is a hybrid transformation of QR Code and the secret/target image to generate the share images with identification but also security during as it is transmitted, and it can be decoded with image superposition computation. Moreover, the share image can be stored locally in the mobile to facilitate the user decoding processes. The second factor authentication methodology is also applied in this work. DES sub-area encryption is utilized to enhance the transmission security within public network service. The features of the proposed scheme are friendliness, safety and robustness.