CN106603239B - A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card - Google Patents

A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card Download PDF

Info

Publication number
CN106603239B
CN106603239B CN201611040897.6A CN201611040897A CN106603239B CN 106603239 B CN106603239 B CN 106603239B CN 201611040897 A CN201611040897 A CN 201611040897A CN 106603239 B CN106603239 B CN 106603239B
Authority
CN
China
Prior art keywords
visible card
data
application
bluetooth visible
result
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201611040897.6A
Other languages
Chinese (zh)
Other versions
CN106603239A (en
Inventor
陆舟
于华章
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Feitian Technologies Co Ltd
Original Assignee
Feitian Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Feitian Technologies Co Ltd filed Critical Feitian Technologies Co Ltd
Priority to CN201611040897.6A priority Critical patent/CN106603239B/en
Publication of CN106603239A publication Critical patent/CN106603239A/en
Application granted granted Critical
Publication of CN106603239B publication Critical patent/CN106603239B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication

Abstract

The present invention relates to information security fields, disclose a kind of main account inquiry into balance method based on bluetooth visible card, including:Bluetooth visible card receives the inquiry main account remaining sum trading instruction that client issues;Selection application;It performs offline data certification and processing limits, perform holder's certification and behavioural analysis, and the terminal authentication result inside bluetooth visible card is set;When the application cryptogram in behavioural analysis result is authorization requests ciphertext, online request is initiated to issuers server by client, obtains online response message, the main account balance amount information in online response message shows main account remaining sum.Also disclose a kind of bluetooth visible card for being applicable in the above method.The beneficial effects of the present invention are overcome the drawbacks of needing to be inquired by financial transaction terminal in the prior art, improve convenience and the safety of main account inquiry into balance.

Description

A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card
Technical field
The present invention relates to information security field, more particularly to a kind of main account inquiry into balance side based on bluetooth visible card Method and bluetooth visible card.
Background technology
With the continuous improvement of IT application of financial industry degree, requirement of the financial industry to safe class is also growing, Domestic and international each big bank all falls over each other to release financial IC card, to substitute traditional magnetic stripe card comprehensively.Financial IC card is also known as chip silver Row card, is the bank card using chip as medium, chip card capacity is big, can store the information such as key, digital certificate and fingerprint. Inventor has found the prior art in the implementation of the present invention, and at least there are following defects:Financial IC card holder uses finance IC card inquiry main account remaining sum is needed by financial transaction terminals such as POS machine, and safety and convenience are poor.
Invention content
The defects of the purpose of the present invention is overcoming the prior art, provides a kind of main account remaining sum based on bluetooth visible card and looks into Inquiry method and bluetooth visible card.
The present invention is achieved through the following technical solutions:
On the one hand, the present invention provides a kind of main account inquiry into balance method based on bluetooth visible card, including:
Step S1, bluetooth visible card receives the inquiry main account remaining sum trading instruction that client issues;
Step S2, described bluetooth visible card selection application, performs offline data certification and processing limitation checks, and de- When machine data authentication fails and processing limitation check not by when update terminal authentication result inside the bluetooth visible card;It holds Row holder's certification updates the terminal authentication result according to holder's certification implementing result;Process performing is analyzed, and judges behavior The type of application cryptogram in analysis result is then inquired if application authorization ciphertext and is failed, and is terminated, if authorization requests ciphertext then Perform step S3;
Step S3, described bluetooth visible card initiates online request by the client to issuers server, receives institute State the online response message that issuers server is returned by the client;
Step S4, main account balance amount information of the described bluetooth visible card in the online response message shows main account Remaining sum, successful inquiring terminate.
In the present invention, it can also include before step S1:The bluetooth visible card receives inquiry request input by user Afterwards, inquiry main account balance request is sent to the client.Optionally, the bluetooth visible card receives input by user look into Asking request is specially:The bluetooth visible card detects that programmable button is pressed.
In the present invention, it can also include in step S1:The bluetooth visible card is according to the inquiry main account remaining sum transaction Transaction data in instruction judges whether the inquiry main account remaining sum trading instruction is legal, is to continue to execute the step S2, otherwise inquiry failure, terminates.Optionally, the transaction data includes type of transaction and transaction amount;The bluetooth visible card Whether transaction data in the inquiry main account remaining sum trading instruction judges the inquiry main account remaining sum trading instruction It is legal, specially:The bluetooth visible card judges whether that the type of transaction and the transaction amount are respectively to inquire main account Remaining sum transaction and 0 is that then the inquiry main account remaining sum trading instruction is legal, the otherwise inquiry main account remaining sum trading instruction It is illegal.
In the present invention, further included in step S2:The visual card initialization of bluetooth is chosen to apply, and obtains and is chosen application Apply interaction feature;Correspondingly, it is described execution offline data certification be specially:Off line is determined according to the application interaction feature Data authentication mode performs the offline data certification of the mode.Optionally, the offline data authentication mode includes:It is compound Dynamic Data Authentication, off line Dynamic Data Authentication and off line static data certification;It is described to be determined according to the application interaction feature Offline data authentication mode performs the offline data certification of the mode, specifically includes:
Step 1 judges to be chosen whether application supports compound Dynamic Data Authentication according to the application interaction feature, if branch It holds, performs compound Dynamic Data Authentication, otherwise perform step 2;
Step 2 judges to be chosen whether application supports off line Dynamic Data Authentication according to the application interaction feature, if branch It holds, performs off line Dynamic Data Authentication, otherwise perform off line static data certification.
In the present invention, the process performing analysis can be specially:Perform terminal behavior analysis and card behavioural analysis;Institute Stating in behavioural analysis result can specifically include:Cryptogram information data, application cryptogram and credit card issuer application data.Further, Judging the type of the application cryptogram in behavioural analysis result can be specially:Check the predetermined bit position of the cryptogram information data Value, if the first preset value, then the application cryptogram in the behavioural analysis result is authorization requests ciphertext, default if second Value, then the application cryptogram in the behavioural analysis result is application authorization ciphertext.Further, in the behavioural analysis result It can also include dynamic signature;In the step S2, when judge the application cryptogram in the behavioural analysis result for authorize please When seeking ciphertext, before performing the step S3, further include:The bluetooth visible card judges whether the dynamic signature is legal, and And the terminal authentication result is updated when the dynamic signature is illegal.
In the present invention, the bluetooth visible card initiates online request by the client to issuers server, can be with Specially:The bluetooth visible card tissue online request message data is asked according to online request message data generation is online Message is sought, the online request message is sent to issuers server by the client;Alternatively, the bluetooth visible card Online request is initiated to issuers server by the client, specially:The bluetooth visible card tissue online request report The online request message data is sent to the client by literary data, and the client is according to the online request message The online request message is sent to the issuers server by data organization online request message;
Further, the online request message data can specifically include:The terminal authentication result, the inquiry master The related data of transaction data, the behavioural analysis result and the selected application in account balance trading instruction;
Further, the online request message data can further include online PIN ciphertexts;Correspondingly, institute Stating execution holder's certification is specially:The bluetooth visible card receives online PIN input by user, encrypts the online PIN and obtains To online PIN ciphertexts.
In the present invention, it can also include in the step S3:The bluetooth visible card is according in the online response message Authorization response code judge whether online request goes through, the step S4 is performed if going through, if being not approved for, is inquired Failure terminates.
In the present invention, it can also include between the step S3 and the step S4:The bluetooth visible card is according to Online response message performs completion processing, judges to complete the type of the application cryptogram in handling result, if application authorization ciphertext, It then inquires and fails, terminate, if certificate of fair, then perform the step S4.Optionally, the completion handling result includes: Cryptogram information data and application cryptogram and credit card issuer application data;The type for judging to complete the application cryptogram in handling result Specially:Check the value of the predetermined bit position of the cryptogram information data, if third preset value, then the completion handling result In application cryptogram for certificate of fair, if the 4th preset value, then the application cryptogram completed in handling result is that application is recognized Demonstrate,prove ciphertext.
In the present invention, further included after the step S4:The bluetooth visible card is according in the completion handling result Application cryptogram sets operating result, and transaction results of the generation comprising the operating result notify, the transaction results are notified to send out Give the client;Operating result during the client is notified according to the transaction results judges whether transaction goes through, It is to show successful inquiring information, terminates, otherwise show query failure message, terminates.
In the present invention, further included before the step S1:After the client receives inquiry request input by user, to The bluetooth visible card issues inquiry main account remaining sum trading instruction.
In the present invention, further included before the step S1:The bluetooth visible card establishes bluetooth connection with the client.
On the other hand, the present invention provides a kind of bluetooth visible card for being applicable in the above method, including:
First receiving module, for receiving the inquiry main account remaining sum trading instruction that client issues;
Selecting module, for selecting to apply;
Authentication check module checks, and lost in offline data certification for performing offline data certification and processing limitation When losing and processing limitation check not by when update bluetooth visible card inside terminal authentication result;
Certification analysis module for performing holder's certification, updates bluetooth visible card according to holder's certification implementing result Internal terminal authentication result;Process performing is analyzed, and judges the type of the application cryptogram in behavioural analysis result;
Sending module judges application cryptogram in behavioural analysis result for authorization requests for working as the certification analysis module During ciphertext, online request is initiated to issuers server by client;
Second receiving module, for receiving the online response message that issuers server is returned by client;
Display module, for the main account remaining sum letter in the online response message that is received according to second receiving module Breath shows main account remaining sum.
The beneficial effects of the present invention are provide a kind of main account inquiry into balance scheme based on bluetooth visible card, bluetooth Visible card with issuers server communicate by the client being mounted in individual subscriber terminal can be completed inquiry, overcome The drawbacks of needing to be inquired by financial transaction terminal in the prior art, improve main account inquiry into balance convenience and Safety.
Description of the drawings
Fig. 1 is the flow of a kind of main account inquiry into balance method based on bluetooth visible card that the embodiment of the present invention 1 provides Figure;
Fig. 2, Fig. 3 are a kind of main account inquiry into balance method based on bluetooth visible card that the embodiment of the present invention 2 provides Flow chart;
Fig. 4, Fig. 5 are a kind of main account inquiry into balance method based on bluetooth visible card that the embodiment of the present invention 3 provides Flow chart;
Fig. 6 is the block diagram of a kind of bluetooth visible card that the embodiment of the present invention 4 provides.
Specific embodiment
Below in conjunction with the attached drawing in the embodiment of the present invention, the technical solution in the embodiment of the present invention is carried out clear, complete Site preparation describes, it is clear that described embodiment is only part of the embodiment of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, those of ordinary skill in the art are obtained every other without making creative work Embodiment shall fall within the protection scope of the present invention.
Embodiment 1
A kind of main account inquiry into balance method based on bluetooth visible card provided in an embodiment of the present invention, the method includes Following steps:
Step S1, bluetooth visible card receives the inquiry main account remaining sum trading instruction that client issues;
In the present embodiment, further included before step S1:Bluetooth visible card receives inquiry request input by user, to client Send inquiry main account balance request;Alternatively, client receives inquiry request input by user, inquiry is issued to bluetooth visible card Main account remaining sum trading instruction.
Further, bluetooth visible card receive user input query request mode can there are many, it is preferable that bluetooth is visual Inquiry request input by user is received in clamping:Bluetooth visible card detect programmable button, when bluetooth visible card detect it is default Inquiry request input by user is received when button is pressed, programmable button can be query key etc..
Step S2, bluetooth visible card selection application, performs offline data certification and processing limitation checks, and lost in certification When losing and check not by when update terminal authentication result inside the bluetooth visible card;Holder's certification is performed, according to holding Block the terminal authentication result inside people's authentication result update bluetooth visible card;Process performing is analyzed, and judges behavioural analysis knot The type of application cryptogram in fruit is then inquired if application authorization ciphertext and is failed, and terminates, step is then performed if authorization requests ciphertext Rapid S3;
Specifically, holder's authentication mode can there are many, in the present embodiment, using off line PIN authentication modes or using join Machine PIN authentication modes;
When using off line PIN authentication modes, bluetooth visible card performs holder's certification, according to holder's authentication result more Terminal authentication inside the new bluetooth visible card is as a result, specifically include:Bluetooth visible card receives off line PIN input by user, Verify the off line PIN if receiving, and when verification not by when, off line PIN certifications are identified in terminal authentication result Failure;Off line PIN authentification failures are identified in terminal authentication result if not receiving;Preferably, when verification not by when, will The bit of holder's authentification failure is represented in terminal authentication result and represents the value of bit point that PIN number of retries transfinites It is not set to 1;The bit for holder's authentification failure being represented in terminal authentication result if off line PIN input by user is not received Position and the value of bit for representing not inputting PIN are set to 1 respectively;
When using online PIN authentication modes, bluetooth visible card performs holder's certification, according to holder's authentication result more Terminal authentication inside the new bluetooth visible card is as a result, specifically include:Bluetooth visible card receives online PIN input by user, The online PIN is encrypted if receiving and obtains online PIN ciphertexts, mark has input online PIN in terminal authentication result;If It does not receive, online PIN authentification failures is identified in terminal authentication result;Wherein, it identifies and has input in terminal authentication result Online PIN is preferably:It will represent that the value of bit for having input online PIN is set to 1 in terminal authentication result;In terminal authentication knot Online PIN authentification failures are identified in fruit is preferably:By in terminal authentication result represent holder's authentification failure bit and The value of bit for representing not inputting PIN is set to 1.
In the present embodiment, in step S2, it can also include:The visual card initialization of bluetooth is chosen to apply, and obtains and is chosen Interaction feature is applied in application.
Further, bluetooth visible card perform offline data certification be specially:Off line number is determined according to using interaction feature According to authentication mode, the offline data certification of the mode is performed.
Further, offline data authentication mode includes:Compound Dynamic Data Authentication, off line Dynamic Data Authentication and de- Machine static data certification;
Bluetooth visible card determines offline data authentication mode according to using interaction feature, performs the offline data of the mode Certification specifically includes:
Step 1, bluetooth visible card judge to be chosen whether application supports compound dynamic data to recognize according to application interaction feature Card performs compound Dynamic Data Authentication if supporting, otherwise performs step 2;
Step 2, bluetooth visible card judge to be chosen whether application supports off line dynamic data to recognize according to application interaction feature Card performs off line Dynamic Data Authentication if supporting, otherwise performs off line static data certification.
In the present embodiment, the analysis of bluetooth visible card process performing is specially:Bluetooth visible card perform terminal behavior analysis and Card behavioural analysis;Behavioural analysis result includes:Cryptogram information data, application cryptogram and credit card issuer application data.
Further, bluetooth visible card judges that the type of the application cryptogram in behavioural analysis result is specially:Bluetooth is visual Card checks the value of the predetermined bit position of cryptogram information data, if the first preset value, then the application cryptogram in behavioural analysis result Type for authorization requests ciphertext, if the second preset value, then the type of the application cryptogram in behavioural analysis result is that application is recognized Demonstrate,prove ciphertext.
Further, dynamic signature can also be included in behavioural analysis result, in step S2, when judging behavioural analysis As a result it when the type of the application cryptogram in is authorization requests ciphertext, before performing step S3, further includes:Bluetooth visible card judges dynamic Whether state signature is legal, and the terminal authentication result is updated when dynamic signature is illegal.
Step S3, bluetooth visible card initiates online request by client to issuers server, receives credit card issuer service The online response message that device is returned by client;
In the present embodiment, bluetooth visible card initiates online request to issuers server by client and is specially:Bluetooth Visible card tissue online request message data generates online request message, by online request report according to online request message data Text is sent to issuers server by client;Or it is specially:Bluetooth visible card tissue online request message data, will join Machine request message data are sent to client, and client, will be online according to online request message data tissue online request message Request message is sent to the issuers server.
Further, online request message data includes:In terminal authentication result, inquiry main account remaining sum trading instruction Transaction data, behavioural analysis result and the related data for being chosen application, can also include online PIN ciphertexts.
In the present embodiment, it can also include in step S3:Authorization response of the bluetooth visible card in online response message Code judges whether online request goes through, and step S4 is performed if going through, if being not approved for, inquires and fails, and terminates.
Step S4, main account balance amount information of the bluetooth visible card in the online response message is shown more than main account Volume, successful inquiring terminate.
In the present embodiment, it can also include before step S4:Bluetooth visible card is performed according to online response message at completion Reason judges to complete the type of the application cryptogram in handling result, then inquires and fail if application authorization ciphertext, terminate, if friendship Easy certificate then performs step S4;
Specifically, handling result is completed to include:Cryptogram information data, application cryptogram and credit card issuer application data;Bluetooth Visible card judges that the type of the application cryptogram in completion handling result is specially:Bluetooth visible card checks the pre- of cryptogram information data If the value of bit, if third preset value, then the type for completing the application cryptogram in handling result is certificate of fair, if the Four preset values, the then type for completing the application cryptogram in handling result are application authorization ciphertext.
It can also include after step S4:Bluetooth visible card is according to the application cryptogram setting operation knot completed in handling result Fruit, transaction results of the generation comprising operating result notify, transaction results notice is sent to client;Client receives transaction knot Fruit notifies that the operating result in being notified according to transaction results judges whether transaction goes through, and is to show successful inquiring information, knot Otherwise beam shows query failure message, terminate.
In the present embodiment, before being communicated between bluetooth visible card and client, further include:Bluetooth visible card and client Bluetooth connection is established between end.
In another specific implementation, step S3 to step S4 may be replaced by:
Step S3', bluetooth visible card initiates online request by client to issuers server;
Step S4', client receives the online response message that issuers server returns, according to the online response message In main account balance amount information show main account remaining sum, successful inquiring, terminate.
Embodiment 2
It is a kind of main account inquiry into balance side based on bluetooth visible card provided in an embodiment of the present invention such as Fig. 2 and Fig. 3 Method the described method comprises the following steps:
When step 101, bluetooth visible card detect that programmable button is pressed, judge whether to establish connection with client, If it is, perform step 103;Otherwise, step 102 is performed.
In the present embodiment, programmable button can be query key.
Step 102, bluetooth visible card and client establish bluetooth connection, and perform step 103.
Step 103, bluetooth visible card send inquiry main account balance request to client.
Step 104, client generation inquiry main account remaining sum trading instruction.
In the present embodiment, client setting transaction data, inquiry main account remaining sum transaction of the generation comprising transaction data refers to It enables;
Preferably, client setting transaction data is specially:Client setting type of transaction is inquiry main account remaining sum, if It is 0 to put transaction amount, and setting trade date is system current date, and setting exchange hour is the current time in system.
For example, the inquiry main account remaining sum trading instruction of client generation is " 43 00 00 0C 00 00 00 00 of 7e 00 00 16 03 22 17 10 22 ", wherein, the 2nd byte " 43 " represents type of transaction as inquiry main account remaining sum, the 6th to 11 bytes " 00 00 00 00 00 00 " represent that transaction amount is represented for the 0, the 12nd byte to 14 bytes " 16 03 22 " Trade date is 22 days 03 month 16 years, and 10 divide 22 seconds when the 15th to 17 byte representation exchange hour is 17.
Step 105, client send inquiry main account remaining sum trading instruction to bluetooth visible card.
Step 106, bluetooth visible card obtain the transaction data in inquiry main account remaining sum trading instruction and preservation.
In the present embodiment, the transaction data inquired in main account remaining sum trading instruction includes type of transaction, transaction amount, friendship Easy date and exchange hour etc.;
For example, the inquiry main account remaining sum trading instruction that the client that bluetooth visible card receives is sent is " 7e 43 00 00 0C 00 00 00 00 00 00 16 03 22 17 10 22 ", the 2nd byte that bluetooth visible card reads instruction obtain Type of transaction;The 6th to 11 byte of instruction is read to obtain transaction amount;The 12nd to 14 byte for reading instruction is handed over Easy date, the 15th to 17 byte for reading instruction obtain exchange hour.
Further, in the present embodiment, can also include before step 106:Bluetooth visible card is judged more than inquiry main account Whether volume trading instruction is complete, if completely, continued to execute;Query failure message is shown if imperfect, to client Error message is returned, terminates flow;
Preferably, in the present embodiment, preceding 4 bytes of inquiry main account remaining sum trading instruction is instruct head, remaining byte For director data domain, 1 byte of most end for instructing head is director data length of field;Bluetooth visible card judges inquiry main account remaining sum Whether trading instruction completely specifically includes:Bluetooth visible card acquisition instruction from the instruction head of inquiry main account remaining sum trading instruction Data field length, checks whether the physical length in the director data domain of inquiry main account remaining sum trading instruction is equal to the finger got Data field length is enabled, is that then determining inquiry main account remaining sum trading instruction is complete, otherwise determines that the remaining sum transaction of inquiry main account refers to It enables imperfect.
Step 107, the selection application of bluetooth visible card.
The selected application of the visual card initialization of step 108, bluetooth, obtain be chosen application application file locator and Using interaction feature.
Step 109, bluetooth visible card are according to application file locator reading application data.
In the present embodiment, specifically included using data:Using PAN, 2 equivalent data of magnetic track and using label;Further, It can also include using effective date, holder name;
For example, the application data read include:Holder name " 5F2005424F43554B ", using the effective date " 5F2503230811 ", using PAN " 5A084595698506806615 ", 2 equivalent data of magnetic track " 57134595698506806615D27082010000036200000F " and using label 500B50424F4320435245444954。
Step 110, bluetooth visible card determine offline data authentication mode according to using interaction feature, perform offline data and recognize Card updates the terminal authentication result in bluetooth visible card according to offline data authentication result.
In the present embodiment, step 110 can specifically include:
Step 110-1, bluetooth visible card is according to the offline data certification that selected application support is determined using interaction feature Mode;
If being chosen application supports compound Dynamic Data Authentication, step 110-2 is performed;
If being chosen application does not support compound Dynamic Data Authentication, support off line Dynamic Data Authentication, then perform step 110-3;
If being chosen application does not support compound Dynamic Data Authentication and off line Dynamic Data Authentication, off line static data is supported Certification then performs step 110-4;
Step 110-2, bluetooth visible card performs compound Dynamic Data Authentication, and when compound Dynamic Data Authentication fails When, the failure of composite moving state data authentication is identified in terminal authentication result;
Wherein, composite moving state data authentication is identified in terminal authentication result is preferably unsuccessfully:It will be in terminal authentication result Represent that the value of the bit of compound Dynamic Data Authentication failure is set to 1;
Step 110-3, bluetooth visible card performs off line Dynamic Data Authentication, and when off line Dynamic Data Authentication fails When, the failure of off line Dynamic Data Authentication is identified in terminal authentication result;
Wherein, off line Dynamic Data Authentication is identified in terminal authentication result is preferably unsuccessfully:It will be in terminal authentication result Represent that the value of the bit of off line Dynamic Data Authentication failure is set to 1;
Step 110-4, bluetooth visible card performs off line static data certification, and when off line static data authentification failure When, off line static data authentification failure is identified in terminal authentication result;
Wherein, off line static data authentification failure is identified in terminal authentication result is preferably:It will be in terminal authentication result Represent that the value of the bit of off line static data authentification failure is set to 1.
In the present embodiment, bluetooth visible card performs compound Dynamic Data Authentication and can specifically include:
Step 1-1, bluetooth visible card is public by the application provider's mark and CA public keys index recovery CA for being chosen application Key performs step 1-2 if being successfully recovered, otherwise compound Dynamic Data Authentication failure;
Step 1-2, bluetooth visible card restores credit card issuer using CA public keys from the credit card issuer public key certificate of selected application Public key performs step 1-3 if being successfully recovered, otherwise compound Dynamic Data Authentication failure;
Step 1-3, bluetooth visible card restores first using credit card issuer public key from the IC card public key certificate of selected application Static application data cryptographic Hash and IC card public key, perform step 1-4 if being successfully recovered, and otherwise compound Dynamic Data Authentication loses It loses;
Step 1-4, bluetooth visible card obtains static application data, and carrying out Hash operation to static application data obtains second Static application data cryptographic Hash;
Step 1-5, bluetooth visible card judges the first static application data cryptographic Hash and the second static application data cryptographic Hash It is whether equal, it is then compound Dynamic Data Authentication success, otherwise compound Dynamic Data Authentication fails;
In the present embodiment, bluetooth visible card performs the certification of off line static data and can specifically include:
Step 2-1, bluetooth visible card is public by the application provider's mark and CA public keys index recovery CA for being chosen application Key performs step 2-2 if being successfully recovered, otherwise off line static data authentification failure;
Step 2-2, bluetooth visible card restores credit card issuer using CA public keys from the credit card issuer public key certificate of selected application Public key performs step 2-3 if being successfully recovered, otherwise off line static data authentification failure;
Step 2-3, bluetooth visible card is restored using credit card issuer public key from the signature static application data of selected application First static application data cryptographic Hash, performs step 2-4, otherwise off line static data authentification failure if being successfully recovered;
Step 2-4, bluetooth visible card obtains static application data, and carrying out Hash operation to static application data obtains second Static application data cryptographic Hash;
Step 2-5, bluetooth visible card judges the first static application data cryptographic Hash and the second static application data cryptographic Hash It is whether equal, it is then off line static data certification success, otherwise off line static data authentification failure;
Bluetooth visible card performs off line Dynamic Data Authentication and can specifically include:
Step 3-1, bluetooth visible card is public by the application provider's mark and CA public keys index recovery CA for being chosen application Key performs step 2-2 if being successfully recovered, and otherwise off line Dynamic Data Authentication fails;
Step 3-2, bluetooth visible card restores credit card issuer using CA public keys from the credit card issuer public key certificate of selected application Public key performs step 2-3 if being successfully recovered, and otherwise off line Dynamic Data Authentication fails;
Step 3-3, bluetooth visible card restores first using credit card issuer public key from the IC card public key certificate of selected application Static application data cryptographic Hash and IC card public key, perform step 3-4 if being successfully recovered, and otherwise off line Dynamic Data Authentication loses It loses;
Step 3-4, bluetooth visible card obtains static application data, and carrying out Hash operation to static application data obtains second Static application data cryptographic Hash;
Step 3-5, bluetooth visible card judges the first static application data cryptographic Hash and the second static application data cryptographic Hash It is whether equal, it is to perform step 3-6, otherwise off line Dynamic Data Authentication fails;
Step 3-6, bluetooth visible card generation dynamic data, signs to dynamic data with the IC card private key of selected application To dynamic data signature value;
Step 3-7, bluetooth visible card uses IC card public key verifications dynamic data signature value, if being verified, off line is moved The success of state data authentication, otherwise off line Dynamic Data Authentication failure.
Step 111, bluetooth visible card check the processing limitation of selected application execution, and inspection result is limited according to processing Update the terminal authentication result in bluetooth visible card.
In the present embodiment, bluetooth visible card is according to the configuration information of itself to the processing limitation inspection of selected application execution It looks into, step 111 can specifically include:
Bluetooth visible card judge the application version number of selected application and the application version number in configuration information whether one It causes, and when judging result is inconsistent, identifying application version number in terminal authentication result mismatches;
And/or bluetooth visible card judges whether selected application meets in configuration information and controls and send out with application purpose The relevant limitation of card row country code, and when judging result is when being unsatisfactory for, identification card does not prop up in terminal authentication result The service of holding;
And/or bluetooth visible card is relatively chosen effective date and the current date of application, and when comparison result is quilt Selection application effective date be more than current date when, in terminal authentication result mark application not yet come into force;
And/or bluetooth visible card is relatively chosen Expiration Date and the current date of application, and when comparison result is quilt Selection application Expiration Date be less than current date when, in terminal authentication result mark application failed.
Wherein, application version number mismatch is identified in terminal authentication result is preferably:It will be represented in terminal authentication result The value of the IC card bit different from terminal applies version is set to 1;Identification card is not supported to service excellent in terminal authentication result It is selected as:It will represent that card does not support the value of the bit of the service to be set to 1 in terminal authentication result;It gets the bid in terminal authentication result Know application not yet to come into force preferably:It will represent that the value of bit that Pending The Entry Into Force is gone back in application is set to 1 in terminal authentication result;In terminal Mark application has been failed preferably in verification result:The value that application bit out of date is represented in terminal authentication result is put It is 1.
Step 112, bluetooth visible card perform holder's certification, prompt to input online PIN, judge whether in preset time Online PIN input by user is received, if it is, performing step 113;Otherwise it shows the prompt message of input time-out, terminates Flow.
In the present embodiment, step 112 can also include:Bluetooth visible card returns to failure notification to client, and client is shown Show the prompt message of inquiry failure.
Step 113, bluetooth visible card encrypt online PIN input by user, obtain online PIN ciphertexts.
Step 114, bluetooth visible card perform terminal behavior analysis and card behavioural analysis, obtain behavioural analysis as a result, root The first operating result is set according to behavioural analysis result, if the first operating result is refused for transaction, performs step 115, if first Operating result is log-in, then performs step 116.
In the present embodiment, behavioural analysis result includes:First cryptogram information data, the first application cryptogram and the first credit card issuer Using data;It is specially according to behavioural analysis result the first operating result of setting:
Step 4-1, bluetooth visible card judges the type of the first application cryptogram according to the first cryptogram information data, if mandate Request ciphertext (Authorization Request Cryptogram, hereinafter referred to as:ARQC) then perform step 4-2, if should With certification ciphertext (Application Authentication Cryptogram, hereinafter referred to as:AAC step 4-3) is then performed;
Specifically, bluetooth visible card checks the last one byte of the first cryptogram information data, if two ratios of its high order end The value of special position is the first preset value, then the type of the first application cryptogram is ARQC, if the value of its two bit of high order end is the Two preset values, then the type of the first application cryptogram is AAC;
Wherein, the first preset value is preferably 10, and the second preset value is preferably 00;
For example, the first cryptogram information data is " 9F270180 ", the type for judging the first application cryptogram according to this is ARQC;
Step 4-2, it is log-in that bluetooth visible card, which sets the first operating result,;
Step 4-3, bluetooth visible card sets the first operating result to merchandise for refusal.
In the present embodiment, when the offline data authentication mode determined in step 110 is compound Dynamic Data Authentication, behavior Dynamic signature is further included in analysis result, in step 114, when the first operating result is log-in, before performing step 116 It further includes:Bluetooth visible card judges whether dynamic signature is legal, and step 116 is performed if dynamic signature is legal, if dynamic signature Illegal, then mark composite moving state data authentication is illegal in terminal authentication result, performs step 116;
Specifically, bluetooth visible card uses the IC card public key for meeting and being recovered during Dynamic Data Authentication to dynamic signature It is verified, dynamic signature is legal if being verified, if verification is not illegal by dynamic signature.
Step 115, the prompt message of bluetooth visible card display refusal inquiry, terminate flow.
In the present embodiment, step 115 can also include:Bluetooth visible card returns to failure notification to client, and client is shown Show the prompt message of inquiry failure.
Step 116, bluetooth visible card send message data to client.
In the present embodiment, message data specifically includes:Terminal authentication result, trade date, using interaction feature, first close Literary information data, the first application cryptogram, the first credit card issuer application data, using AID, application version number, type of transaction, trade gold Volume, using PAN, using label, 2 equivalent data of magnetic track and online PIN ciphertexts.
For example, terminal authentication result is specially " 950508A0046000 ", trade date is specially " 9A03161014 ", should It is specially " 82027C00 " with interaction feature, the first cryptogram information data is specially " 9F270180 ", and the first application cryptogram is specific For " 9F2608218C9DA4519F8E07 ", the first credit card issuer application data are specially " 9F101307020103A0A904010A0100000001232E274C48 " is specially using AID " 8407A0000003330101 ", application version number are specially " 9F09020030 ", and type of transaction is specially " 9C0131 ", is merchandised The amount of money is specially " 9F0206000000000000 ", is specially " 5A084595698506806615 " using PAN, magnetic track 2 is equivalent Data are specially that " 57134595698506806615D27082010000036200000F " is specially using label " 500B50424F4320435245444954 ", online PIN ciphertexts are specially " 99 08a4,01 58f1b4,71 3e c2 ".
Step 117, client generate online request message according to the message data received.
In the present embodiment, the every message data of client splicing obtains online request message.
Step 118, client send online request message to issuers server, receive the connection that issuers server returns Machine response message.
Step 119, client send online response message to bluetooth visible card.
Step 120, bluetooth visible card obtain authorization response code from online response message, according to the authorization response got Code judges whether online request goes through, and is to perform step 121, otherwise shows the prompt message of inquiry failure, terminates flow.
In the present embodiment step 120, it can also include when online request is not approved for:Bluetooth visible card is to client Return to failure notification, the prompt message of client display inquiry failure.
Step 121, bluetooth visible card perform completion processing according to online response bag, obtain completing handling result, according to complete The second operating result is set into handling result, if the second operating result is trading approving, main account is obtained from online response bag Family remaining sum shows main account remaining sum;If the second operating result is refused for transaction, the prompt message of inquiry failure is shown.
In the present embodiment, complete to include in handling result:Second cryptogram information data, the second application cryptogram and second Credit card issuer application data;It is specially according to handling result the second operating result of setting is completed:
Step 5-1, bluetooth visible card judges the type of the second application cryptogram according to the second cryptogram information data, if transaction Certificate (Transaction Certificate, hereinafter referred to as TC) then performs step 5-2, and step 5-3 is then performed if AAC;
Specifically, bluetooth visible card checks the last one byte of the second cryptogram information data, if two ratios of its high order end The value of special position is third preset value, then the type of the second application cryptogram is TC, if the value of its two bit of high order end is the 4th Preset value, then the type of the second application cryptogram is AAC;
Wherein, third preset value is preferably 01, and the 4th preset value is preferably 00;
Step 5-2, it is trading approving that bluetooth visible card, which sets the second operating result,;
Step 5-3, bluetooth visible card sets the second operating result to refuse for transaction;
Further, in the present embodiment, when the online response bag that bluetooth visible card is received from client includes credit card issuer During authorization data, if being chosen application supports credit card issuer certification, bluetooth visible card is further included according to credit card issuer before step 126 Authorization data carries out credit card issuer certification, if certification passes through, continues to execute, if certification does not pass through, prompting query failure Information returns to error message to client, terminates flow.
Further, in the present embodiment, can also include after step 121:
Step 122, transaction results of the bluetooth visible card generation comprising the second operating result notify.
Transaction results notice is sent to client by step 123, bluetooth visible card.
The second operating result during step 124, client are notified according to transaction results judges whether transaction goes through, and is then It shows successful inquiring information, terminates flow, otherwise show query failure message, terminate flow.
Bluetooth visible card in the embodiment of the present invention accesses issuers server inquiry bluetooth visible card by client Main account remaining sum can also further verify the information from client, possess compared with existing financial IC card Higher safety and convenience.
Embodiment 3
As shown in Figure 4 and Figure 5, it is a kind of main account inquiry into balance based on bluetooth visible card provided in an embodiment of the present invention Method establishes bluetooth connection after being switched on the method includes bluetooth visible card with client, and the method is further comprising the steps of:
Step 201, client receive inquiry request input by user;
Step 202, client generation inquiry main account remaining sum trading instruction.
In the present embodiment, client setting transaction data, inquiry main account remaining sum transaction of the generation comprising transaction data refers to It enables;
Preferably, client setting transaction data is specially:Client setting type of transaction is inquiry main account remaining sum, if It is 0 to put transaction amount, and setting trade date is system current date, and setting exchange hour is the current time in system.
Step 203, client send inquiry main account remaining sum trading instruction to bluetooth visible card.
Step 204, bluetooth visible card obtain the transaction data in inquiry main account remaining sum trading instruction, according to what is got Transaction data judges whether inquiry main account remaining sum trading instruction is legal, is to perform step 205, otherwise prompts error message, Terminate flow.
In the present embodiment, the transaction data inquired in main account remaining sum trading instruction includes type of transaction, transaction amount, friendship Easy date and exchange hour etc.;Bluetooth visible card judge type of transaction and transaction amount whether be respectively inquiry main account remaining sum and 0, it is that inquire main account remaining sum trading instruction legal, it is illegal otherwise inquires main account remaining sum trading instruction.
Further, can also include in step 204:Bluetooth visible card judges whether inquire the trading instruction of main account remaining sum Completely, if completely, continued to execute;Error message is prompted if imperfect, terminates flow.
Further, in the present embodiment, when bluetooth visible card judge inquiry main account remaining sum trading instruction it is illegal or Person can also include when imperfect:Bluetooth visible card returns to failure notification, the prompting of client display inquiry failure to client Information.
Step 205, the selection application of bluetooth visible card.
The selected application of the visual card initialization of step 206, bluetooth, obtain be chosen application application file locator and Using interaction feature.
Step 207, bluetooth visible card are according to application file locator reading application data.
In the present embodiment, specifically included using data:It, can also be into using PAN, 2 equivalent data of magnetic track and using label One step is included using effective date, holder name.
Step 208, bluetooth visible card determine offline data authentication mode according to using interaction feature, perform offline data and recognize Card updates the terminal authentication result in bluetooth visible card according to offline data authentication result.
In the present embodiment, bluetooth visible card is according to the offline data certification that selected application support is determined using interaction feature Mode, if being chosen, application is compound to meet Dynamic Data Authentication, performs compound Dynamic Data Authentication, and when compound dynamic number During according to authentification failure, the failure of composite moving state data authentication is identified in terminal authentication result;If it is chosen compound using not supporting Dynamic Data Authentication supports off line Dynamic Data Authentication, then performs off line Dynamic Data Authentication, and when off line dynamic data is recognized The failure of off line Dynamic Data Authentication is identified during card failure in terminal authentication result;If being chosen application does not support compound dynamic number According to certification off line Dynamic Data Authentication, support off line static data certification, then perform off line static data certification, and work as off line During static data authentification failure, off line static data authentification failure is identified in terminal authentication result.
Step 209, bluetooth visible card check the processing limitation of selected application execution, and inspection result is limited according to processing Update the terminal authentication result in bluetooth visible card.
In the present embodiment, bluetooth visible card is according to the configuration information of itself to the processing limitation inspection of selected application execution It looks into, step 209 can specifically include:
Bluetooth visible card judge the application version number of selected application and the application version number in configuration information whether one It causes, and when judging result is inconsistent, identifying application version number in terminal authentication result mismatches;
And/or bluetooth visible card judges whether selected application meets in configuration information and controls and send out with application purpose The relevant limitation of card row country code, and when judging result is when being unsatisfactory for, identification card does not prop up in terminal authentication result The service of holding;
And/or bluetooth visible card is relatively chosen effective date and the current date of application, and when comparison result is quilt Selection application effective date be more than current date when, in terminal authentication result mark application not yet come into force;
And/or bluetooth visible card is relatively chosen Expiration Date and the current date of application, and when comparison result is quilt Selection application Expiration Date be less than current date when, in terminal authentication result mark application failed.
Step 210, bluetooth visible card perform holder's certification, prompt to input online PIN.
Step 211, bluetooth visible card judge whether to receive online PIN input by user in preset time, if so, Then perform step 212;Otherwise it shows the prompt message of input time-out, terminates flow.
In the present embodiment, step 211 can also include:Bluetooth visible card returns to failure notification to client, and client is shown Show the prompt message of inquiry failure.
Step 212, bluetooth visible card encrypt online PIN input by user, obtain online PIN ciphertexts.
Step 213, bluetooth visible card perform terminal behavior analysis and card behavioural analysis, obtain behavioural analysis as a result, root The first operating result is set according to behavioural analysis result, if the first operating result is refused for transaction, performs step 214, if first Operating result is log-in, then performs step 215.
In the present embodiment, behavioural analysis result includes:First cryptogram information data, the first application cryptogram and the first credit card issuer Using data;
It is specially according to behavioural analysis result the first operating result of setting:Bluetooth visible card is according to the first cryptogram information data Judge the type of the first application cryptogram, if authorization requests ciphertext (Authorization Request Cryptogram, below Referred to as:ARQC) first operating result is then set for log-in, if application authorization ciphertext (Application Authentication Cryptogram, hereinafter referred to as:AAC the first operating result) is then set to merchandise for refusal.
Step 214, the prompt message of bluetooth visible card display refusal inquiry, terminate flow.
In the present embodiment, step 214 can also include:Bluetooth visible card returns to failure notification to client, and client is shown Show the prompt message of inquiry failure.
Step 215, bluetooth visible card are according to transaction data, terminal authentication result, behavioural analysis result, online PIN ciphertexts And it is chosen the application interaction feature of application, marked using AID, application version number, using PAN, 2 equivalent data of magnetic track and application Label generation online request message.
In the present embodiment, bluetooth visible card is by transaction data, terminal authentication result, behavioural analysis result, online PIN ciphertexts And it is chosen the application interaction feature of application, marked using AID, application version number, using PAN, 2 equivalent data of magnetic track and application Label generation online request message splices to obtain online request message.
Step 216, bluetooth visible card send online request message to client.
The online request message received is sent to issuers server by step 217, client, receives credit card issuer service The online response message that device returns.
Online response message is sent to bluetooth visible card by step 218, client.
Step 219, bluetooth visible card obtain authorization response code from online response message, according to the authorization response got Code judges whether online request goes through, and is to perform step 220, otherwise shows the prompt message of inquiry failure, terminates flow.
In the present embodiment step 219, it can also include when online request is not approved for:Bluetooth visible card is to client Return to failure notification, the prompt message of client display inquiry failure.
Step 220, bluetooth visible card perform completion processing according to online response message, obtain completing handling result, according to It completes handling result and the second operating result is set, if the second operating result is trading approving, master is obtained from online response bag Account balance shows main account remaining sum;If the second operating result is refused for transaction, refusal Query Information is shown.
In the present embodiment, complete to include in handling result:Second cryptogram information data, the second application cryptogram and second Credit card issuer application data;
It is specially according to handling result the second operating result of setting is completed:Bluetooth visible card is according to the second cryptogram information data Judge the type of the second application cryptogram, the second operating result is then set then to be set if AAC for trading approving if certificate of fair Second operating result is refused for transaction.
Further, in the present embodiment, when the online response bag that bluetooth visible card is received from client includes credit card issuer During authorization data, if being chosen application supports credit card issuer certification, bluetooth visible card is further included according to credit card issuer before step 220 Authorization data carries out credit card issuer certification, if certification passes through, continues to execute, if certification does not pass through, prompting query failure Information returns to error message to client, terminates flow.
Step 221, transaction results of the bluetooth visible card generation comprising the second operating result notify.
Transaction results notice is sent to client by step 222, bluetooth visible card.
The second operating result during step 223, client are notified according to transaction results judges whether transaction goes through, and is then It shows successful inquiring information, terminates flow, otherwise show query failure message, terminate flow.
Embodiment 4
The embodiment of the present invention provides a kind of bluetooth visible card for being applicable in above-described embodiment institute providing method, as shown in fig. 6, tool Body includes:
First receiving module 301, for receiving the inquiry main account remaining sum trading instruction that client issues;
Selecting module 302, for selecting to apply;
Authentication check module 303 checks, and for performing offline data certification and processing limitation in offline data certification Failure when and processing limitation check not by when, update bluetooth visible card inside terminal authentication result;
Certification analysis module 304 for performing holder's certification, is updated according to holder's implementing result in bluetooth visible card The terminal authentication result in portion;Process performing is analyzed, and judges the type of the application cryptogram in behavioural analysis result;
Sending module 305 judges that the application cryptogram in behavioural analysis result please to authorize for working as certification analysis module 304 When seeking ciphertext, online request is initiated to issuers server by client;
Second receiving module 306, for receiving the online response message that issuers server is returned by client;
Display module 307, for the main account remaining sum in the online response message that is received according to the second receiving module 306 Presentation of information main account remaining sum.
In the present embodiment, bluetooth visible card can further include:Input module 308, it is input by user for receiving Inquiry request;Correspondingly, sending module 305 is additionally operable to send inquiry main account balance request to client.
Optionally, input module 308 is specifically used for detection programmable button, inputs mould when detecting that programmable button is pressed Block 308 receives inquiry request input by user.
In the present embodiment, bluetooth visible card can further include:Judgment module 309 is instructed, for being connect according to first The transaction data received in the inquiry main account remaining sum trading instruction that module 301 receives judges inquiry main account remaining sum trading instruction It is whether legal;Correspondingly, selecting module 302 is specifically used for the instruction judgement inquiry main account remaining sum trading instruction of judgment module 309 When legal, selection application.
Optionally, instruction judgment module 309 is specifically used for judging whether the main account of inquiry that the first receiving module 301 receives Type of transaction and transaction amount in the remaining sum trading instruction of family are respectively to inquire main account remaining sum trading instruction and 0, are to inquire Main account remaining sum trading instruction is legal, and it is illegal otherwise to inquire main account remaining sum trading instruction.
In the present embodiment, bluetooth visible card can further include place's initialization module 310, and mould is selected for initializing The application that block 302 selects obtains the interaction feature of application;Correspondingly, authentication check module 303 includes:Offline data certification Unit determines offline data authentication mode using interaction feature for what is obtained according to initialization module 310, performs the mode Offline data certification.
Optionally, offline data authentication unit is specifically used for using interaction feature being sentenced according to what initialization module 310 obtained Whether the application that disconnected selecting module 302 selects supports compound Dynamic Data Authentication, if supporting compound Dynamic Data Authentication, performs Compound Dynamic Data Authentication;If not supporting compound Dynamic Data Authentication, the application is judged according to the application interaction feature Whether support off line Dynamic Data Authentication, if supporting off line Dynamic Data Authentication, perform off line Dynamic Data Authentication;If it does not prop up Off line Dynamic Data Authentication is held, then performs off line static data certification.
In the present embodiment, it can be specifically included in certification analysis module 304:Behavioural analysis unit, for performing terminal row For analysis and card behavioural analysis, the behavioural analysis for including cryptogram information data, application cryptogram and credit card issuer application data is obtained As a result, judge the type of the application cryptogram in behavioural analysis result.
Optionally, behavioural analysis unit is specifically used for checking the predetermined bit of the cryptogram information data in behavioural analysis result The value of position, if the first preset value, then the application cryptogram in behavioural analysis result is authorization requests ciphertext, default if second Value, then the application cryptogram in behavioural analysis result is application authorization ciphertext.
Optionally, dynamic signature is further included in the behavioural analysis result that behavioural analysis unit obtains;Correspondingly, authentication check Module 303 is additionally operable to, when the application cryptogram in behavioural analysis unit judges behavioural analysis result is authorization requests ciphertext, judge Whether the dynamic signature in behavioural analysis result is legal, and the end inside bluetooth visible card is updated when dynamic signature is illegal Hold verification result.
In the present embodiment, sending module 305 can be specifically used for tissue online request message data, according to online request report Literary data generate online request message, give online request message to issuers server by client's single-shot;Or send mould Block 305 is specifically used for tissue online request message data, and online request message data is sent to client.
Optionally, the online request message data that sending module 305 is organized includes:Terminal inside bluetooth visible card is tested Transaction data, certification analysis module in the inquiry main account remaining sum trading instruction that card result, the first receiving module 301 receive The related data of application that 304 obtained behavioural analysis results and selecting module 302 select.
Further, certification analysis module 304 can be specifically used for receiving online PIN input by user, encrypt described Machine PIN obtains online PIN ciphertexts;Correspondingly, certification analysis is further included in the online request message data that sending module 305 is organized The online PIN ciphertexts that module 304 obtains.
In the present embodiment, the second receiving module 306 can also be further used for according in the online response message received Authorization response code judge whether online request goes through;Correspondingly, display module 307 is specifically used for the second receiving module 306 After judging that online request goes through, the main account remaining sum letter in the online response message received according to the second receiving module 306 Breath shows main account remaining sum.
In the present embodiment, bluetooth visible card, which can further include, completes processing module 311, for being received according to second The online response message that module 306 receives performs completion processing, judges to complete the type of the application cryptogram in handling result;Phase Ying Di, display module 307 be specifically used for complete processing module 311 judge completion handling result in application cryptogram for certificate of fair Later, the main account balance amount information in the online response message received according to the second receiving module 306 shows main account remaining sum.
Further, completing processing module 311 can be specifically used for, and check the cryptogram information data in handling result Predetermined bit position value, if third preset value, then the application cryptogram completed in handling result is certificate of fair, if the 4th Preset value, then it is application authorization ciphertext to complete the application cryptogram in handling result;
Sending module 305 can be also used for, and operating result, generation packet are set according to the application cryptogram completed in handling result Transaction results notice is sent to client by the transaction results notice containing the operating result.
In the present embodiment, link block is further included in bluetooth visible card, for establishing bluetooth connection with client.
The above description is merely a specific embodiment, but protection scope of the present invention is not limited thereto, any Those familiar with the art in the technical scope disclosed by the present invention, can readily occur in change or replacement, should all contain Lid is within protection scope of the present invention.Therefore, protection scope of the present invention should be subject to the protection scope in claims.

Claims (39)

  1. A kind of 1. main account inquiry into balance method based on bluetooth visible card, which is characterized in that including:
    Step S1, bluetooth visible card receives the inquiry main account remaining sum trading instruction that client issues;
    Step S2, described bluetooth visible card selection application, performs offline data certification and processing limitation checks, and in off line number According to during authentification failure and processing limitation check not by when update terminal authentication result inside the bluetooth visible card;Execution is held Block people's certification, the terminal authentication result is updated according to holder's certification implementing result;Perform terminal behavior analysis and card row For analysis, judge the type of the application cryptogram in behavioural analysis result, then inquire and fail if application authorization ciphertext, terminate, if Step S3 is then performed for authorization requests ciphertext;
    Step S3, described bluetooth visible card initiates online request by the client to issuers server, receives the hair The online response message that card row server is returned by the client;
    Step S4, main account balance amount information of the described bluetooth visible card in the online response message is shown more than main account Volume, successful inquiring terminate.
  2. 2. the method as described in claim 1, which is characterized in that further included before the step S1:The bluetooth is visually clamped After receiving inquiry request input by user, inquiry main account balance request is sent to the client.
  3. 3. method as claimed in claim 2, which is characterized in that the bluetooth visible card receives inquiry request input by user Specially:The bluetooth visible card detects that programmable button is pressed.
  4. 4. the method as described in claim 1, which is characterized in that further included in the step S1:The bluetooth visible card according to Transaction data in the inquiry main account remaining sum trading instruction judges whether the inquiry main account remaining sum trading instruction is legal, It is to continue to execute the step S2, otherwise inquiry failure terminates.
  5. 5. method as claimed in claim 4, which is characterized in that the transaction data includes type of transaction and transaction amount;
    Transaction data of the bluetooth visible card in the inquiry main account remaining sum trading instruction judges the main account of inquiry Whether family remaining sum trading instruction is legal, specially:The bluetooth visible card judges whether the type of transaction and the trade gold Volume is respectively to inquire the transaction of main account remaining sum and 0, is that then the inquiry main account remaining sum trading instruction is legal, the otherwise inquiry Main account remaining sum trading instruction is illegal.
  6. 6. the method as described in claim 1, which is characterized in that further included in the step S2:The bluetooth visible card is initial Change and be chosen application, obtain selected application applies interaction feature;
    It is described execution offline data certification be specially:Offline data authentication mode is determined according to the application interaction feature, is performed The offline data certification of the mode.
  7. 7. method as claimed in claim 6, which is characterized in that the offline data authentication mode includes:Compound dynamic data Certification, off line Dynamic Data Authentication and off line static data certification;
    It is described that offline data authentication mode is determined according to the application interaction feature, the offline data certification of the mode is performed, It specifically includes:
    Step 1 judges to be chosen whether application supports compound Dynamic Data Authentication according to the application interaction feature, if supporting Compound Dynamic Data Authentication is performed, otherwise performs step 2;
    Step 2 judges to be chosen whether application supports off line Dynamic Data Authentication according to the application interaction feature, if supporting Off line Dynamic Data Authentication is performed, otherwise performs off line static data certification.
  8. 8. the method as described in claim 1, which is characterized in that the behavioural analysis result includes:Cryptogram information data is answered With ciphertext and credit card issuer application data.
  9. 9. method as claimed in claim 8, which is characterized in that the type for judging the application cryptogram in behavioural analysis result Specially:Check the value of the predetermined bit position of the cryptogram information data, if the first preset value, then the behavioural analysis result In application cryptogram for authorization requests ciphertext, if the second preset value, then the application cryptogram in the behavioural analysis result is should With certification ciphertext.
  10. 10. method as claimed in claim 8, which is characterized in that further include dynamic signature in the behavioural analysis result;
    In the step S2, when it is authorization requests ciphertext to judge the application cryptogram in the behavioural analysis result, institute is performed Before stating step S3, further include:The bluetooth visible card judges whether the dynamic signature is legal, and when the dynamic signature The terminal authentication result is updated when illegal.
  11. 11. the method as described in claim 1, which is characterized in that the bluetooth visible card is by the client to credit card issuer Server initiates online request, specially:The bluetooth visible card tissue online request message data, according to the online request Message data generates online request message, and the online request message is sent to issuers server by the client.
  12. 12. the method as described in claim 1, which is characterized in that the bluetooth visible card is by the client to credit card issuer Server initiates online request, specially:The bluetooth visible card tissue online request message data, by the online request report Literary data are sent to the client, and the client, will according to the online request message data tissue online request message The online request message is sent to the issuers server.
  13. 13. the method as described in claim 11 or 12, which is characterized in that the online request message data includes:The end Hold transaction data, the behavioural analysis result and the quilt in verification result, the inquiry main account remaining sum trading instruction Select the related data of application.
  14. 14. method as claimed in claim 13, which is characterized in that it is described execution holder's certification be specially:The bluetooth can Online PIN input by user is received depending on clamping, the online PIN is encrypted and obtains online PIN ciphertexts;
    The online request message data further includes:The online PIN ciphertexts.
  15. 15. the method as described in claim 1, which is characterized in that further included in the step S3:The bluetooth visible card according to Authorization response code in the online response message judges whether online request goes through, and the step is performed if going through S4 if being not approved for, is inquired and is failed, and is terminated.
  16. 16. the method as described in claim 1, which is characterized in that further included between the step S3 and the step S4:It is described Bluetooth visible card performs completion processing according to the online response message, judges to complete the class of the application cryptogram in handling result Type if application authorization ciphertext, is then inquired and is failed, and is terminated, if certificate of fair, is then performed the step S4.
  17. 17. the method described in claim 16, which is characterized in that the completion handling result includes:Cryptogram information data With application cryptogram and credit card issuer application data;
    The type of application cryptogram that judges to complete in handling result is specially:Check the default ratio of the cryptogram information data The value of special position, if third preset value, then the application cryptogram completed in handling result is certificate of fair, default if the 4th Value, then the application cryptogram completed in handling result is application authorization ciphertext.
  18. 18. the method described in claim 16, which is characterized in that further included after the step S4:The bluetooth visible card Application cryptogram in the completion handling result sets operating result, and transaction results of the generation comprising the operating result are led to Know, transaction results notice is sent to the client;Operation of the client in transaction results notice As a result judge whether transaction goes through, be to show successful inquiring information, terminate, otherwise show query failure message, terminate.
  19. 19. the method as described in claim 1, which is characterized in that further included before the step S1:The client receives After inquiry request input by user, inquiry main account remaining sum trading instruction is issued to the bluetooth visible card.
  20. 20. the method as described in claim 1, which is characterized in that further included before the step S1:The bluetooth visible card with The client establishes bluetooth connection.
  21. 21. a kind of bluetooth visible card, which is characterized in that including:
    First receiving module, for receiving the inquiry main account remaining sum trading instruction that client issues;
    Selecting module, for selecting to apply;
    Authentication check module checks, and for performing offline data certification and processing limitation in offline data authentification failure With processing limitation check not by when update bluetooth visible card inside terminal authentication result;
    Certification analysis module for performing holder's certification, is updated according to holder's certification implementing result inside bluetooth visible card Terminal authentication result;Terminal behavior analysis and card behavioural analysis are performed, judges application cryptogram in behavioural analysis result Type;
    Sending module judges application cryptogram in behavioural analysis result for authorization requests ciphertext for working as the certification analysis module When, online request is initiated to issuers server by client;
    Second receiving module, for receiving the online response message that issuers server is returned by client;
    Display module shows for the main account balance amount information in the online response message that is received according to second receiving module Show main account remaining sum.
  22. 22. bluetooth visible card as claimed in claim 21, which is characterized in that the bluetooth visible card further includes:Input module, For receiving inquiry request input by user;
    The sending module is additionally operable to, and inquiry main account balance request is sent to client.
  23. 23. bluetooth visible card as claimed in claim 22, which is characterized in that the input module is specifically used for, and detection is default Button receives inquiry request input by user when detecting that the programmable button is pressed.
  24. 24. bluetooth visible card as claimed in claim 21, which is characterized in that the bluetooth visible card further includes:Instruction judges Module judges institute for the transaction data in the inquiry main account remaining sum trading instruction that is received according to first receiving module Whether legal state inquiry main account remaining sum trading instruction;
    The selecting module is specifically used for, when described instruction judgment module judges that the inquiry main account remaining sum transaction execution is legal When, selection application.
  25. 25. bluetooth visible card as claimed in claim 24, which is characterized in that described instruction judgment module is specifically used for, and judges Type of transaction and transaction amount difference in the inquiry main account remaining sum trading instruction whether first receiving module receives It is that then the inquiry main account remaining sum trading instruction is legal for the transaction of inquiry main account remaining sum and 0, the otherwise inquiry main account Remaining sum trading instruction is illegal.
  26. 26. bluetooth visible card as claimed in claim 21, which is characterized in that the bluetooth visible card further includes:Initialize mould Block, for initializing the application of the selecting module selection, obtain the application applies interaction feature;
    The authentication check module includes:Offline data authentication unit, for being handed over according to the application that the initialization module obtains Mutual feature determines offline data authentication mode, performs the offline data certification of the mode.
  27. 27. bluetooth visible card as claimed in claim 26, which is characterized in that the offline data authentication unit is specifically used for, Judge whether the application that the selecting module selects supports composite moving using interaction feature according to what the initialization module obtained State data authentication if supporting compound Dynamic Data Authentication, performs compound Dynamic Data Authentication;If compound dynamic data is not supported Certification then judges whether the application supports off line Dynamic Data Authentication according to the application interaction feature, if off line is supported to move State data authentication then performs off line Dynamic Data Authentication;If not supporting off line Dynamic Data Authentication, off line static data is performed Certification.
  28. 28. bluetooth visible card as claimed in claim 21, which is characterized in that the certification analysis module specifically includes:Behavior Analytic unit for performing terminal behavior analysis and card behavioural analysis, obtains including cryptogram information data, application cryptogram and hair Card row is using the behavioural analysis of data as a result, judging the type of the application cryptogram in the behavioural analysis result.
  29. 29. bluetooth visible card as claimed in claim 28, which is characterized in that the behavioural analysis unit is specifically used for, and checks The value of the predetermined bit position of cryptogram information data in the behavioural analysis result, if the first preset value, the then behavior point The application cryptogram analysed in result is authorization requests ciphertext, and if the second preset value, then the application in the behavioural analysis result is close Text is application authorization ciphertext.
  30. 30. bluetooth visible card as claimed in claim 28, which is characterized in that the behavioural analysis that the behavioural analysis unit obtains As a result dynamic signature is further included in;
    The authentication check module is additionally operable to, the application in the behavioural analysis result that it is obtained when the behavioural analysis unit judges When ciphertext is authorization requests ciphertext, judge whether the dynamic signature in the behavioural analysis result is legal, and when the dynamic The terminal authentication result inside bluetooth visible card is updated when signing illegal.
  31. 31. bluetooth visible card as claimed in claim 21, which is characterized in that the sending module is specifically used for, and tissue is online Request message data generate online request message according to the online request message data, the online request message are passed through Client is sent to issuers server.
  32. 32. bluetooth visible card as claimed in claim 21, which is characterized in that the sending module is specifically used for, and tissue is online The online request message data is sent to client by request message data.
  33. 33. the bluetooth visible card as described in claim 31 or 32, which is characterized in that the online request of the sending module tissue Message data includes:The inquiry main account that terminal authentication result, first receiving module inside bluetooth visible card receive The behavioural analysis result and selecting module choosing that transaction data, the certification analysis module in remaining sum trading instruction obtain The related data for the application selected.
  34. 34. bluetooth visible card as claimed in claim 33, which is characterized in that the certification analysis module is specifically used for, and receives Online PIN input by user encrypts the online PIN and obtains online PIN ciphertexts;
    The online request message data of the sending module tissue further includes:The online PIN that the certification analysis module obtains is close Text.
  35. 35. bluetooth visible card as claimed in claim 21, which is characterized in that second receiving module is additionally operable to, according to connecing Authorization response code in the online response message received judges whether online request goes through;
    The display module is specifically used for, after second receiving module judges that online request goes through, according to described second Main account balance amount information in the online response message that receiving module receives shows main account remaining sum.
  36. 36. bluetooth visible card as claimed in claim 21, which is characterized in that the bluetooth visible card further includes:Completion is handled Module, the online response message for being received according to second receiving module perform completion processing, judge to complete processing knot The type of application cryptogram in fruit;
    The display module is specifically used for, and the processing module of completing judges that the application cryptogram in completion handling result is demonstrate,proved for transaction After book, the main account balance amount information in the online response message received according to second receiving module is shown more than main account Volume.
  37. 37. bluetooth visible card as claimed in claim 36, which is characterized in that the completion processing module is specifically used for, and checks The value of the predetermined bit position of the cryptogram information data in handling result is completed, if third preset value, is then completed in handling result Application cryptogram for certificate of fair, if the 4th preset value, then it is application authorization ciphertext to complete the application cryptogram in handling result.
  38. 38. bluetooth visible card as claimed in claim 36, which is characterized in that the sending module is additionally operable to, at completion The application cryptogram setting operating result in result is managed, transaction results of the generation comprising the operating result notify, by the transaction Result notice is sent to client.
  39. 39. bluetooth visible card as claimed in claim 21, which is characterized in that the bluetooth visible card further includes:Link block, For establishing bluetooth connection with client.
CN201611040897.6A 2016-11-11 2016-11-11 A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card Active CN106603239B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611040897.6A CN106603239B (en) 2016-11-11 2016-11-11 A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611040897.6A CN106603239B (en) 2016-11-11 2016-11-11 A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card

Publications (2)

Publication Number Publication Date
CN106603239A CN106603239A (en) 2017-04-26
CN106603239B true CN106603239B (en) 2018-06-26

Family

ID=58592838

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611040897.6A Active CN106603239B (en) 2016-11-11 2016-11-11 A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card

Country Status (1)

Country Link
CN (1) CN106603239B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107833054B (en) * 2017-12-11 2019-05-28 飞天诚信科技股份有限公司 A kind of bluetooth fiscard and its working method
CN108154619B (en) * 2018-01-10 2021-07-20 上海古鳌电子科技股份有限公司 Method for accepting chip card
CN109658105B (en) * 2018-12-27 2021-06-08 飞天诚信科技股份有限公司 Method and card capable of configuring log recording

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101119423A (en) * 2007-08-10 2008-02-06 张利 Electronic label intelligent finance self-help payment telephone terminal
CN103136855A (en) * 2011-12-02 2013-06-05 中国银联股份有限公司 Integrated circuit card (IC) acceptance terminal based on device of internet of things
CN103577867A (en) * 2013-11-13 2014-02-12 上海众人网络安全技术有限公司 Financial IC visible card provided with Bluetooth device
CN103763103A (en) * 2013-12-31 2014-04-30 飞天诚信科技股份有限公司 Method for generating off-line authentication certifications through intelligent card
CN104021473A (en) * 2014-05-30 2014-09-03 刘劲彤 Safe payment method of visual financial card
CN105160531A (en) * 2015-08-31 2015-12-16 北京智付融汇科技有限公司 Transaction data information processing method and apparatus

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102081821B (en) * 2009-11-27 2013-08-14 中国银联股份有限公司 IC (integrated circuit) card paying system and method as well as multi-application IC card and payment terminal

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101119423A (en) * 2007-08-10 2008-02-06 张利 Electronic label intelligent finance self-help payment telephone terminal
CN103136855A (en) * 2011-12-02 2013-06-05 中国银联股份有限公司 Integrated circuit card (IC) acceptance terminal based on device of internet of things
CN103577867A (en) * 2013-11-13 2014-02-12 上海众人网络安全技术有限公司 Financial IC visible card provided with Bluetooth device
CN103763103A (en) * 2013-12-31 2014-04-30 飞天诚信科技股份有限公司 Method for generating off-line authentication certifications through intelligent card
CN104021473A (en) * 2014-05-30 2014-09-03 刘劲彤 Safe payment method of visual financial card
CN105160531A (en) * 2015-08-31 2015-12-16 北京智付融汇科技有限公司 Transaction data information processing method and apparatus

Also Published As

Publication number Publication date
CN106603239A (en) 2017-04-26

Similar Documents

Publication Publication Date Title
US10643207B2 (en) Authentication of card-not-present transactions
KR100994289B1 (en) Mobile account authentication service
CN103443813B (en) System and method by mobile device authenticating transactions
AU2007281028B2 (en) Transaction authorisation system and method
AU2001243658B2 (en) Method and system for secure payments over a computer network
AU2007203383B2 (en) Online payer authentication service
CN104718555B (en) From discerning reciprocity transaction
AU2010202005B2 (en) Managing activation of cardholders in a secure authentication program
US20110276495A1 (en) One-time use password systems and methods
US20030069792A1 (en) System and method for effecting secure online payment using a client payment card
US20020128977A1 (en) Microchip-enabled online transaction system
US20090234760A1 (en) Transaction authorisation system and method
CN108352021A (en) The method and system collected and reported for authentication data associated with online transaction
WO2014080167A1 (en) Processing authorization requests
CN106603239B (en) A kind of main account inquiry into balance method and bluetooth visible card based on bluetooth visible card
AU2010315111A1 (en) Verification of portable consumer devices for 3-D secure services
CA2477537A1 (en) System and method for performing secure remote real-time financial transactions
WO2021082466A1 (en) Offline payment
US20200273031A1 (en) Secure end-to-end online transaction systems and methods
US20130226803A1 (en) Method and system for authenticating an entity using transaction processing
GB2513126A (en) Method and system for creating a unique identifier
CN109034816A (en) User information verification method, device, computer equipment and storage medium
CN107122822B (en) A kind of visual financial IC card and the offline transaction method based on visual financial IC card
US20200065789A1 (en) Systems and methods for secure remote commerce
KR20160146734A (en) Remote transaction system, method and point of sale terminal

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant