CN101867894A - Short message consumption method and server thereof - Google Patents
Short message consumption method and server thereof Download PDFInfo
- Publication number
- CN101867894A CN101867894A CN200910108740A CN200910108740A CN101867894A CN 101867894 A CN101867894 A CN 101867894A CN 200910108740 A CN200910108740 A CN 200910108740A CN 200910108740 A CN200910108740 A CN 200910108740A CN 101867894 A CN101867894 A CN 101867894A
- Authority
- CN
- China
- Prior art keywords
- server
- message
- consumption
- terminal
- short message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a short message consumption method and a server thereof. The method comprises the steps that the server generates a consumption initialization command message; the server sends the message to a terminal through a short message channel, so that the terminal can conveniently display and return a first response message to the server through the short message channel after executing the consumption initialization command; the server checks the terminal according to the first response message; the server generates a consumption command message; the server sends the consumption command message to the terminal through the short message channel, so that the terminal can conveniently return a second response message to the server through the short message channel after executing the consumption command message; and the server checks the terminal according to the second response message. The invention realizes short message consumption and improves the safety of mobile payment.
Description
Technical field
The present invention relates to a kind of short message consumption technical field, particularly a kind of basic short message consumption method and server.
Background technology
Cryptographic technique is divided into symmetric cryptographic technique and asymmetric cryptographic technique.
Asymmetric cryptographic technique is public key cryptography technology again, and in common key cryptosystem, the user has two saw spoons, one open (PKI), another user privately owned (private key) is difficult to release another from one, and communicating pair need not prior interchange key just can set up secure communication.A problem in the public key cryptosyst is how user's PKI and user's identity effectively to be mapped, and traditional public key cryptosyst generally all adopts certificate mechanism to realize that user's identity and user's the safety of key is corresponding.Certificate mechanism generally all adopts PKIX (Public Key Infrastructure:PKI) technology.It has comprehensively used multinomial safe practices and such as digital digest, digital signature to overlap complete certificate management mechanism security service is provided.The authentication center (Certification Authority:CA) that system need build public credibility identifies user identity, signs and issues digital certificate for the user then.Digital certificate binds together user identity and user key safely.The user exchanges certificate earlier in operation system, use public and private key to finish operations such as user's authentication, access control, information security transmission then.
Public key system based on certificate faces problems in application, particularly the complexity of certificate use makes that the domestic consumer that does not possess relevant knowledge is heavy in hand.In order to reduce the complexity of key management and use in the public key cryptosyst, Shamir is at 1984[S84] year the cryptographic technique (Identity-Based Cryptography:IBC) based on sign has been proposed: promptly user's sign just can be used as user's PKI (PKI that more precisely is the user can calculate from user's a sign and a method of system's appointment).In this case, the user does not need application and exchange certificate, thereby has greatly simplified the complexity of cryptographic system management.User's private key uses sign private key generating algorithm to calculate by a third party who is trusted in the system (key generation center) and generates.Such system has natural password and entrusts function, is suitable for having the applied environment of supervision.
Mobile-phone payment is in mobile payment again, promptly realizes transferring and paying of fund by mobile phone, is divided into small amount payment and wholesale payment according to the big I of business funds.No matter be the payment of small amount payment or wholesale, mobile-phone payment is identical with every other payment transaction, and promptly safety problem is one of the key factor that whether can successfully carry out of this business.
Stored value card (Electronic Purse), a kind of financial IC card application for making things convenient for the consumption of holder's small amount to design.It supports transaction such as circle is deposited, consumption.
Existing mobile payment is to adopt wireless communication technology, but does not adopt encryption technology, and therefore, can there be potential safety hazard in data transmission aloft.
Summary of the invention
In view of above-mentioned the deficiencies in the prior art part, the object of the present invention is to provide a kind of short message consumption method and server that utilizes cryptographic technique that mobile payment is encrypted, carrying out short message consumption, and improve the fail safe of mobile payment.
In order to achieve the above object, the present invention has taked following technical scheme:
A kind of short message consumption method comprises step:
Server generates consumption initialization command message;
Server sends described message by short message channel to terminal so that described terminal show and carry out described consumption initialization command after return first response message by short message channel to described server;
Server is verified described terminal according to described first response message;
Server generates consumption command message;
Server sends by short message channel described consumption command message to terminal, so that described terminal is returned second response message by short message channel to described server after carrying out described consumption command message;
Server is verified described terminal according to described second response message;
Server returns the account amount of money that response message is reduced described terminal according to described terminal.
Wherein, described server generates after the consumption initialization command message, further comprises:
Server becomes first ciphertext with key with described consumption initialization command message encryption;
Server sends by short message channel described first ciphertext to terminal.
Wherein, described server generates after the consumption command message, further comprises;
The server by utilizing key is encrypted to second ciphertext with described consumption command message;
Server sends by short message channel described second ciphertext to terminal.
Wherein, described server is verified described terminal according to described second response message, reduces after the account amount of money of described terminal, also comprises: the described businessman of described server notification draws account and withholds successfully.
Wherein, described terminal is to have the RF mobile phone of electronic purse function or the regular handset of binding bank account, and described server is electronic purse system or banking processing center.
A kind of server comprises:
Initialization unit is used for generating consumption initialization command message;
Packet sending unit is used for by short message channel described message being sent to terminal so that described terminal show and carry out described consumption initialization command after return first response message by note to described server;
First authentication unit is used for verifying described terminal according to described first response message;
The order generation unit is used to generate consumption command message;
Command sending unit is used for described consumption command message is sent to terminal by short message channel, so that described terminal is returned second response message by short message channel to described server after carrying out described consumption command message;
Second authentication unit is used for verifying described terminal according to described second response message;
Processing unit is used for returning the account amount of money that second response message is reduced described terminal according to described terminal.
Wherein, this system also comprises: the message encryption unit;
Described message encryption unit is used for: utilize key that described consumption initialization command message encryption is become first ciphertext;
Packet sending unit is used for described first ciphertext and signature are sent to terminal by short message channel.
Wherein, this system also comprises: the order ciphering unit;
Described order ciphering unit is used for: utilize key that described consumption command message is encrypted to second ciphertext;
Command sending unit is used for described second ciphertext is sent to terminal by short message channel.
Wherein, this system also comprises: notification unit is used for processing unit and notifies described businessman to draw account after account is handled to withhold successfully drawing.
The invention provides a kind of stored value card consuming method and server, utilize cryptographic technique that mobile payment is encrypted, improved the fail safe of mobile payment based on cryptographic technique.
Description of drawings
The flow chart of the short message consumption method that Fig. 1 provides for the embodiment of the invention;
The structure chart of the server that Fig. 2 provides for the embodiment of the invention.
Embodiment
The embodiment of the invention provides a kind of short message consumption method and server that utilizes public-key technology that mobile payment is encrypted, and carrying out short message consumption, and improves the fail safe of mobile payment.
The embodiment of the invention provides a kind of short message consumption method, is used for consumption and payment, and present embodiment mainly is to be that example is described technical scheme of the present invention in detail with the stored value card.In other embodiment, also can mobile phone nation fixed bank account and with handle the account relevant system and equipment realize this method.As shown in Figure 1, the method comprising the steps of:
101, electronic purse system generates consumption initialization command message, with key described consumption initialization command message encryption is become first ciphertext, in the present embodiment, this electronic purse system utilizes stored value card public key encryption consumption initialization command message to become ciphertext again, and with the electronic purse system private key described ciphertext is signed, more described ciphertext and signature are sent to electronic purse terminal by short message channel.In other embodiment, also can encrypt or sign, directly send this consumption initialization command message to electronic purse terminal by short message channel.
This electronic purse system is server in the present embodiment, and this server can comprise the system that or multiple computers are formed etc.Among other the embodiment, also can be the banking processing center.This electronic purse system comprises generation information, consumption information, consumption initialization command message when generating consumption initialization command message.
This electronic purse terminal is to have the RF mobile phone of electronic purse function or the regular handset of binding bank account, promptly be integrated in the safety chip that has RF (Radio Frequence radio frequency) on SIM (the Subscriber Identity Module client identification module) card of mobile phone, pack in the mobile phone by this SIM chip; The mobile phone that also can have the NFC chip functions, this electronic purse terminal can enclose and deposit, enclose and get, and also can carry out consumption and payment.In other embodiment, can not be electronic purse terminal also, but the fixed bank account of mobile phone nation and with handle relevant system and equipment of the account.
102, described electronic purse terminal receives this ciphertext and signature by short message channel, and verifies by signature, and deciphering this ciphertext then becomes expressly.If in other embodiment,, then directly receive consumption initialization command message if not to consumption initialization command message encryption and signature.
103, described electronic purse terminal shows above-mentioned information and consumption information, and whether the inquiry user pays.
If 104 users agree payment, then carry out step 105, if the user confirm to disagree with payment or do not confirm that then execution in step 112, do corresponding failure and handle.
105, carry out above-mentioned consumption initialization command, generate first response message, execution result is back to electronic purse system by first response message is encrypted to the 3rd ciphertext.
106, electronic purse system becomes first response message with the 3rd decrypt ciphertext.
107, electronic purse system is verified described terminal according to described first response message.
108, electronic purse system generates consumption command message, utilizes key that described consumption command message is encrypted to second ciphertext.In the present embodiment example, utilize the described consumption command message of public key encryption of electronic purse terminal, and with the electronic purse system private key described consumption command message is signed, then consumption command message after the described encryption and signature are sent to electronic purse terminal.In other embodiment, also can encrypt or sign, directly send this consumption command message to electronic purse terminal by short message channel.
109, described electronic purse terminal according to signature verification after, deciphering and carry out described consumption command message becomes expressly; If in other embodiment, consumption command message is not encrypted and signature, then directly receive consumption command message.
110, described electronic purse terminal is carried out described consumption command message.
That is: electronic purse terminal shows the information of consumption command message, requires the user to confirm that Zhi Zhihang pays.
If 111 users confirm that then execution in step 112, if do not confirm, perhaps confirm to disagree with that then execution in step 116, do corresponding failure and handle.
112, described electronic purse terminal is carried out the consumption order of above-mentioned consumption command message, generates second response message, and execution result is back to electronic purse system by second response message is encrypted to the 4th ciphertext.
113, described electronic purse system becomes second response message with the 4th decrypt ciphertext.
114, described electronic purse system returns second response message according to described electronic purse terminal and verifies described terminal, and reduces the account amount of money of described electronic purse terminal from described terminal.
115, do accordingly successfully processing.
116, doing corresponding failure handles.
In a further embodiment, also comprise step: described electronic purse system is notified described businessman to draw account and is withholdd successfully, so that this method can be handled consumption more rapidly.
In other embodiment, if the fixed bank account of banking processing center and corresponding mobile phone nation also can be realized the short message consumption of safety according to above-mentioned steps.
The embodiment of the invention also provides a kind of server, and as shown in Figure 2, this system comprises:
Further among the embodiment, this system also comprises message encryption unit 208;
Described message encryption unit 208 is used for: utilize key that described consumption initialization command message encryption is become first ciphertext;
Further among the embodiment, this system also comprises order ciphering unit 209;
Described order ciphering unit 209 is used for: utilize key that described consumption command message is encrypted to second ciphertext;
Further among the embodiment, this system also comprises: notification unit 210 is used for processing unit 207 and notifies described businessman to draw account after drawing the account processing to withhold successfully.
Should be understood that, for those of ordinary skills, can be improved according to the above description or conversion, and all these improvement and conversion all should belong to the protection range of claims of the present invention.
Claims (9)
1. a short message consumption method is characterized in that, comprises step:
Server generates consumption initialization command message;
Server sends described message by short message channel to terminal so that described terminal show and carry out described consumption initialization command after return first response message by short message channel to described server;
Server is verified described terminal according to described first response message;
Server generates consumption command message;
Server sends by short message channel described consumption command message to terminal, so that described terminal is returned second response message by short message channel to described server after carrying out described consumption command message;
Server is verified described terminal according to described second response message; Server returns the account amount of money that response message is reduced described terminal according to described terminal.
2. short message consumption method according to claim 1 is characterized in that, described server generates after the consumption initialization command message, further comprises:
Server becomes first ciphertext with key with described consumption initialization command message encryption;
Server sends by short message channel described first ciphertext to terminal.
3. short message consumption method as claimed in claim 1 or 2, described server generates after the consumption command message, further comprises;
The server by utilizing key is encrypted to second ciphertext with described consumption command message;
Server sends by short message channel described second ciphertext to terminal.
4. short message consumption method as claimed in claim 1 or 2 is characterized in that described server is verified described terminal according to described second response message, reduces after the account amount of money of described terminal, and also comprise: the described businessman of described server notification draws account and withholds successfully.
5. short message consumption method as claimed in claim 1 or 2 is characterized in that, described terminal is to have the RF mobile phone of electronic purse function or the regular handset of binding bank account, and described server is electronic purse system or banking processing center.
6. a server is characterized in that, comprising:
Initialization unit is used for generating consumption initialization command message;
Packet sending unit is used for by short message channel described message being sent to terminal so that described terminal show and carry out described consumption initialization command after return first response message by note to described server;
First authentication unit is used for verifying described terminal according to described first response message;
The order generation unit is used to generate consumption command message;
Command sending unit is used for described consumption command message is sent to terminal by short message channel, so that described terminal is returned second response message by short message channel to described server after carrying out described consumption command message;
Second authentication unit is used for verifying described terminal according to described second response message;
Processing unit is used for returning the account amount of money that second response message is reduced described terminal according to described terminal.
7. as server as described in the claim 6, it is characterized in that, also comprise the message encryption unit;
Described message encryption unit is used for: utilize key that described consumption initialization command message encryption is become first ciphertext;
Packet sending unit is used for described first ciphertext and signature are sent to terminal by short message channel.
8. as server as described in the claim 6, it is characterized in that, also comprise the order ciphering unit;
Described order ciphering unit is used for: utilize key that described consumption command message is encrypted to second ciphertext;
Command sending unit is used for described second ciphertext is sent to terminal by short message channel.
9. as server as described in the claim 6, it is characterized in that, also comprise: notification unit is used for processing unit and notifies described businessman to draw account after account is handled to withhold successfully drawing.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910108740A CN101867894A (en) | 2009-07-10 | 2009-07-10 | Short message consumption method and server thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910108740A CN101867894A (en) | 2009-07-10 | 2009-07-10 | Short message consumption method and server thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101867894A true CN101867894A (en) | 2010-10-20 |
Family
ID=42959403
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910108740A Pending CN101867894A (en) | 2009-07-10 | 2009-07-10 | Short message consumption method and server thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101867894A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101964964A (en) * | 2010-10-21 | 2011-02-02 | 江苏科技大学 | Coding method for ensuring security of short message payment service |
| CN103297940A (en) * | 2013-07-01 | 2013-09-11 | 苏州通付盾信息技术有限公司 | Short message encryption communication system and method |
| CN103714624A (en) * | 2013-12-19 | 2014-04-09 | 吴根佑 | Method, system and server for recharging electronic wallet and recharging operating terminal |
| CN103781064A (en) * | 2014-01-02 | 2014-05-07 | 张鹏 | Short message verification system and verification method |
-
2009
- 2009-07-10 CN CN200910108740A patent/CN101867894A/en active Pending
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101964964A (en) * | 2010-10-21 | 2011-02-02 | 江苏科技大学 | Coding method for ensuring security of short message payment service |
| CN101964964B (en) * | 2010-10-21 | 2013-04-24 | 江苏科技大学 | Coding method for ensuring security of short message payment service |
| CN103297940A (en) * | 2013-07-01 | 2013-09-11 | 苏州通付盾信息技术有限公司 | Short message encryption communication system and method |
| CN103714624A (en) * | 2013-12-19 | 2014-04-09 | 吴根佑 | Method, system and server for recharging electronic wallet and recharging operating terminal |
| CN103714624B (en) * | 2013-12-19 | 2016-08-24 | 吴根佑 | Electronic purse recharging method, system and supplement operation terminal with money |
| CN103781064A (en) * | 2014-01-02 | 2014-05-07 | 张鹏 | Short message verification system and verification method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107566117B (en) | A kind of block chain key management system and method | |
| CN101465019B (en) | Method and system for implementing network authentication | |
| CN103001773B (en) | Fingerprint authentication system and fingerprint authentication method based on near field communication (NFC) | |
| CN105516180B (en) | Cloud key authentication system based on public key algorithm | |
| CN103198400B (en) | A kind of blue teeth wireless POS terminal financial payment systems and method of payment thereof | |
| CN101640590B (en) | Method for obtaining a secret key for identifying cryptographic algorithm and cryptographic center thereof | |
| CN102088349B (en) | Personalized method and system of intelligent card | |
| CN101720071A (en) | Short message two-stage encryption transmission and secure storage method based on safety SIM card | |
| CN103067160A (en) | Method and system of generation of dynamic encrypt key of encryption secure digital memory card (SD) | |
| CN102118251A (en) | Security authentication method for internet banking remote payment based on multi-interface intelligent safety card | |
| CN101860824B (en) | Digital signature authentication system based on short message and digital signature method | |
| CN101304569A (en) | Mobile authentication system based on intelligent mobile phone | |
| CN202444629U (en) | System for carrying out card operation by using mobile terminal | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| CN109600725A (en) | A kind of message encryption method based on SM9 algorithm | |
| CN104462949A (en) | Method and device for calling plug-in | |
| CN110046906A (en) | A kind of the two-way authentication method of commerce and system of MPOS machine and server | |
| CN103312507A (en) | Encryption and authentication method in mobile payment | |
| CN101639957A (en) | Method and terminal for realizing loading or unloading as well as banking system | |
| CN101867894A (en) | Short message consumption method and server thereof | |
| CN102147948A (en) | System and method for generating information interaction voucher | |
| CN101859453A (en) | Smart card loss reporting method based on short message service and system | |
| CN103138925B (en) | Hair fastener method of operation, IC-card sheet and card-issuing equipment | |
| CN103186805A (en) | Smart card and signature authentication method based on smart card | |
| CN110100411A (en) | Cryptographic system management |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C53 | Correction of patent for invention or patent application | ||
| CB02 | Change of applicant information |
Address after: 518057 Guangdong city of Shenzhen province Nanshan District Gao Xin Road No. 009 Chinese Technology Development Institute Technology Park Building No. 3 tower 9 building A room Applicant after: Shenzhen Nationz Electronic Commerce Co., Ltd. Address before: 518057, 19 floor, building 3, Zhongke building, Nanshan District Science Park, Shenzhen, Guangdong Applicant before: Shenzhen Angelshine Co., Ltd. |
|
| COR | Change of bibliographic data |
Free format text: CORRECT: APPLICANT; FROM: SHENZHEN ANGELSHINE CO., LTD. TO: SHENZHEN NATIONZ ELECTRONIC COMMERCE CO., LTD. |
|
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20101020 |