CN101110113A - Multi-use safety device for computing electronic payment code and its generating method - Google Patents
Multi-use safety device for computing electronic payment code and its generating method Download PDFInfo
- Publication number
- CN101110113A CN101110113A CNA200710120185XA CN200710120185A CN101110113A CN 101110113 A CN101110113 A CN 101110113A CN A200710120185X A CNA200710120185X A CN A200710120185XA CN 200710120185 A CN200710120185 A CN 200710120185A CN 101110113 A CN101110113 A CN 101110113A
- Authority
- CN
- China
- Prior art keywords
- safety feature
- electronic payment
- bank
- code
- secret code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to a multiple-purpose safety device and cipher code generation method for calculating electronic payment cipher code, which comprises a central processor comprehensive control and calculation unit, a cipher code arithmetic assisting processor unit, a memory unit, a hardware random number generator unit and an interface control unit. Wherein, the cipher code arithmetic assisting processor unit is composed of an arithmetic operation module for a plurality of bank business electronic payment cipher codes; the central processor comprehensive control and calculation unit comprise a judgment sub-unit to judge the type of present request; the cipher code arithmetic assisting processor unit is controlled to automatically select and execute one of the plurality of electronic payment businesses. The cipher code generation method comprises the following procedures: receive a request data package sent from outside; judge the business type to be executed in the data package and select corresponding arithmetic module; after finishing the determination of business type, judge the operation type of the request to be executed in the request data package to conduct cipher code generation.
Description
Technical field
The present invention relates to the E-Payment field, particularly a kind of multi-usage is calculated the safety feature and the method for generating cipher code of electronic payment secret code.
Background technology
The bank electric payment password, be in the business such as bank money, bank system of web and bank card in bank, generate or set and, be used for the password that bank confirms user identity and payment transaction content, i.e. electronic payment secret code by user side in the confession of payment funding prerequisite.
Wherein, being used for main " the e_payment cipher systems technology standard " according to national commercial cipher management office (national Password Management office) and the promulgation of payment and settlement department of People's Bank of China of the electronic payment secret code of bank money reaches standards such as " business norms " and generates.It calculates generation digital signature (being electronic payment secret code) according to essential informations such as the account number on the bill, the amount of money by cryptographic algorithm, and Password Length is 16 fixing bit digital.
In the prior art, the electronic payment secret code that is used for bank money mainly generates by the hand-held electronic payment cipher.At first, the user is at hand-held electronic payment cipher equipment of bank's application, then, when each issuing bank bill, use the electronic payment secret code of this this bill of calculation of equipments, again the electronic payment secret code that is calculated and shown by scrambler is copied on the assigned address of bill, be can be used for substituting the traditional figure seal of bill; After bill is got back to bank by the circulation process, by bank with key element on the bill and payment cipher typing counting bank notes accounting system, by bank's backstage payment cipher verifying system payment cipher is verified that again the payment cipher checking is finished automatically that by the back banking system payment is kept accounts and waited the transaction operation.
The electronic payment secret code that is used for Web bank is mainly according to Electronic Signature Law and concerned countries standard, adopt digital certificate technique that digital signature and checking are carried out in the online payment transaction, it transmits Transaction Information by the Internet internet, use the cryptographic algorithm of digital certificate appointment and the key of storage that Transaction Information is carried out digital signature, promptly generate electronic payment secret code, Password Length is generally 1024 bits or longer.
In the prior art, the electronic payment secret code that is used for Web bank, mainly calculate and obtain by a kind of USB Token cipher key equipment combine digital certificate function, perhaps use the digital certificate of document form, carry out related operation by PC, generate the digital signature of online payment funding transaction or claim electronic payment secret code.To use USB Token to be example, at first, the enterprise customer is at the digital certificate of USB Token cipher key of bank's application and application and download user; Then, when user's logging in to online banks system concludes the business, USB Token is inserted PC, and call USB Token and calculate the digital signature that generates this transaction or claim electronic payment secret code; Then, transaction data and trading signature are sent to on-line banking back office system, pay by background system and carry out payment transaction for account operation after the password authentification by the internet.
The password that is used for bank card payment is generally set by bank card user or is used the dynamic password card to generate, and Password Length is generally the numeral of the fixing or dynamic change of 6 or 8.
In the prior art, the electronic payment secret code that is used for bank card generally sets up a fixing trading password on their own by the user when opening card, the user also can use the equipment of a kind of being called " dynamic password card " or " dynamic password card/board " and generate, and this equipment can be regularly or generate the electronic payment secret code of different dynamic changes when each the use.With the dynamic password card is example, at first, the user is at dynamic password card apparatus of bank's application, when the user uses the bank card payment, as on POS, swiping the card or when using bank system of web to pay, the user need will use the current password numerical value of dynamic password card generation as electronic payment secret code, the payment interface of input POS terminal or Web bank, Transaction Information is sent to the password authentification of paying of bank card center and issuing bank by telephone wire or internet, carries out payment and transaction for account operation by verifying the back.
Summary of the invention
The objective of the invention is to, a kind of safety feature and method for generating cipher code of multifunctional electronic payment cipher are provided, to solve in the prior art, electronic payment secret code safety device carries out the bank money payment the user, when bank system of web payment and the operation of bank card payment transaction, each other can not be general, the user need hold multiple different equipment respectively just can carry out above-mentioned payment transaction, thereby both caused a lot of inconvenience to the user, increased bank and user's cost, and problems such as potential safety hazard appear in the business operation that also may cause owing to user management is improper using electronic payment secret code to carry out.
Realization of the present invention can effectively reduce the overlapping investment of final user on the electronic payment secret code computing equipment, reduces the cost of equipment,, make things convenient for the user to the management of equipment and the process of manipulating of simplifying the user.
To achieve these goals, the invention discloses a kind of multi-usage and calculate the safety feature of electronic payment secret code, this safety feature comprises: central processor comprehensive control arithmetic element, cipher code arithmetic assisting processor unit, storer, hardware random number generator unit and interface control unit; Wherein, described cipher code arithmetic assisting processor unit comprises the algoritic module of multiple banking electronic payment secret code; In described central processor comprehensive control arithmetic element or the described storer, comprise judgment sub-unit, be used for the identification information that comprises according to request data package, judge type of present request, select to carry out a kind of in the described multiple E-Payment business with the control cipher code arithmetic assisting processor unit.
Preferable, the algoritic module of the described banking electronic payment secret code of the safety feature of described multi-usage calculating electronic payment secret code is at least two kinds in the following algoritic module: the cryptographic algorithm module of calculating the bank money electronic payment secret code; Calculate the cryptographic algorithm module of internet bank trade electronic payment secret code; Calculate the cryptographic algorithm module of bank card electronic payment secret code.
Preferable, the safety feature that described multi-usage is calculated electronic payment secret code also comprises authentication unit, be arranged in described central processor comprehensive control arithmetic element simultaneously or be positioned at described storer simultaneously with described judgment sub-unit, be used for the legitimacy of identifying user identity.
Preferable, the described interface control unit that described multi-usage is calculated the safety feature of electronic payment secret code is a USB communication interface control module, serial communication interface control module, a kind of in 1394 interface control units or more than one combination.
Preferable, the described storer that described multi-usage is calculated the safety feature of electronic payment secret code is a nonvolatile memory, this nonvolatile memory is used to preserve the logic control program of user operation records information and safety feature.
Preferable, when in described multi-usage is calculated the described cipher code arithmetic assisting processor unit of safety feature of electronic payment secret code, comprising the cryptographic algorithm module of this calculating bank card electronic payment secret code, also comprise a monotone counter unit in this safety feature, be used to the counter values that monotone increasing is provided or successively decreases, generate dynamic password according to this counter values with the cryptographic algorithm module of supporting this calculating bank card electronic payment secret code.
Preferable, described multi-usage is calculated each functional module elements of the safety feature of electronic payment secret code, is integrated in the SOC (system on a chip) integrated circuit safety chip.
Preferable, this safety chip also comprises a physical protection circuit layer, is used to prevent this safety feature inside is dissected and surveyed.
Preferable, this safety chip is encapsulated in the housing of a shape such as USB Key cipher key, and this housing is provided with a standard USB port and patches device, and the input and output pin of the safety chip during this patches device and installs is connected.
To achieve these goals, the invention also discloses a kind of general bank electric payment method for generating cipher code, may further comprise the steps:
Steps A receives the request data package that comprises identification information of coming from the outside transmission;
Step B, the type of service of judging required execution in this request data package is any in the multiple E-Payment business, selects the algoritic module of corresponding banking electronic payment secret code;
Step C when finishing behind the determining of type of service, continues to judge by the analysis request packet solicit operation type of the required execution of this request data package;
Step D carries out password generation work according to the data content that is comprised in determined type of service, solicit operation type and the request data package.
Preferable, the algoritic module of the described banking electronic payment secret code of described general bank electric payment method for generating cipher code is at least two kinds in the following algoritic module:
Calculate the cryptographic algorithm module of bank money electronic payment secret code;
Calculate the cryptographic algorithm module of internet bank trade electronic payment secret code;
Calculate the cryptographic algorithm module of bank card electronic payment secret code.
Preferable, between the steps A of described general bank electric payment method for generating cipher code and step B, also comprise the following steps:
Resolve this request data package, extract the check code in this request data package and this request data package is carried out integrity verification, if this check code mistake is then returned wrong output, this EO by this check code; If check code is correct, then judge the type of service of the required execution of this request data package by this request data package.
Preferable, described general bank electric payment method for generating cipher code realizes calculating the bank money electronic payment secret code, and perhaps Web bank's electronic payment secret code perhaps during the bank card electronic payment secret code, comprises the following steps:
Step a): safety feature is right at the key that the bank of deposit carries out device initialize, loading account number and generation account number correspondence, key is to being produced by the safety feature internal random, wherein, private key is stored in the safety feature, gives bank's backstage payment cipher verifying system on the PKI and preserves;
Step b): the user inserts safety feature USB port or the COM port or 1394 PORT COM of PC or dedicated handheld device, enter password then, identity identification information and communication interface such as fingerprint by being connected with safety feature, send the request of opening safety means;
Step c): after safety feature is received the open command request data package, judge whether user identity and authority be legal,, then return error message and stop this operation if user identity or authority are illegal, if user identity and authority are all legal, then proceed next step operation;
Step d): when user identity and authority be judged as legal after, the user sends solicited message to this safety feature, this safety feature is carried out the operation of calculating electronic payment secret code according to this solicited message that the user sends, and the electronic payment secret code that calculates is returned caller.
Preferable, when described general bank electric payment method for generating cipher code was realized calculating the bank money electronic payment secret code, in step d), the solicited message that the user sends to this safety feature comprised the fundamental information of bill.
Preferable, when described general bank electric payment method for generating cipher code was realized calculating Web bank's electronic payment secret code, in step d), the user drew together online trading information to the request packet that this safety feature sends.
Preferable, when described general bank electric payment method for generating cipher code is realized calculating the bank card electronic payment secret code, comprise the following steps:
In step a), comprise that also one is counter initial value at random of safety feature distribution, then key sum counter initial value is encrypted and be uploaded to bank's backstage cryptographic core check system and preservation, guarantee the step of safety feature and bank's backstage cryptographic core check system data sync;
In step a), do not comprise producing and preserving the right step of key, but have one to produce one at random by safety feature and be used for that dynamic password produces and the symmetric cryptographic algorithm key of checking, and be kept at step in the safety chip of device inside;
In step d), the solicited message that the user sends to this safety feature comprises " challenge code " of this transaction of pointing out on bank card terminal or the online payment transaction interface, i.e. one group of random digit;
In step d), this safety feature calculates the electronic payment secret code of this transaction, is to calculate according to current Counter Value in the safety feature and " challenge code ", and also comprises the automatic updating steps of Counter Value in a pair of this safety feature after calculating is finished.
Preferable, realize calculating the bank money electronic payment secret code in described general bank electric payment password-generation method, perhaps Web bank's electronic payment secret code, perhaps during the bank card electronic payment secret code, in step b) at least one to the step d), the step that comprises a recording user operation daily record is to be recorded in the operation information that the user was carried out in the safety feature.
Preferable, realize calculating the bank money electronic payment secret code at described general bank electric payment method for generating cipher code, perhaps Web bank's electronic payment secret code, perhaps during the bank card electronic payment secret code, in step b) at least one to the step d), comprising one needs the user to be arranged on trade confirmation button on this safety feature by next, with the step of confirming to operate.
A kind of multiduty safety feature and method for generating cipher code thereof that is used to calculate the bank electric payment password of the present invention has following beneficial effect:
The safety feature of multifunctional electronic payment cipher of the present invention and method for generating cipher code, can pass through USB interface or serial communication interface or 1394 interfaces, link to each other with PC computing machine or dedicated handheld device, support multiple bank payment services such as ticket payment, Web bank's payment and bank card payment simultaneously, thereby can reduce the overlapping investment of final user on the electronic payment secret code computing equipment, the cost of reduction equipment makes things convenient for the management of user to equipment, simplifies user's the process of manipulating.Because this safety feature is realized its major function in single safety chip, thereby makes this equipment control convenient, safe and with low cost; Simultaneously, this safety feature can be supported USB communication interface and serial communication interface simultaneously, both can connect the PC computing machine and use, and also can be connected with dedicated handheld device and realize the off line use, can also be connected with the bank computer terminal and finish various function initialization operations.And, application at existing bank paying means of exchange is different with the use scene, the enterprise customer who opens an account with the bank might use the situation of electronic payment secret code, safety feature of the present invention is in the security of the transaction of guaranteeing payment, can also greatly improve the convenience that the user uses, avoid the overlapping investment of user on the electronic payment secret code computing equipment, and can look after operation and the use habit of user original electronic payment secret code computing equipment.
Describe the present invention below in conjunction with the drawings and specific embodiments, but not as a limitation of the invention.
Description of drawings
Fig. 1 calculates the synoptic diagram of the safety feature of electronic payment secret code for using a kind of multi-usage of the present invention;
Fig. 2 is the synoptic diagram that safety feature of the present invention is connected with PC, banking terminal and dedicated handheld device;
Fig. 3 is the process flow diagram of general bank electric payment method for generating cipher code of the present invention;
Fig. 4 is the process synoptic diagram that safety feature of the present invention realizes calculating the bank money electronic payment secret code;
Fig. 5 is the process synoptic diagram that safety feature of the present invention realizes calculating Web bank's electronic payment secret code;
Fig. 6 is the process synoptic diagram that safety feature of the present invention realizes calculating the bank card electronic payment secret code.
Embodiment
In order to make purpose of the present invention, technical scheme and advantage clearer, below in conjunction with drawings and Examples, safety feature and method for generating cipher code that a kind of multi-usage of the present invention is calculated electronic payment secret code are further elaborated.Should be appreciated that specific embodiment described herein only in order to explanation the present invention, and be not used in qualification the present invention.
Safety feature of the present invention, be the generation equipment of an electronic payment secret code, in USB Key equipment, a safety chip is set, promptly be combined into an electronic payment secret code safety device, data communication that this safety feature is integrated, electronic payment secret code calculate and the key of cryptographic algorithm produces and basic function such as storage, can satisfy multiple bank payment services such as bank money payment, Web bank's payment and bank card payment simultaneously, realize the electronic payment secret code computing function.
Figure 1 shows that the synoptic diagram of the safety feature of a kind of multi-usage calculating electronic payment secret code of the present invention, a kind of multi-usage of the present invention is calculated the safety feature 10 of electronic payment secret code, comprise a central processor comprehensive control arithmetic element 11, one cipher code arithmetic assisting processor unit 12, one nonvolatile memory, 13, one hardware random number generator unit 14, an interface control unit 16 and with the interconnective internal bus 21 in above-mentioned each unit.
This central processor comprehensive control arithmetic element 11 is core control parts of safety device 10, is used to carry out operations such as microcode instruction execution, information interaction transmission and hardware resource management, control.
This central processor comprehensive control arithmetic element 11 comprises CPU and the peripheral circuit thereof that adopts special IC (ASIC) design at least, the ROM of the startup of storage security device, initialization and hardware check program Solidification code (comprising a master control logic unit R OM), and the volatile memory RAM that stores ephemeral data and program run time version in the safety feature operational process.
Among the master control logic unit R OM in the central processor comprehensive control arithmetic element 11 of safety feature of the present invention, comprise a judgment sub-unit, be used for the identification information that comprises according to request data package, judge type of present request, control cipher code arithmetic assisting processor unit 12 selects to carry out a kind of in the multiple E-Payment business.
This cipher code arithmetic assisting processor unit 12 is cryptographic algorithm arithmetic units that safety device 10 calculates electronic payment secret code, and it comprises and is used to realize that electronic payment secret code calculates required various cryptographic algorithm hardware circuit exclusive disjunction accelerators.
This cipher code arithmetic assisting processor unit 12 comprises at least two kinds in the following algoritic module by its functional classification that externally provides:
A) calculate the cryptographic algorithm module of bank money electronic payment secret code, the algorithm that it comprised is as the cryptographic algorithm that the close SSX10-B algorithm chip of state realizes;
B) calculate the cryptographic algorithm module of internet bank trade electronic payment secret code, the algorithm that it comprised is as RSA 1024/2048 algorithm, ECC algorithm, SSF33 algorithm, SHA-1 and MD5 algorithm etc.;
C) calculate the cryptographic algorithm module of bank card electronic payment secret code, the algorithm that it comprised is as DES, 3-DES and aes algorithm etc.
This nonvolatile memory 13, it is the general data memory unit of safety device 10, the main sensitive datas such as account information, user key and digital certificate of downloading or producing when being responsible for preserving the safety device function initialization also can be preserved other logic control programs of certain customers' operation note information and safety feature or by the cryptographic algorithm executive routine of user's download etc.
This nonvolatile memory 13, adopt the memory member of band physical protection technology, for example flash memory (Flash) storer, EEPROM (Electrically Erasable Programmable Read Only Memo) EEPROM, Erarable Programmable Read only Memory EPROM, programmable read only memory PROM or other under powering-off state, can continue retention data employing the magnetic of physical protection technology, electric storage medium.
This hardware random number generator unit 14 is parts that safety device 10 produces physical random number, is mainly used in when safety feature 10 initialization, provides random number source for producing the algorithm secret key of calculating electronic payment secret code in the cipher code arithmetic assisting processor unit 12.
This hardware random number generator unit 14 is by 11 controls of central processor comprehensive control unit, and by using the physical noise source circuit to produce high-quality random number, this hardware random number generator unit 14 can produce the random number of 1bit or 1byte byte long at every turn.
This interface control unit 16, be safety device 10 and extraneous mutual communication interface parts, the user can be by carrying out the information input and this safety feature 10 being operated in the equipment externally, simultaneously, this interface control unit can obtain electric energy and is 10 power supplies of this safety feature and can realizes the data interaction operation with the driver of external unit from external unit.
This interface control unit 16 can be USB communication interface control module 17 and serial communication interface control module 18, or at least a in 1394 interface control units.In the embodiments of the invention, with the interface control unit 16 that comprises USB communication interface control module 17 and serial communication interface control module 18 is that example describes, wherein, this USB communication interface control module 17 is used for realizing communication and data interaction transmission by USB interface and the outside equipment of standard USB interface of supporting.This USB communication interface control module 17 is supported USB 1.1 or 2.0 electric and consensus standards, can obtain electric energy from the USB port of external unit and is these safety feature 10 power supplies.This USB communication interface control module 17, can with the USB port communication of PC computing machine, and can realize the data interaction operation with USB device driver on the PC operating system.This serial communication interface control module 18 is used for realizing communication and data interaction transmission by Serial Com serial line interface and the outside equipment of serial communication interface of supporting.This serial communication interface control module 18 is supported RS-232 interface standard and serial communication protocol, can obtain electric energy from the serial device port of external unit and is these safety feature 10 power supplies.This serial communication interface control module 18, can with the serial port communication of bank computer terminal device or special-purpose hand-held terminal device, and can realize the data interaction operation with the serial port driver of said external equipment.
When this interface control unit 16 comprised this USB communication interface control module 17 and this serial communication interface control module 18 simultaneously, this safety feature 10 can self-reacting selection be operated in the USB communication state or be operated in serial comm state.
The above each unit interconnects to realize its corresponding function by an internal bus 21.
| FLG | TAG | LEN | DATA | LRC |
Wherein: FLG mark business-type (1 byte), promptly indicate this external request and belong to any in the business such as payment of ticket payment, Web bank or bank card payment, as a kind of enforceable mode, this type of service numerical value can be 1 or 2 or 3, wherein, 1 to represent this external request be the ticket payment business, and 2 to represent this external request be Internet-based banking services, and 3 to represent this external request be bank card payment transaction;
TAG identification request type (1 byte), promptly indicate this external request and specifically belong to any solicit operation, to calculate electronic payment secret code is example, this request type value can be 1 or 2 or 3 etc., wherein: ECC algorithm signature operation is carried out in 1 representative, RSA-1024 algorithm signature operation is carried out in 2 representatives, and RSA-2048 algorithm signature operation etc. is carried out in 3 representatives;
The length (2 byte) of data among the record DATA among the LEN;
Put down in writing the data content that request package is transmitted among the DATA, promptly refer to the data of needs execution solicit operation;
LRC represents check code (2 byte).
Preferably, the ROM in this central processor comprehensive control arithmetic element 11 of safety feature 10 of the present invention also comprises an authentication unit ROM, wherein comprises a proving program that solidifies, and is used for the legitimacy of identifying user identity.The user is manipulating the confession of this device prerequisite as user identification information may such as password, fingerprints, and the authentication unit checking just can be used this device by the back user, otherwise this device will be in the lock state.
In another embodiment, this judgment sub-unit and this authentication unit are not included in this central processor comprehensive control arithmetic element 11, but be included in this nonvolatile memory 13, at this moment, PROG in this nonvolatile memory 13 comprises a master control logic unit PROG and an authentication unit PROG, this judgment sub-unit is included among this master control logic unit PROG, this authentication unit is included among this authentication unit PROG, and its function that realizes is consistent with curing ROM cell among the last embodiment.
Preferably, also comprise a monotone counter unit 15 in this safety feature 10, be used for when this cipher code arithmetic assisting processor unit 12 comprises the cryptographic algorithm module of this calculating bank card electronic payment secret code, support the generation dynamic password function in the cryptographic algorithm module of this calculating bank card electronic payment secret code, this dullness counting unit 15 is responsible for the counter values that monotone increasing is provided or successively decreases.
The numerical value length of this monotone counter unit 15 is not less than 32bit, the counter renewal frequency can be a fixed time period, for example: p.s. or per minute increasing or decreasing one digit number, also can upgrade by the Event triggered counter, for example: send the instruction of counter increasing or decreasing after calculating dynamic password, the renewal operation of Counter Value is carried out in this monotone counter unit 15 according to instruction at every turn.The counter calibration can be realized with server end in this monotone counter unit 15 in this safety feature 10, with the synchronous error that exists between elimination and dynamic authentication service end counter, in the present embodiment, server end is finished this function automatically by the correction mechanism of counters design.
If this monotone counter unit 15 adopts the update mode of fixed time period, then also comprise a clock crystal oscillator and the device that the power supply input is provided for this crystal oscillator in this safety feature 10.
Preferably, as a kind of embodiment, each functional module elements of this safety feature 10, be integrated in a SOC (system on a chip) (SOC) the integrated circuit safety chip, this safety chip also comprises a physical protection circuit layer 22, be used for physical protection is carried out in this safety feature 10 inside, its can effectively prevent by physics dissect, the Detection Techniques means are to the illegal detection or the access of chip internal data.
More preferably, as a kind of embodiment, this safety feature 10 is encapsulated in the housing of a shape such as USB Key cipher key, as a thin type plastic housing by the form with safety chip; This housing is provided with a standard USB port and patches device, and the input and output pin of the safety chip during this patches device and installs is connected.
In another embodiment of the present invention, also be provided with a pilot lamp on this safety feature 10, whether be used to identify this safety feature 10 in running order.
In another embodiment of the present invention, also be provided with a button on this safety feature 10, as the trade confirmation button, the user can set when this safety feature 10 needs to calculate electronic payment secret code or carries out other operations, press this button, this safety feature 10 just can carry out work.
Figure 2 shows that the synoptic diagram that safety feature 10 of the present invention is connected with PC, banking terminal and dedicated handheld device, USB communication interface and serial communication interface sharing criteria USB port that safety feature of the present invention 10 is supported patch device, can satisfy to be connected with standard USB port on the PC computing machine and to realize the USB communication; Simultaneously, also can pass through USB<-serial converter is connected with the COM port of bank computer terminal device or dedicated handheld device and realizes serial data communication.
Safety feature below in conjunction with a kind of multi-usage calculating electronic payment secret code of the present invention further describes a kind of general bank electric payment method for generating cipher code of the present invention.
Described multi-usage is calculated the safety feature 10 of electronic payment secret code, comprises central processor comprehensive control arithmetic element 11; Carry out the coprocessor unit 12 of cryptographic algorithm; The Nonvolatile memery unit 13 of sensitive datas such as save routine code and algorithm secret key; Hardware random number generator unit 14; Monotone counter unit 15; USB communication interface control module 17 and serial communication interface control module 18.
Each unit of described safety feature 10 interconnects by internal bus 21, to realize basic functions such as exchanges data, crypto-operation; This safety feature 10 is connected with external unit by USB communication interface control module 17 and/or serial communication interface control module 18.
Described safety feature 10 can be by the identification information that comprises in the request data package of being sent by the outside, judges the type of service of current request, and selects to carry out a kind of in the multiple E-Payment business automatically, the form of this external request packet schematically as follows:
| FLG | TAG | LEN | DATA | LRC |
Wherein: FLG mark business-type (1 byte), promptly indicate this external request and belong to any in the business such as payment of ticket payment, Web bank or bank card payment, as a kind of enforceable mode, this type of service numerical value can be 1 or 2 or 3, wherein, 1 to represent this external request be the ticket payment business, and 2 to represent this external request be Internet-based banking services, and 3 to represent this external request be bank card payment transaction;
TAG identification request type (1 byte) promptly indicates this external request and belongs to any solicit operation, as: calculate payment cipher, device initialize etc.;
The length (2 byte) of data among the record DATA among the LEN;
The data content that the record request package is transmitted among the DATA;
LRC represents check code (2 byte).
Please refer to Fig. 3, this for safety feature of the present invention after receiving the request data package of sending the outside, the process flow diagram of its packet parsing work:
Step S100 receives a request data package that comprises identification information that sends from the outside and come;
Step S200 resolves this request data package, extract in this request data package LRC part check code and by judging that this check code carries out integrity verification to this request data package, if this check code mistake is then returned wrong output, this EO; If check code is correct, then partly judge the type of service of the required execution of this request data package by the FLG of this request data package;
Step S300, the type of service of judging required execution in this request data package is any in ticket payment business, Web bank's payment transaction or the bank card payment transaction, and selects the algoritic module of corresponding banking electronic payment secret code automatically;
Step S410, when having finished by the data in the FLG part behind the determining of type of service, this safety feature continues partly to judge by the TAG of request data package the solicit operation type of the required execution of this request data package;
Step S420, the solicit operation type of required execution in this request data package can be to calculate payment cipher and device initialize etc., after this safety feature has been finished judgement for request type, the parsing work of request data package is this time finished, this safety feature can carry out the subsequent operation operation according to the data content that is comprised in determined type of service, solicit operation type and the request data package, generates as password.
Step S500 after the operation of the complete external request of safety feature, returns to the requestor with the electronic payment secret code of operating result or generation, finishes this operation.
As a kind of enforceable mode, as shown in Figure 4, in the present invention, this safety feature realizes calculating bank money electronic payment secret code generation method, may further comprise the steps:
Steps A 100: safety feature is right at the key that the bank of deposit carries out device initialize, loading account number and generation account number correspondence, key is to being produced by the safety feature internal random, wherein, private key is stored in the safety feature, gives bank's backstage payment cipher verifying system on the PKI and preserves;
Steps A 200: when calculating certain bill electronic payment secret code, the user inserts PC or hand-held terminal device with safety feature, enter password then, identity identification information and communication interface such as fingerprint by being connected with safety feature, send the request of opening safety means;
Steps A 300: after safety feature is received opening request, judge whether user identity and authority be legal,, then return error message and stop this operation,, then proceed next step operation if user identity and authority are all legal if user identity or authority are illegal;
Steps A 400: when user identity and authority be judged as legal after, the user is by the fundamental information of the operation interface input bill of PC or handheld terminal, that is: account number, bill number, the amount of money, date and bill kind etc., and the communication interface by being connected with safety feature, send the request of calculating electronic payment secret code;
Steps A 500: after safety feature is received request data package, requested service type to the user is judged, when the request type of confirming the user is when calculating the bill electronic payment secret code, select and read the pairing private key of this bill account number, finish the electronic payment secret code generating run that calculates this bill, and payment cipher is returned caller.Then, the electronic payment secret code that this safety feature generates can be printed or show and be copied on the bank money assigned address by the user, as the mandate foundation of ticket payment.When bank is got back in the bank money circulation that has payment cipher, comprise electronic payment secret code by every element information on the bank cashier typing bill, Transaction Information is delivered to the bank backstage by bank network and is carried out electronic payment secret code and veritify, veritify by after finish payment and the operation of keeping accounts.
Realize calculating among another embodiment of bank money electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps A200 at least one to the steps A 500, the step that also comprises a recording user operation daily record, with operation note that the user was carried out in safety feature.
Realize calculating among another embodiment of bank money electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps A200 at least one to the steps A 500, also comprising one needs the user to be arranged on trade confirmation button on this safety feature by next, with the step of confirming to operate.
As the enforceable mode of another kind, as shown in Figure 5, this is among the present invention, and this safety feature is realized calculating Web bank's electronic payment secret code generation method, may further comprise the steps:
Step B100: the safety device carries out device initialize in bank, and the digital certificate of application and the use of download Web bank, be used to generate the key of digital certificate to producing by the safety feature internal random, wherein private key partly is stored in safety feature inside, send bank's digital certificate management system on the PKI, digital certificate generates the back download by the bank certificate management system and is kept in the safety feature;
Step B200: when needs calculate Web bank's electronic payment secret code, the user inserts safety feature the USB port of PC, enter password then, identity identification information and communication interface such as fingerprint by being connected with safety feature, send the request of opening safety means;
Step B300: after safety feature is received opening request, judge whether user identity and authority be legal,, then return error message and stop this operation,, then proceed next step operation if user identity and authority are all legal if user identity or authority are illegal;
Step B400: when user identity and authority be judged as legal after, the user is by PC Web bank software interface input online trading information, as payment account, debit's account number, the amount of money etc., and send the internet bank trade electronic payment secret code request of calculating to safety feature by USB port;
Step B500: after safety feature is received request data package, requested service type to the user is judged, when the request type of confirming the user is when calculating the internet bank trade payment cipher, read the private key of customer digital certificate correspondence and calculate the digital signature of online transaction, this digital signature is returned caller as the electronic payment secret code of this online transaction.Then, this electronic payment secret code and Transaction Information are by giving the internet bank trade system on bank backstage on the Internet internet, system retrieval also uses the PKI in the customer digital certificate that the electronic payment secret code of this transaction is verified, checking by after finish payment and the operation of keeping accounts.
Realize calculating among another embodiment of Web bank's electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps B200 at least one to the step B500, the step that also comprises a recording user operation daily record is to be recorded in the operation information that the user was carried out in the safety feature.
Realize calculating among the embodiment again of Web bank's electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps B200 at least one to the step B500, also comprising one needs the user to be arranged on trade confirmation button on this safety feature by next, with the step of confirming to operate.
As another enforceable mode, as shown in Figure 6, this is among the present invention, and this safety feature realizes calculating bank card electronic payment secret code generation method, may further comprise the steps:
Step C100: the safety device carries out device initialize in bank, produce one at random by safety feature and be used for the symmetric cryptographic algorithm key that dynamic password produces and verifies, and be kept in the safety chip of device inside, simultaneously, also to distribute a counter initial value at random for safety feature, then key sum counter initial value is encrypted and be uploaded to bank's backstage cryptographic core check system and preservation, guarantee safety feature and bank's backstage cryptographic core check system data sync;
Step C200: when needs calculate the bank card electronic payment secret code, the user can insert safety feature in the dedicated handheld device (POS swipe the card scene), perhaps can insert the USB port (bank card online payment scene) of PC, enter password then, user identification information may and communication interface such as fingerprint by being connected with safety feature, send the request of opening safety means;
Step C300: after safety feature is received opening request, judge whether user identity and authority be legal,, then return error message and stop this operation,, then proceed next step operation if user identity and authority are all legal if user identity or authority are illegal;
Step C400: when user identity and authority be judged as legal after, the user imports " challenge code " of this transaction of pointing out on bank card terminal or the online payment transaction interface by PC or handheld terminal, it is one group of random digit that service end provides, and, send to safety feature in the lump with the request of calculating bank card electronic payment secret code with the communication interface of challenge code by being connected with safety feature;
Step C500: after safety feature is received request data package, requested service type to the user is judged, when the request type of confirming the user is when calculating the bank card electronic payment secret code, read the dynamic password algorithm secret key of safety device storage, and calculate the electronic payment secret code and the Returning equipment caller of this transaction according to current Counter Value and " challenge code ";
Step C600: the Counter Value in the safety feature upgrades automatically.Then, electronic payment secret code is by giving the bank card disposal system on bank backstage on bank card terminal or the internet, system is according to the dynamic password algorithm secret key of the card number index user of bank correspondence and user's monotone counter value, verify the correctness of the electronic payment secret code of this transaction of user by cryptographic calculations, checking is finished payment record keeping operation by the back system, and notice front end transaction execution result.
Realize calculating among another embodiment of bank card electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps C200 at least one to the step C600, the step that also comprises a recording user operation daily record, with operation note that the user was carried out in safety feature.
Realize calculating among another embodiment of bank card electronic payment secret code generation method at safety feature of the present invention, in above-mentioned steps C200 at least one to the step C600, also comprising one needs the user to be arranged on trade confirmation button on this safety feature by next, with the step of confirming to operate.
Safety feature of the present invention is supported the electronic payment secret code computing function in three kinds of main bank paying means such as bank money payment, Web bank's payment and bank card payment simultaneously, and supports functions such as sensitive data storage such as safety feature initialization, key.
The safety device can link to each other with PC computing machine, bank computer terminal or dedicated handheld device by USB interface or serial communication interface.Standard USB port on the shared safety feature of at least two kinds of communication interfaces of this safety feature support patches device, and this safety feature can adapt to work at present automatically in the USB communication state, or is in serial comm state.
Please refer to following table 1, it is for using and do not use calculating electronic payment secret code safety device effect comparison table of the present invention:
Table 1 uses and does not use calculating electronic payment secret code safety device effect comparison table of the present invention
| Do not use existing equipment of the present invention and product | Use safety feature of the present invention |
| The user needs to use three kinds of different electronic payment secret code computing equipments when using ticket payment, Web bank's payment and three kinds of payment transaction means of bank card payment, uses and manage inconvenience | The user only need have the safety feature that a the present invention of meeting describes, and can be used for three kinds of bank paying means commonly used simultaneously and realize calculating the electronic payment secret code function, and operational administrative is unified and easy to use |
| Original electronic payment secret code computing equipment has limited user's environment for use, be applied to bank money e_payment cipher and be applied to | When the safety device is applied to bank money and bank card calculating electronic payment secret code, both can have connected the PC computing machine and use, also can connect |
| The dynamic password card apparatus of bank card generally can only off line use | Connecing the dedicated handheld device off line uses |
| The user needs three kinds of different electronic payment secret code computing equipments of investment buying, causes overlapping investment | The user only need purchase a playscript with stage directions and invent described safety feature, can realize " a tractor serves several purposes ", and can save customer investment |
Certainly; the present invention also can have other various embodiments; under the situation that does not deviate from spirit of the present invention and essence thereof; those of ordinary skill in the art work as can make various corresponding changes and distortion according to the present invention, but these corresponding changes and distortion all should belong to the protection domain of the appended claim of the present invention.
Claims (18)
1. the safety feature of a multi-usage calculating electronic payment secret code comprises the central processor comprehensive control arithmetic element, cipher code arithmetic assisting processor unit, and storer, the hardware random number generator unit, interface control unit is characterized in that:
Described cipher code arithmetic assisting processor unit comprises the algoritic module of multiple banking electronic payment secret code;
In described central processor comprehensive control arithmetic element or the described storer, comprise judgment sub-unit, be used for the identification information that comprises according to request data package, judge type of present request, the control cipher code arithmetic assisting processor unit selects to carry out a kind of in the described multiple E-Payment business.
2. multi-usage according to claim 1 is calculated the safety feature of electronic payment secret code, it is characterized in that the algoritic module of described banking electronic payment secret code is at least two kinds in the following algoritic module:
Calculate the cryptographic algorithm module of bank money electronic payment secret code;
Calculate the cryptographic algorithm module of internet bank trade electronic payment secret code;
Calculate the cryptographic algorithm module of bank card electronic payment secret code.
3. multi-usage according to claim 1 and 2 is calculated the safety feature of electronic payment secret code, it is characterized in that, also comprise authentication unit, be arranged in described central processor comprehensive control arithmetic element simultaneously or be positioned at described storer simultaneously with described judgment sub-unit, be used for the legitimacy of identifying user identity.
4. multi-usage according to claim 1 and 2 is calculated the safety feature of electronic payment secret code, it is characterized in that, described interface control unit is a USB communication interface control module, serial communication interface control module, a kind of in 1394 interface control units or more than one combination.
5. a kind of multi-usage according to claim 1 and 2 is calculated the safety feature of electronic payment secret code, it is characterized in that described storer is a nonvolatile memory, and this nonvolatile memory is used to preserve user operation records information.
6. multi-usage according to claim 2 is calculated the safety feature of electronic payment secret code, it is characterized in that, when comprising the cryptographic algorithm module of this calculating bank card electronic payment secret code in this cipher code arithmetic assisting processor unit, also comprise a monotone counter unit in this safety feature, be used to the counter values that monotone increasing is provided or successively decreases, with the generation dynamic password function in the cryptographic algorithm module of supporting this calculating bank card electronic payment secret code.
7. multi-usage according to claim 1 and 2 is calculated the safety feature of electronic payment secret code, it is characterized in that each functional module elements of this safety feature is integrated in the SOC (system on a chip) integrated circuit safety chip.
8. multi-usage according to claim 7 is calculated the safety feature of electronic payment secret code, it is characterized in that this safety chip also comprises a physical protection circuit layer, is used to prevent this safety feature inside is dissected and surveyed.
9. multi-usage according to claim 8 is calculated the safety feature of electronic payment secret code, it is characterized in that, this safety chip is encapsulated in the housing of a shape such as USB Key cipher key, this housing is provided with a standard USB port and patches device, and the input and output pin of the safety chip during this patches device and installs is connected.
10. a general bank electric payment method for generating cipher code is characterized in that, may further comprise the steps:
Steps A receives a request data package that comprises identification information that sends from the outside and come;
Step B, the type of service of judging required execution in this request data package is any in the multiple E-Payment business, selects the algoritic module of corresponding banking electronic payment secret code;
Step C when finishing behind the determining of type of service, continues to judge by the analysis request packet solicit operation type of the required execution of this request data package;
Step D carries out password generation work according to the data content that is comprised in determined type of service, solicit operation type and the request data package.
11. general bank electric payment method for generating cipher code according to claim 10 is characterized in that, the algoritic module of described banking electronic payment secret code is at least two kinds in the following algoritic module:
Calculate the cryptographic algorithm module of bank money electronic payment secret code;
Calculate the cryptographic algorithm module of internet bank trade electronic payment secret code;
Calculate the cryptographic algorithm module of bank card electronic payment secret code.
12. according to claim 10 or 11 described general bank electric payment method for generating cipher code, it is characterized in that, also comprise the following steps: between described steps A and the step B
Resolve this request data package, extract the check code in this request data package, and by judging that this check code carries out integrity verification to this request data package, if this check code mistake is then returned wrong output, this EO; If check code is correct, then judge the type of service of the required execution of this request data package by this request data package.
13. general bank electric payment method for generating cipher code according to claim 12, it is characterized in that, described general bank electric payment method for generating cipher code realizes calculating the bank money electronic payment secret code, perhaps Web bank's electronic payment secret code, perhaps during the bank card electronic payment secret code, comprise the following steps:
Step a): safety feature is right at the key that the bank of deposit carries out device initialize, loading account number and generation account number correspondence, key is to being produced by the safety feature internal random, wherein, private key is stored in the safety feature, gives bank's backstage payment cipher verifying system on the PKI and preserves;
Step b): the user inserts safety feature USB port or the COM port or 1394 PORT COM of PC or dedicated handheld device, enter password then, identity identification information and communication interface such as fingerprint by being connected with safety feature, send the request of opening safety means;
Step c): after safety feature is received the open command request data package, judge whether user identity and authority be legal,, then return error message and stop this operation if user identity or authority are illegal, if user identity and authority are all legal, then proceed next step operation;
Step d): when user identity and authority be judged as legal after, the user sends solicited message to this safety feature, this safety feature is carried out the operation of calculating electronic payment secret code according to this solicited message that the user sends, and the electronic payment secret code that calculates is returned caller.
14. a kind of general bank electric payment method for generating cipher code according to claim 13, it is characterized in that, when described general bank electric payment method for generating cipher code is realized calculating the bank money electronic payment secret code, in step d), the solicited message that the user sends to this safety feature comprises the fundamental information of bill.
15. a kind of general bank electric payment method for generating cipher code according to claim 13, it is characterized in that, when described general bank electric payment method for generating cipher code is realized calculating Web bank's electronic payment secret code, in step d), the user draws together online trading information to the request packet that this safety feature sends.
16. a kind of general bank electric payment method for generating cipher code according to claim 13 is characterized in that, when described general bank electric payment method for generating cipher code is realized calculating the bank card electronic payment secret code, comprises the following steps:
In step a), comprise that also one is counter initial value at random of safety feature distribution, then key sum counter initial value is encrypted and be uploaded to bank's backstage cryptographic core check system and preservation, guarantee the step of safety feature and bank's backstage cryptographic core check system data sync;
In step a), do not comprise producing and preserving the right step of key, but have one to produce one at random by this safety feature and be used for that dynamic password produces and the symmetric cryptographic algorithm key of checking, and be kept at the step of safety feature inside;
In step d), the solicited message that the user sends to this safety feature comprises " challenge code " of this transaction of pointing out on bank card terminal or the online payment transaction interface, i.e. one group of random digit;
In step d), this safety feature calculates the electronic payment secret code of this transaction, is to calculate according to current Counter Value in the safety feature and " challenge code ", and also comprises the automatic updating steps of Counter Value in a pair of this safety feature after calculating is finished.
17. a kind of general bank electric payment method for generating cipher code according to claim 13, it is characterized in that, in step b) at least one to the step d), comprise the step of a recording user operation daily record, so that the operation information that the user was carried out is recorded in the safety feature.
18. a kind of general bank electric payment method for generating cipher code according to claim 13, it is characterized in that, in step b) at least one to the step d), comprising one needs the user to be arranged on trade confirmation button on this safety feature by next, with the step of confirming to operate.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710120185XA CN101110113A (en) | 2007-08-10 | 2007-08-10 | Multi-use safety device for computing electronic payment code and its generating method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710120185XA CN101110113A (en) | 2007-08-10 | 2007-08-10 | Multi-use safety device for computing electronic payment code and its generating method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101110113A true CN101110113A (en) | 2008-01-23 |
Family
ID=39042179
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA200710120185XA Pending CN101110113A (en) | 2007-08-10 | 2007-08-10 | Multi-use safety device for computing electronic payment code and its generating method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101110113A (en) |
Cited By (24)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101902325A (en) * | 2010-07-02 | 2010-12-01 | 恒宝股份有限公司 | Wireless communication technology-based Key equipment |
| CN101901306A (en) * | 2009-06-01 | 2010-12-01 | 北京焜安信息技术有限公司 | Network transaction encryption method and dynamic password equipment used by same |
| CN101527630B (en) * | 2008-12-31 | 2011-02-16 | 北京飞天诚信科技有限公司 | Method, server and system for manufacturing certificate remotely |
| CN102110209A (en) * | 2010-12-28 | 2011-06-29 | 北京奇安科技有限公司 | Safety information logining device, method and keyboard |
| CN102291235A (en) * | 2011-08-05 | 2011-12-21 | 张露露 | Multi-interface safe key device and method |
| CN101582765B (en) * | 2009-06-29 | 2012-02-15 | 北京交通大学 | User bound portable trusted mobile device |
| CN103220145A (en) * | 2013-04-03 | 2013-07-24 | 天地融科技股份有限公司 | Method and system for electronic signature token to respond to operation request, and electronic signature token |
| CN103270524A (en) * | 2010-10-27 | 2013-08-28 | 维萨国际服务协会 | Integration of verification tokens with mobile communication devices |
| CN103414564A (en) * | 2013-08-07 | 2013-11-27 | 成都卫士通信息产业股份有限公司 | Secrete key card, secrete key device and method for protecting private key |
| CN103761468A (en) * | 2014-01-13 | 2014-04-30 | 金硕澳门离岸商业服务有限公司 | Micro control chip provided with double CPUs (central processing units) |
| CN103840943A (en) * | 2014-03-11 | 2014-06-04 | 上海动联信息技术股份有限公司 | Method for achieving multi-service authentication based on challenge-response dynamic passwords |
| WO2014187266A1 (en) * | 2013-08-19 | 2014-11-27 | 中兴通讯股份有限公司 | Electronic payment method and device |
| CN106130733A (en) * | 2016-06-23 | 2016-11-16 | 北京海泰方圆科技股份有限公司 | More newly configured methods, devices and systems |
| CN106411815A (en) * | 2015-07-29 | 2017-02-15 | 腾讯科技(深圳)有限公司 | Data transfer method, mobile terminal, server, and system |
| US9792611B2 (en) | 2009-05-15 | 2017-10-17 | Visa International Service Association | Secure authentication system and method |
| CN104679479B (en) * | 2015-03-12 | 2017-10-24 | 中国人民解放军信息工程大学 | A kind of multinuclear cipher processor of the scheduling controlling mechanism of task based access control numbering |
| US9904919B2 (en) | 2009-05-15 | 2018-02-27 | Visa International Service Association | Verification of portable consumer devices |
| US10049360B2 (en) | 2009-05-15 | 2018-08-14 | Visa International Service Association | Secure communication of payment information to merchants using a verification token |
| CN108769021A (en) * | 2018-05-28 | 2018-11-06 | 徐州徐工挖掘机械有限公司 | A kind of dynamic password control method suitable for excavator |
| CN109346092A (en) * | 2018-10-29 | 2019-02-15 | 王秉玉 | The system and method for voice encryption communication is carried out between a kind of communication terminal |
| US10282724B2 (en) | 2012-03-06 | 2019-05-07 | Visa International Service Association | Security system incorporating mobile device |
| US10572864B2 (en) | 2009-04-28 | 2020-02-25 | Visa International Service Association | Verification of portable consumer devices |
| CN110992175A (en) * | 2019-10-30 | 2020-04-10 | 成都摩宝网络科技有限公司 | Asynchronous accounting and transaction separation method and system based on message middleware |
| US10657528B2 (en) | 2010-02-24 | 2020-05-19 | Visa International Service Association | Integration of payment capability into secure elements of computers |
-
2007
- 2007-08-10 CN CNA200710120185XA patent/CN101110113A/en active Pending
Cited By (35)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101527630B (en) * | 2008-12-31 | 2011-02-16 | 北京飞天诚信科技有限公司 | Method, server and system for manufacturing certificate remotely |
| US10997573B2 (en) | 2009-04-28 | 2021-05-04 | Visa International Service Association | Verification of portable consumer devices |
| US10572864B2 (en) | 2009-04-28 | 2020-02-25 | Visa International Service Association | Verification of portable consumer devices |
| US11574312B2 (en) | 2009-05-15 | 2023-02-07 | Visa International Service Association | Secure authentication system and method |
| US10387871B2 (en) | 2009-05-15 | 2019-08-20 | Visa International Service Association | Integration of verification tokens with mobile communication devices |
| US10049360B2 (en) | 2009-05-15 | 2018-08-14 | Visa International Service Association | Secure communication of payment information to merchants using a verification token |
| US10043186B2 (en) | 2009-05-15 | 2018-08-07 | Visa International Service Association | Secure authentication system and method |
| US10009177B2 (en) | 2009-05-15 | 2018-06-26 | Visa International Service Association | Integration of verification tokens with mobile communication devices |
| US9904919B2 (en) | 2009-05-15 | 2018-02-27 | Visa International Service Association | Verification of portable consumer devices |
| US9792611B2 (en) | 2009-05-15 | 2017-10-17 | Visa International Service Association | Secure authentication system and method |
| CN101901306A (en) * | 2009-06-01 | 2010-12-01 | 北京焜安信息技术有限公司 | Network transaction encryption method and dynamic password equipment used by same |
| CN101582765B (en) * | 2009-06-29 | 2012-02-15 | 北京交通大学 | User bound portable trusted mobile device |
| US10657528B2 (en) | 2010-02-24 | 2020-05-19 | Visa International Service Association | Integration of payment capability into secure elements of computers |
| CN101902325A (en) * | 2010-07-02 | 2010-12-01 | 恒宝股份有限公司 | Wireless communication technology-based Key equipment |
| CN103270524A (en) * | 2010-10-27 | 2013-08-28 | 维萨国际服务协会 | Integration of verification tokens with mobile communication devices |
| CN103270524B (en) * | 2010-10-27 | 2017-04-12 | 维萨国际服务协会 | Integration of verification tokens with mobile communication devices |
| CN102110209A (en) * | 2010-12-28 | 2011-06-29 | 北京奇安科技有限公司 | Safety information logining device, method and keyboard |
| CN102291235A (en) * | 2011-08-05 | 2011-12-21 | 张露露 | Multi-interface safe key device and method |
| US10282724B2 (en) | 2012-03-06 | 2019-05-07 | Visa International Service Association | Security system incorporating mobile device |
| CN103220145B (en) * | 2013-04-03 | 2015-06-17 | 天地融科技股份有限公司 | Method and system for electronic signature token to respond to operation request, and electronic signature token |
| WO2014161442A1 (en) * | 2013-04-03 | 2014-10-09 | 天地融科技股份有限公司 | Operation request response method and system for electronic signature token, and electronic signature token |
| CN103220145A (en) * | 2013-04-03 | 2013-07-24 | 天地融科技股份有限公司 | Method and system for electronic signature token to respond to operation request, and electronic signature token |
| CN103414564A (en) * | 2013-08-07 | 2013-11-27 | 成都卫士通信息产业股份有限公司 | Secrete key card, secrete key device and method for protecting private key |
| WO2014187266A1 (en) * | 2013-08-19 | 2014-11-27 | 中兴通讯股份有限公司 | Electronic payment method and device |
| CN104424560A (en) * | 2013-08-19 | 2015-03-18 | 中兴通讯股份有限公司 | E-payment method and device |
| CN103761468A (en) * | 2014-01-13 | 2014-04-30 | 金硕澳门离岸商业服务有限公司 | Micro control chip provided with double CPUs (central processing units) |
| CN103840943A (en) * | 2014-03-11 | 2014-06-04 | 上海动联信息技术股份有限公司 | Method for achieving multi-service authentication based on challenge-response dynamic passwords |
| CN104679479B (en) * | 2015-03-12 | 2017-10-24 | 中国人民解放军信息工程大学 | A kind of multinuclear cipher processor of the scheduling controlling mechanism of task based access control numbering |
| CN106411815A (en) * | 2015-07-29 | 2017-02-15 | 腾讯科技(深圳)有限公司 | Data transfer method, mobile terminal, server, and system |
| CN106411815B (en) * | 2015-07-29 | 2019-06-07 | 腾讯科技(深圳)有限公司 | A kind of data transfering method, mobile terminal, server and system |
| CN106130733A (en) * | 2016-06-23 | 2016-11-16 | 北京海泰方圆科技股份有限公司 | More newly configured methods, devices and systems |
| CN108769021A (en) * | 2018-05-28 | 2018-11-06 | 徐州徐工挖掘机械有限公司 | A kind of dynamic password control method suitable for excavator |
| CN108769021B (en) * | 2018-05-28 | 2021-06-04 | 徐州徐工挖掘机械有限公司 | Dynamic password control method suitable for excavator |
| CN109346092A (en) * | 2018-10-29 | 2019-02-15 | 王秉玉 | The system and method for voice encryption communication is carried out between a kind of communication terminal |
| CN110992175A (en) * | 2019-10-30 | 2020-04-10 | 成都摩宝网络科技有限公司 | Asynchronous accounting and transaction separation method and system based on message middleware |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101110113A (en) | Multi-use safety device for computing electronic payment code and its generating method | |
| CN101095162B (en) | System and method for a secure transaction module | |
| EP2204782A1 (en) | Transaction method with e-payment card and e-payment card | |
| CN101739624A (en) | Trusted payment network system | |
| CA2914956C (en) | System and method for encryption | |
| US20080265020A1 (en) | System and method for performing payment transactions, verifying age, verifying identity, and managing taxes | |
| WO2010003202A2 (en) | System, method and device to authenticate relationships by electronic means | |
| CN101211451B (en) | Circle deposit system based on digital signature and method | |
| US10361864B2 (en) | Enabling a secure OEM platform feature in a computing environment | |
| CA2861764A1 (en) | Electronic check-based payment system and methods for issuing, transferring, paying and verifying electronic checks | |
| US20120254041A1 (en) | One-time credit card numbers | |
| CN104933565A (en) | IC card transaction method and IC card transaction system | |
| WO2022087791A1 (en) | Digital asset transaction control method and apparatus, terminal device, and storage medium | |
| EP2854087A1 (en) | Method for processing a payment | |
| US9659291B2 (en) | Method for processing a payment | |
| CN106251145A (en) | Electronic fare payment system, electronic payment devices and electric paying method | |
| KR100968941B1 (en) | Finance trade system using a otp | |
| CN101118629A (en) | Bank electric payment security system and processing method thereof | |
| KR20200016157A (en) | System and method for processing card payment based on block-chain | |
| JP5981507B2 (en) | How to process payments | |
| KR20080084728A (en) | Internet business security method | |
| TWM590733U (en) | Virtual electronic ticket card transaction system | |
| TWI529640B (en) | Action payment method and action payment equipment | |
| CN111915300A (en) | Method, system and storage medium for completing digital sign-in based on block chain | |
| AU2015203621B2 (en) | Dynamic electronic money |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| ASS | Succession or assignment of patent right |
Owner name: SINOSUN TECHNOLOGY (SHENZHEN) CO., LTD. Free format text: FORMER OWNER: WEI KAIYAN Effective date: 20100625 |
|
| C41 | Transfer of patent application or patent right or utility model | ||
| COR | Change of bibliographic data |
Free format text: CORRECT: ADDRESS; FROM: 518040 FUTIAN DISTRICT, SHENZHEN CITY, GUANGDONG PROVINCE TO: 518040 TOWER C, 6TH FLOOR, BUILDING 213, TAIRAN INDUSTRY AREA, CHEGONGMIAO, FUTIAN DISTRICT, SHENZHEN CITY, GUANGDONG PROVINCE |
|
| TA01 | Transfer of patent application right |
Effective date of registration: 20100625 Address after: 518040 Guangdong city of Shenzhen province Futian District Che Kung Temple Tairan Industrial Zone 213 building 6 floor C block Applicant after: Sinosun Technology (Shenzhen) Co., Ltd. Address before: 518040 Shenzhen, Guangdong, Futian District Applicant before: Wei Kaiyan |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20080123 |