CN101127137A - Multiple cipher circulated validation method in electronic transaction process - Google Patents
Multiple cipher circulated validation method in electronic transaction process Download PDFInfo
- Publication number
- CN101127137A CN101127137A CNA200710132284XA CN200710132284A CN101127137A CN 101127137 A CN101127137 A CN 101127137A CN A200710132284X A CNA200710132284X A CN A200710132284XA CN 200710132284 A CN200710132284 A CN 200710132284A CN 101127137 A CN101127137 A CN 101127137A
- Authority
- CN
- China
- Prior art keywords
- password
- user
- bank
- group
- electronic transaction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The utility model discloses a multi-group password circulation identifying method during electronic trading process, which is characterized in that: firstly a user registers multi-group static trading passwords on a bank host machine which firstly stores one group password into a password buffering area waiting for identifying to be as a first identifying password; when the user needs electronic trading and imports a user account and a password to the electronic trading terminal, the bank host machine confirms whether trading is made after the user account and the password are identified; when the trading condition is in conformity, the bank host machine gets next group password from multi-group of static passwords and stores the password into the password buffering area waiting for identifying to replace last password for next password identifying; the password is used for next password identifying for the user. The utility model effectively solves the technical problem of user password circulation identifying and testing. The password of each trading is different with last trading password through multi-group passwords circulation use, which can effectively avoid being-stolen risk of bank capital since the password is stolen.
Description
Technical field
The present invention relates to the auth method in a kind of electronic transaction process, more particularly, relate to a kind ofly can be applied in effectively that bank's automatic terminal (ATM) is withdrawn the money, the multiple cipher circulated validation method in personal consumption (POS machine) the electronic accounting process.
Technical background
In the prior art, bank individual debit, personal banking electronic accounting such as withdraw the money, adopt the user hold issued by banks bank card, confirm subscriber authorisation with the unique one group of user cipher in bank's registration in advance, carry out electronic accounting, be forged, be replicated when depositing the card transaction in the bank, user cipher is stolen, thereby steals user's bank capital.So there is bigger security risk in present stage electronic transaction clearing.
Summary of the invention
The objective of the invention is to overcome the prior art problem, the verification mode of the multiple cipher circulation in a kind of electronic transaction process is provided, the user is carrying out electronic transaction when clearing, the fund security risk that can effectively avoid password to be stolen bringing.
In order to achieve the above object, the invention provides following technical scheme: the multiple cipher circulated validation method in a kind of electronic transaction process, comprise electronic transaction terminal and bank main, both connect by network, it is characterized in that: the user is the static trading password of the many groups of registration on bank main in advance, bank main at first will be wherein one group of password storage to password buffer zone to be verified as user's authentication password first, when the user needs electronic transaction and to electronic transaction terminal input user account number and password, determining behind bank main empirical tests user account number and the password could continuous business; When meeting terms of trade, bank main obtains next group password from many groups static password, and this password storage replaced last one group of password in password buffer zone to be verified, so that carry out password authentification next time, this password is as user's authentication password next time, this password comes into force after this is proved to be successful end from the user, is proved to be successful inefficacy to next time.
Above-mentioned electronic transaction terminal comprises bank's automatic terminal (ATM), E-consumer machine (POS machine), user's account No. that this method adopted and existing bank card account number are consistent, the user is in advance at the many groups of bank's registration static password, after registration is finished, first group of password will store password buffer zone to be verified into, when carrying out electronic transaction, the user is to bank electronic transaction terminal input user account No., password and dealing money, and bank will verify the password of user's input and the password in the password buffer zone to be verified.If be proved to be successful, bank will obtain next group password from the multiple cipher of user's registration, this password storage is replaced last one group of password to password buffer zone to be verified, so that carry out password authentification next time, transaction terminal according to bank provide could continuous business, whether decision concludes the business, and the electronic transaction terminal information that maybe can not conclude the business of will concluding the business is shown to the user, the final plant closure trading channel.
The present invention efficiently solves the technical matters of user cipher circulation checking, the method for inspection.By to the recycling of multiple cipher, the password when at every turn concluding the business is all inequality with last round of trading password, can prevent password user's bank capital of producing risk that is stolen that is stolen effectively.Compare with existing user cipher inspection technology, the present invention has following tangible advantage and effect: 1, the user does not need when concluding the business password to be spied on, be stolen and worry; 2, the user stolen at bank card, be replicated or when losing, adopt the multiple cipher protection, can effectively take precautions against the risk that user's bank capital is stolen; 3, the user adopts the multiple cipher protection when current trading password is stolen, can effectively take precautions against the risk that user's bank capital is stolen.
Description of drawings
Fig. 1 is password registering flow path figure of the present invention;
Fig. 2 is a password authentification process flow diagram of the present invention;
Fig. 3 is the application of password authentification of the present invention on the bank self-help terminal;
Fig. 4 is the application of password authentification of the present invention on personal consumption electronic accounting machine.
Embodiment
The present invention includes password registration and two processes of password authentification, wherein the password registering flow path is with reference to Fig. 1, and the present invention will finish multiple cipher circulated validation method, needs the user in advance at bank's registration multiple cipher.The user is handling multiple cipher circulation checking to bank's request, bank's audit user identity and account number, after confirming that user identity and account number are effectively, the user can be provided with cipher code set number (more than at least two groups), register every group of password successively, banking system will check whether every group of password be effective, and with whether register password different, if password useless or password are identical, then need to redefine.After all the password registration was finished, banking system stored in the password buffer zone to be verified first group in the multiple cipher, finished the password registration and carried out user cipher checking preparation.
The password authentification flow process as shown in Figure 2, when the user need carry out electronic transaction, the user is to electronic transaction terminal input user account number, password, to bank transaction request is proposed by the electronic transaction terminal, bank at first verifies user account number, after confirming the effective account number in back, bank verifies according to the password of the password buffer zone to be verified of user account number correspondence and the password of user's input, bank is after finishing this checking, if user cipher is proved to be successful, to from the multiple cipher of user's registration, obtain next group password, this password storage be replaced last one group of password to password buffer zone to be verified, so that password authentification next time; If authentication failed, the frequency of failure also can be accumulated by bank, and the accumulation failure reaches 3 times account number is freezed.After checking was finished, sending to the electronic transaction terminal could continuous business information, electric terminal will according to bank provide could continuous business information, conclude the business or Cancel Transaction with the user, and transaction results is shown to the user, the line correlation Account Disposal of going forward side by side.Bank also can be after finishing transaction sends to Transaction Information user's mobile phone.
Below be by specific embodiment the present invention to be carried out more detailed description:
The application of embodiment 1 on bank's automatic terminal (ATM)
With reference to Fig. 3, the user inputs user account number, password on ATM, to bank transaction request is proposed through ATM, bank at first verifies user account number, after confirming the effective account number in back, bank verifies according to the password of the password buffer zone to be verified of user account number correspondence and the password of user's input, bank is after finishing this checking, if user cipher is proved to be successful, to from the multiple cipher of user's registration, obtain next group password, this password storage is replaced last one group of password to password buffer zone to be verified, so that password authentification next time.If authentication failed, the frequency of failure also can be accumulated by bank, and the accumulation failure reaches 3 times account number is freezed.After checking was finished, sending to ATM could continuous business information, ATM will according to bank provide could continuous business information, conclude the business or Cancel Transaction with the user, and transaction results is shown to the user, ATM is submitted the transaction results report to, and carries out relevant Account Disposal with bank.Bank also can be after finishing transaction sends to Transaction Information user's mobile phone.
The application of embodiment 2 on personal consumption electronic accounting machine (POS)
With reference to Fig. 4, the user inputs user account number, the consumption amount of money, password on the POS machine, to bank transaction request is proposed through the POS machine, bank at first verifies user account number, after confirming the effective account number in back, bank verifies according to the password of the password buffer zone to be verified of user account number correspondence and the password of user's input, bank is after finishing this checking, if user cipher is proved to be successful, to from the multiple cipher of user's registration, obtain next group password, this password storage is replaced last one group of password to password buffer zone to be verified, so that password authentification next time.If authentication failed, the frequency of failure also can be accumulated by bank, and the accumulation failure reaches 3 times account number is freezed.After checking is finished, sending to the POS machine could continuous business information, the POS machine will according to bank provide could continuous business information, conclude the business or Cancel Transaction with the user, and transaction results is shown to the user, the POS machine is submitted the transaction results report to, and carries out relevant Account Disposal by Unionpay with bank through Unionpay.Bank also can be after finishing transaction sends to Transaction Information user's mobile phone.
Claims (2)
1. the multiple cipher circulated validation method in the electronic transaction process, comprise electronic transaction terminal and bank main, both connect by network, it is characterized in that: the user is the static trading password of the many groups of registration on bank main in advance, bank main at first will be wherein one group of password storage to password buffer zone to be verified as user's authentication password first, when the user needs electronic transaction and to electronic transaction terminal input user account number and password, determining behind bank main empirical tests user account number and the password could continuous business; When meeting terms of trade, bank main obtains next group password from many groups static password, and this password storage replaced last one group of password in password buffer zone to be verified, so that carry out password authentification next time, this password is as user's authentication password next time, this password comes into force after this is proved to be successful end from the user, is proved to be successful inefficacy to next time.
2. the multiple cipher circulated validation method in the electronic transaction process according to claim 1 is characterized in that: the electronic transaction terminal comprises the POS machine or the ATM of bank.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710132284XA CN101127137A (en) | 2007-09-13 | 2007-09-13 | Multiple cipher circulated validation method in electronic transaction process |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA200710132284XA CN101127137A (en) | 2007-09-13 | 2007-09-13 | Multiple cipher circulated validation method in electronic transaction process |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101127137A true CN101127137A (en) | 2008-02-20 |
Family
ID=39095159
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA200710132284XA Pending CN101127137A (en) | 2007-09-13 | 2007-09-13 | Multiple cipher circulated validation method in electronic transaction process |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101127137A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102685121A (en) * | 2012-05-03 | 2012-09-19 | 飞天诚信科技股份有限公司 | Digital signature method and digital signature device |
| CN104410494A (en) * | 2014-11-15 | 2015-03-11 | 韩素平 | A customizing pre-generating multi-password authentication system |
| CN105468962A (en) * | 2014-09-03 | 2016-04-06 | 阿里巴巴集团控股有限公司 | User interface unlocking method and apparatus |
| CN105812135A (en) * | 2014-12-30 | 2016-07-27 | 中国移动通信集团公司 | Dynamic password authentication method and system |
-
2007
- 2007-09-13 CN CNA200710132284XA patent/CN101127137A/en active Pending
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102685121A (en) * | 2012-05-03 | 2012-09-19 | 飞天诚信科技股份有限公司 | Digital signature method and digital signature device |
| CN105468962A (en) * | 2014-09-03 | 2016-04-06 | 阿里巴巴集团控股有限公司 | User interface unlocking method and apparatus |
| US10909234B2 (en) | 2014-09-03 | 2021-02-02 | Advanced New Technologies Co. Ltd. | Method and apparatus for unlocking user interface |
| CN104410494A (en) * | 2014-11-15 | 2015-03-11 | 韩素平 | A customizing pre-generating multi-password authentication system |
| CN105812135A (en) * | 2014-12-30 | 2016-07-27 | 中国移动通信集团公司 | Dynamic password authentication method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20140297435A1 (en) | Bank card secured payment system and method using real-time communication technology | |
| US8510228B2 (en) | Transfer method of electronic cash | |
| US20090012901A1 (en) | Multifactor authentication system for "cash back" at the point of sale | |
| CN101706933A (en) | Method and background system for realizing joint account service operation | |
| CA2659879A1 (en) | Money transfer transactions via pre-paid wireless communication devices | |
| CN101540083A (en) | Method utilizing ID card number as bank account number and adopting fingerprint for ID authentication | |
| CN101964090A (en) | Unionpay payment system and method for respectively authenticating identity and payment amount by using double cards | |
| CN104992324A (en) | Service processing method of self-service device and service processing system of self-service device | |
| CN102194178A (en) | Payment processing system, method and device | |
| CN103366274A (en) | Hybrid e-commerce instant payment method | |
| CN102542452A (en) | Method and system for verifying transaction passwords of point-of-sale (POS) machine terminal | |
| CN101251916A (en) | Method and system for enterprise customer to perform financing settlement and management | |
| CN104933565A (en) | IC card transaction method and IC card transaction system | |
| CN104867009A (en) | Intelligent card, quota control system thereof, and quota control method thereof | |
| CN111738709B (en) | Transaction processing method and device | |
| CN101872454A (en) | Sales terminal transaction processing method, equipment and mobile terminal transaction processing method | |
| CN101127137A (en) | Multiple cipher circulated validation method in electronic transaction process | |
| CN103854179A (en) | Authentication method for carrying out identity authentication on bank card holder on basis of fingerprint verification | |
| CN102521631A (en) | Intelligent financial IC card reading and writing method based on electronic identity card system | |
| CA2997635C (en) | Online payment verification method and online payment verification system | |
| CN104541311A (en) | Quick payment system and corresponding method | |
| CN106355406A (en) | Combined fingerprint authentication payment method | |
| CN103854364A (en) | Verification method for performing authentication on bank card holder based on voice verification | |
| CN111179063B (en) | Credit card business data processing method, system and related nodes based on block chain | |
| CN103854176A (en) | Face verification-based verification method for verifying identity of bank card holder |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |