CN102254264A - Security control method and security control system of mobile payment - Google Patents
Security control method and security control system of mobile payment Download PDFInfo
- Publication number
- CN102254264A CN102254264A CN2011102356568A CN201110235656A CN102254264A CN 102254264 A CN102254264 A CN 102254264A CN 2011102356568 A CN2011102356568 A CN 2011102356568A CN 201110235656 A CN201110235656 A CN 201110235656A CN 102254264 A CN102254264 A CN 102254264A
- Authority
- CN
- China
- Prior art keywords
- mobile phone
- data
- security token
- payment
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3223—Realising banking transactions through M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3226—Use of secure elements separate from M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3215—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a plurality of channels
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
Abstract
The invention discloses a security control method and a security control system of mobile payment. The method comprises the following steps that: a transaction platform is logged in through a mobile phone, and a voice channel of the mobile phone accesses a security token; the transaction platform and the security token carry out two-way authentication; after the two-way authentication passes, the mobile phone imports user payment data and transmits the user payment data to the security token through the voice channel; the security token calls an encryption algorithm and key data, which are arranged in the security token, encrypts the user payment data, and returns the encrypted user payment data and corresponding digital signing information to the mobile phone; and the mobile phone transmits the encrypted user payment data and the corresponding digital signing information to the transaction platform. By adoption of the embodiment of the invention, risks on faking of the user identity, falsification of transaction information and theft of account assets can be reduced, and the security of the mobile payment is improved.
Description
Technical field
The present invention relates to the financial technology field, relate in particular to a kind of mobile-phone payment method of controlling security and system.
Background technology
Mobile-phone payment is also referred to as mobile payment (Mobile Payment), is that the mobile subscriber uses its portable terminal (normally mobile phone) that a kind of method of service that account is paid is carried out in the commodity or the service of being consumed.Domestic each commercial bank has successively opened the Mobile banking of oneself in some areas, personalized financial service of providing convenience for mobile phone user and channel of disbursement efficiently.But the overall safety situation of mobile-phone payment can not be satisfactory, how to guarantee mobile-phone payment safety, becomes the focus of user and bank.
The affiliated party of mobile-phone payment mainly comprises: acquirer system, mobile phone bill system, Mobile banking and shopping website.Wherein, the acquirer system is meant the closing unit or the enterprise of collection payment for goods such as each big bank, system of Unionpay; Mobile phone bill system supports the mobile phone possessor of mobile-phone payment, belongs to the entity of bill side; Mobile banking is one of transaction platform.
When the user used mobile-phone payment, its transaction flow was as follows: (1) transaction platform access authentication; (2) businessman or website are according to the goods of buying, to the concrete collection amount of transaction platform input; (3) client imports its identity information by mobile phone to transaction platform; (4) transaction platform is submitted to the bank backstage with businessman and customer information, carries out corresponding clearing.At present, the method for security protection that is used for mobile-phone payment is: payment account and mobile phone are bound, and adopt static password and carry out authentication based on the dynamic password of note.
There is following shortcoming in existing mobile phone payment authentication method: when using mobile-phone payment, payment account and mobile phone must be bound, if mobile phone is lost accidentally, and the payment cipher that the user is provided with is too simple, can be easy to the hijack accounts by other people.And current phone virus can write down by monitoring keyboard, interception is distorted network packet and stolen user's payment account password, perhaps illegally distorts Transaction Information, even can reach the purpose that malice is consumed or transferred accounts by analogue-key.
Summary of the invention
The embodiment of the invention proposes a kind of mobile-phone payment method of controlling security and system, can reduce that user identity is falsely used, Transaction Information is distorted the risk stolen with the account fund, improves the security of mobile-phone payment.
The mobile-phone payment method of controlling security that the embodiment of the invention provides comprises:
S1, land transaction platform by mobile phone, and the voice channel access security token of described mobile phone; Described transaction platform and described security token carry out two-way authentication;
After S2, two-way authentication were passed through, described mobile phone imported user's payment data, and by voice channel described user's payment data was sent to described security token;
S3, described security token call built-in cryptographic algorithm and key data, and described user's payment data is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned described mobile phone;
S4, described mobile phone user's payment data and the corresponding digital signing messages after with encryption is sent to transaction platform.
Wherein, described security token adopts 25mm headset plug or the 35mm headset plug that meets YD/T 1538-2006 5.1.2.6 standard, inserts the speech interface of described mobile phone.
Further, described security token is provided with protocol converter, micro-control unit and storer;
Described protocol converter is used for data progressive die number conversion that mobile phone is sent, and the filtering sound signal sends described micro-control unit again to and authenticates or encryption;
Described protocol converter also is used for the data after authentication or the encryption are advanced digital-to-analog conversion, generates voice signal, is sent to mobile phone by voice channel again;
The key memory block that described storer comprises transaction data memory block, program storage area and can only read to write is respectively applied for and preserves transaction data, cryptographic algorithm and key data.
Correspondingly, the hand call payment system that the embodiment of the invention provides comprises mobile phone, security token and Web bank's server;
Described mobile phone is used to land transaction platform, establishes a communications link with described Web bank server; And described mobile phone has speech interface, is used to insert described security token;
Described mobile phone also is used for authentication information and user's payment data are sent to security token;
Described security token stores cryptographic algorithm and key data, be used for the authentication information that described mobile phone sends is authenticated, user's payment data that described mobile phone sends is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned described mobile phone;
User payment data and the corresponding digital signing messages of described mobile phone after with encryption is sent to described Web bank server.
Further, described security token comprises headset plug, switch, protocol converter, micro-control unit, storer and power supply;
Described headset plug is connected with the speech interface of described mobile phone;
Described switch is arranged on described headset plug place, when described headset plug inserts mobile phone, and switch opens, energized;
Described protocol converter is connected with described headset plug, micro-control unit respectively, is used for data are changed, and the filtering sound signal;
Described storer is connected with described micro-control unit, is used for storage encryption algorithm and key data;
Described micro-control unit receives the data of described mobile phone by voice channel, and from described storer reading encrypted algorithm and key data, described data are carried out encrypting and authenticating handle.
Mobile-phone payment method of controlling security and system that the embodiment of the invention provides have following beneficial effect:
Storage encryption algorithm and key data in security token; When using mobile-phone payment, mobile phone is set up by voice channel with security token and is communicated by letter, and need authenticate, encrypt the mobile phone payment data by security token, and user identity is falsely used, Transaction Information is distorted the risk stolen with the account fund thereby reduce.And speech interface is the general-purpose interface of mobile phone, and security token inserts mobile phone by voice channel, highly versatile.
Description of drawings
Fig. 1 is the schematic flow sheet of the mobile-phone payment method of controlling security that provides of the embodiment of the invention one;
Fig. 2 is the structural representation of the hand call payment system that provides of the embodiment of the invention two;
Fig. 3 is the structural representation of the security token that provides of the embodiment of the invention three;
Fig. 4 is the mobile phone that provides of the embodiment of the invention four and the interface synoptic diagram of security token;
Fig. 5 is the workflow synoptic diagram of the hand call payment system that provides of the embodiment of the invention five.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that is obtained under the creative work prerequisite.
Referring to Fig. 1, be the schematic flow sheet of the mobile-phone payment method of controlling security that provides of the embodiment of the invention one, this method may further comprise the steps:
S1, land transaction platform by mobile phone, and the voice channel access security token of described mobile phone; Transaction platform and security token carry out two-way authentication;
Wherein, described transaction platform is corresponding to Web bank's server; After mobile phone lands transaction platform, promptly establish a communications link with the Web bank server.
After S2, two-way authentication were passed through, mobile phone imported user's payment data, and by voice channel user's payment data was sent to security token;
S3, security token call built-in cryptographic algorithm and key data, and user's payment data is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned mobile phone;
S4, mobile phone user's payment data and the corresponding digital signing messages after with encryption is sent to transaction platform.
Concrete, in step S1, transaction platform and security token adopt the RSA security protocol to carry out two-way authentication, comprising:
S11, mobile phone land transaction platform, obtain authentication information, and authentication information is sent to security token; Authentication information comprises a random number, and the ciphertext that is obtained by public key encryption again after this random number process HASH calculating;
S12, security token read random number from authentication information, call built-in HASH algorithm random number is calculated, and obtain the digital digest of random number;
S13, security token read ciphertext from authentication information, call built-in private key ciphertext is decrypted; Data and digital digest that deciphering is obtained compare, if both are identical, judge that then transaction platform is legal; Otherwise carry out S16;
S14, security token carry out HASH calculating to random number and parameters for authentication, and the data after with private key HASH being calculated are again encrypted, and data encrypted is returned mobile phone, are sent to transaction platform by mobile phone;
S15, transaction platform are decrypted the data that security token returns with PKI, and data after the deciphering and corresponding HASH information are compared, if identical, judge that then security token is legal; Otherwise carry out S16;
S16, termination mobile-phone payment business.
Wherein, user's payment data comprises accounts information, encrypted message and Transaction Information.In step S3, security token adopts TLS, SSL or RSA cryptographic algorithms that user's payment data is encrypted.
More specifically, security token adopts 25mm headset plug or the 35mm headset plug that meets YD/T 1538-2006 5.1.2.6 standard, inserts the speech interface of described mobile phone.
Security token is provided with protocol converter, micro-control unit and storer; Protocol converter is used for data progressive die number conversion that mobile phone is sent, and the filtering sound signal sends that micro-control unit authenticates or encryption to again; Protocol converter also is used for the data after authentication or the encryption are advanced digital-to-analog conversion, generates voice signal, is sent to mobile phone by voice channel again.
The key memory block that storer comprises transaction data memory block, program storage area and can only read to write is respectively applied for and preserves transaction data, cryptographic algorithm and key data.
The mobile-phone payment method of controlling security that the embodiment of the invention provides can be applicable in the hand call payment system, can reduce that user identity is falsely used, Transaction Information is distorted the risk stolen with the account fund, improves the security of mobile-phone payment.
Referring to Fig. 2, be the structural representation of the hand call payment system that provides of the embodiment of the invention two.
The mobile-phone payment safety guard that present embodiment provides comprises: mobile phone 10, security token 20 and Web bank's server 30.Wherein, mobile phone 10 is used to land transaction platform, establishes a communications link with Web bank server 30; And mobile phone 10 has speech interface 11, is used for access security token 20.
Concrete, as shown in Figure 2, security token 20 comprises headset plug 21, switch 22, protocol converter 23, micro-control unit 24, storer 25 and power supply 26; As follows:
Preferably, the button electronic cell of power supply 26 employing+5V;
Preferably, the storer 25 of security token is the flash storer, the key memory block that comprises transaction data memory block, program storage area and can only read to write.Wherein, the transaction data memory block is used for the transaction data of memory mobile phone payment; Program storage area is used to store the handling procedure (being cryptographic algorithm) of bank's authentication protocol; The key memory block is used for the storage key data.
Referring to Fig. 3, be the structural representation of the security token that provides of the embodiment of the invention three.
More specifically, the headset plug 21 of security token 20 comprises data input pin I and data output end O; Protocol converter 23 comprises analog to digital converter and digital to analog converter.Wherein, data input pin I is connected with analog to digital converter, and data output end O is connected with digital to analog converter.
Preferably, the speech interface of mobile phone is 25mm earphone channel interface or the 35mm earphone channel interface that meets YD/T 1538-2006 5.1.2.6 standard.
Referring to Fig. 4, be the mobile phone that provides of the embodiment of the invention four and the interface synoptic diagram of security token.
The speech interface 11 of mobile phone comprises L channel 1, R channel 2, GND loop line 3, receiver MIC mouth 4 and receiver MIC mouth 5.Behind the headset plug 21 of the speech interface 11 access security tokens of mobile phone, L channel 1, R channel 2 all are connected with the data input pin I of security token; Receiver MIC mouth 4, receiver MIC mouth 5 all are connected with the data output end O of security token.
The course of work of security token provided by the invention is as follows:
(1), powers up
Security token is supported hot plug technology, be inserted into the speech interface of mobile phone when security token after, switch opens, system begin power supply, all devices is started working, micro-control unit MCU is loading procedure from the flash storer, and reads key data.
(2), the reception of authentication information data
After the passage of mobile phone and security token was set up, the data of needs being carried out authenticated encryption were sent to security token.After security token received the authentication information data that the earphone channel transfer comes, analog to digital converter was changed and is filtered data, the shielded sound data.
During concrete enforcement, therefore the carrier frequency of authentication information data can adopt the filtering technique filtering sound far above sound frequency.
(3), the processing of authentication information data
The MCU of security token carries out encryption to the data message that receives, and data are authenticated according to the key in the FLASH storer, if authentication is passed through, then return the digital signature information after the encryption, and relevant Transaction Information is stored in the flash storer.
(4), data send
Data after the MCU of security token will handle through encrypting and authenticating are sent to digital to analog converter, convert voice signal to, and send on the mobile phone by voice channel, are sent on Mobile banking's server by mobile phone to authenticate again.
(5), go
Pull up security token from mobile phone, switch disconnects, and power supply will be stopped power supply, the MCU safety systems.
The embodiment of the invention stores cryptographic algorithm and key data in security token, when the user uses mobile-phone payment, need authenticate, encrypt the mobile phone payment data by security token, be falsely used the risk stolen, improve the security of mobile-phone payment with the account fund thereby reduce user identity.
Referring to Fig. 5, be the workflow synoptic diagram of the hand call payment system that provides of the embodiment of the invention five.The workflow of hand call payment system is as follows:
S101, mobile phone land transaction platform, establish a communications link with the Web bank server;
S102, mobile phone obtain the transaction platform safety certificate;
S103, the speech interface access security token whether of judging mobile phone; If then carry out S104; Otherwise carry out S108;
S104, security token authenticate described safety certificate according to built-in cryptographic algorithm and key data; This step is the mutual authentication process of security token and transaction platform;
S105, judge whether two-way authentication is passed through; If then carry out S106; Otherwise carry out S108;
S106, startup safe trading platform;
Safe trading platform needs security token that the mobile-phone payment related data is authenticated and encrypts, to improve the mobile-phone payment security;
S107, mobile phone import user's payment data, and described user's payment data is sent to security token;
S108, startup general transaction platform;
The general transaction platform is meant according to classic method and carries out the mobile-phone payment transaction, do not need security token that data are authenticated and encrypt;
S109, the speech interface access security token whether of judging mobile phone; If then carry out S111; Otherwise carry out S110;
S110, closed safe transaction platform switch to the general transaction platform;
S111, security token call built-in cryptographic algorithm and key data, and user's payment data is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned mobile phone;
S112, mobile phone user's payment data and the corresponding digital signing messages after with encryption submitted to Web bank's server;
S113, Web bank's server are to mobile phone feedback trading result.
Mobile-phone payment method of controlling security and system that the embodiment of the invention provides, storage encryption algorithm and key data in security token; When using mobile-phone payment, mobile phone is set up by voice channel with security token and is communicated by letter, and need authenticate, encrypt the mobile phone payment data by security token, and user identity is falsely used, Transaction Information is distorted the risk stolen with the account fund thereby reduce.And speech interface is the general-purpose interface of mobile phone, and security token inserts mobile phone by voice channel, highly versatile.
The above is a preferred implementation of the present invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also are considered as protection scope of the present invention.
Claims (10)
1. a mobile-phone payment method of controlling security is characterized in that, comprising:
S1, land transaction platform by mobile phone, and the voice channel access security token of described mobile phone; Described transaction platform and described security token carry out two-way authentication;
After S2, two-way authentication were passed through, described mobile phone imported user's payment data, and by voice channel described user's payment data was sent to described security token;
S3, described security token call built-in cryptographic algorithm and key data, and described user's payment data is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned described mobile phone;
S4, described mobile phone user's payment data and the corresponding digital signing messages after with encryption is sent to transaction platform.
2. mobile-phone payment method of controlling security as claimed in claim 1 is characterized in that, in described step S1, described transaction platform and described security token adopt the RSA security protocol to carry out two-way authentication, comprising:
S11, mobile phone land transaction platform, obtain authentication information, and described authentication information is sent to security token; Described authentication information comprises a random number, and the ciphertext that is obtained by public key encryption again after this random number process HASH calculating;
S12, security token read random number from described authentication information, call built-in HASH algorithm described random number is calculated, and obtain the digital digest of described random number;
S13, security token read ciphertext from described authentication information, call built-in private key described ciphertext is decrypted; Data and described digital digest that deciphering is obtained compare, if both are identical, judge that then transaction platform is legal; Otherwise carry out S16;
S14, security token carry out HASH calculating to described random number and parameters for authentication, and the data after with private key HASH being calculated are again encrypted, and data encrypted is returned mobile phone, are sent to transaction platform by mobile phone;
S15, transaction platform are decrypted the data that described security token returns with PKI, and data after the deciphering and corresponding HASH information are compared, if identical, judge that then security token is legal; Otherwise carry out S16;
S16, termination mobile-phone payment business.
3. mobile-phone payment method of controlling security as claimed in claim 2 is characterized in that, described user's payment data comprises accounts information, encrypted message and Transaction Information.
4. mobile-phone payment method of controlling security as claimed in claim 3 is characterized in that, in described step S3, described security token adopts TLS, SSL or RSA cryptographic algorithms that described user's payment data is encrypted.
5. as each described mobile-phone payment method of controlling security of claim 1~4, it is characterized in that described security token adopts 25mm headset plug or the 35mm headset plug that meets YD/T 1538-2006 5.1.2.6 standard, insert the speech interface of described mobile phone.
6. mobile-phone payment method of controlling security as claimed in claim 5 is characterized in that described security token is provided with protocol converter, micro-control unit and storer;
Described protocol converter is used for data progressive die number conversion that mobile phone is sent, and the filtering sound signal sends described micro-control unit again to and authenticates or encryption;
Described protocol converter also is used for the data after authentication or the encryption are advanced digital-to-analog conversion, generates voice signal, is sent to mobile phone by voice channel again;
The key memory block that described storer comprises transaction data memory block, program storage area and can only read to write is respectively applied for and preserves transaction data, cryptographic algorithm and key data.
7. a hand call payment system is characterized in that, comprises mobile phone, security token and Web bank's server;
Described mobile phone is used to land transaction platform, establishes a communications link with described Web bank server; And described mobile phone has speech interface, is used to insert described security token;
Described mobile phone also is used for authentication information and user's payment data are sent to security token;
Described security token stores cryptographic algorithm and key data, be used for the authentication information that described mobile phone sends is authenticated, user's payment data that described mobile phone sends is carried out encryption, and user's payment data after the encryption and corresponding digital signing messages are returned described mobile phone;
User payment data and the corresponding digital signing messages of described mobile phone after with encryption is sent to described Web bank server.
8. hand call payment system as claimed in claim 7 is characterized in that described security token comprises headset plug, switch, protocol converter, micro-control unit, storer and power supply;
Described headset plug is connected with the speech interface of described mobile phone;
Described switch is arranged on described headset plug place, when described headset plug inserts mobile phone, and switch opens, energized;
Described protocol converter is connected with described headset plug, micro-control unit respectively, is used for data are changed, and the filtering sound signal;
Described storer is connected with described micro-control unit, is used for storage encryption algorithm and key data;
Described micro-control unit receives the data of described mobile phone by voice channel, and from described storer reading encrypted algorithm and key data, described data are carried out encrypting and authenticating handle.
9. hand call payment system as claimed in claim 8 is characterized in that, the speech interface of described mobile phone is 25mm earphone channel interface or the 35mm earphone channel interface that meets YD/T 1538-2006 5.1.2.6 standard.
10. hand call payment system as claimed in claim 8 is characterized in that the storer of described security token is the flash storer, the key memory block that comprises transaction data memory block, program storage area and can only read to write.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102356568A CN102254264A (en) | 2011-08-17 | 2011-08-17 | Security control method and security control system of mobile payment |
| PCT/CN2012/078151 WO2013023499A1 (en) | 2011-08-17 | 2012-07-04 | Mobile phone payment security control method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102356568A CN102254264A (en) | 2011-08-17 | 2011-08-17 | Security control method and security control system of mobile payment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102254264A true CN102254264A (en) | 2011-11-23 |
Family
ID=44981509
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011102356568A Pending CN102254264A (en) | 2011-08-17 | 2011-08-17 | Security control method and security control system of mobile payment |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN102254264A (en) |
| WO (1) | WO2013023499A1 (en) |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102685704A (en) * | 2012-05-16 | 2012-09-19 | 钱袋网(北京)信息技术有限公司 | Method and system for mobile phone trading |
| WO2013023499A1 (en) * | 2011-08-17 | 2013-02-21 | 广州广电运通金融电子股份有限公司 | Mobile phone payment security control method and system |
| CN103237306A (en) * | 2013-04-02 | 2013-08-07 | 程雪莲 | Usbkey of cellphone identity authentication terminal and application of Usbkey |
| CN103281186A (en) * | 2013-05-08 | 2013-09-04 | 上海众人网络安全技术有限公司 | Dynamic token based on Android system as well as transaction system and method |
| CN103338119A (en) * | 2013-06-08 | 2013-10-02 | 腾讯科技(深圳)有限公司 | Voice channel distribution method and voice system |
| CN103455914A (en) * | 2013-08-30 | 2013-12-18 | 深圳数字电视国家工程实验室股份有限公司 | Safety authentication method and remote controller and television payment system using same |
| CN103731266A (en) * | 2012-10-12 | 2014-04-16 | 北京微智全景信息技术有限公司 | Method and system for authenticating electronic certificate |
| WO2014041381A3 (en) * | 2012-09-12 | 2014-05-08 | Cellum Global Innovációs És Szolgáltató Zrt. | Application system for mobile payment and method for providing and using mobile means for payment |
| CN103839157A (en) * | 2014-02-25 | 2014-06-04 | 中国联合网络通信集团有限公司 | Electronic payment method, device and system |
| CN104166918A (en) * | 2014-08-20 | 2014-11-26 | 齐鲁工业大学 | Safety payment method based on audio key |
| CN104200366A (en) * | 2014-09-15 | 2014-12-10 | 长沙市梦马软件有限公司 | Voice payment authentication method and system |
| CN104702411A (en) * | 2015-03-14 | 2015-06-10 | 丁贤根 | Token design method integrating mobile payment safety authentication and mobile phone loss alarm |
| CN104702412A (en) * | 2015-03-14 | 2015-06-10 | 丁贤根 | External AI (Artificial Intelligence) safety certificate system of mobile phone for mobile payment and realizing method thereof |
| CN105050081A (en) * | 2015-08-19 | 2015-11-11 | 腾讯科技(深圳)有限公司 | Method, device and system for connecting network access device to wireless network access point |
| US9530289B2 (en) | 2013-07-11 | 2016-12-27 | Scvngr, Inc. | Payment processing with automatic no-touch mode selection |
| CN107274173A (en) * | 2017-05-11 | 2017-10-20 | 吴世贵 | A kind of sound wave payment method |
| CN108475373A (en) * | 2016-01-11 | 2018-08-31 | 万事达卡国际股份有限公司 | It generates and sends between computing devices and encrypted payment data message to realize that fund shifts |
| CN109417574A (en) * | 2016-09-23 | 2019-03-01 | 苹果公司 | Manage the authority of multiple users on electronic equipment |
| US11481754B2 (en) | 2012-07-13 | 2022-10-25 | Scvngr, Inc. | Secure payment method and system |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11127009B2 (en) | 2015-04-07 | 2021-09-21 | Omnyway, Inc. | Methods and systems for using a mobile device to effect a secure electronic transaction |
| CN108269084A (en) | 2017-01-03 | 2018-07-10 | 阿里巴巴集团控股有限公司 | A kind of method and device for progress barcode scanning payment on the mobile apparatus |
| CN109981654A (en) * | 2019-03-28 | 2019-07-05 | 安信数字(广州)科技有限公司 | Digital identity generation method and device |
| US11250414B2 (en) | 2019-08-02 | 2022-02-15 | Omnyway, Inc. | Cloud based system for engaging shoppers at or near physical stores |
| US11468432B2 (en) | 2019-08-09 | 2022-10-11 | Omnyway, Inc. | Virtual-to-physical secure remote payment to a physical location |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101236496A (en) * | 2007-01-29 | 2008-08-06 | 展讯通信(上海)有限公司 | Software consistency detector methods and apparatus |
| CN101841417A (en) * | 2010-03-12 | 2010-09-22 | 李勇 | Electronic signature device supporting short-distance wireless communication technology and method for ensuring safety of electronic transaction by applying same |
| CN102004977A (en) * | 2009-09-02 | 2011-04-06 | 深圳市证通电子股份有限公司 | Safe network payment method and system |
| CN201846343U (en) * | 2010-09-25 | 2011-05-25 | 北京天地融科技有限公司 | Electronic signature tool communicating with mobile phone through speech mode |
| CN102118251A (en) * | 2011-01-24 | 2011-07-06 | 郑州信大捷安信息技术有限公司 | Security authentication method for internet banking remote payment based on multi-interface intelligent safety card |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102254264A (en) * | 2011-08-17 | 2011-11-23 | 广州广电运通金融电子股份有限公司 | Security control method and security control system of mobile payment |
| CN202221590U (en) * | 2011-08-17 | 2012-05-16 | 广州广电运通金融电子股份有限公司 | Mobile phone payment safety protection device |
-
2011
- 2011-08-17 CN CN2011102356568A patent/CN102254264A/en active Pending
-
2012
- 2012-07-04 WO PCT/CN2012/078151 patent/WO2013023499A1/en active Application Filing
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101236496A (en) * | 2007-01-29 | 2008-08-06 | 展讯通信(上海)有限公司 | Software consistency detector methods and apparatus |
| CN102004977A (en) * | 2009-09-02 | 2011-04-06 | 深圳市证通电子股份有限公司 | Safe network payment method and system |
| CN101841417A (en) * | 2010-03-12 | 2010-09-22 | 李勇 | Electronic signature device supporting short-distance wireless communication technology and method for ensuring safety of electronic transaction by applying same |
| CN201846343U (en) * | 2010-09-25 | 2011-05-25 | 北京天地融科技有限公司 | Electronic signature tool communicating with mobile phone through speech mode |
| CN102118251A (en) * | 2011-01-24 | 2011-07-06 | 郑州信大捷安信息技术有限公司 | Security authentication method for internet banking remote payment based on multi-interface intelligent safety card |
Cited By (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2013023499A1 (en) * | 2011-08-17 | 2013-02-21 | 广州广电运通金融电子股份有限公司 | Mobile phone payment security control method and system |
| CN102685704A (en) * | 2012-05-16 | 2012-09-19 | 钱袋网(北京)信息技术有限公司 | Method and system for mobile phone trading |
| US11481754B2 (en) | 2012-07-13 | 2022-10-25 | Scvngr, Inc. | Secure payment method and system |
| US10504110B2 (en) | 2012-09-12 | 2019-12-10 | Cellum Global Innovációs És Szolgáltató Zrt | Application system for mobile payment and method for providing and using mobile means for payment |
| WO2014041381A3 (en) * | 2012-09-12 | 2014-05-08 | Cellum Global Innovációs És Szolgáltató Zrt. | Application system for mobile payment and method for providing and using mobile means for payment |
| CN103731266B (en) * | 2012-10-12 | 2017-05-10 | 北京微智全景信息技术有限公司 | Method and system for authenticating electronic certificate |
| CN103731266A (en) * | 2012-10-12 | 2014-04-16 | 北京微智全景信息技术有限公司 | Method and system for authenticating electronic certificate |
| CN103237306A (en) * | 2013-04-02 | 2013-08-07 | 程雪莲 | Usbkey of cellphone identity authentication terminal and application of Usbkey |
| CN103281186A (en) * | 2013-05-08 | 2013-09-04 | 上海众人网络安全技术有限公司 | Dynamic token based on Android system as well as transaction system and method |
| CN103338119A (en) * | 2013-06-08 | 2013-10-02 | 腾讯科技(深圳)有限公司 | Voice channel distribution method and voice system |
| US9530289B2 (en) | 2013-07-11 | 2016-12-27 | Scvngr, Inc. | Payment processing with automatic no-touch mode selection |
| CN103455914A (en) * | 2013-08-30 | 2013-12-18 | 深圳数字电视国家工程实验室股份有限公司 | Safety authentication method and remote controller and television payment system using same |
| CN103839157A (en) * | 2014-02-25 | 2014-06-04 | 中国联合网络通信集团有限公司 | Electronic payment method, device and system |
| CN104166918A (en) * | 2014-08-20 | 2014-11-26 | 齐鲁工业大学 | Safety payment method based on audio key |
| CN104166918B (en) * | 2014-08-20 | 2017-08-25 | 齐鲁工业大学 | Safe payment method based on audio button |
| CN104200366A (en) * | 2014-09-15 | 2014-12-10 | 长沙市梦马软件有限公司 | Voice payment authentication method and system |
| CN104702412A (en) * | 2015-03-14 | 2015-06-10 | 丁贤根 | External AI (Artificial Intelligence) safety certificate system of mobile phone for mobile payment and realizing method thereof |
| CN104702411B (en) * | 2015-03-14 | 2017-12-29 | 丁贤根 | Have the token design method of mobile payment security certification and mobile phone loss alarm concurrently |
| CN104702412B (en) * | 2015-03-14 | 2018-02-02 | 丁贤根 | Mobile payment mobile telephone external AI security certification systems and its implementation |
| CN104702411A (en) * | 2015-03-14 | 2015-06-10 | 丁贤根 | Token design method integrating mobile payment safety authentication and mobile phone loss alarm |
| CN105050081A (en) * | 2015-08-19 | 2015-11-11 | 腾讯科技(深圳)有限公司 | Method, device and system for connecting network access device to wireless network access point |
| CN108475373A (en) * | 2016-01-11 | 2018-08-31 | 万事达卡国际股份有限公司 | It generates and sends between computing devices and encrypted payment data message to realize that fund shifts |
| CN109417574A (en) * | 2016-09-23 | 2019-03-01 | 苹果公司 | Manage the authority of multiple users on electronic equipment |
| CN109417574B (en) * | 2016-09-23 | 2021-10-29 | 苹果公司 | Managing credentials of multiple users on an electronic device |
| US11277394B2 (en) | 2016-09-23 | 2022-03-15 | Apple Inc. | Managing credentials of multiple users on an electronic device |
| CN107274173A (en) * | 2017-05-11 | 2017-10-20 | 吴世贵 | A kind of sound wave payment method |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2013023499A1 (en) | 2013-02-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102254264A (en) | Security control method and security control system of mobile payment | |
| Chen et al. | NFC mobile transactions and authentication based on GSM network | |
| CN101651675B (en) | By the method and system that authentication code is verified client | |
| CN101916388B (en) | Smart SD card and method for using same for mobile payment | |
| CN106027501B (en) | A kind of system and method for being traded safety certification in a mobile device | |
| US20110103586A1 (en) | System, Method and Device To Authenticate Relationships By Electronic Means | |
| US20100153276A1 (en) | Method and system for online payment and identity confirmation with self-setting authentication fomula | |
| CN109039652B (en) | Digital certificate generation and application method | |
| CN105407079A (en) | Novel terminal safety soft secret key management method | |
| CN102625294B (en) | Method for managing mobile service by taking universal serial bus (USB) as virtual subscriber identity module (SIM) card | |
| CN102202300A (en) | System and method for dynamic password authentication based on dual channels | |
| CN101216923A (en) | A system and method to enhance the data security of e-bank dealings | |
| CN105516180A (en) | Cloud secret key authentication system based on public key algorithm | |
| CN101916476A (en) | Mobile data transmission method based on combination of SD (Secure Digital) encrypted card and short-distance wireless communication technology | |
| CN110225042A (en) | The safe handling method and server of block chain wallet private key | |
| CN103037366A (en) | Mobile terminal user authentication method and mobile terminal based on asymmetric cryptographic technique | |
| CN101873583A (en) | Mobile certificate device and control method thereof | |
| CN101304569A (en) | Mobile authentication system based on intelligent mobile phone | |
| CN110046906A (en) | A kind of the two-way authentication method of commerce and system of MPOS machine and server | |
| CN202818612U (en) | System capable of blocking unauthorized SMS text messages or bulk SMS text messages | |
| CN202221590U (en) | Mobile phone payment safety protection device | |
| JP2016071538A (en) | Authentication system | |
| CN101635076A (en) | Trading device and implement method | |
| CN101859453A (en) | Smart card loss reporting method based on short message service and system | |
| CN102819799A (en) | Multi-channel safety authenticating system and authenticating method based on U-Key |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20111123 |
|
| RJ01 | Rejection of invention patent application after publication |