CN101950403A - Data processing method, device and system based on internet banking - Google Patents

Data processing method, device and system based on internet banking Download PDF

Info

Publication number
CN101950403A
CN101950403A CN2010102835549A CN201010283554A CN101950403A CN 101950403 A CN101950403 A CN 101950403A CN 2010102835549 A CN2010102835549 A CN 2010102835549A CN 201010283554 A CN201010283554 A CN 201010283554A CN 101950403 A CN101950403 A CN 101950403A
Authority
CN
China
Prior art keywords
instruction information
customer instruction
trading signature
information
client
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2010102835549A
Other languages
Chinese (zh)
Inventor
朱江
黄浩波
鲁志彬
刘明
余维
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CN2010102835549A priority Critical patent/CN101950403A/en
Publication of CN101950403A publication Critical patent/CN101950403A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Computer And Data Communications (AREA)

Abstract

The invention provides a data processing method, device and system based on internet banking. The method comprises the following steps: receiving client command information from a first network; generating an image checking code according to the client command information and acquiring a client terminal number and a transaction signature number which correspond to the client command information; sending the client command information, the transaction signature number and the image checking code to a terminal corresponding to the client terminal number via a second network; receiving client command information including signature information and user acknowledgement information from a transaction signature center and a digital checking code; judging whether the client command information from the transaction signature center is consistent with the client command information from the first network, whether the digital checking code corresponds to the image checking code and whether the number in the transaction signature center is consistent with the transaction signature number; and if the results are all yes, implementing corresponding operations according to the client command information from the first network. The invention can improve security of internet transaction.

Description

Data processing method, Apparatus and system based on Web bank
Technical field
The present invention relates to network communications technology field, particularly, relate to a kind of data processing method, Apparatus and system based on Web bank.
Background technology
Web bank uses and is based upon internet and open computing platform, that is, and and on the common PC (PersonalComputer, personal computer), because its opening makes Web bank's applied environment have more security threat, for example virus, wooden horse etc.The client browser of bank system of web generally adopts text mode to show the transaction data element, and there be separating in demonstration and the transmission in client browser for client's Transaction Information, this has caused certain hidden danger for the safety of customer information, might cause the inconsistent of the actual use information of client's finding information and system.For example, rogue programs such as wooden horse can be when screen display, and data that provide the client to wish, but when user end to server sends request, the critical data of user's input is distorted are as the number of the account that keeps accounts that the client is transferred accounts, go into account name and replace; After server carries out relevant treatment, show the trade confirmation page, rogue program utilization such as wooden horse this moment shows and the separating of transmission, the information that the quilt that server is returned is distorted makes the data that the client wishes again into and shows, the client carries out relevant authentication, submits the validation of information request once more to after for example importing payment cipher, behind the server end checking client password, to handle according to the information of keeping accounts that the quilt that receives is before distorted, cause the clients fund loss.Because the SSL of Web bank's employing safety connects, data are encrypted transmission in network transmission process, and this process is safer, and data tampering described above generally occurs in this machine of client, that is, using SSL transmission front and back distorting that this machine carries out.
Authentic and valid in order to guarantee the data that business processing uses, embody the real wish of client, the information of avoiding the client to submit to or confirming is distorted before and after client transmissions by rogue programs such as wooden horses, the solution that a kind of lightweight is arranged at present, promptly, use graphics mode to show the transaction key message, thereby allow the client that information is confirmed.This kind mode drops into little, but can significantly reduce the possibility that client-side information is identified and distorted, and improves the security of Transaction Information in client; And without processing such as the extra installation procedure of client or the upgradings of being correlated with, client trading flow process and use habit are consistent substantially, are easy to accept.But, this uses the figure sheet mode to show the mode of transaction key message, because the submission of Transaction Information and affirmation, signature all occur in the network environment of same client and bank service end, as long as the hacker tackles and distorts same transaction in the communication of this network environment, and also can cheat the client by the mode that forms figure and carry out operations such as follow-up affirmation, signature, therefore, still there is security risk in above-mentioned solution.
In sum, there is bigger potential safety hazard in present online transaction.
Summary of the invention
The fundamental purpose of the embodiment of the invention is to provide a kind of data processing method based on Web bank, Apparatus and system, to solve the problem that there is bigger potential safety hazard in present online transaction.
To achieve these goals, the embodiment of the invention provides a kind of data processing method based on Web bank, and this method comprises: receive the customer instruction information from first network; Generate picture validation code and obtain storage according to described customer instruction information with described customer instruction information corresponding client terminal number and trading signature number; By second network described customer instruction information, trading signature number and picture validation code are sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed; Reception is from the customer instruction information that comprises signing messages and user's confirmation and the digital verification sign indicating number at trading signature center; The number of judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity; When the number at, described trading signature center corresponding with described picture validation code with described consistent, the described digital verification sign indicating number of customer instruction information from first network in the described customer instruction information that comprises signing messages and user's confirmation and described trading signature number are consistent, operate accordingly according to described customer instruction information and executing from first network.
By second network with described customer instruction information, trading signature number and picture validation code send to described client terminal number relevant terminal after, described method also comprises: described terminal receives described customer instruction information, trading signature number and picture validation code; Described terminal send user's input with described picture validation code corresponding digital identifying code, with the corresponding active coding of described trading signature number and the customer instruction information that comprises user's confirmation to described trading signature center.
And, by second network with described customer instruction information, trading signature number and picture validation code send to described client terminal number relevant terminal after, described method also comprises: described trading signature center receives from digital verification sign indicating number, the active coding of described terminal and the customer instruction information that comprises user's confirmation; Described trading signature center is judged whether the number of described terminal is consistent with the controlled terminal number of local storage, is judged whether described active coding is consistent with the active coding of local storage; When the number of described terminal is consistent with the active coding of local consistent, described active coding of storing of controlled terminal number and local storage, customer instruction information to the described user's of comprising confirmation is signed, and sends described customer instruction information and the described digital verification sign indicating number that comprises signing messages and user's confirmation.
The embodiment of the invention also provides a kind of data processing equipment based on Web bank, and described device comprises: the customer instruction information receiving unit is used to receive the customer instruction information from first network; The identifying code generation unit is used for generating picture validation code according to described customer instruction information; The client-related information acquiring unit, be used to obtain storage with described customer instruction information corresponding client terminal number and trading signature number; The client-related information transmitting element, be used for described customer instruction information, trading signature number and picture validation code being sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed by second network; The trading signature information receiving unit is used to receive customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from the trading signature center; Trading signature information judging unit, the number of be used to judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity; Customer instruction information and executing unit, be used for the number at, described trading signature center corresponding with described consistent, the described digital verification sign indicating number of customer instruction information and described trading signature number when consistent, operate accordingly according to described customer instruction information and executing from first network with described picture validation code from first network in the described customer instruction information that comprises signing messages and user's confirmation.
The embodiment of the invention also provides a kind of data handling system based on Web bank, this system comprises: customer instruction information transmitting apparatus, data processing equipment, user terminal and trading signature center, described customer instruction information transmitting apparatus communicates by first network and described data processing equipment, communicate by second network between described data processing equipment, user terminal and the trading signature center, wherein:
Described data processing equipment comprises: the customer instruction information receiving unit is used to receive the customer instruction information from first network; The identifying code generation unit is used for generating picture validation code according to described customer instruction information; The client-related information acquiring unit, be used to obtain storage with described customer instruction information corresponding client terminal number and trading signature number; The client-related information transmitting element, be used for described customer instruction information, trading signature number and picture validation code being sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed by second network; The trading signature information receiving unit is used to receive customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from the trading signature center; Trading signature information judging unit, the number of be used to judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity; Customer instruction information and executing unit, be used for the number at, described trading signature center corresponding with described consistent, the described digital verification sign indicating number of customer instruction information and described trading signature number when consistent, operate accordingly according to described customer instruction information and executing from first network with described picture validation code from first network in the described customer instruction information that comprises signing messages and user's confirmation;
Described user terminal comprises: the client-related information receiving element is used to receive customer instruction information, trading signature number and picture validation code from described data processing equipment; Client's confirmation transmitting element, be used to send user's input with described picture validation code corresponding digital identifying code, with the corresponding active coding of described trading signature number and the customer instruction information that comprises user's confirmation to described trading signature center;
Described trading signature center comprises: client's confirmation receiving element is used to receive from digital verification sign indicating number, the active coding of described user terminal and the customer instruction information that comprises user's confirmation; Client's confirmation judging unit is used to judge whether the number active coding whether consistent with the controlled terminal number of local storage, that judge described active coding and local storage of described user terminal is consistent; Customer instruction Information Signature unit is used for when the number of described user terminal is consistent with the active coding of local consistent, described active coding of storing of controlled terminal number and local storage the customer instruction information of the described user's of comprising confirmation being signed; The trading signature information transmitting unit is used for sending described customer instruction information and the described digital verification sign indicating number that comprises signing messages and user's confirmation to described data processing equipment.
By means of technique scheme one of at least, finish the transaction data checking of Web bank by first network, second network, increased the difficulty that rogue program is distorted or tackled same transaction in two networks, than prior art, the present invention can improve the security of online transaction.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, the accompanying drawing of required use is done to introduce simply in will describing embodiment below, apparently, accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is the process flow diagram based on Web bank's data processing method according to the embodiment of the invention;
Fig. 2 is the detail flowchart based on Web bank's data processing method according to the embodiment of the invention;
Fig. 3 is the structured flowchart based on Web bank's data handling system according to the embodiment of the invention;
Fig. 4 is the structured flowchart according to the data processing equipment 2 of the embodiment of the invention;
Fig. 5 is the structured flowchart according to the user terminal 3 of the embodiment of the invention;
Fig. 6 is another structured flowchart according to the user terminal 3 of the embodiment of the invention;
Fig. 7 is the structured flowchart according to the trading signature center 4 of the embodiment of the invention;
Fig. 8 is another structured flowchart according to the trading signature center 4 of the embodiment of the invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that is obtained under the creative work prerequisite.
Because the security of online transaction of the prior art is lower, based on this, the embodiment of the invention provides a kind of data processing scheme based on Web bank, to address the above problem.The present invention is described in detail below in conjunction with accompanying drawing.
Embodiment one
The embodiment of the invention provides a kind of data processing method based on Web bank, and Fig. 1 is the process flow diagram of this method, and as shown in Figure 1, this method comprises:
Step 101 receives the customer instruction information from first network, and this customer instruction information can comprise Customer ID, instruction type etc., and for example, this customer instruction information is the payment by the transfer of accounts instruction, specifically comprises the information such as producing account, the name amount of money that changes over to;
Step 102, generate picture validation code and obtain storage according to customer instruction information with customer instruction information corresponding client terminal number and trading signature number;
Step 103, by second network customer instruction information, trading signature number and picture validation code are sent to and client terminal number relevant terminal, sign so that terminal sends to the trading signature center after customer instruction information and picture validation code are confirmed;
Step 104 receives customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from the trading signature center;
Step 105, judge the customer instruction information comprise signing messages and user's confirmation and whether consistent from the customer instruction information of first network, judge whether digital identifying code corresponding with picture validation code, the number of judging the trading signature center whether with trading signature number unanimity;
Step 106,, digital verification sign indicating number consistent with customer instruction information from first network in the customer instruction information that comprises signing messages and user's confirmation be with picture validation code is corresponding, the number at trading signature center is with the trading signature number when consistent, according to from the customer instruction information of first network customer instruction information of trading signature center (perhaps from) execution operate accordingly.
By above description as can be seen, finish the transaction data checking of Web bank by first network, second network, increased the difficulty that rogue program is distorted or tackled same transaction in two networks, than prior art, the embodiment of the invention can improve the security of online transaction.
Preferably, above-mentioned first network and second network are network of different nature, and for example, first network is the Internet, and second network is a wireless network.Above-mentioned terminal can be a mobile phone.
By second network customer instruction information, trading signature number and picture validation code are sent to client terminal number relevant terminal after, this terminal receives customer instruction information, trading signature number and picture validation code, send user's input then with picture validation code corresponding digital identifying code, with the corresponding active coding of trading signature number and the customer instruction information that comprises user's confirmation to the trading signature center.
The customer instruction information that this trading signature center receives digital verification sign indicating number, the active coding of above-mentioned terminal and comprises user's confirmation; Whether the number active coding whether consistent with the controlled terminal number of local storage, that judge active coding and local storage of judging this terminal is consistent; During the active coding unanimity of, active coding consistent with the controlled terminal number of local storage and local storage at the number of this terminal, the customer instruction information that comprises user's confirmation is signed, and send customer instruction information and the digital verification sign indicating number that comprises signing messages and user's confirmation.Carry out above-mentioned steps 104 then.
Fig. 2 is the detail flowchart based on Web bank's data processing method according to the embodiment of the invention, and as shown in Figure 2, this method comprises:
Step 201: the client submits customer instruction information by computing machine to the bank data treating apparatus, and this bank data treating apparatus is used to realize above-mentioned step shown in Figure 1.
Step 202: the bank data treating apparatus is preserved customer instruction information, and generates picture validation code;
Step 203: the bank data treating apparatus (for example reads the corresponding client terminal number according to customer instruction information from system, phone number) and the trading signature device number, this trading signature device is used for customer instruction information is carried out signature authentication, and the mode of signature authentication can be pre-determined by system or client;
Step 204: data processing equipment 2 sends to the terminal corresponding with the client terminal number with customer instruction information, picture validation code and trading signature device number packing back by wireless network;
Step 205: terminal shows the information that receives, and the client confirms whether customer instruction information is true;
Step 206: the client is according to the information input digital verification sign indicating number corresponding with the image authentication sign indicating number that shows, and input and the corresponding active coding of trading signature device number;
Step 207: terminal sends to the trading signature device with digital verification sign indicating number, active coding and after comprising the customer instruction information package of confirmation;
Step 208: the trading signature device is resolved the information that receives;
Step 209: the trading signature device reads predefined trading signature device active coding and controlled terminal number in this device;
Step 210: the trading signature device judges whether the termination number of the information that receives is consistent with the controlled terminal number of having set, if inconsistent, returns to the terminal client error message, if consistent, carry out step 211;
Step 211: the trading signature device judges whether active coding is consistent with predefined trading signature device active coding, if inconsistent, returns to the terminal client error message, if consistent, carry out step 212;
Step 212: the trading signature device activates.
Step 213: the trading signature device is signed to customer instruction information.
Step 214: the trading signature device will send to the bank data treating apparatus after will including the information package of the customer instruction information of customer information signature string and digital verification sign indicating number;
Step 215: the bank data treating apparatus is resolved the information that receives;
Step 216: the bank data treating apparatus judges whether the trading signature device number that reads in number and the step 203 of trading signature device of the information that receives is consistent, if inconsistent, then returns the terminal client error message, if unanimity carry out step 217;
Step 217: the bank data treating apparatus judges whether the customer instruction information of preserving in signature string corresponding client command information and the step 202 is consistent, if inconsistent, then returns the terminal client error message, if unanimity carry out step 218;
Step 218: the bank data treating apparatus is finished processing to customer instruction according to customer instruction information.
As seen from the above description, after will handling from the customer instruction information of the Internet, via terminal that is in wireless network and trading signature device, carry out processing by the bank data treating apparatus, because data have experienced two networks of different nature, bigger increase the rogue program interception or the difficulty of distorting, can improve the security of online transaction.
Embodiment two
The embodiment of the invention also provides a kind of data handling system based on Web bank, Fig. 3 is the structured flowchart of this system, as shown in Figure 3, this system comprises: customer instruction information transmitting apparatus 1, data processing equipment 2, user terminal 3 and trading signature center 4, customer instruction information transmitting apparatus 1 communicates by first network and data processing equipment 2, communicates by second network between data processing equipment 2, user terminal 3 and the trading signature center 4.First network and second network are network of different nature, and for example, first network is the Internet, and second network is a wireless network.Above-mentioned customer instruction information transmitting apparatus can be a personal computer, and data processing equipment is preferably used for realizing above-mentioned method shown in Figure 1, and user terminal can be a mobile phone, and the trading signature center is used for customer information is carried out signature authentication.
As seen from the above description, communicate at first network, communicate the transaction data checking of finishing Web bank by second network between data processing equipment, user terminal and the trading signature center by customer instruction information transmitting apparatus and data processing equipment, increased the difficulty that rogue program is distorted or tackled same transaction in two networks, than prior art, the embodiment of the invention can improve the security of online transaction.
Above-mentioned customer instruction information transmitting apparatus 1 is used to submit to customer instruction information to give data processing equipment 2.Customer instruction information transmitting apparatus 1 is meant the PC that the client uses etc.Under client's guiding of bank on the net, input relationship trading information, customer instruction sends to data processing equipment 2 after submitting to device with information package.
Data processing equipment 2 is meant the main frame and the server of bank aspect.Data processing equipment 2 is preserved after receiving the customer instruction information that customer instruction information transmitting apparatus 1 sends, and generation picture validation code, from system, read client's phone number and trading signature number (promptly according to customer instruction information, above-mentioned trading signature device number), then picture validation code, trading signature number and customer instruction information are sent to the client's phone number corresponding user terminal 3 that reads by wireless network; After the customer instruction information and digital verification sign indicating number that comprise client's confirmation and signing messages that receive 4 transmissions of trading signature center, unpack, whether the corresponding number in the trading signature center 4 of the trading signature number that reads before judging and this information of transmission consistent, and the customer instruction information of judging customer instruction information and customer instruction information transmitting apparatus 1 transmission before in the information that receives unanimity whether, when twice judged result all is unanimity and digital verification sign indicating number and picture validation code when being corresponding relation, the bank that finishes customer instruction handles.
User terminal 3 typically refers to the mobile phone that the client uses.Show behind customer instruction information that user terminal 3 reception data processing equipments 2 send over and the picture validation code, after the client confirms that command information is correct, input digit identifying code and trading signature center active coding, and according to sending to trading signature center 4 by wireless network after the corresponding form packing of client trading.
After trading signature center 4 receives customer instruction information, identifying code and the trading signature center active coding that user terminal 3 sends over, whether the number of the user terminal 3 of trading signature center 4 affirmation transmission information is consistent with the controlled number that sets in advance, confirm simultaneously whether the trading signature center active coding that receives is consistent with the active coding that sets in advance, when twice affirmation is in full accord, activating sale signature center 4; The signature to customer instruction information is finished at trading signature center 4, and digital verification sign indicating number and customer instruction Information Signature string (that is the customer instruction information that, comprises client's confirmation and signing messages) packing back is sent to data processing equipment 2 by wireless network according to set form.
In order further to understand the embodiment of the invention, below above-mentioned data processing equipment 2, user terminal 3 and trading signature center 4 are described in detail respectively.
Fig. 4 is the structured flowchart of data processing equipment 2, and as shown in Figure 4, this data processing equipment 2 comprises:
Customer instruction information receiving unit 21 is used to receive the customer instruction information from first network;
Identifying code generation unit 22 is used for generating picture validation code according to customer instruction information;
Client-related information acquiring unit 23, be used to obtain storage with customer instruction information corresponding client terminal number and trading signature number;
Client-related information transmitting element 24 is used for by second network customer instruction information, trading signature number and picture validation code being sent to and client terminal number relevant terminal;
Trading signature information receiving unit 25 is used to receive customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from the trading signature center;
Trading signature information judging unit 26, the number of be used to judge whether the customer instruction information that comprises signing messages and user's confirmation and customer instruction information from first network consistent, judge whether digital identifying code corresponding with picture validation code, judging the trading signature center whether with trading signature number unanimity;
Customer instruction information and executing unit 27, be used for, digital verification sign indicating number consistent with customer instruction information and picture validation code is corresponding, when the number at trading signature center and trading signature number unanimity, operate accordingly according to the customer instruction information and executing from first network from first network in the customer instruction information that comprises signing messages and user's confirmation.
Fig. 5 is the structured flowchart of user terminal 3, and as shown in Figure 5, this user terminal 3 comprises:
Client-related information receiving element 31 is used to receive customer instruction information, trading signature number and picture validation code from data processing equipment;
Client's confirmation transmitting element 32, be used to send user's input with picture validation code corresponding digital identifying code, with the corresponding active coding of trading signature number and the customer instruction information that comprises user's confirmation to the trading signature center.
In the specific implementation, user terminal 3 can be a mobile phone, hereinafter referred to as client's mobile device 6, as shown in Figure 6, this client's mobile device 6 can comprise following functional unit: communication unit 61, applying unit 62, display unit 63, input block 64, main control unit 65.Main control unit 65 is connected respectively with communication unit 61, applying unit 62, display unit 63, input block 64, below each functional unit in client's mobile device 6 is described in detail:
Communication unit 61 is the unit that outreaches of whole client's mobile device 6, is responsible for the information and the transmission information of other devices of reception and installs to other, has the function of above-mentioned client-related information receiving element 61 and client's confirmation transmitting element 62.When data processing equipment 2 is issued client's mobile device 6 with customer instruction information, trading signature number and picture validation code, finish the reception of information by communication unit 61, inform main control unit 65 simultaneously; When client's mobile device 6 transmission information during, inform that by main control unit 65 communication unit 61 finishes the transmission of information to trading signature center 4;
The parsing of applying unit 62 main responsible information and the packing of information.After main control unit 65 receives that communication unit 61 is received notification of information, inform applying unit 62 by main control unit 65, begin the information of receiving is resolved, comprise the legitimacy verification of information in the resolving and decompose two processes, information decomposition after treatment is client trading information, trading signature number and picture validation code; Finish the typing of affirmation customer instruction information, active coding and digital verification sign indicating number by input block 64 as the client after, inform applying unit 62 start information packing work by main control unit 65, the packing form is: trading signature device active coding+digital verification sign indicating number+comprise the customer instruction information of confirmation, and pack and successfully then inform main control unit 65 transmission information by applying unit 62;
Display unit 63 is mainly finished the displaying that client's mobile device 6 is given customer information.When applying unit 62 is finished parsing to the information that receives, main control unit 65 obtains to inform display unit 63 after the relevant informations, gives the client by display unit 63 with correlated information exhibition;
Input block 64 is mainly finished the typing work of client to active coding and identifying code.Finished information when display unit 63 and represented, the client imports active coding corresponding with the trading signature number and the digital verification sign indicating number corresponding with picture validation code under the guiding that represents content, and input block 64 obtains relevant information, and informs main control unit 65;
Main control unit 65 is the core cell of whole client's mobile device 6, and when data processing equipment 2 was issued client's mobile device 6 with customer instruction information, trading signature number and picture validation code, communication unit 61 was finished the reception of information, informs main control unit 65; Main control unit 65 informs that the information that 62 pairs of communication units 61 of applying unit are received resolves, resolve finish after applying unit 62 inform main control unit 65; Main control unit 65 information after display unit 63 will be resolved of informing represents to the client; The client triggers input block 64 simultaneously and gets access to entry information and inform main control unit 65 by information, active coding and the identifying code of the guiding input validation customer instruction information of display unit 63; Main control unit 65 informs that applying unit 62 according to fixed format packs active coding, identifying code and the customer instruction information that comprises confirmation, and applying unit 62 was informed main control unit 65 after packing was finished; Main control unit 65 informs that communication unit 61 finishes the transmission of packing back information, sends to trading signature center 4.
Fig. 7 is the structured flowchart at trading signature center 4, and as shown in Figure 7, this trading signature center 4 comprises:
Client's confirmation receiving element 41 is used to receive from digital verification sign indicating number, the active coding of user terminal and the customer instruction information that comprises user's confirmation;
Client's confirmation judging unit 42 is used to judge whether the number active coding whether consistent with the controlled terminal number of local storage, that judge active coding and local storage of user terminal is consistent;
When being used for the active coding unanimity of, active coding consistent with the controlled terminal number of local storage at the number of user terminal and local storage, sign to the customer instruction information that comprises user's confirmation in customer instruction Information Signature unit 43;
Trading signature information transmitting unit 44 is used for sending customer instruction information and the digital verification sign indicating number that comprises signing messages and user's confirmation to data processing equipment.
When specific embodiment, trading signature center 4 can comprise functional unit as shown in Figure 8: communication unit 81, applying unit 82, signature unit 83, activation unit 84, storage unit 85 and main control unit 86.Main control unit 86 is connected respectively with communication unit 81, applying unit 82, signature unit 83, activation unit 84, and applying unit 82 is connected with storage unit 85.Below each functional unit in the trading signature center 4 is described in detail:
Communication unit 81 is the unit that outreaches at whole trading signature center 4, is responsible for the information and the transmission information of other devices of reception and installs to other, has the function of above-mentioned client's confirmation receiving element 41 and trading signature information transmitting unit 44.When client's mobile device 6 is issued trading signature center 4 with the information of " trading signature device active coding+digital verification sign indicating number+client trading information " form, finish the reception of information by communication unit 81, inform main control unit 86 simultaneously; When trading signature center 4 will send information to data processing equipment 2, inform that by main control unit 86 communication unit 81 finishes the transmission of information.
The packing of reading judgement, information of information has the function of above-mentioned client's confirmation judging unit 42 in the parsing of applying unit 82 main responsible information, the storage unit 85.After main control unit 86 receives that communication unit 81 is received notification of information, inform applying unit 82 by main control unit 86, begin the information of receiving is resolved, comprise the legitimacy verification of information in the resolving and decompose two processes, information decomposition is after treatment informed main control unit 86 for sending information mobile phone number, trading signature device active coding, identifying code, client trading information; In applying unit 82 reading cells 85 storage the controlled phone number of setting and set active coding, judge simultaneously whether the transmission information mobile phone number that parses is consistent with the controlled phone number of setting that reads out, judge whether the trading signature device active coding that parses is consistent with the active coding of setting that reads out, determine to inform main control unit 86 after two judgement unanimities; After signature unit 83 is finished signature generation signature string, inform main control unit 86, inform that by main control unit 86 82 pairs of information of applying unit pack, the packing form is: digital verification sign indicating number+signature is gone here and there (promptly, the customer instruction information that comprises confirmation and signing messages), inform main control unit 85 transmission information by applying unit 82 after packing successfully.
Signature unit 83 main being responsible for are signed to customer information, have the function of above-mentioned customer instruction Information Signature unit 43.Signature unit 83 is signed to customer information after receiving the signature notice of main control unit 86, generates signature string (the signature rule can be followed the existing signature rule of Web bank), informs main control unit 85 simultaneously.
Activate unit 84 main activation or the cancellation activation manipulations of being responsible for the trading signature device.Main control unit 86 informs and activates 84 activating sales signature center 8, unit that activation unit 84 is converted to the state of activation that can sign with the state at trading signature center 4 by the "on" position that can receive information, and informs main control unit 86; Main control unit 86 informs and activates 88 cancellation activating sales signature centers 4, unit, then activates unit 84 state at trading signature center 4 is converted to the "on" position of the information that can receive by the state of activation that can sign, informs main control unit 86 simultaneously.
Storage unit 85 is used for the controlled phone number and the active coding at store transaction signature center 4.
Main control unit 86 is the core cell at whole trading signature center 4.When client's mobile device 6 was issued trading signature center 4 with the information of " trading signature device active coding+digital verification sign indicating number+client trading information " form, communication unit 81 was finished the reception of information, informs main control unit 86; Main control unit 86 informs that the information that 82 pairs of communication units 81 of applying unit are received resolves, resolve finish after applying unit 82 inform main control unit 86; Controlled phone number and the trading signature device active coding of main control unit 86 by having set in applying unit 82 reading cells 85, and judge whether both are consistent with the corresponding informance that parses; Main control unit 86 is informed the 84 activating sales signature center 4, unit of activating; Main control unit 86 informs that signature unit 83 begins signature, informs main control unit 86 after the signature simultaneously; Main control unit 86 is informed 82 pairs of information package of applying unit, informs main control unit 86 after the packing; Main control unit 86 informs that communication unit 81 sends to bank data treating apparatus 2 with the information of " digital verification sign indicating number+signature string " form.
By above description as can be seen, submit customer instruction information to, customer instruction carried out signature verification etc. by first network by second network, rogue program need be tackled, distort same transaction in above-mentioned two network services like this, this has increased the difficulty that rogue program is carried out greatly, has increased the security of online transaction.
In sum, the embodiment of the invention is finished the proof procedure of online transaction by two networks of different nature, overcome submission and affirmation, the signature owing to Transaction Information of the prior art and all occurred in the lower problem of security that causes in the network environment of same client and bank service end, the embodiment of the invention can improve the security of online transaction, thereby can provide better service for the client.
One of ordinary skill in the art will appreciate that all or part of step that realizes in the foregoing description method can instruct relevant hardware to finish by program, this program can be stored in the computer read/write memory medium, such as ROM/RAM, magnetic disc, CD etc.
Above-described specific embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is specific embodiments of the invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.

Claims (5)

1. the data processing method based on Web bank is characterized in that, described method comprises:
Reception is from the customer instruction information of first network;
Generate picture validation code and obtain storage according to described customer instruction information with described customer instruction information corresponding client terminal number and trading signature number;
By second network described customer instruction information, trading signature number and picture validation code are sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed;
Reception is from the customer instruction information that comprises signing messages and user's confirmation and the digital verification sign indicating number at described trading signature center;
The number of judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity;
Be when being in the result of described judgement, operate accordingly according to described customer instruction information and executing from first network.
2. method according to claim 1 is characterized in that, by second network with described customer instruction information, trading signature number and picture validation code send to described client terminal number relevant terminal after, described method also comprises:
Described terminal receives described customer instruction information, trading signature number and picture validation code;
Described terminal send user's input with described picture validation code corresponding digital identifying code, with the corresponding active coding of described trading signature number and the customer instruction information that comprises user's confirmation to described trading signature center.
3. method according to claim 2 is characterized in that, by second network with described customer instruction information, trading signature number and picture validation code send to described client terminal number relevant terminal after, described method also comprises:
Described trading signature center receives from digital verification sign indicating number, the active coding of described terminal and the customer instruction information that comprises user's confirmation;
Described trading signature center is judged whether the number of described terminal is consistent with the controlled terminal number of local storage, is judged whether described active coding is consistent with the active coding of local storage;
When the number of described terminal is consistent with the active coding of local consistent, described active coding of storing of controlled terminal number and local storage, customer instruction information to the described user's of comprising confirmation is signed, and sends described customer instruction information and the described digital verification sign indicating number that comprises signing messages and user's confirmation.
4. the data processing equipment based on Web bank is characterized in that, described device comprises:
The customer instruction information receiving unit is used to receive the customer instruction information from first network;
The identifying code generation unit is used for generating picture validation code according to described customer instruction information;
The client-related information acquiring unit, be used to obtain storage with described customer instruction information corresponding client terminal number and trading signature number;
The client-related information transmitting element, be used for described customer instruction information, trading signature number and picture validation code being sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed by second network;
The trading signature information receiving unit is used to receive customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from described trading signature center;
Trading signature information judging unit, the number of be used to judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity;
Customer instruction information and executing unit, the result who is used in described trading signature information judgment unit judges is when being, operates accordingly according to described customer instruction information and executing from first network.
5. data handling system based on Web bank, it is characterized in that, described system comprises: customer instruction information transmitting apparatus, data processing equipment, user terminal and trading signature center, described customer instruction information transmitting apparatus communicates by first network and described data processing equipment, communicate by second network between described data processing equipment, user terminal and the trading signature center, wherein:
Described data processing equipment comprises:
The customer instruction information receiving unit is used to receive the customer instruction information from first network;
The identifying code generation unit is used for generating picture validation code according to described customer instruction information;
The client-related information acquiring unit, be used to obtain storage with described customer instruction information corresponding client terminal number and trading signature number;
The client-related information transmitting element, be used for described customer instruction information, trading signature number and picture validation code being sent to and described client terminal number relevant terminal, sign so that described terminal sends to the trading signature center after described customer instruction information and described picture validation code are confirmed by second network;
The trading signature information receiving unit is used to receive customer instruction information that comprises signing messages and user's confirmation and digital verification sign indicating number from described trading signature center;
Trading signature information judging unit, the number of be used to judge whether described customer instruction information that comprises signing messages and user's confirmation and described customer instruction information from first network consistent, judge whether described digital verification sign indicating number corresponding with described picture validation code, judging described trading signature center whether with described trading signature number unanimity;
Customer instruction information and executing unit, the result who is used in described trading signature information judgment unit judges is when being, operates accordingly according to described customer instruction information and executing from first network; Described user terminal comprises:
The client-related information receiving element is used to receive customer instruction information, trading signature number and picture validation code from described data processing equipment;
Client's confirmation transmitting element, be used to send user's input with described picture validation code corresponding digital identifying code, with the corresponding active coding of described trading signature number and the customer instruction information that comprises user's confirmation to described trading signature center;
Described trading signature center comprises:
Client's confirmation receiving element is used to receive from digital verification sign indicating number, the active coding of described user terminal and the customer instruction information that comprises user's confirmation;
Client's confirmation judging unit is used to judge whether the number active coding whether consistent with the controlled terminal number of local storage, that judge described active coding and local storage of described user terminal is consistent;
Customer instruction Information Signature unit is used for when the number of described user terminal is consistent with the active coding of local consistent, described active coding of storing of controlled terminal number and local storage the customer instruction information of the described user's of comprising confirmation being signed;
The trading signature information transmitting unit is used for sending described customer instruction information and the described digital verification sign indicating number that comprises signing messages and user's confirmation to described data processing equipment.
CN2010102835549A 2010-09-15 2010-09-15 Data processing method, device and system based on internet banking Pending CN101950403A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2010102835549A CN101950403A (en) 2010-09-15 2010-09-15 Data processing method, device and system based on internet banking

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2010102835549A CN101950403A (en) 2010-09-15 2010-09-15 Data processing method, device and system based on internet banking

Publications (1)

Publication Number Publication Date
CN101950403A true CN101950403A (en) 2011-01-19

Family

ID=43453890

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010102835549A Pending CN101950403A (en) 2010-09-15 2010-09-15 Data processing method, device and system based on internet banking

Country Status (1)

Country Link
CN (1) CN101950403A (en)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102752751A (en) * 2012-06-29 2012-10-24 宇龙计算机通信科技(深圳)有限公司 Protection method and device for application
CN103780392A (en) * 2014-01-15 2014-05-07 杭州晟元芯片技术有限公司 Man-machine-interaction security confirmation method for handset security unit
CN104767735A (en) * 2011-04-29 2015-07-08 阿里巴巴集团控股有限公司 Information safety processing method, processing server and processing client side
CN105933902A (en) * 2016-06-29 2016-09-07 刘兴丹 Method, device and system for logging in website in public network
US9508072B2 (en) 2011-08-26 2016-11-29 Paypal, Inc. Secure payment instruction system
CN106815734A (en) * 2015-11-27 2017-06-09 方正国际软件(北京)有限公司 A kind of information transferring method and device
CN107534668A (en) * 2015-04-17 2018-01-02 福蒂编码有限公司 The method and system of transaction security

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101184107A (en) * 2007-12-17 2008-05-21 北京飞天诚信科技有限公司 Network transaction system and method for executing network transaction using the system
CN101577917A (en) * 2009-06-16 2009-11-11 深圳市星龙基电子技术有限公司 Safe dynamic password authentication method based on mobile phone

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101184107A (en) * 2007-12-17 2008-05-21 北京飞天诚信科技有限公司 Network transaction system and method for executing network transaction using the system
CN101577917A (en) * 2009-06-16 2009-11-11 深圳市星龙基电子技术有限公司 Safe dynamic password authentication method based on mobile phone

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104767735A (en) * 2011-04-29 2015-07-08 阿里巴巴集团控股有限公司 Information safety processing method, processing server and processing client side
CN104767735B (en) * 2011-04-29 2019-12-06 阿里巴巴集团控股有限公司 information security processing method, processing server and processing client
US9508072B2 (en) 2011-08-26 2016-11-29 Paypal, Inc. Secure payment instruction system
CN102752751A (en) * 2012-06-29 2012-10-24 宇龙计算机通信科技(深圳)有限公司 Protection method and device for application
CN102752751B (en) * 2012-06-29 2015-08-12 宇龙计算机通信科技(深圳)有限公司 The guard method of application and device
CN103780392A (en) * 2014-01-15 2014-05-07 杭州晟元芯片技术有限公司 Man-machine-interaction security confirmation method for handset security unit
CN107534668A (en) * 2015-04-17 2018-01-02 福蒂编码有限公司 The method and system of transaction security
CN106815734A (en) * 2015-11-27 2017-06-09 方正国际软件(北京)有限公司 A kind of information transferring method and device
CN106815734B (en) * 2015-11-27 2022-02-08 方正国际软件(北京)有限公司 Information transmission method and device
CN105933902A (en) * 2016-06-29 2016-09-07 刘兴丹 Method, device and system for logging in website in public network

Similar Documents

Publication Publication Date Title
US11017372B2 (en) Data interaction method, verification terminal, server, and system
CN101950403A (en) Data processing method, device and system based on internet banking
CN102789607B (en) A kind of network trading method and system
CN101267311B (en) A method, device and system for preventing network bank from hijacking data
CN106529938B (en) Virtual card issuing method, device and terminal
CN106899552A (en) Authentication method, certification terminal and system
CN108510276B (en) Data processing method, device and system
CN104599113A (en) Information processing method, device and system
CN102332127A (en) Network TV (television) online payment service based account binding method and payment method
CN101706933A (en) Method and background system for realizing joint account service operation
CN106557929A (en) Logistics information processing method and processing device
TW201516915A (en) A message sending method, system and device thereof
CN104077699A (en) Payment data processing method and system used for e-business platform
CN102231200A (en) Method for transacting bankcard application through mobile intelligent terminal
CN111091430B (en) Billing two-dimensional code processing method and system
CN102315934A (en) System and method for generating and transmitting picture identifying code under limited resource
CN101477661B (en) A kind of digital certificate management method, device and system
CN102567908A (en) Method and system for processing data based on e-business
CN103581106A (en) Interactive processing method and interactive processing system
CN114493884A (en) Data interaction method, device and system
JP2023062434A (en) Service providing device, service providing method, and program
CN105635164A (en) Method and device for security authentication
CN105591746B (en) A kind of processing method and processing system of online binding accepting terminal
CN201985878U (en) Data processing system based on Internet banking
CN112968797A (en) Application configuration method, system and storage medium of cloud service software

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C12 Rejection of a patent application after its publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20110119