CN100485726C - A mobile payment system based on distributed cipher key - Google Patents
A mobile payment system based on distributed cipher key Download PDFInfo
- Publication number
- CN100485726C CN100485726C CNB2005100505350A CN200510050535A CN100485726C CN 100485726 C CN100485726 C CN 100485726C CN B2005100505350 A CNB2005100505350 A CN B2005100505350A CN 200510050535 A CN200510050535 A CN 200510050535A CN 100485726 C CN100485726 C CN 100485726C
- Authority
- CN
- China
- Prior art keywords
- mobile
- portable terminal
- external
- moving
- safety
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Ceased
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephone Function (AREA)
Abstract
The invention discloses a movement paying system and encoding method based on the allocation key. It uses user the intercross component of keyword, moving end tag, external encoding device tag number and disclosing/private keys to enhance the safety of moving payment, any adjusting error can make the business unsuccessfully; the interwork of moving end, external encoding device, third party quoting mechanism and service end safety device can undertake the safety between moving end and service end; the safety information which is stored in the external encoding device outside the moving end can design different series products; it uses the external visiting interface to match the end of each moving device; it also can be competently used and intercross detected with the current encoding technology.
Description
Technical field
The present invention relates to a kind of payment system, especially relate to a kind of mobile-payment system based on distributed cipher key.
Background technology
Improve combination day by day along with computer technology and mobile technology, the notion of novel mobile computing has had influence on social every field and stratum, Mobile business has become one of if you stretch out your hand you feel the heat topic in field, current broad sense Internet, mobile phone role in people's life is enriched constantly, the client at any time, Anywhere, use any available mode can obtain anyly wanting the tight demand of financial service to have an opportunity to realize with combining of mobile IT with financial circles, financial business forms a kind of new trend--mobile financial service.
For adapting to the demand of ecommerce, the release of mobile banking service is imperative.But in the process that mobile banking service is carried out, safety problem becomes its critical bottleneck.Because the cryptographic capabilities of mobile phone is limited, can not finely satisfy the requirement of financial security, present most mobile-phone payments only limit to small amount or directed payment, can not reach the level of encryption of Web bank.
Present most of mobile phone all has the ability of visit external unit, and along with the development of technology, this trend is day by day obvious, and infrared, bluetooth and data line almost become the standard configuration of mobile phone, and the support of USB is also increasing.Simultaneously, because the appearance of SIM card cloning machine is leaned on SIM card and mobile phone itself to carry out security protection merely and also stood acid test, in mobile-payment system, use STK card (abbreviation of SIM TOOL KIT, i.e. SIM card intelligence tool bag at present.It can make the user pass through menu in Chinese and service prompts default in the SIM card, easily enjoy the mobile phone value-added service, compare with common SIM card, the STK card at first is to have bigger memory space (memory capacity of common SIM card is the 8K byte, STK card capacity is the 32K byte, also can continue at double later on.) encrypt, but that the STK card encryption needs the user to change the SIM card and the cryptographic capabilities of mobile phone is limited, relies on the cryptographic capabilities of mobile phone itself or employing protecting software cipher in view of the intrusion of the performance bottleneck of mobile phone and mobile phone viruses safety inadequately all.
A kind of " use the Financial Information input method of symmetric key security algorithm and be used for the business transaction system of mobile communication " disclosed in the disclosed No. 02812764.1 Chinese invention patent application specification on September 15th, 2004, have prevent the client Financial Information by the effect of illegal copies.
Summary of the invention
Technical matters to be solved by this invention is to provide a kind of existing mobile phone of client that can utilize at above-mentioned prior art present situation, need not to change the SIM card of mobile phone, there is not the performance bottleneck problem, and the higher mobile-payment system based on distributed cipher key of safety coefficient.
The present invention solves the problems of the technologies described above the technical scheme that is adopted: a kind of mobile-payment system based on distributed cipher key, comprise portable terminal, described portable terminal is connected with the ca authentication server by mobile Internet, and link to each other with paying server by described mobile Internet, described portable terminal is connected with external encryption equipment by interface, and described external encryption equipment is key formula encryption device.
Described interface can be other a various interface such as data line, serial ports, infrared, bluetooth, USB interface.
Described portable terminal can be a mobile phone, also can be other mobile communication equipment, as PDA, notebook computer etc.
Compared with prior art, the invention has the advantages that by user cipher (as payment cipher), mobile terminal identification (as mobile phone), external encryption device identification (as smartcard identification) number, open/combined crosswise verifications such as private cipher key to strengthen the security of mobile payment, any check errors all can make professional unsuccessful; Portable terminal, external encryption equipment, third party certification authority, server end safety equipment cooperatively interact and guarantee the security of portable terminal to server end; Security information (as open/private cipher key etc.) is stored in the external encryption equipment beyond the portable terminal, and external encryption equipment adopts smart card techniques to realize, supports based on PKI encryption mechanism and other safety standards, meets the close standard of doing of the merchant of country.
And be designed to hardware based external encryption equipment with security function is independent, and then can design different series product according to security needs, there is not the performance bottleneck problem, can adaptive all kinds of portable terminals by the peripheral access interface that becomes increasingly abundant; Can also be used in combination with existing encryption technology in addition, cross check has improved the security of mobile payment greatly, has solved the security challenge of mobile payment and need not change the hardware configuration of portable terminal; And the equipment of external encryption simultaneously also can be used as an independently product development sale.
Description of drawings
Fig. 1 is a structural representation of the present invention;
Fig. 2 is the synoptic diagram of ciphering process of the present invention;
Fig. 3 is the circuit diagram of external encryption equipment of the present invention.
Embodiment
Embodiment describes in further detail the present invention below in conjunction with accompanying drawing.
Embodiment one: a kind of mobile-payment system based on distributed cipher key, comprise portable terminal 1, portable terminal 1 is connected with CA (Certification Authority) certificate server 2 by mobile Internet 3, and link to each other with paying server 4 by mobile Internet 3, portable terminal 1 is connected with external encryption equipment 5 by interface, and external encryption equipment 5 is key formula encryption device.
The interface of portable terminal 1 can be other a various interface such as data line, serial ports, infrared, bluetooth, USB interface.
Portable terminal 1 can be mobile phone, PDA, notebook computer etc.
The circuit of external encryption equipment as shown in Figure 3, among the figure: SLE66C is the financial smart card of data company limited of Beijing Watchdata, meets " China's finance integrated circuit (IC-card) standard ", has passed through People's Bank of China's detection.Embedded TimeCOS/PBOC smart card operating system protection security information (key and data file etc.) meets the integrated circuit card standard " ISO/IEC 7816-1/2/3/4 " of contact-carrying, and SLE66C can realize cryptographic algorithm such as 3DES.
LPC764 is the MCU of external encryption equipment, mainly finishes the communication function of mobile phone and SLE66C.Promptly accept mobile phone by order and data that data line or interface such as infrared send by UART mouth among the figure, it is transmitted to SLE66C, SLE66C returns to LPC764 with enciphered data after finishing command process, and LPC764 gives mobile phone with data forwarding.Main by serial ports or infrared communication between LPC764 and the mobile phone, LPC764 and SLE44C adopt semiduplex, meet the transmission mode of " ISO/IEC 7816-1/2/3/4 ".
MAX232: the serial ports level transferring chip, when mobile phone adopts data line and external encryption device talk, finish the level conversion function.Promptly finish in the UART mouth RS232 level to the conversion of Transistor-Transistor Logic level.
The model of external crystal-controlled oscillation OSC is HCY7.3728MHZ010, and the clock by LPC764 makes to provide to SLE66C behind 1/6 frequency division 1~5MHz guarantees that simultaneously UART can satisfy the baud rate requirement of stable 9600bit/s.
Power supply: CELL is a rechargeable battery, for LPC764 and SLE66C provide 5v power supply.
Embodiment two: a kind of encryption method of the mobile-payment system based on distributed cipher key may further comprise the steps:
1. mobile phone users is bought external encryption equipment and is filled in CAMEL-Subscription-Information to bank or relevant departments, CAMEL-Subscription-Information comprise be stored in be used on the SIM card identifying user mobile subscriber whole world unique identifier, be stored in international mobile station identity number, user name, password and authentication mode that being used on the portable terminal identifies portable terminal;
2. bank or relevant departments encrypt Mp and form Mk by the cryptographic algorithm of appointment, and return and write Mk and association key to described external encryption equipment, simultaneously the security information that relates in the e-commerce security basic platform are write goods.
3. mobile phone users utilizes GPRS function of surfing the Net login mobile payment website, downloads and install the mobile payment application program by the air download mode, is embedded with the encryption method of appointment in the mobile payment application program.
4. mobile phone users sends authentication request to external encryption equipment by interface, and external encryption equipment utilization Mk sends to portable terminal by interface with authentication response after request is encrypted, and portable terminal sends authentication response to bank or SP.
5. bank or relevant departments at first obtain user's CAMEL-Subscription-Information by the GSM network interface, the decrypted authentication response obtains CAMEL-Subscription-Information then, verify by the consistance that contrasts both whether user signing contract information is correct,, allow user's retry three times if not right, if it is not right after three times, mobile payment on the portable terminal is used and is automatically locked, and has only by bank or relevant departments and comes release, if authentication success, then return mobile phone users, can carry out the mobile payment flow process.
In the security information of step in 2. can be PKI or private key.
The mobile payment application program of step in 4. can be based on the application program of MIDP or UIQ platform.
MIDP (Mobile Information Device Profile) standard is by Java Community Program definition, and it is one and is specifically designed to mobile information apparatus and image property requirement height is provided dynamically, safely, needs the application platform of network support.UIQ is a middleware platform on the main flow mobile phone operating system Symbian, can develop application program of mobile phone thereon.
Claims (3)
1, a kind of mobile-payment system based on distributed cipher key, comprise portable terminal, described portable terminal is connected with the ca authentication server by mobile Internet, and link to each other with paying server by described mobile Internet, it is characterized in that described portable terminal is connected with external encryption equipment by interface, described external encryption equipment is key formula encryption device.
2, a kind of mobile-payment system based on distributed cipher key as claimed in claim 1 is characterized in that described interface is data line, serial ports, infrared, bluetooth, USB interface.
3, a kind of mobile-payment system based on distributed cipher key as claimed in claim 1 is characterized in that described portable terminal is a mobile phone.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100505350A CN100485726C (en) | 2005-07-01 | 2005-07-01 | A mobile payment system based on distributed cipher key |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100505350A CN100485726C (en) | 2005-07-01 | 2005-07-01 | A mobile payment system based on distributed cipher key |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1731460A CN1731460A (en) | 2006-02-08 |
| CN100485726C true CN100485726C (en) | 2009-05-06 |
Family
ID=35963805
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005100505350A Ceased CN100485726C (en) | 2005-07-01 | 2005-07-01 | A mobile payment system based on distributed cipher key |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100485726C (en) |
Families Citing this family (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100440262C (en) * | 2006-06-12 | 2008-12-03 | 潘铁军 | Paying apparatus and method for prepaying meter |
| CN101098225B (en) * | 2006-06-29 | 2012-07-25 | 中国银联股份有限公司 | Safety data transmission method and paying method, paying terminal and paying server |
| CN103346997B (en) * | 2006-10-02 | 2016-08-17 | 赛乐得公司 | For improving the method and system of client server transmission in fading channel |
| CN101287277B (en) * | 2007-04-13 | 2012-07-25 | 华为技术有限公司 | Method and system for providing service to customer's terminal in wireless personal area network |
| CN101127954B (en) * | 2007-09-21 | 2010-08-18 | 冯卫东 | A method for transmitting data via mobile phone dialing communication or GRPS packet communication technology |
| CN101252436B (en) * | 2008-03-27 | 2011-11-23 | 上海柯斯软件有限公司 | Smart card dynamic password creating and judging system |
| CN101344982B (en) * | 2008-08-15 | 2010-04-07 | 颜瀚钧 | Payment device |
| CN101409592B (en) * | 2008-11-17 | 2010-10-27 | 普天信息技术研究院有限公司 | Method, system and apparatus for implementing multi-application business based on condition receiving card |
| CN102006275A (en) * | 2010-07-21 | 2011-04-06 | 恒宝股份有限公司 | System and method for financial IC (Integrated Circuit) card transaction |
| CN102497465A (en) * | 2011-10-26 | 2012-06-13 | 潘铁军 | High-secrecy mobile information safety system and safety method for distributed secret keys |
| CN102509221A (en) * | 2011-10-28 | 2012-06-20 | 深圳盒子支付信息技术有限公司 | Method, device and system for identifying payment device |
| CN102609641A (en) * | 2011-12-28 | 2012-07-25 | 潘铁军 | DRM (digital rights management) system based on distributed keys |
| CN103516687B (en) * | 2012-06-27 | 2016-08-17 | 中国银联股份有限公司 | Security information interaction system, Apparatus and method for |
| CN102905260B (en) * | 2012-09-18 | 2015-04-01 | 北京天威诚信电子商务服务有限公司 | Safety and certification system for data transmission of mobile terminal |
| TWI591553B (en) * | 2012-10-31 | 2017-07-11 | Chunghwa Telecom Co Ltd | Systems and methods for mobile devices to trade financial documents |
| CN104715360B (en) * | 2013-12-16 | 2019-03-15 | 中国银联股份有限公司 | Cash collecting system is paid without card and pays cashing method without card |
| CN103914772B (en) * | 2014-03-31 | 2016-03-09 | 深圳小木科技有限公司 | For the wireless authentication method of mobile payment, system and device |
| CN104156653B (en) * | 2014-08-07 | 2018-08-03 | 深圳鼎瑄通讯科技有限公司 | A kind of application guard method and the device of mobile terminal |
| CN104268756B (en) * | 2014-09-18 | 2019-03-05 | 努比亚技术有限公司 | Method of mobile payment and system |
| CN105357012A (en) * | 2015-10-26 | 2016-02-24 | 上海易码信息科技有限公司 | Authentication method for mobile application not depending on local private key |
| CN106778371A (en) * | 2016-12-23 | 2017-05-31 | 郑州云海信息技术有限公司 | A kind of plug type hardware encryption storage method, system |
-
2005
- 2005-07-01 CN CNB2005100505350A patent/CN100485726C/en not_active Ceased
Also Published As
| Publication number | Publication date |
|---|---|
| CN1731460A (en) | 2006-02-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100485726C (en) | A mobile payment system based on distributed cipher key | |
| CN103259667B (en) | The method and system of eID authentication on mobile terminal | |
| US8041338B2 (en) | Mobile wallet and digital payment | |
| US7762470B2 (en) | RFID token with multiple interface controller | |
| CN102737308B (en) | The method and system of a kind of mobile terminal and inquiry smart card information thereof | |
| CN102737311B (en) | Internet bank security authentication method and system | |
| EP2182493A1 (en) | Remote user authentication using NFC | |
| CN107820238B (en) | SIM card, blockchain application security module, client and security operation method thereof | |
| KR20160048951A (en) | Online payments using a secure element of an electronic device | |
| CN104504563B (en) | A kind of mobile message safety means and its method of work | |
| CN102096972A (en) | Method and system for finishing on-line payment based on user terminal, and user terminal | |
| CN100534039C (en) | Financial-transaction terminal for processing information carrier according to USB interface normalization and its operation | |
| CN102609641A (en) | DRM (digital rights management) system based on distributed keys | |
| JP2023539633A (en) | Use of NFC field from phone to power card to phone Bluetooth communication | |
| JP2022501873A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| KR101205863B1 (en) | System and Method For Transferring Money Using OTP And QR-code | |
| CN104732387A (en) | Electronic transaction between a mobile device, a touch panel device and a server | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN102044040A (en) | Online banking transaction method and device as well as mobile terminal | |
| CN102592091A (en) | Digital rights management system and security method based on distributed key | |
| CN101789152B (en) | Multipurpose contactless card supporting large amount payment and online recharge and application method thereof | |
| CN106980977A (en) | Payment system and its Payment Card based on Internet of Things | |
| KR101807645B1 (en) | Method and system for appling usim certificate to online infrastructure | |
| KR20110103822A (en) | Method and system of managing a mobile card | |
| CN201069581Y (en) | A mobile payment system based on distributed secrete key |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C35 | Partial or whole invalidation of patent or utility model | ||
| IW01 | Full invalidation of patent right |
Decision date of declaring invalidation: 20121231 Decision number of declaring invalidation: 19848 Granted publication date: 20090506 |