CN105701651A

CN105701651A - Cross-regional settlement transaction system and method

Info

Publication number: CN105701651A
Application number: CN201610016767.2A
Authority: CN
Inventors: 何伯祥
Original assignee: Individual
Current assignee: Individual
Priority date: 2016-01-11
Filing date: 2016-01-11
Publication date: 2016-06-22

Abstract

The present invention discloses cross-regional settlement transaction system. The system comprises a security certificate management module, a distributed software issuing module and a plurality of prepositive terminals which are arranged in a same network. The security certificate management module is used for the digital certificate management, the authority management and the service catalog listing management, the distributed software issuing module is used to issue the latest prepositive terminal programs and a business verification rule base, and the prepositive terminals are connected with different business systems, can be used as the request terminal of initiating the transaction requests and also can be used as the service terminals of calling the correlated business systems to provide services, forward the information to the corresponding service terminals and establish the direct transaction correlation according to the business types and the regions of the request transactions and the information in a catalog listing, and carry out the transaction settlement via the agreed transaction secret keys. According to the present invention, the one-card and whole-network consumption in the cross-regional settlement is realized, the cross-regional, safe and reliable two-place direct transaction is realized, and the transaction two parties at the two places send the settlement results to a cross-regional settlement center to realize the non-repudiation three-party confirmed settlement.

Description

A kind of trans-regional settlement bargain system and method

Technical field

The present invention relates to a kind of trans-regional settlement bargain system and method, be specifically related to a kind of be applicable to receive medical treatment in allopatry and with the similar trans-regional settlement bargain system and method that receives medical treatment in allopatry。

Background technology

Along with expanding economy level improves constantly, the rate of joining insurance of China's medical care insurance improves year by year。Insurant transregional flowing employment, retired person go and seek refuge with children in insured extraterrestrial long-term life, travel on official business and need to the area that medical level is more advanced, to difficult and complicated illness, situations such as seeking medical advice, this generates medical care insurance insurant strange land go to a doctor demand。It is that insurant arrives first the medical cash settlement in strange land that past is more, then returns and handle reimbursement formality insuredly, and this can bring, to insurant, the difficulty that fund pays for first and go through the formalities back and forth。Seeking medical advice difficult problem for solving the masses, various places are attempted structure and are received medical treatment in allopatry settlement platform in recent years, solve insured people strange land and directly swipe the card the problem of clearing。

Social security card can not be trans-regional use, adopted in the past and built card management system with Hospitalization insurance system peer, medical insurance card, social security card can only use in one's respective area。It is insured that holder transfers to other area employment, it is necessary to handles social security card, medical insurance card to newly insured again application。Various places are all at the social security card issuing working advancing ministry standard in recent years, set up and economize (city) level social security card management system, access the multiple Hospitalization insurance system in this area, it is achieved " all-purpose card " of the social security card in territory, this card area under control。But still suffer from each card management system overlay area non-overlapping copies, it is impossible to realize mutually accessing。Leaving insured the still needing to of this card management region employment again to apply for handling new social security card, this still fails to realize social security card " all-purpose card " very well。

Receive medical treatment in allopatry clearing demand of directly swiping the card for solving the people, currently mainly adopt both of which:

One, the big centralized system of system。The medical care insurance business in relevant area is all focused on same system, it is achieved the settlement of transactions of directly swiping the card that receives medical treatment in allopatry of one's respective area。Due to ground level of economic development gap, Medical Insurance Policies, operational control pattern difference, in system centralized procedure policy, business coordination difficulty huge。The clearing of medical care insurance treatment simultaneously have again the features such as real-time, trading volume is big, computing is complicated。The settlement bargain amount can held due to the present art triangular web is limited, and this pattern is difficult to spread under existing business environment with technical merit。

Two, centralized transaction pass-through mode is adopted。Set up a centralized settlement center that receives medical treatment in allopatry and connect some information forwarding front end, be responsible for accepting various places transaction and ask and transaction is distributed。Front end is connected with various places medical care insurance treatment system, is responsible for accepting the transaction request of (medical place) medical care insurance treatment system and sending transaction request to (insured) medical care insurance treatment system。(medical place) medical treatment treatment system is connected the transaction request accepting hospital system initiation with hospital system。Such as Chinese patent literature CN101916420 discloses a kind of real-time medical insurance off-site medical care on-line settlement system, and this system includes some districts and cities Medicare Insurance Information System that switching plane Ji Yugai center, center switching plane is connected；Described center switching plane includes central application server and central database server；Described districts and cities Medicare Insurance Information System includes districts and cities' application server and districts and cities' database server；Wherein said central database server and districts and cities' database server store in order to data, districts and cities' application server docks with central application server, realization receive medical treatment in allopatry business cooperation and data exchange, this real-time medical insurance off-site medical care on-line settlement system also has the hospital's front end system being connected with districts and cities application servers, and this hospital's front end system is for obtaining to this hospital the patient's diagnosis information seen a doctor。

The working method of this kind of pattern: hospital initiates medical transaction request, by medical place medical care insurance treatment system, forwarding front end, medical place, the settlement center that receives medical treatment in allopatry, insured front end is forwarded to arrive insured ground medical care insurance treatment system, insured ground medical care insurance treatment system carries out settlement process by local policy, and then checkout result information is again along backtracking。

There is following problem in this kind of pattern:

1, Single Point of Faliure and performance bottleneck: the transaction of all country clearance all must pass through the distribution that the settlement center that receives medical treatment in allopatry is traded, sustainable growth along with constantly expansion, the portfolio that access area, the pressure of settlement center of receiving medical treatment in allopatry is increasing, and the settlement center that receives medical treatment in allopatry has become as the performance bottleneck of whole pattern。The Single Point of Faliure of settlement center of simultaneously receiving medical treatment in allopatry can directly contribute receiving medical treatment in allopatry of whole pattern and cannot run。

2, transaction reliability: owing to referring at least to six systems, series connection call chain passes by length, many secondary data property normally verifies, processing links is too much。Network, software system instability all can cause request timed out, loss of data, access failure, transaction reliability not high。

3, data consistency: owing to referring at least to hospital system, medical place Hospitalization insurance system, the settlement center that receives medical treatment in allopatry, insured ground Hospitalization insurance system four ground preservation transaction data。Adopting traditional request/recoverable information interactive mode, stateful transaction tracking measure is not in place, data consistency treatment mechanism imperfection, causes four ground data inconsistent。

4, Information Security: the information security aspect measures such as identification in transaction, data security, data integrity, non-repudiation are not enough, along with the increase of business can bring bigger potential safety hazard。

Summary of the invention

For solving the technical problem of above-mentioned existence, the present invention seeks to: a kind of trans-regional settlement bargain system and method is provided, it is achieved the logical brush of the whole network of a card in trans-regional clearing；Treatment spot and treatment are enjoyed between ground, it is achieved safe and reliable two places direct dealing；Two places will be sent to the comparison of transregional settlement center to checkout result and confirm, it is achieved the tripartite of resisting denying confirms clearing。

The technical scheme is that

A kind of trans-regional settlement bargain system, it is characterised in that include the safety certification management module, distributed software release module, some front ends and the transregional settlement center module that are arranged in consolidated network；

Described safety certification management module, for digital certificate management, rights management and service directory management；

Described distributed software release module, is used for issuing up-to-date front end program and business verification rule base；

Described front end connects from different operation systems, described front end not only can as the request end initiating transaction request but also the service end of service can be provided as calling related service system, according to the information in the class of service of requests transaction, area and service catalogue listing, forward information to respective service end and set up direct dealing contact, being traded clearing by arranging transaction key；

Described transregional settlement center module, the tripartite for making friends with the evidence that easily counts confirms and transregional disbursement and sattlement；After between front end, settlement of transactions completes, settlement information is sent to transregional settlement center module in encrypted signature mode by front end in an asynchronous manner, the module comparison of transregional settlement center will confirm that information returns both sides in encrypted signature mode after confirming again, completes tripartite's settlement data and confirms；

The regular region-by-region of transregional settlement center module produces transregional disbursement and sattlement form, and is sent to various places in encrypted signature mode, and comparison result is sent to transregional settlement center module in encrypted signature mode, completes transregional disbursement and sattlement after confirming by various places comparison。

Preferably, described front end includes basic module, is used for providing basic technology supporting, controls the operation of module, downloads and update local program and rule base；

Safety control module, is used for reading and manage local digital certificate, manages module request certification registration to safety certification；Accept the rights management of safety certification management module；Management transaction key；Down loading updating service catalogue table；

Rule correction verification module, carries out legitimacy verification with the return information calling business according to rule base to the service requesting information accepted；

Transaction route service module, according to the information in the class of service of requests transaction, area and service catalogue listing, forwards information to respective service end and sets up direct dealing contact；

Sound dealing module, uses the trade mode of stateful transaction Track Table and request/reply/confirmation/inquiry, is tracked transaction processing；

Call business service module, call the service of operation system。

Preferably, described rule correction verification module uses two-stage verification, verifies including development stages and runtime class, and described development stages verifies: information format, trading rules in rule base are verified；Described runtime class verifies: important business rule is verified。

Preferably, described service catalogue table preserves the certificate information of each front end and the class of service of service, area, address of service, service status information are provided。

The invention also discloses a kind of trans-regional settlement bargain method of trans-regional settlement bargain system, comprise the following steps:

S01: the digital certificate of front end, service authority, service catalogue table are carried out unified management, software and rule base to front end carry out unified management；

S02: request end obtains the information on services of service end, and request end and service end are set up direct dealing and contacted；By exchanging certificate flow process, confirm identity each other；By arranging transaction key flow process, arrange transaction encryption key each other；

S03: arrange transactional lock in request end, intercepts repetitive requests and repeatedly requestor；Use the trade mode of stateful transaction Track Table and request/reply/confirmation/inquiry, be tracked transaction processing；

S04: after having concluded the business, settlement information is sent to settlement center's module in encrypted signature mode by front end in an asynchronous manner, and the module comparison of transregional settlement center will confirm that information returns both sides in encrypted signature mode after confirming again, completes tripartite's settlement data and confirms；

S05: the regular region-by-region of transregional settlement center module produces transregional disbursement and sattlement form, and is sent to various places in encrypted signature mode, comparison result is sent to transregional settlement center module in encrypted signature mode, completes transregional disbursement and sattlement after confirming by various places comparison。

Preferably, described step S01 includes:

S11: safety certification: the digital certificate of front end is signed and issued and cancels management according to application by management module；According to the connect operation system scope of business in front end and service authority, the authority of front end is managed；

S12: start basic module and the safety control module of front end, read digital certificate information；

S13: front end manages module to safety certification and sends front end self information in encrypted signature mode and provide the information such as class of service, area, request registration；Safety certification management module identification request end identity, differentiates the verity of request, effectiveness, confirms the legitimacy of registration, extract the authority information of request end from authority storehouse, update service catalogue table information, to request end return authentication information and authority information；

S14: start relevant business service according to authority information, front end regular visit safety certification management module, report services state, download service catalogue listing, authority confirm, downloadable authentication cancels list；

S15: front end regular visit distributed software release module reads the version information of each module and rule base, and compares with local version information；If there is redaction, then download program or the rule of corresponding module；

S16: basic module is according to service conditions, and choose the right moment closedown correlation module, in local disposition latest edition program or rule, and opens the program of latest edition and the service of rule base。

Preferably, described step S02 includes:

S21: request end sends service requesting information, comprises class of service and area in described solicited message；

S22: service routing extracts purpose area and service category information；From service catalogue table, destination's information on services is retrieved according to purpose area；

S23: directly access destination's service, request end and service end are set up direct dealing and contacts；

S24: the certificate information of self is first sent to service end/request end by request end/service end；The PKI of service end/request end CA unties the CA digital signature of certificate, the verity of the certificate that checking request end/service end is held；The effectiveness of request end/service end certificate is judged according to the effect duration in certificate and certificate revocation list。

S25: request end/service end is sent to service end/request end with the private key of self after being digitally signed by password, service end/request end checks in the PKI of request end/service end from the certificate of request end/service end, the digital signature of checking request end/service end, it is determined that request end/service end identity reality and effectiveness；

S26: request end generates both sides' transaction key and effect duration；

S27: transaction key information is signed with the private key of request end；Request end by key information after the signature that produces with the public key encryption of service end；Transaction key information after ciphering signature is sent to service end；

S28: service end, with the private key decrypted transaction key information of self, the public key verifications signature of checking request end, distinguishes the true and false of transaction；Service end returns transaction key confirmation and signature is sent to request end；

S29: both sides preserve transaction key, within transaction key effect duration, both sides' Transaction Information mutual all with this key encryption and decryption。

Preferably, described step S03 includes:

S31: accepting business solicited message in request end, comprises personal information, class of service, regional information and transaction content in solicited message；According to business verification rule, the legitimacy of check request information；

S32: check the transactional lock state of the requested business of these personnel, if there is the transaction being not fully complete, stops this time request, until outstanding requests has been concluded the business or cancelled；

S33: transaction is carried out serialization according to rule by request end, and in stateful transaction Track Table record transaction sequence number, personal information, class of service and regional information, transaction content and transaction status information, open the transactional lock of the requested business of these personnel；

S34: solicited message is sent to service end and is traded request by request end；Service end processes request to operation system transmission, and request is processed by operation system；Service end accept business system return return information, according to business verification rule, verification return information legitimacy；If not conforming to rule to operation system report mistake the process before being write off by Business Processing, return return information as failed transactions to request end；

S35: service end records transaction sequence number, request content, request content signature, reply content and transaction status information in stateful transaction Track Table；

S36: return information is sent request end by service end, return information request is processed by request end, and request end updates reply content, the signature of reply content, confirmation content and transaction status information in stateful transaction Track Table, and affairs end transaction lock in request end cuts out；

S37: by asynchronous system, request end will confirm that information sends service end, service end processes confirmation, if positive acknowledgment recording status, if Negative Acknowledgement, rushes the former requests transaction that disappears and processes；

S38: service end updates in stateful transaction Track Table and confirms content, the signature confirming content and transaction status information, and both sides have concluded the business。

Preferably, if time-out fails to receive the return information of service end after request end transmission information, then process according to the following steps:

S211: request end records reply inquiry message in stateful transaction Track Table and updates transaction status information；

S212: the reply comprising requested content inquiry is sent to service end by request end, service end receives reply inquiry, retrieves the record of corresponding requests in stateful transaction Track Table；

S213: if the processed request of service end, extract return information from stateful transaction Track Table, return to request end；If not receiving solicited message before service end, then service end returns the return information of the request that do not connect to request end, and this transaction is cancelled in request end, and transactional lock is closed；

If the confirmation failing to receive request end over time limit after service end reply, then process according to the following steps:

S221: service end is registration confirmed inquiry message and renewal transaction status information in stateful transaction Track Table；

S222: the confirmation comprising return information content inquiry is sent to request end by service end；The reply record of corresponding requests is retrieved in request end in stateful transaction Track Table；

S223: if the processed reply in request end, then extract confirmation from stateful transaction Track Table, return to service end；If not receiving return information before request end, then request end returns confirmation to request end after processing request。

Preferably, described step S04 tripartite's settlement data confirms to comprise the following steps:

S311: tracking information of concluding the business in every settlement information and stateful transaction Track Table is sent to transregional settlement center module in encrypted signature mode by front end；Transregional settlement center the passed transaction record information of module verification folk prescription, records data, returns preliminary identification result；

S312: front end processes preliminary identification result, and records preliminary identification state, preliminary identification result and signature in stateful transaction tracking table record；

S313: the concordance of transregional settlement center module the passed data of comparison both sides, confirms settlement information；Transregional settlement center module will confirm that result is sent respectively to both sides；

S314: front end processes tripartite and confirms result, and record tripartite's acknowledgement state, tripartite confirm result and signature in stateful transaction tracking table record；

S315: front end checks and upload the settlement information that this ground is not uploaded in time, and checks that this locality is uploaded information and do not received the information confirming result, sends inquiry request to transregional settlement center module；

S316: transregional settlement center module generates day knot form, and various places are downloaded day and tied form and carry out comparing with local information；If consistent, send day knot confirmation result with signature scheme to transregional settlement center module；If inconsistent, perform step S315。

Preferably, the transregional disbursement and sattlement of described step S05 comprises the following steps:

S321: transregional settlement center module produces the transregional disbursement and sattlement form in various places；

S322: transregional disbursement and sattlement form is carried out encrypted signature and issues various places and issue by transregional settlement center module；

S323: the data that transregional settlement center module is issued by various places are decrypted, verify signature；Local data is collected by unified standard and produces the transregional clearing form consistent with transregional settlement center bore, and compare confirmation with the transregional disbursement and sattlement form of transregional settlement center；

S324: various places send confirmation result in encrypted signature mode to settlement center。

The present invention discloses again the card management method of a kind of trans-regional settlement bargain system, uses flow process including card application register flow path and card；

Described card application register flow path comprises the following steps:

S411: service request termination is by the card application registration request of operation system, and solicited message comprises card information, applied business classification, area；

S412: obtain the card sending mechanism information in card information, inquires about the card management system information on services of corresponding card sending structure in service catalogue table, sets up with card pipe service end and contacts；

S413: card application registration information is sent to card management service end；Card the management verity of service end authenticating card, effectiveness, differentiate the legitimacy of requested business；

S414: applied business classification, area and the status information that more neocaine is corresponding in card application service catalogue listing；

Described card uses flow process to comprise the following steps:

S421: request end receives card application request, comprises card information and requested applied business classification in solicited message；

S422: obtain the card sending mechanism information in card information, inquires about the card management system information on services of corresponding card sending structure in service catalogue table, sets up with card pipe service end and contacts；Initiate card applied business inquiry request to card pipe service end, solicited message comprises card information, requested service classification；

S423: card the management verity of service end authenticating card, effectiveness, differentiates the legitimacy of requested business；

S424: card management service end, according to card applied business inquiry request information, is extracted the requested applied business Service Zone information of this card from card application service catalogue listing and returned to request end；

S425: request end, according to card applied business Service Zone information, is set up direct writing by service routing flow process and destination's business service end and contacted；Operation flow according to request end and service end are traded。

Compared with prior art, the invention have the advantage that

1, the dependency of single-point is reduced

Avoid causing the paralysis of whole platform because of certain Single Point of Faliure。If safety certification management module or distributed software release module short time out of service can't impact of breaking down carry out arm's length dealing in platform between front end, two places；The carrying out without impact transaction if transregional settlement center module breaks down, when transregional settlement center module is properly functioning, settlement information is uploaded to transregional settlement center module regular way settlement by various places front end again。

2, the extensibility of business is promoted

Due between two places direct dealing and without the Distributor concentrated, the increase of access point, business growth do not result in single server pressure sharp increase, promote the extensibility that platform is overall。

3, the reliability of transaction is improved

Trade mode owing to adopting stateful transaction tracking and asking/reply/confirming/inquire guarantees the reliability of transaction and the concordance of data。

4, the safety of clearing is guaranteed

The means such as the encrypted signature of front end safety identification authentication and rights management, Transaction Information transmits, tripartite's settlement information confirmation of resisting denying guarantee the safety of clearing。

5, the maintainability of platform is strengthened

The distributed deployment of each front end, unified management, strengthen the maintainability of platform。Concentrate safety certification and rights management；Front end processor program issue, distributed deployment, automatic down loading updating unified with rule。

6, " all-purpose card " is realized

The card information supporting Duo Ka center realizes trans-regional bi-directional association with personnel's business information, really realizes a card the whole network general。

Accompanying drawing explanation

Below in conjunction with drawings and Examples, the invention will be further described:

Fig. 1 is the structured flowchart of the trans-regional settlement bargain system of the present invention；

Fig. 2 is the flow chart of safety management and register flow path；

Fig. 3 is the flow chart of card application register flow path；

Fig. 4 is the flow chart that card uses flow process；

Fig. 5 is the flow chart of service routing flow process；

Fig. 6 is the flow chart of exchange certificate flow process；

Fig. 7 is the flow chart of agreement transaction key flow process；

Fig. 8 is arm's length dealing flow chart；

Fig. 9 is the abnormality processing flow chart not receiving reply after request；

Figure 10 is the abnormality processing flow chart not receiving confirmation after replying；

The tripartite that Figure 11 is resisting denying confirms settlement method flow chart；

Figure 12 is the flow chart of transregional disbursement and sattlement flow process。

Detailed description of the invention

For making the object, technical solutions and advantages of the present invention clearly understand, below in conjunction with detailed description of the invention and with reference to accompanying drawing, the present invention is described in more detail。It should be understood that these descriptions are illustrative of, and it is not intended to limit the scope of the present invention。Additionally, in the following description, the description to known features and technology is eliminated, to avoid unnecessarily obscuring idea of the invention。

As it is shown in figure 1, a kind of trans-regional settlement bargain system includes: safety certification management module, distributed software release module, transregional settlement center module, some front ends。

Safety certification management module major function: digital certificate management, rights management and service directory management。Service catalogue table preserves the certificate information of each front end and the information such as the class of service of service, area, address of service, service state are provided。

Distributed software release module major function: unified issue up-to-date front end program and business verification rule base。

Front end major function: be connected with related service system, it is achieved based on class of service, the transaction route service in area with provide safe and reliable two places direct dealings service。Operation system in Fig. 1 includes card management system, ground operation system is enjoyed in treatment, treatment spot operation system and the front end that is connected with transregional settlement center module。The operation system that front end connects generally can not only be used for the requesting party that transaction is initiated, and while as the service side providing service, can initiate ground difference according to business and undertake different roles again。Being easy to representation function for sending out in the present invention, accept the front end for the treatment of spot operation system transaction request with request end acute pyogenic infection of finger tip, service end acute pyogenic infection of finger tip is called treatment and is enjoyed the front end of ground operation system。

Front end includes: basic module, safety control module, secure digital certificate, request module of accepting business, rule correction verification module, business verify rule base, transaction route service module, service catalogue table, sound dealing module, stateful transaction Track Table, call business service module。

Basic module major function: provide the function on basis, front end, provides base support service for other modules, starts or disable the operation of other modules。Realize and software release module retrieval recent software and rule base version, download and update local program and rule base。

Safety control module major function: read local digital certificate, to safety certification and management system requested certification registration；Accept the rights management of safety certification management system；Managing digital certificate, transaction key；Down loading updating service catalogue table；Security control in two places direct dealing process。

Request module of accepting business major function: the access request of system of accepting business。

Rule correction verification module major function: the service requesting information accepted is carried out legitimacy verification with the return information calling business according to rule base。Rule two ranks of verification point: a development stages verification: information format, trading rules etc. in rule base are all verified；Two runtime class verifications: only important business rule is verified。

Transaction route service module major function: according to the information in the class of service of requests transaction, area and service catalogue listing, information is forwarded service end。

Sound dealing module major function: use the trade mode of stateful transaction Track Table and request/reply/confirmation/inquiry, is tracked transaction processing, it is ensured that the reliability of transaction and the concordance of data。

Call business service module: adjust the service of operation system。

Transregional settlement center module, regularly region-by-region produces transregional disbursement and sattlement form automatically, and is sent to various places in encrypted signature mode, after various places comparison confirms, in encrypted signature mode, comparison result is sent to transregional settlement center module, it is achieved transregional disbursement and sattlement accuracy and safety。

The trans-regional settlement bargain method of the present invention is mainly made up of following several method:

The tripartite of front end Explore of Unified Management Ideas, support " all-purpose card " method at Duo Ka center, safe and reliable two places direct dealing method and resisting denying confirms settlement method。

Front end Explore of Unified Management Ideas, realizes the digital certificate of front end, service authority, service catalogue table are carried out unified management by safety management and register flow path；Issue more new technological process by software to realize software and the rule base of front end are carried out unified management。

As in figure 2 it is shown, safety management is as follows with the step of register flow path:

1, management certificate: the digital certificate of front end is signed and issued and cancels management according to application by safety certification management module；

2, administration authority: the authority of front end, according to the connect operation system scope of business in front end and service authority, is managed by safety certification management module；

3, front end is started: start basic module and safety control module；

4, digital certificate is obtained: read digital certificate information；

5, request registration: manage module encrypted signature mode to safety certification and send front end self information and the information such as class of service, area is provided, request registration；

6, checking identity: safety certification management module identification request end identity, differentiates the verity of request, effectiveness, confirms the legitimacy of registration；

7, authority information is extracted: safety certification management module extracts request end authority information from authority storehouse；

8, service catalogue is updated: update the information such as the service type in service catalogue table, area and service state；

9, return information: to request end return authentication information and authority information；

10, service is opened: start relevant business service according to authority information；

11, refreshing service information: front end regular visit safety certification management system, report services state, download service catalogue listing, authority confirm, downloadable authentication cancels list etc.。

The step of more new technological process issued by software:

1, redaction is issued: the program of front end dependent module of redaction, rule are published to software-distribution center；

2, version information is obtained: front end regular visit software-distribution center reads the version information of each module and rule base；

3, version information is compared: compare with local version information；

4, latest edition is downloaded: if there is redaction, then download program or the rule of corresponding module；

5, service is closed: basic module, according to service conditions, selects proper moment to close correlation module；

6, redaction is disposed: basic module completes the local disposition of latest edition program or rule；

7, service is opened: open the program of latest edition and the service of rule base。

Support " all-purpose card " method at Duo Ka center:

By card application register flow path, it is achieved card information and personnel's business information bi-directional association in card management system with operation system；Using flow process by card, spot, treatment ground contacts with card management system foundation according to the card sending mechanism information in card, then in inquirying card guard system, regional information is enjoyed in the treatment of the requested class of service of this card。

For realizing the bi-directional association of card information and personnel's business information, card management system needs registration card application service catalogue and provides the card application registration service of unified standard, card checking and authentication service, card applied business inquiry service etc.；Operation system also needs to initiate association requests by unified standard and provide the card applied business personnel inquiry of unified standard to service。

As it is shown on figure 3, the step of card application register flow path:

1, registration request is accepted: service request termination, by the card application registration request of operation system, comprises card information, applied business classification, area etc. in solicited message；

2, obtain card management service: obtain the card sending mechanism information in card information, service catalogue table is inquired about the card management system information on services of corresponding card sending structure, set up with card pipe service end and contact；

3, registration request is sent: card application registration information is sent to hair fastener management service end。

4, checking request legitimacy: the verity of card management system authenticating card, effectiveness, differentiates the legitimacy of requested business；

5, more neocaine application service catalogue listing: applied business classification, area and the status information that more neocaine is corresponding in card application service catalogue listing。

As shown in Figure 4, card uses process step as follows:

1, accept card application request: request end receives card application request, solicited message comprises card information, requested applied business classification；

3, the request of card application query is initiated: initiate card applied business inquiry request to card pipe service end, solicited message comprises card information, requested service classification；

5, card application service information is obtained: card management system, according to card applied business inquiry request information, extracts the requested applied business Service Zone information of this card from card application service catalogue listing and returns to request end。

6, set up business relations: request end according to card should business service regional information, service routing flow process and destination's business service end are set up direct writing and are contacted；

7, direct dealing is carried out: be made directly transaction according to operation flow service request end and business service end。

The method of safe and reliable two places direct dealing:

By service routing flow process, request end (treatment spot) obtains the information on services of service end (ground is enjoyed in treatment), and request end (treatment spot) establishes direct links with service end (ground is enjoyed in treatment)；By exchanging certificate flow process, confirm identity each other；By arranging transaction key flow process, arrange transaction encryption key each other；By Control for Dependability flow process of concluding the business, it is ensured that the reliability of transaction and the concordance of data；By trading information safety transfer process, it is ensured that the confidentiality of transaction and non-repudiation。

As it is shown in figure 5, the step of service routing flow process:

1, the request of accepting business: accept business solicited message in request end, comprises class of service and area in solicited message；

2, business purpose ground is extracted: the destination informations such as purpose area, class of service are extracted in request end from Transaction Information；

3, purpose address of service is obtained: request end retrieves destination's information on services according to destination information from service catalogue table；

4, establish direct links: directly accessing destination's service, request end and service end are set up direct dealing and contacted。

As shown in Figure 6, the step of certificate flow process is exchanged:

1, digital certificate is sent: the certificate information of oneself is first sent to service end by request end；

2, verify that the PKI of the certificate true and false: service end CA unties the CA digital signature of certificate, the verity of the certificate that checking book request end is held；

3, certificate validity is checked: service end judges the effectiveness of request end certificate according to the effect duration in certificate and certificate revocation list (CRL)。

4, the true and false of checking request identity: password is digitally signed with the private key of oneself and sends service end to by request end, service end checks in the PKI of request end from the certificate of request end, namely the digital signature of request end is verified, it is determined that request end identity reality and effectiveness。

Service for checking credentials end method in request end is similar with upper。

Both sides preserve certificate information each other, in order to use from now on。

As it is shown in fig. 7, the step of agreement transaction key flow process is as follows:

1, transaction key is produced: request end produces both sides' transaction key and agreement effect duration；

2, signature transaction key: transaction key information is signed with the private key of request end；

3, encryption transaction key: request end by key information after the signature that produces with the public key encryption of service end；

4, transaction key is sent: the transaction key information after ciphering signature is sent to service end。

5, decruption key message: service end is with the private key decrypted transaction key information of oneself；

6, checking trading signature: the public key verifications signature of service end checking request end, distinguishes the true and false of transaction；

7, confirmation is returned: service end returns transaction key confirmation and signature is sent to request end；

8, transaction key is preserved: both sides preserve transaction key, within transaction key effect duration, the Transaction Information of both sides mutual all with key encrypting and decrypting。

Transaction Control for Dependability flow process:

By arranging transactional lock in request end, it is prevented that repetitive requests with repeatedly ask out of order；Record stateful transaction by both sides and follow the tracks of, with request/reply/confirmation/inquiry stateful transaction, reliability, the concordance that process guarantees to conclude the business。

As shown in Figure 8,1, arm's length dealing step is as follows:

1.1 accept transaction request: the request end request of accepting business, and comprise personal information, class of service and regional information, transaction content in solicited message；

1.2 check transaction legitimacy: according to business verification rule, the legitimacy of check request information；

1.3 check trade transactions lock: check the transactional lock state of the requested business of these personnel, if there is the transaction being not fully complete, stop this time request, until outstanding requests has been concluded the business or cancelled；

1.4 preserve tracking information: transaction is carried out serialization according to rule by request end, and in stateful transaction Track Table, record transaction sequence number, personal information, class of service, regional information, transaction content and transaction status information, open the transactional lock of the requested business of these personnel；

1.5 send transaction request: solicited message is sent to service end by safe information transmission flow process by request end；

1.6 process transaction request: service end processes request to operation system transmission, and request is processed by operation system；

1.7 check reply legitimacies: service end accept business system return return information, according to business verification rule, verification return information legitimacy；

If 1.7.1 not conforming to rule to operation system report mistake the process before being write off by Business Processing, return return information as failed transactions to request end；

1.8 preserve tracking information: service end records transaction sequence number, request content, request content signature, reply content and transaction status information in stateful transaction Track Table；

1.9 return return information: return information is sent request end by safe information transmission flow process by service end；

1.10 process return information: return information request is processed by request end；

1.11 update tracking information: request end updates reply content, the signature of reply content, confirmation content and transaction status information in stateful transaction Track Table, and affairs end transaction lock in request end cuts out；

1.12 send confirmation: asynchronous system is passed through in request end, will confirm that (positive acknowledgment or Negative Acknowledgement) information sends service end by safe information transmission flow process；

1.13 process confirmation: service end processes confirmation, if positive acknowledgment recording status, process if Negative Acknowledgement then rushes the former requests transaction that disappears；

1.14 update tracking information: service end updates in stateful transaction Track Table and confirms content, the signature confirming content and transaction status information, and both sides have concluded the business。

2, the abnormality processing step of reply is not received after request as shown in Figure 9:

If time-out fails to receive the return information of service end after request end transmission information, then process according to the following steps:

2.1 update tracking information: request end records reply inquiry message in stateful transaction Track Table and updates transaction status information；

2.2 send a reply inquiry: the reply comprising requested content inquiry is sent to service end by safe information transmission flow process by request end；

2.3 inquiry tracking information: service end receives reply inquiry, retrieves the record of corresponding requests in stateful transaction Track Table；

If the 2.3.1 processed request of service end, extract return information from stateful transaction Track Table, return to request end；

If 2.3.2 not receiving solicited message before service end, then service end returns the return information of the request that do not connect to request end。This transaction is cancelled in request end, and transactional lock is closed；

Other steps are identical with normal flow。

3, the abnormality processing step of confirmation is not received after replying, as shown in Figure 10:

3.1 update tracking information: service end is registration confirmed inquiry message and renewal transaction status information in stateful transaction Track Table；

3.2 send confirmation inquiry: the confirmation comprising return information content inquiry is sent to request end by safe information transmission flow process by service end；

3.3 inquiry tracking information: the reply record of corresponding requests is retrieved in request end in stateful transaction Track Table；

If the 3.3.1 processed reply in request end, then extract confirmation from stateful transaction Track Table, return to service end；

If 3.3.2 not receiving return information before request end, then request end returns confirmation to request end after processing request；

The step of safe information transmission flow process:

1, signature Transaction Information: transaction data is signed by sender with the private key of oneself；

2, encrypted transaction message: Transaction Information after sender's use transaction key ciphering signature each other；

3, Transaction Information is sent: the transaction data after encryption and signature are sent to the other side by sender；

4, decrypted transaction information: reciever transaction key decrypted transaction information each other；

5, checking signing messages: the signature of reciever checking transaction, it was demonstrated that the integrity transaction information sent by the other side。

As shown in figure 11, the tripartite of resisting denying confirms settlement method:

By service routing flow process, both sides are allowed to establish direct links；By exchanging certificate flow process, agreement transaction key, safe information transmission flow process, it is ensured that the safety that information is mutual。By settlement information, tripartite confirms flow process, it is achieved the ground data consistency of tripartite, non-repudiation are enjoyed in treatment spot, transregional settlement center, treatment；By transregional disbursement and sattlement flow process, it is achieved the accuracy of settlement center and various places disbursement and sattlement。

Settlement information tripartite confirms process step:

1, settlement of transactions is completed: by the method for safe and reliable two places direct dealing, treatment spot and treatment complete clearing and confirm with enjoying；

2, settlement information is uploaded: front end is by tracking information of concluding the business in every settlement information and stateful transaction Track Table, by safe information transmission flow process transmission to transregional settlement center；

3, checking folk prescription data: transregional settlement center checking the passed transaction record information of folk prescription, record data, return preliminary identification result；

4, the result is processed: front end processes preliminary identification result, and records preliminary identification state, preliminary identification result and signature in stateful transaction tracking table record；

5, comparison settlement data: the concordance of transregional settlement center the passed data of comparison both sides (ground is enjoyed with treatment in treatment spot), confirms settlement information；

6, confirmation result is returned: data tripartite is confirmed that result is sent respectively to various places by transregional settlement center；

7, confirmation result is processed: front end processes tripartite and confirms result, and record tripartite's acknowledgement state, tripartite confirm result and signature in stateful transaction tracking table record；

8, process does not pass clearing: check whether local settlement information does not upload data in time, uploads the transregional settlement center of data in time；

9, inquiry comparison result: and check this locality upload information no have do not receive confirm result information, to transregional settlement center send inquiry request；

10, day knot form is generated: transregional settlement center generates day knot form next day；Day ties form and only does the use to wealth；

11, comparison confirms day knot: various places are downloaded settlement information table and carry out comparing with local information；If consistent, send day knot confirmation result with signature scheme to transregional settlement center；If existing inconsistent, perform 8,9 two-step pretreatment abnormal；If transregional settlement center data change, regenerate the settlement information table of corresponding billing cycle。It is downloaded into row comparing again, until data consistent。

As shown in figure 12, the step of transregional disbursement and sattlement flow process is as follows:

1, clearing form is produced: transregional settlement center module produces the transregional disbursement and sattlement form in various places；This transregional disbursement and sattlement form, for monthly or quarterly to produce transregional disbursement and sattlement table, is formally settled accounts for expense；

2, clearing form is issued: clearing form is carried out encrypted signature and issues various places and issue by transregional settlement center module；

3, comparison confirms clearing: the data that transregional settlement center module is issued by various places are decrypted, verify signature；Local data is collected by unified standard and produces the transregional clearing form consistent with transregional settlement center module bore, and compare confirmation with the transregional disbursement and sattlement form of transregional settlement center module；

4, confirmation result is sent: various places send confirmation result in encrypted signature mode to transregional settlement center module。

Embodiment:

One, running environment:

1, network environment

For ensureing the operation of platform, it is necessary to assure safety certification management module, distributed software release module, transregional settlement center module, front end, various places in platform, in consolidated network, can directly access each other mutually。Front end is connected with business network again through Network Security Device simultaneously, it is achieved mutually access between front end and operation system。

2, card standard and environment:

Unified fabrication standard, Card Reader utensil must be adopted；The card management system of access platform needs registration card application service catalogue and provides the card application registration service of unified standard, card checking and authentication service, card applied business inquiry service etc.；Operation system also needs to initiate association requests by unified standard and provide the card applied business personnel inquiry of unified standard to service。

3, operation flow and interface standard:

The operation system of access platform according to unified standard operation flow, interface standard, must be connected with platform by front end。

Specific implementation process:

Front end Explore of Unified Management Ideas:

1, software is issued

Along with need increase business function or the running of business development find system defect。Revision program is also issued by delivery system is unified, uses software to issue more new technological process and completes the concentration issue of front end program and rule, distributed deployment, automatically updates。

2, operation system accesses

Download data: contact administrative organization downloads front end program, rule base and relevant documentation；

Transformation operation system: related service and the method calling front end service are provided according to documentation requirements；

Exploitation test: front end is connected in non-trans-regional settlement bargain system mode and operation system to be tested, is used for developing test；

Joint debugging is tested: application contact test, accesses trans-regional settlement bargain system by front end and carries out Network test with corresponding test lead；

Application certificate: apply for certificate and authority to administrative organization；

Application deployment: install certificate, configuration front end, access service system, commencement of commercial operation。

Open registration: application safety management and register flow path complete the unlatching service of front end, commencement of commercial operation。

Use this trans-regional settlement bargain system, it is achieved insured people holds the different process sought medical advice of social security card:

1, insured registration: insured people is handling insured formality；

2, social security card is claimed: claiming social security card to the card management system belonging to insured ground, insured ground operation system calls card application register flow path, it is achieved the bi-directional association of card information and the insured information of personnel in card management system and social security sector；

3, swipe the card and seek medical advice: insured people swipes the card seek medical advice to strange land (can be not belonging to held social security card restriction) hospital；

4, hospital sends to medical place operation system (treatment spot) to the request of swiping the card；

5, card management service is obtained: use card to use flow process to obtain (ground is enjoyed in the treatment) information insuredly of this holder；

6, medical place and insured the method exchange personal information using two places direct dealing, system carry out receiving medical treatment in allopatry personal information registration, insured the insurant that carries out in medical place receives medical treatment in allopatry information registration；

7, the feedback information of swiping the card that infection from hospital returns；

8, hospital has been concluded the business the operation flow received medical treatment in allopatry to this trans-regional settlement bargain system request by medical place operation system and front end, (diagnosis recording, detail upload, clearing etc.)；

9, request end (front end, medical place) and service end (front end, insured ground) application safety reliable two places direct dealing way have processed the requested business transaction of hospital system (diagnosis recording, detail upload, clearing etc.)；

10, request end (front end, medical place), service end (front end, insured ground) use settlement information tripartite to confirm flow process and transregional settlement system interact, the tripartite completing settlement information confirms；(only processing checkout result information, do not include the process of exchange information such as diagnosis recording, expense detail)；

11, various places operation system and transregional settlement system use transregional disbursement and sattlement flow process and transregional settlement system to interact, and complete the disbursement and sattlement that receives medical treatment in allopatry。

" all-purpose card " method supporting Duo Ka center receives medical treatment in allopatry the implementation in platform at centralized transaction pass-through mode:

Support that " all-purpose card " method at Duo Ka center is except can except two places direct dealing formula transregional settlement center module realizes " all-purpose card ", it is also possible to by the transformation that the platform that receives medical treatment in allopatry to centralized transaction relay type is certain, use the method to realize " all-purpose card "。

Because the standard that the card of A, B area distribution performs is unified, they then can logically be intersected and are connected by we。

Bind in card administrative organization if the A0001 card of holder and business are enjoyed area by 1；Read when swiping the card in B1 area card card issuer be A card administrative organization, A card administrative organization is then issued in card checking request by the system of handling in B1 area, and A card administrative organization returns the business service area A1 of this card holder when A card verity, effectiveness are verified in return simultaneously。B1 area exchanges information with A1 area again through business cooperation mechanism and handles related service。

If 2 holders will have a certain business from the dynamic B1 area of A1 area transfer, then can take the card A0001 of A card administrative organization distribution to B1 area and remove registration formalities, B1 area is by related service in the registration of A card administrative organization, then the card of holder can continue all regions use shown in the figure。

Card standard and environmental reconstruction:

Unified fabrication standard, Card Reader utensil must be adopted；The card management system of access platform needs registration card application service catalogue and provides the card application registration service of unified standard, card checking and authentication service, card applied business inquiry service etc.；Operation system also needs to initiate association requests by unified standard and provide the card applied business personnel inquiry of unified standard to service。Operation system increases service catalogue table: record card sending mechanism and corresponding card management system information on services。

Implementing procedure is as follows:

1, insured registration: insured people is handling insured formality；

6, medical place by Distribution Center and is traded insuredly。Insured ground system log (SYSLOG) insurant seek medical advice area, hospital etc. receive medical treatment in allopatry information registration；Medical place system obtains the essential information of this card personnel and insured treatment information, carries out the personal information registration that receives medical treatment in allopatry；

7, original transaction settlement method that receives medical treatment in allopatry is adopted to complete settlement of transactions；

8, original method is adopted to complete transregional disbursement and sattlement。

By using above method, it is possible to reduce repeating fabrication after transregional, reduction operating cost, minimizing business are handled pressure, made things convenient for the people to seek medical advice, improve QoS。

It should be appreciated that the above-mentioned detailed description of the invention of the present invention is used only for exemplary illustration or explains principles of the invention, and it is not construed as limiting the invention。Therefore, any amendment of making when without departing from the spirit and scope of the present invention, equivalent replacement, improvement etc., should be included within protection scope of the present invention。Additionally, claims of the present invention be intended to fall in the equivalents on scope and border or this scope and border whole change and modifications example。

Claims

1. a trans-regional settlement bargain system, it is characterised in that include the safety certification management module, distributed software release module, some front ends and the transregional settlement center module that are arranged in consolidated network；

Described safety certification management module, for digital certificate management, rights management and service directory management；

Described distributed software release module, is used for issuing up-to-date front end program and business verification rule base；

2. trans-regional settlement bargain system according to claim 1, it is characterised in that described front end includes basic module, is used for providing basic technology supporting, controls the operation of module, downloads and update local program and rule base；

Rule correction verification module, carries out legitimacy verification with the return information calling business according to rule base to the service requesting information accepted；

Sound dealing module, uses the trade mode of stateful transaction Track Table and request/reply/confirmation/inquiry, is tracked transaction processing；

Call business service module, call the service of operation system。

3. trans-regional settlement bargain system according to claim 1, it is characterised in that described rule correction verification module uses two-stage verification, verifies including development stages and runtime class, and described development stages verifies: information format, trading rules in rule base are verified；Described runtime class verifies: only important business rule is verified。

4. trans-regional settlement bargain system according to claim 1, it is characterised in that preserve the certificate information of each front end in described service catalogue table and the class of service of service, area, address of service, service status information are provided。

5. the trans-regional settlement bargain method based on the trans-regional settlement bargain system described in claim 1, it is characterised in that comprise the following steps:

S01: the digital certificate of front end, service authority, service catalogue table are carried out unified management, software and rule base to front end carry out unified management；

6. trans-regional settlement bargain method according to claim 5, it is characterised in that described step S01 includes:

S12: start basic module and the safety control module of front end, read digital certificate information；

7. trans-regional settlement bargain method according to claim 5, it is characterised in that described step S02 includes:

S21: request end sends service requesting information, comprises class of service and area in described solicited message；

S22: service routing extracts purpose area and service category information；From service catalogue table, destination's information on services is retrieved according to purpose area；

S23: directly access destination's service, request end and service end are set up direct dealing and contacts；

S24: the certificate information of self is first sent to service end/request end by request end/service end；The PKI of service end/request end CA unties the CA digital signature of certificate, the verity of the certificate that checking request end/service end is held；The effectiveness of request end/service end certificate is judged according to the effect duration in certificate and certificate revocation list；

S26: request end generates both sides' transaction key and effect duration；

S29: both sides preserve transaction key, within transaction key effect duration, both sides' Transaction Information mutual all with this key encryption and decryption。

8. trans-regional settlement bargain method according to claim 5, it is characterised in that described step S03 includes:

S35: service end records transaction sequence number, request content, request content signature, reply content and transaction status information in stateful transaction Track Table；

S38: service end updates in stateful transaction Track Table and confirms content, the signature confirming content and transaction status information, and both sides have concluded the business。

9. trans-regional settlement bargain method according to claim 8, it is characterised in that if time-out fails to receive the return information of service end after request end transmission information, then process according to the following steps:

S211: request end records reply inquiry message in stateful transaction Track Table and updates transaction status information；

If the confirmation failing to receive request end over time limit after service end reply, then process according to the following steps:

S221: service end is registration confirmed inquiry message and renewal transaction status information in stateful transaction Track Table；

10. trans-regional settlement bargain method according to claim 5, it is characterised in that described step S04 tripartite's settlement data confirms to comprise the following steps:

S314: front end processes tripartite and confirms result, and record tripartite's acknowledgement state, tripartite confirm result and signature in stateful transaction tracking table record；

11. trans-regional settlement bargain method according to claim 10, it is characterised in that the transregional disbursement and sattlement flow process in described step S05 comprises the following steps:

S321: transregional settlement center module produces the transregional disbursement and sattlement form in various places；

S322: transregional disbursement and sattlement form is carried out encrypted signature and issues various places and issue by transregional settlement center module；

S324: various places send confirmation result in encrypted signature mode to settlement center。

12. the card management method based on the trans-regional settlement bargain system described in claim 1, it is characterised in that include card application register flow path and card uses flow process；

Described card application register flow path comprises the following steps:

S411: service request termination is by the card application registration request of operation system, and solicited message comprises card information, applied business classification, area；

S414: applied business classification, area and the status information that more neocaine is corresponding in card application service catalogue listing；

Described card uses flow process to comprise the following steps:

S421: request end receives card application request, comprises card information and requested applied business classification in solicited message；

S423: card the management verity of service end authenticating card, effectiveness, differentiates the legitimacy of requested business；