CN101408970A - Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool - Google Patents
Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool Download PDFInfo
- Publication number
- CN101408970A CN101408970A CNA2008102271106A CN200810227110A CN101408970A CN 101408970 A CN101408970 A CN 101408970A CN A2008102271106 A CNA2008102271106 A CN A2008102271106A CN 200810227110 A CN200810227110 A CN 200810227110A CN 101408970 A CN101408970 A CN 101408970A
- Authority
- CN
- China
- Prior art keywords
- transaction
- record
- doubtful point
- user
- transaction message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/04—Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
Abstract
The invention discloses a method for realizing batch electronic transaction, comprising the following steps: network side receives the transaction information input by a user for generating transaction message and doubtful point record in the transaction message is extracted and sent to an electronic signature tool; the transaction message comprises more than one transaction record; the electronic signature tool displays and/or plays the received doubtful point record to a user and ensures whether the acknowledgment information of the user is received; if yes, signature treatment is carried out on the doubtful point record and the data after being signed is sent to the network side; if not, the transaction is stopped; the network side checks whether the signature is right, if yes, the transaction is finished; if not, the transaction is stopped. Meanwhile, the invention discloses a system for realizing batch electronic transaction, a device and an electronic signature tool. The method, the system and the device in the invention are applied, the safety of the batch electronic transaction can be improved and the invention can be used by the users conveniently.
Description
Technical field
The present invention relates to the application of electronic technology field, particularly a kind of mthods, systems and devices and a kind of electric signing tools of realizing batch electronic transaction.
Background technology
At present, the application of electric signing tools more and more widely, particularly in financial industry, for the security that guarantees to conclude the business, the user of Web bank uses electric signing tools more and more, such as USB Key, as the means of authentication and transaction authentication.
In order further to guarantee the security of electronic transaction, the electric signing tools of a new generation has demonstration and/or voice play function usually, be about to the transaction record of this electronic transaction, be notified to the user by the mode that shows and/or play as type of transaction, user's the number of the account that participates in this electronic transaction and dealing money etc.Specific implementation comprises: electric signing tools links to each other with personal computer (PC) by USB (universal serial bus) (USB) interface, and PC receives the Transaction Information of user's input, generates transaction message according to this Transaction Information, and sends to electric signing tools; Electric signing tools extracts customizing messages from the transaction message that receives, as transaction number of the account and dealing money etc., and show and/or play to the user; Like this, whether the user can accurate by the transaction record of demonstration and/or this electronic transaction of content check of playing, and only after the button that the user is provided with on by electric signing tools confirms that transaction record is accurate, electric signing tools just can send trading instruction, thereby improves the security of electronic transaction greatly.
Yet, from above-mentioned record as can be seen, carry out in the process of electronic transaction in this mode of use, before transaction record is carried out operation of electronic signature, the user need confirm at first whether the All Activity record of this electronic transaction is correct, and this makes above-mentioned this electronic transaction mode need generally be only applicable to the less single electronic transaction of data volume of affirmation, and for the batch electronic transaction that comprises many transaction records, for example transfer accounts in batches etc., and inapplicable.
For example, when a company pays wages for the employee by electronic trade platform, the batch electronic transaction of a wage granting will comprise according to each employee's wage respectively from corporation account's many electronic transactions of the corresponding amount of money to each employee's account of transferring accounts.In this case, if desired the transaction record of each electronic transaction is all shown and/or play and wait for that the user confirms, then need to spend long time, and make that the use of electric signing tools is very loaded down with trivial details, bring very big inconvenience to the user; If but only show and/or play the total charge that produces from corporation account, then still exist possibility that the electronic transaction assailant distorts transaction record (for example, the number of the account that the electronic transaction assailant can increase self is in this batch electronic transaction and revise the dealing money of at least one electronic transaction in this batch electronic transaction), thus the security of batch electronic transaction can't be guaranteed.
In addition, in the prior art, electric signing tools need extract customizing messages from the transaction message that receives, so, electric signing tools just must possess the function that transaction message is resolved, so, the form of transaction message to the input electric signing tools just has certain restriction, after the business expansion, thereby occur the incompatible situation that causes electric signing tools to discern of transaction form possibly, and then user's use is brought inconvenience.
Summary of the invention
In view of this, fundamental purpose of the present invention is to provide a kind of method that realizes batch electronic transaction, can improve the security of batch electronic transaction, and be user-friendly to.
Another object of the present invention is to provide a kind of system that realizes batch electronic transaction, can improve the security of batch electronic transaction, and be user-friendly to.
Another purpose of the present invention is to provide a kind of device of realizing batch electronic transaction, can improve the security of batch electronic transaction, and be user-friendly to.
A further object of the present invention is to provide a kind of electric signing tools, can improve the security of batch electronic transaction, and be user-friendly to.
For achieving the above object, technical scheme of the present invention is achieved in that
A kind of method that realizes batch electronic transaction, this method comprises:
Network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools; The transaction record that comprises one or more in the described transaction message;
Described electric signing tools writes down the doubtful point that receives demonstration and/or plays to the user, and determines whether to receive user's affirmation information, if then described doubtful point is write down the processing of signing, and send to described network side; Otherwise, end this transaction;
Whether described network side signature verification is correct, if then finish this transaction; Otherwise, end this transaction.
Wherein, described network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools and comprises:
Personal computer PC receives the Transaction Information of user's input, generates transaction message and sends to background server according to described Transaction Information; Doubtful point in the transaction message that described background server extraction receives writes down and sends to described electric signing tools by described PC;
Whether described network side signature verification correctly comprises:
Data after described PC will be signed send to described background server, and whether described background server signature verification is correct.
Perhaps, described network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools and comprises:
PC receives the Transaction Information of user's input, generates transaction message according to described Transaction Information and sends to background server, and simultaneously, the doubtful point record that described PC extracts in the described transaction message sends to electric signing tools;
Whether described network side signature verification correctly comprises:
Data after described PC will be signed send to described background server, and described background server is according to the doubtful point record that extracts in the transaction message that receives, and whether signature verification is correct.
Preferably, the record of the doubtful point in the described extraction transaction message comprises:
Compare item according to predefined transaction record, transaction record in the described transaction message is compared with known Reference Transactions record one by one, determine whether to exist in the described transaction message transaction record that is different from described Reference Transactions record, if determine that then this transaction record is the doubtful point record.
Described transaction record comparison item is: transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name.
Perhaps, the record of the doubtful point in the described extraction transaction message comprises:
Search the N bar transaction record that dealing money is the highest in the described transaction message, with this N bar transaction record as the doubtful point record; Described N is a positive integer, and its value is for preestablishing.
Preferably, the doubtful point record in the described transaction message of described extraction sends to electric signing tools and comprises:
Whenever extract a doubtful point record, then send to described electric signing tools;
Perhaps, after extracting all doubtful point records, unification sends to described electric signing tools.
A kind of system that realizes batch electronic transaction comprises: network side subsystem and electric signing tools;
Described network side subsystem is used to receive the Transaction Information that the user imports, and generates transaction message, extracts the doubtful point record in the described transaction message, sends to electric signing tools, comprises the transaction record of one or more in the described transaction message; And receive from the data behind the signature of described electric signing tools, whether signature verification is correct, if then finish this transaction; Otherwise, end this transaction;
Described electric signing tools, be used for the doubtful point record demonstration that will receive and/or play to the user, and determine whether to receive user's affirmation information, if, then described doubtful point is write down the processing of signing, and the data after will signing send to described network side; Otherwise, end this transaction.
Preferably, described network side subsystem comprises: personal computer PC and background processor;
Described PC is used to receive the Transaction Information that the user imports, and generates transaction message and sends to described background server according to described Transaction Information, and transmit the data of coming and going before described background server and the described electric signing tools;
Described background server is used for extracting the doubtful point record of the transaction message that is received from described PC, sends to described electric signing tools by described PC; And receive from the data behind the signature of described electric signing tools by described PC, whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended.
Perhaps, described network side subsystem comprises: PC and background processor;
Described PC is used to receive the Transaction Information that the user imports, and generates transaction message according to described Transaction Information and sends to described background server, and the doubtful point record that extracts simultaneously in the described transaction message sends to described electric signing tools; And transmit the data of contact before described background server and the described electric signing tools;
Described background server, be used for extracting the doubtful point record of the transaction message that is received from described PC, and receive from the data behind the signature of described electric signing tools by described PC, whether the doubtful point record signature verification that extracts according to self is correct, if, then finish this transaction, otherwise, this transaction ended.
A kind of device of realizing batch electronic transaction comprises: receiving element, extraction transmitting element and verification unit;
Described receiving element is used to receive the Transaction Information that the user imports, and generates transaction message;
Described extraction transmitting element is used for extracting the doubtful point record of described transaction message, and sends to electric signing tools; The transaction record that comprises one or more in the described transaction message;
Described verification unit is used to receive the data from behind the signature of described electric signing tools, and whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended.
Preferably, described extraction transmitting element comprises:
Extract subelement, be used for comparing item according to predefined transaction record, transaction record in the described transaction message is compared with known Reference Transactions record one by one, determine whether to exist in the described transaction message transaction record that is different from described Reference Transactions record, if determine that then this transaction record is the doubtful point record; Perhaps, be used for searching the highest N bar transaction record of described transaction message dealing money, as the doubtful point record, described N is a positive integer with this N bar transaction record, and its value is for preestablishing;
Send subelement, the doubtful point record that is used for determining sends to described electric signing tools.
Described transaction record comparison item is: transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name.
A kind of electric signing tools comprises: general-purpose serial bus USB interface, the unit that displays the play, judging unit and performance element;
Described USB interface is used to connect personal computer PC;
The described unit that displays the play is used for will being received from the doubtful point record demonstration of described PC and/or playing to the user;
Described judging unit is used to judge whether to receive the affirmation information of user at described doubtful point record, and judged result is notified to described performance element;
Described performance element, be used for when judged result be when receiving user's affirmation information, to the processing of signing of described doubtful point data, and the data after will signing send to described PC; Otherwise, end this transaction.
As seen, adopt technical scheme of the present invention, when carrying out batch electronic transaction, do not need the All Activity record that batch electronic transaction is included all to show and/or play to the user, but only the doubtful point of determining is write down demonstration and/or plays to the user, determine for the user, need user's established data amount thereby not only can significantly reduce, and can guarantee the security of batch electronic transaction; Have again, doubtful point record extraction work in the scheme of the present invention need not to be finished by electric signing tools, but by network equipment, as PC or background server the doubtful point record that extracts is sent to electric signing tools, like this, incompatible and situation that electric signing tools that cause can't be discerned is convenient for users with regard to having avoided occurring the transaction form.
Description of drawings
Fig. 1 realizes the process flow diagram of method first embodiment of batch electronic transaction for the present invention.
Fig. 2 realizes the process flow diagram of method second embodiment of batch electronic transaction for the present invention.
Fig. 3 realizes the composition structural representation of the system embodiment of batch electronic transaction for the present invention.
Fig. 4 realizes the composition structural representation of the device embodiment of batch electronic transaction for the present invention.
Fig. 5 is the composition structural representation of electric signing tools embodiment of the present invention.
Embodiment
At problems of the prior art, propose a kind of scheme of brand-new realization batch electronic transaction among the present invention, promptly network side receives the Transaction Information of user's input, generates transaction message, and the doubtful point record in the extraction transaction message, send to electric signing tools; The transaction record that comprises one or more in the described transaction message; Electric signing tools writes down the doubtful point that receives demonstration and/or plays to the user, and determines whether to receive user's affirmation information, if then doubtful point is write down the processing of signing, and the data after will signing send to network side; Otherwise, end this transaction; Whether the network side signature verification is correct, if then finish this transaction; Otherwise, end this transaction.
For making purpose of the present invention, technical scheme and advantage clearer, below with reference to the accompanying drawing embodiment that develops simultaneously, the present invention is described in further detail.
Embodiment one
Suppose that the network side described in the present embodiment comprises PC and background server, i.e. the pairing server of bank of actual treatment transaction, electric signing tools is USB Key, and USB Key links to each other with PC by USB interface.Fig. 1 realizes the process flow diagram of method first embodiment of batch electronic transaction for the present invention.As shown in Figure 1, may further comprise the steps:
Step 101:PC machine receives the Transaction Information of user's input, generates transaction message and sends to background server according to described Transaction Information.
In this step, the user fills in Transaction Information on PC, and PC generates transaction message according to the Transaction Information that receives, and sends to background server then.Usually, at least comprise a transaction record in the pairing transaction message of batch electronic transaction, every transaction record correspondence electronic transaction wherein generally includes following transaction data: type of transaction, transaction number of the account, negotiator's name and dealing money etc.
Step 102: background server extracts the doubtful point record in the transaction message that receives, and sends to USB Key by PC.
In this step, the mode that background server extracts the doubtful point record in the transaction message that receives can be:
Compare item according to predefined transaction record, transaction record in the transaction message is compared with known Reference Transactions record one by one, determine whether to exist in the transaction message transaction record that is different from the Reference Transactions record, if determine that then this transaction record is the doubtful point record; Here the transaction record comparison item of being mentioned can be meant transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name etc.;
Perhaps, also can find out the N bar transaction record that dealing money is the highest in the transaction message, with this N bar transaction record as the doubtful point record; Described N is a positive integer, and its value is for preestablishing.
Be that 100 employees in the company pay wages and are example in the mode of A company by batch electronic transaction below, the specific implementation of this step be described in further detail:
After background server receives transaction message from PC, compare item according to predefined transaction record, suppose to be in this example the transaction number of the account, 100 transaction records in the transaction message are compared with known Reference Transactions record one by one, determine whether the transaction number of the account in every transaction record all is documented in the Reference Transactions record.Here the Reference Transactions record of being mentioned can be meant pairing transaction record when A company paid out wages for the employee by the mode of batch electronic transaction last time, also can be meant the All Activity record of preserving when A company pays out wages for the employee by the mode of batch electronic transaction before at every turn; In addition, the content of Reference Transactions record can comprise all transaction data, as type of transaction, transaction number of the account and dealing money etc., but for this example, when background server extracts the doubtful point record, only utilizes transaction account information wherein; Perhaps, the content of Reference Transactions record also can directly be reduced to and only comprise the transaction account information.The transaction number of the account of determining some or some transaction record in the transaction message that receives when background server is not documented in the Reference Transactions record, when promptly having found new transaction number of the account, the transaction record of the number of the account correspondence of can will concluding the business sends to USB Key (because the electronic transaction assailant may increase the number of the account of self in this batch electronic transaction) as the doubtful point record, so that the user confirms; If do not find new transaction number of the account, then thinking does not have the doubtful point record.
Need to prove that above-mentioned is that example describes with the transaction number of the account only, in actual applications, transaction record comparison item can also be transaction data such as negotiator's name or dealing money, perhaps can also be the combination of above-mentioned two or more transaction data.
, directly the N bar transaction record that dealing money is the highest in the transaction message is write down as doubtful point and send to USB Key by comparing to determine not compare the mode of doubtful point record except that above-mentioned with Reference Transactions records.Such as, the transaction record of 10 employee's correspondences that the amount of wages is the highest in the A company is sent to USB Key as the doubtful point record.
In addition, in this step, background server also can extract Hash (HASH) result of the transaction message that receives simultaneously, and sends to USB Key.Specifically purposes is follow-up will introduce.
Step 103:USB Key writes down the doubtful point that receives demonstration and/or plays to the user.
How to show and/or play to be prior art, repeat no more.
Step 104:USB Key determines whether to receive user's affirmation information, if then execution in step 105; Otherwise, execution in step 108.
For " otherwise " this situation, can be meant to surpass the affirmation information that preset time does not receive the user yet, also can be meant the command information of this transaction of termination that receives the user etc.
Step 105:USB Key writes down the processing of signing to doubtful point, and the data after will signing send to background server by PC.
In this step, USB Key writes down the processing of signing to HASH result and the doubtful point that is received from background server respectively, specifically how to be embodied as prior art, repeats no more; Perhaps,, merge the doubtful point record and calculate the final HASH result processing of signing, specifically how to be embodied as prior art, repeat no more the intermediate result that the HASH result of background server calculates as HASH.
Step 106: whether the background server signature verification is correct, if then execution in step 107; Otherwise, execution in step 108.
How whether signature verification correctly is similarly prior art to background server, repeats no more.
For there not being doubtful point to write down this situation, background server also can be notified to USB Key usually, confirms for the user, treat that the user confirms after, USB Key directly utilizes HASH result to sign and gets final product.
Step 107: finish this transaction, process ends.
Step 108: end this transaction, process ends.
So far, promptly finished the batch electronic transaction process one time.
In addition, embodiment illustrated in fig. 1 in, in order to guarantee safety of data transmission, background server can also send it to the data of USB Key, promptly the HASH result of doubtful point record and transaction message etc. carries out encryption; After USB Key receives these data, need at first be decrypted, could continue the processing of back then.Such as, can in USB Key, deposit a symmetric key in advance, background server uses the symmetric key encryption data distributing corresponding with USB Key; Perhaps, deposit the unsymmetrical key of a background server in advance in USB Key, background server uses the encrypted private key data distributing, and deciphering uses public-key in the USB Key; Perhaps, deposit the unsymmetrical key on a backstage in advance in USB Key, background server uses private key that the data signature is issued, and uses public-key in the USB Key signature is verified; Again or, in USB Key, deposit asymmetric public key and an asymmetric privacy keys of a background server in advance, background server generates an interim symmetric cryptographic key, use the public key encryption of USB Key, and issue after the private key signature of use background server, after USB Key uses the public key verifications signature of background server correct, use the private key deciphering of self to obtain interim symmetric cryptographic key, after, background server will issue after will utilizing interim symmetric cryptographic key that data are encrypted, and USB Key utilizes interim symmetric cryptographic key deciphering acquisition data to carry out subsequent treatment.In a word, specific implementation is not limit.
Have again, embodiment illustrated in fig. 1 in, background server can be about to it and send to USB Key after whenever extract doubtful point record, USB Key correspondingly shows and/or plays, to wait for user's affirmation; Also can more all doubtful point records be sent to USB Key together after extracting all doubtful point records, like this, the user only need confirm once to get final product, in case find wherein to have problematic doubtful point record, then can end this transaction.
Embodiment two
Suppose that the network side in the present embodiment comprises PC and background server, electric signing tools is USBKey, and USB Key links to each other with PC by USB interface.Fig. 2 realizes the process flow diagram of method second embodiment of batch electronic transaction for the present invention.As shown in Figure 2, may further comprise the steps:
Step 201:PC machine receives the Transaction Information of user's input, generate transaction message according to described Transaction Information and send to background server, and the doubtful point record that extracts in this transaction message sends to USB Key.
In this step, the mode that PC extracts the doubtful point record is described identical with step 102, repeats no more.
Step 202:USB Key writes down the doubtful point that receives demonstration and/or plays to the user.
Step 203:USB Key determines whether to receive user's affirmation information, if then execution in step 204; Otherwise, execution in step 207.
Step 204:USB Key writes down the processing of signing to doubtful point, and the data after will signing send to background server by PC.
Whether step 205: background server extracts the doubtful point record in the transaction message, and correct at the signature of the data check behind the signature that receives in view of the above, if then execution in step 206; Otherwise, execution in step 207.
Need to prove that it is not to carry out in this step that the doubtful point in the background server extraction transaction message writes down this operation, only for illustrating, before also can being placed on step 202, carry out herein.
In this step, the mode that background server extracts the doubtful point record in the transaction message is described identical with step 102, and in addition, how whether signature verification is prior art correctly to background server, so all repeat no more.
Step 206: finish this transaction, process ends.
Step 207: end this transaction, process ends.
Equally, in the present embodiment, PC can be about to it and send to USB Key after whenever extract a doubtful point record, also can more all doubtful point records be sent to USB Key together after extracting all doubtful point records.
Based on said method, Fig. 3 realizes the composition structural representation of the system embodiment of batch electronic transaction for the present invention.As shown in Figure 3, this system comprises: network side subsystem 31 and electric signing tools 32;
Network side subsystem 31 is used to receive the Transaction Information that the user imports, and generates transaction message, extracts the doubtful point record in the described transaction message, sends to electric signing tools 32, comprises the transaction record of one or more in the described transaction message; And receive from the data behind the signature of electric signing tools 32, whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended;
Electric signing tools 32 is used for the doubtful point record demonstration that will receive and/or plays to the user, and determine whether to receive user's affirmation information, if then doubtful point is write down the processing of signing, and the data after will signing send to network side 31; Otherwise, end this transaction.
Wherein, network side subsystem 31 can specifically comprise: PC 311 and background processor 312;
PC 311 is used to receive the Transaction Information of user's input, generates transaction message and sends to background server 312 according to described Transaction Information, and be responsible for transmitting the data of contact before background server 312 and the electric signing tools 32;
Background server 312 is used for extracting the doubtful point record of the transaction message that is received from PC 311, sends to electric signing tools 32 by PC 311; And pass through PC 311 receptions from the data behind the signature of electric signing tools 32, whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended.
Perhaps,
PC 311 is used to receive the Transaction Information that the user imports, and generates transaction message according to described Transaction Information and sends to background server 312, and the doubtful point record that extracts simultaneously in the transaction message sends to electric signing tools 32; And the responsible data of coming and going before background server 312 and the electric signing tools 32 of transmitting;
Background server 312, be used for extracting the doubtful point record of the transaction message that is received from PC 311, and pass through PC 311 receptions from the data behind the signature of electric signing tools 32, whether the doubtful point record signature verification that extracts according to self is correct, if, then finish this transaction, otherwise, this transaction ended.
Fig. 4 realizes the composition structural representation of the device embodiment of batch electronic transaction for the present invention.As shown in Figure 4, this device comprises:
Receiving element 41 is used to receive the Transaction Information of user's input, and generates transaction message;
Extract transmitting element 42, be used for extracting the doubtful point record of described transaction message, send to electric signing tools 32; The transaction record that comprises one or more in the described transaction message;
Wherein, extract in the transmitting element 42 and can specifically comprise:
Send subelement 422, the doubtful point record that is used for determining sends to electric signing tools 32.
Usually, above-mentioned transaction record comparison item is: transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name.
In actual applications, each unit in the device shown in Figure 4 can lay respectively in the different equipment, such as, receiving element 41 can be arranged in PC 311, and extraction transmitting element 42 and verification unit 43 can be arranged in background server 312; Perhaps, receiving element 41 and extraction transmitting element 42 can be arranged in PC 311, and verification unit 43 is arranged in background server 312.
Fig. 5 is the composition structural representation of electric signing tools embodiment of the present invention.As shown in Figure 5, comprising:
USB interface 51 is used to connect PC 311;
The unit 52 that displays the play, the doubtful point record that is used for being received from PC 311 show and/or play to the user;
Judging unit 53 is used to judge whether to receive user's affirmation information, and judged result is notified to performance element 54;
Performance element 54, be used for when judged result be when receiving user's affirmation information, to the processing of signing of doubtful point data, and the data after will signing send to PC 311 by USB interface 51; Otherwise, end this transaction.
The concrete workflow of system shown in Fig. 3,4 and 5 and device embodiment please refer to the respective description among the embodiment of method shown in Fig. 1 and 2, repeats no more herein.
In a word, adopt technical scheme of the present invention, when carrying out batch electronic transaction, do not need the All Activity record that batch electronic transaction is included all to show and/or play to the user, but only the doubtful point of determining is write down demonstration and/or plays to the user, determine for the user, need user's established data amount thereby not only can significantly reduce, and can guarantee the security of batch electronic transaction; And, doubtful point record extraction work in the scheme of the present invention need not to be finished by electric signing tools, but by network equipment, as PC or background server the doubtful point record that extracts is sent to electric signing tools, like this, incompatible and situation that electric signing tools that cause can't be discerned is convenient for users with regard to having avoided occurring the transaction form; Have again, scheme of the present invention need not to change the existing structure of batch electronic transaction system when realizing, only need the software of corresponding adjustment USB Key, PC and background server to get final product, and a lot of technology in implementation procedure are existing mature technology, are convenient to popularize.
In sum, more than be preferred embodiment of the present invention only, be not to be used to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (14)
1, a kind of method that realizes batch electronic transaction is characterized in that, this method comprises:
Network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools; The transaction record that comprises one or more in the described transaction message;
Described electric signing tools writes down the doubtful point that receives demonstration and/or plays to the user, and determines whether to receive user's affirmation information, if then described doubtful point is write down the processing of signing, and the data after will signing send to described network side; Otherwise, end this transaction;
Whether described network side signature verification is correct, if then finish this transaction; Otherwise, end this transaction.
2, method according to claim 1 is characterized in that, described network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools and comprises:
Personal computer PC receives the Transaction Information of user's input, generates transaction message and sends to background server according to described Transaction Information; Doubtful point in the transaction message that described background server extraction receives writes down and sends to described electric signing tools by described PC;
Whether described network side signature verification correctly comprises:
Data after described PC will be signed send to described background server, and whether described background server signature verification is correct.
3, method according to claim 1 is characterized in that, described network side receives the Transaction Information of user's input, generates transaction message, and extracts the doubtful point record in the described transaction message, sends to electric signing tools and comprises:
PC receives the Transaction Information of user's input, generates transaction message according to described Transaction Information and sends to background server, and simultaneously, the doubtful point record that described PC extracts in the described transaction message sends to electric signing tools;
Whether described network side signature verification correctly comprises:
Data after described PC will be signed send to described background server, and described background server is according to the doubtful point record that extracts in the transaction message that receives, and whether signature verification is correct.
According to each described method in the claim 1~3, it is characterized in that 4, the doubtful point record in the described extraction transaction message comprises:
Compare item according to predefined transaction record, transaction record in the described transaction message is compared with known Reference Transactions record one by one, determine whether to exist in the described transaction message transaction record that is different from described Reference Transactions record, if determine that then this transaction record is the doubtful point record.
5, method according to claim 4 is characterized in that, described transaction record comparison item is: transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name.
According to each described method in the claim 1~3, it is characterized in that 6, the doubtful point record in the described extraction transaction message comprises:
Search the N bar transaction record that dealing money is the highest in the described transaction message, with this N bar transaction record as the doubtful point record; Described N is a positive integer, and its value is for preestablishing.
7, method according to claim 1 is characterized in that, the doubtful point record in the described transaction message of described extraction sends to electric signing tools and comprises:
Whenever extract a doubtful point record, then send to described electric signing tools;
Perhaps, after extracting all doubtful point records, unification sends to described electric signing tools.
8, a kind of system that realizes batch electronic transaction is characterized in that, comprising: network side subsystem and electric signing tools;
Described network side subsystem is used to receive the Transaction Information that the user imports, and generates transaction message, extracts the doubtful point record in the described transaction message, sends to electric signing tools, comprises the transaction record of one or more in the described transaction message; And receive from the data behind the signature of described electric signing tools, whether signature verification is correct, if then finish this transaction; Otherwise, end this transaction;
Described electric signing tools, be used for the doubtful point record demonstration that will receive and/or play to the user, and determine whether to receive user's affirmation information, if, then described doubtful point is write down the processing of signing, and the data after will signing send to described network side; Otherwise, end this transaction.
9, system according to claim 8 is characterized in that, described network side subsystem comprises: personal computer PC and background processor;
Described PC is used to receive the Transaction Information that the user imports, and generates transaction message and sends to described background server according to described Transaction Information, and transmit the data of coming and going before described background server and the described electric signing tools;
Described background server is used for extracting the doubtful point record of the transaction message that is received from described PC, sends to described electric signing tools by described PC; And receive from the data behind the signature of described electric signing tools by described PC, whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended.
10, system according to claim 9 is characterized in that, described network side subsystem comprises: PC and background processor;
Described PC is used to receive the Transaction Information that the user imports, and generates transaction message according to described Transaction Information and sends to described background server, and the doubtful point record that extracts simultaneously in the described transaction message sends to described electric signing tools; And transmit the data of contact before described background server and the described electric signing tools;
Described background server, be used for extracting the doubtful point record of the transaction message that is received from described PC, and receive from the data behind the signature of described electric signing tools by described PC, whether the doubtful point record signature verification that extracts according to self is correct, if, then finish this transaction, otherwise, this transaction ended.
11, a kind of device of realizing batch electronic transaction is characterized in that, this device comprises: receiving element, extraction transmitting element and verification unit;
Described receiving element is used to receive the Transaction Information that the user imports, and generates transaction message;
Described extraction transmitting element is used for extracting the doubtful point record of described transaction message, and sends to electric signing tools; The transaction record that comprises one or more in the described transaction message;
Described verification unit is used to receive the data from behind the signature of described electric signing tools, and whether signature verification is correct, if, then finish this transaction, otherwise, this transaction ended.
12, device according to claim 11 is characterized in that, described extraction transmitting element comprises:
Extract subelement, be used for comparing item according to predefined transaction record, transaction record in the described transaction message is compared with known Reference Transactions record one by one, determine whether to exist in the described transaction message transaction record that is different from described Reference Transactions record, if determine that then this transaction record is the doubtful point record; Perhaps, be used for searching the highest N bar transaction record of described transaction message dealing money, as the doubtful point record, described N is a positive integer with this N bar transaction record, and its value is for preestablishing;
Send subelement, the doubtful point record that is used for determining sends to described electric signing tools.
13, device according to claim 12 is characterized in that, described transaction record comparison item is: transaction number of the account or negotiator's name, or transaction number of the account and negotiator's name.
14, a kind of electric signing tools is characterized in that, comprising: general-purpose serial bus USB interface, the unit that displays the play, judging unit and performance element;
Described USB interface is used to connect personal computer PC;
The described unit that displays the play is used for will being received from the doubtful point record demonstration of described PC and/or playing to the user;
Described judging unit is used to judge whether to receive the affirmation information of user at described doubtful point record, and judged result is notified to described performance element;
Described performance element, be used for when judged result be when receiving user's affirmation information, to the processing of signing of described doubtful point data, and the data after will signing send to described PC; Otherwise, end this transaction.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2008102271106A CN101408970A (en) | 2008-11-21 | 2008-11-21 | Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool |
| CN201610801230.7A CN106355496A (en) | 2008-11-21 | 2008-11-21 | Method, system and device for realizing batch electronic transactions as well as electronic signature tool |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2008102271106A CN101408970A (en) | 2008-11-21 | 2008-11-21 | Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool |
Related Child Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610801230.7A Division CN106355496A (en) | 2008-11-21 | 2008-11-21 | Method, system and device for realizing batch electronic transactions as well as electronic signature tool |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101408970A true CN101408970A (en) | 2009-04-15 |
Family
ID=40571974
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2008102271106A Pending CN101408970A (en) | 2008-11-21 | 2008-11-21 | Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool |
| CN201610801230.7A Pending CN106355496A (en) | 2008-11-21 | 2008-11-21 | Method, system and device for realizing batch electronic transactions as well as electronic signature tool |
Family Applications After (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610801230.7A Pending CN106355496A (en) | 2008-11-21 | 2008-11-21 | Method, system and device for realizing batch electronic transactions as well as electronic signature tool |
Country Status (1)
| Country | Link |
|---|---|
| CN (2) | CN101408970A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103326862A (en) * | 2013-06-20 | 2013-09-25 | 天地融科技股份有限公司 | Electronically signing method and system |
| CN103870959A (en) * | 2012-12-14 | 2014-06-18 | 北京旋极信息技术股份有限公司 | Batch electronic transaction processing method and electronic signature device |
| CN104463016A (en) * | 2014-12-22 | 2015-03-25 | 厦门大学 | Data safety storing method suitable for IC cards and two-dimension codes |
| CN105931049A (en) * | 2016-01-22 | 2016-09-07 | 天地融科技股份有限公司 | Electronic signature device, and trading method and trading system thereof |
| CN107609872A (en) * | 2017-09-07 | 2018-01-19 | 北京海泰方圆科技股份有限公司 | transaction message processing and sending method and device |
| CN107911220A (en) * | 2017-11-15 | 2018-04-13 | 深圳市文鼎创数据科技有限公司 | A kind of endorsement method, signature apparatus and terminal device |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1956002A (en) * | 2005-10-27 | 2007-05-02 | 李东声 | Method and device for enhancing safety of electronic signature apparatus |
| CN1845185A (en) * | 2006-02-05 | 2006-10-11 | 杨杰 | Method and system for checking true/false via online checking |
-
2008
- 2008-11-21 CN CNA2008102271106A patent/CN101408970A/en active Pending
- 2008-11-21 CN CN201610801230.7A patent/CN106355496A/en active Pending
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103870959A (en) * | 2012-12-14 | 2014-06-18 | 北京旋极信息技术股份有限公司 | Batch electronic transaction processing method and electronic signature device |
| CN103326862A (en) * | 2013-06-20 | 2013-09-25 | 天地融科技股份有限公司 | Electronically signing method and system |
| CN103326862B (en) * | 2013-06-20 | 2017-02-22 | 天地融科技股份有限公司 | Electronically signing method and system |
| CN104463016A (en) * | 2014-12-22 | 2015-03-25 | 厦门大学 | Data safety storing method suitable for IC cards and two-dimension codes |
| CN105931049A (en) * | 2016-01-22 | 2016-09-07 | 天地融科技股份有限公司 | Electronic signature device, and trading method and trading system thereof |
| CN107609872A (en) * | 2017-09-07 | 2018-01-19 | 北京海泰方圆科技股份有限公司 | transaction message processing and sending method and device |
| CN107911220A (en) * | 2017-11-15 | 2018-04-13 | 深圳市文鼎创数据科技有限公司 | A kind of endorsement method, signature apparatus and terminal device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106355496A (en) | 2017-01-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101651675B (en) | By the method and system that authentication code is verified client | |
| CN101241572B (en) | A kind of method of operating of electric signing tools and electric signing tools | |
| CN104038924B (en) | Realize the method and system of Resource Exchange information processing | |
| CN101834946A (en) | Method for performing safe mobile phone payment and mobile phone for performing safe payment | |
| CN101221641B (en) | On-line trading method and its safety affirmation equipment | |
| CN102103778A (en) | Mobile payment system, mobile terminal and method for realizing mobile payment service | |
| CN104751334A (en) | Service processing method, device and system | |
| CN102054258A (en) | Electronic bank safety certificating method and system based on mobile equipment | |
| CN202771476U (en) | Security certification system | |
| CN104618116A (en) | Collaborative digital signature system and method | |
| CN102238193A (en) | Data authentication method and system using same | |
| TW200929031A (en) | On-line payment system and payment procedure | |
| CN101408970A (en) | Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| CN104933565A (en) | IC card transaction method and IC card transaction system | |
| CN102867374B (en) | Bank card applied to on-line banking and on-line banking safety system | |
| CN104301288B (en) | Online identity certification, online transaction checking, the method and system of online verification protection | |
| EP1142194A1 (en) | Method and system for implementing a digital signature | |
| CN101212301B (en) | Authentication device and method | |
| KR102333811B1 (en) | System and method for processing card payment based on block-chain | |
| CN103295132A (en) | Method and system for processing data | |
| TWI748630B (en) | Two-dimensional bar code payment method based on mobile phone business card and its payment system, computer readable storage medium and computer equipment | |
| CN1988444A (en) | Digital signature device for confirming needed signature data and its method for confirming data | |
| CN102609842A (en) | Payment cipher device based on hardware signature equipment, and application method of payment cipher device | |
| CN104144256A (en) | Portable password device based on mobile terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: BEIJING TENDYRON SCI-TECH CO., LTD. Free format text: FORMER OWNER: LI DONGSHENG Effective date: 20100707 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 100083 ROOM 1810, TOWER B, JINMA BUILDING, NO.17, QINGHUA EAST ROAD, HAIDIAN DISTRICT, BEIJING CITY TO: 100083 1810, TOWER B, JINMA BUILDING, NO.17, QINGHUA EAST ROAD, HAIDIAN DISTRICT, BEIJING CITY |
|
| TA01 | Transfer of patent application right |
Effective date of registration: 20100707 Address after: 100083, B, block 17, golden building, No. 1810 Qinghua East Road, Beijing, Haidian District Applicant after: Beijing Tendyron Technology Co., Ltd. Address before: 100083, room 1810, block B, golden building, No. 17, Qinghua East Road, Beijing, Haidian District Applicant before: Li Dongsheng |
|
| C53 | Correction of patent for invention or patent application | ||
| CB02 | Change of applicant information |
Address after: 100083, room 1810, block B, golden building, No. 17, Qinghua East Road, Beijing, Haidian District Applicant after: Tendyron Technology Co., Ltd. Address before: 100083, B, block 17, golden building, No. 1810 Qinghua East Road, Beijing, Haidian District Applicant before: Beijing Tendyron Technology Co., Ltd. |
|
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20090415 |