CN103259666A - Multi-token management system and method of mobile token - Google Patents
Multi-token management system and method of mobile token Download PDFInfo
- Publication number
- CN103259666A CN103259666A CN2013102167955A CN201310216795A CN103259666A CN 103259666 A CN103259666 A CN 103259666A CN 2013102167955 A CN2013102167955 A CN 2013102167955A CN 201310216795 A CN201310216795 A CN 201310216795A CN 103259666 A CN103259666 A CN 103259666A
- Authority
- CN
- China
- Prior art keywords
- token
- trade company
- tokens
- management module
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The invention provides a multi-token management system and method of a mobile token. The multi-token management system of the mobile token comprises a mobile phone terminal, a web portal management device and a verification platform, wherein the web portal management device is connected with the mobile phone terminal and the verification platform, the mobile phone terminal comprises an input module, a token management module and a display module, and a plurality of dynamic passwords used for activating tokens and merchant information of each activated token are displayed on the display module. According to the multi-token management system and method of the mobile token, a single-token mode of mobile token management equipment is changed, tokens of a plurality of merchants can be operated on one piece of mobile token management equipment, system redundancy is reduced, and the application range of the mobile token is widened.
Description
Technical field
The present invention relates to the network ID authentication field, relate in particular to a kind of many token managements system and method for handset token.
Background technology
In today that consumption on network is propagated its belief on a large scale, because the fast development of the network communications technology, people have not worried how to realize shopping online by network technology, but the emphasis of paying close attention to is placed on the safety of online fund in the revenue and expenditure approach gradually.Because the various implementations of consumption on network are that people design voluntarily, logically always there are certain leak and back door, experienced lawless person is by these leaks and back door, just find the entrance that cracks network security management easily, thereby make consumer and the businessman to suffer no small economic loss, and hit the confidence that people use network.
Therefore, need improve existing network security management framework.For consumption on network, the most important thing is that to the authentication of both parties' electronic identity traditionally, people use static number of the account and the static password person's oneself that tells the network security management identity, with by verifying and concluding the business.But people have looked like and have arrived, and static data is because its changeless characteristic, in case crack namely irredeemable, so, be directed to this, some network security Chevron Research Company (CRC)s design dynamic password, realize that password waits key element to bring in constant renewal in time, reduces the risk of consumption on network.Handset token is the modal implementation pattern of dynamic password, information interaction by the handset token management mode in the mobile phone terminal and portal website, verification platform, change the scheme of password based on time synchronized, for the Secure Transaction of consumer and businessman provides guarantee.
In the prior art, existing handset token all is " single token " on the market, be that the user can only activate a token, can only consume in that trade company of this piece token binding there, mean that also a mobile phone terminal can only serve specific application, this has limited the scope of user binding trade company greatly.Can't satisfy user's actual need under many circumstances, also bring inconvenience to the user.Because if when the user need bind how tame different trade company, the mobile phone terminal administration module of a plurality of different vendors just need be set at mobile phone, make mobile phone terminal complex structure and not manageability and maintenance.
Summary of the invention
The problem that the present invention solves is in single token management system and method for existing handset token, owing to the user can only activate the too narrow problem of range of application that a token brings.
To achieve these goals, the invention provides a kind of many token managements system of handset token, described system comprises mobile phone terminal, portal website's management devices and verification platform, described portal website management devices respectively with described mobile phone terminal, described verification platform links to each other, described mobile phone terminal comprises input module, token management module and display module, wherein said verification platform, the trade company that is configured to each registration distributes the token of predetermined quantity, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to described portal website management devices; Described portal website management devices, configuration is used for receiving and store the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration, and according to described token management module send at the token request of cellphone subscriber by the selected trade company of described input module, send and selected trade company corresponding token to described token management module; Described token management module, configuration is used for according to the cellphone subscriber by the selected trade company of described input module, to send to described portal website management devices at the token request of selected trade company by network, and by network reception and selected trade company corresponding token, wherein the cellphone subscriber can select a plurality of different trade companies by described input module, makes described token management module receive a plurality of different tokens by network; Described token management module also disposes for send the one or more token activation request of a plurality of different tokens that receives at described token management module to described portal website management devices, and receive one or more token activation data of returning from described portal website management devices, to activate one or more tokens of described token management module; Described display module, configuration is used for after described token management module activates one or more tokens of described token management module, according to the one or more tokens that activate in the described token management module, show the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.
Alternatively, comprise memory in the described portal website management devices, configuration is used for the trade company of described each registration of storage and is a plurality of tokens of trade company's distribution of each registration.
Alternatively, described display module is the display module that comprises LCDs.
To achieve these goals, the present invention also provides a kind of many token managements method of handset token, may further comprise the steps: step 1: verification platform distributes the token of predetermined quantity for the trade company of each registration, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to portal website's management devices; Step 2: described portal website management devices receives and stores the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration; Step 3: the cellphone subscriber selects trade company by the input module of mobile phone terminal, and the token management module of mobile phone terminal will send to described portal website management devices at the token request of selected trade company by network; Step 4: the management of described portal website receives described token request at selected trade company, and according to described token request, sends with selected trade company corresponding token to described token management module; Step 5: described token management module receives and selected trade company corresponding token by network, and wherein, the cellphone subscriber can select a plurality of different trade companies by described input module, makes described token management module receive a plurality of different tokens by network; Step 6: described token management module sends one or more token activation request in a plurality of different token that receives at described token management module to described portal website management devices; Step 7: described portal website management devices sends one or more token activation data according to the one or more token activation request that receives; Step 8: described token management module receives described one or more token activation data, to activate one or more tokens of described token management module; Step 9: described display module is according to the one or more tokens that activate in the described token management module, shows the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.
Alternatively, after step 9, described cellphone subscriber imports the dynamic password that described display module shows by described input module, and described dynamic password is sent to described verification platform by described portal website management devices verifies.
Alternatively, the dynamic password that described display module shows is 6 dynamic passwords at random that produced every 60 seconds by described token management module.
The present invention is owing to adopted technique scheme, thereby have the following advantages: many token managements system and method for handset token of the present invention, change in the past the handset token administration module of a mobile phone terminal and can only manage a handset token, thereby the single token pattern that can only conclude the business with particular merchant, be that a handset token administration module is built many tokens pattern, make the user can use a plurality of handset tokens simultaneously, carry out online transaction with a plurality of trade companies, many token mechanisms of handset token have been expanded the scope of user binding trade company greatly, and need not in mobile phone terminal, to arrange the handset token administration module of a plurality of different vendors, expanded the range of application of handset token.
Description of drawings
Fig. 1 is the system configuration schematic diagram of many token managements system and method for handset token of the present invention;
Fig. 2 is the working state of system schematic diagram of many token managements system and method for handset token of the present invention;
Fig. 3 is the method flow diagram of many token managements system and method for handset token of the present invention.
Embodiment
Below in conjunction with accompanying drawing the specific embodiment of the present invention is described in detail.At first, please refer to Fig. 1, Fig. 1 is the system configuration schematic diagram of many token managements system and method for handset token of the present invention, many token managements system of handset token of the present invention comprises mobile phone terminal 1, portal website's management devices 2 and verification platform 3, described portal website management devices 2 respectively with described mobile phone terminal 1, described verification platform 3 links to each other, described mobile phone terminal 1 comprises input module 101, token management module 102 and display module 103, wherein said verification platform 3, the trade company that is configured to each registration distributes the token of predetermined quantity, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to described portal website management devices 2; Described portal website management devices 2, configuration is used for receiving and store the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration, and according to described token management module 102 send at the token request of cellphone subscriber by described input module 101 selected trade companies, send and selected trade company corresponding token to described token management module 102; Described token management module 102, configuration is used for according to the cellphone subscriber by described input module 101 selected trade companies, to send to described portal website management devices 2 at the token request of selected trade company by network, and by network reception and selected trade company corresponding token, wherein the cellphone subscriber can select a plurality of different trade companies by described input module 101, makes described token management module 102 receive a plurality of different tokens by network; Described token management module 102 also disposes and is used for sending the one or more token activation request of a plurality of different tokens that receives at described token management module 102 to described portal website management devices 2, and receive one or more token activation data of returning from described portal website management devices 2, to activate one or more tokens of described token management module 102; Described display module 103, configuration is used for after described token management module 102 activates one or more tokens of described token management module 102, according to the one or more tokens that activate in the described token management module 102, show the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.Wherein, the handset token of dynamic password, be used for generating dynamic password, described dynamic password and handset binding carry out authentication, handset token generally is used in the industry that the customer group is big, the customer group is quite young, as online game, the login of Web bank, Internet securities, SAAS etc. and payment scene.The present invention is by providing a plurality of handset tokens that can help a plurality of different trade companies for single handset token administration module, make and hold the cellphone subscriber of described single handset token administration module under the original system framework, show when realizing a plurality of dynamic password with a plurality of businessmans user interactions, expanded the scope of application of handset token, the system redundancy of avoiding needing a plurality of handset token administration modules simultaneously and occurring is for the cellphone subscriber has saved the certain device expense.
Preferably, comprise memory in the described portal website management devices, configuration is used for the trade company of described each registration of storage and is a plurality of tokens of trade company's distribution of each registration, and the binding relationship between a plurality of tokens of described verification platform enrolled merchant and trade company's correspondence carries out at the verification platform end.Described memory can be the memory of random access memory ram, flash memory Flash Memory or other types.
Preferably, described display module is the display module that comprises LCDs.Be convenient to mobile phone terminal producer according to cellphone subscriber's ability to shoulder economically and use preference, the LCDs of customization different resolution and model, to be used for mobile phone terminal, described LCDs also shows other information outside the dynamic password.Wherein, LCDs (LCD) is a kind of type of display for numeric type clock and watch and many portable computers.Two polarization material have been used in the LCD demonstration, are the quartzy solution of liquid between them.Electric current can make crystal rearrange during by this liquid, so that light can't see through them.Therefore, each crystal is just as shutter, can allow light to pass and can obstruct the light.The development of lcd technology just in time suits the trend of present information products, no matter is little, or the advantage such as zero radiation of right angle demonstration, low power consumption, volume, can both allow the user enjoy best visual environment.
Then, please refer to Fig. 2, Fig. 2 is the working state of system schematic diagram of many token managements system and method for handset token of the present invention, what the arrow among Fig. 2 showed is the direction of the progress of work, be followed successively by portal website's management devices 21 and receive a plurality of stock's tokens 22 of the predetermined quantity that verification platform distributes for each trade company, the trade company 24 that the cellphone subscriber selects by input module 23 inputs of mobile phone terminal, stock's token in a plurality of stock's tokens 22 of the described trade company 24 of a plurality of stock's tokens 22 selections in portal website's management devices 21 is to send to token management module 25, token management module 25 is used the stock's token that receives as User Token 26, described use comprises according to the described User Token 26 of predetermined activation strategy 27 activation, like this, the cellphone subscriber can described User Token 26 carry out online transaction with trade company 24.Repeat above step, obtain a plurality of User Token that are activated 26 of a plurality of trade companies 24, provide a plurality of dynamic passwords to use for the cellphone subscriber simultaneously.
At last, please refer to Fig. 3, Fig. 3 is the method flow diagram of many token managements system and method for handset token of the present invention.As can be seen from Figure 3, many token managements of handset token provided by the invention method may further comprise the steps:
Step 301: verification platform is the token that the trade company of each registration distributes predetermined quantity, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to portal website's management devices;
Step 302: described portal website management devices receives and stores the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration;
Step 303: the cellphone subscriber selects trade company by the input module of mobile phone terminal, and the token management module of mobile phone terminal will send to described portal website management devices at the token request of selected trade company by network;
Step 304: the management of described portal website receives described token request at selected trade company, and according to described token request, sends with selected trade company corresponding token to described token management module;
Step 305: described token management module receives and selected trade company corresponding token by network, and wherein, the cellphone subscriber can select a plurality of different trade companies by described input module, makes described token management module receive a plurality of different tokens by network;
Step 306: described token management module sends one or more token activation request in a plurality of different token that receives at described token management module to described portal website management devices;
Step 307: described portal website management devices sends one or more token activation data according to the one or more token activation request that receives;
Step 308: described token management module receives described one or more token activation data, to activate one or more tokens of described token management module;
Step 309: described display module is according to the one or more tokens that activate in the described token management module, shows the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.
Preferably, after step 309, described cellphone subscriber imports the dynamic password that described display module shows by described input module, and described dynamic password is sent to described verification platform by described portal website management devices verifies.Described verification platform is installed the authentication policy that each trade company sets dynamic password is verified, enters stateful transaction with trade company to permit the current phone user.
Preferably, the dynamic password that described display module shows is 6 dynamic passwords at random that produced every 60 seconds by described token management module.Portal website can change the token seed information in the described token management module, to change the generation rule of dynamic password, ensures that further user profile is not revealed.
Though oneself discloses the present invention as above with preferred embodiment, the present invention is defined in this.Any those skilled in the art without departing from the spirit and scope of the present invention, all can do various changes and modification, so protection scope of the present invention should be as the criterion with claim institute restricted portion.
Claims (6)
1. many token managements system of a handset token, it is characterized in that: described system comprises mobile phone terminal, portal website's management devices and verification platform, described portal website management devices links to each other with described mobile phone terminal, described verification platform respectively, described mobile phone terminal comprises input module, token management module and display module, wherein
Described verification platform, the trade company that is configured to each registration distributes the token of predetermined quantity, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to described portal website management devices;
Described portal website management devices, configuration is used for receiving and store the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration, and according to described token management module send at the token request of cellphone subscriber by the selected trade company of described input module, send and selected trade company corresponding token to described token management module;
Described token management module, configuration is used for according to the cellphone subscriber by the selected trade company of described input module, to send to described portal website management devices at the token request of selected trade company by network, and by network reception and selected trade company corresponding token, wherein the cellphone subscriber can select a plurality of different trade companies by described input module, makes described token management module receive a plurality of different tokens by network; Described token management module also disposes for send the one or more token activation request of a plurality of different tokens that receives at described token management module to described portal website management devices, and receive one or more token activation data of returning from described portal website management devices, to activate one or more tokens of described token management module;
Described display module, configuration is used for after described token management module activates one or more tokens of described token management module, according to the one or more tokens that activate in the described token management module, show the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.
2. dynamic password login system according to claim 1 is characterized in that: comprise memory in the described portal website management devices, configuration is used for the trade company of described each registration of storage and be a plurality of tokens of trade company's distribution of each registration.
3. dynamic password login system according to claim 1, it is characterized in that: described display module is the display module that comprises LCDs.
4. many token managements method of a handset token is characterized in that, may further comprise the steps:
Step 1: verification platform is the token that the trade company of each registration distributes predetermined quantity, and the trade company of each registration and a plurality of tokens of distributing for the trade company of each registration are sent to portal website's management devices;
Step 2: described portal website management devices receives and stores the trade company of each registration and is a plurality of tokens of trade company's distribution of each registration;
Step 3: the cellphone subscriber selects trade company by the input module of mobile phone terminal, and the token management module of mobile phone terminal will send to described portal website management devices at the token request of selected trade company by network;
Step 4: the management of described portal website receives described token request at selected trade company, and according to described token request, sends with selected trade company corresponding token to described token management module;
Step 5: described token management module receives and selected trade company corresponding token by network, and wherein, the cellphone subscriber can select a plurality of different trade companies by described input module, makes described token management module receive a plurality of different tokens by network;
Step 6: described token management module sends one or more token activation request in a plurality of different token that receives at described token management module to described portal website management devices;
Step 7: described portal website management devices sends one or more token activation data according to the one or more token activation request that receives;
Step 8: described token management module receives described one or more token activation data, to activate one or more tokens of described token management module;
Step 9: described display module is according to the one or more tokens that activate in the described token management module, shows the information of trade company of the token correspondence of the dynamic password of one or more tokens of described activation and each activation.
5. dynamic password login method according to claim 4, it is characterized in that: after step 9, described cellphone subscriber imports the dynamic password that described display module shows by described input module, and described dynamic password is sent to described verification platform by described portal website management devices verifies.
6. dynamic password login method according to claim 4 is characterized in that: the dynamic password that described display module shows is 6 dynamic passwords at random that produced every 60 seconds by described token management module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310216795.5A CN103259666B (en) | 2013-06-03 | 2013-06-03 | A kind of many token managements system and method for handset token |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310216795.5A CN103259666B (en) | 2013-06-03 | 2013-06-03 | A kind of many token managements system and method for handset token |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103259666A true CN103259666A (en) | 2013-08-21 |
| CN103259666B CN103259666B (en) | 2016-06-22 |
Family
ID=48963383
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310216795.5A Active CN103259666B (en) | 2013-06-03 | 2013-06-03 | A kind of many token managements system and method for handset token |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103259666B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103581202A (en) * | 2013-11-19 | 2014-02-12 | 上海众人网络安全技术有限公司 | Merchant token cross authentication method based on identity authentication platform |
| CN107278313A (en) * | 2015-02-27 | 2017-10-20 | 三星电子株式会社 | Means of payment operate support method and the electronic equipment for supporting this method |
| CN107771338A (en) * | 2015-06-07 | 2018-03-06 | 苹果公司 | Multiple security credences are provided on an electronic device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101632094A (en) * | 2007-02-28 | 2010-01-20 | 赛科伦有限公司 | Authoring system |
| WO2012054763A2 (en) * | 2010-10-22 | 2012-04-26 | Visa International Service Association | Integration of verification tokens with portable computing devices |
| CN103023657A (en) * | 2012-12-26 | 2013-04-03 | 武汉天喻信息产业股份有限公司 | Security verification system based on distributed network transaction |
| US20130086381A1 (en) * | 2011-10-04 | 2013-04-04 | Microsoft Corporation | Multi-server authentication token data exchange |
-
2013
- 2013-06-03 CN CN201310216795.5A patent/CN103259666B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101632094A (en) * | 2007-02-28 | 2010-01-20 | 赛科伦有限公司 | Authoring system |
| WO2012054763A2 (en) * | 2010-10-22 | 2012-04-26 | Visa International Service Association | Integration of verification tokens with portable computing devices |
| US20130086381A1 (en) * | 2011-10-04 | 2013-04-04 | Microsoft Corporation | Multi-server authentication token data exchange |
| CN103023657A (en) * | 2012-12-26 | 2013-04-03 | 武汉天喻信息产业股份有限公司 | Security verification system based on distributed network transaction |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103581202A (en) * | 2013-11-19 | 2014-02-12 | 上海众人网络安全技术有限公司 | Merchant token cross authentication method based on identity authentication platform |
| CN103581202B (en) * | 2013-11-19 | 2016-06-01 | 上海众人网络安全技术有限公司 | The trade company of identity-based authentication platform makes board cross-certification method |
| CN107278313A (en) * | 2015-02-27 | 2017-10-20 | 三星电子株式会社 | Means of payment operate support method and the electronic equipment for supporting this method |
| CN107771338A (en) * | 2015-06-07 | 2018-03-06 | 苹果公司 | Multiple security credences are provided on an electronic device |
| CN107771338B (en) * | 2015-06-07 | 2021-10-29 | 苹果公司 | Providing multiple security credentials on an electronic device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103259666B (en) | 2016-06-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101414909B (en) | System, method and mobile communication terminal for verifying network application user identification | |
| CN104123645B (en) | Mobile Internet intelligent payment terminal and payment system based on financial security certification | |
| US20150134536A1 (en) | Mobile terminal and method and system for inquiring information of intelligent card | |
| CN101814169A (en) | Method and device for realizing secure payment based on payment confirmation terminal and digital certification | |
| WO2014141103A2 (en) | Two-way, token-based validation for nfc-enabled transactions | |
| CN101675616A (en) | methods and systems for delivering sponsored out-of-band passwords | |
| CN103150837A (en) | System and method for achieving cardless withdrawal on automatic teller machine (ATM) | |
| CN103269273B (en) | A kind of dynamic password login system of independent account seamless access and method | |
| WO2015106369A1 (en) | Off-line guiding and confirmation device and method for supporting mobile payment | |
| CN101894335A (en) | Payment method and system for on-line transaction and home gateway | |
| CN102148685A (en) | Method and system for dynamically authenticating password by multi-password seed self-defined by user | |
| AU2020203182A1 (en) | secure data entry and display for a communication device | |
| CN106875247A (en) | A kind of multifunctional integrative system platform based on ecommerce | |
| CN101872513B (en) | Data processing method, device and system based on POS (Point-Of-Sale) machine | |
| CN103259666A (en) | Multi-token management system and method of mobile token | |
| CN106570742A (en) | Bulk commodity transaction platform product based network on-line auction method | |
| CN102768743A (en) | Security rating method and device for accounts of online payment system | |
| CN103051640A (en) | Bluetooth-based online banking safety equipment and data communication method thereof | |
| CN101477661B (en) | A kind of digital certificate management method, device and system | |
| CN101901306A (en) | Network transaction encryption method and dynamic password equipment used by same | |
| CN106980977A (en) | Payment system and its Payment Card based on Internet of Things | |
| TW201101779A (en) | Electronic wallet certification scheme and the method thereof | |
| WO2016099241A1 (en) | System and method for the authorisation of simple, sequential and parallel requests, comprising means for authorisation using previously defined parameters | |
| Shamsi et al. | Security Threats to M-Commerce: Indian Perspective | |
| CN108352987A (en) | A kind of transaction authorisation method and system based on the parallel multifactor authentication of autonomous channel multi-user |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |