CN102831519A - Security intelligent cryptosystem for Apple mobile devices and internet-banking transaction method thereof - Google Patents
Security intelligent cryptosystem for Apple mobile devices and internet-banking transaction method thereof Download PDFInfo
- Publication number
- CN102831519A CN102831519A CN2012102631733A CN201210263173A CN102831519A CN 102831519 A CN102831519 A CN 102831519A CN 2012102631733 A CN2012102631733 A CN 2012102631733A CN 201210263173 A CN201210263173 A CN 201210263173A CN 102831519 A CN102831519 A CN 102831519A
- Authority
- CN
- China
- Prior art keywords
- apple
- module
- usb
- safe
- intelligent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention relates to a security intelligent cryptosystem with an active USB (Universal Serial Bus) interface and for Apple mobile devices and an internet-banking transaction method of the security intelligent cryptosystem for the Apple mobile devices. The system comprises a miniUSB3.0 interface, a security control module, an encryption storage module, an MFI (made for ipod/ipad/iphone) authentication module, a display module, a 5V lithium battery and a button part, wherein the miniUSB3.0 interface is used in match with corresponding data connecting lines and is used for being connected with Apple mobile devices; the security control module is used for providing password service for upper Apple mobile applications; the encryption storage module is used for providing data security storage service; and the MFI authentication module is used for accomplishing the device authentication of the Apple devices to a USB safety module. With the adoption of the active USB security intelligent cryptosystem, the problem that an existing USB cryptosystem cannot support the Apple devices and application is solved, and uniform, effective and reliable security services are provided for the Apple mobile application.
Description
Technical field
The present invention relates to a kind of security password system of USB interface, be specifically related to a kind of safe and intelligent cryptographic system and network bank business based method thereof that has active USB interface towards the apple mobile device.
Background technology
Fast development along with mobile communication technology; Rely on mobile communications network and mobile device (like smart mobile phone, panel computer), all kinds of mobile applications more and more widely are applied to every field such as ecommerce, E-Government, financial consumption, personal information processing.Wherein serial mobile device of U.S. Apple (like iPod, iPhone, iPad etc.) and the mobile applications of using the great deal of rich that shop App Store provides thereof occupy quite great proportion in above-mentioned field.
Go to bank and mobile application such as personal sensitive information processing at mobile electron government affairs, mobile e-business, mobile network; Answer strictness to guarantee to move application data safety, avoid sensitive information leakage or critical data to lose and the various politics, the economic loss that cause.In present protecting information safety means, USB Key is as a kind of authentication and digital signature instrument, and the storage customer digital certificate is easy to carry, easy to use, is widely used in information safety devices carriers such as PC, notebook.But for apple equipment, owing to receive apple products MFI (Made for iPod, iPhone, iPad) authentication restriction and standard usb interface restriction, prior USB Key can't be applicable to the apple series product on the one hand; On the other hand, USB Key function singleness can't satisfy apple and move all kinds of security password services in the application (as accomplishing symmetry, asymmetric encryption and decryption computing, safety storing etc.) demand.
Summary of the invention
The objective of the invention is to overcome existing USB security password system can't support the deficiency of apple series mobile device and propose a kind of safe and intelligent cryptographic system and network bank business based method thereof towards the apple mobile device; This system supports the MFI product certification; Interface is mini USB 3.0; Possess the 5V power supply, have cryptographic processing and encrypt memory function; Possess LCDs and button, when ensureing instrument as Web bank's secure payment, can realize the function of Net silver two generations U shield, guarantee online transaction safety is carried out.
The present invention adopts following technical scheme:
A kind of safe and intelligent cryptographic system towards the apple mobile device is characterized in that, comprising:
USB interface adopts standard mini USB3.0 interface and the corresponding supporting use of data connecting line, realizes the physical connection with the apple mobile device;
Safety control module receives the data from the miniUSB3.0 interface with the SRAM mode, and data are carried out safe handling;
Encrypt memory module and be stored in the FLASH memory block after with ciphering user data, when derive this memory block, need deciphering;
The MFI authentication module comprises apple device authentication certificate, is called by safety control module, accomplishes the authentication of apple equipment to USB safe and intelligent crypto module based on apple MFI authentication protocol;
Display module through standard SPI interface and safety control module communication, when the user carries out obtaining customer transaction information when network bank business based, and adopts the LCD LCDs to show;
Supplying cell, the 5V lithium battery is as the self-powered power supply of USB safe and intelligent crypto module;
The button part comprises four buttons, and acknowledgement key, cancel key, upturning key and downturning key are realized confirming, returned, query function.
Wherein said USB interface adopts standard mini USB 3.0 interfaces; Be used with the dedicated data line of apple series equipment 30 needle interfaces; Be used to connect apple series equipment, this dedicated data line one end is 3.0 public mouthfuls of mini USB, is used to connect the USB security module; The other end is female mouthful of 30 a pin data, is used to connect the apple mobile device.
Wherein said safety control module is used all kinds of symmetries or the asymmetric cryptography service of providing for the upper strata apple moves; This module is except that the RSA Algorithm that comprises standard, DES algorithm; Also comprise national commercial cipher canonical algorithm, comprise SM1 symmetry algorithm, SM2 elliptic curve, SM3 hash algorithm and randomizer.
Wherein said encryption memory module provides the secure data storage district, need pass through the user password authentication when data of distinguishing are somebody's turn to do in access.
Wherein said apple MFI authentication module has been realized the MFI authentication of USB safe and intelligent crypto module on apple series equipment, and based on the MFI authentication module, USB safe and intelligent crypto module can be supported apple complete series equipment.
Wherein said supplying cell is the 5V lithium battery, as the self-powered power supply of USB safe and intelligent crypto module.
Wherein said display module and button part are used for the user and carry out when network bank business based, explicit user trading account and dealing money Transaction Information, and partly carry out secondary through button and confirm.
A kind of use towards the network bank business based method of the safe and intelligent cryptographic system of apple mobile device is characterized in that:
Step 1: use apple device logs e-Bank payment interface, input USB security module protection password, as correctly, user's operation of paying, input payment account and payment are carried out step 2, like the password mistake, then process of exchange interruption;
Step 2: connect safe and intelligent cryptographic system and apple equipment, the data message in the user transaction process is sent to the USB safety control module through USB interface, and the USB safety control module then calls display module transaction data is presented on the LCD liquid crystal display;
Step 3: user's secondary is confirmed the correctness of transaction payment data, as errorless, then carries out step 4, errors excepted, then cancels this time transaction;
Step 4: after the user confirmed that data are correct, the USB security module was called safety control module and is extracted user certificate and transaction data is carried out digital signature, and certificate and signed data are back to the e-Bank payment application program through USB interface;
Step 5: the e-Bank payment application program is submitted certificate and the transaction data through signing, this network bank business based completion to the Net silver backstage.
When connecting safe and intelligent cryptographic system and apple equipment, safe and intelligent crypto module and apple equipment carry out the MFI authentication.
Said safe and intelligent crypto module and apple equipment carry out the MFI authentication and are specially:
Step 1: apple equipment sends authentication request req to the USB security module;
Step 2: the USB security module is called the MFI authentication module, to apple equipment Returning equipment certificate of certification Cert;
Step 3: apple equipment sends the 20bit random number R to the USB security module;
Step 4: the USB security module is called the MFI authentication module, and random number R is carried out digital signature, and will sign as a result that Res is back to apple equipment;
Step 5, Res verifies apple equipment to signing as a result, if verify successfully, then the data message in the user transaction process is sent to the USB safety control module through USB interface, if transaction is interrupted in failure.
The invention has the beneficial effects as follows:
The present invention can solve at mobile electron government affairs, mobile e-business, mobile network and go to bank and mobile application such as personal sensitive information processing, the mobile application security problem of apple iOS system.Based on USB safe and intelligent cryptographic system is that all kinds of apples application provide cryptographic service and encrypt stores service; Solve existing USB interface cryptographic system comprehensively and can't support the difficult problem of apple series equipment and application; For apple moves to use unified, effective, reliable security service is provided; Guarantee that apple moves application data safety, avoid sensitive information leakage or critical data to lose and the various politics, the economic loss that cause.
Description of drawings
Fig. 1 is the composition structural drawing of the safe and intelligent cryptographic system towards the apple mobile device of the present invention.
Fig. 2 is that safe and intelligent cryptographic system and the apple equipment towards the apple mobile device of the present invention is accomplished MFI verification process figure.
Fig. 3 handles network bank business based information process figure for the safe and intelligent cryptographic system towards the apple mobile device of the present invention.
Embodiment
Below in conjunction with accompanying drawing and embodiment the present invention is done and to further describe:
As shown in Figure 1, a kind of safe and intelligent cryptographic system towards the apple mobile device that has active USB interface comprises mini USB3.0 interface 1, safety control module 2, encrypts memory module 3, MFI authentication module 4, display module 5, supplying cell 6 and button part 7.
Said usb 1 adopts the dedicated data line of standard mini USB 3.0 interfaces and apple 30 needle interfaces to be used, and is used to connect apple iOS serial equipment.This dedicated data line one end is 3.0 public mouthfuls of mini USB, is used to connect the USB security module; One end is female mouthful of 30 a pin data, is used to connect the apple mobile device.
Said safety control module 2 receives the data from the miniUSB3.0 interface with the SRAM mode; These data are carried out safe handling; For the upper strata apple moves to use all kinds of symmetries or asymmetric cryptography service are provided, for example extract user's Net silver number of deals word certificate and transaction data is carried out digital signature etc.This safety control module also comprises national commercial cipher canonical algorithm except that the RSA Algorithm that comprises standard, DES algorithm, comprise SM1 symmetry algorithm, SM2 elliptic curve, SM3 hash algorithm and randomizer.
Said encryption memory module 3 is being stored in the FLASH memory block behind the ciphering user data, when derive this memory block, need deciphering.
Said MFI authentication module 4 comprises apple device authentication certificate, is called by safety control module, through I
2The C bus is communicated by letter with safety control module, accomplishes the authentication of apple equipment to the safe and intelligent cryptographic system based on the MFI authentication protocol of apple regulation.
Said display module 5 is through standard SPI interface and safety control module communication, and when the user carries out obtaining customer transaction information, and adopting the demonstration of LCD LCDs when network bank business based, displaying contents comprises Transaction Informations such as customer transaction account and dealing money.
Said supplying cell 6 is the 5V lithium battery, as the self-powered power supply of safe and intelligent cryptographic system.
Said button part 7 comprises four buttons, and acknowledgement key, cancel key, upturning key and downturning key main are realized confirming, returned, menu function such as inquiry, are user's intelligent cipher safe in utilization system, when the U shield uses, information interaction is provided.
Safety control module 2 at first calls MFI authentication module 4 and carries out the apple authentication before receiving data; After authentication is passed through, receive data,, data are carried out encryption and decryption handle according to upper strata password application requirements from miniUSB3.0 interface 1 with the SRAM mode; Encrypt memory module 3 the secure data storage district is provided, need pass through the user password authentication when data of distinguishing are somebody's turn to do in access; Supplying cell 6 is the 5V lithium battery, for the active safe and intelligent cryptographic system of USB provides the power supply guarantee; When USB security module 2 is used for when network bank business based; Through display module 5 Transaction Information is presented on the LCD LCDs; After treating that the user passes through button the Transaction Information secondary is confirmed; Safety control module 2 reads user certificate, and transaction data is carried out digital signature, Transaction Informations such as certificate and digital signature is back to the upper strata through usb 1 moves application.
As shown in Figure 2, after the safe and intelligent cryptographic system towards the apple mobile device that has active USB interface is passed through mini USB3.0 interface and apple equipment is connected, accomplish the MFI authentication with apple equipment, step is following:
Step 1: apple equipment sends authentication request req to the USB security module;
Step 2: the USB security module is called the MFI authentication module, to apple equipment Returning equipment certificate of certification Cert;
Step 3: apple equipment sends the 20bit random number R to the USB security module;
Step 4: the USB security module is called the MFI authentication module, and random number R is carried out digital signature, and will sign as a result that Res is back to apple equipment;
Step 5, Res verifies apple equipment to signing as a result, if verify successfully, then the data message in the user transaction process is sent to the USB safety control module through USB interface, if transaction is interrupted in failure.
As shown in Figure 3, after the USB security module is accomplished the MFI authentication, need carry out when network bank business based, it is following to carry out network bank business based step through the USB security module:
Step 1: use apple device logs e-Bank payment interface, input USB security module protection password, as correctly, user's operation of paying, input payment account and payment are carried out step 2, like the password mistake, then process of exchange interruption;
Step 2: connect safe and intelligent cryptographic system and apple equipment, the data message in the user transaction process is sent to the USB safety control module through USB interface, and the USB safety control module then calls display module transaction data is presented on the LCD liquid crystal display;
Step 3: user's secondary is confirmed the correctness of transaction payment data, as errorless, then carries out step 4, errors excepted, then cancels this time transaction;
Step 4: after the user confirmed that data are correct, the USB security module was called safety control module and is extracted user certificate and transaction data is carried out digital signature, and certificate and signed data are back to the e-Bank payment application program through USB interface;
Step 5: the e-Bank payment application program is submitted certificate and the transaction data through signing, this network bank business based completion to the Net silver backstage.
Claims (10)
1. the safe and intelligent cryptographic system towards the apple mobile device is characterized in that, comprising:
USB interface adopts standard mini USB3.0 interface and the corresponding supporting use of data connecting line, realizes the physical connection with the apple mobile device;
Safety control module receives the data from the miniUSB3.0 interface with the SRAM mode, and data are carried out safe handling;
Encrypt memory module and be stored in the FLASH memory block after with ciphering user data, when derive this memory block, need deciphering;
The MFI authentication module comprises apple device authentication certificate, is called by safety control module, accomplishes the authentication of apple equipment to USB safe and intelligent crypto module based on apple MFI authentication protocol;
Display module through standard SPI interface and safety control module communication, when the user carries out obtaining customer transaction information when network bank business based, and adopts the LCD LCDs to show;
Supplying cell, the 5V lithium battery is as the self-powered power supply of USB safe and intelligent crypto module;
The button part comprises four buttons, and acknowledgement key, cancel key, upturning key and downturning key are realized confirming, returned, query function.
2. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1; It is characterized in that; Wherein said USB interface adopts the dedicated data line of standard mini USB 3.0 interfaces and apple series equipment 30 needle interfaces to be used, and is used to connect apple series equipment; This dedicated data line one end is 3.0 public mouthfuls of mini USB, is used to connect the USB security module; The other end is female mouthful of 30 a pin data, is used to connect the apple mobile device.
3. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1; It is characterized in that; Wherein said safety control module is used all kinds of symmetries or the asymmetric cryptography service of providing for the upper strata apple moves; This module also comprises national commercial cipher canonical algorithm except that the RSA Algorithm that comprises standard, DES algorithm, comprise SM1 symmetry algorithm, SM2 elliptic curve, SM3 hash algorithm and randomizer.
4. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1 is characterized in that wherein said encryption memory module provides the secure data storage district, need pass through the user password authentication when data of distinguishing are somebody's turn to do in access.
5. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1; It is characterized in that; Wherein said apple MFI authentication module has been realized the MFI authentication of USB safe and intelligent crypto module on apple series equipment; Based on the MFI authentication module, USB safe and intelligent crypto module can be supported apple complete series equipment.
6. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1 is characterized in that wherein said supplying cell is the 5V lithium battery, as the self-powered power supply of USB safe and intelligent crypto module.
7. the safe and intelligent cryptographic system towards the apple mobile device as claimed in claim 1; It is characterized in that wherein said display module and button part are used for the user and carry out when network bank business based; Explicit user trading account and dealing money Transaction Information, and partly carry out secondary through button and confirm.
8. a use is characterized in that towards the network bank business based method of the safe and intelligent cryptographic system of apple mobile device:
Step 1: use apple device logs e-Bank payment interface, input USB security module protection password, as correctly, user's operation of paying, input payment account and payment are carried out step 2, like the password mistake, then process of exchange interruption;
Step 2: connect safe and intelligent cryptographic system and apple equipment, the data message in the user transaction process is sent to the USB safety control module through USB interface, and the USB safety control module then calls display module transaction data is presented on the LCD liquid crystal display;
Step 3: user's secondary is confirmed the correctness of transaction payment data, as errorless, then carries out step 4, errors excepted, then cancels this time transaction;
Step 4: after the user confirmed that data are correct, the USB security module was called safety control module and is extracted user certificate and transaction data is carried out digital signature, and certificate and signed data are back to the e-Bank payment application program through USB interface;
Step 5: the e-Bank payment application program is submitted certificate and the transaction data through signing, this network bank business based completion to the Net silver backstage.
9. like the network bank business based method of the said use of claim 8, it is characterized in that when connecting safe and intelligent cryptographic system and apple equipment, safe and intelligent crypto module and apple equipment carry out the MFI authentication towards the safe and intelligent cryptographic system of apple mobile device.
10. like the network bank business based method of the said use of claim 8, it is characterized in that said safe and intelligent crypto module and apple equipment carry out the MFI authentication and is specially towards the safe and intelligent cryptographic system of apple mobile device:
Step 1: apple equipment sends authentication request req to the USB security module;
Step 2: the USB security module is called the MFI authentication module, to apple equipment Returning equipment certificate of certification Cert;
Step 3: apple equipment sends the 20bit random number R to the USB security module;
Step 4: the USB security module is called the MFI authentication module, and random number R is carried out digital signature, and will sign as a result that Res is back to apple equipment;
Step 5, Res verifies apple equipment to signing as a result, if verify successfully, then the data message in the user transaction process is sent to the USB safety control module through USB interface, if transaction is interrupted in failure.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012102631733A CN102831519A (en) | 2012-07-27 | 2012-07-27 | Security intelligent cryptosystem for Apple mobile devices and internet-banking transaction method thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012102631733A CN102831519A (en) | 2012-07-27 | 2012-07-27 | Security intelligent cryptosystem for Apple mobile devices and internet-banking transaction method thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102831519A true CN102831519A (en) | 2012-12-19 |
Family
ID=47334639
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012102631733A Pending CN102831519A (en) | 2012-07-27 | 2012-07-27 | Security intelligent cryptosystem for Apple mobile devices and internet-banking transaction method thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102831519A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104317761A (en) * | 2014-10-27 | 2015-01-28 | 飞天诚信科技股份有限公司 | Multi-interface mobile security equipment with power management and operation method of multi-interface mobile security equipment |
| WO2019001061A1 (en) * | 2017-06-26 | 2019-01-03 | 深圳市文鼎创数据科技有限公司 | Payment verification method and system, and mobile device and security authentication device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101394615A (en) * | 2007-09-20 | 2009-03-25 | 中国银联股份有限公司 | Mobile payment terminal and payment method based on PKI technique |
| CN101873583A (en) * | 2010-06-01 | 2010-10-27 | 中国科学院深圳先进技术研究院 | Mobile certificate device and control method thereof |
| CN102073803A (en) * | 2009-11-23 | 2011-05-25 | 邵通 | Device, method and system for enhancing safety of USBKEY |
| CN201893814U (en) * | 2010-08-27 | 2011-07-06 | 上海奕华信息技术有限公司 | Extended device of mobile terminal |
-
2012
- 2012-07-27 CN CN2012102631733A patent/CN102831519A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101394615A (en) * | 2007-09-20 | 2009-03-25 | 中国银联股份有限公司 | Mobile payment terminal and payment method based on PKI technique |
| CN102073803A (en) * | 2009-11-23 | 2011-05-25 | 邵通 | Device, method and system for enhancing safety of USBKEY |
| CN101873583A (en) * | 2010-06-01 | 2010-10-27 | 中国科学院深圳先进技术研究院 | Mobile certificate device and control method thereof |
| CN201893814U (en) * | 2010-08-27 | 2011-07-06 | 上海奕华信息技术有限公司 | Extended device of mobile terminal |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104317761A (en) * | 2014-10-27 | 2015-01-28 | 飞天诚信科技股份有限公司 | Multi-interface mobile security equipment with power management and operation method of multi-interface mobile security equipment |
| CN104317761B (en) * | 2014-10-27 | 2017-05-10 | 飞天诚信科技股份有限公司 | Multi-interface mobile security equipment with power management and operation method of multi-interface mobile security equipment |
| WO2019001061A1 (en) * | 2017-06-26 | 2019-01-03 | 深圳市文鼎创数据科技有限公司 | Payment verification method and system, and mobile device and security authentication device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9647845B2 (en) | Key downloading method, management method, downloading management method, device and system | |
| US9948624B2 (en) | Key downloading method, management method, downloading management method, device and system | |
| CN103714637B (en) | A kind of transmission security key sending method and system, operating terminal | |
| CN110460439A (en) | Information transferring method, device, client, server-side and storage medium | |
| CN103701757B (en) | Identity authentication method and system for service access | |
| CN102801730B (en) | Information protection method and device for communication and portable devices | |
| CN106063182B (en) | Electric endorsement method, system and equipment | |
| CN109064324A (en) | Method of commerce, electronic device and readable storage medium storing program for executing based on alliance's chain | |
| CN102013001B (en) | Card reader with authentication function and authentication method thereof | |
| CN106227503A (en) | Safety chip COS firmware update, service end, terminal and system | |
| CN102789607A (en) | Network transaction method and system | |
| CN104217327A (en) | Financial IC (integrated circuit) card Internet terminal and trading method thereof | |
| CN107358441A (en) | Method, system and the mobile device and safety certificate equipment of payment verification | |
| CN103747001A (en) | Audio-access mobile payment terminal based on security algorithm and communication method based on security algorithm | |
| CN104851206A (en) | USBKEY (universal serial bus key)-based online electric charge payment system | |
| CN103684786A (en) | Method and system for storing digital certificate and binding digital certificate to hardware carrier | |
| CN102710611A (en) | Network security authentication method and system | |
| CN102867255A (en) | Multi-operating system platform and mobile payment equipment E-bank USB key and working method thereof | |
| KR20120051344A (en) | Portable integrated security memory device and service processing apparatus and method using the same | |
| CN109903052A (en) | A kind of block chain endorsement method and mobile device | |
| EP2215553A1 (en) | System and method for authenticating one-time virtual secret information | |
| CN104243162A (en) | Information interaction method and system and smart key equipment | |
| CN103606223A (en) | Card authentication method and device | |
| CN103401277A (en) | Intelligent power supply and method for realizing mobile payment by utilizing intelligent power supply | |
| CN101587458A (en) | Operation method and device for intelligent storing card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20121219 |